Monthly Rollup KB5009624 for Windows Server 2012 R2 - January Updates

The monthly rollup update for Windows 2012 Server R2 has been released. The KB5009624 monthly rollup update contains the security update to bridge the security vulnerabilities. Aside from that, non security improvements are also a part of the monthly rollup updates. Below, we talk about the monthly rollup KB5009624. We discuss the bug fixes, improvements and the issues faced on account of the KB5009624 monthly rollup updates. This monthly rollup update follows the previous monthly rollup update KB5008263. Emergency update KB5010215 had been released by Microsoft to install over the KB5008263 in the second week of January 2022. So, if you have been patching regularly, you should have the monthly rollup KB5008263 and the emergency update KB5010215 on top of your Windows Server 2012 R2.

Topics covered in this post

How can I download KB5009624 monthly rollup update for Windows Server 2012 R2?

The monthly rollup update for Windows Server 2012 R2 can be downloaded from the Microsoft Update catalog. The exact links for downloading the KB5009624 for Windows Server 2012 R2 are posted below for your ready reference.

Download KB5009624 monthly security update for Windows Server 2012 R2 for x64 or AMD64 systems with 64 bit processor. This update weighs 546.9 MB.
Download KB5009624 for Windows Embedded 8.1 server for x64 or 64 bit processors. This update weighs 546.9 MB.
Download KB5009624 for Windows Embedded 8.1 server for x86 based servers. This update weighs 357.1 MB.

All these updates can be installed through manual download from the catalog site. However, the server may require a reboot to complete the update process. So, please do schedule a change process.

Can I install KB5009624 monthly security update automatically?

Yes, the KB5009624 monthly rollup security update can be installed automatically on the Windows Server 2012 R2. The patch can be automatically downloaded and applied on the server. You could use one of the following methods to install the KB5009624 update automatically.

KB5009624 can be downloaded automatically using the Windows Update or Microsoft Update.
KB5009624 can be automatically installed using the Windows Server Update Service (WSUS). You will need to configure the WSUS to get these updates as per the following details.
Product: Windows 8.1, Windows Server 2012 R2, Windows Embedded 8.1 Industry Enterprise, Windows Embedded 8.1 Industry Pro.
Classification: Security Updates

Issues in installing KB5009624 update on Windows Server 2012 R2

KB5009624 monthly rollup update for Windows Server 2012 R2 has caused a few issues upon installation. System administrators have reported experiencing the following issues on the Windows Server 2012 R2:

Bootloop on the Windows Server 2012 R2 after installing the update KB5009624. Servers get stuck in endless loops and cannot go beyond the reboot loop.
Hyper VM V is known to have been affected on a few servers. This leads to failure of the Virtual Machines and the virtualization layer breaks.
There have been issues with the ReFS volumes or drives. The internal and external ReFS volumes may turn RAW after installing the KB5009624 monthly rollup security update.
VPN connections through the Windows Server 2012 R2 may fail. VPN issues may affect the PPTP or L2TP VPN endpoints on the servers.
LDAP bindings may fail on the Windows Server 2012 R2.

All these issues get resolved automatically upon uninstallation of the KB5009624 monthly rollup security update.

Not all servers will face these issues though. So, you need to follow a graded approach to updating the Windows Server 2012 R2 with the KB5009624. Domain controllers should be the last ones to be touched. We do suggest that you may start updates with the KB5009624 in a phased manner. Patch the least significant servers with the KB5009624 monthly rollup update. Follow up in a graded hierarchy. Non-domain controllers would be the ones that must be patched before touching the domain controllers.

To uninstall the KB5009624 from a Windows 2012 R2 server that is stuck in a boot loop, please follow the instructions below:

Take the server off from the network.
Boot into the safe mode.
Remove or uninstall the KB5009624 monthly rollup update from the control panel.
Reboot the server.
Re-connect the server to the network.

We await confirmation or a resolution of the various issues with KB5009624 by Microsoft. If we get an out of band update, we will post an update about the KB5009624 on the page.

What bugs have been fixed in KB5009624 for Windows Server 2012 R2?

An Active Directory issue has been resolved as part of the KB5009624 for Windows Server 2012 R2. KB5009624 monthly rollup security update:

Addresses a Windows Server issue in which Active Directory attributes are not written correctly during a Lightweight Directory Access Protocol (LDAP) modify operation with multiple specific attribute changes.

What are the known issues in KB5009624 for Windows Server 2012 R2?

The following known issue has been shared by Microsoft for the KB5009624 security update for Windows Server 2012 R2:

File and folder operations on the clustered shared volume may fail with STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5). This occurs when you perform the operation on a CSV owner node from a process that doesn’t have administrator privilege.

Microsoft has suggested that you could either perform the operation through an account with administrative privileges. Alternatively, you may perform the file and folder operations from a node that does not have CSV ownership. Both these tweaks will take care of the known issue on the Windows Server 2012 R2.

Summary

KB5009624 is a monthly rollup update for the Windows Server 2012 R2.
System adminsitrators have some significant issues after installing the KB5009624 on Windows Server 2012 R2. Bootloops, Hyper VM V breaking and ReFS volume drives becoming RAW are the major reported issues.
You may also experience VPN issues or failed LDAP bindings on the Windows Server 2012 R2 after installing KB5009624.
All these issues get automatically resolved by uninstalling the KB5009624 monthly security update.
It may be worthwhile to wait for these issues to get resolved before installing the KB5009624 monthly rollup update for Windows Server 2012 R2.

You may also like to read about some other security updates by Microsoft:

Rajesh Dhawan

Rajesh Dhawan is a technology professional who loves to blog about smart wearables, Cloud computing and Microsoft technologies. He loves to break complex problems into manageable chunks of meaningful information.