This monthly rollup is only shipped to ESU devices

Mar 10, 2021 16:17 GMT  ·  By

Microsoft has shipped a new Windows 7 monthly rollup as part of the March 2021 Patch Tuesday cycle, but once again, this one is shipped only to devices configured to receive Extended Security Updates.

Windows 7 has already been retired in January 2020, so only computers that are enrolled in Microsoft’s ESU program, and thus getting custom security updates in exchange for a fee, are getting this monthly rollup.

Organizations that have already registered their devices for custom updates are therefore provided with monthly rollup KB5000841, which includes several security improvements, including for Windows Fundamentals, Windows Shell, Windows UAC, and Windows Media.

Important security fixes

But in addition, Microsoft says it has resolved an elevation of privilege vulnerability that concerns the way printing jobs are handled by the operating system.

“Addresses an elevation of privilege security vulnerability documented in CVE-2021-1640 related to print jobs submitted to “FILE:” ports. After installing Windows updates from March 9, 2021 and later, print jobs that are in a pending state before restarting the print spooler service or restarting the OS will remain in an error state. Manually delete the affected print jobs and resubmit them to the print queue when the print spooler service is online,” the company explains.

There’s also a second important fix specifically aimed at organizations.

“Addresses an issue in which a non-native device that is in the same realm does not receive a Kerberos Service ticket from Active Directory DCs. This issue occurs even though Windows Updates are installed that contain CVE-2020-17049 protections released between November 10 and December 8, 2020 and configured PerfromTicketSignature to 1 or larger. Ticket acquisition fails with KRB_GENERIC_ERROR if callers submit a PAC-less Ticket Granting Ticket (TGT) as an evidence ticket without the USER_NO_AUTH_DATA_REQUIRED flag being set for the user in User Account Controls,” Microsoft says.

There are no new known issues in this monthly rollup as compared to the previous releases.