{"id":12271,"date":"2019-12-11T08:30:04","date_gmt":"2019-12-11T07:30:04","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=12271"},"modified":"2019-12-12T15:04:25","modified_gmt":"2019-12-12T14:04:25","slug":"patchday-updates-for-windows-7-8-1-server-dec-10-2019","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2019\/12\/11\/patchday-updates-for-windows-7-8-1-server-dec-10-2019\/","title":{"rendered":"Patchday: Updates for Windows 7\/8.1\/Server (Dec. 10, 2019)"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline; border-width: 0px;\" title=\"Update\" src=\"https:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2015\/02\/Update.jpg\" alt=\"Windows Update\" width=\"54\" height=\"54\" align=\"left\" border=\"0\" \/>[<a href=\"https:\/\/www.borncity.com\/blog\/2019\/12\/11\/patchday-updates-fr-windows-7-8-1-server-10-dez-2019\/\" target=\"_blank\" rel=\"noopener noreferrer\">German<\/a>]On December 10, 2019, Microsoft released various (security) updates for Windows 7 SP1 and other updates for Windows 8.1 as well as the corresponding server versions. Here is an overview of these updates.<\/p>\n<p><!--more--><\/p>\n<h2>Updates for Windows 7\/Windows Server 2008 R2<\/h2>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/vg01.met.vgwort.de\/na\/2079a25d4bd4413392103d8a45582091\" alt=\"\" width=\"1\" height=\"1\" \/>For Windows 7 SP1 and Windows Server 2008 R2 SP1, a rollup and a security-only update have been released. The update history for Windows 7 can be found on <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4009469\" target=\"_blank\" rel=\"noopener noreferrer\">this Microsoft page<\/a>. Installation requires installed SHA2 support to successfully install the security updates.<\/p>\n<blockquote><p>Starting January 15, 2020, Windows 7 will display a full-screen end of support notification in Starter, Home Basic, Home Premium, Professional (without ESU license) and Ultimate. This must then be closed by the user.<\/p><\/blockquote>\n<h3>KB4530734 (Monthly Rollup) for Windows 7\/Windows Server 2008 R2<\/h3>\n<p>Update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4530734\" target=\"_blank\" rel=\"noopener noreferrer\">KB4530734<\/a> (Monthly Quality Rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1) addresses (besides the security fixes of October 2019) the following security issues:<\/p>\n<blockquote><p>Security updates to Windows Input and Composition, Windows Virtualization, Windows Kernel, Windows Peripherals, the Microsoft Scripting Engine, and Windows Server.<\/p><\/blockquote>\n<p>The security advisories tells that <a href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-1458\" target=\"_blank\" rel=\"noopener noreferrer\">CVE-2019-1458<\/a> (a Win32k elevation of privilege vulnerability) has been closed in Win32k. The privilege escalation is possible if the Win32k component does not properly process objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code in kernel mode. An attacker could then install programs, view, modify, or delete data, or create new accounts with full user privileges. To exploit this vulnerability, an attacker must first log on to the system. An attacker could then run a specially developed application that could exploit the vulnerability and take control of an affected system.<\/p>\n<p>This update is automatically downloaded and installed via Windows Update. The package is also available via <a href=\"https:\/\/www.catalog.update.microsoft.com\/Search.aspx?q=KB4530734\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a> and will be distributed via WSUS. The installation requires that the SSU (<a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4490628\" target=\"_blank\" rel=\"noopener noreferrer\">KB4490628<\/a> of March 2019 and the SHA-2 update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4474419\" target=\"_blank\" rel=\"noopener noreferrer\">KB4474419<\/a> of September 10, 2019) is already installed. If installed via Windows Update, it will be installed automatically. After the update installation Microsoft recommends to install the SSU<a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4531786\" target=\"_blank\" rel=\"noopener noreferrer\">KB4531786<\/a> (if not already installed). This SSU was released on December 10, 2019 and brings improvements to the Service Stack.<\/p>\n<blockquote><p>Since August 2019, the SHA-2 update (<a href=\"https:\/\/support.microsoft.com\/de-de\/help\/4474419\/sha-2-code-signing-support-update\" target=\"_blank\" rel=\"noopener noreferrer\">KB4474419<\/a>) must be installed before installing this security update. Newer updates will only be delivered via SHA-2 Code Signing for Windows Update and WSUS. Microsoft has made an update on October 8, 2019. The update should be updated automatically.<\/p><\/blockquote>\n<p>Microsoft does not list a known issue for this update.<\/p>\n<h3>KB4530692 (Security Only) for Windows 7\/Windows Server 2008 R2<\/h3>\n<p>Update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4530692\" target=\"_blank\" rel=\"noopener noreferrer\">KB4530692<\/a> (Security-only update) is available for Windows 7 SP1 and Windows Server 2008 R2 SP1. The update addresses the following issues.<\/p>\n<blockquote><p>Security updates to Windows Input and Composition, Windows Virtualization, Windows Kernel, Windows Peripherals, and Windows Server.<\/p><\/blockquote>\n<p>The update is available via WSUS or in the <a href=\"http:\/\/catalog.update.microsoft.com\/v7\/site\/Search.aspx?q=KB4530692\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a>. To install the update, you must meet the prerequisites listed in the KB article and above in the Rollup Update.