{"id":15320,"date":"2020-08-12T09:38:04","date_gmt":"2020-08-12T07:38:04","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=15320"},"modified":"2022-03-24T00:40:46","modified_gmt":"2022-03-23T23:40:46","slug":"patchday-updates-for-windows-7-server-2008-r2-august-11-2020","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2020\/08\/12\/patchday-updates-for-windows-7-server-2008-r2-august-11-2020\/","title":{"rendered":"Patchday: Updates for Windows 7\/Server 2008 R2 (August 11, 2020)"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline; border-width: 0px;\" title=\"Update\" src=\"https:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2015\/02\/Update.jpg\" alt=\"Windows Update\" width=\"54\" height=\"54\" align=\"left\" border=\"0\" \/>[<a href=\"https:\/\/www.borncity.com\/blog\/2020\/08\/12\/patchday-updates-fr-windows-7-server-2008-r2-11-8-2020\/\" target=\"_blank\" rel=\"noopener noreferrer\">German<\/a>]On August 11, 2020, Microsoft released several (security) updates for Windows 7 SP1 (ESU) and Windows Server 2008 R2. Here is an overview of these updates.<\/p>\n<p><!--more--><\/p>\n<h2>Updates for Windows 7\/Windows Server 2008 R2<\/h2>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/vg05.met.vgwort.de\/na\/a8d169f658744155b8c6ca194c047333\" alt=\"\" width=\"1\" height=\"1\" \/>A rollup and a security-only update have been released for Windows 7 SP1 and Windows Server 2008 R2 SP1.\u00a0 However, these updates are now only available for systems with ESU licenses. The update history for Windows 7 can be found on <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4009469\" target=\"_blank\" rel=\"noopener noreferrer\">this Microsoft site<\/a>. Installation requires installed SHA2 support for successful installation of the security updates.<\/p>\n<blockquote><p>Beginning January 15, 2020, Windows 7 will display a full-screen end-of-support notification in Starter, Home Basic, Home Premium, Professional (without an ESU license), and Ultimate. This must then be closed by the user.<\/p>\n<p>As of January 14, 2020, Windows 7 SP1 and Windows Server 2008 R2 SP1 have reached the end of support and will only receive paid security updates under the ESU program. ESU license holders should visit the <a href=\"https:\/\/docs.microsoft.com\/en-us\/windows\/release-information\/windows-message-center\" target=\"_blank\" rel=\"noopener noreferrer\">Windows Message Center<\/a> for details.<\/p>\n<p>Microsoft last updated the <a href=\"https:\/\/techcommunity.microsoft.com\/t5\/windows-it-pro-blog\/obtaining-extended-security-updates-for-eligible-windows-devices\/ba-p\/1167091\" target=\"_blank\" rel=\"noopener noreferrer\">Techcommunity article on the ESU program<\/a> on February 11, 2020. Please refer to the notes on requirements (SSU, SHA-2). Additionally, for ESU systems, you must manually install the <a href=\"http:\/\/www.catalog.update.microsoft.com\/Search.aspx?q=KB4538483\" target=\"_blank\" rel=\"noopener noreferrer\">KB4538483<\/a> update from the Update Catalog. Furthermore, the update <a href=\"https:\/\/support.microsoft.com\/help\/4538483\/\" target=\"_blank\" rel=\"noopener noreferrer\">KB4538483<\/a> was released in May 2020 (see <a href=\"https:\/\/borncity.com\/win\/2020\/05\/09\/windows-7-esu-update-kb4538483-may-2020\/\">Windows 7 ESU-Update KB4538483 (May 2020)<\/a>)) and the preparatory update <a href=\"https:\/\/support.microsoft.com\/help\/4575903\/\" target=\"_blank\" rel=\"noopener noreferrer\">KB4575903<\/a> was released at the end of July 2020 (see <a href=\"https:\/\/borncity.com\/win\/2020\/08\/01\/windows-7-esu-preparation-package-update-kb4575903-july-31-2020\/\">Windows 7 ESU Preparation Package Update KB4575903 (July 31, 2020)<\/a>)).<\/p>\n<p>Because the updates are provided in the Microsoft Update Catalog, do not attempt to install them on systems that do not have an ESU license. The installation fails and a rollback occurs. But what works: Use the BypassESU method described in the links at the end of this article (see <a href=\"https:\/\/borncity.com\/win\/2020\/03\/05\/windows-7-forcing-february-2020-security-updates-part-1\/\">Windows 7: Forcing February 2020 Security Updates \u2013 Part 1<\/a> \u2013 Teil 1).<\/p><\/blockquote>\n<blockquote><p>Important: Starting in July 2020, all Windows updates disable <a href=\"https:\/\/docs.microsoft.com\/en-us\/windows-server\/virtualization\/hyper-v\/deploy\/deploy-graphics-devices-using-remotefx-vgpu\">RemoteFX vGPU functionality<\/a> due to the <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-us\/vulnerability\/CVE-2020-1036\">CVE-2020-1036<\/a> vulnerability (see also <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4570006\">KB4570006<\/a>).After installing this update, attempts to start virtual machines (VM) with RemoteFX vGPU enabled will fail. More information can be found in the <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4565541\">KB article<\/a> and <a href=\"https:\/\/go.microsoft.com\/fwlink\/?linkid=2131976)\">here<\/a>.<\/p><\/blockquote>\n<h3>KB4571729 (Monthly Rollup) for Windows 7\/Windows Server 2008 R2<\/h3>\n<p>Update <a href=\"https:\/\/support.microsoft.com\/help\/4571729\" target=\"_blank\" rel=\"noopener noreferrer\">KB4571729<\/a> (Monthly Quality Rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1) ontains (besides the security fixes from last month) improvements and bug fixes and addresses the following:<\/p>\n<ul>\n<li>Addresses an issue that prevents you from installing some .msi apps. This occurs when a device is managed by a Group Policy that redirects the AppData folder to a network folder.