{"id":6317,"date":"2024-03-24T14:42:41","date_gmt":"2024-03-24T13:42:41","guid":{"rendered":"https:\/\/sajberinfo.com\/?p=6317"},"modified":"2024-03-24T14:42:41","modified_gmt":"2024-03-24T13:42:41","slug":"microsoft-objavio-hitnu-ispravku-za-windows-server","status":"publish","type":"post","link":"https:\/\/sajberinfo.com\/en\/2024\/03\/24\/microsoft-objavio-hitnu-ispravku-za-windows-server\/","title":{"rendered":"Microsoft objavio hitnu ispravku za Windows Server"},"content":{"rendered":"<p><span style=\"font-size: 14pt;\">Microsoft objavio hitnu ispravku za <em>Windows<\/em> <em>Server<\/em> kako bi rije\u0161io problem curenja memorije koja uti\u010de na neke verzije <em>Windows<\/em> <em>Server<\/em> kontrolera domena. Ispravke su objavljene da bi se ispravio problem u vezi sa uslugom lokalnog bezbjednog autoriteta podsistema (eng. <em>Local Security Authority Subsystem Service \u2013 LSASS<\/em>) prilikom servisiranja zahteva za <em>Kerberos<\/em> autentifikaciju.<\/span><\/p>\n<div id=\"attachment_6318\" style=\"width: 1034px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-6318\" class=\"size-full wp-image-6318\" src=\"https:\/\/sajberinfo.com\/wp-content\/uploads\/2024\/03\/Windows-server-update-1.jpg\" alt=\"Windows server\" width=\"1024\" height=\"1024\" srcset=\"https:\/\/sajberinfo.com\/wp-content\/uploads\/2024\/03\/Windows-server-update-1.jpg 1024w, https:\/\/sajberinfo.com\/wp-content\/uploads\/2024\/03\/Windows-server-update-1-300x300.jpg 300w, https:\/\/sajberinfo.com\/wp-content\/uploads\/2024\/03\/Windows-server-update-1-150x150.jpg 150w, https:\/\/sajberinfo.com\/wp-content\/uploads\/2024\/03\/Windows-server-update-1-768x768.jpg 768w, https:\/\/sajberinfo.com\/wp-content\/uploads\/2024\/03\/Windows-server-update-1-12x12.jpg 12w, https:\/\/sajberinfo.com\/wp-content\/uploads\/2024\/03\/Windows-server-update-1-80x80.jpg 80w, https:\/\/sajberinfo.com\/wp-content\/uploads\/2024\/03\/Windows-server-update-1-320x320.jpg 320w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><p id=\"caption-attachment-6318\" class=\"wp-caption-text\"><em>Microsoft objavio hitnu ispravku za Windows Server; Source: Bing Image Creator<\/em><\/p><\/div>\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_82 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Sadr\u017eaj<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #ffffff;color:#ffffff\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewbox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #ffffff;color:#ffffff\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewbox=\"0 0 24 24\" version=\"1.2\" baseprofile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/sajberinfo.com\/en\/2024\/03\/24\/microsoft-objavio-hitnu-ispravku-za-windows-server\/#PROBLEMATICNO_AZURIRANJE\" >PROBLEMATI\u010cNO A\u017dURIRANJE<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/sajberinfo.com\/en\/2024\/03\/24\/microsoft-objavio-hitnu-ispravku-za-windows-server\/#HITNA_ISPRAVKA_ZA_WINDOWS_SERVER\" >HITNA ISPRAVKA ZA WINDOWS SERVER<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/sajberinfo.com\/en\/2024\/03\/24\/microsoft-objavio-hitnu-ispravku-za-windows-server\/#KUCNI_KORISNICI\" >KU\u0106NI KORISNICI<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/sajberinfo.com\/en\/2024\/03\/24\/microsoft-objavio-hitnu-ispravku-za-windows-server\/#PREPORUKA\" >PREPORUKA<\/a><\/li><\/ul><\/nav><\/div>\n\n<h2><span class=\"ez-toc-section\" id=\"PROBLEMATICNO_AZURIRANJE\"><\/span><span style=\"font-size: 14pt;\"><strong>PROBLEMATI\u010cNO A\u017dURIRANJE<\/strong><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><span style=\"font-size: 14pt;\">Kao \u0161to je ranije objavljeno <a href=\"https:\/\/sajberinfo.com\/en\/2024\/03\/22\/problemi-sa-windows-server-azuriranjem\/\" target=\"_blank\" rel=\"nofollow noopener\">na ovom blogu<\/a>, mnogi sistemski administratori su nakon ovomjese\u010dnog redovnog a\u017euriranja kompanije <em>Microsoft<\/em> utorkom, upozorili da se serveri neo\u010dekivano zamrzavaju i ponovo pokrec\u0301u zbog curenja memorije u procesu lokalne bezbjednosne slu\u017ebe podsistema \u2013 <em>LSASS<\/em>.