This update adds the CLR strict security feature to Microsoft SQL Server.
However, the feature is turned off for backward compatibility in SQL Server. Because of database level compatibility, the feature cannot be enabled by using the sp_configure 'clr strict security', 1 command.
To enable CLR strict security, add trace flag 6545 to the server Database Engine Service Startup Options. Remember that this trace flag can be used only together with SQL Server startup options. It cannot be set by using the DBCC TRACEON command.
The fix for this update is included in the following cumulative updates and service pack for SQL Server:
Cumulative Update 4 for SQL Server 2016 Service Pack 1
Service pack information for SQL Server
About SQL Server 2016 builds
Each new build for SQL Server 2016 contains all the hotfixes and all the security fixes that were included with the previous build. We recommend that you install the latest build for SQL Server:
Service packs are cumulative. Each new service pack contains all the fixes that are in previous service packs, together with any new fixes. Our recommendation is to apply the latest service pack and the latest cumulative update for that service pack. You do not have to install a previous service pack before you install the latest service pack. Use Table 1 in the following article for finding more information about the latest service pack and latest cumulative update.
Learn about the terminology Microsoft uses to describe software updates.