Content Release: ESU Patching Add-on for Windows 7 - March 2020 Security Updates

Release Announcements Patch (Release Announcements)
1

Content in the ESU Patching Add-on for Windows 7 site has been added:
MS20-MAR: Cumulative security update for Internet Explorer - Windows 7 SP1 - IE 11 - KB4540671 (x64)
MS20-MAR: Cumulative security update for Internet Explorer - Windows 7 SP1 - IE 11 - KB4540671
MS20-MAR: KB4540688 (Monthly Rollup) - Windows 7 SP1 - KB4540688 (x64)
MS20-MAR: Security Monthly Quality Rollup - Monthly Rollup - Windows 7 SP1 - KB4540688
MS20-MAR: KB4541500 (Security-only update) - Security Only - Windows 7 SP1 - KB4541500 (x64)
MS20-MAR: Security Only Quality Update - Security Only - Windows 7 SP1 - KB4541500
MS20-MAR: Cumulative security update for Internet Explorer - Windows 7 SP1 - IE 11 - KB4540671 (x64) (Unentitled)
MS20-MAR: Cumulative security update for Internet Explorer - Windows 7 SP1 - IE 11 - KB4540671 (Unentitled)
MS20-MAR: KB4540688 (Monthly Rollup) - Windows 7 SP1 - KB4540688 (x64) (Unentitled)
MS20-MAR: Security Monthly Quality Rollup - Monthly Rollup - Windows 7 SP1 - KB4540688 (Unentitled)
MS20-MAR: KB4541500 (Security-only update) - Security Only - Windows 7 SP1 - KB4541500 (x64) (Unentitled)
MS20-MAR: Security Only Quality Update - Security Only - Windows 7 SP1 - KB4541500 (Unentitled)

Content in the ESU Patching Add-on for Windows 7 site has been updated:
MS20-FEB: Servicing stack update for Windows 7 SP1 and Server 2008 R2 SP1 - Windows 7 SP1 - KB4537829 (x64)
MS20-FEB: Servicing stack update for Windows 7 SP1 and Server 2008 R2 SP1 - Windows 7 SP1 - KB4537829

Content in the ESU Patching Add-on for Windows 7 site has been removed:
MS20-FEB: Servicing stack update for Windows 7 SP1 and Server 2008 R2 SP1 - Windows 7 SP1 - KB4537829 (x64) (Unentitled)
MS20-FEB: Servicing stack update for Windows 7 SP1 and Server 2008 R2 SP1 - Windows 7 SP1 - KB4537829 (Unentitled)

Content in the ESU Patching Add-on for Windows 7 site has been superseded:
MS20-FEB: Cumulative security update for Internet Explorer - Windows 7 SP1 - IE 11 - KB4537767 (x64) (Superseded)
MS20-FEB: Cumulative security update for Internet Explorer - Windows 7 SP1 - IE 11 - KB4537767 (Superseded)
MS20-FEB: Cumulative security update for Internet Explorer - Windows 7 SP1 - IE 11 - KB4537767 (x64) (Unentitled) (Superseded)
MS20-FEB: Cumulative security update for Internet Explorer - Windows 7 SP1 - IE 11 - KB4537767 (Unentitled) (Superseded)
MS20-FEB: Security Only Quality Update - Security Only - Windows 7 SP1 - KB4537813 (x64) (Superseded)
MS20-FEB: Security Only Quality Update - Security Only - Windows 7 SP1 - KB4537813 (Superseded)
MS20-FEB: Security Only Quality Update - Security Only - Windows 7 SP1 - KB4537813 (x64) (Unentitled) (Superseded)
MS20-FEB: Security Only Quality Update - Security Only - Windows 7 SP1 - KB4537813 (Unentitled) (Superseded)
MS20-FEB: Security Monthly Quality Rollup - Monthly Rollup - Windows 7 SP1 - KB4537820 (x64) (Superseded)
MS20-FEB: Security Monthly Quality Rollup - Monthly Rollup - Windows 7 SP1 - KB4537820 (Superseded)
MS20-FEB: Security Monthly Quality Rollup - Monthly Rollup - Windows 7 SP1 - KB4537820 (x64) (Unentitled) (Superseded)
MS20-FEB: Security Monthly Quality Rollup - Monthly Rollup - Windows 7 SP1 - KB4537820 (Unentitled) (Superseded)

Reason for Update:
Microsoft released Extended Support Updates for Windows 7 March 10th Patch Tuesday.
KB4537829 applicability Relevance was updated to reflect that the patch does not require a ESU entitlement key.

