Windows 10: Microsoft Windows Security Updates August 2021 overview

Microsoft has released security updates and non-security updates for its Windows operating system on today's Patch Day. Updates are available for all client and server versions of Microsoft Windows, as well as other company products such as Microsoft Office or Azure.

The overview that you are reading includes information and resource links to get you started quickly. It begins with an executive summary, which lists important details. The operating system distribution and list of cumulative updates for all Windows versions follow.

Our guide lists known issues as confirmed by Microsoft, links to security advisories, non-security patches, download information, and more resource links at the bottom of the page.

Click here to open the July 2021 Patch Day overview published last month.

The Microsoft Windows Security Updates: August 2021


Click here to download an Excel spreadsheet that lists all released security updates: windows-updates-august-2021

Executive Summary

• Microsoft released security updates for all supported versions of Windows (client and server).
• Security updates are also available for Microsoft Office, Azure, Azure Sphere, ASP .NET, .NET Core & Visual Studio, Microsoft Dynamics, Remote Desktop Client and other products.
• The following Windows client and server versions have known issues: Windows 7 SP1, Windows 8.1, Windows 10 versions 1909, 2004, 20H2 and 21H1, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2, Windows Server 2019

Operating System Distribution

• Windows 7 (extended support only): 12 vulnerabilities: 4 critical and 8 important
  • Windows Print Spooler Remote Code Execution Vulnerability -- CVE-2021-36936
  • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2021-26424
  • Remote Desktop Client Remote Code Execution Vulnerability -- CVE-2021-34535
  • Scripting Engine Memory Corruption Vulnerability -- CVE-2021-34480
• Windows 8.1: 18 vulnerabilities: 5 critical and 13 important
  • Windows Print Spooler Remote Code Execution Vulnerability -- CVE-2021-36936
  • Windows Services for NFS ONCRPC XDR Driver Remote Code Execution Vulnerability -- CVE-2021-26432
  • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2021-26424
  • Remote Desktop Client Remote Code Execution Vulnerability -- CVE-2021-34535
  • Scripting Engine Memory Corruption Vulnerability -- CVE-2021-34480
• Windows 10 version 1903 and 1909: 23 vulnerabilities: 7 critical and 16 important
  • Remote Desktop Client Remote Code Execution Vulnerability -- CVE-2021-34535
  • Windows MSHTML Platform Remote Code Execution Vulnerability -- CVE-2021-34534
  • Scripting Engine Memory Corruption Vulnerability -- CVE-2021-34480
  • Windows Graphics Component Remote Code Execution Vulnerability -- CVE-2021-34530
  • Windows Print Spooler Remote Code Execution Vulnerability -- CVE-2021-36936
  • Windows Services for NFS ONCRPC XDR Driver Remote Code Execution Vulnerability -- CVE-2021-26432
  • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2021-26424
• Windows 10 version 2004, 20H2 and 21H1 : 24 vulnerabilities, 7 critical and 17 important
  • same as Windows 10 version 1909.

Windows Server products

• Windows Server 2008 R2 (extended support only): 13 vulnerabilities: 4 critical and 9 important
  • Windows Print Spooler Remote Code Execution Vulnerability -- CVE-2021-36936
  • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2021-26424
  • Remote Desktop Client Remote Code Execution Vulnerability -- CVE-2021-34535
  • Scripting Engine Memory Corruption Vulnerability -- CVE-2021-34480
• Windows Server 2012 R2: 19 vulnerabilities: 5 critical and 14 important
  • Windows Print Spooler Remote Code Execution Vulnerability -- CVE-2021-36936
  • Windows Services for NFS ONCRPC XDR Driver Remote Code Execution Vulnerability -- CVE-2021-26432
  • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2021-26424
  • Remote Desktop Client Remote Code Execution Vulnerability -- CVE-2021-34535
  • Scripting Engine Memory Corruption Vulnerability -- CVE-2021-34480
• Windows Server 2016: 23 vulnerabilities: 7 critical and 16 important
  • Windows Graphics Component Remote Code Execution Vulnerability -- CVE-2021-34530
  • Scripting Engine Memory Corruption Vulnerability -- CVE-2021-34480
  • Windows MSHTML Platform Remote Code Execution Vulnerability -- CVE-2021-34534
  • Remote Desktop Client Remote Code Execution Vulnerability -- CVE-2021-34535
  • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2021-26424
  • Windows Services for NFS ONCRPC XDR Driver Remote Code Execution Vulnerability -- CVE-2021-26432
  • Windows Print Spooler Remote Code Execution Vulnerability -- CVE-2021-36936
• Windows Server 2019: 25 vulnerabilities: 7 critical and 18 important
  • same as Windows Server 2016

