Windows 10 Tips and How to Guide

November 2020 Cumulative Updates available for Windows 8.1 and 7 SP1

Here's what's new in this month's Patch Tuesday for Windows 7 and 8.1

Along with a bunch of cumulative updates KB4586781, KB4586786, KB4586793 for Windows 10 Devices Microsoft Today also released a couple of updates KB4586845, KB4586823 for older releases well. As you may remember, Microsoft ended support for Windows 7 on 14th January 2020 so these updates are only for Windows 8.1 and Windows Server 2012 R2. The company also released KB4586827, KB4586805 for Windows 7 and server 2008 businesses who have signed up (paid) for Extended Security Updates (ESU).

As usual, there are two different updates, a monthly rollup and a security-only update that only includes security fixes. While the monthly rollup can be acquired from Windows Update, the security-only update must be installed manually.

Windows 8.1 update

Windows 8.1 KB4586845 (Monthly Rollup) and KB4586823 (Security-only update) Update Corrects the DST start date for the Fiji Islands to December 20, 2020 and brings Security updates to Windows Graphics, Windows Silicon Platform, Windows Authentication, Windows Core Networking, Windows Peripherals, Windows Network Security and Containers, Windows Hybrid Storage Services, and Windows Remote Desktop.

In addition, Windows 8.1 KB4586845 (Monthly Rollup) Fixes an issue with LDAP session authentication

  • Addresses an issue in which LDAP sessions authenticated and sealed with a SASL method are reported incorrectly in Events 2889 in the Directory Services Eventlog from source Microsoft-Windows-ActiveDirectory_DomainService as unsecure sessions.
  • Corrects the DST start date for the Fiji Islands to December 20, 2020.
  • Allows administrators to enable “Save target as” through Group Policy for users in Microsoft Edge IE mode.
  • Addresses an issue in which LDAP sessions authenticated and sealed with a SASL method are reported incorrectly in Events 2889 in the Directory Services Eventlog from source Microsoft-Windows-ActiveDirectory_DomainService as unsecure sessions.
  • Security updates to Windows Graphics, Windows Silicon Platform, Windows Authentication, Windows Core Networking, Windows Peripherals, Windows Network Security and Containers, Windows Hybrid Storage Services, Windows Remote Desktop, and Microsoft Scripting Engine.

known issue:

Rename files or folders that are on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”

After installing this update on domain controllers (DCs) and read-only domain controllers (RODCs) in your environment, you might encounter Kerberos authentication and ticket renewal issues.

Again this update KB4586845, KB4586823 also automatically get installed via windows update or you can manually check for updates from

  • Control Panel then System and Security.
  • Click on the green header to Open Windows Update.
  • Choose “Windows Update” from the middle of the list.
  • Check for updates. Click the Check for updates button on the main screen.

Also, you can download the standalone package for this update, from the Microsoft Update Catalog website.

Windows 7 SP1

KB4586827 Monthly Rollup and KB4586805 Security-only update for windows 7 service pack 1 also includes similar change as for windows 8.1

  • Corrects the DST start date for the Fiji Islands to December 20, 2020.
  • Security updates to Windows Graphics, Windows Silicon Platform, Windows Authentication, Windows Core Networking, Windows Peripherals, Windows Network Security and Containers, Windows Hybrid Storage Services, and Windows Remote Desktop.

Known issue

Rename files or folders that are on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”

After installing this update and restarting your device, you might receive the error, “Failure to configure Windows updates. Reverting Changes. Do not turn off your computer,” and the update might show as Failed in Update History.

The company says this issue expected in the following circumstances:

  • If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181.
  • If you do not have an ESU MAK add-on key installed and activated.

If you have purchased an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated.

Important Note: Windows 7 reached end of life

With Update (KB4534310, KB4534314) Windows 7 reached the end of life. that means Devices still running Windows 7 will no longer receive any security updates and patches from Microsoft. And the company recommend upgrade Windows 10 for the latest security features and protection against malicious software

Microsoft says The specific end of support day for Windows 7 will be January 14, 2020Technical assistance and software updates from Windows Update that help protect your PC are no longer available for the product.

Windows 7 upgrade warning

Download Windows 7 Cumulative updates

Before installing KB4537820 KB4537813 update microsoft recommend following Prerequisite:

You must install the updates listed below and restart your device before installing the latest Rollup. Installing these updates improves the reliability of the update process and mitigates potential issues while installing the Rollup and applying Microsoft security fixes.

  1. The March 12, 2019 servicing stack update (SSU) (KB4490628).  To get the standalone package for this SSU, search for it in the Microsoft Update Catalog. This update is required to install updates that are only SHA-2 signed.
  2. The latest SHA-2 update (KB4474419) released September 10, 2019. If you are using Windows Update, the latest SHA-2 update will be offered to you automatically. This update is required to install updates that are only SHA-2 signed. For more information on SHA-2 updates, see 2019 SHA-2 Code Signing Support requirement for Windows and WSUS.
  3. The January 14, 2020 SSU (KB4536952) or later. To get the standalone package for this SSU, search for it in the Microsoft Update Catalog.
  4. The Extended Security Updates (ESU) Licensing Preparation Package (KB4538483) released February 11, 2020. The ESU licensing preparation package will be offered to you from WSUS. To get the standalone package for ESU licensing preparation package, search for it in the Microsoft Update Catalog.

After installing the items above, Microsoft strongly recommends that you install the latest SSU (KB4537829). If you are using Windows Update, the latest SSU will be offered to you automatically if you are an ESU customer.

Via Microsoft support

This update will be downloaded and installed automatically via Windows Update on all compatible devices running Windows 7 SP1, Windows Server 2008 SP1 and connected to Microsoft server. To check and install updates manually

check for updates on windows 7

  1. Open the Start. menu. …
  2. Open Control Panel. Click the Control Panel on the right column of the Start.
  3. Go to “System and Security”. Click on the green header.
  4. Open Windows Update. Choose “Windows Update” from the middle of the list.
  5. Check for updates. Click the Check for updates button on the main screen.

Also, you can get the standalone package for this update, go to the Microsoft Update Catalog website.

Also read:

Source microsoft Microsoft

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More