Summary. This security update resolves a vulnerability in Microsoft .NET Framework that could allow remote code execution when .NET Framework processes untrusted input.

The updates are now available for installation through WSUS. Prerequisites. To apply this update, you must have .NET Framework 4.5.2 installed. Restart requirement

View products that this article applies to. Summary. This December 13, 2016, Security and Quality Rollup for .NET Framework 4.6 for Windows Vista Service Pack 2 and Windows Server 2008 Service Pack 2, and .NET Framework 4.6 and 4.6.1 for Windows 7 Service Pack 1 and Windows Server 2008 R2 Service Pack 1 includes cumulative .NET security updates and improvements in reliability in the .NET ...

IMPORTANT Some customers who use Windows Server 2008 R2 SP1 and have activated their ESU multiple activation key (MAK) add-on before installing the January 14, 2020 updates might need to re-activate their key. Re-activation on the affected devices should only be required once. For information on activation, see this blog post.

The updates are now available for installation through WSUS. Update deployment information. For deployment details for this security update, go to the following article in the Microsoft Knowledge Base:

Summary. This security update resolves a vulnerability in Microsoft .NET Framework that may cause an information disclosure that allows bypassing Cross-origin Resource Sharing (CORS) configurations.

Enhanced Key Usage (EKU) is described in RFC 5280 in section 4.2.1.12: This extension indicates one or more purposes for which the certified public key may be used, in addition to or in place of the basic purposes that are indicated in the key usage extension.For example, a certificate that’s used for the authentication of a client to a server must be configured for Client Authentication.

Notice. This update is included in the June 2018 Preview of the Quality Rollups for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7 and 4.7.1 for Windows 7 and Windows Server 2008 R2 () and June 2018 Preview of the Quality Rollups for .NET Framework 2.0, 3.0, 4.5.2 and 4.6 for Windows Server 2008 ().). This update was previously included in the Preview of Quality rollup and on May 15, 2018.

Summary. This security update resolves a vulnerability in Microsoft .NET Framework that could allow remote code execution when Microsoft .NET Framework doesn't validate input correctly.

View products that this article applies to. Introduction. This July 2017 Update for Windows Server 2008 Service Pack 2 (SP2), Windows 7 Service Pack 1 (SP1), and Windows Server 2008 R2 SP1 includes cumulative reliability improvements in the .NET Framework 4.5.2.