Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Hyland Connect
- Enterprise Platforms
- OnBase
- OnBase Technical
- OnBase Technical Blog
- December 2019 Microsoft Security Guide
Verica_Mitrovic
Star Contributor
Options
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
12-20-2019
01:17 PM
January update - December's testing of patches is deemed complete, and there have been no known issues reported by testing teams relating to any of the Hyland products.
The following is a summary of Microsoft's Security Bulletin Guide for December 2019. Hyland has downloaded these patches and applied them to our R&D Infrastructure. We will be performing SCR, automated, and regression testing in environments containing these patches over the next month. If no issues have been found or reported, we will deem testing to be complete.
The testing is not all-inclusive; issues may still be found upon implementation. Follow best practices for testing and installing software updates/patches in a development environment before implementing the updates in a production environment. Where applicable, the updates are tested on all supported Windows platforms with the latest OnBase® version.
Release Notes
December 2019 Security Updates
Release Date: December 10, 2019
The December security release consists of security updates for the following software:
- Microsoft Windows
- Internet Explorer
- Microsoft Office and Microsoft Office Services and Web Apps
- SQL Server
- Visual Studio
- Skype for Business
Please note the following information regarding the security updates:
- For information regarding enabling Windows 10, version 1909 features, please see Windows 10, version 1909 delivery options. Note that Windows 10, versions 1903 and 1909 share a common core operating system with an identical set of system files. They will also share the same security update KBs.
- Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
- For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
- A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
- Starting in May 2019, Internet Explorer 11 is available on Windows Server 2012. This configuration is present only in the IE Cumulative package.
- Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
- In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
The following CVEs have FAQs with additional information and may include * further steps to take after installing the updates. Please note that this is not a complete list of CVEs for this release.
- ADV990001
- ADV190026 *
- CVE-2019-1349 *
- CVE-2019-1350 *
- CVE-2019-1351 *
- CVE-2019-1352 *
- CVE-2019-1354 *
- CVE-2019-1387 *
- CVE-2019-1400
- CVE-2019-1461
- CVE-2019-1462
- CVE-2019-1463
- CVE-2019-1464
- CVE-2019-1465
- CVE-2019-1466
- CVE-2019-1467
- CVE-2019-1469
- CVE-2019-1470
- CVE-2019-1472
- CVE-2019-1474
- CVE-2019-1480
- CVE-2019-1481
- CVE-2019-1486 *
- CVE-2019-1487
- CVE-2019-1489
Known Issues Reported by Microsoft
The following KBs contain information about known issues with the security updates. For more information about Windows Known Issues, please see Windows message center. Links to currently-supported versions of Windows 10 are in the left pane.
For a complete list of security update KBs, please see 20191210.
| KB Article | Applies To |
|---|---|
| 4484190 | Excel 2013 |
| 4484179 | Excel 2016 |
| 4461590 | PowerPoint 2013 |
| 4484190 | PowerPoint 2016 |
| 4484190 | Word 2013 |
| 4484190 | Word 2016 |
| 4530681 | Windows 10 |
| 4530684 | Windows 10, version 1803, Windows Server version 1803, Windows 10, version 1809, Windows Server version 1809 |
| 4530689 | Windows 10, version 1607, Windows Server 2016 |
| 4530691 | Windows Server 2012 (Monthly Rollup) |
| 4530698 | Windows Server 2012 (Security-only update) |
| 4530702 | Windows 8.1, Windows Server 2012 R2 (Monthly Rollup) |
| 4530714 | Windows 10, version 1709 |
| 4530715 | Windows 10, version 1809, Windows Server 2019 |
| 4530717 | Windows 10, version 1803, Windows Server version 1803 |
| 4530730 | Windows 8.1, Windows Server 2012 R2 (Security-only update) |
| 4530734 | Windows 7 SP1, Windows Server 2008 R2 SP1 (Monthly Rollup) |
Hyland Software - Microsoft Updates Statement
Hyland Software is dedicated to ensuring the monthly cumulative updates released by Microsoft® are compatible with OnBase®. On the second Tuesday of each month, the Quality Assurance Department of Hyland Software evaluates the cumulative fixes released and labeled as Critical or Important by Microsoft®. The details of the update provided by Microsoft are reviewed for interaction with OnBase® and installed when appropriate for testing its compatibility with OnBase®.
Labels:
3 Comments
Related Content
- Higher Ed VOGUE Education Webinar - Security Keywords 101 - Intro and Basics of Security Keywords in OnBase Technical Blog
- Deprecation and End of Life Announcement: OnBase Identity Provider Service (IdP) for OnBase versions 17 and 18 and Integration for Single Sign-On related modules in OnBase Technical Blog
- obclnt32.exe Has Stopped Working in OnBase Technical Forum
- February 2020 Microsoft Security Guide in OnBase Technical Blog
- 2020 LDAP channel binding and LDAP signing requirement for Windows Server (OnBase) in OnBase Technical Blog
