Microsoft has actually re-released the November 2024 security updates for Exchange Server after pulling them previously this month due to email shipment concerns on servers utilizing customized mail circulation guidelines.
The business revealed it pulled the updates from the Download Center and Windows Update following prevalent reports from admins that email had actually stopped streaming in their companies.
This recognized concern impacts those consumers who utilize transportation (mail circulation) guidelines or information loss security (DLP) guidelines, which will stop occasionally after setting up the November Exchange Server 2016 and Exchange Server 2019 security updates.
Today, the Exchange Team recommended admins who set up the initial November 2024 SU (Nov 2024 SUv1) to release the re-released November 2024 SU (Nov 2024 SUv2) that solves the mail shipment concerns in impacted environments.
The business likewise shared the following table, which supplies comprehensive details on the actions admins should take based upon their environment.
If Nov 2024 SUv1 …
…
was set up by hand, and you do not utilize any transportation or DLP guidelines,
it is suggested to set up the Nov 2024 SUv2 to get more granular control over the X-MS-Exchange-P2FromRegexMatch header.
was set up utilizing Microsoft/ Windows upgrade and you do not utilize any transportation or DLP guidelines,
in December 2024, the server will download and set up the Nov 2024 SUv2.
was set up (by hand or instantly) and after that uninstalled to repair the concern with transportation guidelines,
set up the re-released Nov 2024 SUv2.
was never ever set up,
set up the re-released Nov 2024 SUv2.
Microsoft likewise recommends admins to constantly run the Exchange Health Checker script after setting up security updates to identify typical setup concerns understood to trigger efficiency concerns and see if extra actions may be required.
“Servers that get automated updates from Windows Update will see the Nov 2024 SUv2 readily available,” the business included on Tuesday.
“Please keep in mind that we have actually postponed the release of the Nov 2024 SUv2 to Microsoft/ Windows Update up until December to avoid servers from immediately setting up the Nov 2024 SUv2 over the United States Thanksgiving vacation.”
The Nov 2024 SUv2 bundle likewise includes more granular control for “Non-RFC certified P2 FROM header detection” created to include cautions to destructive e-mails thought of making use of a high-severity Exchange Server vulnerability (CVE-2024-49040) that can let assaulters create genuine senders to make harmful messages a lot more efficient.
Redmond states CVE-2024-49040 exploitation detection and e-mail cautions will be made it possible for by default on all servers where admins toggle on safe by default settings.