Archive for the ‘NOC Services’ Category

Flexis November 2018 Patch Review And Recommendations

  • KB4465659 – 2018-11 Update for Windows Server 2016 for x64-based Systems
  • KB4467691 – 2018-11 Cumulative Update for Windows Server 2016 for x64-based Systems
  • KB4467701 – 2018-11 Security Monthly Quality Rollup for Windows Server 2012 for x64-based Systems
  • KB4467697 – 2018-11 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems
  • KB4467694 – 2018-11 Security Update for Adobe Flash Player for Windows Server 2012 R2 for x64-based Systems
  • KB4467107 – 2018-11 Security Monthly Quality Rollup for Windows Server 2008 R2 for x64-based Systems

 

Impacted Products:

  • Internet Explorer
  • Microsoft Edge
  • Microsoft Windows
  • Microsoft Office and Microsoft Office Services and Web Apps
  • .NET Core
  • Skype for Business
  • Azure App Service on Azure Stack
  • Microsoft Dynamics 365 (On-Premises) version 8
  • PowerShell Core

 

Please note the following information regarding the security updates:

  • A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
  • Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
  • Starting in March 2017, a delta package will be available on the Microsoft Update Catalog for Windows 10 version 1607 and newer. This delta package contains just the delta changes between the previous month and the current release.
  • Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
  • For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
  • In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.

 

Microsoft Security Advisories:

  • ADV180025 | November 2018 Adobe Flash Security Update

https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV180025

 

Known Issues:

KB4467691, KB4467696, KB4467686, KB4467702, KB4467107, KB4461529

 

KB4467691 Applies to: Windows 10, version 1607 Windows Server 2016

 https://support.microsoft.com/en-us/help/4467691/windows-10-update-kb4467691

Symptoms: After installing this update, installation and client activation of Windows Server 2019 and 1809 LTSC Key Management Service (KMS) (CSVLK) host keys do not work as expected. After installing this update, Windows Server 2016 promotions that create non-root domains fail in forests in which optional features like Active Directory recycle have been enabled. The error is, “The replication operation encountered a database error”.

Workaround: Microsoft is working on a resolution and will provide an update in an upcoming release.

 

 

KB4467696 Applies to: Windows 10, version 1703

https://support.microsoft.com/en-us/help/4467696/windows-10-update-kb4467696

Symptoms: After you install the August Preview of Quality Rollup or September 11, 2018 .NET Framework update, instantiation of SqlConnection can throw an exception. For more information about this issue, see the following article in the Microsoft Knowledge Base:

Workaround: Microsoft is working on a resolution and will provide an update in an upcoming release.

 

 

KB4467686 Applies to: Windows 10, version 1709

https://support.microsoft.com/en-us/help/4467686/windows-10-update-kb4467686

Symptoms: After you install the August Preview of Quality Rollup or September 11, 2018 .NET Framework update, instantiation of SqlConnection can throw an exception. For more information about this issue, see the following article in the Microsoft Knowledge Base:

Workaround: Microsoft is working on a resolution and will provide an update in an upcoming release.

 

 

KB4467702 Applies to: Windows 10, version 1803

 https://support.microsoft.com/en-us/help/4467702/windows-10-update-kb4467702

 Symptoms: After installing this update, some users cannot set Win32 program defaults for certain app and file type combinations using the Open with… command or Settings > Apps > Default apps.

In some cases, Microsoft Notepad or other Win32 programs cannot be set as the default.

Workaround: In some cases, attempting to set application defaults again will succeed. Microsoft is working on a resolution and estimates a solution will be available in late November 2018.

 

 

KB4467107 Applies to: Windows 7 Service Pack 1 Windows Server 2008 R2 Service Pack 1

 https://support.microsoft.com/en-us/help/4467107/windows-7-update-kb4467107

Symptoms: After you apply this update, the network interface controller may stop working on some client software configurations. This occurs because of an issue related to a missing file, oem<number>.inf. The exact problematic configurations are currently unknown.

