Content Modification: Patches for Windows published 2022-05-20

Content in the Patches for Windows site has been modified

Modified:

• Major (ID:501501301) 5015013: Cumulative Update for Microsoft server operating system version 21H2 - Windows Server 2022 - KB5015013 (x64)
• Major (ID:501502013) 5015020: Cumulative Update for Windows 10 Version 21H2 - Windows 10 Version 21H2 - KB5015020
• Major (ID:501502011) 5015020: Cumulative Update for Windows 10 Version 21H1 - Windows 10 Version 21H1 - KB5015020
• Major (ID:501502009) 5015020: Cumulative Update for Windows 10 Version 20H2 - Windows 10 Version 20H2 - KB5015020
• Major (ID:501502007) 5015020: Cumulative Update for Windows 10 Version 21H1 - Windows 10 Version 21H1 - KB5015020 (x64)
• Major (ID:501502005) 5015020: Cumulative Update for Windows 10 Version 21H2 - Windows 10 Version 21H2 - KB5015020 (x64)
• Major (ID:501502003) 5015020: Cumulative Update for Windows 10 Version 20H2 - Windows 10 Version 20H2 - KB5015020 (x64)
• Major (ID:501498601) 5014986: Update for Windows Server 2012 R2 - Windows Server 2012 R2 - KB5014986 (x64)
• Major (ID:501502001) 5015020: Cumulative Update for Windows Server, version 20H2 - Windows Server version 20H2 - KB5015020 (x64)
• Major (ID:501501901) 5015019: Cumulative Update for Windows Server 2016 - Windows Server 2016 - KB5015019 (x64)
• Major (ID:501498603) 5014986: Update for Windows 8.1 - Windows 8.1 - KB5014986 (x64)
• Major (ID:501498605) 5014986: Update for Windows 8.1 - Windows 8.1 - KB5014986
• Major (ID:501501903) 5015019: Cumulative Update for Windows 10 Version 1607 - Windows 10 Version 1607 LTSB - KB5015019 (x64)
• Major (ID:501501905) 5015019: Cumulative Update for Windows 10 Version 1607 - Windows 10 Version 1607 LTSB - KB5015019
• Major (ID:501499101) 5014991: Update for Windows Server 2012 - Windows Server 2012 - KB5014991 (x64)
• Major (ID:501501805) 5015018: Cumulative Update for Windows 10 Version 1809 - Windows 10 Version 1809 LTSC - KB5015018
• Major (ID:501501803) 5015018: Cumulative Update for Windows 10 Version 1809 - Windows 10 Version 1809 LTSC - KB5015018 (x64)
• Major (ID:501501801) 5015018: Cumulative Update for Windows Server 2019 - Windows Server 2019 - KB5015018 (x64)
• Major (ID:501383813) MS22-MAY: Security Only Update for .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Server 2012 - Windows Server 2012 - .NET Framework 4.6.2/4.7/4.7.1/4.7.2 - KB5013622 (x64)

Reason for Update:

• New Out-of-Band updates from Microsoft
• Relevance has been changed for (ID:501383813)

Actions to Take:

• None

Published site version:
Site Name: Patches for Windows
Version: 3987

Additional links:

Application Engineering Team
HCL BigFix

We see the 3 cumulative hotfixes for 2016/19/22 in the MS catalog as superseded by the new content but we do not see the renamed content from HCL.

MS22-MAY: Cumulative Update for Windows Server 2016 - Windows Server 2016 - KB5013952 (x64)
MS22-MAY: Cumulative Update for Windows Server 2019 - Windows Server 2019 - KB5013941 (x64)
MS22-MAY: Cumulative Update for Windows Server 2022 - Windows Server 2022 - KB5013944 (x64)

When will these 3 fixes be renamed?

They should be in the console, now, in site version 3987. Be sure you have “Show non-relevant content” selected.

5013952 should be superseded by:
501501901 5015019: Cumulative Update for Windows Server 2016 - Windows Server 2016 - KB5015019 (x64) Unspecified Patches for Windows

5013941 should be superseded by:
501501801 5015018: Cumulative Update for Windows Server 2019 - Windows Server 2019 - KB5015018 (x64) Unspecified Patches for Windows 5 / 13 0 Update 563 MB Microsoft KB5015018 5/19/2022

5013944 should be superseded by:
501501301 5015013: Cumulative Update for Microsoft server operating system version 21H2 - Windows Server 2022 - KB5015013 (x64)

The new bug-fix updates are available in BigFix, but it’s a bit more complicated because the MS Catalog did not specify these out-of-band updates as Security updates; and our tooling will not supersede a Security update with a non-Security update. Example:
Original:

image712×412 22.7 KB

New:

image715×429 21.6 KB

I haven’t look at how the Classification or Severity metadata affects Patch Policies, but I think there’s a real chance these out-of-band updates could be excluded based on the patch selections most customers would use.

There is a serious AD bug that these new fixes address. If customers applied the regular May cumulative fixes and not these new add-ons, they are exposed to the AD bug.

Is someone from HCL going to ask MS what is up with that so your tooling works? BTW, are you using an API for MS update catalog? Been wanting one for ages.

This topic was automatically closed after 30 days. New replies are no longer allowed.