October 2020 CU for SharePoint 2013 product family is available for download

The product group released the October 2020 Cumulative Update for the SharePoint 2013 product family.

For October 2020 CU we have full server packages (also known as Uber packages) for all products. No other CU is required to fully patch SharePoint.

As this is a common question: Yes, October 2020 CU includes all fixes from October 2020 PU.


Be aware that all Updates for SharePoint 2013 require SharePoint Server 2013 SP1 to be installed first.

Please also have a look at the article that discusses how to properly patch a SharePoint 2013 farm which has Search enabled (see below).

Previous releases of the SharePoint Server 2013 cumulative update included both the executable and the .CAB file in the same self-extracting executable download. Because of the file size, the SharePoint Server 2013 package has been divided into several separate downloads. One contains the executable file, while the others contain the CAB file. All are necessary and must be placed in the same folder to successfully install the update. All are available by clicking the same Hotfix Download Available link in the KB article for the release.

This CU includes all SharePoint 2013 fixes (including all SharePoint 2013 security fixes) released since SP1. The CU does not include SP1. You need to install SP1 before installing this CU.

The KB articles for October 2020 CU should be available at the following locations in a couple of hours:

  • KB 4486690 – SharePoint Foundation 2013 October 2020 CU
  • KB 4486693 – SharePoint Server 2013 October 2020 CU
  • KB 4486691 – Project Server 2013 October 2020 CU
  • KB 4486689 – Office Web Apps Server 2013 October 2020 CU

The Full Server Packages for October 2020 CU are available through the following links:

After installing the fixes you need to run the SharePoint 2013 Products Configuration Wizard on each machine in the farm. If you prefer to run the command line version psconfig.exe ensure to have a look here for the correct Options.

Be aware that the SharePoint Server 2013 CU contains the SharePoint Foundation 2013 CU. And the Project Server 2013 CU also contains the SharePoint Server 2013 CU and SharePoint Foundation 2013 CU.

Please ensure to have a look at the SharePoint Patching Best Practices before applying new fixes.

Related Info:


  1. After September 2020 CU for SP13 we starting seeing safecontrol issue even for custom pagelayout, that has a code-behind class which is derived from PublishingLayoutPage.

    Does this October 2020 CU resolves it?
    Or the resolution is infact to have a safecontrol entry even for classes that are derived from PublishingLayoutPage?


    1. Hi Mike,
      as soon as your own code is involved you need to enable the class in the web.config.


  2. Hi Stefan,

    This CU includes, Patch KB4486694 (CVE-2020-16952) intended for SharePoint Foundation 2013 Service Pack 1. However, Sharepoint 2013 Standard/Ent edition are not mentioned in the same advisory. Does this mean that this security patch should be applied to Standard/Enterprise 2013 as well?


    1. Hi Mark,
      SharePoint Foundation is part of SharePoint Server.
      All SharePoint Foundation security fixes also have to be applied to SharePoint Server.


Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.