Microsoft Security Updates November 2017 release

Microsoft released security updates for Microsoft Windows, Microsoft Office, and other company products on the November 2017 Patch Day.

This guide provides end users and system administrators with information on all security and non-security updates, and security advisories that Microsoft released since the October 2017 Patch Day.

It offers an Excel spreadsheet that lists all security updates released for Microsoft products, information on operating system distribution, download information, and other information related to the updates.

Click on the following link to download an Excel spreadsheet listing all security updates (with details) released in November 2017 by Microsoft: microsoft-windows-security-updates-overview-november-2017.zip

Microsoft Security Updates November 2017

Executive Summary

  • Microsoft released security updates for all supported versions of Windows (client and server), and Internet Explorer, Microsoft Edge, Microsoft Office, .Net Core and ASP.NET Core, and Chakra Core.
  • No critical updates for Windows, but for IE 11 and Microsoft Edge.
  • Lots of known issues.

Operating System Distribution

  • Windows 7: 12 vulnerabilities of which 12 are rated important
  • Windows 8.1: 11 vulnerabilities of which 11 are rated important
  • Windows 10 version 1607: 12 vulnerabilities of which 12 are rated important
  • Windows 10 version 1703: 12 vulnerabilities of which 12 are rated important
  • Windows 10 version 1709: 9 vulnerabilities of which 9 are rated important

Windows Server products:

  • Windows Server 2008: 11 vulnerabilities of which 11 are rated important
  • Windows Server 2008 R2: 12 vulnerabilities of which 12 are rated important
  • Windows Server 2012 and 2012 R2: 11 vulnerabilities of which 11 are rated important.
  • Windows Server 2016: 12 vulnerabilities of which 12 are rated important

Other Microsoft Products

  • Internet Explorer 11: 13 vulnerabilities, 8 critical, 4 important, 1 moderate
  • Microsoft Edge: 24 vulnerabilities, 16 critical, 8 important

Security Updates

KB4048961 -- Windows 8.1 and Server 2012 R2 Security-only Rollup.

  • Addressed issue where applications based on the Microsoft JET Database Engine (Microsoft Access 2007 and older or non-Microsoft applications) fail when creating or opening Microsoft Excel .xls files. The error message is: “Unexpected error from external database driver (1). (Microsoft JET Database Engine)".
  • Security updates to Microsoft Windows Search Component, Windows Media Player, Microsoft Graphics Component, Windows kernel-mode drivers, and the Windows kernel.

KB4048957 -- Windows 7 SP1 and Windows Server 2008 R2 SP1 Monthly Rollup

  • Same as KB4048961

KB4048960 -- Windows 7 SP1 and Windows Server 2008 R2 SP1 Security-only Rollup

  • Same as KB4048961

KB4048958 -- Windows 8.1 and Server 2012 R2 Monthly Rollup.

  • Addressed issue where the virtual smart card doesn't assess the Trusted Platform Module (TPM) vulnerability correctly.
  • Addressed issue where applications based on the Microsoft JET Database Engine (Microsoft Access 2007 and older or non-Microsoft applications) fail when creating or opening Microsoft Excel .xls files. The error message is: “Unexpected error from external database driver (1). (Microsoft JET Database Engine)".
  • Addressed a crash in Internet Explorer that was seen in machines that used large font-size settings.
  • Addressed issue that caused SharePoint Online sites to stop working in Internet Explorer.
  • And security updates that are part of KB4048961.

KB4048955 -- Windows 10 Version 1709 --

  • Addressed issue that causes the Mixed Reality Portal to stop responding on launch.
  • Addressed issue that causes a black screen to appear when you switch between windowed and full-screen modes when playing some Microsoft DirectX games.
  • Addressed a compatibility issue that occurs when you play back a Game DVR PC recording using Android or iOS devices.
  • Addressed issue where the functional keys stop working on Microsoft Designer Keyboards.
  • Addressed issue to ensure that certain USB devices and head-mounted displays (HMD) are enumerated properly after the system wakes up from Connected Standby.
  • Addressed issue where the virtual smart card doesn't assess the Trusted Platform Module (TPM) vulnerability correctly.
  • Addressed issue where Get-StorageJob returns nothing when there are storage jobs running on the machine.
  • Addressed issue where applications based on the Microsoft JET Database Engine (Microsoft Access 2007 and older or non-Microsoft applications) fail when creating or opening Microsoft Excel .xls files. The error message is: “Unexpected error from external database driver (1). (Microsoft JET Database Engine)".
  • Addressed issue where application tiles are missing from the Start menu. Additionally, applications that the Store app show as installed don't appear on the application list of the Start menu. Computers that have Internet connectivity and upgrade on or after November 14, 2017 will receive this preventative solution and avoid this issue. Machines that lack network connectivity or have already encountered this issue should follow the steps in the Microsoft
  • Answers thread “Missing apps after installing Windows 10 Fall Creators Update”. Microsoft will release and document an additional solution in a future release.
  • Addressed issue where Microsoft Edge cannot create a WARP support process and appears to stop responding for up to 3 seconds during a wait timeout. During the timeout period, users cannot navigate or interact with the requested page.
  • Security updates to Microsoft Scripting Engine, Microsoft Edge, Microsoft Graphics Component, Windows kernel, Internet Explorer, and Windows Media Player.