Windows Security Updates


Windows 7 SP1 and Windows Server 2008 R2

• Monthly Rollup: KB5005088
• Security-Only: KB5005089

Updates and improvements:

• Administrative privileges are required to install printer drivers using Point and Print. More information is available here and here.
• Fixed an issue with Smart Card Authentication failures on non-RFC compliant printers and scanners. See here for more information.
• Security updates

Windows 8.1 and Windows Server 2012 R2

• Monthly Rollup: KB5005076
• Security-only: KB5005106

Updates and improvements:

• Administrative privileges are required to install printer drivers using Point and Print. More information is available here and here.
• Fixed an issue with Smart Card Authentication failures on non-RFC compliant printers and scanners. See here for more information.
• Security updates

Windows 10 version 1909

• Support Page: KB5005031

Updates and improvements:

• Administrative privileges are required to install printer drivers using Point and Print. More information is available here and here.

Windows 10 version 2004, 20H2 and 21H1

• Support Page: KB5005033

Updates and improvements:

• Administrative privileges are required to install printer drivers using Point and Print. More information is available here and here.

Other security updates

2021-08 Cumulative Security Update for Internet Explorer (KB5005036)

2021-08 Security Monthly Quality Rollup for Windows Server 2008 (KB5005090)

2021-08 Security Only Quality Update for Windows Server 2008 (KB5005095)

2021-08 Security Only Quality Update for Windows Embedded 8 Standard and Windows Server 2012 (KB5005094)

2021-08 Security Monthly Quality Rollup for Windows Embedded 8 Standard and Windows Server 2012 (KB5005099)

2021-08 Cumulative Update for Windows 10 version 1507 (KB5005040)

2021-08 Cumulative Update for Windows Server 2016 and Windows 10 Version 1607 (KB5005043)

2021-08 Cumulative Update for Windows Server 2019 and Windows 10 Version 1809 (KB5005030)

2021-08 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5005039)

Servicing Stack Updates

2021-08 Servicing Stack Update for Windows Server 2019 and Windows 10 Version 1809 (KB5005112)

2021-08 Servicing Stack Update for Windows 10 Version 1909 (KB5005412)

2021-08 Servicing Stack Update for Windows Server, version 20H2, Windows 10 Version 20H2, Windows Server, version 2004, Windows 10 Version 2004, Windows 10 Version 1909, and Windows 10 Version 1903 (KB5005260)

Known Issues


Windows 7 SP1 and Windows Server 2008 R2

• After installing this update, the Elastic File System (EFS) API OpenEncryptedFileRaw(A/W), often used in backup software, will not work when you back up to or from a Windows Server 2008 SP2 device.
  • Expected behavior according to Microsoft. See CVE-2021-36942.
• Certain operations will fail on Cluster Shared Volumes.
  • Perform the task from a process with elevated rights.
  • Perform the task from a node that does not have CSV ownership.
• Updates will be uninstalled if the device does not support ESU.
  • Expected behavior.

Windows 8.1 and Server 2012 R2

• After installing this update, the Elastic File System (EFS) API OpenEncryptedFileRaw(A/W), often used in backup software, will not work when you back up to or from a Windows Server 2008 SP2 device.
  • Expected behavior according to Microsoft. See CVE-2021-36942.
• Certain operations will fail on Cluster Shared Volumes.
  • Perform the task from a process with elevated rights.
  • Perform the task from a node that does not have CSV ownership.

Windows 10 version 1909

• After installing this update, the Elastic File System (EFS) API OpenEncryptedFileRaw(A/W), often used in backup software, will not work when you back up to or from a Windows Server 2008 SP2 device.
  • Expected behavior according to Microsoft. See CVE-2021-36942.