Workaround:

  1. To locate the network device, launch devmgmt.msc. It may appear under Other Devices.
  2. To automatically rediscover the NIC and install drivers, select Scan for Hardware Changes from the Action menu.
    • Alternatively, install the drivers for the network device by right-clicking the device and choosing Update. Then choose Search automatically for updated driver software or Browse my computer for driver software.

 

 

KB4461529 Applies to: Outlook 2010 Microsoft Office 2010 Service Pack 2

 https://support.microsoft.com/en-us/help/4461529/description-of-the-security-update-for-outlook-2010-november-13-2018

Symptoms: After you install the 64-bit version of this security update, Outlook may crash on start-up.

Workaround: Microsoft is researching this problem and will post more information in this article when the information becomes available.

 

 

Flexis October 2018 Patch Review And Recommendations

Patches Microsoft released in October 2018

  • KB4462917 – 2018-10 Cumulative Update for Windows Server 2016 for x64-based systems
  • KB4462926 – 2018-10 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems
  • KB4462923 – 2018-10 Security Monthly Quality Rollup for Windows Server 2008 R2 for x64-based Systems
  • KB4463097 – 2018-10 Security Monthly Quality Rollup for Windows Server 2008 for x86-based Systems

 


Impacted Products:

 

  • Internet Explorer
  • Microsoft Edge
  • Microsoft Windows
  • Microsoft Office and Microsoft Office Services and Web Apps
  • .NET Core
  • PowerShell Core
  • SQL Server Management Studio
  • Microsoft Exchange Server
  • Azure IoT Edge

 

Please note the following information regarding the security updates:

 

  • Customers running Windows 7 or Windows Server 2008 R2 need to ensure they have Servicing Stack Update (SSU) 3177467 installed before installing the October 2018 security updates, to avoid a failure to install. See Microsoft Knowledge Base Article 3177467for more information about this SSU.
  • Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
  • Starting in March 2017, a delta package will be available on the Microsoft Update Catalog for Windows 10 version 1607 and newer. This delta package contains just the delta changes between the previous month and the current release.
  • Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
  • For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
  • In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.

 

Microsoft Security Advisories:

  • ADV180026 | Microsoft Office Defense in Depth Update

https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV180026

 

Known Issues:

KB4459266, KB4462917, KB4462923, KB4092470, KB4461450

 

KB4459266 Applies to: Exchange Server 2016, Exchange Server 2013

 

https://support.microsoft.com/en-us/help/4459266/description-of-the-security-update-for-microsoft-exchange-server-2013

Symptoms: When you try to manually install this security update in “normal mode” (not running the update as an administrator) by double-clicking the update file (.msp), some files are not correctly updated. When this issue occurs, you do not receive an error message or any indication that the security update was not correctly installed. Also, Outlook Web Access (OWA) and the Exchange Control Panel (ECP) may stop working. This issue occurs on servers that are using user account control (UAC). The issue occurs because the security update does not correctly stop certain Exchange-related services.

 

Workaround: To avoid this issue, run the security update in elevated mode, as an administrator. To do this, right-click the update file, and then click Run as administrator.

 

 

KB4462917 Applies to: Windows 10, version 1607; Windows Server 2016

 

https://support.microsoft.com/en-us/help/4462917/windows-10-update-kb4462917

 

Symptoms: After installing this update, installing Window Server 2019 Key Management Service (KMS) host keys (CSVLK) on Window Server 2016 KMS hosts does not work as expected.

 

Workaround: Microsoft is working on a resolution and will provide an update in an upcoming release.

 

 

KB4462923 Applies to: Applies to: Windows 7 Service Pack 1; Windows Server 2008 R2 Service Pack 1

 

https://support.microsoft.com/en-us/help/4462923/windows-7-update-kb4462923

 

Symptoms: After you apply this update, the network interface controller may stop working on some client software configurations. This occurs because of an issue related to a missing file, oem<number>.inf. The exact problematic configurations are currently unknown.

