Symptoms
Some functions don't work on customized SharePoint pages that use the SPWorkflowDataSource or FabricWorkflowInstanceProvider user control, and you see entries for theĀ 9zu4p or 9zu4q event tag in SharePoint Unified Logging System (ULS) logs. This problem occurs after you install the following February 9, 2021, SharePoint security updates:
- Description of the security update for SharePoint Server 2019: February 9, 2021 (KB4493194)
- Description of the security update for SharePoint Enterprise Server 2016: February 9, 2021 (KB4493195)
- Description of the security update for SharePoint Foundation 2013: February 9, 2021 (KB4493210)
- Description of the security update for SharePoint Foundation 2010: February 9, 2021 (KB4493223)
Cause
The security rule is enhanced when you convert types in SPWorkflowDataSource and FabricWorkflowInstanceProvider. Only trusted types can be converted.
Resolution
To restore the inoperative functions, add the blocked types as trusted types in the Web.config file if the blocked types areĀ safe.
To do this, add a new AllowConvertType element that has a type attribute to the Web.config file under the configuration/SharePoint/SafeMode/AllowConvertTypes element, as follows:
<SafeMode MaxControls="200" CallStack="false" DirectFileDependencies="15" TotalFileDependencies="250" AllowPageLevelTrace="false">
<AllowConvertTypes>
<AllowConvertType type="<allowedConvertTypeName>, <allowedConvertTypeAssemblyName>, <AssemblyVersion>, <AssemblyLanguageSetting>, <AssemblyPublicKey>"/>
</AllowConvertTypes>
</SafeMode>