Windows 10 versions 2004, 20H2 and 21H1

• After installing this update, the Elastic File System (EFS) API OpenEncryptedFileRaw(A/W), often used in backup software, will not work when you back up to or from a Windows Server 2008 SP2 device.
  • Expected behavior according to Microsoft. See CVE-2021-36942.
• Some devices will receive the error "PSFX_E_MATCHING_BINARY_MISSING" when trying to install updates after the KB5003690 update released in June.
  • See here for a workaround.
• If Windows was installed from custom ISO images or custom offline media, the new Microsoft Edge may not be installed.
  • See the support article for a workaround.
• Character input issues with the Japanese Input Method Editor.
  • No workaround or solution yet.

Security advisories and updates


ADV 990001 -- Latest Servicing Stack Updates

Other updates


2021-08 Security and Quality Rollup for .NET Framework 4.8 for Windows Embedded 8 Standard and Windows Server 2012 (KB5004753)

2021-08 Security and Quality Rollup for .NET Framework 4.8 for Windows 8.1 and Windows Server 2012 R2 (KB5004754)

2021-08 Security and Quality Rollup for .NET Framework 4.8 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2 (KB5004755)

2021-08 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Embedded Standard 7, Windows 7, Windows Server 2008 R2, and Windows Server 2008 (KB5004757)

2021-08 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Embedded 8 Standard and Windows Server 2012 (KB5004758)

2021-08 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows 8.1 and Windows Server 2012 R2 (KB5004759)

2021-08 Security and Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2 (KB5004871)

2021-08 Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded 8 Standard and Windows Server 2012 (KB5004872)

2021-08 Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 8.1 and Windows Server 2012 R2 (KB5004873)

2021-08 Cumulative Update for .NET Framework 3.5 and 4.8 for Microsoft server operating system version 21H2 for ARM64 (KB5004330)

2021-08 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows Server, version 20H2, Windows 10 Version 20H2, Windows Server, version 2004, Windows 10 Version 2004, Windows 10 Version 1909, and Windows 10 Version 1903 (KB5004331)

2021-08 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows Server 2019 and Windows 10 Version 1809 (KB5004332)

2021-08 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 1909 (KB5004333)

2021-08 Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows Server 2019 and Windows 10 Version 1809 (KB5004335)

2021-08 Cumulative Update for .NET Framework 4.8 for Windows Server 2016 and Windows 10 Version 1607 (KB5004752)

2021-08 Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows Server 2019 and Windows 10 Version 1809 (KB5004870)

2021-08 Security and Quality Rollup for .NET Framework 2.0, 3.0, 4.5.2, 4.6 and 4.6.2 for Windows Server 2008 (KB5004874)

Microsoft Office Updates

You find Office update information here.

How to download and install the August 2021 security updates




Security updates are installed automatically on most home systems. Some home administrators have disabled automatic updates; these may download and install updates from Microsoft's Update Catalog website to install them manually on Windows PCs.

System administrators who manage systems using update management systems such as WSUS may install updates to managed systems using the updating tools.

You may run a manual check for updates on Home systems in the following way:

1. Select Start, type Windows Update and load the Windows Update item that is displayed.
2. Select check for updates to run a manual check for updates.

Direct update downloads


Below are resource pages with direct download links, if you prefer to download the updates to install them manually.

Windows 7 and Server 2008 R2

• KB5005088 -- 2021-08 Security Monthly Quality Rollup for Windows 7
• KB5005089 -- 2021-08 Security Only Quality Update for Windows 7

Windows 8.1 and Windows Server 2012 R2

• KB5005076 -- 2021-08 Security Monthly Quality Rollup for Windows 8.1
• KB5005106 -- 2021-08 Security Only Quality Update for Windows 8.1

Windows 10 (version 1909)

• KB5005031 -- 2021-08 Cumulative Update for Windows 10 Version 1909

Windows 10 (version 2004)

• KB5005033 -- 2021-08 Cumulative Update for Windows 10 Version 2004

Windows 10 (version 20H2)

• KB5005033 -- 2021-08 Cumulative Update for Windows 10 Version 20H2

Windows 10 (version 21H1)

• KB5005033 -- 2021-08 Cumulative Update for Windows 10 Version 21H1

Additional resources

• August 2021 Security Updates release notes
• List of software updates for Microsoft products
• List of the latest Windows Updates and Services Packs
• Security Updates Guide
• Microsoft Update Catalog site
• Our in-depth Windows update guide
• How to install optional updates on Windows 10
• Windows 10 Update History
• Windows 8.1 Update History
• Windows 7 Update History

Thank you for being a Ghacks reader. The post Microsoft Windows Security Updates August 2021 overview appeared first on gHacks Technology News.

read more...