KB4048954 -- Windows 10 Version 1703 -- November 14, 2017—KB4048954 (OS Build 15063.726 and 15063.728)

  • Addressed issue where applications based on the Microsoft JET Database Engine (Microsoft Access 2007 and older or non-Microsoft applications) fail when creating or opening Microsoft Excel .xls files. The error message is: “Unexpected error from external database driver (1). (Microsoft JET Database Engine)".
  • Addressed issue where the RDP Connection from a Windows 10 1703 client to Windows Server 2008 R2 fails with the error: "An internal error occurred". This problem occurs when the server is configured in RemoteFX mode. You may also see a black or incorrectly painted screen.
  • Addressed issue where, after an OS upgrade, setting an offline schedule in the Sync Center applet of Control Panel fails. The error message that appears is: "Sync Center Error. An error occurred displaying sync schedules. Error: 0x80070005. Access Denied."
  • Addressed issue where RemoteApp and Desktop Connection settings fail to apply when you set them using Group Policy or a script.
  • Addressed issue where the virtual smart card doesn't assess the Trusted Platform Module (TPM) vulnerability correctly.
  • Addressed issue where opening Microsoft Office files from a file server that has Windows Information Protection enabled fails with the error: “Sorry we couldn't open document xxxx”.
  • Addressed issue where, when using the FDVDenyWriteAccess policy, Windows will continue to prevent a drive from being made writable even after BitLocker encryption completes.
  • Addressed issue where Surface Hub devices cannot connect to Azure Active Directory to log on when they are behind a proxy server.
  • Addressed issue where attempting to clean temporary files on the Windows Phone results in the error code “E_FAIL”.
  • Addressed issue where the functional keys stop working on Microsoft Designer Keyboards.
  • Addressed issue where modern applications built using JavaScript may fail to initialize.
  • Addressed issue where GetWindowLong may fail when called on a window whose thread isn't processing Windows messages.
  • Addressed issue where, after installing KB4038788 and rebooting, a black screen appears with only a cursor, and you must reboot in order to log in successfully.
  • Addressed issue in Internet Explorer where an intranet site was being treated as an internet site.
  • Addressed a memory leak in Microsoft Edge caused by the startup of an internal process.
  • Addressed issue with the launch of HTML dialogs in Windows PE systems.
  • Addressed issue with scrolling that sometimes causes Microsoft Edge to stop responding.
  • Addressed a crash in Internet Explorer that was seen in machines that used large font-size settings.
  • Addressed issue where the PDF download progress bar stops when opening a PDF file from a cloud-backed web services site.
  • Security updates to Internet Explorer, Microsoft Scripting Engine, Microsoft Edge, Windows kernel, Windows kernel-mode drivers, Microsoft Graphics Component, the Microsoft Windows Search Component, and Windows Media Player.

KB4048953 -- Windows 10 Version 1607 and Windows Server 2016 November 14, 2017—KB4048953 (OS Build 14393.1884)

  • Addressed issue where applications based on the Microsoft JET Database Engine (Microsoft Access 2007 and older or non-Microsoft applications) fail when creating or opening Microsoft Excel .xls files. The error message is: “Unexpected error from external database driver (1). (Microsoft JET Database Engine)".
  • Addressed issue where attempting to clean temporary files on the Windows Phone results in the error code “E_FAIL”.
  • Addressed issue with the launch of HTML dialogs in Windows PE systems.
  • Addressed a crash in Internet Explorer that was seen in machines that used large font-size settings.
  • Security updates to Internet Explorer, Microsoft Scripting Engine, Microsoft Edge, Windows kernel, Device Guard, Windows kernel-mode drivers, Microsoft Graphics Component, the Microsoft Windows Search Component, and Windows Media Player.

KB4048952 -- Windows 10 Version 1511 November 14, 2017—KB4048952 (OS Build 10586.1232)

  • Addressed issue with the rendering of a graphics element in Internet Explorer.
  • Addressed issue where access to the Trusted Platform Module (TPM) for administrative operations wasn't restricted to administrative users.
  • Plus items 1, 4 and 5 of KB4048953.

