May 2018 Office non-Security updates have been released

Topic

New Reply

The May 2018 Office non-Security updates are now available. Just a reminder – these updates are NOT covered under the April DEFCON-3 umbrella. Unless
[See the full post at: May 2018 Office non-Security updates have been released]

6 users thanked author for this post.

walker, OscarCP, Elly, OldBiddy, Mr. Natural, woody

Reply | Quote

Replies

My WSUS server has been saying:

SoapException: Fault occurred
at System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage message, WebResponse response, Stream responseStream, Boolean asyncCall)
at System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String methodName, Object[] parameters)
at Microsoft.UpdateServices.ServerSyncWebServices.ServerSync.ServerSyncProxy.GetUpdateData(Cookie cookie, UpdateIdentity[] updateIds)
at Microsoft.UpdateServices.ServerSync.CatalogSyncAgentCore.WebserviceGetUpdateData(UpdateIdentity[] updateIds, List1 allMetadata, List1 allFileUrls, List`1& updatesWithSecureFileData, Boolean isForConfig)
at Microsoft.UpdateServices.ServerSync.CatalogSyncAgentCore.GetUpdateDataInChunksAndImport(List<code>1 neededUpdates, List</code>1 allMetadata, List`1 allFileUrls, Boolean isConfigData)
at Microsoft.UpdateServices.ServerSync.CatalogSyncAgentCore.ExecuteSyncProtocol(Boolean allowRedirect)

More quality from MS!

1 user thanked author for this post.

HiFlyer

Reply | Quote

Same..WSUS error:  SoapException: Fault occurred at System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage message, WebResponse response, Stream responseStream, Boolean asyncCall)    at System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String methodName, Object[] parameters)    at Microsoft.UpdateServices.ServerSyncWebServices.ServerSync.ServerSyncProxy.GetUpdateData(Cookie cookie, UpdateIdentity[] updateIds)    at Microsoft.UpdateServices.ServerSync.CatalogSyncAgentCore.WebserviceGetUpdateData(UpdateIdentity[] updateIds, List1 allMetadata, List1 allFileUrls, List1& updatesWithSecureFileData, Boolean isForConfig)    at Microsoft.UpdateServices.ServerSync.CatalogSyncAgentCore.GetUpdateDataInChunksAndImport(List1 neededUpdates, List1 allMetadata, List1 allFileUrls, Boolean isConfigData)    at Microsoft.UpdateServices.ServerSync.CatalogSyncAgentCore.ExecuteSyncProtocol(Boolean allowRedirect)

Reply | Quote

@PKCano…Speaking of updates, I set my system up same as yours as you suggested. Do I have to turn off the metered setting before checking with wushowhide or Windows Mini Tool or will they check and see updates with the metered setting turned on ?  I have already updated April and they’re showing no updates available with metered turned on or off, so I think I have them all already installed.   I also took Susan’s advice and set my Office 365 to the Semi-Annual Channel. Less problems and less updates.    Thanks to you both and everyone here, most of us couldn’t survive this mess without you guys.

Reply | Quote

The updates will show through metered connections. Supposedly they just won’t download.

1 user thanked author for this post.

bobcat5536

Reply | Quote

Will the updates for Office 2010 never end?

Fortunately, it’s not something I need.

-Noel

2 users thanked author for this post.

OscarCP, OldBiddy

Reply | Quote

@Noel Carboni it’s funny you raise this point. I must be among a very few number of users who still has Office 2010! I like it and rely on it and I’m not required to subscribe to 365. I’m assuming I own it since I have the media for it.

Reply | Quote

I’m still on Office 2010, too. I have two valid keys for Office 2013 left over from my old TechNet subscription, but my wife prefers 2010 and uses it a lot. I like it, too, but use it only occasionally. I’ll most likely update to 2013 when the support for 2010 ends.

1 user thanked author for this post.

OldBiddy

Reply | Quote

@dononline when does support for Office 2010 end? I guess I’ll have to deal with that too when the time comes. I miss all the old clip art though ?

Reply | Quote

I’m pretty sure Extended Support, security updates only, for all versions of Office 2010 has already ended. However, if, like me, you have Service Pack 2, it looks like it ends 10/13/2020.

I’d recommend you just do a search for “MS Office 2010 end of support” and try several results until you find your particular version.

2 users thanked author for this post.

OscarCP, OldBiddy

Reply | Quote

Are there all-in-one / rollup-style MSPs available anywhere for Office 2016 (kind of like Microsoft provides for W10)? As part of my LTI builds, it’d be nice to easily keep the “updates” folder of the Office installation contemporary so a completed install doesn’t need to then immediately hit WSUS. Any suggestions would be immensely appreciated.

