On-premises Identity updates & fixes for December 2019

Windows Server

Even though Microsoft’s Identity focus moves towards the cloud, they are not forgetting their on-premises roots. Windows Server 2016 and Windows Server 2019 still receive updates. These are the updates and fixes we saw for December 2019:

Windows Server 2016

We observed the following updates for Windows Server 2016:

KB4530689 December 10, 2019

The December 10 update for Windows Server 2016 (KB4530689), updating the OS build number to 14393.3384 is an update that combines security and quality improvements.

While this updates contains updates for several vulnerabilities, even some rated critical, none of them are identity-related.

When running Active Directory Domain Controllers as virtual machines on top of Microsoft Hyper-V, two vulnerabilities (CVE-2019-1470 and CVE-2019-1471) are fixed in this update. it is recommended to install this update on the Hyper-V hosts, as these vulnerabilities may be abused to compromise virtual Domain Controllers.

Windows Server 2019

We observed the following updates for Windows Server 2019:

KB45530715 December 10, 2019

The December 10 update for Windows Server 2019 (KB4530715), updating the OS build number to 17763.914 is an update that combines security and quality improvements.

While this updates contains updates for several vulnerabilities, even some rated critical, none of them are identity-related.

When running Active Directory Domain Controllers as virtual machines on top of Microsoft Hyper-V, two vulnerabilities (CVE-2019-1470 and CVE-2019-1471) are fixed in this update. it is recommended to install this update on the Hyper-V hosts, as these vulnerabilities may be abused to compromise virtual Domain Controllers.

leave your comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.