 

Microsoft January 2021 Security Updates

January 2021 Security Updates




The January 2021 security release consists of security updates for the following software:

• Microsoft Windows
• Microsoft Edge (EdgeHTML-based)
• Microsoft Office and Microsoft Office Services and Web Apps
• Microsoft Windows Codecs Library
• Visual Studio
• SQL Server
• Microsoft Malware Protection Engine
• .NET Core
• .NET Repository
• ASP .NET
• Azure

Please note the following information regarding the security updates:

• CVE-2020-0689 has been re-released. For further information see Security update for Secure Boot DBX: January 12, 2021.
• For information regarding enabling Windows 10, version 1909 features, please see Windows 10, version 1909 delivery options. Note that Windows 10, versions 1903 and 1909 share a common core operating system with an identical set of system files. They will also share the same security update KBs.
• Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
• For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
• A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
• Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
• In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
• Customers running Windows 7, Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.

The following CVEs have FAQs with additional information. Please note that this is not a complete list of CVEs for this release.

• CVE-2020-26870
• CVE-2021-1636
• CVE-2021-1637
• CVE-2021-1643
• CVE-2021-1644
• CVE-2021-1645
• CVE-2021-1647
• CVE-2021-1648
• CVE-2021-1656
• CVE-2021-1663
• CVE-2021-1669
• CVE-2021-1670
• CVE-2021-1672
• CVE-2021-1676
• CVE-2021-1677
• CVE-2021-1694
• CVE-2021-1696
• CVE-2021-1699
• CVE-2021-1707
• CVE-2021-1708
• CVE-2021-1711
• CVE-2021-1713
• CVE-2021-1714
• CVE-2021-1715
• CVE-2021-1716
• CVE-2021-1725

Known Issues


The following KBs contain information about known issues with the security updates. For a complete list of security update KBs, please see 20210112. For more information about Windows Known Issues, please see Windows message center (links to currently-supported versions of Windows are in the left pane).


KB Article Applies To
4598229 Windows 10, Version 1903, Windows Server, Version 1903, Windows 10, Version 1909, Windows Server, Version 1909
4598230 Windows 10, Version 1809, Windows Server 2019
4598242 Windows 10, Version 2004, Windows Server, Version 2004, Windows 10, Version 20H2, Windows Server, Version 20H2
4598275 Windows 8.1, Windows Server 2012 R2 (Security-only update)
4598278 Windows Server 2012 (Monthly Rollup)
4598279 Windows 7, Windows Server 2008 R2 (Monthly Rollup)
4598285 Windows 8.1, Windows Server 2012 R2 (Monthly Rollup)
4598287 Windows Server 2008 (Security-only update)
4598288 Windows Server 2008 (Monthly Rollup)
4598289 Windows 7, Windows Server 2008 R2 (Security-only update)
4598297 Windows Server 2012 (Security-only update)


January 2021 Security Updates - Release Notes - Security Update Guide - Microsoft

 

Microsoft March 2021 Security Updates

March 2021 Security Updates

Updates this Month

This release consists of security updates for the following products, features and roles.

• Application Virtualization
• Azure
• Azure DevOps
• Azure Sphere
• Internet Explorer
• Microsoft ActiveX
• Microsoft Exchange Server
• Microsoft Edge (Chromium-based)
• Microsoft Graphics Component
• Microsoft Office
• Microsoft Office Excel
• Microsoft Office PowerPoint
• Microsoft Office SharePoint
• Microsoft Office Visio
• Microsoft Windows Codecs Library
• Power BI
• Role: DNS Server
• Role: Hyper-V
• Visual Studio
• Visual Studio Code
• Windows Admin Center
• Windows Container Execution Agent
• Windows DirectX
• Windows Error Reporting
• Windows Event Tracing
• Windows Extensible Firmware Interface
• Windows Folder Redirection
• Windows Installer
• Windows Media
• Windows Overlay Filter
• Windows Print Spooler Components
• Windows Projected File System Filter Driver
• Windows Registry
• Windows Remote Access API
• Windows Storage Spaces Controller
• Windows Update Assistant
• Windows Update Stack
• Windows UPnP Device Host
• Windows User Profile Service
• Windows WalletService
• Windows Win32K

Relevant Information

• Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog. For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
• Microsoft is improving Windows Release Notes. For more information, please see What's next for Windows release notes.
• A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
• In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
• Customers running Windows 7, Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.

