This security updates includes improvements and fixes from update 3192403. To learn more about the non-security improvements and fixes in this update, see the October 18, 2016 — KB3192403 (Preview of Monthly Rollup) entry in Windows 7 SP1 and Windows Server 2008 R2 SP1 update history.

Updated This November 2016 Security Monthly Quality Rollup was revised December 13, 2016. With this change, this update will not supersede the Security Only Quality Updates from October 2016 or November 2016.

With this change, this update will not supersede the Security Only Quality Updates from October 2016 or November 2016. This revision enables update management systems that cannot easily deploy superseded updates to install those Security Only Quality Updates without additional deployment processes.

Windows 8.1 and Windows Server 2012 R2 rollups (monthly rollups and security-only updates) are applicable by default to the following Windows 8.1 Industry-based embedded product: Windows Embedded 8.1 Industry Enterprise. Windows Embedded 8.1 Industry Pro.

This security update resolves vulnerabilities in Microsoft Windows. The most severe of the vulnerabilities could allow remote code execution if a locally authenticated attacker runs a specially crafted application. To learn more about the vulnerability, see Microsoft Security Bulletin MS16-130.

Summary. This security update resolves vulnerabilities in Microsoft Windows. The more severe of the vulnerabilities could allow elevation of privilege. To exploit this vulnerability, the attacker would first have to authenticate to the targeted domain-joined system by using valid user credentials.

Addresses security vulnerabilities in the Kerberos and Netlogon protocols as outlined in CVE-2022-38023, CVE-2022-37966, and CVE-2022-37967. For deployment guidance, see the following articles: KB5020805: How to manage the Kerberos protocol changes related to CVE-2022-37967.

The November 2016 Preview of Monthly Quality Rollup includes some new improvements and fixes for Windows 7 Service Pack 1 (SP1) and Windows Server 2008 R2 SP1 platforms. We recommend that you apply this quality rollup as part of your regular maintenance routines.

The November 2016 Preview of Monthly Quality Rollup includes improvements and fixes for the Windows Server 2012 platform. We recommend that you apply this quality rollup as part of your regular maintenance routines.

Update rollup 3197876 also includes improvements and fixes from October monthly rollup 3185332 that was released on October 11, 2016. Installing either update 3197876 or 3197877 installs the security fixes that are listed here.