October 2016 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2

Applies to: Windows Server 2012 R2 DatacenterWindows Server 2012 R2 StandardWindows Server 2012 R2 Essentials


This security update resolves the following vulnerabilities in Windows 8.1, and Windows Server 2012 R2:

  • MS16-101 Security update for Windows authentication methods
  • MS16-118 Cumulative security update for Internet Explorer
  • MS16-120 Security update for Microsoft graphics component
  • MS16-122 Security update for Microsoft video control
  • MS16-123 Security update for kernel-mode drivers
  • MS16-124 Security update for Windows registry

More Information


  • The security fixes listed here that are included in this security update 3192392  are also included in this October 2016 month’s Security Monthly Quality Rollup 3185331 , which additionally includes improvements and fixes from the update that was released in September 2016, 3185279. Installing either update will include the security fixes listed here.
  • If you use update management processes other than Windows Update and automatically approve all security updates classifications for deployment, be aware that both the October 2016 Security Only Quality Update 3192392  and the October 2016 Security Monthly Quality Rollup 3185331 for the month will be deployed. We recommend that you review your update deployment rules to make sure the desired updates are deployed.
  • Updated This October 2016 Security Only Quality Update was revised December 13, 2016. With this change, this update will not be applicable for installation on a computer where the Security Monthly Quality Rollup or the Preview of Monthly Quality Rollup from October 2016 (or a later month) is already installed, because those updates contain all security fixes that are included in this Security Only Quality Update.
  • All future security and non-security updates for Windows 8.1 and Windows Server 2012 R2 require update 2919355 to be installed. We recommend that you install update 2919355 on your Windows 8.1-based or Windows Server 2012 R2-based computer so that you receive future updates. 
  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

Known issues in this security update

Issue 1

After you install this security update, System Center Operations Manager (SCOM) Management Console crashes in State view.


To resolve this issue, install the following update:
3200068 Cumulative Update for Windows 10 Version 1511: October 18, 2016
Issue 2

After you install this security update, some DFS-N mapped network drives may be inaccessible to members of the Administrators group when UAC and EnableLinkedConnections are enabled. This occurs when the process that is attempting to access the mapped network drive, is running in a different elevation status than the process that created the mapped network drive. For example, an Explorer window, that is an unelevated process, is unable to access a mapped drive created by a logon script, that runs in an elevated context.
To resolve this issue, install the update KB4012219.

How to obtain and install the update

Method 1: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.