Please see the following for more information on the Microsoft Exchange Server Vulnerabilities:

• MSRC Blog
• Hafnium Targeting Exchange
• Microsoft on the Issues
• Exchange Team Blog
• March 8 Exchange Team Blog
• Microsoft Exchange Server Vulnerabilities Mitigations

FAQs, Mitigations, and Workarounds

The following CVEs have FAQs, Mitigations, or Workarounds. You can see these in more detail from the Vulnerabilities tab by selecting FAQs, Mitigations and Workarounds columns in the Edit Columns panel.

• CVE-2021-1640
• CVE-2021-24089
• CVE-2021-24104
• CVE-2021-24107
• CVE-2021-24108
• CVE-2021-24110
• CVE-2021-26411
• CVE-2021-26855
• CVE-2021-26857
• CVE-2021-26858
• CVE-2021-26859
• CVE-2021-26867
• CVE-2021-26869
• CVE-2021-26877
• CVE-2021-26884
• CVE-2021-26887
• CVE-2021-26893
• CVE-2021-26894
• CVE-2021-26895
• CVE-2021-26896
• CVE-2021-26897
• CVE-2021-26902
• CVE-2021-27047
• CVE-2021-27048
• CVE-2021-27049
• CVE-2021-27050
• CVE-2021-27051
• CVE-2021-27052
• CVE-2021-27054
• CVE-2021-27055
• CVE-2021-27056
• CVE-2021-27057
• CVE-2021-27058
• CVE-2021-27059
• CVE-2021-27061
• CVE-2021-27062
• CVE-2021-27063
• CVE-2021-27065
• CVE-2021-27067
• CVE-2021-27074
• CVE-2021-27075
• CVE-2021-27076
• CVE-2021-27080
• CVE-2021-27082

Known Issues

You can see these in more detail from the Deployments tab by selecting Known Issues column in the Edit Columns panel.
For more information about Windows Known Issues, please see Windows message center (links to currently-supported versions of Windows are in the left pane).
[table][tr]KB Article Applies To [/tr] [tr][td]5000802[/td] [td]Windows 10, Version 2004, Windows Server, Version 2004[/td] [/tr] [tr][td]5000803[/td] [td]Windows 10, Version 1607, Windows Server 2016[/td] [/tr] [tr][td]5000808[/td] [td]Windows 10, Version 1909, Windows Server, Version 1909[/td] [/tr] [tr][td]5000822[/td] [td]Windows 10, Version 1809, Windows Server 2019[/td] [/tr] [tr][td]5000840[/td] [td]Windows Server 2012 (Security-only update)[/td] [/tr] [tr][td]5000841[/td] [td]Windows 7, Windows Server 2008 R2 (Monthly Rollup)[/td] [/tr] [tr][td]5000844[/td] [td]Windows Server 2008 (Monthly Rollup)[/td] [/tr] [tr][td]5000847[/td] [td]Windows Server 2012 (Monthly Rollup)[/td] [/tr] [tr][td]5000848[/td] [td]Windows 8.1, Windows RT 8.1, Windows Server 2012 R2 (Monthly Rollup)[/td] [/tr] [tr][td]5000851[/td] [td]Windows 7, Windows Server 2008 R2 (Security-only update)[/td] [/tr] [tr][td]5000853[/td] [td]Windows 8.1, Windows RT 8.1, Windows Server 2012 R2 (Security-only update)[/td] [/tr] [tr][td]5000856[/td] [td]Windows Server 2008 (Security-only update)[/td] [/tr] [tr][td]5000871[/td] [td]Microsoft Exchange Server 2019, 2016 and 2013[/td] [/tr] [tr][td]5000978[/td] [td]Microsoft Exchange Server 2010[/td] [/tr] [/table]

Released: Mar 9, 2021


March 2021 Security Updates - Release Notes - Security Update Guide - Microsoft

 

Microsoft April 2021 Security Updates

April 2021 Security Updates


Updates this Month


This release consists of security updates for the following products, features and roles.