 

Workaround:

  1. To locate the network device, launch devmgmt.msc. It may appear under Other Devices.
  2. To automatically rediscover the NIC and install drivers, select Scan for Hardware Changes from the Action menu.
  • Alternatively, install the drivers for the network device by right-clicking the device and choosing Update. Then choose Search automatically for updated driver software or Browse my computer for driver software.

 

KB4092470 Applies to: Microsoft SharePoint Server 2013 Service Pack 1

 

https://support.microsoft.com/en-us/help/4092470/description-of-the-security-update-for-sharepoint-enterprise-server

 

Symptoms: When you try to move document sets to a records center after applying KB4092470, you may see an unexpected error.

 

Workaround: To resolve this issue, install the October 9, 2018, cumulative update for SharePoint Enterprise Server 2013 (KB4461458).

 

 

KB4461450 Applies to: Microsoft SharePoint Server 2013 Service Pack 1

 

https://support.microsoft.com/en-us/help/4461450/description-of-the-security-update-for-sharepoint-enterprise-server

 

Symptoms: When you try to move document sets to a records center after applying KB4461450, you may see an unexpected error.

 

Workaround: To resolve this issue, install the October 9, 2018, cumulative update for SharePoint Enterprise Server 2013 (KB4461458).

 

 

New Autotask PSA Features Enable MSPs to Improve Resource Allocation and Enhance Client Collaboration

Datto announced the latest update to Autotask PSA, Datto’s Autotask PSA 2018.2, on September 26, 2018. The new release will provide a highly configurable ticketing and timekeeping functionality, redesigned Client Portal homepage, and new contract visibility options.

 

Features of Autotask PSA 2018.2 include:

 

  • Start/End Time-off Requests: Technicians can request time off for specific time frames.

 

  • Configurable Time Entries for Tickets: The time entry screen will be configurable with additional quick edit fields, such as Queue and Due Date.

 

  • Re-designed Client Portal Homepage: Clients can access the Client Portal with a new friendly URL with a view of open Service Tickets and Projects.

 

  • New Contract Visibility Options:The Visibility options (no visibility, limited, or full) ensures staff and clients to only see the minimum level of contract information needed.

 

Read more by clicking here.

Flexis September 2018 Patch Review And Recommendations

Below are the patches approved in our NOC monthly patch testing procedure.

  • KB4457131 – 2018-09 Cumulative Update for Windows Server 2016 for x64-based systems
  • KB4457129 – 2018-09 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems
  • KB4457129 – 2018-09 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems
  • KB4458010 – 2018-09 Security Monthly Quality Rollup for Windows Server 2008 for x86-based System
  • KB4457144 – 2018-09 Security Monthly Quality Rollup for Windows Server 2008 R2 for x64-based Systems

 

Impacted Products:

  • Internet Explorer
  • Microsoft Edge
  • Microsoft Windows
  • Microsoft Office and Microsoft Office Services and Web Apps
  • Adobe Flash Player
  • .NET Framework
  • Microsoft Data OData
  • NET

 

Please note the following information regarding the security updates:

 

  • Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
  • Starting in March 2017, a delta package will be available on the Microsoft Update Catalog for Windows 10 version 1607 and newer. This delta package contains just the delta changes between the previous month and the current release.
  • Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
  • For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
  • In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.

 

Microsoft Security Advisories:

  • ADV180022 | Windows Denial of Service Vulnerability

https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV180022

  • ADV180023 | September 2018 Adobe Flash Security Update

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180023

 

Known Issues:

KB4457128, KB4457144, KB4458321

 

KB4457128 Applies to: Windows 10, version 1803

 

https://support.microsoft.com/en-us/help/4457128/windows-10-update-kb4457128

 

Symptoms: An issue that causes the Program Compatibility Assistant (PCA) service to have excessive CPU usage. This occurs when the concurrency of two simultaneous add and remove programs (ARP) monitoring threads is not handled correctly.

