All patches are approved in our patch testing procedure.
- KB4284880 – 2018-06 Cumulative Update for Windows Server 2016 for x64-based systems
- KB4284815 – 2018-06 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems
- KB4284855 – 2018-06 Security Monthly Quality Rollup for Windows Server 2012 for x64-based Systems
- KB4093227 – 2018-06 security Update for Windows Server 2008 for x86 Based system
- KB4130956 – 2018-06 security Update for Windows Server 2008 for x86 Based system
- KB4230467 – 2018-06 security Update for Windows Server 2008 for x86 Based system
- KB4234459 – 2018-06 security Update for Windows Server 2008 for x86 Based system
- KB4294413 – 2018-06 security Update for Windows Server 2008 for x86 Based system
Impacted Products:
- Internet Explorer
- Microsoft Edge
- Microsoft Windows
- Microsoft Office and Microsoft Office Services and Web Apps
- Adobe Flash Player
- Microsoft Exchange Server
In addition, Microsoft released the following advisory:
Microsoft Security Advisory 4338110
Please note the following information regarding the security updates:
- There are prerequisites for the new Microsoft Exchange Server release. Please see: 4295081 and Exchange Blog
- Windows 10 version 1607 and Windows Server 2016 users must install KB4132216 prior to installing the June 2018 cumulative security update. See 4132216 for more information.
- Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
- Starting in March 2017, a delta package will be available on the Microsoft Update Catalog for Windows 10 version 1607 and newer. This delta package contains just the delta changes between the previous month and the current release.
- Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
- For information on lifecycle and support dates for Windows 10 operating systems, see Windows Lifecycle Facts Sheet.
- In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
- After installing the June security updates, customers may need to complete one or more manual steps to be fully protected. See the following:
- After installing the updates for SharePoint Foundation 2013 Service Pack 1 or SharePoint Enterprise Server 2016, customers need to run psconfig.exe. See “Why we recommend / require to run the Configuration Wizard also for Security fixes”.
Microsoft Security Advisories
ADV180010 | June 2018 Oracle Outside In Library Security Update
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180010
ADV180015 | Microsoft Office Defense in Depth Update
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180015
Security Update Guide
https://portal.msrc.microsoft.com/en-us/security-guidance
Known Issues
KB4284880, KB4284819, KB4284835, KB4284826, KB4284867
KB4284880 Applies to: Windows 10 Version 1607, Windows Server 2016
https://support.microsoft.com/en-us/help/4284880/windows-10-update-kb4284880
The servicing stack update (SSU) (KB4132216) must be installed prior to installing the latest cumulative update (LCU) (KB4284880). The LCU will not be reported as applicable until the SSU is installed.
KB4284819 Applies to: Windows 10 version 1709
https://support.microsoft.com/en-us/help/4284819/windows-10-update-kb4284819
Symptom: Some non-English platforms may display the following string in English instead of the localized language: “Reading scheduled jobs from file is not supported in this language mode.” This error appears when you try to read the scheduled jobs you’ve created, and Device Guard is enabled.
Resolution: Microsoft is working on a resolution and will provide an update in an upcoming release.
Symptom: When Device Guard is enabled, some non-English platforms may display the following strings in English instead of the localized language:
- “Cannot use ‘&’ or ‘.’ operators to invoke a module scope command across language boundaries.”
- “‘Script’ resource from ‘PSDesiredStateConfiguration’ module is not supported when Device Guard is enabled. Please use ‘Script’ resource published by PSDscResources module from PowerShell Gallery.”
Resolution: Microsoft is working on a resolution and will provide an update in an upcoming release.
KB4284835 Applies to: Windows 10 version 1803
https://support.microsoft.com/en-us/help/4284835/windows-10-update-kb4284835
Symptom: Some users running Windows 10 version 1803 may receive an error “An invalid argument was supplied” when accessing files or running programs from a shared folder using the SMBv1 protocol.
Workaround: Enable SMBv2 or SMBv3 on both the SMB server and the SMB client, as described in KB2696547.
Microsoft is working on a resolution that will be available later in June.
KB4284826 / KB4284867 Applies to: Windows 7 SP1, Windows Server 2008 R2 SP1
https://support.microsoft.com/en-us/help/4284826/windows-7-update-kb4284826
Symptom: A stop error occurs on computers that don’t support Streaming Single Instructions Multiple Data (SIMD) Extensions 2 (SSE2).
Resolution: Microsoft is working on a resolution and will provide an update in an upcoming release.
https://support.microsoft.com/en-us/help/4284867/windows-7-update-kb4284867
Symptom: There is an issue with Windows and third-party software that is related to a missing file (oem<number>.inf). After you apply this update, the network interface controller will stop working.
Workaround:
Below is recommended workaround till Microsoft provides resolution
1) To locate the network device, launch devmgmt.msc; it may appear under Other Devices.
2) To automatically rediscover the NIC and install drivers, select Scan for Hardware Changes from the Action menu.
- Alternatively, install the drivers for the network device by right-clicking the device and selecting Update. Then select Search automatically for updated driver software or Browse my computer for driver software.