<\/li>\n<li>Addresses an issue in Microsoft Edge IE Mode when opening multiple documents from a SharePoint site.<\/li>\n<li>Addresses an issue in Microsoft Edge IE Mode that occurs when you browse using anchor links.<\/li>\n<li>Addresses an issue with loading Browser Helper Objects in Microsoft Edge IE Mode.<\/li>\n<li>Addresses an issue where certain applications that rely on the JScript Scripting Engine become unresponsive under load.<\/li>\n<li>Security updates to Windows App Platform and Frameworks, Windows Graphics, Windows Media, Windows Cloud Infrastructure, Windows Authentication, Windows Kernel, Windows Hybrid Cloud Networking, Windows Peripherals, Windows Storage and Filesystems, Windows Network Security and Containers, Windows File Server and Clustering, Windows Hybrid Storage Services, Microsoft Scripting Engine, and Windows SQL components.<\/li>\n<\/ul>\n<p>Compared to the previous months, nothing has changed for ESU systems. This update is automatically downloaded and installed by Windows Update. The package is also available through the <a href=\"https:\/\/www.catalog.update.microsoft.com\/Search.aspx?q=KB4571729\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a> and is distributed via WSUS. For details about requirements and known issues (without ESU, installation fails and there is a \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\" error), see the <a href=\"https:\/\/support.microsoft.com\/help\/4571729\" target=\"_blank\" rel=\"noopener noreferrer\">KB article<\/a>.<\/p>\n<h3>KB4571719 (Security Only) for Windows 7\/Windows Server 2008 R2<\/h3>\n<p>Update <a href=\"https:\/\/support.microsoft.com\/help\/4571719\" target=\"_blank\" rel=\"noopener noreferrer\">KB4571719<\/a> (Security-only update) is available for Windows 7 SP1 and Windows Server 2008 R2 SP1 with ESU license. The update addresses the following items.<\/p>\n<blockquote><p>Security updates to Windows App Platform and Frameworks, Windows Graphics, Windows Media, Windows Cloud Infrastructure, Windows Authentication, Windows Kernel, Windows Hybrid Cloud Networking, Windows Peripherals, Windows Storage and Filesystems, Windows Network Security and Containers, Windows File Server and Clustering, Windows Hybrid Storage Services, Microsoft Scripting Engine, and Windows SQL components.<\/p><\/blockquote>\n<p>The update is available via WSUS or in the <a href=\"http:\/\/catalog.update.microsoft.com\/v7\/site\/Search.aspx?q=KB4571719\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a>. To install the update, you must meet the prerequisites listed in the KB article and in the Rollup Update above. In addition, the security update <a href=\"https:\/\/support.microsoft.com\/help\/4571687\/\">KB4571687<\/a>\u00a0 for IE should also be installed.<\/p>\n<h3>Servicing Stack Update KB4570673<\/h3>\n<p>Microsoft has also released the Servicing Stack Update <a href=\"https:\/\/support.microsoft.com\/help\/4570673\" target=\"_blank\" rel=\"noopener noreferrer\">KB4570673<\/a> for Windows 7\/Server 2008 R2. This is designed to fix problems with Windows Update and is available through Windows Update, the Microsoft Update Catalog, and WSUS.<\/p>\n<p><strong>Similar articles:<br \/>\n<\/strong><a href=\"https:\/\/borncity.com\/win\/2020\/08\/05\/microsoft-office-patchday-4-august-2020\/\">Microsoft Office Patchday (August 4, 2020)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2020\/08\/12\/microsoft-security-update-summary-11-august-2020\/\">Microsoft Security Update Summary (August 11, 2020)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2020\/08\/12\/patchday-windows-10-updates-august-11-2020\/\">Patchday: Windows 10-Updates (August 11, 2020)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2020\/08\/12\/patchday-windows-8-1-server-2012-updates-august-11-2020\/\">Patchday: Windows 8.1\/Server 2012-Updates (August 11, 2020)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2020\/08\/12\/patchday-updates-for-windows-7-server-2008-r2-august-11-2020\/\">Patchday: Updates for Windows 7\/Server 2008 R2 (August 11, 2020)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2020\/08\/13\/patchday-microsoft-office-updates-11-august-2020\/\">Patchday Microsoft Office Updates (August 11, 2020)<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>[German]On August 11, 2020, Microsoft released several (security) updates for Windows 7 SP1 (ESU) and Windows Server 2008 R2. Here is an overview of these updates.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[580,2],"tags":[2195,2537,69,195,17,18],"class_list":["post-15320","post","type-post","status-publish","format-standard","hentry","category-security","category-windows","tag-esu","tag-patchday-8-2020","tag-security","tag-update","tag-windows-7","tag-windows-server-2008-r2"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/15320","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=15320"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/15320\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=15320"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=15320"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=15320"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}