Patches are just coming out. Small business guidance up first: Exchange has an update. This time I’m ignoring any guidance that might say “targeted at
[See the full post at: April Patch Tuesday out – Exchange once again]
Susan Bradley Patch Lady
![]() |
There are isolated problems with current patches, but they are well-known and documented on this site. |
SIGN IN | Not a member? | REGISTER | PLUS MEMBERSHIP |
Home » Forums » Newsletter and Homepage topics » April Patch Tuesday out – Exchange once again
Patches are just coming out. Small business guidance up first: Exchange has an update. This time I’m ignoring any guidance that might say “targeted at
[See the full post at: April Patch Tuesday out – Exchange once again]
Susan Bradley Patch Lady
AKB 2000003 has been updated for Group B Win7 (ESU) and Win8.1 on April 13, 2021.
There is a Security-only Update for those with Win7 ESU subscriptions.
There was no April IE11 CU for Win7.
April Rollup KB5001335 Download 32-bit or 64-bit. for those with Win7 ESU subscriptions.
You must have at least the August Servicing Stack KB4570673 previously installed to receive these updates).
The latest is the December Servicing Stack KB4592510 – Download 32-bit or 64-bit for those with Win7 ESU subscriptions.
There is a revised Licensing Preparation Package KB4575903 dated 7/29/2020 for Win7 ESU subscriptions, if you need it.
There were no new .NET updates listed for Win7. See #2357362.
There is a Time Zone Change update for The Republic of South Africa and Sudan KB4601275 for Win7 and Win8.1 if you want to install it.
There was also an SSU issued for Win8.1 kb5001403 to add to AKB2000003
WaaS = Windows as a Syphon...suckers!
KB5001330 Cumulative Update for Windows 10 Version 20H2 for x64-based Systems
and the Malicious Software Removal Tool.
No hiccups.
KB5001330 Cumulative Update for Windows 10 Version 20H2 for x64-based Systems and the Malicious Software Removal Tool. No hiccups.
My NAS got the push last night. Everything’s copacetic.
Updated the B side of my dual boot today.
No hiccups.
KB5001330 Cumulative Update for Windows 10 Version 20H2 for x64-based Systems and the Malicious Software Removal Tool. No hiccups.
+1 Same …….. I Never Read that WUMgr Only retains Update History when closed / other boxes = 0’s when re-opened, and a New Scan Re-stocks the data in other boxes. Thought it was broken when first tried, so I like it having learned the rules of the game. Oddity, Update History ALWAYS shows CU installs as IN PROGRESS, yet Installed Updates shows CU’s “Installed”.
W10 Pro 22H2 / Hm-Stdnt Ofce '16 C2R / HP Envy Desk-Ethernet - SSD-HDD/ i5(8th Gen) 12GB / GP=2 + FtrU=Semi-Annual + Feature Defer = 1 + QU=0
And yet again there are security updates for Office 2010, for the 6th month in a row after EOL in October 2020! I am not complaining, because due to circumstances I have not been able to upgrade to a higher Office version yet.
ASRock Beebox J3160 - Win7 Ultimate x64
Asus VivoPC VC62B - Win7 Ultimate x64
Dell Latitude E6430 - Win7 Ultimate x64
Dell Latitude XT3 - Win7 Ultimate x86
Asus H170 Pro Gaming - Win10 Pro 20H2 x64
Ghacks has detailed rundown list of April’s updates.
As usual the most recent W10 versions (Windows 10 versions 2004 and 20H2) are the “stars” with highest number of vulnerabilities :
79 vulnerabilities, 14 critical and 64 important and 1 moderate
I will try to be as little gleeful as I can.
The funny fact for me is, that below every Windows 10 build, in the list of critical vulnerabilities, there is written:
same as Windows 7
Now someone could tell me, how this is coincidence. What was the point of moving to W10? I understand that the newer build it is, the more bugs it can contain. But I cant see the “added value” here when moving from W7 to W10. I get more vulnerabilities? Thats in direct opposite of MSFT is promising, isnt it? I apologize for being such pesimist once again, but this is what comes to my mind, when I see those numbers.
I have KB5001342 and KB5001404 in my queue waiting for restart. KB2267602 for Windows Defender definition update installed already.
Win 10 1809 Enterprise here.
Dell Latitude E6530, Intel Core i5 @ 2.6 GHz, 4GB RAM, W10 20H2 Enterprise
HAL3000, AMD Athlon 200GE @ 3,4 GHz, 8GB RAM, Fedora 29
PRUSA i3 MK3S+
I understand that the newer build it is, the more bugs it can contain.
…
Thats in direct opposite of MSFT is promising, isnt it?
Where did Microsoft promise less bugs in Windows 10?
Windows 11 Pro version 22H2 build 22621.1194 + Microsoft 365/Edge
For example here. Link
And also if you turn the PC for the first time (OOBE).
And with every new build upgrade.
The newer build is, the more vulnerabilities are found. That does not sound too secure.
I wrote:
I get more vulnerabilities? Thats in direct opposite of MSFT is promising, isnt it?