KB4048956 -- Windows 10 Version 1507 November 14, 2017—KB4048956 (OS Build 10240.17673)

  • Addressed issue where roaming user profile–enabled accounts intermittently synchronize the appdata\local and \locallow folders with the profile server. Side effects include increased profile size, which can result in logon failures when there is full disk usage. Other symptoms include increased network bandwidth and logon or logoff delays on domain-joined computers.
  • Addressed issue where applications based on the Microsoft JET Database Engine (Microsoft Access 2007 and older or non-Microsoft applications) fail when creating or opening Microsoft Excel .xls files. The error message is: “Unexpected error from external database driver (1). (Microsoft JET Database Engine)".
  • Addressed issue where access to the Trusted Platform Module (TPM) for administrative operations isn't restricted to administrative users.
  • Addressed issue where the virtual smart card doesn't assess the Trusted Platform Module (TPM) vulnerability correctly.
  • Addressed issue where, during BitLocker decryption or encryption of a drive, files protected with the Encrypting File System (EFS) may become corrupted.
  • Addressed issue that caused SharePoint Online sites to stop working in Internet Explorer.
    Addressed a crash in Internet Explorer that was seen in machines that used large font-size settings.
  • Security updates to Internet Explorer, Microsoft Scripting Engine, Microsoft Edge, Windows kernel, Windows kernel-mode drivers, Microsoft Graphics Component, Microsoft Windows Search Component, and Windows Media Player.

KB4046184 -- Security update for the information disclosure vulnerability in Windows Server 2008

KB4047206 -- Cumulative Security Update for Internet Explorer

KB4047211 -- Security update for the Windows Search denial of service vulnerability in Windows Server 2008

KB4048951 -- 2017-11 Security Update for Adobe Flash Player for Windows Server 2016, Windows 10, Windows 8.1, Windows RT 8.1, Windows Server 2012 R2, Windows Embedded 8 Standard, and Windows Server 2012

KB4048959 -- 2017-11 Security Monthly Quality Rollup for Windows Embedded 8 Standard and Windows Server 2012

KB4048960 -- 2017-11 Security Only Quality Update for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4048962 -- 2017-11 Security Only Quality Update for Windows Embedded 8 Standard and Windows Server 2012

KB4048968 -- 2017-11 Security Update for Windows Server 2008 and Windows XP Embedded

KB4048970 -- Security update for vulnerabilities in Windows Server 2008

KB4049164 -- Security update for the information disclosure vulnerability in Windows Server 2008

KB4050795 -- "Unexpected error from external database driver" error when you create or open Microsoft Excel .xls files

KB4049179 -- 2017-10 Security Update for Adobe Flash Player for Windows 10 Version 1607, Windows 10, Windows 8.1, Windows RT 8.1, Windows Server 2012 R2, Windows Embedded 8 Standard, and Windows Server 2012

Known Issues

After installing KB4041693 or KB4041691, error dialogs may be shown that indicate exceptions during the closing of applications.

  • Solution: Microsoft is working on a fix.

After installing KB4048957, KB4048961, KB4048958, KB4048960, KB4048953 updates, Internet Explorer 11 users who use SQL Server Reporting Services may not be able to scroll through drop down menus using the scroll bar.

  • Solution: Press F12, select Emulation, change the Document mode to 10.

UWP apps that use JavaScript and asm.js may stop working after installing KB4048953.

  • Solution: Uninstall the application in question, and re-install it

Installing KB4048954 may change Czech and Arabic languages to English for Edge and other apps.

  • Solution: Microsoft is still working on a solution

Security advisories and updates

Microsoft Security Advisory 4053440 -- Securely opening Microsoft Office documents that contain Dynamic Data Exchange (DDE) fields

ADV170020 -- Microsoft Office Defense in Depth Update

ADV170019 -- November 2017 Flash Security Updates

ADV170018 -- October Flash Security Update

Non-security related updates

KB4049016 -- 2017-11 Quality Rollup for .NET Framework 3.5.1 on Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4049017 -- 2017-11 Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7 on Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2

KB4049018 -- 2017-11 Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7 on Windows Embedded 8 Standard and Windows Server 2012

KB4049019 -- 2017-11 Quality Rollup for .NET Framework 2.0 on Windows Server 2008

KB4019276 -- Update to add support for TLS 1.1 and TLS 1.2 in Windows Server 2008 SP2

KB4049011 -- Servicing stack update for Windows 10 Version 1703: November 14, 201

KB4049065 -- Servicing stack update for Windows 10 Version 1607 and Windows Server 2016: November 14, 2017

KB4051314 -- Compatibility update for upgrading to Windows 10 Version 1709: November 14, 2017

KB890830 -- Windows Malicious Software Removal Tool - November 2017

KB4049370 -- November 2, 2017—KB4049370 (OS Build 15063.675) for Windows 10 Version 1703

  • Addressed issue where after installing KB4038788, some Microsoft Surface Laptops boot to a black screen. Additionally, you must press the power button for a long time to recover.

