Description of the security update for SharePoint Server 2019: January 8, 2019

Applies to: SharePoint Server 2019

Summary


This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2019-0585Microsoft Common Vulnerabilities and Exposures CVE-2019-0558, and Microsoft Common Vulnerabilities and Exposures CVE-2019-0562.

Note To apply this security update, you must have the release version of Microsoft SharePoint Server 2019 installed on the computer.

Improvements and fixes


This security update contains improvements and fixes for the following nonsecurity issues:

  • After the Web Application Open Platform Interface (WOPI) binding is configured in a SharePoint farm, an exception is thrown when you open the SharePoint Central Administration site.

  • When the Missing server side dependencies health analyzer rule runs on a server that's not running the SPWebService service, an error message that states that some web parts are missing in the system is displayed in the health analysis report.

Note To fix the issue, you need to install KB 4461514 together with this update.

  • This update removes the UnifiedGroupContentDbOperations feature because of an exception that occurs when you run the Install-SPFeature UnifiedGroupContentDbOperations command in SharePoint Management Shell.

    How to get and install the update


    Method 1: Microsoft Update

    This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see Windows Update: FAQ.

    Method 2: Microsoft Update Catalog

    To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

    Method 3: Microsoft Download Center

    You can get the stand-alone update package through the Microsoft Download Center. Follow the installation instructions on the download page to install the update.

    More Information


    Security update deployment information

    For deployment information about this update, see security update deployment information: January 8, 2019.

    Security update replacement information

    This security update replaces previously released update KB 4461548.

    File hash information

    File name SHA1 hash SHA256 hash
    sts2019-kb4461634-fullfile-x64-glb.exe 6AA1AB3F9354D1EF8BA6929619FDDDA589505053 FA42F2A6778DD4DF2D29F24B323E63A2C86C8CFEC159BE07981B0A9AD9EB969D


    File information

    The English (United States) version of this software update installs files that have the attributes that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time together with your current daylight saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.

    How to get help and support for this security update


    Help for installing updates: Protect yourself online

    Help for protecting your Windows-based computer from viruses and malware: Microsoft Security

    Local support according to your country: International Support