{"id":14105,"date":"2020-04-15T08:57:23","date_gmt":"2020-04-15T06:57:23","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=14105"},"modified":"2020-04-15T10:42:12","modified_gmt":"2020-04-15T08:42:12","slug":"patchday-updates-for-windows-7-8-1-server-april-14-2020","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2020\/04\/15\/patchday-updates-for-windows-7-8-1-server-april-14-2020\/","title":{"rendered":"Patchday: Updates for Windows 7\/8.1\/Server (April 14, 2020)"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline; border-width: 0px;\" title=\"Update\" src=\"https:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2015\/02\/Update.jpg\" alt=\"Windows Update\" width=\"54\" height=\"54\" align=\"left\" border=\"0\" \/>[<a href=\"https:\/\/www.borncity.com\/blog\/2020\/04\/15\/patchday-updates-fr-windows-7-8-1-server-14-april-2020\/\" target=\"_blank\" rel=\"noopener noreferrer\">German<\/a>]On April 14, 2020, Microsoft released various (security) updates for Windows 7 SP1 (ESU) and other updates for Windows 8.1 and the corresponding server versions. Here is an overview of these updates.<\/p>\n<p><!--more--><\/p>\n<h2>Updates for Windows 7\/Windows Server 2008 R2<\/h2>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/vg08.met.vgwort.de\/na\/fa696f9862bc4cab85c60bf122bbfe89\" alt=\"\" width=\"1\" height=\"1\" \/>A rollup and a security-only update have been released for Windows 7 SP1 and Windows Server 2008 R2 SP1. However, these updates are now only available for systems with ESU licenses. The update history for Windows 7 can be found on <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4009469\" target=\"_blank\" rel=\"noopener noreferrer\">this Microsoft page<\/a>. Installation requires installed SHA2 support for successful installation of the security updates.<\/p>\n<blockquote><p>Starting January 15, 2020, Windows 7 will display a full-screen notification of the end of support in Starter, Home Basic, Home Premium, Professional (without ESU license) and Ultimate. This must then be closed by the user.<\/p>\n<p>As of January 14, 2020, Windows 7 SP1 and Windows Server 2008 R2 SP1 have reached the end of support and will only receive paid security updates under the ESU program. ESU license holders should visit the <a href=\"https:\/\/docs.microsoft.com\/en-us\/windows\/release-information\/windows-message-center#388\" target=\"_blank\" rel=\"noopener noreferrer\">Windows Message Center<\/a> for details.<\/p>\n<p>Microsoft has also updated the <a href=\"https:\/\/techcommunity.microsoft.com\/t5\/windows-it-pro-blog\/obtaining-extended-security-updates-for-eligible-windows-devices\/ba-p\/1167091\" target=\"_blank\" rel=\"noopener noreferrer\">Techcommunity article<\/a> on the ESU program for 2\/11\/22020. Please refer to the notes on requirements (SSU, SHA-2). Additionally, for ESU systems, you must manually install update <a href=\"http:\/\/www.catalog.update.microsoft.com\/Search.aspx?q=KB4538483\" target=\"_blank\" rel=\"noopener noreferrer\">KB4538483<\/a> from the Update Catalog.<\/p>\n<p>Because the updates are provided in the Microsoft Update Catalog, do not attempt to install them on non-ESU systems. The installation fails and a rollback occurs. But what works: Apply the BypassESU method described in the links at the end of this article (see <a href=\"https:\/\/borncity.com\/win\/2020\/03\/05\/windows-7-forcing-february-2020-security-updates-part-1\/\">Windows 7: Forcing February 2020 Security Updates<\/a>&#8211; Part 1). This night somebody has confirmed to me that the April updates could be installed with this solution.<\/p><\/blockquote>\n<h3>KB4550964 (Monthly Rollup) for Windows 7\/Windows Server 2008 R2<\/h3>\n<p>Update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4550964\" target=\"_blank\" rel=\"noopener noreferrer\">KB4550964<\/a> (Monthly Quality Rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1) includes (in addition to the security fixes from the previous month) improvements and bug fixes and addresses the following:<\/p>\n<ul>\n<li>Addresses an issue that might cause certain operations, such as <strong>rename<\/strong>, to fail when you perform those operations on files or folders that are on a Cluster Shared Volume (CSV). The error is, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\". This issue occurs when you perform the operation on a CSV owner node from a process that doesn't have administrator privilege.