KB5021249 is the latest cumulative update for Windows Server 2022. The update is also valid for Windows Server 2022 Server core installation. Below, we look at some critical points about the cumulative update KB5021249.
Salient points about KB5021249 for Windows Server 2022
- KB5021249 has been superseded by KB5022291 cumulative update. It was released on 10th January 2023.
- KB5021249 is a cumulative update. It supersedes November month’s cumulative update KB5019081.
- KB5021249 includes all the changes that are part of the OOB or out-of-band update KB5021656. On a similar note, KB5021249 also includes the changes that are part of the preview update KB5020032 for Windows Server 2022.
- KB5021249 corresponds to server build 20348.1366. If you are upgrading from November 2022 cumulative update KB5019081, you will be upgrading from server build 20348.1249.
- Servicing Stack Update version 20348.1300 corresponds to KB5021249. No separate steps are needed to install the Servicing Stack Update because it is already included in the cumulative update KB5021249 for Windows Server 2022.
- Post-deployment issues include problems in connecting to a database using Microsoft’s ODBC SQL driver. The second issue leads to an inability to create network adapters on a Hyper-V host while creating a new Virtual Machine and joining an existing VM network.
- Windows Server 2022 is affected by 25 security vulnerabilities. Three of these vulnerabilities have ‘CRITICAL’ severity levels. Brief details of vulnerabilities are shared below.
If you wish to read more about November’s cumulative update KB5019081 for Windows Server 2022, you can check this page for KB5019081 here.
Download KB5021249 for Windows Server 2022
KB5021249 can be deployed on Windows Server 2022 manually. For manual deployment of KB5021249, you could download the offline installer file from the Microsoft Update Catalog page. You will need to download the offline installer file for Windows Server 2022 version 21H2 or 22H2.
We are also sharing direct download links for each Windows 2022 version below.
| Windows Server version | Download update | Size of update |
|---|---|---|
| Windows Server 2022 version 21H2 | Download KB5021249 | 317.5 MB |
| Windows Server 2022 version 22H2 | Download KB5021249 | 317.5 MB |
Apart from manual installation, you may choose any of the following methods to deploy cumulative update KB5021249 on Windows Server 2022:
- Windows Update
- Windows Update for Business
- WSUS or Windows Server Update Service
Post-deployment issues after installing KB5021249
Microsoft has confirmed two post-deployment issues after installing KB5021249. A brief description of each issue is listed below. For more details, we suggest having a look at the release notes of KB5021249.
You may experience problems in accessing database through Microsoft ODBC Sql Server connection. Here is what Microsoft has shared about the issue:
After installing this update, apps that use ODBC connections through Microsoft ODBC SQL Server Driver (sqlsrv32.dll) to access databases might not connect. Additionally, you might receive an error in the app, or you might receive an error from the SQL Server
As of now, there is no fix for this issue. However, we expect Microsoft will release an out-of-band update to resolve this issue soon.
The second issue may cause problems in creating network adapters for newly created Virtual Machines on a Hyper-V host. Here is a brief issue description
After installing this update on Hyper-V hosts managed by SDN configured System Center Virtual Machine Manager (VMM), you might receive an error on workflows involving creating a new Network Adapter (also called a Network Interface Card or NIC) joined to a VM network or a new Virtual Machine (VM) with a Network Adapter joined to a VM network. Existing VMs with existing Network Adapters should not have issues connecting after installing this update, only new Network Adapters created after installation of this update are affected.
A fix is being worked upon by Microsoft. Expect to see a resolution as part of an OOB update soon.
Issues resolved in KB5021249 for Windows Server 2022
The following issue has been resolved in KB5021249:
- This update addresses an issue that affects remote networks. This issue stops you from reconnecting to them using DirectAccess.
Vulnerabilities on Windows Server 2022 shared under KB5021249
There are 25 security vulnerability disclosures in December month’s security bulletin by Microsoft. Out of this, the following vulnerabilities are mentioned below:
- There are six vulnerabilities with Remote Code Execution threats. These vulnerabilities are CVE-2022-41076, CVE-2022-44676, CVE-2022-44670, CVE-2022-44668, CVE-2022-44667, and CVE-2022-44666. Out of these six threats, 3 have a CRITICAL severity. The CRITICAL vulnerabilities are shared below.
- There are twelve vulnerabilities that could lead to ‘Elevation of Privilege’ attacks. These vulnerabilities are CVE-2022-41094, CVE-2022-44689, CVE-2022-44683, CVE-2022-44681, CVE-2022-44680, CVE-2022-44678, CVE-2022-44677, CVE-2022-44675, CVE-2022-44671, CVE-2022-44669, CVE-2022-41121, and CVE-2022-41077.
- There are three Denial of Service vulnerabilities. The DoS vulnerabilities are CVE-2022-44707, CVE-2022-44697, and CVE-2022-44682.
- There are three Information disclosure vulnerabilities. The ID vulnerabilities are CVE-2022-44679, CVE-2022-44674, and CVE-2022-41074.
- A single Security Feature Bypass vulnerability CVE-2022-44698 affects Windows Server 2022.
Rajesh Dhawan is a technology professional who loves to blog about smart wearables, Cloud computing and Microsoft technologies. He loves to break complex problems into manageable chunks of meaningful information.