Aktualizace pro SharePoint Server 2016 (June 2021 CU)

Pro SharePoint Server 2016 byla vydána nová kumulativní aktualizace (June 2021 CU).
Tento CU obsahuje jak Feature Pack 2, který je součástí od zářijového CU (September 2017 CU), tak i předchozí Feature Pack 1.

SP Build:
16.0.5173.1000 (Language independent CU)
16.0.5173.1000 (Language dependent CU)

SharePoint 2016 CU – KB články popisující CU:

• KB 5001946 – June 2021 Update for SharePoint Server 2016 (language independent)
  
• KB 5001922 – June 2021 Update for SharePoint Server 2016 (language dependent)

SharePoint Server 2016 CU – Odkaz ke stažení CU:

• Download June 2021 Update for SharePoint Server 2016 (language independent)
  
• Download June 2021 Update for SharePoint Server 2016 (language dependent)
  

Po dokončení instalace nezapomeňte na spuštění průvodce konfigurací služby SharePoint 2016 (SharePoint 2016 Products Configuration Wizard), nebo příkazu:
PSConfig.exe -cmd upgrade -inplace b2b -wait -cmd applicationcontent -install -cmd installfeatures -cmd secureresources -cmd services -install

Upozornění

Feature Pack 2 obsahuje též všechny funkcionality z Feature Pack 1.

Vždy instalujte oba balíčky a to v pořadí:

1. language independent (aktualizuje jazykové nezávislé komponenty)
2. language dependent (aktualizuje jazykové závislé komponenty)

V případě jazykově závislých balíčku (language dependent) nezáleží jaký jazyk si ve výsledku vyberete, jelikož každý balíček obsahuje aktualizace pro všechny jazyky.

V případě, že na SharePoint Server 2016 farmu instalujete nový jazykový balíček, je nutné následně znova nainstalovat jazykové závislý balíček (language dependent).

Nezapomínejte, že krom SharePoint je nutné mít aktualizovanou i službu Distributed Cache, viz. Jak správně aktualizovat Distributed Cache a v případě Office Online Serveru musíte mít aktuální RTM verzi, viz.  Jak aktualizovat Office Online Server.

Obsažené opravy a vylepšení

Seznam oprav a vylepšení tohoto CU je soubor výňatků z oficiálních Microsoft KB článků v původním jazyce (EN).

SharePoint Server 2016

This security update resolves a Microsoft SharePoint remote code execution vulnerability, SharePoint spoofing vulnerability, SharePoint Server information disclosure vulnerability, and SharePoint Server remote code execution vulnerability. To learn more about the vulnerabilities, see the following security advisories:

• Microsoft Common Vulnerabilities and Exposures CVE-2021-26420
• Microsoft Common Vulnerabilities and Exposures CVE-2021-31948
• Microsoft Common Vulnerabilities and Exposures CVE-2021-31950
• Microsoft Common Vulnerabilities and Exposures CVE-2021-31963
• Microsoft Common Vulnerabilities and Exposures CVE-2021-31964
• Microsoft Common Vulnerabilities and Exposures CVE-2021-31965
• Microsoft Common Vulnerabilities and Exposures CVE-2021-31966

This security update resolves a Microsoft SharePoint Server remote code execution vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2021-31966.

This update contains security and reliability improvements.

This security update also contains fixes and improvements for the following nonsecurity issues in SharePoint Server 2016:

• Improves the performance of certain database operations that are done by the SharePoint Products Configuration Wizard (PSConfig), Timer service jobs, and other features.
• Fixes an issue in which you receive the following error message when you try to clear a filter by using indexed columns in a SharePoint list that has many items:
  Cannot show the value of the filter. The field may not be filterable, or the number of items returned exceeds the list view threshold enforced by the administrator.
• Fixes an issue in which Web Parts that depend on WPProperty don’t work correctly. To enable the Web Parts to work, you have to also follow the steps that are provided in KB 5003528 to declare the affected .NET types to be allowed to access WPProperty in the Web.config file.

This security update also contains a fix for the following nonsecurity issue in Project Server 2016. Consider the following scenario:

• On a task, you set the Status Manager.
• You publish the project.
• Later, while in the same editing session, you change the Status Manager settings.
• You publish the project.

In this situation, the Status Manager property does not get updated in reporting. Instead of reflecting the new Status Manager, the old one is still observed.

Known issues in this update

• DataFormWebPart may be blocked from accessing an external URL, and it generates „8scdc“event tags in SharePoint Unified Logging System (ULS) logs. For more information, see KB 5004210.
• When third-party assemblies try to access some sensitive properties, user code might be blocked. When this issue occurs, “8gaol” event entries are logged in SharePoint Unified Logging System (ULS) logs. For example, you may find the following entry in ULS logs: 
  
  8gaol  Unable to access this sensitive property : <sensitive property name> from outer assembly. To fix this issue, install KB5002002 and follow the guidance in KB5004581 to enable trusted third-party assemblies.