Windows Server 2012 / R2 and Windows 7 (September 10, 2024)

Windows[German]Various security updates for Windows Server 2012/R2 (1st ESU year) were published on September 10, 2024. Support for Windows 7 SP1 and Windows Server 2008 R2 expired in January 2024. However, updates for Windows Embedded Standard 7 can be downloaded from the Microsoft Update Catalog. Here is an overview of these updates for Windows Server 2012/R2 and Windows Embedded Standard 7.

Preliminary remarks on the update installation

Please note the information on the installation sequence for Windows Server that Microsoft provides in the KB articles. Windows 7 (dropped out of support in January 2020) and Windows 8.1 in January 2023. ESU support ended in January 2024, but Windows 7 systems can be provided with security updates via Embedded Updates. Windows Server 2012/R2 dropped out of support in October 2023 and will only receive updates with an ESU license. If you are still using Windows 8.1, you can install the Server 2012 R2 updates with ESUBypass (see).

Updates for Windows Server 2012 R2

A rollup (for systems with an ESU license) has been released for Windows Server 2012 /R2. The update history for Windows 8.1 and Windows Server 2012 R2 can be found on this Microsoft site.

KB5043138 (Monthly Rollup) for Windows Server 2012 R2

Update KB5043138 (Monthly Rollup for Windows Server 2012 R2) enthält Verbesserungen und Fixes, und beseitigt diverse Schwachstellen, die nicht näher bezeichnet sind. Es heißt zu den Verbesserungen:

  • [User Account Control (UAC)] When the Windows Installer repairs an application, the UAC does not prompt for your credentials. After you install this update, it will prompt for them. Because of this, you might have to update your automation scripts. Additionally, you should add the Shield icon to indicate that your automation scripts require full administrator access. To turn off the UAC prompt, set the HKEY_LOCAL_MACHINE\SOFTWARE\Policies\
    Microsoft\
    Windows\Installer\DisableLUAInRepair
    registry value to 1. For more information, see:
  • [Remote Desktop Services (RDS)] Fixes an issue in which RDS would stop responding.
  • [Remote Desktop (known issue)] Windows Servers might disrupt Remote Desktop connections across your company. This issue might occur if you use a legacy protocol in the Remote Desktop Gateway. An example protocol is Remote Procedure Call over HTTP. If the issue occurs, it is sporadic, like every 30 minutes. At that point, you lose sessions that you are signed in to. Then you must reconnect to the server. IT admins can track this as an end to the TSGateway service. It stops responding, with the exception code 0xc0000005.

This update is automatically downloaded and installed by Windows Update in Windows Server 2012 R2, but is also available in the Microsoft Update Catalog and via WSUS. The installation of this Enhanced Security Update (ESU) may fail on an Azure Arc-enabled device running Windows Server 2012 R2. Details on fixes and any known issues related to the update are listed in the support article.

There is no security-only update for Windows Server 2012 R2.

Updates for Windows Server 2012

A rollup update for Windows Server 2012 and Windows Embedded 8 Standard has been released for systems with an ESU license. The update history for Windows 8.1 and Windows Server 2012 R2 can be found on this Microsoft page.

KB5043125 (Monthly Rollup) for Windows Server 2012

Update KB5043125 (Monthly Rollup for Windows Server 2012, Windows Embedded 8 Standard) contains improvements and fixes as well as security patches (see also the update for Windows Server 2012 R2). This update is available in the Microsoft Update Catalog and via WSUS. For a manual installation, the latest Servicing Stack Update (SSU) must be installed beforehand – although this SSU can no longer be uninstalled. Problems in connection with the update are listed in the KB article.

There is no security-only update for Windows Server 2012.

Updates for Windows Windows 7

For Windows Server 2008 R2 SP1 with ESU and Windows 7, official updates for systems with an ESU license (1st, 2nd, 3rd and 4th year complete) were made available for the last time in January 2024. However, updates for this month are available in the Microsoft Update Catalog for Windows Embedded Standard 7, which can be installed even though the ESU period should actually have expired. To search, enter "2024-09 Embedded standard 7". Furthermore, ACROS Security offers micropatches for protection until 2025 (see 0patch secures Microsoft Edge for Windows 7/Server 2008/2012/R2 until Jan. 2025).

Similar articles:
Office updates from September 3, 2024
Microsoft Security Update Summary (September 10, 2024)
Patchday: Windows 10/Server Updates (September 10, 2024)
Patchday: Windows 11/Server 2022-Updates (September 10, 2024)
Windows Server 2012 / R2 and Windows 7 (September 10, 2024)
Microsoft Office Updates (September 10, 2024)

This entry was posted in Security, Update, Windows and tagged , , , . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *