Notice

This update is included in the Security and Quality Rollup that's dated November 14, 2017. This update was previously released as part of the Preview of Quality Rollup on October 17, 2017, the Security and Quality Rollup on October 10, 2017, and the Security and Quality Rollup on September 12, 2017.

View products that this article applies to.

Summary

This security update resolves a vulnerability in the Microsoft .NET Framework that could allow remote code execution when Microsoft .NET Framework processes untrusted input. An attacker who successfully exploits this vulnerability by using the .NET Framework could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts that have full user rights. Users whose accounts are configured to have fewer user rights on the system could be less affected than users who operate by using administrative user rights.

To exploit the vulnerability, an attacker must first convince the user to open a malicious document or application.

This security update addresses the vulnerability by correcting how the .NET Framework validates untrusted input. To learn more about this vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2017-8759.

Important

  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

Quality and reliability fixes

Area

Description of the improvements

CLR1

  • Very rarely, an instance of ReaderWriterLock may hang in the process of releasing a lock. A new configuration variable is introduced to allow opting in to the fix. To fix the issue, set the COMPlus_ReaderWriterLock_UseFixedIdGeneration environment variable to 1 before you start the application.

Networking

  • A fix that's included in the May Monthly Security and Quality Rollup is changed to improve the performance of network latency. This latency affects Active Directory lookups for the enhanced key usage (EKU) object identifiers (OIDs) function that is used in TLS (Transport Layer Security) and SSL (Secure Sockets Layer) certificates.

WMI2

  • Code was changed to make setting privileges event-driven so that it can support changes in the option values.

1  Common Language Runtime (CLR)2 Windows Management Infrastructure (WMI)

More information

The following article provides information about supported .NET Framework versions for this Windows version. This includes the month and year of release, update replacement information, and help and support information for the update.

4049018 November 2017 Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2 and 4.7 updates for Windows Server 2012 (KB 4049018)

4042077 October 2017 Preview of Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2 and 4.7 updates for Windows Server 2012 (KB 4042077)

4043769 October 2017 Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2 and 4.7 updates for Windows Server 2012 (KB4043769)

4041084 September 2017 Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, and 4.7 updates for Windows Server 2012 (KB4041084)

How to obtain and install the update

Method 1: Windows Update

This update is available through Windows Update. If automatic updating is turned on, this update is downloaded and installed automatically. For more information about how to get security updates automatically, see Windows Update: FAQ.

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog.

Method 3: Windows Software Update Services (WSUS)

On your WSUS server, follow these steps:

  1. Select Start, select Administrative Tools, and then select Microsoft Windows Server Update Services 3.0.

  2. Expand ComputerName, and then select Action.

  3. Select Import Updates.

  4. WSUS opens a browser window in which you may be prompted to install an ActiveX control. You must install the ActiveX control to continue.

  5. After the control is installed, you see the Microsoft Update Catalog screen. Enter 4049018 into the Search box, and then select Search.

  6. Locate the .NET Framework packages that match the operating systems, languages, and processors in your environment. Select Add to add them to your basket.

  7. After you select all the packages that you need, select View Basket.

  8. Select Import to import the packages to your WSUS server.

  9. To return to WSUS, select Close after the packages have been imported.

The updates are now available for installation through WSUS.

Update deployment information

For deployment details for this security update, go to the following article in the Microsoft Knowledge Base:

20170912 Security update deployment information: September 12, 2017

Update removal information

Note We do not recommend that you remove any security update. To remove this update, use the Programs and Features item in Control Panel.

Update restart information

This update does not require a system restart after you apply it unless files that are being updated are locked or are being used.

Update replacement information

This update replaces updates 4035037 and 4032114.

 

File information

File hash

Package name

Package hash SHA 1

Package hash SHA 2

Windows8-RT-KB4040979-x64.msu

1FD36632D8376707BB890A01D909987B3731083A

309E99B9563BBC5FCAEAEBA71C0A654B1EAA875EB5ADB12902D189A76837816C

Windows8-RT-KB4040979-x86.msu

6A7D69C28A72C370A8937C532171436BE7FCD1A7

B5D4A1EF60416E9EE95F00ED3C8922C2F0257CF7EED4173026C881FDE4205033

File attributes

The English (United States) version of this hotfix installs files that have the attributes that are listed in the following tables. The dates and the times for these files are listed in Coordinated Universal Time (UTC). The dates and the times for these files on your local computer are displayed in your local time together with your current daylight saving time (DST) bias. Additionally, the dates and the times may change when you perform certain operations on the files.

For all x86-based systems

File name

File version

File size

Date

Time

presentationframework.dll

3.0.6920.8773

5,283,840

29-Mar-2017

13:09

reachframework.dll

3.0.6920.8773

532,480

29-Mar-2017

13:09

system.management.dll

2.0.50727.8766

389,120

12-Jul-2017

13:09

system.runtime.remoting.dll

2.0.50727.8771

307,200

31-Aug-2017

13:08

system.security.dll

2.0.50727.8759

270,336

28-Mar-2017

13:09

system.web.regularexpressions.dll

2.0.50727.8762

98,304

07-Apr-2017

13:09

system.dll

2.0.50727.8770

3,203,072

17-Aug-2017

13:09

windowsbase.dll

3.0.6920.8773

1,257,472

29-Mar-2017

13:09

big5.nlp

66,728

28-Dec-2016

04:28

bopomofo.nlp

82,172

28-Dec-2016

04:28

ksc.nlp

116,756

28-Dec-2016

04:28

mscorlib.dll

2.0.50727.8762

4,554,752

07-Apr-2017

13:09

normidna.nlp

59,342

28-Dec-2016

04:28

normnfc.nlp

45,794

28-Dec-2016

04:28

normnfd.nlp

39,284

28-Dec-2016

04:28

normnfkc.nlp

66,384

28-Dec-2016

04:28

normnfkd.nlp

60,294

28-Dec-2016

04:28

prc.nlp

83,748

28-Dec-2016

04:28

prcp.nlp

83,748

28-Dec-2016

04:28

sortkey.nlp

262,148

28-Dec-2016

04:28

sorttbls.nlp

20,320

28-Dec-2016

04:28

xjis.nlp

28,288

28-Dec-2016

04:28

aspnet_wp.exe

2.0.50727.8762

31,384

07-Apr-2017

13:09

mscordacwks.dll

2.0.50727.8762

990,368

07-Apr-2017

13:09

mscorwks.dll

2.0.50727.8762

5,946,520

07-Apr-2017

13:09

sos.dll

2.0.50727.8762

389,776

07-Apr-2017

13:09

webengine.dll

2.0.50727.8762

437,400

07-Apr-2017

13:09

wminet_utils.dll

2.0.50727.8766

116,896

12-Jul-2017

13:09

presentationcore.dll

3.0.6920.8773

4,222,976

29-Mar-2017

13:09

presentationfontcache.exe.config

161

06-Jul-2012

20:04

wpfgfx_v0300.dll

3.0.6920.8773

1,737,888

29-Mar-2017

13:09

system.data.dll

2.0.50727.8762

2,975,744

06-Apr-2017

20:26

system.printing.dll

3.0.6920.8773

372,736

29-Mar-2017

13:09

system.web.dll

2.0.50727.8762

5,287,936

07-Apr-2017

13:09

penimc.dll

3.0.6920.8773

68,752

29-Mar-2017

13:09

presentationframework.dll

3.0.6920.8773

5,283,840

29-Mar-2017

13:09

presentationhostdll.dll

3.0.6920.8773

131,248

29-Mar-2017

13:09

reachframework.dll

3.0.6920.8773

532,480

29-Mar-2017

13:09

windowsbase.dll

3.0.6920.8773

1,257,472

29-Mar-2017

13:09

For all x64-based systems

File name

File version

File size

Date

Time

big5.nlp

66,728

04-Jun-2015

22:48

bopomofo.nlp

82,172

04-Jun-2015

22:48

ksc.nlp

116,756

04-Jun-2015

22:48

mscorlib.dll

2.0.50727.8762

4,571,136

07-Apr-2017

13:09

normidna.nlp

59,342

04-Jun-2015

22:48

normnfc.nlp

45,794

04-Jun-2015

22:48

normnfd.nlp

39,284

04-Jun-2015

22:48

normnfkc.nlp

66,384

04-Jun-2015

22:48

normnfkd.nlp

60,294

04-Jun-2015

22:48

prc.nlp

83,748

04-Jun-2015

22:48

prcp.nlp

83,748

04-Jun-2015

22:48

sortkey.nlp

262,148

04-Jun-2015

22:49

sorttbls.nlp

20,320

04-Jun-2015

22:49

xjis.nlp

28,288

04-Jun-2015

22:49

aspnet_wp.exe

2.0.50727.8762

43,160

07-Apr-2017

13:09

mscordacwks.dll

2.0.50727.8762

1,757,344

07-Apr-2017

13:09

mscorwks.dll

2.0.50727.8762

10,007,704

07-Apr-2017

13:09

sos.dll

2.0.50727.8762

486,032

07-Apr-2017

13:09

system.management.dll

2.0.50727.8766

389,120

12-Jul-2017

13:09

system.runtime.remoting.dll

2.0.50727.8771

307,200

31-Aug-2017

13:09

system.security.dll

2.0.50727.8759

270,336

28-Mar-2017

13:10

system.web.regularexpressions.dll

2.0.50727.8762

98,304

07-Apr-2017

13:09

system.dll

2.0.50727.8770

3,203,072

17-Aug-2017

13:09

webengine.dll

2.0.50727.8762

746,648

07-Apr-2017

13:09

wminet_utils.dll

2.0.50727.8766

140,960

12-Jul-2017

13:09

presentationcore.dll

3.0.6920.8773

4,006,400

29-Mar-2017

13:09

presentationfontcache.exe.config

161

06-Jul-2012

20:06

wpfgfx_v0300.dll

3.0.6920.8773

2,256,032

29-Mar-2017

13:09

system.data.dll

2.0.50727.8762

3,150,336

06-Apr-2017

20:26

system.printing.dll

3.0.6920.8773

358,400

29-Mar-2017

13:09

system.web.dll

2.0.50727.8762

5,296,128

07-Apr-2017

13:09

penimc.dll

3.0.6920.8773

85,648

29-Mar-2017

13:09

presentationframework.dll

3.0.6920.8773

4,640,768

29-Mar-2017

13:09

presentationhostdll.dll

3.0.6920.8773

172,208

29-Mar-2017

13:09

reachframework.dll

3.0.6920.8773

532,480

29-Mar-2017

13:09

windowsbase.dll

3.0.6920.8773

1,118,208

29-Mar-2017

13:09

presentationframework.dll

3.0.6920.8773

5,283,840

29-Mar-2017

13:09

reachframework.dll

3.0.6920.8773

532,480

29-Mar-2017

13:09

system.management.dll

2.0.50727.8766

389,120

12-Jul-2017

13:09

system.runtime.remoting.dll

2.0.50727.8771

307,200

31-Aug-2017

13:08

system.security.dll

2.0.50727.8759

270,336

28-Mar-2017

13:09

system.web.regularexpressions.dll

2.0.50727.8762

98,304

07-Apr-2017

13:09

system.dll

2.0.50727.8770

3,203,072

17-Aug-2017

13:09

windowsbase.dll

3.0.6920.8773

1,257,472

29-Mar-2017

13:09

big5.nlp

66,728

28-Dec-2016

04:28

bopomofo.nlp

82,172

28-Dec-2016

04:28

ksc.nlp

116,756

28-Dec-2016

04:28

mscorlib.dll

2.0.50727.8762

4,554,752

07-Apr-2017

13:09

normidna.nlp

59,342

28-Dec-2016

04:28

normnfc.nlp

45,794

28-Dec-2016

04:28

normnfd.nlp

39,284

28-Dec-2016

04:28

normnfkc.nlp

66,384

28-Dec-2016

04:28

normnfkd.nlp

60,294

28-Dec-2016

04:28

prc.nlp

83,748

28-Dec-2016

04:28

prcp.nlp

83,748

28-Dec-2016

04:28

sortkey.nlp

262,148

28-Dec-2016

04:28

sorttbls.nlp

20,320

28-Dec-2016

04:28

xjis.nlp

28,288

28-Dec-2016

04:28

aspnet_wp.exe

2.0.50727.8762

31,384

07-Apr-2017

13:09

mscordacwks.dll

2.0.50727.8762

990,368

07-Apr-2017

13:09

mscorwks.dll

2.0.50727.8762

5,946,520

07-Apr-2017

13:09

sos.dll

2.0.50727.8762

389,776

07-Apr-2017

13:09

webengine.dll

2.0.50727.8762

437,400

07-Apr-2017

13:09

wminet_utils.dll

2.0.50727.8766

116,896

12-Jul-2017

13:09

presentationcore.dll

3.0.6920.8773

4,222,976

29-Mar-2017

13:09

presentationfontcache.exe.config

161

06-Jul-2012

20:04

wpfgfx_v0300.dll

3.0.6920.8773

1,737,888

29-Mar-2017

13:09

system.data.dll

2.0.50727.8762

2,975,744

06-Apr-2017

20:26

system.printing.dll

3.0.6920.8773

372,736

29-Mar-2017

13:09

system.web.dll

2.0.50727.8762

5,287,936

07-Apr-2017

13:09

penimc.dll

3.0.6920.8773

68,752

29-Mar-2017

13:09

presentationframework.dll

3.0.6920.8773

5,283,840

29-Mar-2017

13:09

presentationhostdll.dll

3.0.6920.8773

131,248

29-Mar-2017

13:09

reachframework.dll

3.0.6920.8773

532,480

29-Mar-2017

13:09

windowsbase.dll

3.0.6920.8773

1,257,472

29-Mar-2017

13:09

How to obtain help and support for this security update

Applies to

This article applies to the following:

  • Microsoft .NET Framework 3.5 when used with:

    • Windows Server 2012

Benötigen Sie weitere Hilfe?

Möchten Sie weitere Optionen?

Explore subscription benefits, browse training courses, learn how to secure your device, and more.

Communities help you ask and answer questions, give feedback, and hear from experts with rich knowledge.