SharePoint

Package Name KB Number Release Date
SharePoint Foundation 2013

SharePoint Server 2013

KB3118361

KB3118366

October 2016

October 11, 2016, cumulative update for SharePoint Server 2013 (KB3118366)

Cumulative update packages for Microsoft SharePoint Server 2013 contain hotfixes for the issues that were fixed since the release of SharePoint Server 2013. This update has a prerequisite.

Note This is build 15.0.4867.1002 of the cumulative update package.

We recommend that you test those hotfixes before you deploy them in a production environment. Because the builds are cumulative, each new release contains all the hotfixes and security updates that were included with the previous SharePoint Server 2013 update package releases.

Important notes about the cumulative update package

  • The Microsoft Office 2013 hotfixes are now multilingual. This cumulative update package contains updates for all languages.
  • This cumulative update package includes all the server component packages. Additionally, this cumulative update package updates only those components that are installed on the system.

Improvements and issues that this cumulative update fixes

This cumulative update package includes cloud hybrid search capability to SharePoint Server 2013. Learn about cloud hybrid search for SharePoint.

This update also fixes the issues that are described in the following Microsoft Knowledge Base articles:

October 11, 2016, update for SharePoint Server 2013 (KB3118355)

Improvements and fixes
  • Updates Norwegian_Nynorsk proofing tools.
  • Adds a new feature to allow recall to be excluded from the link update group of search indexes which may contain unrelated content based on your queries.
  • Fixes the following issues:
    • The Options dialog box appears after seconds of delay with Czech keyboard layout and proofing tools.
    • Search results aren’t ranked correctly for certain queries and result sets.
    • Fixes an Alternative Access Mapping (AAM) performance issue in which search from SharePoint sites that are AMM mapped times out.
    • Enables query logging to record original query text.
    • Improves text extraction of single byte character sets when it’s used in composite fonts in PDF files.
    • Computers that are running SQL Server are affected by the Task List synchronization jobs if the jobs freeze, this causes the SharePoint platform to be inaccessible. Corporate Intranet availability is affected. Access to all files and folders that are shared by teams and partners are unavailable.

      Note If the Task List job is disabled, no shared team or project tasks can be synchronized to Outlook 2013.

    • You cannot get auto-generated query suggestions for search pages when a custom result source is used in the query.
    • Followed Count Web Part can’t be displayed because of null reference exception.
    • Crawl information isn’t displayed for lists on sub sites.
    • Navigation settings to hide or unhide items don’t work correctly.
    • When a site is on hold, the attachments of list items on the site aren’t preserved. The update changes the behavior and preserves attachments of list items on a site that’s on hold when the attachments or the items are deleted. The attachments are preserved in a preservation hold library. To enable this feature for an existing site that’s on hold, upgrade should be executed (by using psConfig or Configuration wizard).
    • Enables extraction of OLE properties from a third-party IFilter.

October 11, 2016, update for SharePoint Foundation 2013 (KB3118368)

Improvements and fixes
  • Introduce a new switch to enable recall to be excluded from the link update group of search indexes that may contain unrelated content based on user queries.
  • Makes query logging to use original user query text.
  • Fixes the following issues:
    • When you edit a SharePoint page, screen readers report RTE fields as unlabeled edit.
    • When you insert embedded code and move to the delete button, screen readers report the button as a popup.
    • When the If-Modified-Since HTTP header instead of the If-None-Match HTTP header is sent, the server responds with the (304) Not Modified error even when the document is changed since the client-specified time.
    • If you have an orphaned app in the initialized state on a site and you delete the site, Health Analyzer reports that there’s an error and the auto-fix doesn’t work.
    • The client context builds incorrect urls if page context information isn’t available yet.
    • When you send email messages with multiple attachments that have a same attachment name, the email messages are deleted and aren’t saved in SharePoint Server 2013 lists.
    • If an alert with multiple user lookup fields is generated, some fields will have incorrect or missing data.
    • A Content Query Web Part may display no result for a query that includes more than 10 lists if one of the lists has more than 5000 items with unique permissions.
    • Links that are longer than 256 characters are truncated after a rename, a content type update, or a content deployment.
    • As part of SharePoint database upgrade, the members of the db_owner role are deleted from the role, except for the “dbo” user and the user performing the upgrade. This is done for enhanced security to make sure that an errant account isn’t inadvertently left with the db_owner role privileges. However, there may be situations where this behavior is not desirable. For example, RBS may be broken each time upgrade is run. In this situation, a registry key is added to bypass this behavior.

      Note Before you install this update, follow the steps in the Registry information section to create the registry key.

    • Links may begin with “//” (such as //www.microsoft.com/about/) as malformed server-relative links. After you install this update, the links are recognized as specifying the host name but keeping the same URL scheme as the referencing page.

MS16-121: Beschrijving van de beveiligingsupdate voor Word Automation Services in SharePoint Server 2013: 11 oktober 2016

Summary

This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft Security Bulletin MS16-121.

Note To apply this security update, you must have the release version of Service Pack 1 for Microsoft SharePoint Server 2013 installed on the computer.

For a complete list of affected versions of Microsoft Office software, see Microsoft Knowledge Base article 3194063.

Improvements and fixes

This security update contains improvements and fixes for the following nonsecurity issues:

  • When you use Word Automation Services to update fields, table-related formulas are reset to value zero.

October 11, 2016, update for SharePoint Foundation 2013 (KB3118371)

Improvements and fixes
  • Translates some terms in multiple languages to make sure that the meaning is accurate.
  • Fixes the following issue:
    As part of SharePoint database upgrade, the members of the db_owner role are deleted from the role, except for the “dbo” user and the user who runs the upgrade. This is done for enhanced security to make sure that an errant account isn’t inadvertently left with the db_owner role permissions. However, there may be situations where this behavior isn’t desirable. For example, RBS may be broken every time that an upgrade is run. In this situation, a registry key is added to bypass this behavior.

    Note Before you install this update, follow the steps in the Registry information section to create the registry key.

 

SharePoint 2013 – October 2016 CU – KB3118361 and KB3118366

Leave a Reply

Your email address will not be published. Required fields are marked *