• Azure AD Web Sign-in
• Azure DevOps
• Azure Sphere
• Microsoft Edge (Chromium-based)
• Microsoft Exchange Server
• Microsoft Graphics Component
• Microsoft Internet Messaging API
• Microsoft NTFS
• Microsoft Office Excel
• Microsoft Office Outlook
• Microsoft Office SharePoint
• Microsoft Office Word
• Microsoft Windows Codecs Library
• Microsoft Windows Speech
• Open Source Software
• Role: DNS Server
• Role: Hyper-V
• Visual Studio
• Visual Studio Code
• Visual Studio Code - GitHub Pull Requests and Issues Extension
• Visual Studio Code - Kubernetes Tools
• Visual Studio Code - Maven for Java Extension
• Windows Application Compatibility Cache
• Windows AppX Deployment Extensions
• Windows Console Driver
• Windows Diagnostic Hub
• Windows Early Launch Antimalware Driver
• Windows ELAM
• Windows Event Tracing
• Windows Installer
• Windows Kernel
• Windows Media Player
• Windows Network File System
• Windows Overlay Filter
• Windows Portmapping
• Windows Registry
• Windows Remote Procedure Call Runtime
• Windows Resource Manager
• Windows Secure Kernel Mode
• Windows Services and Controller App
• Windows SMB Server
• Windows TCP/IP
• Windows Win32K
• Windows WLAN Auto Config Service

Please note the following information regarding the security updates:


Relevant Information

• Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog. For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
• Microsoft is improving Windows Release Notes. For more information, please see What's next for Windows release notes.
• A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
• In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
• Customers running Windows 7, Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.

FAQs, Mitigations, and Workarounds
The following CVEs have FAQs, Mitigations, or Workarounds. You can see these in more detail from the Vulnerabilities tab by selecting FAQs, Mitigations and Workarounds columns in the Edit Columns panel.

• CVE-2021-21194
• CVE-2021-21195
• CVE-2021-21196
• CVE-2021-21197
• CVE-2021-21198
• CVE-2021-21199
• CVE-2021-26416
• CVE-2021-26417
• CVE-2021-27067
• CVE-2021-27079
• CVE-2021-27093
• CVE-2021-27095
• CVE-2021-28309
• CVE-2021-28315
• CVE-2021-28317
• CVE-2021-28318
• CVE-2021-28323
• CVE-2021-28324
• CVE-2021-28325
• CVE-2021-28328
• CVE-2021-28435
• CVE-2021-28437
• CVE-2021-28441
• CVE-2021-28442
• CVE-2021-28444
• CVE-2021-28446
• CVE-2021-28449
• CVE-2021-28451
• CVE-2021-28452
• CVE-2021-28453
• CVE-2021-28454
• CVE-2021-28456
• CVE-2021-28460
• CVE-2021-28464
• CVE-2021-28466
• CVE-2021-28468
• CVE-2021-28480
• CVE-2021-28481
• CVE-2021-28482
• CVE-2021-28483

Known Issues
You can see these in more detail from the Deployments tab by selecting Known Issues column in the Edit Columns panel.


For more information about Windows Known Issues, please see Windows message center (links to currently-supported versions of Windows are in the left pane).


KB Article Applies To
4504715 SharePoint Server 2019 Language Pack
4504716 SharePoint Server 2019
5001330 Windows 10, Version 2004, Windows Server, Version 2004, Windows 10, Version 20H2, Windows Server, Version 20H2
5001332 Windows Server 2008 (Security-only update)
5001335 Windows 7, Windows Server 2008 R2 (Monthly Rollup)
5001337 Windows 10, Version 1909, Windows Server, Version 1909
5001342 Windows 10, Version 1809, Windows Server 2019
5001347 Windows 10, Version 1607, Windows Server 2016
5001382 Windows 8.1, Windows RT 8.1, Windows Server 2012 R2 (Monthly Rollup)
5001383 Windows Server 2012 (Security-only update)
5001387 Windows Server 2012 (Monthly Rollup)
5001389 Windows Server 2008 (Monthly Rollup)
5001392 Windows 7, Windows Server 2008 R2 (Security-only update)
5001393 Windows 8.1, Windows RT 8.1, Windows Server 2012 R2 (Security-only update)
5001779 Microosft Exchange Server 2019, 2016, 2013


April 2021 Security Updates - Release Notes - Security Update Guide - Microsoft