Actions to Take:
Sync any baselines you may have created with the removed or modified content.

Published site version:
ESU Patching Add-on for Windows 7, version 8

Additional links:
None

Application Engineering Team
BigFix

3

Has this site update been published? What I go to http://sync.bigfix.com/cgi-bin/bfgather/win2008ESU,

MIME-Version: 1.0
Content-Type: multipart/signed; protocol=“application/x-pkcs7-signature”; micalg=“sha-256,sha1”; boundary="----2589EE7B28CBDD3040707EF41DE269AD"

This is an S/MIME signed message

------2589EE7B28CBDD3040707EF41DE269AD
MIME-Version: 1.0
Content-Type: multipart/x-directory2; boundary="X.a29xXTV.PMpvzYF9RrxerbJPMLEkT/"
FullSiteURL: http://sync.bigfix.com/bfsites/win2008ESU_7/__fullsite
FullSiteURLSize: 150040
SiteDisplayName: ESU Patching Add-on for Windows 2008
X-Relevant-When: (if( name of operating system starts with “Win” ) then platform id of operating system != 3 else false) AND (if exists property “in proxy agent context” then ( not in proxy agent context ) else true ) AND exists operating system whose (name of it starts with “Win2008”)
SiteDiffBaseURL: http://sync.bigfix.com/bfsites/win2008ESU_7/__diffsite
SiteDiffList: 111111
Version: 7

it still shows version 7.

2 Likes
4

Apologies, I saw ESU and just gravitated to Server 2008.

Do you know when the Server 2008 updated will be added?

1 Like
5

We are still working on the Server 2008 site. we expect it to publish later today.

6

Note - MSRC site did not include the updates to the Servicing Stack for March.
https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/2020-Mar

The catalog does have these.
https://www.catalog.update.microsoft.com/Search.aspx?q="2020-03%20Update%20for%20Windows%207"%20KB4550735

This seems to be a recurring theme with these specific released from MS.
We are working to create and publish the KB4550735. In the meantime, the February release is still active and can be applied if you need it for MAK key pre-requisites.

1 Like
7

And there it is… Content Release: ESU Patching Add-on for Windows 2008 - March 2020 Security Updates

2 Likes
8

As of this AM both my ESU sites are empty, no fixlets. I show version 8 for both:

15494 ESU Patching Add-on for Windows 2008 External 8
15488 ESU Patching Add-on for Windows 7 External 8

I was using it yesterday and the sites have computer subscriptions for all machines. Do I need to open a case to fix or is something wrong with version 8?

Thanks,
Scott

9

Please check and see if you are affected by Important note on LicenseUpdater or Airgap Errors due to certificate (very likely).

There is a client setting to apply on the root server to workaround a certificate issue on our gather server.

1 Like
10

Thanks for the reply Jason,

I applied the setting to the BES server

I restarted gather, root and client service on BES server

I see the sites gathering:
Id: 556 Date: Wed, 11 Mar 2020 18:14:03 +0000 Version: 8
Url: http://sync.bigfix.com/cgi-bin/bfgather/win2008ESU

Id: 557 Date: Wed, 11 Mar 2020 18:14:00 +0000 Version: 8
Url: http://sync.bigfix.com/cgi-bin/bfgather/win7esu

But still no fixlets. License looks good:

image
image661×515 16.4 KB

It was all working yesterdaywith version 7…I guess I need to open a ticket?
Thanks,
Scott

11

looks like our license expired today??? 3/11/2020. It was supposed to be for 1 year, 2021. Who do I need to contact?

12

@sdemonte Suggest you open a help ticket at http://support.bigfix.com.

13

We went to the portal and allocated the new licence. Looks like the old one was fat fingered. I am importing the new license now. Thanks for the help Jason!!

looks good…we should be good now

image
image642×661 18.4 KB

2 Likes
14

Confirmed…Fixlets are back! Back in business!

15

This topic was automatically closed after 30 days. New replies are no longer allowed.