Reply | Quote

You could download the Office 2016 Deployment Tool and create a config XML file and then run the tool with “/download <XML file>”. It should download exactly what you need to install the latest C2R parts for installing.

I’m not sure if office C2R versions event touch WSUS… Unless you are running the MSI version (I haven’t been able to get much info out of microsoft on that version)

I can create an XML file for you that installs what you want (C2R only).

Reply | Quote

Thank you, sir.  We’re using the full-blown, non-C2R MSI versions from MVLS.

Reply | Quote

If you download the updates from the Microsoft Download Center, you can extract the EXE file to MSP using the /extract command

Reply | Quote

That’s what I do now (I use 7zip or Universal Extractor), it’s just tough to keep the MSP repository updated with exactly what’s needed.  I end up having to do an install with a month’s batch of updates incorporated, then hit WU and take note of the other patches required, then download those.

Unlike with W10, where I can easily bundle in a single, cumulative patch that brings the entire installation up to the latest build of that particular version, it seems I’m stuck trying to pull together 20+ MSPs for various Office applications and components.

Reply | Quote

@OldBiddy, Office 2010 extended support ends on 10/13/2020.

2 users thanked author for this post.

OldBiddy, Elly

Reply | Quote

Is the April Office 2013 security patch, KB4018288 safe to install. I heard there were issues with Excel crashing post-installation but from what I can find on the issue, I am not sure whether there is a problem with this update or not. Any opinions on KB4018288?

Reply | Quote

Check Susan Bradley’s (Patch Lady) Master Patch List (button at top of page). She is our expert on updates.

1 user thanked author for this post.

ch100

Reply | Quote

Does anyone know why the non-security update for Outlook 2010 (KB4022144) is listed by Windows Update as “Critical”?   The MS KB article provides only the following description:

This update fixes the following issue: When you attempt to render web pages through the Outlook folder pane by using the Microsoft Dynamics 365 for Microsoft Outlook add-in (Outlook client), the view pane remains blank and “Waiting for a page to be retrieved from a CRM server…” displays. The pane never loads the corresponding web page

I can see where this could certainly be an inconvenience for some users, and for them it would be appropriate to call the update that fixes it “Important”.   But calling it “Critical”?  Isn’t that classification reserved for updates that fix security vulnerabilities?  Or possibly for updates that keep systems from crashing?

How is this update “Critical”?  Am I missing something here?  Has there been any assessment of these non-security Office updates yet from Susan (“Patch Lady”)?

EDIT html to text (only simple BBCodes usable)

Reply | Quote

@PKCano:   Thank you so much for the current information, and for reminding everyone that the Defcon3 is not applicable to these new updates.   It is a big help to be aware that these updates apply to May, and that we all must continue to be extremely cautious to remember that.  Thank you for the reminder, which is very helpful to all of us.    🙂

Reply | Quote

KB4022144 (https://support.microsoft.com/en-us/help/4022144/may-1-2018-update-for-outlook-2010-kb4022144) shows up as unchecked important on my pc (Win7 32 bit, Office2010). Does any of you know why it is unchecked? (And yes, i know the drill: unchecked = do not install 🙂

~Annemarie

Reply | Quote

Check Susan Bradley’s (Patch Lady) Master Patch List (button at top of blog) for status of the Office patches. She keeps track of any problems and installation status.

Reply | Quote

Oops!  I got confused about more recent responses appearing farther down the list of responses.  Please disregard my repeating an earlier response.

Reply | Quote

In re about sponse to question about support life cycle for office 2010, check the following: https://support.microsoft.com/en-us/lifecycle/search?alpha=office%202010

Reply | Quote

Since I run a version of Office 365 that has the monthly channel welded onto it, I have to juggle the updates in a Group B way. So often I check MS’s Office 365 client update channel releases page to see what’s cooking for my version.
Till now there’s no mention of any non-security updates in the May 8 releases, only security updates:
CVE-2018-8147: Microsoft Excel Remote Code Execution Vulnerability
CVE-2018-8148: Microsoft Excel Remote Code Execution Vulnerability
CVE-2018-8162: Microsoft Excel Remote Code Execution Vulnerability
CVE-2018-8163: Microsoft Excel Information Disclosure Vulnerability

CVE-2018-8150: Microsoft Outlook Security Feature Bypass Vulnerability

CVE-2018-8157: Microsoft Office Remote Code Execution Vulnerability
CVE-2018-8158: Microsoft Office Remote Code Execution Vulnerability

Because I don’t want to run Office unprotected, I decided to take the plunge and temporarily enabled my normally disabled update channel and installed the above (probably, because 365 won’t tell what it downloads and installs exactly).
I’m now on Version 1804 build 9226.2126.

No problems so far.

Reply | Quote