Issue with security update for the Remote Code Execution vulnerability in SQL Server 2016 SP2 (CU): August 14, 2018

On Tuesday August 14, we published a Security Update for six different releases of SQL Server 2016 and 2017. For one of those releases, SQL Server 16 SP2 CU (KB4293807), we inadvertently published additional undocumented trace flags that are normally not on by default. We are working on replacing the update in the next few days. If you installed KB4293807 and are experiencing issues please uninstall the update until the replacement update (KB4458621) is available.

 

Update: This has been resolved.  Please see post https://blogs.msdn.microsoft.com/sqlreleaseservices/resolved-issue-with-security-update-for-the-remote-code-execution-vulnerability-in-sql-server-2016-sp2-cu-august-14-2018/

 

Thank you

SQL Server Release Services