• Patch Lady – 7 patches are getting prepared

    Posted on November 6, 2019 at 16:30 CST by Comment in the Forums

    Microfix spotted in the catalog a catalog only patch to test for the ability to accept extended support patches for Windows 7.

    The update

    https://support.microsoft.com/en-us/help/4528069/update-for-eligible-windows-7-and-server-2008-r2-devices-can-get-esu

    The patch points out the necessary parts:

    Prerequisites

    You must have the following installed on your on-premise device before you apply this update:

    1. Install the following SHA-2 code signing support update and servicing stack update (SSU) or a later SSU update:
      • 4474419 SHA-2 code signing support update for Windows Server 2008 R2, Windows 7, and Windows Server 2008: September 23, 2019
      • 4490628 Servicing stack update for Windows 7 SP1 and Windows Server 2008 R2 SP1: March 12, 2019
    2. Install the following servicing stack update (SSU) and monthly rollup:
      • 4516655 Servicing stack update for Windows 7 SP1 and Server 2008 R2 SP1: September 10, 2019
      • 4519976 October 8, 2019—KB4519976 (Monthly Rollup)
    3. Install and activate the ESU key. For information about how to install and activate the ESU key, see the How to get Extended Security Updates for eligible Windows devices blog on the Microsoft Tech Community website.Note After activation, you can then continue to use your current update and servicing strategy to deploy ESU through Windows Update, Windows Server Update Services (WSUS), or whichever update management solution that you prefer.

    Everyone should have received the SHA-2 and servicing stack update in part 1.  Everyone by now should have (or are real close to) installing the servicing stack and rollup.  But note, that patch is not a security only patch, it’s a monthly rollup patch that is mandated.   I don’t remember if we’ve determined if that monthly rollup has telemetry stuff in it or not, but certainly those of you on the security only path – we will have to do a bit more digging into that.

    Finally the ESU key – and the ability to purchase the ESU key won’t be known until 12/1/2019 when it goes on the sku pricing list.  Hang loose for that last piece as I will be (attempting) to purchase 1 and only 1 copy of a Windows 7 extended support.

    Stay tuned, more to come.

    [edit]  PK points out in the comments:  Windows 7 Security Monthly Quality Rollups have had the KB2952664 functionality (Compatibility Appraiser) included since Sept. 2018. Rollups are cumulative. KB4519976 is a Rollup

    My follow up comment:  I guess one can always go in and ensure you disable the tasks that turn on telemetry?

    Windows 7, Windows News
DON'T MISS OUT!
Subscribe to the Free Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

View the Forum

  • Recent Replies
  • My Replies
  • My Active Topics
  • New Posts in the Last day
  • Private Messages
  • Knowledge Base
  • How to use the Forums
  • All Forums

    • Recent Topics

    My Profile

    March 2025
    S M T W T F S
     1
    2345678
    9101112131415
    16171819202122
    23242526272829
    3031  

    Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.

    Mastodon profile for DefConPatch
    Mastodon profile for AskWoody

     

    Home About FAQ Posts & Privacy Forums My Account
    Register Free Newsletter Plus Membership Gift Certificates MS-DEFCON Alerts

    Copyright ©2004-2025 by AskWoody Tech LLC. All Rights Reserved.