LANDESK Patch News Bulletin: Microsoft has released KB3133717 to Address a DNS Issue 24-FEB-2016

Version 1

    LANDESK Security and Patch News


    ·         (February 24, 2016) Microsoft has released KB3133717 which addresses an issue in which incorrect responses are received when an DNS server uses wildcard CNAME and Domain Name System Security Extensions (DNSSEC) validation failures in Windows Server 2012 R2. An update is available to fix this issue. Before you install this update, see the Prerequisites section.

    Issues that are fixed in this update
    Issue 1

    When DNSSEC validation is enabled on a Windows Server 2012 R2-based DNS server, the DNS server incorrectly reports the failed name validation when it receives a NODATA response and returns a SERVFAIL error to the client.
    Issue 2

    Windows Server 2012 R2-based DNS server doesn't return all the Resource record signature (RRSIG) records that should be returned with the Next Secure (NSEC) records if the query passes through a BIND forwarder during resolution. This causes DNSSEC validation to fail for any servers that are using Windows Server 2012 R2-based server as a forwarder.
    Issue 3

    Incorrect response to AAAA queries from Windows Server 2012 R2-based DNS server when a wildcard CNAME is used.

    Please visit the following page for more details:

    New Vulnerabilities

    ·           Vulnerability ID – 3133717_MSU

    Changed Vulnerabilities

    ·          Vulnerability ID – N/A

    New Patch Downloads

    ·          windows8.1-kb3133717-x64.msu

    Where to Send Feedback

    At LANDESK, we are constantly striving to improve our products and services and hope you find these changes reflective of our ongoing commitment to listen to you—our partners and customers—in providing the best possible solutions to meet your needs now and in the future.  Please continue to provide feedback by contacting our local support organization.


    Best regards,

    LANDESK Product Support


    Copyright © 2016 LANDESK Software.  All rights reserved. LANDESK is either a registered trademark or trademark of LANDESK Software, Ltd. or its affiliated entities in the United States and/or other countries. Other names or brands may be claimed as the property of others.


    Information in this document is provided for information purposes only.  The information presented here is subject to change without notice.  This information is not warranted to be error-free, nor subject to any other warranties or conditions, whether expressed orally or implied in law, including any implied warranties and conditions of merchantability or fitness for a particular purpose. LANDESK disclaims any liability with respect to this document and LANDESK has no responsibility or liability for any third party products of any content contained on any site referenced herein.  This document may not be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, without our prior written permission. For the most current product information, please visit