<\/li>\n<li>Security updates to Internet Explorer, the Microsoft Scripting Engine, Windows Kernel, Windows App Platform and Frameworks, Windows Graphics, Windows Media, Windows Cloud Infrastructure, Windows Fundamentals, Windows Core Networking, and the Microsoft JET Database Engine.<\/li>\n<\/ul>\n<p>Compared to the previous months, nothing has changed for ESU systems. This update is automatically downloaded and installed by Windows Update. The package is also available through the <a href=\"https:\/\/www.catalog.update.microsoft.com\/Search.aspx?q=KB4550964\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a> and is distributed via WSUS. Details about the requirements and known issues can be found in the <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4550964\" target=\"_blank\" rel=\"noopener noreferrer\">KB article<\/a>. This article also provides information about which SSUs are required and known issues with the update.<\/p>\n<h3>KB4550965 (Security Only) for Windows 7\/Windows Server 2008 R2<\/h3>\n<p>Update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4550965\" target=\"_blank\" rel=\"noopener noreferrer\">KB4550965<\/a> (Security-only update) is available for Windows 7 SP1 and Windows Server 2008 R2 SP1 with ESU license. The update addresses the following issues.<\/p>\n<ul>\n<li>Addresses an issue that might cause certain operations, such as <strong>rename<\/strong>, to fail when you perform those operations on files or folders that are on a Cluster Shared Volume (CSV). The error is, \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\". This issue occurs when you perform the operation on a CSV owner node from a process that doesn't have administrator privilege.<\/li>\n<li>Security updates to Windows Kernel, Windows App Platform and Frameworks, Windows Graphics, Windows Media, Windows Cloud Infrastructure, Windows Fundamentals, Windows Core Networking, and the Microsoft JET Database Engine.<\/li>\n<\/ul>\n<p>The update is available via WSUS or in the <a href=\"http:\/\/catalog.update.microsoft.com\/v7\/site\/Search.aspx?q=KB4550965\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a>.To install the update, you must meet the prerequisites listed in the KB article and in the Rollup Update above. In addition, the security update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4550905\/\" target=\"_blank\" rel=\"noopener noreferrer\">KB4550905<\/a> for IE should also be installed.<\/p>\n<h2>Updates for Windows 8.1\/Windows Server 2012 R2<\/h2>\n<p>For Windows 8.1 and Windows Server 2012 R2 a rollup and a security-only update have been released. The update history for Windows 8.1 can be found on <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4009470\/windows-8-1-windows-server-2012-r2-update-history\" target=\"_blank\" rel=\"noopener noreferrer\">this Microsoft page<\/a>.<\/p>\n<h3>KB4550961 (Monthly Rollup) for Windows 8.1\/Server 2012 R2<\/h3>\n<p>Update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4550961\" target=\"_blank\" rel=\"noopener noreferrer\">KB4550961<\/a> (Monthly Rollup for Windows 8.1 and Windows Server 2012 R2) contains improvements and fixes, and addresses the following issues.<\/p>\n<blockquote><p>Security updates to Internet Explorer, the Microsoft Scripting Engine, Windows Kernel, Windows App Platform and Frameworks, Microsoft Graphics Component, Windows Media, Windows Fundamentals, Windows Core Networking, and the Microsoft JET Database Engine.<\/p><\/blockquote>\n<p>This update is automatically downloaded and installed by Windows Update, but is also available in the <a href=\"https:\/\/www.catalog.update.microsoft.com\/Search.aspx?q=KB44550961\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a> and via WSUS. For a manual installation, the latest Servicing Stack Update (SSU <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4550961\" target=\"_blank\" rel=\"noopener noreferrer\">KB4550961<\/a>) must be installed first.<\/p>\n<p>The update has a known issue: Certain actions, such as renaming, that you perform on files or folders that are located on a cluster shared volume (CSV) may fail with the error \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\". This occurs when you perform the action on a CSV owner node from a process that does not have administrator privileges. See the KB article for details.