 

Workaround: Microsoft is currently not aware of any issues with this update.

 

 

KB4457144 Applies to: Windows 7 Service Pack 1 and Windows Server 2008 R2 Service Pack 1

 

https://support.microsoft.com/en-us/help/4457144/windows-7-update-kb4457144

 

Symptoms: After you apply this update, the network interface controller may stop working on some client software configurations. This occurs because of an issue related to a missing file, oem<number>.inf. The exact problematic configurations are currently unknown.

 

Workaround:

  • To locate the network device, launch devmgmt.msc; it may appear under Other Devices.
  • To automatically rediscover the NIC and install drivers, select Scan for Hardware Changes from the Action menu.
  1. a. Alternatively, install the drivers for the network device by right-clicking the device and selecting Update. Then select Search automatically for updated driver software or Browse my computer for driver software.

 

KB4458321 Applies to: Exchange Server 2010 Service Pack 3

 

https://support.microsoft.com/en-us/help/4458321/update-rollup-24-for-exchange-server-2010-service-pack-3

 

Symptoms: When you try to manually install this security update in “normal mode” (not running the update as an administrator) and by double-clicking the update file (.msp), some files are not correctly updated. When this issue occurs, you do not receive an error message or any indication that the security update is not correctly installed. Also, Outlook Web Access (OWA) and the Exchange Control Panel (ECP) may stop working. This issue occurs on servers that are using user account control (UAC). The issue occurs because the security update does not correctly stop certain Exchange-related services.

 

Workaround: To avoid this issue, run the security update in elevated mode, as an administrator. To do this, right-click the update file, and then click Run as administrator.

Flexis August 2018 Patch Review And Recommendations

All patches are approved in our NOC monthly patch testing procedure.

  • KB4343898 – 2018-08 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems
  • KB4343898 – Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems
  • KB4338380 – 2018-08 security Update for windows server 2008 for x86 based Systems
  • KB4340937 – 2018-08 security Update for windows server 2008 for x86 based Systems
  • KB4340939 – 2018-08 security Update for windows server 2008 for x86 based Systems
  • KB4341832 – 2018-08 security Update for windows server 2008 for x86 based Systems
  • KB4343674 – 2018-08 security Update for windows server 2008 for x86 based Systems
  • KB4344104 – 2018-08 security Update for windows server 2008 for x86 based Systems
  • KB4343205 – Cumulative Security Update for Internet Explorer 9 for Windows Server 2008
  • KB4343900 – 2018-08 Security Monthly Quality Rollup for Windows Server 2008 R2 for x64-based Systems
  • KB4343205 – Cumulation Security Update for Internet Explorer 11 for Windows server 2008 R2 x64-based systems

 

Impacted Products:

  • Internet Explorer
  • Microsoft Edge
  • Microsoft Windows
  • Microsoft Office and Microsoft Office Services and Web Apps
  • Adobe Flash Player
  • .NET Framework
  • Microsoft Exchange Server
  • Microsoft SQL Server
  • Visual Studio

 

Please note the following information regarding the security updates:

  • Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
  • Starting in March 2017, a delta package will be available on the Microsoft Update Catalog for Windows 10 version 1607 and newer. This delta package contains just the delta changes between the previous month and the current release.
  • Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
  • For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
  • In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.

