Microsoft KB4512506/KB4512486 is not visible as an available download with currently available versions of Symantec Endpoint Protection Cloud (188.8.131.52 and earlier) installed.
This issue is specific to Windows 7 SP1 and Windows Server 2008 R2 SP1. All versions of Symantec Endpoint Protection Cloud for Windows up to 184.108.40.206 are affected.
Newer Operating Systems (Windows 8, Windows Server 2012, Windows Server 2016, Windows 10, etc) are unaffected as they load a different Symantec component that already contains SHA-2 support.
Symantec has identified the potential for a negative interaction between Symantec Endpoint Protection Cloud and the contents of future Windows Updates as a result of the changes in this Microsoft KB.
Out of an abundance of caution, Symantec and Microsoft worked together to only allow the update to be visible to versions of Symantec Endpoint Protection Cloud that fully support SHA-2 signed Windows executables replaced by this and future updates to Windows 7 SP1 and Windows 2008 R2 SP1.
This issue is resolved in build 220.127.116.11, which began a phased rollout through LiveUpdate on August 27th. Only devices running on versions of Windows that are impacted by this issue will receive this update.
After receiving this update, devices will be required to perform a reboot to complete the upgrade. The reboot will not be forced and must be accepted by the user. Devices will remain protected before the reboot is completed.
Subscribing will provide email updates when this Article is updated. Login is required.