MS16-100 fails applicable rule on Windows 2012 R2
search cancel

MS16-100 fails applicable rule on Windows 2012 R2

book

Article ID: 164772

calendar_today

Updated On:

Products

Patch Management Solution for Windows

Issue/Introduction

MS16-100 Windows8.1-2012-R2-KB3172729-x64.msu is not being reported as Applicable for Windows Server 2012 R2 computers that were reported as applicable by Microsoft Baseline Security Analyzer when using patch management

STPatchAssessment.log contained the following information

2017-02-27T18:51:29.6003780Z 3094 V PatchTest.cpp:610 Testing 'MS16-100'.
2017-02-27T18:51:29.6003780Z 3094 V PatchTest.cpp:1113 Return[DOES NOT APPLY] Message[]
2017-02-27T18:51:29.6003780Z 3094 V PatchTest.cpp:653 NOT testing 'MS16-100' - patch script said it did not apply.

Environment

Windows Server 2012 R2

Cause

Referreing to the link listed below:

https://support.microsoft.com/en-us/help/3172729/ms16-100-description-of-the-security-update-for-secure-boot-august-9,-2016

Refer to the section Known issues in this security update

This update requires KB3173424 to be installed if running Windows 2012 R2

Resolution

Install KB3173424.  Then the applicability rule will show as being applicable.

Powered by Wolken Software