MS16-155: Description of the Security Only Update for the .NET Framework 4.6.2 for Windows 7 and Windows Server 2008 R2: December 13, 2016

View products that this article applies to.

Summary

This update resolves vulnerabilities in the Microsoft .NET Framework. A security vulnerability exists in the .NET Framework that could allow an attacker to access information at rest that should be defended by cryptographic mechanisms. This update fixes the way that the Framework handles the key and therefore defends the data at rest. To learn more about this vulnerability, see Microsoft Security Bulletin MS16-155.

Important

If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

Additional information about this security update

For more information about this security update as it relates to Windows 7 and Windows Server 2008 R2, see the following article in the Microsoft Knowledge Base:

3205640 MS16-155: Security Update for the .NET Framework: December 13, 2016

How to obtain and install this update

Show all

Method 1: Microsoft Update Catalog

Method 2: Windows Software Update Services (WSUS)

On your WSUS server, follow these steps:

Click Start, click Administrative Tools, and then click Microsoft Windows Server Update Services 3.0.
Expand ComputerName, and then click Action.
Click Import Updates.
WSUS will open a browser window in which you may be prompted to install an ActiveX control. You will need to install the ActiveX control to continue.
Once the ActiveX control is installed, you will see the Microsoft Update Catalog screen. Type 3204805 in the Search box, and then click Search.
Locate the .NET Framework packages that match the operating systems, languages, and processors in your environment. Click Add to add them to your basket.
When you have selected all the packages that you need, click View Basket.
Click Import to import the packages to your WSUS server.
Click Close once the packages have been imported to return to WSUS.

The updates are now available for installation through WSUS.

Update deployment information

For deployment information about this update, see Microsoft Knowledge Base Article 3205640 .

Update removal information

Note We do not recommend that you remove any security update.

To remove this update, use the Programs and Features item in Control Panel.

Update restart information

This update does not require a system restart after you apply it unless files that are being updated are locked or are being used.

Update replacement information

This update does not replace any previously released update.

File information

File hash

NDP46-KB3204805-x64.exe	236EBAF61075F997D769B38224C02BF4C95942D9	E7A0B4D3BCB7CDA92CD67E28ABDE4717BB0CEC60C5C6E21A620D04CF8BD654C6
NDP46-KB3204805-x86.exe	7548C217FBE0C7F28D6517CADC157EBDF11A5E12	7A12EF5CEAAD4F0790BBB019B7522D56C9416DFDA771069894E19091E0328A91

File attributes

The English (United States) version of this update installs files that have the attributes that are listed in the following tables. The dates and the times for these files are listed in Coordinated Universal Time (UTC). The dates and the times for these files on your local computer are displayed in your local time together with your current daylight saving time (DST) bias. Additionally, the dates and the times may change when you perform certain operations on the files.

For all supported x86-based versions of systems

File name	File version	File size	Date	Time
System.Data.dll	4.6.1636.0	3,389,616	02-Dec-2016	19:21

For all supported x64-based versions of systems

File name	File version	File size	Date	Time
System.Data.dll	4.6.1636.0	3,454,640	02-Dec-2016	19:30
System.Data.dll	4.6.1636.0	3,389,616	02-Dec-2016	19:21

How to obtain help and support for this security update

Applies to

This article applies to the following:

Microsoft .NET Framework 4.6.2 when used with:
- Windows Server 2008 R2 Service Pack 1
- Windows 7 Service Pack 1