<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">Kompanija <em>Microsoft<\/em> je javno priznala ovaj problem, rekav\u0161i da uti\u010de na sve servere kontrolera domena sa najnovijim a\u017euriranjima za <em>Windows<\/em> <em>Server<\/em> <a href=\"https:\/\/sajberinfo.com\/en\/2023\/09\/08\/windows-server-2012-kako-docekati-kraj-podrske\/\" target=\"_blank\" rel=\"nofollow noopener\"><em>2012 R2<\/em><\/a>, <em>2016, 2019<\/em> i <em>2022 <\/em>operativne sisteme<em>.<\/em><\/span><\/p>\n<p>&nbsp;<\/p>\n<blockquote><p><span style=\"font-size: 14pt;\"><em>\u201cIdentifikovali smo ovaj problem u LSASS komponenti i prepoznali potrebu da se ispravka objavi \u0161to je pre moguc\u0301e kako bismo za\u0161titili klijente koji koriste kontrolore domena na pogo\u0111enim verzijama Windows Server. Ova vanredna a\u017euriranja su ubrzana da bi zakrpu dobili u ruke IT administratori pre po\u010detka nove radne nedjelje.\u201d<\/em><\/span><\/p>\n<p style=\"text-align: right;\"><span style=\"font-size: 14pt;\"><em>\u00a0<\/em><\/span><span style=\"font-size: 14pt;\"><em>&#8211; <\/em><a href=\"https:\/\/neamilereo.lighting\/26sUmw27859Lwt\/\" target=\"_blank\" rel=\"noopener\"><em>Aria Carricarte, Microsoft Partner Director. Security Response Center<\/em><\/a><em> &#8211;<\/em><\/span><\/p>\n<\/blockquote>\n<p>&nbsp;<\/p>\n<h2><span class=\"ez-toc-section\" id=\"HITNA_ISPRAVKA_ZA_WINDOWS_SERVER\"><\/span><span style=\"font-size: 14pt;\"><strong>HITNA ISPRAVKA ZA <em>WINDOWS<\/em> <em>SERVER<\/em><\/strong><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><span style=\"font-size: 14pt;\">Kompanija <em>Microsoft<\/em> je objavila hitne kumulativne ispravke za <em>Windows<\/em> <em>Server<\/em> koje bi trebalo da poprave curenje <em>LSASS<\/em> memorije i da sprije\u010de o\u0161te\u0107enje servera od ru\u0161enja i ponovnog pokretanja. A\u017euriranja su dostupna za <em>Windows<\/em> <em>Server<\/em> <em>2022<\/em>, <em>2016<\/em> i <em>2012<\/em> <em>R2<\/em>, dok \u0107e a\u017euriranje za <em>Windows<\/em> <em>Server<\/em> <em>2019<\/em> biti uskoro dostupno:<\/span><\/p>\n<p>&nbsp;<\/p>\n<ul>\n<li><span style=\"font-size: 14pt;\">Windows Server 2022: <a href=\"https:\/\/support.microsoft.com\/en-us\/topic\/march-22-2024-kb5037422-os-build-20348-2342-out-of-band-e8f5bf56-c7cb-4051-bd5c-cc35963b18f3\" target=\"_blank\" rel=\"noopener\">KB5037422<\/a><\/span><\/li>\n<li><span style=\"font-size: 14pt;\">Windows Server 2019: uskoro<\/span><\/li>\n<li><span style=\"font-size: 14pt;\">Windows Server 2016: <a href=\"https:\/\/support.microsoft.com\/en-us\/topic\/march-22-2024-kb5037423-os-build-14393-6799-out-of-band-1775cda2-4bb6-43a9-9fd4-ddc3528d3408\" target=\"_blank\" rel=\"noopener\">KB5037423<\/a><\/span><\/li>\n<li><span style=\"font-size: 14pt;\">Windows Server 2012 R2: <a href=\"https:\/\/support.microsoft.com\/en-us\/topic\/kb5037426-update-to-address-a-known-issue-that-affects-lsass-in-windows-server-2012-r2-eda1002a-4b4d-4c99-8383-b0e2bab5c1d0\" target=\"_blank\" rel=\"noopener\">KB5037426<\/a><\/span><\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<p><span style=\"font-size: 14pt;\">Ova vanredna a\u017euriranja su kumulativna, tako da prethodno nije potrebno instalirati prethodna a\u017euriranja. Ona zamjenjuju sve prethodne kumulativne ispravke objavljene za pogo\u0111ene operativne sisteme. Kako bi se rije\u0161io problem, sistemski administratori moraju da preuzmu <em>Out-of-band \u2013 OOB<\/em> a\u017euriranja sa <\/span><span style=\"font-size: 14pt;\"><em>Microsoft Update Catalog<\/em> lokacije i\u00a0 i da ih instaliraju na pogo\u0111enim kontrolerima domena.