Windows 10: Microsoft Windows Security Updates June 2019 overview

Microsoft released security updates for all supported versions of the Microsoft Windows operating system on the June 11, 2019 Patch Day.

Our overview of the June 2019 Patch Tuesday provides with you information about security and non-security updates that Microsoft released on this day.

The overview includes an executive summary, statistics, links to all updates, the list of known issues sorted by operating system, download links, and more.

Microsoft released the May 2019 Update for Windows 10 recently but it is available to users who seek for updates manually only at the time and only if the system is compatible.

You can check out the May 2019 Update overview here in case you missed it.

Microsoft Windows Security Updates June 2019


The following Excel spreadsheet lists security update information for June 2019. Click on the following link to download it to your system: Microsoft Windows Security Updates June 2019 Overview

Executive Summary

• Microsoft released security updates for all supported versions of the Windows operating system in June 2019.
• All client and server versions have critically rated vulnerabilities patched.
• Microsoft released security updates for other products such as Internet Explorer, Microsoft Edge, Microsoft Office, Azure, Microsoft Exchange Server, and Skype.

Operating System Distribution

• Windows 7: 42 vulnerabilities of which 3 are rated critical and 39 are rated important
  • CVE-2019-0722 | Windows Hyper-V Remote Code Execution Vulnerability
  • CVE-2019-0888 | ActiveX Data Objects (ADO) Remote Code Execution Vulnerability
  • CVE-2019-0985 | Microsoft Speech API Remote Code Execution Vulnerability
• Windows 8.1: 35 vulnerabilities of which 3 are rated critical and 32 are rated important
  • same as 1903
• Windows 10 version 1703: 41 vulnerabilities of which 4 is critical and 37 are important
  • same as 1709
• Windows 10 version 1709: 43 vulnerabilities of which 4 is critical and 39 are important
  • CVE-2019-0709 | Windows Hyper-V Remote Code Execution Vulnerability
  • same as 1903
• Windows 10 version 1803: 45 vulnerabilities of which 3 are critical and 43 are important
  • same as 1903
• Windows 10 version 1809: 47 vulnerabilities of which 3 are critical and 44 are important
  • same as 1903
• Windows 10 version 1903: 42 vulnerabilities of which 3 are critical and 39 are important.
  • CVE-2019-0620 | Windows Hyper-V Remote Code Execution Vulnerability
  • CVE-2019-0722 | Windows Hyper-V Remote Code Execution Vulnerability
  • CVE-2019-0888 | ActiveX Data Objects (ADO) Remote Code Execution Vulnerability

Windows Server products

• Windows Server 2008 R2: 42 vulnerabilities: 3 are critical and 39 are important.
  • CVE-2019-0722 | Windows Hyper-V Remote Code Execution Vulnerability
  • CVE-2019-0888 | ActiveX Data Objects (ADO) Remote Code Execution Vulnerability
  • CVE-2019-0985 | Microsoft Speech API Remote Code Execution Vulnerability
• Windows Server 2012 R2: 34 vulnerabilities: 3 are critical and 31 are important.
  • Same as Server 2019
• Windows Server 2016: 39 vulnerabilities: 4 are critical and 35 are important
  • CVE-2019-0709 | Windows Hyper-V Remote Code Execution Vulnerability
  • Same as Server 2019
• Windows Server 2019: 47 vulnerabilities: 3 are critical and 44 are important.
  • CVE-2019-0620 | Windows Hyper-V Remote Code Execution Vulnerability
  • CVE-2019-0722 | Windows Hyper-V Remote Code Execution Vulnerability
  • CVE-2019-0888 | ActiveX Data Objects (ADO) Remote Code Execution Vulnerability

Other Microsoft Products

• Internet Explorer 11: 7 vulnerability, 5 critical, 2 important
  • CVE-2019-1080 | Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1055 | Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1038 | Microsoft Browser Memory Corruption Vulnerability
  • CVE-2019-0988 | Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-0920 | Scripting Engine Memory Corruption Vulnerability
• Microsoft Edge: 14 vulnerabilities, 12 critical, 2 important
  • CVE-2019-0989 | Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-0990 | Scripting Engine Information Disclosure Vulnerability
  • CVE-2019-0991 | Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-0992 | Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-0993 | Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1002 | Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1003 | Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1023 | Scripting Engine Information Disclosure Vulnerability
  • CVE-2019-1024 | Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1038 | Microsoft Browser Memory Corruption Vulnerability
  • CVE-2019-1051 | Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1052 | Chakra Scripting Engine Memory Corruption Vulnerability

Windows Security Updates


Windows 7 SP1 and Server 2008 R2

KB4503292 -- Monthly Rollup

• Fixed a HTTP and HTTPS string character limit issue in Internet Explorer.
• Security updates

KB4503269 -- Security-only Update

• Security updates only

Windows 8.1 and Server 2012 R2

KB4503276 -- Monthly Rollup

• Patched a security vulnerability by "intentionally preventing connections between Windows and Bluetooth devices that are not secure and use well-known keys to encrypt connections".
• Fixed the Preboot Execution Environment known issue.
• Fixed a HTTP and HTTPS string character limit issue in Internet Explorer.
• Security updates.

KB4503290 -- Security-only Rollup

• Same as KB4503276 with the exception of the IE string character limit issue.

Windows 10 version Windows 10 version 1709

KB4503284

• Fixed Bluetooth vulnerability.
• Fixed an IE11 issue that could prevent IE from opening if no or a malformed search provider was set as the default.
• security updates

Windows 10 version 1803

• Fixed the Preboot Execution Environment issue.
• Same as 1709

Windows 10 version 1809

• Fixed a Windows Mixed Reality keyboard rendering issue.
• Fixed a Bluetooth vulnerability.
• Fixed the Preboot environment issue.
• Updated Broadcom Wi-Fi firmware to Microsoft HoloLens.
• Fixed the IE11 default search provider issue.
• Security updates

Windows 10 version 1903

• Fixed Bluetooth vulnerability.
• Security updates.

Other security updates

KB4503259 -- Cumulative security update for Internet Explorer: June 11, 2019

KB4474419 -- SHA-2 code signing support update for Windows Server 2008 R2, Windows 7, and Windows Server 2008: March 12, 2019

KB4503285 -- Security Monthly Quality Rollup for Windows Embedded 8 Standard and Windows Server 2012

KB4503287 -- Security Only Quality Update for Windows Server 2008

KB4503308 -- Security update for Adobe Flash Player

KB4503267 -- Cumulative Update for Windows 10 Version 1607 and Windows Server Version 1607

KB4503291 -- Cumulative Update for Windows 10 Version 1507

KB4503537 -- Servicing Stack Update for Windows 10 Version 1607, and Windows Server 2016

KB4504369 -- Servicing Stack Update for Windows 10 Version 1809, and Windows Server 2019

Known Issues


Windows 7 SP1 and Server 2008 R2

1. Issue with McAfee Enterprise products that may cause the system to have slow startups or become unresponsive.
2. Internet Explorer 11 may stop working when "loading or interacting with Power BI reports".
   • Workaround: republish with Markers turned off.

Windows 8.1 and Server 2012 R2

1. Same as Windows 7 SP1 and Server 2008 R2
2. Certain operations on Cluster Shared Volumes still fail. Workaround is still valid.

Windows 10 version 1709, 1803

1. Certain operations on Cluster Shared Volumes still fail. Workaround is still valid.

Windows 10 version 1809

1. Certain operations on Cluster Shared Volumes still fail. Workaround is still valid.
2. A printing issue in Microsoft Edge and other UWP apps that throws "Your printer has experienced an unexpected configuration problem. 0x80070007e." errors.
   • Workaround: use another browser to print.
3. Error "0x800f0982 - PSFX_E_MATCHING_COMPONENT_NOT_FOUND"after installing KB4493509 on devices with certain Asian languages.