KB4052231 -- November 2, 2017—KB4052231 (OS Build 14393.1797) for Windows 10 Version 1607 and Windows Server 2016.

  • Addressed issue where applications based on the Microsoft JET Database Engine (Microsoft Access 2007 and older or non-Microsoft applications) fail when creating or opening Microsoft Excel .xls files. The error message is, “Unexpected error from external database driver (1). (Microsoft JET Database Engine)".
Read also:  Major Skype update moves it closer to Snapchat and WhatsApp

KB4052232 -- November 2, 2017—KB4052232 (OS Build 10586.1177) for Windows 10 Version 1511

  • same as KB4052231

KB2952664 -- Compatibility update for keeping Windows up-to-date in Windows 7

KB2976978 -- Compatibility update for keeping Windows up-to-date in Windows 8.1 and Windows 8

KB4051613 -- Update for Adobe Flash Player for Windows Server 2016, Windows 10 Version 1709, Windows 10 Version 1703, Windows 10 Version 1607, Windows 10 Version 1511, Windows 10 Version 1507, Windows 8.1, Windows RT 8.1, Windows Server 2012 R2, Windows Embedded 8 Standard, and Windows Server 2012

KB4019276 -- Update to add support for TLS 1.1 and TLS 1.2 in Windows Server 2008 SP2

KB4035176 -- October 17, 2017—KB4035176 Improvements and Fixes to Universal C Runtime in Windows

KB4041685 -- 2017-10 Preview of Monthly Quality Rollup for Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2

KB4041686 -- 2017-10 Preview of Monthly Quality Rollup for Windows 7 and Windows Server 2008 R2

KB4043961 -- October 17, 2017—KB4043961 (OS Build 16299.19) for Windows 10 Version 1709

  • Addressed issue where, after removing apps, they're reinstalled on every restart, logoff, and login.
  • Addressed issue where localization of the error output from a JET database is broken. Only English error strings are reported.
  • Security updates to Windows kernel-mode drivers, Microsoft Graphics Component, Internet Explorer, Windows kernel, Microsoft Windows Search Component, Windows TPM, Windows NTLM, Device Guard, Microsoft Scripting Engine, Windows Wireless Networking, Microsoft Windows DNS, Windows Server, Microsoft JET Database Engine, and the Windows SMB Server .

KB4041688 -- October 17, 2017—KB4041688 (OS Build 14393.1794) for Windows 10 Version 1607 and Windows Server 2016

