On-premises Identity-related updates and fixes for June 2024

Reading Time: 2 minutes

Windows Serrer

Even though Microsoft’s Identity focus moves towards the cloud, Windows Server 2016, Windows Server 2019 and Windows Server 2022 still receive updates to improve the experiences and security of Microsoft’s on-premises powerhouses.

This is the list of Identity-related updates and fixes we saw for June 2024:

 

Windows Server 2016

We observed the following update for Windows Server 2016:

KB5039214 June 11, 2024

The June 11, 2024, update for Windows Server 2016 (KB5039214), updating the OS build number to 14393.7070, is a monthly cumulative update. It includes the following Identity-related improvements:

  • This update addresses an issue that affects lsass.exe. It stops responding. This occurs after you install the April 2024 security updates on Windows servers.
  • This update addresses an issue that affects lsass.exe. It leaks memory. This occurs during a Local Security Authority (Domain Policy) Remote Protocol (LSARPC) call.

 

Windows Server 2019

We observed the following update for Windows Server 2019:

KB5039217 June 11, 2024

The June 11, 2024, update for Windows Server 2019 (KB5039217), updating the OS build number to 17763.5936, is a monthly cumulative update. It includes the following Identity-related improvements:

  • This update addresses an issue that affects lsass.exe. It stops responding. This occurs after you install the April 2024 security updates on Windows servers.
  • This update addresses an issue that affects lsass.exe. It leaks memory. This occurs during a Local Security Authority (Domain Policy) Remote Protocol (LSARPC) call.

 

Windows Server 2022

We observed the following update for Windows Server 2022:

KB5039227 June 11, 2024

The June 11, 2024, update for Windows Server 2022 (KB5039227), updating the OS build number to 20348.2527, is a monthly cumulative update. It includes the following Identity-related improvements:

  • This update affects Server Message Block (SMB) over Quick UDP Internet Connections (QUIC). It turns on the SMB over QUIC client certificate authentication feature. Admins can use it to restrict which clients can access SMB over QUIC servers.
  • This update addresses an issue that affects lsass.exe. It stops responding. This occurs after you install the April 2024 security updates on Windows servers.
  • This update addresses an issue that affects dsamain.exe. It stops responding. This occurs when the Knowledge Consistency Checker (KCC) runs evaluations.
  • This update addresses an issue that affects lsass.exe. It leaks memory. This occurs during a Local Security Authority (Domain Policy) Remote Protocol (LSARPC) call.

 

KB5041054 June 20, 2024

The June 20, 2024, update for Windows Server 2022 (KB5041054), updating the OS build number to 20348.2529, is an out-of-band update. It does not include Identity-related improvements.

 

leave your comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.