Below are the security fixes for the SharePoint OnPrem versions released this month.
SharePoint Server 2016:
- KB 5002559 – SharePoint Server 2016 (language independent)
Microsoft Support recommends to install the complete March 2024 CU for SharePoint 2016 rather than individual security fixes.
SharePoint Server 2019:
- KB 5002562 – SharePoint Server 2019 (language independent)
Microsoft Support recommends to install the complete March 2024 CU for SharePoint 2019 rather than individual security fixes.
SharePoint Server Subscription Edition:
- KB 5002564 – SharePoint Server Subscription Edition
This security fix includes the complete March 2024 CU for SharePoint Server Subscription Edition.
Office Online Server:
- None
See the Security Update Guide below for more details about the relevant fixes:
More information:
More information:
Please ensure to have a look at the SharePoint Patching Best Practices before applying new fixes.
Security Vulnerabilities fixed in this PU
| Vulnerability | SP 2016 | SP 2019 | SP SE | OOS | Impact | Max Severity |
|---|---|---|---|---|---|---|
| CVE-2024-21426 | x | x | x | Remote Code Execution | Important |
See the Security Update Guide below for more details about the relevant fixes:
Permalink
Hello,
Is it ok if we directly install the March 2024 CU for SP 2016 or do we have to install Dec 2023 both language and security patch,
Currently we have 16.0.4351.1000 language pack and 16.0.5369.1000 security patch installed.
Permalink
Hi Suhail,
if the December 2023 language dependent fix (KB 5002524) has not been installed you need to install it together with March 2024 CU for SP2016 where only the language dependent fixes have received an update.
Cheers,
Stefan
Permalink
Hi Stefan,
What is the latest OOS updates available to install along with March update for SharePoint 2019.
Also, we are currently on September 2023 patch level. Is it ok to install kb5002562(March language independent) and kb5002532(December language dependent) to get all servers on latest patch level?
Thank You!
Permalink
Hi Raman,
this would be this update:
https://blog.stefan-gossner.com/2023/08/08/august-2023-cu-for-office-online-server-is-available-for-download/
Cheers,
Stefan
Permalink
Thanks a lot, Stefan. We have September 2023 (KB5002470) OOS update installed in our OOS servers. In this case, we can then skip any upgrades to OOS server this time. Thanks again for your response.
Permalink
Hi Stefan,
What is the latest OOS updates available to install along with March update for SharePoint 2016 please?
Thank you!
Permalink
Hi,
the most recent OOS update was released in September 2023:
https://blog.stefan-gossner.com/2023/09/12/september-2023-cu-for-office-online-server-is-available-for-download/
Cheers,
Stefan
Permalink
Thank you!