  • Addressed rare issue where fonts may be corrupted after the Out of Box Experience is completed. This issue occurs on images that have multiple language packs installed.
  • Addressed issue where downloading updates using express installation files may fail after installing OS Updates 14393.1670 through 14393.1770.
  • Addressed issue that causes an error when trying to access shares on a file server.
  • Addressed issue that prevents Windows Error Reporting from saving error reports in a temporary folder that is recreated with incorrect permissions. Instead, the temporary folder is inadvertently deleted.
  • Addressed issue where the MSMQ performance counter (MSMQ Queue) may not populate queue instances when the server hosts a clustered MSMQ role.
  • Addressed issue where restricting the RPC port of the Next Generation Credentials (Windows Hello) service causes the system to stop responding when logging on.
  • Addressed issue where Personal Identity Verification (PIV) smart card PINs are not cached on a per-application basis. This causes users to see the PIN prompt multiple times in a short time period. Normally, the PIN prompt only displays once.
  • Improved M.2 NVMe SSD throughput when the queue size increases.
  • Addressed issue where running Event Tracing for Windows with Volsnap may result in error 0x50.
  • Addressed issue where using the Robocopy utility to copy a SharePoint document library, which is mounted as a drive letter, fails to copy files. However, in this scenario, Robocopy copies folders successfully.
  • Addressed issue where Miniports that make 64-bit DMA requests from a single 4 GB region may fail, preventing the system from booting.
  • Addressed issue where a disk losing communication with its S2D cluster may lead to a stale fault domain descriptor for the enclosure.
  • Addressed issue where, if an update to a pool config header occurs when it’s performing a read function, a stop error may occur in a Windows Server 2016 Storage Spaces Directory (S2D) deployment.
  • Addressed issue to allow UEFI-based customers to pre-stage UEFI-based Gen 2 VMs to run Windows Setup automatically.
  • Addressed issue that intermittently misdirects AD Authority requests to the wrong Identity Provider because of incorrect caching behavior. This can affect authentication features like Multi-Factor Authentication.
  • Added the ability for AAD Connect Health to report AD FS server health with correct fidelity (using verbose auditing) on mixed WS2012R2 and WS2016 AD FS farms.
  • Addressed issue where the PowerShell cmdlet that raises the farm behavior level fails with a timeout during the upgrade from the 2012 R2 AD FS farm to AD FS 2016. The failure occurs because there are many relying party trusts.
  • Addressed issue where adding user rights to an RMS template causes the Active Directory RMS management console (mmc.exe) to stop working with an unexpected exception.
  • Addressed issue where AD FS causes authentication failures by modifying the WCT parameter value while federating the requests to another Security Token Server (STS).
  • Updated the SPN and UPN uniqueness feature to work within the forest root tree and across other trees in the forest. The updated NTDSAI.DLL won't allow a subtree to add an SPN or a UPN as a duplicate across the entire forest.
  • Addressed issue where the language bar stays open after closing a RemoteApp application, which prevents sessions from being disconnected.
    Addressed issue where the working directory of RemoteApps on Server 2016 is set to %windir%\System32 regardless of the application's directory.
    Addressed issue where USBHUB.SYS randomly causes memory corruption that results in random system crashes that are extremely difficult to diagnose.
  • Addressed issue where the ServerSecurityDescriptor registry value doesn't migrate when you upgrade to Windows 10 1607. As a result, users might not be able to add a printer using the Citrix Print Manager service. Additionally, they might not be able to print to a client redirected printer, a Citrix universal print driver, or a network printer driver using the Citrix universal print driver.
  • Addressed issue where policies are not pushed for servers that have an updated Instance ID. This occurs when synchronizing the removal of the old server resources with the notifications about NICs (port profile changes) from the host.
  • Addressed issue where SD propagation stops working when you manually trigger Security Descriptor propagation (SDPROP) by setting the RootDse attribute FixupInheritance to 1. After setting this attribute, SD propagation and permissions changes made on Active Directory objects don't propagate to child objects. No errors are logged.
  • Added support for LTO8 tape drives into ltotape.sys for Windows Server 2016.

KB4041692 -- 2017-10 Preview of Monthly Quality Rollup for Windows Embedded 8 Standard and Windows Server 2012

KB4042076 -- 2017-10 Preview of Quality Rollup for .NET Framework 3.5.1 on Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4042077 -- 2017-10 Preview of Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7 on Windows Embedded 8 Standard and Windows Server 2012

KB4042078 -- 2017-10 Preview of Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7 on Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2

KB4042201 -- 2017-10 Preview of Quality Rollup for .NET Framework 2.0, 3.0, 4.5.2, 4.6 on Windows Server 2008

KB4048606 -- Compatibility update for upgrading to Windows 10 Version 1709: October 17, 2017

Microsoft Office Updates

KB4011220 -- Office 2016: Security update for Microsoft Excel 2016 -- This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file

  • When you save a local OneDrive for Business file in Microsoft Excel 2016, you receive the following error message:
  • The File may have been changed by another user.
  • When you use Excel embedded in a previewer application (such as Windows Explorer preview pane), the worksheet in the preview window becomes unresponsive after you switch the focus away and then back.
    When you edit cells in Excel 2016 on a high DPI display device, Excel freezes.
  • You experience the following issues in Excel 2016:
  • Cross-workbook formulas that are used as a source for a PivotTable cause Excel to crash.
  • PivotTables that are connected to OLAP cubes and they contain multiple currencies but display only one of the currency symbols.
  • When you open certain files that are created in earlier version of Excel, Excel crashes.
  • When you delete a PivotTable and then undo the operation in Excel crashes.
  • When you refresh a PivotTable in Excel 2016, more memory is consumed until all available memory is consumed.
  • You can't import SharePoint lists to obtain values for the calculated columns in the SharePoint list.
  • The Connection Properties dialog box can't be closed in certain workbooks.
  • Correct the translation of the TRIM function in the Dutch version of Excel 2016.
  • Some trusted local macros can't run if the BlockContentExecutionFromInternet security setting is enabled.

KB4011262 -- Office 2016: Security update for Office 2016 -- This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file.

KB4011242 -- Office 2016: Security update for Word 2016 -- This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file.

  • When you close a document that is created by a template (.DOTM) in Word 2016, Word 2016 may crash.
  • The footnote number in an Arabic document is displayed in Basic Latin instead of as an Arabic number.
  • When you open certain .doc files in Word 2016, Word may crash.
  • Improve performance in transforming text and styles programmability.

