{"id":13367,"date":"2018-09-17T08:30:02","date_gmt":"2018-09-17T16:30:02","guid":{"rendered":"https:\/\/www.palada.net\/index.php\/2018\/09\/17\/news-7134\/"},"modified":"2018-09-17T08:30:02","modified_gmt":"2018-09-17T16:30:02","slug":"news-7134","status":"publish","type":"post","link":"https:\/\/www.palada.net\/index.php\/2018\/09\/17\/news-7134\/","title":{"rendered":"SharePoint Workflows go belly-up when you install the September .Net Security Only patch"},"content":{"rendered":"<p><img decoding=\"async\" src=\"https:\/\/images.idgesg.net\/images\/article\/2017\/09\/windows_patch_security4-100734735-large.3x2.jpg\"\/><\/p>\n<p><strong>Credit to Author: Woody Leonhard| Date: Mon, 17 Sep 2018 08:29:00 -0700<\/strong><\/p>\n<p><span style=\"font-weight: 400;\">\u2018Softie Rodney Viana has <\/span><a href=\"https:\/\/blogs.msdn.microsoft.com\/rodneyviana\/2018\/09\/13\/after-installing-net-security-patches-to-address-cve-2018-8421-sharepoint-workflows-stop-working\/\" rel=\"nofollow noopener\" target=\"_blank\"><span style=\"font-weight: 400;\">posted details<\/span><\/a><span style=\"font-weight: 400;\"> and a workaround for the \u201cSystem.CodeDom.CodeBinaryOperatorExpression is not marked as authorized\u201d bug. <\/span><\/p>\n<p><span style=\"font-weight: 400;\">Apparently, installing last Tuesday\u2019s KB 4457916 <\/span><a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4457916\/security-only-updates-for-net-framework-3-5-4-5-2-4-6-4-6-1-4-6-2-4-7\" rel=\"nofollow noopener\" target=\"_blank\"><span style=\"font-weight: 400;\">Security Only updates for .Net Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, and 4.7.2 for Windows 8.1 and Server 2012 R2<\/span><\/a><span style=\"font-weight: 400;\"> causes a hard stop with any SharePoint Workflows. (Workflows are set up by an admin to handle the flow of documents through a series of steps.) <\/span><\/p>\n<p><span style=\"font-weight: 400;\">The net result: A hard hiccup anytime a document enters a Workflow.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The solution, per Viana, is to manually enter an &lt;authorizedType&gt; tag in the .Net config file.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">At this point I haven\u2019t seen the error appear with other variations of the CVE-2018-8421 <\/span><a href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2018-8421\" rel=\"nofollow noopener\" target=\"_blank\"><span style=\"font-weight: 400;\">.NET Framework Remote Code Execution Vulnerability<\/span><\/a><span style=\"font-weight: 400;\"> patch, but &#8220;Week B&#8221; just fell into the Recycle Bin and <a href=\"https:\/\/www.computerworld.com\/article\/3296006\/microsoft-windows\/the-mechanics-of-windows-patching-in-plain-english.html\" rel=\"noopener\" target=\"_blank\">&#8220;Week C&#8221; looms<\/a>.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Of course, there\u2019s no warning about the error in the <\/span><a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4457916\/security-only-updates-for-net-framework-3-5-4-5-2-4-6-4-6-1-4-6-2-4-7\" rel=\"nofollow noopener\" target=\"_blank\"><span style=\"font-weight: 400;\">KB article<\/span><\/a><span style=\"font-weight: 400;\">.<\/span><\/p>\n<p><i><span style=\"font-weight: 400;\">Thx @columbia2011<\/span><\/i><\/p>\n<p><i><span style=\"font-weight: 400;\">Join us for patch divination on the \u00a0<\/span><\/i><a href=\"https:\/\/www.askwoody.com\/2018\/install-the-patch-tuesday-net-security-only-patch-kb-4457916-and-you-clobber-sharepoint-workflows\/\" rel=\"nofollow noopener\" target=\"_blank\"><i><span style=\"font-weight: 400;\">AskWoody Lounge<\/span><\/i><\/a><i><span style=\"font-weight: 400;\">.<\/span><\/i><\/p>\n<p><a href=\"https:\/\/www.computerworld.com\/article\/3305790\/microsoft-windows\/sharepoint-workflows-go-belly-up-when-you-install-the-september-net-security-only-patch.html#tk.rss_security\" target=\"bwo\" >http:\/\/www.computerworld.com\/category\/security\/index.rss<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><img decoding=\"async\" src=\"https:\/\/images.idgesg.net\/images\/article\/2017\/09\/windows_patch_security4-100734735-large.3x2.jpg\"\/><\/p>\n<p><strong>Credit to Author: Woody Leonhard| Date: Mon, 17 Sep 2018 08:29:00 -0700<\/strong><\/p>\n<article>\n<section class=\"page\">\n<p><span style=\"font-weight: 400;\">\u2018Softie Rodney Viana has <\/span><a href=\"https:\/\/blogs.msdn.microsoft.com\/rodneyviana\/2018\/09\/13\/after-installing-net-security-patches-to-address-cve-2018-8421-sharepoint-workflows-stop-working\/\" rel=\"nofollow noopener\" target=\"_blank\"><span style=\"font-weight: 400;\">posted details<\/span><\/a><span style=\"font-weight: 400;\"> and a workaround for the \u201cSystem.CodeDom.CodeBinaryOperatorExpression is not marked as authorized\u201d bug. <\/span><\/p>\n<p><span style=\"font-weight: 400;\">Apparently, installing last Tuesday\u2019s KB 4457916 <\/span><a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4457916\/security-only-updates-for-net-framework-3-5-4-5-2-4-6-4-6-1-4-6-2-4-7\" rel=\"nofollow noopener\" target=\"_blank\"><span style=\"font-weight: 400;\">Security Only updates for .Net Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, and 4.7.2 for Windows 8.1 and Server 2012 R2<\/span><\/a><span style=\"font-weight: 400;\"> causes a hard stop with any SharePoint Workflows. (Workflows are set up by an admin to handle the flow of documents through a series of steps.) <\/span><\/p>\n<p class=\"jumpTag\"><a href=\"\/article\/3305790\/microsoft-windows\/sharepoint-workflows-go-belly-up-when-you-install-the-september-net-security-only-patch.html#jump\">To read this article in full, please click here<\/a><\/p>\n<\/section>\n<\/article>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[11062,10643],"tags":[714,10525],"class_list":["post-13367","post","type-post","status-publish","format-standard","hentry","category-computerworld","category-independent","tag-security","tag-windows"],"_links":{"self":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/13367","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=13367"}],"version-history":[{"count":0,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/13367\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=13367"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=13367"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=13367"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}