<\/p>\n<p>When deploying WSUS, make sure that the SSU and SHA-2 updates mentioned above are installed &#8211; the automatic installation will not then be performed via Windows Update. After installation, Windows must be restarted before the Security-only Update is installed. You should also install the security update <a href=\"https:\/\/support.microsoft.com\/help\/4530677\" target=\"_blank\" rel=\"noopener noreferrer\">KB4530677<\/a> for IE. Microsoft does not list any known problems with this update. Whether telemetry functions are included this time is currently unknown.<\/p>\n<h2>Updates for Windows 8.1\/Windows Server 2012 R2<\/h2>\n<p>For Windows 8.1 and Windows Server 2012 R2 a rollup and a security-only update have been released. The update history for Windows 8.1 can be found on <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4009470\/windows-8-1-windows-server-2012-r2-update-history\" target=\"_blank\" rel=\"noopener noreferrer\">this Microsoft page<\/a>.<\/p>\n<h3>KB4530702 (Monthly Rollup) for Windows 8.1\/Server 2012 R2<\/h3>\n<p>Update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4530702\" target=\"_blank\" rel=\"noopener noreferrer\">KB4530702<\/a> (Monthly Rollup for Windows 8.1 and Windows Server 2012 R2) addresses the following items.<\/p>\n<blockquote><p>Security updates to Windows Virtualization, Windows Kernel, Windows Peripherals, the Microsoft Scripting Engine, and Windows\u00a0 Server.<\/p><\/blockquote>\n<p>This update is automatically downloaded and installed by Windows Update, but is also available in the <a href=\"http:\/\/catalog.update.microsoft.com\/v7\/site\/Search.aspx?q=KBSecurity updates to Windows Virtualization, Windows Kernel, Windows Peripherals, the Microsoft Scripting Engine, and Windows Server.\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a> and via WSUS. For manual installation, the latest Servicing Stack Update (SSU) must be installed first.<\/p>\n<p>The update has a known problem: Certain operations, such as renaming files or folders located on a cluster shared volume (CSV), may fail with the error \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\". This occurs when you perform the action on a CSV owner node from a process that does not have administrator privileges. See the KB article for details.<\/p>\n<h3>KB4530730 (Security-only update) for Windows 8.1\/Server 2012 R2<\/h3>\n<p>Update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4530730\" target=\"_blank\" rel=\"noopener noreferrer\">KB4530730<\/a> (Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2) addresses the following items.<\/p>\n<blockquote><p>Security updates to Windows Virtualization, Windows Kernel, Windows Peripherals, and Windows\u00a0 Server.<\/p><\/blockquote>\n<p>The update is available via WSUS or in the <a href=\"http:\/\/catalog.update.microsoft.com\/v7\/site\/Search.aspx?q=KB4530730\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a>. The update has the same known problems as the rollup update, these are described in the KB article. For a manual installation, the latest Servicing Stack Update (SSU) must be installed first. You should also install the <a href=\"https:\/\/support.microsoft.com\/help\/4530677\" target=\"_blank\" rel=\"noopener noreferrer\">KB4530677<\/a> security update for IE. With this update, Microsoft lists the same known issues as for Rollup Update.<\/p>\n<p><strong>Similar articles:<br \/>\n<\/strong><a href=\"https:\/\/borncity.com\/win\/2019\/12\/04\/microsoft-office-patchday-december-3-2019\/\">Microsoft Office Patchday (December 3, 2019)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2019\/12\/11\/microsoft-security-update-summary-december-10-2019\/\">Microsoft Security Update Summary (December 10, 2019)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2019\/12\/11\/patchday-updates-for-windows-7-8-1-server-dec-10-2019\/\">Patchday: Updates for Windows 7\/8.1\/Server (Dec. 10, 2019)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2019\/12\/11\/patchday-windows-10-updates-december-10-2019\/\">Patchday Windows 10-Updates (December 10, 2019)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2019\/12\/12\/patchday-microsoft-office-updates-10-dezember-2019\/\">Patchday Microsoft Office Updates (December 10, 2019)<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>[German]On December 10, 2019, Microsoft released various (security) updates for Windows 7 SP1 and other updates for Windows 8.1 as well as the corresponding server versions. Here is an overview of these updates.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[580,22,2],"tags":[2201,2202,2203,2199,2200,69,195,17,23,159],"class_list":["post-12271","post","type-post","status-publish","format-standard","hentry","category-security","category-update","category-windows","tag-kb4530692","tag-kb4530702","tag-kb4530730","tag-kb4530734","tag-kb4531786","tag-security","tag-update","tag-windows-7","tag-windows-8-1","tag-windows-server"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/12271","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=12271"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/12271\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=12271"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=12271"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=12271"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}