Windows 10 version 1903

1. Windows Sandbox may fail to start with ERROR_FILE_NOT_FOUND (0x80070002)

Security advisories and updates


ADV190015 | June 2019 Adobe Flash Security Update

ADV190016 | Bluetooth Low Energy Advisory

ADV990001 | Latest Servicing Stack Updates

Non-security related updates


KB4497935 for Windows 10 version 1903 and Windows Server 1903

KB4497934 for Windows 10 version 1809 and Windows Server 2019

KB4505056 for Windows 10 version 1809 and Windows Server 2019

KB4499183 for Windows 10 version 1803

KB4505064 for Windows 10 version 1803

KB4499147 for Windows 10 version 1709

KB4505062 for Windows 10 version 1709

KB4499162 for Windows 10 version 1703

KB4505055 for Windows 10 version 1703

KB4499177 for Windows 10 version 1607 and Windows Server 2016

KB4505052 for Windows 10 version 1607 and Windows Server 2016

KB4503539 -- Dynamic Update for Windows 10 Version 1803

KB4494454 -- Update for Windows 10

KB4501226 -- Update for POSReady 2009

KB890830 -- Windows Malicious Software Removal Tool - June 2019

Microsoft Office Updates


You find Office update information here.

How to download and install the June 2019 security updates




All Windows client systems are configured to download and install security updates automatically shortly after release. It is possible to run manual checks for updates to install these as early as possible.

We suggest that backups are created before any updates are installed as updates may introduce issues of their own or in worst case, break the system.

You can run a manual check for updates in the following way:

1. Tap on the Windows-key, type Windows Update, and select the result.
2. A click on "check for updates" runs a manual check. Updates may be installed automatically or on user request depending on system settings.

Direct update downloads


Windows 7 SP1 and Windows Server 2008 R2 SP

• KB4503292 -- 2019-06 Security Monthly Quality Rollup for Windows 7
• KB4503269 -- 2019-06 Security Only Quality Update for Windows 7

Windows 8.1 and Windows Server 2012 R2

• KB4503276 -- 2019-06 Security Monthly Quality Rollup for Windows 8.1
• KB4503290 -- 2019-06 Security Only Quality Update for Windows 8.1

Windows 10 (version 1709)

• KB4503279 -- 2019-06 Cumulative Update for Windows 10 Version 1709

Windows 10 (version 1803)

• KB4503286 -- 2019-06 Cumulative Update for Windows 10 Version 1803

Windows 10 (version 1809)

• KB4503327 -- 2019-06 Cumulative Update for Windows 10 Version 1809

Windows 10 (version 1903)

• KB4503293 -- 2019-06 Cumulative Update for Windows 10 Version 1809

Additional resources

• June 2019 Security Updates release notes
• List of software updates for Microsoft products
• List of the latest Windows Updates and Services Packs
• Security Updates Guide
• Microsoft Update Catalog site
• Our in-depth Windows update guide
• How to install optional updates on Windows 10
• Windows 10 Update History
• Windows 8.1 Update History
• Windows 7 Update History

Ghacks needs you. You can find out how to support us here (https://www.ghacks.net/support/) or support the site directly by becoming a Patreon (https://www.patreon.com/ghacks)). Thank you for being a Ghacks reader. The post Microsoft Windows Security Updates June 2019 overview appeared first on gHacks Technology News.

read more...

 

Microsoft February 2019 Security Updates

Release Notes

February 2019 Security Updates

Release Date: February 12, 2019

The February security release consists of security updates for the following software:

Adobe Flash Player

Internet Explorer

Microsoft Edge

Microsoft Windows

Microsoft Office and Microsoft Office Services and Web Apps

ChakraCore

.NET Framework

Microsoft Exchange Server

Microsoft Visual Studio

Azure IoT SDK

Microsoft Dynamics

Team Foundation Server

Visual Studio Code

Please note the following information regarding the security updates:

A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.

Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.

Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.

For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.

In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.

The following CVEs have FAQs with additional information and may include * further steps to take after installing the updates.

ADV190003

ADV190007 *

ADV990001

CVE-2019-0540 *

CVE-2019-0600

CVE-2019-0601

CVE-2019-0602

CVE-2019-0615

CVE-2019-0616

CVE-2019-0619

CVE-2019-0621

CVE-2019-0628

CVE-2019-0635

CVE-2019-0636

CVE-2019-0643

CVE-2019-0648

CVE-2019-0658

CVE-2019-0660

CVE-2019-0661

CVE-2019-0664

CVE-2019-0669

CVE-2019-0676

CVE-2019-0686 *

CVE-2019-0724 *

CVE-2019-0741

Known Issues

44****2

{{windowTitle}}

 

Microsoft February 2019 Security Updates


Release Notes
February 2019 Security Updates
Release Date: February 12, 2019

The February security release consists of security updates for the following software:


Adobe Flash Player
Internet Explorer
Microsoft Edge
Microsoft Windows
Microsoft Office and Microsoft Office Services and Web Apps
ChakraCore
.NET Framework
Microsoft Exchange Server
Microsoft Visual Studio
Azure IoT SDK
Microsoft Dynamics
Team Foundation Server
Visual Studio Code
Please note the following information regarding the security updates:


A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
The following CVEs have FAQs with additional information and may include * further steps to take after installing the updates.


ADV190003
ADV190007 *
ADV990001
CVE-2019-0540 *
CVE-2019-0600
CVE-2019-0601
CVE-2019-0602
CVE-2019-0615
CVE-2019-0616
CVE-2019-0619
CVE-2019-0621
CVE-2019-0628
CVE-2019-0635
CVE-2019-0636
CVE-2019-0643
CVE-2019-0648
CVE-2019-0658
CVE-2019-0660
CVE-2019-0661
CVE-2019-0664
CVE-2019-0669
CVE-2019-0676
CVE-2019-0686 *
CVE-2019-0724 *
CVE-2019-0741
Known Issues


4487026
4487020
4486996
4487017
4487044
4483452
4345836
4471392
4471391
4487052
https://portal.msrc.microsoft.com/en...3-000d3a33c573

 

Microsoft January 2019 Security Updates

Release Notes
January 2019 Security Updates

Release Date: January 08, 2019

The January security release consists of security updates for the following software:

• Adobe Flash Player
• Internet Explorer
• Microsoft Edge
• Microsoft Windows
• Microsoft Office and Microsoft Office Services and Web Apps
• ChakraCore
• .NET Framework
• ASP.NET
• Microsoft Exchange Server
• Microsoft Visual Studio

Please note the following information regarding the security updates:

• A list of the latest servicing stack updates for each operating system can be found in
  
  ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
• Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the
  
  Microsoft Update Catalog.
• Updates for Windows RT 8.1 and Microsoft Office RT software are only available via
  
  Windows Update.
• For information on lifecycle and support dates for Windows 10 operating systems, please see
  
  Windows Lifecycle Facts Sheet.
• In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.

The following CVEs have FAQs with additional information and may include * further steps to take after installing the updates.

• ADV190001
• CVE-2019-0536
• CVE-2019-0537
• CVE-2019-0545
• CVE-2019-0549
• CVE-2019-0553
• CVE-2019-0554
• CVE-2019-0559
• CVE-2019-0560
• CVE-2019-0561
• CVE-2019-0569
• CVE-2019-0585
• CVE-2019-0588

Known Issues

• 4480961
• 4480973
• 4480978
• 4480966
• 4480970
• 4480116
• 4480962
• 4480963
• 4480975
• 4468742
• 4471389

{{windowTitle}}