 

Microsoft Security Advisories:

  • ADV180016 | Microsoft Guidance for Lazy FP State Restore

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180016

  • ADV180018 | Microsoft Guidance to mitigate L1TF variant

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180018

  • ADV180020 | August 2018 Adobe Flash Security Update

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180020

 

Known Issues:

KB4340731, KB4340733, KB4343897, KB4343900, KB4343887

 

KB4343897 Applies to: Windows 10, version 1709

https://support.microsoft.com/en-us/help/4343897/windows-10-update-kb4343897

 

Symptoms: Some non-English platforms may display the following string in English instead of the localized language: ”Reading scheduled jobs from file is not supported in this language mode.” This error appears when you try to read the scheduled jobs you’ve created and Device Guard is enabled

 

Workaround: Microsoft is working on a resolution and will provide an update in an upcoming release.

 

 

KB4343900 Applies to: Windows 7 Service Pack 1Windows Server 2008 R2 Service Pack 1

https://support.microsoft.com/en-us/help/4343900/windows-7-update-kb4343900

 

Symptoms: There is an issue with Windows and third-party software that is related to a missing file (oem<number>.inf). Because of this issue, after you apply this update, the network interface controller will stop working.

 

Workaround:

  • To locate the network device, launch devmgmt.msc; it may appear under Other Devices.
  • To automatically rediscover the NIC and install drivers, select Scan for Hardware Changes from the Action menu.
  1. a. Alternatively, install the drivers for the network device by right-clicking the device and selecting Update. Then select Search automatically for updated driver software or Browse my computer for driver software.

 

 

KB4340731 Applies to: Exchange Server 2010 Enterprise Exchange Server 2013 Enterprise Exchange Server 2016 Enterprise Edition

https://support.microsoft.com/en-us/help/4340731/description-of-the-security-update-for-microsoft-exchange-server-2013

 

Symptoms: When you try to manually install this security update in “normal mode” (not running the update as an administrator) and by double-clicking the update file (.msp), some files are not correctly updated. When this issue occurs, you do not receive an error message or any indication that the security update is not correctly installed. Also, Outlook Web Access (OWA) and the Exchange Control Panel (ECP) may stop working. This issue occurs on servers that are using user account control (UAC). The issue occurs because the security update does not correctly stop certain Exchange-related services.

 

Workaround: To avoid this issue, run the security update in elevated mode, as an administrator. To do this, right-click the update file, and then click Run as administrator.

 

 

KB4340733 Applies to: Exchange Server 2010 Enterprise

https://support.microsoft.com/en-us/help/4340733/update-rollup-23-for-exchange-server-2010-service-pack-3

 

Symptoms: When you try to manually install this security update in “normal mode” (not running the update as an administrator) and by double-clicking the update file (.msp), some files are not correctly updated. When this issue occurs, you do not receive an error message or any indication that the security update is not correctly installed. Also, Outlook Web Access (OWA) and the Exchange Control Panel (ECP) may stop working. This issue occurs on servers that are using user account control (UAC).

 

Workaround: The issue occurs because the security update does not correctly stop certain Exchange-related services. To avoid this issue, run the security update in elevated mode, as an administrator. To do this, right-click the update file, and then click Run as administrator.

 

KB4343887 Applies to: Windows 10, version 1607, Windows Server 2016

 

https://support.microsoft.com/en-us/help/4343887/windows-10-update-kb4343887

 Symptoms: This security issue has been identified in Microsoft software product that could affect your system with high CPU utilization.

Workaround: Microsoft is working on a resolution and will provide an update in an upcoming release but for the time being please avoid this patch.

 

Autotask Endpoint Management (AEM) 6.0.0 release notes

Some of features that are included in the AEM 6.0.0 release are:

 

  • A new and flexible report schedulerand new reports
  • A new device patch statussystem and improved patch management
  • A universal antivirus audit
  • An improved Device Summaryand Device Audit page and a flexible job scheduler.
  • A new end user ticketing experiencefor customers who use the Autotask PSA Integration.

 

 

Continue reading here.

 

Veeam Suite 9.5 Update 3a has just been released!

