Windows 10: Microsoft Windows Security Updates June 2021 overview

Microsoft released security updates and non-security updates for all supported client and server versions of Microsoft's Windows operating system as well as other company products. The June 2021 Patch Day is the first that includes Windows 10 version 21H1, the latest Windows 10 feature update that Microsoft released last month.

Our overview links to the security updates that Microsoft released, to support articles and downloads, lists known issues as revealed by Microsoft, and provides system administrators and home users with other relevant information.

Check out the May 2021 Patch overview here in case you want to revisit it.

The Microsoft Windows Security Updates: June 2021


You may download the following Excel spreadsheet to get a list of the security updates released for Microsoft Windows and other company products: Security Updates 2021-06-08-070201pm

Executive Summary

• Windows 10 version 21H1 was released last month. It is rolled out gradually to systems running Windows 10 version 2004 and 20H2 currently.
• All client and server versions of Windows are affected by at least 1 critical security vulnerability.
• Microsoft released updates for other products including Microsoft Office, Microsoft Intune, 3D Viewer, .Net Core & Visual Studio, Windows Defender, Paint 3D and Windows Installer.

Operating System Distribution

• Windows 7 (extended support only): 14 vulnerabilities: 2 critical and 12 important
  • Windows MSHTML Platform Remote Code Execution Vulnerability - CVE-2021-33742
  • Scripting Engine Memory Corruption Vulnerability -- CVE-2021-31959
• Windows 8.1: 19 vulnerabilities: 2 critical and 12 important
  • same critical as Windows 7
• Windows 10 version 1903 and 1909: 24 vulnerabilities: 2 critical and 22 important
  • same critical as Windows 7
• Windows 10 version 2004, 20H2 and 21H1 : 25 vulnerabilities, 2 critical and 23 important
  • same critical as Windows 7

Windows Server products

• Windows Server 2008 R2 (extended support only): 12 vulnerabilities: 1 critical and 11 important
  • Windows MSHTML Platform Remote Code Execution Vulnerability -- CVE-2021-33742
• Windows Server 2012 R2: 19 vulnerabilities: 2 critical and 17 important
  • Scripting Engine Memory Corruption Vulnerability -- CVE-2021-31959
  • Windows MSHTML Platform Remote Code Execution Vulnerability -- CVE-2021-33742
• Windows Server 2016: 20 vulnerabilities: 2 critical and 18 important.
  • same as Windows Server 2012 R2
• Windows Server 2019: 24 vulnerabilities: 2 critical and 22 important
  • same as Windows Server 2012 R2

Windows Security Updates


Windows 7 SP1 and Windows Server 2008 R2

• Monthly Rollup: KB5003667
• Security-Only: KB5003694

Updates and improvements:

• Security updates
• Fixes an issue in the SMB (Server Message Block) protocol which caused frequent crashes with stop error code 0xA on Windows Server 2008 R2 SP1 devices. (Security-only)

Windows 8.1 and Windows Server 2012 R2

• Monthly Rollup: KB5003671
• Security-only: KB5003681

Updates and improvements:

• Security updates

Windows 10 version 1909

• Support Page: KB5003637

Updates and improvements:

• Addresses an issue with an inconsistent shutdown during Windows Update that damages the Windows Management Instrumentation (WMI) repository.
• Addresses an issue that might prevent you from signing in to some Microsoft 365 desktop client apps after installing the May 11, 2021 or later update and restarting your device
• Security updates

Windows 10 version 2004, 20H2 and 21H1

• Support Page: KB5003173

Updates and improvements:

• Security updates

Other security updates

KB5003165: Cumulative security update for Internet Explorer: May 11, 2021

Rest is being added once Microsoft updates its support pages.

Known Issues


Windows 7 SP1 and Server 2008 R2

• Connections to SQL Server 2005 may fail after installation of the update. Error "Cannot connect to <Server name>" may be displayed.
  • Microsoft notes that the behavior is expected and suggests that customers upgrade to a supported version of SQL server.
• Installed update may be reverted.
  • Expected behavior if the machine is not supported for ESU.
• Certain operations may fail on Cluster Shared Volumes.
  • Either perform the operation from a process with administrator privileges, or from a node that does not have CSV ownership.

Windows 8.1 and Server 2012 R2

• Certain operations may fail on Cluster Shared Volumes.
  • Either perform the operation from a process with administrator privileges, or from a node that does not have CSV ownership.

Windows 10 version 1909

• System and user certificates may be lost when the device is updated to a newer version of Windows 10.
  • Microsoft suggests to go back to the previous version of Windows, but it is only available up to 30 days after installation of the update.

Windows 10 version 2004, 20H2 and 21H1

• Same system and user certificates issue as version 1909.
• Issue with the Microsoft Japanese Input Method Editor and Japanese Kanji / Furigana characters.
  • No workaround at the time of writing. Microsoft is working on a resolution.
• Issues with the performance of games after installing recent updates.
  • Is resolved according to Microsoft except for Enterprise-managed devices.
• Issue with Microsoft Edge Legacy being removed but Microsoft Edge (new) not being installed if W10 is installed using custom offline media or ISO images.
  • Workaround provided on the support page.

Security advisories and updates


ADV 990001 -- Latest Servicing Stack Updates

Non-security related updates

Microsoft Office Updates


You find Office update information here.

How to download and install the June 2021 security updates




Security updates are downloaded and installed automatically on most Home systems running Windows. The updates are also released via WSUS and other update management systems, and provided as direct downloads on Microsoft's Update Catalog website.

You can check for updates in the following way on Windows when using Windows Updates:

1. Select Start, type Windows Update and load the Windows Update item that is displayed.
2. Select check for updates to run a manual check for updates.

Direct update downloads


Below are resource pages with direct download links, if you prefer to download the updates to install them manually.

Windows 7 and Server 2008 R2

• KB5003667 -- 2021-06 Security Monthly Quality Rollup for Windows 7
• KB5003694 -- 2021-06 Security Only Quality Update for Windows 7

Windows 8.1 and Windows Server 2012 R2

• KB5003671 -- 2021-06 Security Monthly Quality Rollup for Windows 8.1
• KB5003681 -- 2021-06 Security Only Quality Update for Windows 8.1

Windows 10 (version 1909)

• KB5003635 -- 2021-06 Cumulative Update for Windows 10 Version 1909

Windows 10 (version 2004)

• KB5003637 -- 2021-06 Cumulative Update for Windows 10 Version 2004

Windows 10 (version 20H2)

• KB5003637 -- 2021-06 Cumulative Update for Windows 10 Version 20H2

Windows 10 (version 21H1)

• KB5003637 -- 2021-06 Cumulative Update for Windows 10 Version 21H1

Additional resources

• June 2021 Security Updates release notes
• List of software updates for Microsoft products
• List of the latest Windows Updates and Services Packs
• Security Updates Guide
• Microsoft Update Catalog site
• Our in-depth Windows update guide
• How to install optional updates on Windows 10
• Windows 10 Update History
• Windows 8.1 Update History
• Windows 7 Update History

Thank you for being a Ghacks reader. The post Microsoft Windows Security Updates June 2021 overview appeared first on gHacks Technology News.

read more...

 

Microsoft March 2021 Security Updates

March 2021 Security Updates

Updates this Month

This release consists of security updates for the following products, features and roles.

• Application Virtualization
• Azure
• Azure DevOps
• Azure Sphere
• Internet Explorer
• Microsoft ActiveX
• Microsoft Exchange Server
• Microsoft Edge (Chromium-based)
• Microsoft Graphics Component
• Microsoft Office
• Microsoft Office Excel
• Microsoft Office PowerPoint
• Microsoft Office SharePoint
• Microsoft Office Visio
• Microsoft Windows Codecs Library
• Power BI
• Role: DNS Server
• Role: Hyper-V
• Visual Studio
• Visual Studio Code
• Windows Admin Center
• Windows Container Execution Agent
• Windows DirectX
• Windows Error Reporting
• Windows Event Tracing
• Windows Extensible Firmware Interface
• Windows Folder Redirection
• Windows Installer
• Windows Media
• Windows Overlay Filter
• Windows Print Spooler Components
• Windows Projected File System Filter Driver
• Windows Registry
• Windows Remote Access API
• Windows Storage Spaces Controller
• Windows Update Assistant
• Windows Update Stack
• Windows UPnP Device Host
• Windows User Profile Service
• Windows WalletService
• Windows Win32K

Relevant Information

• Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog. For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
• Microsoft is improving Windows Release Notes. For more information, please see What's next for Windows release notes.
• A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
• In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
• Customers running Windows 7, Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.

Please see the following for more information on the Microsoft Exchange Server Vulnerabilities:

• MSRC Blog
• Hafnium Targeting Exchange
• Microsoft on the Issues
• Exchange Team Blog
• March 8 Exchange Team Blog
• Microsoft Exchange Server Vulnerabilities Mitigations

FAQs, Mitigations, and Workarounds

The following CVEs have FAQs, Mitigations, or Workarounds. You can see these in more detail from the Vulnerabilities tab by selecting FAQs, Mitigations and Workarounds columns in the Edit Columns panel.

• CVE-2021-1640
• CVE-2021-24089
• CVE-2021-24104
• CVE-2021-24107
• CVE-2021-24108
• CVE-2021-24110
• CVE-2021-26411
• CVE-2021-26855
• CVE-2021-26857
• CVE-2021-26858
• CVE-2021-26859
• CVE-2021-26867
• CVE-2021-26869
• CVE-2021-26877
• CVE-2021-26884
• CVE-2021-26887
• CVE-2021-26893
• CVE-2021-26894
• CVE-2021-26895
• CVE-2021-26896
• CVE-2021-26897
• CVE-2021-26902
• CVE-2021-27047
• CVE-2021-27048
• CVE-2021-27049
• CVE-2021-27050
• CVE-2021-27051
• CVE-2021-27052
• CVE-2021-27054
• CVE-2021-27055
• CVE-2021-27056
• CVE-2021-27057
• CVE-2021-27058
• CVE-2021-27059
• CVE-2021-27061
• CVE-2021-27062
• CVE-2021-27063
• CVE-2021-27065
• CVE-2021-27067
• CVE-2021-27074
• CVE-2021-27075
• CVE-2021-27076
• CVE-2021-27080
• CVE-2021-27082

Known Issues

You can see these in more detail from the Deployments tab by selecting Known Issues column in the Edit Columns panel.
For more information about Windows Known Issues, please see Windows message center (links to currently-supported versions of Windows are in the left pane).
[table][tr]KB Article Applies To [/tr] [tr][td]5000802[/td] [td]Windows 10, Version 2004, Windows Server, Version 2004[/td] [/tr] [tr][td]5000803[/td] [td]Windows 10, Version 1607, Windows Server 2016[/td] [/tr] [tr][td]5000808[/td] [td]Windows 10, Version 1909, Windows Server, Version 1909[/td] [/tr] [tr][td]5000822[/td] [td]Windows 10, Version 1809, Windows Server 2019[/td] [/tr] [tr][td]5000840[/td] [td]Windows Server 2012 (Security-only update)[/td] [/tr] [tr][td]5000841[/td] [td]Windows 7, Windows Server 2008 R2 (Monthly Rollup)[/td] [/tr] [tr][td]5000844[/td] [td]Windows Server 2008 (Monthly Rollup)[/td] [/tr] [tr][td]5000847[/td] [td]Windows Server 2012 (Monthly Rollup)[/td] [/tr] [tr][td]5000848[/td] [td]Windows 8.1, Windows RT 8.1, Windows Server 2012 R2 (Monthly Rollup)[/td] [/tr] [tr][td]5000851[/td] [td]Windows 7, Windows Server 2008 R2 (Security-only update)[/td] [/tr] [tr][td]5000853[/td] [td]Windows 8.1, Windows RT 8.1, Windows Server 2012 R2 (Security-only update)[/td] [/tr] [tr][td]5000856[/td] [td]Windows Server 2008 (Security-only update)[/td] [/tr] [tr][td]5000871[/td] [td]Microsoft Exchange Server 2019, 2016 and 2013[/td] [/tr] [tr][td]5000978[/td] [td]Microsoft Exchange Server 2010[/td] [/tr] [/table]

Released: Mar 9, 2021


March 2021 Security Updates - Release Notes - Security Update Guide - Microsoft

 

Microsoft January 2021 Security Updates

January 2021 Security Updates




The January 2021 security release consists of security updates for the following software:

• Microsoft Windows
• Microsoft Edge (EdgeHTML-based)
• Microsoft Office and Microsoft Office Services and Web Apps
• Microsoft Windows Codecs Library
• Visual Studio
• SQL Server
• Microsoft Malware Protection Engine
• .NET Core
• .NET Repository
• ASP .NET
• Azure

Please note the following information regarding the security updates:

• CVE-2020-0689 has been re-released. For further information see Security update for Secure Boot DBX: January 12, 2021.
• For information regarding enabling Windows 10, version 1909 features, please see Windows 10, version 1909 delivery options. Note that Windows 10, versions 1903 and 1909 share a common core operating system with an identical set of system files. They will also share the same security update KBs.
• Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
• For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
• A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
• Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
• In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
• Customers running Windows 7, Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.

