KB4512506 Security Monthly Rollup update for Windows 7 - Aug. 13

Page 1 of 2 12 LastLast

    KB4512506 Security Monthly Rollup update for Windows 7 - Aug. 13


    Last Updated: 16 Aug 2019 at 23:23
    August 13, 2019 - KB4512506 (Monthly Rollup)

    Applies to: Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1


    Improvements and fixes

    This security update includes improvements and fixes that were a part of update KB4507437 (released July 16, 2019) and addresses the following issues:

    • Security updates to Windows App Platform and Frameworks, Windows Wireless Networking, Windows Storage and Filesystems, Windows Virtualization, Windows Datacenter Networking, Microsoft Scripting Engine, the Microsoft JET Database Engine, Windows Input and Composition, Windows MSXML, Internet Explorer, and Windows Server.

    For more information about the resolved security vulnerabilities, please refer to the Security Update Guide.

    Known issues in this update

    KB4512506 Security Monthly Rollup update for Windows 7 - Aug. 13-kb4512506.jpg

    [ADDED 8/16] - KB4517297 Non-security Update for Windows 7 - August 16
    KB4512506 Security Monthly Rollup update for Windows 7 - Aug. 13-8-16.jpg

    How to get this update

    Before installing this update

    Microsoft strongly recommends you install the latest servicing stack update (SSU) for your operating system before installing the latest Rollup. SSUs improve the reliability of the update process to mitigate potential issues while installing the Rollup and applying Microsoft security fixes.

    If you are using Windows Update, the latest SSU (KB4490628) will be offered to you automatically. To get the standalone package for the latest SSU, search for it in the Microsoft Update Catalog.

    Prerequisite: The SHA-2 update (KB4474419) must be installed before installing this update. For more information on SHA-2 updates, see 2019 SHA-2 Code Signing Support requirement for Windows and WSUS.

    Install this update

    Windows Update and Microsoft Update - None. This update will be downloaded and installed automatically from Windows Update.

    Microsoft Update Catalog - To get the standalone package for this update, go to the Microsoft Update Catalog.

    Windows Server Update Services (WSUS) - This update will automatically synchronize with WSUS if you configure Products and Classifications as follows:
    Product: Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1
    Classification: Security Updates

    File information

    For a list of the files that are provided in this update, download the file information for update 4512506.


    Source: https://support.microsoft.com/en-us/help/4512506

    See also:


    Direct download links for KB4512506 MSU file from Microsoft Update Catalog:

    Download KB4512506 MSU for Windows 7 32-bit (x86) - 182.7 MB

    Download KB4512506 MSU for Windows 7 64-bit (x64) - 285.6 MB
    Brink's Avatar Posted By: Brink
    13 Aug 2019



  1. Posts : 70,904
    64-bit Windows 10 Pro
       #1

    If you’re running Windows 7 Service Pack 1 or Windows Server 2008 RS2 Service Pack 1 and having problems installing the August Windows security updates, SHA-2 support may be missing. Check our dashboard for more information:

    Windows 10 message center - Windows Release Information | Microsoft Docs

      My Computer


  2. Posts : 70,904
    64-bit Windows 10 Pro
    Thread Starter
       #2

    UPDATE 8/14:

    "Known issues" updated. See first post for more details.
      My Computer


  3. NoN
    Posts : 4,167
    Windows 7 Professional SP1 - x64 [Non-UEFI Boot]
       #3

    There's inside the Tuesday Patch August 13, 2019 - KB4512506 (Monthly Rollup) a CVE ID: CVE-2019-9506 that needs the end-user having to set-up a manual modification in Regedit about to protect against "Key Negotiation of Bluetooth" (KNOB) attack.

    Dword value "EnableMinimumEncryptionKeySize" (without quote) have to be set to 1 in the path:
    HKEY_LOCAL_MACHINE\System\CurrentControlSet\Policies\Hardware\Bluetooth.



    On my machine, I can see Bluetooth related .dll & .exe files have been updated to number 6.1.7601.24511 in System32.
    My key stop at HKEY_LOCAL_MACHINE\System\CurrentControlSet\Policies....

    Can't find exact MS article id where the registry key has to be set or not to 1, only a source that mention that key without link. Any clue? Thanks
    Last edited by NoN; 15 Aug 2019 at 14:18. Reason: typo
      My Computer


  4. Posts : 70,904
    64-bit Windows 10 Pro
    Thread Starter
       #4

    NoN said:
    There's a Inside the Tuesday Patch August 13, 2019 - KB4512506 (Monthly Rollup) a CVE ID: CVE-2019-9506 that needs the end-user having to set-up a manual modification in Regedit about to protect against "Key Negotiation of Bluetooth" (KNOB) attack.

    Dword value "EnableMinimumEncryptionKeySize" (without quote) have to be set to 1 in the path:
    HKEY_LOCAL_MACHINE\System\CurrentControlSet\Policies\Hardware\Bluetooth.



    On my machine, I can see Bluetooth related .dll & .exe files have been updated to number 6.1.7601.24511 in System32.
    My key stop at HKEY_LOCAL_MACHINE\System\CurrentControlSet\Policies....

    Can't find exact MS article id where the registry key has to be set or not to 1, only a source that mention that key without link. Any clue? Thanks

    This one?

    https://support.microsoft.com/en-us/...th-enforcement
      My Computer


  5. NoN
    Posts : 4,167
    Windows 7 Professional SP1 - x64 [Non-UEFI Boot]
       #5

    Thanks!

    Please note we are shipping this mitigation off by default because during testing of encryption key length enforcement, we found that some Bluetooth controllers may not respond or stop pairing. Some BT devices may not support the minimum encryption key length enforced by the Microsoft update. We understand that compatibility with your devices is important and as we cannot guarantee compatibility with key enforcement enabled. You can enable the mitigation based on your own risk assessment and compatibility needs. If you have access to sensitive data and use the device in an area that does not have physical security, we recommend enabling the mitigation for this security vulnerability.
    That's all i wanted to know about...
      My Computer


  6. Posts : 70,904
    64-bit Windows 10 Pro
    Thread Starter
       #6

      My Computer


  7. Posts : 227
    Windows 7 Home Premium 64 Bit (Service Pack 1)
       #7

    I've tried installing this update this morning but it is failed with error code 80092004.

    From the little I've read on the net, this has come about for those that installed"Juneís Preview of Monthly QualityRollup for Windows 7 for x64-basedSystems (KB4503277)Ē which fixed an error caused by a previous update.

    I canít find any clear guidance from MS on what to do. Should I uninstall KB4503277 and try again to install KB4512506 OR just leave it until MS presumably fix this update. I donít want to muck up my computer which to date has installed all updates just fine.

    Due to work, Iíve got limited time (not to mention patience) to spend on this. Any ideas would be welcome.
    Last edited by LevelBest; 17 Aug 2019 at 05:55.
      My Computer


  8. Posts : 106
    Windows 7 Ultimate x64 SP1, updated to latest Java and .NET
       #8


    The article does not say if the DWORD should be 32 or 64 bit.
    Had to create the the whole thing from incl Policies... is that a sign that something is wrong, and if so, what?


    Thank you!
    :)
      My Computer


  9. Posts : 70,904
    64-bit Windows 10 Pro
    Thread Starter
       #9

    svnfrms2r said:
    The article does not say if the DWORD should be 32 or 64 bit.
    Had to create the the whole thing from incl Policies... is that a sign that something is wrong, and if so, what?


    Thank you!
    :)

    Usually it will be for "DWORD (32-bit) Value".
      My Computer


 
Page 1 of 2 12 LastLast

  Related Discussions
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 17:11.
Find Us