On-premises Microsoft Identity-related updates and fixes for June 2020

Windows Server

Even though Microsoft's Identity focus moves towards the cloud, they are not forgetting their on-premises roots. Windows Server 2016 and Windows Server 2019 still receive updates. These are the updates and fixes we saw for June 2020:

 

Windows Server 2016

We observed the following updates for Windows Server 2016:

KB4561616 June 9, 2020

The June 9, 2020 update for Windows Server 2016 (KB4561616) updating the OS build number to 14393.3750 includes security updates and quality updates.

Two important security issues are addressed in this update. For Domain Controllers that still (need to) offer SMB v1, a remote code execution (RCE) vulnerability (CVE-2020-1301) was addressed. Another Elevation of Privilege vulnerability in Group Policy (CVE-2020-1317) is also addressed. This vulnerability is described in more detail here.

This update also addresses an issue that prevents you from installing some .msi apps. This occurs when a device is managed by a Group Policy that redirects the AppData folder to a network folder.

KB4567517 June 18, 2020

The June 18, 2020 update for Windows Server 2016 (KB4567517) updating the OS build number to 14393.3755 is an update that addresses an issue that might prevent certain printers from printing.

 

Windows Server 2019

We observed the following updates for Windows Server 2019:

KB4561608 June 9, 2020

The June 9, 2020 update for Windows Server 2019 (KB4561608) updating the OS build number to 17763.1282 includes security updates and quality updates.

Two important security issues are addressed in this update. For Domain Controllers that still (need to) offer SMB v1, a remote code execution (RCE) vulnerability (CVE-2020-1301) was addressed. Another Elevation of Privilege vulnerability in Group Policy (CVE-2020-1317) is also addressed. This vulnerability is described in more detail here.

Note:
SMB v1 is disabled by default on Windows Server 2019 installations.

This update also addresses an issue that causes the promotion of a server to a domain controller to fail. This occurs when the Local Security Authority Subsystem Service (LSASS) process is set as Protected Process Light (PPL).

KB4567513 June 16, 2020

The June 16, 2020 update for Windows Server 2019 (KB4567513) updating the OS build number to 17763.1294 is an update that addresses an issue that might prevent certain printers from printing.

leave your comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.