Platform support has been extended to support a wider range in the Update 3a release. It will bring support for the latest VMware and Microsoft platforms. The new platforms supported by Veeam Backup & Replication are:

  • VMware vSphere 6.7
  • VMware vCloud Director 9.1
  • Preliminary support for VMware vSphere 6.5 U2  (See more below)
  • Microsoft Windows Server 1803
  • Microsoft Windows Hyper-V Server 1803
  • Microsoft Windows 10 April 2018 Update
  • VMware Cloud on AWS version 1.3
  • Microsoft System Center Virtual Machine Manager 1801

 

To get full details on Suite 9.5 Update 3a, read here.

Veeam Backup for Microsoft Office 365 v2: SharePoint and OneDrive support

Veeam Backup offers Microsoft solutions enabling MSPs to have control over their data across Exchange Online, SharePoint Online and OneDrive for Business.

  • Enhance Protection of Office 365 data like One Drive for Business and SharePoint
  • Quickly restore individual Office 365 files
  • Meet legal and compliance requirements

 

Check out the functionality added to version 2:

  • Major ease-of-use and backup flexibility improvements
  • Restore data located in Microsoft Teams!
  • Compare items with Veeam Explorer for Microsoft Exchange
  • Maximum number of Exchange Online users: 10
  • Maximum number of OneDrive for Business users: 10 users associated with the same 10 Exchange Online users
  • Maximum amount of SharePoint data protected: 1TB
  • Best effort support

 

Find out more here.

Flexis July 2018 Patch Review and Recommendations

7/23 UpdateMicrosoft released new patches/updates to fix the issues in the current month patch release. The fixes appears to be working and safe to install. It is important to note that while Exchange server issue is resolved with the updated patches, the Azure ADConnect service issue is still not fixed (listed below in known issues) . Here is the link with details for exchange patch issue:

https://blogs.technet.microsoft.com/exchange/2018/07/16/issue-with-july-updates-for-windows-on-an-exchange-server/

Update: There were number of issues reported in this month cumulative/roll up patches. Microsoft pulled then re-released a number of patches. We recommend delaying patch installation until Monday July 23rd.

 

All patches are approved as per our patch testing procedure.

  • KB4338814 – 2018-07 Security Monthly Quality Rollup for Windows Server 2016 for x64-based Systems
  • KB4338815 – 2018-07 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems
  • KB4338815 – 2018-07 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems
  • KB4340558 – 2018-07 Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows 8.1 and Server 2012 R2 for x64
  • KB4338832 – 2018-07 Security Update for Adobe Flash Player for Windows Server 2012 R2 for x64-based Systems
  • KB4291391 – 2018-07 Security Update for Windows Server 2008 for x86-based Systems
  • KB4293756 – 2018-07 Security Update for Windows Server 2008 for x86-based Systems
  • KB4295656 – 2018-07 Security Update for Windows Server 2008 for x86-based Systems
  • KB4339291 – 2018-07 Security Update for Windows Server 2008 for x86-based Systems
  • KB4339503 – 2018-07 Security Update for Windows Server 2008 for x86-based Systems
  • KB4339854 – 2018-07 Security Update for Windows Server 2008 for x86-based Systems
  • KB4340583 – 2018-07 Security Update for Windows Server 2008 for x86-based Systems
  • KB4340559 – 2018-07 Security and Quality Rollup for .NET Framework 2.0, 3.0, 4.5.2, 4.6 for Windows Server 2008 SP2
  • KB4339093 – Cumulative Security Update for Internet Explorer 9 for Windows Server 2008
  • KB4338818 – 2018-07 security Monthly Quality Rollup for Windows Servers 2008 R2 for x64-based systems

 

Impacted Products:

  • Internet Explorer
  • Microsoft Edge
  • Microsoft Windows
  • Microsoft Office and Microsoft Office Services and Web Apps
  • Adobe Flash Player
  • .NET Framework
  • ASP.NET
  • Skype for Business and Microsoft Lync
  • PowerShell Editor Services
  • PowerShell Extension for Visual Studio Code
  • Web Customizations for Active Directory Federation Services.