<\/span><\/p>\n<p>&nbsp;<\/p>\n<blockquote><p><span style=\"font-size: 14pt;\"><em>\u201cOvo a\u017euriranje se bavi poznatim problemom koji uti\u010de na uslugu podsistema lokalnog bezbjednosnog autoriteta (LSASS). Mo\u017ee da procuri memorija na kontrolerima domena (DC). Do curenja dolazi kada lokalni i u oblaku bazirani Active Directory DC obra\u0111uju zahteve za Kerberos autentifikaciju. Ovo zna\u010dajno curenje mo\u017ee izazvati prekomjerno kori\u0161tenje memorije. Zbog toga LSASS mo\u017ee prestati da reaguje, a DC \u0107e se ponovo pokrenuti kada to ne o\u010dekujete.\u201d<\/em><\/span><\/p>\n<p style=\"text-align: right;\"><span style=\"font-size: 14pt;\"><em>\u00a0<\/em><\/span><span style=\"font-size: 14pt;\"><em>&#8211; <\/em><a href=\"https:\/\/support.microsoft.com\/en-gb\/topic\/kb5037426-update-to-address-a-known-issue-that-affects-lsass-in-windows-server-2012-r2-eda1002a-4b4d-4c99-8383-b0e2bab5c1d0\" target=\"_blank\" rel=\"noopener\"><em>Microsoft<\/em><\/a><em> &#8211;<\/em><\/span><\/p>\n<\/blockquote>\n<p>&nbsp;<\/p>\n<h2><span class=\"ez-toc-section\" id=\"KUCNI_KORISNICI\"><\/span><span style=\"font-size: 14pt;\"><strong>KU\u0106NI KORISNICI<\/strong><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><span style=\"font-size: 14pt;\">Vanredna a\u017euriranja (eng. <em>Out-of-band \u2013 OOB<\/em>) su objavljena samo za neke verzije <em>Windows<\/em> operativnog sistema. Po\u0161to ovaj problem ne uti\u010de na ku\u0107ne korisnike i manje poslovne korisnike koji ne koriste kontrolere domena, ve\u0107 prvenstveno u velikim poslovnim organizacijama i centrima podataka za centralizovanu autentifikaciju korisnika i upravljanje <em>Windows<\/em> klijent\/server infrastrukture, ono je adresirano za korisnike <em>Windows<\/em> <em>Server<\/em> <em>2012<\/em> <em>R2<\/em>, <em>2016<\/em>, <em>2019<\/em> i <em>2022<\/em> operativne sisteme sa kontrolerima domena.<\/span><\/p>\n<p>&nbsp;<\/p>\n<h2><span class=\"ez-toc-section\" id=\"PREPORUKA\"><\/span><span style=\"font-size: 14pt;\"><strong>PREPORUKA<\/strong><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><span style=\"font-size: 14pt;\">Kompanija <em>Microsoft<\/em> poziva sve sistemske administratore da pregledaju iznad navedene \u010dlanke baze znanja (eng. <em>Knowledge Base<\/em>) i primjene odgovaraju\u0107a vanredna a\u017euriranja \u0161to je pre moguc\u0301e na svojim kontrolerima domena. Ovo posebno\u00a0 va\u017ei ako mjese\u010dni zbirni paket za mart 2024. godine jo\u0161 nije instaliran, preporuka je primjena vanrednih a\u017euriranja.<\/span><\/p>\n<p>&nbsp;<\/p>","protected":false},"excerpt":{"rendered":"<p>Microsoft objavio hitnu ispravku za Windows Server kako bi rije\u0161io problem curenja memorije koja uti\u010de na neke verzije Windows Server kontrolera domena. Ispravke su objavljene da bi se ispravio problem u vezi sa uslugom&#46;&#46;&#46;<\/p>","protected":false},"author":1,"featured_media":6318,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[899,901,902,903,900,886,130,898,897,166,129,143],"class_list":["post-6317","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-hronike","tag-active-directory-dc","tag-kb5037422","tag-kb5037423","tag-kb5037426","tag-knowledge-base","tag-lsass","tag-microsoft","tag-oob-update","tag-out-of-band","tag-server","tag-update","tag-windows"],"_links":{"self":[{"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/posts\/6317","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/comments?post=6317"}],"version-history":[{"count":0,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/posts\/6317\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/media\/6318"}],"wp:attachment":[{"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/media?parent=6317"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/categories?post=6317"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/tags?post=6317"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}