Lucene search

K
mskbMicrosoftKB4471324
HistoryDec 11, 2018 - 8:00 a.m.

December 11, 2018—KB4471324 (OS Build 17134.471)

2018-12-1108:00:00
Microsoft
support.microsoft.com
50
security updates
seek bar
windows media player
blue screen
error code
system thread exception not handled
microsoft intune
start menu layouts
internet explorer
microsoft scripting engine
windows app platform
microsoft edge
windows storage and filesystems
windows authentication
windows wireless networking
windows kernel
known issues
.net framework update
sqlconnection instantiation exception
web link pin
servicing stack updates
windows update catalog

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.3

Confidence

High

EPSS

0.964

Percentile

99.6%

December 11, 2018—KB4471324 (OS Build 17134.471)

Note: Because of minimal operations during the holidays and upcoming Western new year, there won’t be any preview releases for the month of December 2018. Monthly servicing will resume with the January 2019 security releases.

Improvements and fixes

This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:

  • Addresses an issue that may prevent the use of the Seek Bar in Windows Media Player when playing specific files. This issue does not affect normal playback.
  • Addresses an issue that may cause some users to see a blue or black screen and receive the error code, “System thread exception not handled.”
  • Addresses an issue with Microsoft Intune that causes devices to be incorrectly marked as not compliant because a firewall incorrectly returns a ‘Poor’ status. As a result, the affected devices will not receive conditional access compliance approval and may be blocked from access to corporate resources such as email.
  • Addresses an issue that may cause some custom Start menu layouts to display incorrectly.
  • Security updates to Internet Explorer, Microsoft Scripting Engine, Windows App Platform and Frameworks, Microsoft Graphics Component, Microsoft Edge, Windows Storage and Filesystems, Windows Authentication, Windows Wireless Networking, and Windows Kernel.

If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.For more information about the resolved security vulnerabilities, please refer to the Security Update Guide.

Known issues in this update

Symptom Workaround
After you install the August Preview of Quality Rollup or September 11, 2018 .NET Framework update, instantiation of SqlConnection can throw an exception. For more information about this issue, see the following article in the Microsoft Knowledge Base:4470809 SqlConnection instantiation exception on .NET 4.6 and later after August-September 2018 .NET Framework updates. This issue is resolved in KB4480976.
After installing this update, some users cannot pin a web link on the Start menu or the taskbar. This issue is resolved in KB4487029.

How to get this update

Before installing this update Microsoft strongly recommends you install the latest servicing stack update (SSU) for your operating system before installing the latest cumulative update (LCU). SSUs improve the reliability of the update process to mitigate potential issues while installing the LCU and applying Microsoft security fixes. For more information, see Servicing stack updates.If you are using Windows Update, the latest SSU (KB4477137) will be offered to you automatically. To get the stand-alone package for the latest SSU, go to the Microsoft Update Catalog.Install this update This update will be downloaded and installed automatically from Windows Update. To get the stand-alone package for this update, go to the Microsoft Update Catalog website.File information For a list of the files that are provided in this update, download the file information for cumulative update 4471324.

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.3

Confidence

High

EPSS

0.964

Percentile

99.6%