 

Please note the following information regarding the security updates:

  • Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
  • Starting in March 2017, a delta package will be available on the Microsoft Update Catalog for Windows 10 version 1607 and newer. This delta package contains just the delta changes between the previous month and the current release.
  • Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
  • For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
  • In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.

 

Microsoft Security Advisories:

  • ADV180017 | July 2018 Adobe Flash Security Update

          https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180017

  • ADV180002 | Guidance to mitigate speculative execution side-channel vulnerabilities

          https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180002

  • CVE-2018-8289 | Microsoft Edge Information Disclosure Vulnerability

          https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8289

 

Known Issues:

KB4338825, KB4338818

 

KB4338825 Applies to: Windows 10, version 1709

https://support.microsoft.com/en-us/help/4338825/windows-10-update-kb4338825

Symptoms: Some non-English platforms may display the following string in English instead of the localized language: “Reading scheduled jobs from file is not supported in this language mode.” This error appears when you try to read the scheduled jobs you’ve created and Device Guard is enabled.

Resolution: Microsoft is working on a resolution and will provide an update in an upcoming release.

Prerequisite: The servicing stack update (SSU) (KB4339420) must be installed before installing the latest cumulative update (LCU) (KB4338825). The LCU will not be reported as applicable until the SSU is installed.

 

KB4338818 Applies to: Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1

https://support.microsoft.com/en-us/help/4338818/windows-7-update-kb4338818

Symptoms: There is an issue with Windows and third-party software related to a missing file (oem<number>.inf). After you apply this update, the network interface controller will stop working.

Workaround:

  1. To locate the network device, launch devmgmt.msc; it may appear under Other Devices.
  2. To automatically rediscover the NIC and install drivers, select Scan for Hardware Changes from the Action menu

Alternatively, install the drivers for the network device by right-clicking the device and selecting Update. Then select Search automatically for updated driver software or Browse my computer for driver software.

 

How to Fix microsoft.online.reporting.monitoringagent.startup High CPU

After installing the latest cumulative Windows Update patch, some people are experiencing high CPU issues being used by the “Azure AD Connect Health Sync Monitor” (microsoft.online.reporting.monitoringagent.startup) (AzureADConnectHealthSyncMonitor) version 1.1.819.0.

If you have the Azure AD Connect utility installed on a server, this is a service that goes along with it. According to Microsoft, they will be releasing an update to the Azure AD Connect Utility to resolve this issue, but there is no ETA yet for this update. There are two options you have to temporarily resolve the high CPU issues. The first option is to stop the Azure AD Connect Health Sync Monitor service and set it to manual until the updated utility is released. The second option is to remove the latest patches you installed on the server.

Flexis June 2018 Patch Review and Recommendations

All patches are approved in our patch testing procedure.

  • KB4284880 – 2018-06 Cumulative Update for Windows Server 2016 for x64-based systems
  • KB4284815 – 2018-06 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems
  • KB4284855 – 2018-06 Security Monthly Quality Rollup for Windows Server 2012 for x64-based Systems
  • KB4093227 – 2018-06 security Update for Windows Server 2008 for x86 Based system
  • KB4130956 – 2018-06 security Update for Windows Server 2008 for x86 Based system
  • KB4230467 – 2018-06 security Update for Windows Server 2008 for x86 Based system
  • KB4234459 – 2018-06 security Update for Windows Server 2008 for x86 Based system
  • KB4294413 – 2018-06 security Update for Windows Server 2008 for x86 Based system

 

 Impacted Products:

  • Internet Explorer
  • Microsoft Edge
  • Microsoft Windows
  • Microsoft Office and Microsoft Office Services and Web Apps
  • Adobe Flash Player
  • Microsoft Exchange Server

 

In addition, Microsoft released the following advisory:

Microsoft Security Advisory 4338110

Please note the following information regarding the security updates:

  • There are prerequisites for the new Microsoft Exchange Server release. Please see: 4295081 and Exchange Blog
  • Windows 10 version 1607 and Windows Server 2016 users must install KB4132216 prior to installing the June 2018 cumulative security update. See 4132216 for more information.
  • Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
  • Starting in March 2017, a delta package will be available on the Microsoft Update Catalog for Windows 10 version 1607 and newer. This delta package contains just the delta changes between the previous month and the current release.
  • Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
  • For information on lifecycle and support dates for Windows 10 operating systems, see Windows Lifecycle Facts Sheet.
  • In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
  • After installing the June security updates, customers may need to complete one or more manual steps to be fully protected. See the following:

 

Microsoft Security Advisories

ADV180010 | June 2018 Oracle Outside In Library Security Update

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180010

ADV180015 | Microsoft Office Defense in Depth Update

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180015

 

Security Update Guide

https://portal.msrc.microsoft.com/en-us/security-guidance

 

Known Issues

KB4284880, KB4284819, KB4284835, KB4284826, KB4284867

 

KB4284880 Applies to: Windows 10 Version 1607, Windows Server 2016

https://support.microsoft.com/en-us/help/4284880/windows-10-update-kb4284880

The servicing stack update (SSU) (KB4132216) must be installed prior to installing the latest cumulative update (LCU) (KB4284880). The LCU will not be reported as applicable until the SSU is installed.

 

KB4284819 Applies to: Windows 10 version 1709

https://support.microsoft.com/en-us/help/4284819/windows-10-update-kb4284819

Symptom: Some non-English platforms may display the following string in English instead of the localized language: “Reading scheduled jobs from file is not supported in this language mode.” This error appears when you try to read the scheduled jobs you’ve created, and Device Guard is enabled.

Resolution: Microsoft is working on a resolution and will provide an update in an upcoming release.

Symptom: When Device Guard is enabled, some non-English platforms may display the following strings in English instead of the localized language:

  • “Cannot use ‘&’ or ‘.’ operators to invoke a module scope command across language boundaries.”
  • “‘Script’ resource from ‘PSDesiredStateConfiguration’ module is not supported when Device Guard is enabled. Please use ‘Script’ resource published by PSDscResources module from PowerShell Gallery.”

Resolution: Microsoft is working on a resolution and will provide an update in an upcoming release.

 

KB4284835 Applies to: Windows 10 version 1803

https://support.microsoft.com/en-us/help/4284835/windows-10-update-kb4284835

Symptom: Some users running Windows 10 version 1803 may receive an error “An invalid argument was supplied” when accessing files or running programs from a shared folder using the SMBv1 protocol.

Workaround: Enable SMBv2 or SMBv3 on both the SMB server and the SMB client, as described in KB2696547.

Microsoft is working on a resolution that will be available later in June.

 

KB4284826 / KB4284867 Applies to: Windows 7 SP1, Windows Server 2008 R2 SP1

https://support.microsoft.com/en-us/help/4284826/windows-7-update-kb4284826

Symptom: A stop error occurs on computers that don’t support Streaming Single Instructions Multiple Data (SIMD) Extensions 2 (SSE2).

Resolution: Microsoft is working on a resolution and will provide an update in an upcoming release.

 

https://support.microsoft.com/en-us/help/4284867/windows-7-update-kb4284867

Symptom: There is an issue with Windows and third-party software that is related to a missing file (oem<number>.inf).  After you apply this update, the network interface controller will stop working.

Workaround:

Below is recommended workaround till Microsoft provides resolution

1) To locate the network device, launch devmgmt.msc; it may appear under Other Devices.

2) To automatically rediscover the NIC and install drivers, select Scan for Hardware Changes from the Action menu.

  • Alternatively, install the drivers for the network device by right-clicking the device and selecting Update. Then select Search automatically for updated driver software or Browse my computer for driver software.