<\/p>\n<h3>KB4550970 (Security-only update) for Windows 8.1\/Server 2012 R2<\/h3>\n<p>Update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4550970\" target=\"_blank\" rel=\"noopener noreferrer\">KB4550970<\/a> (Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2) addresses the following items.<\/p>\n<blockquote><p>Security updates to Windows Kernel, Windows App Platform and Frameworks, Microsoft Graphics Component, Windows Media, Windows Fundamentals, Windows Core Networking, and the Microsoft JET Database Engine.<\/p><\/blockquote>\n<p>The update is available via WSUS or in the <a href=\"http:\/\/catalog.update.microsoft.com\/v7\/site\/Search.aspx?q=KB4550970\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a>. The update has the same known issues as the rollup update, which are described in the KB article. In case of a manual installation the latest Servicing Stack Update (SSU) must be installed before. You should also install the security update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4550905\/\" target=\"_blank\" rel=\"noopener noreferrer\">KB4550905<\/a> for Internet Explorer.<\/p>\n<p><strong>Similar articles:<br \/>\n<\/strong><a href=\"https:\/\/borncity.com\/win\/2020\/04\/08\/microsoft-office-patchday-7-april-2020\/\">Microsoft Office Patchday (April 7, 2020)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2020\/04\/15\/microsoft-security-update-summary-april-14-2020\/\">Microsoft Security Update Summary (April 14, 2020)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2020\/04\/15\/patchday-windows-10-updates-april-14-2020\/\">Patchday: Windows 10 Updates (April 14, 2020)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2020\/04\/15\/patchday-updates-for-windows-7-8-1-server-april-14-2020\/\">Patchday: Updates for Windows 7\/8.1\/Server (April 14, 2020)<\/a><\/p>\n<p><a href=\"https:\/\/borncity.com\/win\/2020\/01\/06\/windows-7-buy-and-manage-esu-licenses-part-1\/\">Windows 7: Buy and manage ESU licenses<\/a> \u2013 Part 1<br \/>\n<a href=\"https:\/\/borncity.com\/win\/2020\/01\/08\/windows7-preparing-for-esu-and-license-activation-part-2\/\">Windows 7: Preparing for ESU and license activation<\/a> \u2013 Part 2<br \/>\n<a href=\"https:\/\/borncity.com\/win\/2020\/01\/21\/windows-7-esu-activation-in-enterprise-environment-part-3\/\">Windows 7: ESU Activation inEnterprise Environment<\/a> \u2013 Part 3<br \/>\n<a href=\"https:\/\/borncity.com\/win\/2020\/02\/12\/windows-7-esu-questions-and-more-answers-part-4\/\">Windows 7: ESU questions and more answers<\/a> \u2013 Part 4<\/p>\n<p><a href=\"https:\/\/borncity.com\/win\/2019\/09\/22\/windows-7-server-2008-r2-0patch-liefert-sicherheitspatches-nach-supportende\/\">Windows 7\/Server 2008\/R2: 0patch delivers security patches after support ends<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2020\/01\/30\/project-windows-7-server-2008-r2-life-extension-0patch-one-month-trial\/\">Project: Windows 7\/Server 2008\/R2 Life Extension &amp; 0patch one month trial<\/a><\/p>\n<p><a href=\"https:\/\/borncity.com\/win\/2020\/03\/05\/windows-7-forcing-february-2020-security-updates-part-1\/\">Windows 7: Forcing February 2020 Security Updates<\/a> \u2013 Part 1<br \/>\n<a href=\"https:\/\/borncity.com\/win\/2020\/03\/05\/windows-7-securing-with-the-0patch-solution-part-2\/\">Windows 7: Securing with the 0patch solution<\/a> \u2013 Part 2<\/p>\n","protected":false},"excerpt":{"rendered":"<p>[German]On April 14, 2020, Microsoft released various (security) updates for Windows 7 SP1 (ESU) and other updates for Windows 8.1 and the corresponding server versions. Here is an overview of these updates.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[580,22,2],"tags":[2386,2384,2385,2387,69,913,195,17,23],"class_list":["post-14105","post","type-post","status-publish","format-standard","hentry","category-security","category-update","category-windows","tag-kb4550961","tag-kb4550964","tag-kb4550965","tag-kb4550970","tag-security","tag-server","tag-update","tag-windows-7","tag-windows-8-1"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/14105","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=14105"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/14105\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=14105"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=14105"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=14105"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}