The product group released the October 2020 Cumulative Update for the SharePoint 2013 product family.
For October 2020 CU we have full server packages (also known as Uber packages) for all products. No other CU is required to fully patch SharePoint.
As this is a common question: Yes, October 2020 CU includes all fixes from October 2020 PU.
ATTENTION:
Be aware that all Updates for SharePoint 2013 require SharePoint Server 2013 SP1 to be installed first.
Please also have a look at the article that discusses how to properly patch a SharePoint 2013 farm which has Search enabled (see below).
Previous releases of the SharePoint Server 2013 cumulative update included both the executable and the .CAB file in the same self-extracting executable download. Because of the file size, the SharePoint Server 2013 package has been divided into several separate downloads. One contains the executable file, while the others contain the CAB file. All are necessary and must be placed in the same folder to successfully install the update. All are available by clicking the same Hotfix Download Available link in the KB article for the release.
This CU includes all SharePoint 2013 fixes (including all SharePoint 2013 security fixes) released since SP1. The CU does not include SP1. You need to install SP1 before installing this CU.
The KB articles for October 2020 CU should be available at the following locations in a couple of hours:
- KB 4486690 – SharePoint Foundation 2013 October 2020 CU
- KB 4486693 – SharePoint Server 2013 October 2020 CU
- KB 4486691 – Project Server 2013 October 2020 CU
- KB 4486689 – Office Web Apps Server 2013 October 2020 CU
The Full Server Packages for October 2020 CU are available through the following links:
- Download SharePoint Foundation 2013 October 2020 CU
- Download SharePoint Server 2013 October 2020 CU
- Download Project Server 2013 October 2020 CU
- Download Office Web Apps Server 2013 October 2020 CU
After installing the fixes you need to run the SharePoint 2013 Products Configuration Wizard on each machine in the farm. If you prefer to run the command line version psconfig.exe ensure to have a look here for the correct Options.
Be aware that the SharePoint Server 2013 CU contains the SharePoint Foundation 2013 CU. And the Project Server 2013 CU also contains the SharePoint Server 2013 CU and SharePoint Foundation 2013 CU.
Please ensure to have a look at the SharePoint Patching Best Practices before applying new fixes.
Related Info:
- Technet: Updated Product Servicing Policy for SharePoint 2013
- Blog: SharePoint Patching Best Practices
- Blog: Common Question: What is the difference between a PU, a CU and a COD?
- Blog: SharePoint Patching demystified
- Blog: Why I prefer PSCONFIGUI.EXE over PSCONFIG.EXE
- Blog: Support for SharePoint 2013 RTM has ended
- Blog: SP1 for SharePoint 2013
- Technet: CHANGE: SharePoint 2013 Rollup Update for the December 2013 Cumulative Update Packaging
- Technet: Install a software update for SharePoint 2013
- Blog: How to: install update packages on a SharePoint 2013 farm where search component and high availability search topologies are enabled
- Technet: Update Center for Microsoft Office, Office Servers, and Related Products
- Blog: SQL Server 2014 and SharePoint Server 2013
Permalink
After September 2020 CU for SP13 we starting seeing safecontrol issue even for custom pagelayout, that has a code-behind class which is derived from PublishingLayoutPage.
Does this October 2020 CU resolves it?
Or the resolution is infact to have a safecontrol entry even for classes that are derived from PublishingLayoutPage?
Permalink
Hi Mike,
as soon as your own code is involved you need to enable the class in the web.config.
Cheers,
Stefan
Permalink
Hi Stefan,
Does it mean that issue occurred after September 2020 CU is not fixed in latest CU? We have updated our web.config manually after September and October 2020 CU. The changes made to web.config gets reverted after each CU updates and we need to keep updating web.config to fix this issue after each CU updates in our SharePoint 2013 environment. What do you recommend ?
Issue what we are facing is :
Web Part Error: The control type ‘System.Version’ is not allowed on this page. The type System.Version, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 could not be found or it is not registered as safe. Correlation ID: 48708a9f-6d4b-70b0-e122-81275800f640.
Best Regards,
Meena Makwana
Permalink
Hi Meena,
again: this is not an issue this is now by design to address certain security problems.
These changes should not be reverted through a CU installation.
Cheers,
Stefan
Permalink
Thanks Stefan for the clarifications.
Permalink
Hi Stefan,
This CU includes, Patch KB4486694 (CVE-2020-16952) intended for SharePoint Foundation 2013 Service Pack 1. However, Sharepoint 2013 Standard/Ent edition are not mentioned in the same advisory. Does this mean that this security patch should be applied to Standard/Enterprise 2013 as well?
Permalink
Hi Mark,
SharePoint Foundation is part of SharePoint Server.
All SharePoint Foundation security fixes also have to be applied to SharePoint Server.
Cheers,
Stefan
Permalink
Has anyone had any issues with the Edit in Word Web App being disabled for *.docx files after applying KB4486689?
Thanks
Permalink
Hi Stefan,
Has anyone experienced any issues after applying KB 4486689 – Office Web Apps Server 2013 October 2020 CU?
We are experiencing an issue where the “Edit in Word Web App” option is greyed out for docx files. It is not greyed out for doc files, but of course when it is selected, it asks to convert it to a docx file, and then the option to “Edit in Word Web App” is again greyed out
xlsx, pptx files seem to be fine
Any thoughts?
Permalink
Hi Dean, i have installed the CU for Office Web App Server and I doesn’t face the menitioned issue. Maybe you should check your Office Web App Service if everthing is running fine (like it is described in this article: https://social.msdn.microsoft.com/Forums/en-US/59ad19c8-492b-4077-b774-99b3f8c442d0/office-web-apps-quotedit-in-word-web-appquot-missing?forum=sharepointadmin)
Kind regards, Adnan