KB4011233 -- Office 2013: Security update for Excel 2013 -- This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file

  • Assume that you have Office Web Apps Server 2013 installed. In the on-premises version of Microsoft Word Online and Microsoft PowerPoint Online, decimal values are truncated in a chart axis or data label.
  • When you use Microsoft Excel embedded in a previewer application (such as Windows Explorer preview pane), the worksheet in the preview window becomes unresponsive after you switch the focus away and then back.
  • Calculated column value is not imported from an external data source.
  • When you try to edit the properties of a data connection in Excel 2013, you receive the following error message:
  • This connection name is already in use. Try a different name.
  • Correct the translation of the TRIM function in the Dutch version of Excel 2013.
  • When you undo some operations that involve multiple selected regions in Excel 2013, formulas may not be restored.

KB3162047 -- Office 2013: Security update for Office 2013 -- This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file.

KB4011250 -- Office 2013: Security update for Word 2013 -- This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file.

  • Assume that you have Office Web Apps Server 2013 installed. In the on-premises version of Microsoft Word Online and Microsoft PowerPoint Online, decimal values are truncated in a chart axis or data label.
  • Improve performance in transforming text and styles programmability.

Office 2010:

Office 2007:

  • KB4011276 -- Office 2007 security update
  • KB4011199 -- Excel 2007 security update
  • KB4011206 -- Excel Viewer 2007 security update
  • KB4011265 -- Microsoft Office Compatibility Pack Service Pack 3 security update
  • KB4011205 -- Microsoft Office Compatibility Pack Service Pack 3 security update
  • KB4011266 -- Microsoft Word 2007 security update
  • KB4011264 -- Microsoft Word Viewer 2007 security update

How to download and install the November 2017 security updates

windows security updates november 2017

Microsoft publishes security updates via its Windows Updates service and other services (many of them available to Enterprise customers only).

Windows systems are configured to download and install important updates by default. The operating system checks regularly, but not in real-time, for updates.

You can run a manual check for updates at any time doing the following:

  • Use the Windows-key to bring up the Start Menu.
  • Type Windows Update.
  • Select the item from the list of results.
  • Locate and activate "check for updates" on the page if a check is not run automatically when the Windows Update interface opens.
  • Updates that are found are either downloaded and installed automatically, or on user request.

Below are direct links to cumulative updates for 32-bit and 64-bit versions of Windows 7, Windows 8.1 and Windows 10.

Direct update downloads

Windows 7 SP1 and Windows Server 2008 R2 SP

  • KB4048957-- 2017-11 Security Monthly Quality Rollup for Windows 7 for x86-based Systems
  • KB4048960 -- 2017-11 Security Only Quality Update for Windows Embedded Standard 7 for x64-based Systems

Windows 8.1 and Windows Server 2012 R2

  • KB4048958 -- 2017-11 Security Monthly Quality Rollup for Windows 8.1 for x86-based Systems

  • KB4048961 -- 2017-11 Security Only Quality Update for Windows 8.1 for x86-based Systems

Windows 10  (version 1507)

  • KB4048956 -- Cumulative update for Windows 10 Version 1507

Windows 10  (version 151)

  • KB4048952 -- Cumulative update for Windows 10 Version 1511

Windows 10 and Windows Server 2016 (version 1607)

  • KB4048953 -- 2017-11  Cumulative Update for Windows 10 Version 1607 and Windows Server 2016

Windows 10 (version 1703)

  • KB4048954 -- 2017-11 Cumulative Update for Windows 10 Version 1703

Windows 10 (version 1709)

  • KB4048955 -- 2017-11 Cumulative Update for Windows 10 Version 1709

Additional resources

Summary
Article Name
Microsoft Security Updates November 2017 release
Description
Microsoft released security updates for Microsoft Windows, Microsoft Office, and other company products on the November 2017 Patch Day.
Author
Publisher
Ghacks Technology News
Logo
Advertisement
Please share this article

Facebooktwittergoogle_plusredditlinkedinmail



Responses to Microsoft Security Updates November 2017 release

  1. Richard Allen November 14, 2017 at 7:48 pm #

    Wow, no wonder I never look at these articles. Definitely cured for a while.

    • Martin Brinkmann November 14, 2017 at 8:16 pm #

      Hope you don't mean my writing ;)

      • Richard Allen November 15, 2017 at 7:39 am #

        Not at all what I was implying, sorry. LoL

  2. Anonymous November 14, 2017 at 9:00 pm #

    "Windows 7 SP1 - KB4048960 - 2017-11 Security Only Quality Update"...
    > Solution: "Microsoft is working on a fix" to make it really "Only" (don't feed the troll).

  3. Tim November 14, 2017 at 9:06 pm #

    Any ideas what KB4051033 is? See it listed on the page for Win 10 1607 but it's above the current patch of KB4048953.