Dell Latitude E6530, Intel Core i5 @ 2.6 GHz, 4GB RAM, W10 20H2 Enterprise
HAL3000, AMD Athlon 200GE @ 3,4 GHz, 8GB RAM, Fedora 29
PRUSA i3 MK3S+
You must be logged in to access attached files.
..It is important to note that since SUs are cumulative, customers who apply the April updates will also be protected against vulnerabilities reported in March. However, customers with SUs released in March are unprotected against these new security flaws. Microsoft has cautioned that unlike last time, it does not plan to release out-of-band SUs for unsupported versions of Exchange Server. There are 47 old CUs affected by this flaw and it’s not possible for Microsoft to invest effort in releasing updates for all of them. As such, it recommends updating to a current environment in order to apply the updates. Finally, the company has also noted that SUs have not been released for Exchange Server 2010 as it is unaffected by the latest vulnerabilities. You can find out more about the updates by heading over to Microsoft’s blog post here.
I don’t see any new updates when using the WUShowhide program. I checked last night and this morning, no new updates to hide. I even checked windows update to see if any were installed-but nothing on the list thus far-also I forgot to check around my usual noon time yesterday due to having been busy.
I’ll check the hidden updates for anything. Did we get any new updates or so? Because I see nothing so far.
If you have any Pause set you will not see any updates in wushowhide.
If you have any Quality update deferral set you will not see any updates in wushowhide.
If you have hidden the updates you will not see those updates in wushowhide
If you are using any third-party update blocker you will not see any updates in wushowhide.
wushowhide uses the same Windows Update Service to search for updates that Windows Update “check for updates” uses.
Well, this is interesting. So the FBI is gonna patch exchange for us?
Not updating your critical software? The FBI might just do it for you.</p>
The FBI has begun quietly accessing hundreds of American computers hacked through Microsoft’s Exchange email program, removing malicious code that the hackers left behind.
The operation, which the Department of Justice announced Tuesday it had authorized with a warrant, highlights the severity of the Exchange vulnerability, which allowed scores of hackers to break into organizations since the beginning of the year.
The rest of the story is HERE
"War is the remedy our enemies have chosen. And I say let us give them all they want" ----- William T. Sherman
+1 doriel
“For example here. Link”
I have a number small business customers including payroll accountants who run window 7 pro and Win 8.1 pro and testing win 1909 and this is what they indicate:
Windows 7 customers who follow Group B turned off updates yet still got two or three critical update show in the restore point logs.
Window 8.1 x64 customers who follow Group B turned off updates have no problems . Several customers tested one non-critical Windows 8.1 and they choked but the machines were rolled back successfully – now set to no update “not recommend” and now out of the emergency care ward. No word on the logs yet.
Windows 10 1909 only test machines and script installed to turn off updates and stop the window update service are doing fine but that’s so small a population compared to the rest of the country it is not meaningful. They are waiting for reasonably stable version of Win 10 before upgrading.
Customers running Exchange 2007 or 2010 on a mixture of Server 2008 R2 and Sever 2012 R2 have not updated this month and are fine and no in the wild hacks yet. No word a critical update silently slipped in.
None of the above have ESU or run ESU scripts.
Trouble around the corner regarding the Exchange security updates… failing powershell scripts in PRTG, Netapp SnapManager and other tools and failing EXCH connectivity of admin accounts end with ‘$’:
🙁
KB5001337 on Windows 1909 caused some problems with scroll bars disappearing in some programs, e.g. https://www.vbforums.com/showthread.php?891391-Blank-vertical-scroll-bar-after-Windows-10-update
new April 2021 “preview” patches for 1809 and 1909 released TH April 22:
KB5001396 CU preview for Win10 v1909:
https://support.microsoft.com/help/5001396
KB5003155 SSU for Win10 v1909
https://support.microsoft.com/help/5003155
KB5001384 CU preview for Win10 v1809 education/enterprise/LTSC 2019:
https://support.microsoft.com/help/5001384
KB5001407 SSU for Win10 v1809 education/enterprise/LTSC 2019:
https://support.microsoft.com/help/5001407
new April 2021 “preview” update for 2004, 20H2 & 21H1 released WED April 28:
KB5001391 CU preview for Win10 v2004/20H2 build 1904x.964:
https://support.microsoft.com/help/5001391
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Welcome to our unique respite from the madness.
It's easy to post questions about Windows 11, Windows 10, Win8.1, Win7, Surface, Office, or browse through our Forums. Post anonymously or register for greater privileges. Keep it civil, please: Decorous Lounge rules strictly enforced. Questions? Contact Customer Support.
S | M | T | W | T | F | S |
---|---|---|---|---|---|---|
1 | 2 | 3 | 4 | |||
5 | 6 | 7 | 8 | 9 | 10 | 11 |
12 | 13 | 14 | 15 | 16 | 17 | 18 |
19 | 20 | 21 | 22 | 23 | 24 | 25 |
26 | 27 | 28 |
Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.
Mastodon profile for DefConPatch
Mastodon profile for AskWoody
Home • About • FAQ • Posts & Privacy • Forums • My Account
Register • Free Newsletter • Plus Membership • Gift Certificates • MS-DEFCON Alerts
Copyright ©2004-2023 by AskWoody Tech LLC. All Rights Reserved.