A new build is available for SQL Server 2016 SP2 and SP3. From the CVE: "An authenticated attacker could exploit the vulnerability by executing a specially crafted query using $ partition against a table with a Column Store index."
There are two fixes in this hotfix update package, involving FileTable and Change Tracking.
SQL Server 2016 SP2 Cumulative Update #17 is available, with 20 enhancements. The build number is 13.0.5888.11.
SQL Server 2016 SP2 Cumulative Update #15 is available, with 21 enhancements. The build number is 13.0.5850.14.
SQL Server 2016 SP2 Cumulative Update #14 is available, with 18 enhancements. The build number is 13.0.5830.85.
See how to work around some of the blockers for replacing legacy UDFs with STRING_SPLIT.
SQL Server 2016 SP2 Cumulative Update #13 is available, with 29 enhancements. The build number is 13.0.5820.21.
Cumulative Updates for SQL Server 2019, SQL Server 2017, and SQL Server 2016 SP2 have been pushed back a month or more due to our current health crisis.
In this tip, I show how to measure the positive effects of delayed durability, in cases where a small amount of data loss is acceptable.
Security updates were released today to patch a remote code execution vulnerability in Reporting Services, but I would install the patch even if you're not running SSRS.
I explain a few details about the memory limits in SQL Server 2016 Service Pack 1 that make this upgrade even more compelling.
Microsoft has made a bold change with SQL Server 2016 Service Pack 1 : Many Enterprise features are now available in lower editions. Read on for details.
I show a few different ways to download SQL Server 2016 Developer Edition, which is a bit harder to obtain than it should be.
Today I presented at Discovery Day New England, a SQL Server 2016 event at the Microsoft office in Cambridge, MA. Attached are demos and slide decks.
With additional tests comparing splitting techniques to TVPs, I round out my series on STRING_SPLIT() in SQL Server 2016.
I follow up on a recent post about the performance of STRING_SPLIT() with a few additional reader-motivated tests.
I talk about some of the upcoming changes to telemetry and other privacy settings in SQL Server 2016.
SQL Server 2016 RC0 introduces a new native string splitting function, STRING_SPLIT; I compare its performance to existing methods.
SQL Server 2016 allows you to enable instant file initialization during installation; I look at how this can impact tempdb data file creation.
I reveal details about the changes to Availability Groups that will ship in the next major version: SQL Server 2016.
I list out the changes to In-Memory OLTP ("Hekaton") that will make the feature even more appealing in SQL Server 2016.
I show some interesting maintenance opportunities for Service Broker queues available in the next version of SQL Server.
I explain how SQL Server 2016 improves tempdb configuration and performance.
I investigate the observable overhead involved with using a new SQL Server 2016 security feature, Always Encrypted.
I show the ins and outs of a new function that appeared in SQL Server 2016 CTP 2.1 this week: sys.dm_exec_function_stats.
I walk through some of the new JSON-related Transact-SQL functionality that will be available in SQL Server 2016.