  4. Paul(us) November 14, 2017 at 10:46 pm #

    Thanks again Martin Brinkmann, For this mount Microsoft update news
    A lot of reading again this month and not only with the update from Microsoft.
    Also, firms like Adobe (Shockwave and flash), Google Chrome (Yesterday) and Mozilla Firefox 57 (Quantum) are today launching there latest, so a big day today.
    But next to that hopefully, not only NoScript is launching there WebExtension quite soon but also it would be nice if Tabmixplus is not far from that date or even earlier.

  5. SCBright November 15, 2017 at 1:21 am #

    Windows Firewall stopped working at windows 10 1709 after these updates, any one has this issue?

  6. Michael November 15, 2017 at 6:38 am #

    I didn't install kb2952664 "Compatibility update for keeping Windows up-to-date in Windows 7", because it doesn't seem like a security update. I am not sure what it does.

    Ask Woody has an article on KB 2952664 and 2976978

    Recently https://www.computerworld.com/article/3236357/microsoft-windows/non-security-office-patches-appear-with-the-reprise-of-kb-2952664-and-2976978.html

    And one from last year https://www.computerworld.com/article/3127809/microsoft-windows/detested-get-windows-10-snooping-patch-kb-2952664-reappears.html

    Do these updates to provide telemetry?

    • AnorKnee Merce November 15, 2017 at 10:31 am #

      Yes. Maybe even more than just Telemetry - spyware.?

      From about 2014, there has been about 20+ different versions of KB2952664(Win 7) offered by M$, ie nearly every month. And once installed, it is not easy to uninstall. Why so many versions of this Win 7/8.1 update throughout the Win 10 years.? Something fishy is going on.

      • Jb November 16, 2017 at 9:56 pm #

        It's more than simply "fishy." Microsoft is fishing for your personal data. Once they create a sufficient profile of you and your ongoing interests, they will target you for monetary gain by way of advertisements and solicitations. Oh, and what a handy crypt of info to turn over to any Federal security entity should they come a-callin' with a demand for release, or per a compliant court order. Or maybe just to sift through by way of specialized, high-power algorithms - en masse.

        As it is, the Big 3 computer companies - Microsoft, Apple and Google - are slowly morphing into conduits of the NSA and the Feds in general. But not at the expense of profiting handsomely from raiding and manipulating our system caches for their own greedy purpo$e$ in the meantime.

  7. TelV November 15, 2017 at 1:24 pm #

    Hi Martin, you mentioned KB4041693 and KB4041691 in the "Known Issues" section, but neither of them appears anywhere else on the page; or at least CTRL+F on FF ESR 52.5.0 doesn't find them. Which updates do they belong to?

  8. TelV November 15, 2017 at 1:58 pm #

    Link to all Internet Explorer 11 security update downloads on Microsoft Catalog: https://www.catalog.update.microsoft.com/search.aspx?q=kb4047206

  9. Steve November 15, 2017 at 1:59 pm #

    It SUCKS.!!!!
    Everytime I do a "restart", it keeps giving me the SAME error "Status:Awaiting restart" (KB4048955)

  10. Henk van Setten November 15, 2017 at 3:08 pm #

    Great work again, clearing up some of the confusion created (deliberately?) by Microsoft.

    One addition: under "Direct update downloads" for Win 8.1, for the KB4048961 2017-11 "Security Only Update", only the version for x86 systems is listed above. But there is a different "Security Only Update" package for x64 systems, which Microsoft (trying to add more confusion) has given the same KB number.

    If you search for it in the Microsoft Update Catalog, you will find **three** different KB4048961 "Security Only Update" packages. For Windows 8.1 there is a 15.8 Mb version for x86 systems, and a 23.3 Mb version for x64 systems. Plus a third version for Server 2012 systems. Link to all three versions:

    http://www.catalog.update.microsoft.com/Search.aspx?q=KB4048961

    • Jody Thornton November 15, 2017 at 8:29 pm #

      Yeppers, since I have to manually download Server 2012 updates to apply to Windows 8 (not 8.1), I have to go through the confusion every month. There was the same .NET rollup for the last three months for v4.52.

  11. Tracey November 16, 2017 at 12:56 am #

    KB4048954 -- Windows 10 Version 1703 -- November 14, 2017—KB4048954 (OS Build 15063.726 and 15063.728)

    "You may also see a black or incorrectly painted screen."

    THERE'S A SHOCKER! And yup, once again, the dreaded BSOD. It seems like every update lately has this problem. And I'm sick of it. And I'm not the only one. Have to reboot in safe mode, uninstall the update, then run the Hide Updates Troubleshooter from Microsoft to keep it from installing. My PC will be forever vulnerable at this rate.

