Does Version 12 have patch for CVE-2020-0601?

Does Version 12 have patch for CVE-2020-0601?

Postby jonlosada » 06.01.2021, 21:01

Hello everyone,

I have installed version 12 on my Windows 10 LTSC 1809 system. However, I have been told by my associates that the patch for CVE-2020-0601 which is normally found in KB4534273 (for 1809 systems) is not there?

This patch was released some time ago in January 2020. Could it be packaged as part of a cumulative or service pack update? If so, how can I verify?

Thank you!
jonlosada
 
Posts: 8
Joined: 16.10.2019, 17:30

Re: Does Version 12 have patch for CVE-2020-0601?

Postby hbuhrmester » 06.01.2021, 23:27

First of all, you should not use WSUS Offline Update 12.0 from https://www.wsusoffline.net/ anymore. This version is not maintained anymore.

Try the Community Edition 12.4 from https://gitlab.com/wsusoffline/wsusoffline/-/releases instead.

See the forum post https://forums.wsusoffline.net/viewtopic.php?f=7&t=10194 for details.



The update history for Windows 10, version 1809 is listed on the support page:
https://support.microsoft.com/en-us/help/4464619/windows-10-update-history


KB4534273 is an OS Build from January 14, 2020:
https://support.microsoft.com/en-us/help/4534273/windows-10-update-kb4534273

It has been superseded several times — basically every month. All OS Builds are cumulative updates; they include all updates of previous versions. Note, that the support page says:

OS Builds 17763.941 and later address the vulnerability in CVE-2020-0601 for Microsoft Azure virtual machines.



The latest OS Build for Windows 10, version 1809 would be KB4592440 from December 8, 2020:
https://support.microsoft.com/en-us/help/4592440/windows-10-update-kb4592440

This update is downloaded by WSUS Offline Update 12.4 as:

Code: Select all
w100/glb/windows10.0-kb4592440-x86_ce91526960a9eb7a969c25c833973fe30c8062f9.cab
w100-x64/glb/windows10.0-kb4592440-x64_f8bf544fcc5b72b4438ed0065014d065cb8ead12.cab


The mentioned Servicing Stack Update kb4587735 is also downloaded:

Code: Select all
w100/glb/windows10.0-kb4587735-x86_734fe3f318e8899b110e26e12de235e9890dafaa.cab
w100-x64/glb/windows10.0-kb4587735-x64_d458a9961e2462f981e998269e4a7c51970ca485.cab


So, if kb4592440 and kb4587735 are installed, then it should be okay. The installation log may be found as:

Code: Select all
%SystemRoot%\wsusofflineupdate.log
C:\Windows\wsusofflineupdate.log




The official patch day is the second Tuesday each month. Therefore, these updates may be replaced again next week.

hbuhrmester
hbuhrmester
 
Posts: 525
Joined: 11.10.2013, 20:59

Re: Does Version 12 have patch for CVE-2020-0601?

Postby jonlosada » 08.01.2021, 20:22

Thank you very much for all this information,

this is exactly what I was looking for!
jonlosada
 
Posts: 8
Joined: 16.10.2019, 17:30


Return to Installation / Updating

Who is online

Users browsing this forum: No registered users and 51 guests