Below are the patches approved in our NOC monthly patch testing procedure.
- KB4457131 – 2018-09 Cumulative Update for Windows Server 2016 for x64-based systems
- KB4457129 – 2018-09 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems
- KB4457129 – 2018-09 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems
- KB4458010 – 2018-09 Security Monthly Quality Rollup for Windows Server 2008 for x86-based System
- KB4457144 – 2018-09 Security Monthly Quality Rollup for Windows Server 2008 R2 for x64-based Systems
Impacted Products:
- Internet Explorer
- Microsoft Edge
- Microsoft Windows
- Microsoft Office and Microsoft Office Services and Web Apps
- Adobe Flash Player
- .NET Framework
- Microsoft Data OData
- NET
Please note the following information regarding the security updates:
- Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
- Starting in March 2017, a delta package will be available on the Microsoft Update Catalog for Windows 10 version 1607 and newer. This delta package contains just the delta changes between the previous month and the current release.
- Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
- For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
- In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
Microsoft Security Advisories:
- ADV180022 | Windows Denial of Service Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV180022
- ADV180023 | September 2018 Adobe Flash Security Update
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180023
Known Issues:
KB4457128, KB4457144, KB4458321
KB4457128 Applies to: Windows 10, version 1803
https://support.microsoft.com/en-us/help/4457128/windows-10-update-kb4457128
Symptoms: An issue that causes the Program Compatibility Assistant (PCA) service to have excessive CPU usage. This occurs when the concurrency of two simultaneous add and remove programs (ARP) monitoring threads is not handled correctly.
Workaround: Microsoft is currently not aware of any issues with this update.
KB4457144 Applies to: Windows 7 Service Pack 1 and Windows Server 2008 R2 Service Pack 1
https://support.microsoft.com/en-us/help/4457144/windows-7-update-kb4457144
Symptoms: After you apply this update, the network interface controller may stop working on some client software configurations. This occurs because of an issue related to a missing file, oem<number>.inf. The exact problematic configurations are currently unknown.
Workaround:
- To locate the network device, launch devmgmt.msc; it may appear under Other Devices.
- To automatically rediscover the NIC and install drivers, select Scan for Hardware Changes from the Action menu.
- a. Alternatively, install the drivers for the network device by right-clicking the device and selecting Update. Then select Search automatically for updated driver software or Browse my computer for driver software.
KB4458321 Applies to: Exchange Server 2010 Service Pack 3
Symptoms: When you try to manually install this security update in “normal mode” (not running the update as an administrator) and by double-clicking the update file (.msp), some files are not correctly updated. When this issue occurs, you do not receive an error message or any indication that the security update is not correctly installed. Also, Outlook Web Access (OWA) and the Exchange Control Panel (ECP) may stop working. This issue occurs on servers that are using user account control (UAC). The issue occurs because the security update does not correctly stop certain Exchange-related services.
Workaround: To avoid this issue, run the security update in elevated mode, as an administrator. To do this, right-click the update file, and then click Run as administrator.