    Windows 10 Home, Version 1703, Build 15063.726

  12. Franck November 16, 2017 at 10:03 am #

    Thank you very much, awesome article as usual !

  13. TelV November 16, 2017 at 11:54 am #

    @ Jody Thornton, the links you posted to Microsoft Catalog for .NET Framework patches are all for last year and beyond i.e. 2015, 2014 etc. There are no releases listed for 2017.

  14. Adrian Harris November 16, 2017 at 2:54 pm #

    I hope this post helps someone since i spent the entire day trying to fix it.
    Computers on my network running windows 7 64 bit stop printing to EPSON FX890 printers. After finding the events in the event viewer it gave the following error on print "Win32 error code returned by the print processor: 2147500037"
    Some Googling revealed absolutely nothing.

    Re-installed the printers, drivers, ports to no avail. Normal laser printers worked fine. Finally check if there any updates installed recently and there were a few for the 15th Nov 2017. Uninstalled all the system updates for that day as well as the .net updates and restarted. Low and behold they are now printing again.

    If anyone can shed some light on this it would be amazing. Just hoping this helps someone else not to spend the whole day searching for an issue.

    Cheers

  15. Jb November 16, 2017 at 10:08 pm #

    Here's another glitch for you. Windows 7 SP1 Security-only Rollup KB4048960 ended up hosing my Windows Media Player. Specifically, WMP 12. Once the patch installed, any existing shortcut on the desktop or in the start menu I had to WMP was automatically deleted. When I then clicked on the program exe itself [located at C:\Program Files (x86)\Windows Media Player\] it relaunched the program like it is brand spanking new. All my customized settings, and all my library file links I had associated with WMP, were long gone. WTF!

    All I can say is -- thank God for System Restore!

    So as it is, if I update my system with this latest Windows security patch, I lose my customized Media Player settings and my WMP library. Conversely, If I forgo the KB4048960 update to prevent this very thing, my system basically goes "unprotected". So what now Microsoft??

    If anyone ends up finding a workaround to this latest patch snafu, please post it!

    [Windows 7 Ultimate x64]

    • A different Martin November 17, 2017 at 8:16 am #

      Everyone I know uses VLC Media Player instead of Windows Media Player, but what happened to you sounds pretty annoying. Not as annoying as the weird glitches that Microsoft updates and have inflicted on my dad's Windows 10 computer in the past month, but still pretty annoying. He's thinking about paying through the nose and switching to Apple, and for the first time I'm not inclined to talk him out of it.

      • Jb November 17, 2017 at 10:20 pm #

        It's more than annoying. A ton of work went into building that WMP library, which included all kinds of customized tweaks and tunings (hammering really), something that's basically required if you want to make something of it. It's not the easiest app to deal with I can assure you, but doable with enough patience -- and persistence. Then, thanks to a not-yet-ready-for-primetime security patch, it can all be wiped out in the blink of an eye. Thank you MS.

        I can only imagine what your dad is going through with Win10, that metrofied monster of an OS that I've avoided like the plague. The problem is once you adopt it, Microsoft insists on sitting you in their one-course-for-all caboose to go along for whatever ride they choose. To hell with "customer choice" in any imaginable stripe or configuration. In Redmond's eyes, such arcane concepts went out with the dinosaurs (aka their early user base).

        Microsoft + annoying. The two concepts blend almost seamlessly these days. Alas.

  16. A different Martin November 16, 2017 at 10:39 pm #

    My current updating routine for my Windows 7 x64 system is to:

    * Keep an eye out for reports of major bugs on gHacks, AskWoody, and my tech headlines service.

    * Wait until Belarc Advisor updates its database to incorporate the latest security updates (which usually happens a day or two after Patch Tuesday).

    * Run Belarc Advisor and see what security updates are flagged as missing.

    * Run a standard Malwarebytes scan.

    * Run a boot-time disk check/repair on my system drive.

    * Clone my system drive to a second drive that I can swap in for it, in case of a major update-induced catastrophe.

    * Run both stages of WSUS Offline Update, with the security updates only, automatic reboot and recall, and view log options ticked.

    * Check the WSUS log for each stage for errors and warnings.

    * Run Belarc Advisor again to see if anything is still missing and investigate why (e.g., because of false positives or buggy-patch blacklisting by WSUS).

    * Run WPD to make sure none of Microsoft's "security-only" patches re-opened any privacy holes.

    This month, everything went fine, Belarc and WPD gave me a clean bill of health, and I haven't noticed any system problems. (There were no errors in the WSUS logs, only warnings that the Windows Update Service couldn't be stopped or restarted, which I assume is normal, given that I had disabled the service.) I don't use Microsoft Office, so I can't speak to any potential problems there.

Leave a Reply