The following CVEs have FAQs with additional information. Please note that this is not a complete list of CVEs for this release.

• CVE-2020-26870
• CVE-2021-1636
• CVE-2021-1637
• CVE-2021-1643
• CVE-2021-1644
• CVE-2021-1645
• CVE-2021-1647
• CVE-2021-1648
• CVE-2021-1656
• CVE-2021-1663
• CVE-2021-1669
• CVE-2021-1670
• CVE-2021-1672
• CVE-2021-1676
• CVE-2021-1677
• CVE-2021-1694
• CVE-2021-1696
• CVE-2021-1699
• CVE-2021-1707
• CVE-2021-1708
• CVE-2021-1711
• CVE-2021-1713
• CVE-2021-1714
• CVE-2021-1715
• CVE-2021-1716
• CVE-2021-1725

Known Issues


The following KBs contain information about known issues with the security updates. For a complete list of security update KBs, please see 20210112. For more information about Windows Known Issues, please see Windows message center (links to currently-supported versions of Windows are in the left pane).


KB Article Applies To
4598229 Windows 10, Version 1903, Windows Server, Version 1903, Windows 10, Version 1909, Windows Server, Version 1909
4598230 Windows 10, Version 1809, Windows Server 2019
4598242 Windows 10, Version 2004, Windows Server, Version 2004, Windows 10, Version 20H2, Windows Server, Version 20H2
4598275 Windows 8.1, Windows Server 2012 R2 (Security-only update)
4598278 Windows Server 2012 (Monthly Rollup)
4598279 Windows 7, Windows Server 2008 R2 (Monthly Rollup)
4598285 Windows 8.1, Windows Server 2012 R2 (Monthly Rollup)
4598287 Windows Server 2008 (Security-only update)
4598288 Windows Server 2008 (Monthly Rollup)
4598289 Windows 7, Windows Server 2008 R2 (Security-only update)
4598297 Windows Server 2012 (Security-only update)


January 2021 Security Updates - Release Notes - Security Update Guide - Microsoft

 

Microsoft April 2021 Security Updates

April 2021 Security Updates


Updates this Month


This release consists of security updates for the following products, features and roles.

• Azure AD Web Sign-in
• Azure DevOps
• Azure Sphere
• Microsoft Edge (Chromium-based)
• Microsoft Exchange Server
• Microsoft Graphics Component
• Microsoft Internet Messaging API
• Microsoft NTFS
• Microsoft Office Excel
• Microsoft Office Outlook
• Microsoft Office SharePoint
• Microsoft Office Word
• Microsoft Windows Codecs Library
• Microsoft Windows Speech
• Open Source Software
• Role: DNS Server
• Role: Hyper-V
• Visual Studio
• Visual Studio Code
• Visual Studio Code - GitHub Pull Requests and Issues Extension
• Visual Studio Code - Kubernetes Tools
• Visual Studio Code - Maven for Java Extension
• Windows Application Compatibility Cache
• Windows AppX Deployment Extensions
• Windows Console Driver
• Windows Diagnostic Hub
• Windows Early Launch Antimalware Driver
• Windows ELAM
• Windows Event Tracing
• Windows Installer
• Windows Kernel
• Windows Media Player
• Windows Network File System
• Windows Overlay Filter
• Windows Portmapping
• Windows Registry
• Windows Remote Procedure Call Runtime
• Windows Resource Manager
• Windows Secure Kernel Mode
• Windows Services and Controller App
• Windows SMB Server
• Windows TCP/IP
• Windows Win32K
• Windows WLAN Auto Config Service

Please note the following information regarding the security updates:


Relevant Information

• Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog. For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
• Microsoft is improving Windows Release Notes. For more information, please see What's next for Windows release notes.
• A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
• In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
• Customers running Windows 7, Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.

FAQs, Mitigations, and Workarounds
The following CVEs have FAQs, Mitigations, or Workarounds. You can see these in more detail from the Vulnerabilities tab by selecting FAQs, Mitigations and Workarounds columns in the Edit Columns panel.

• CVE-2021-21194
• CVE-2021-21195
• CVE-2021-21196
• CVE-2021-21197
• CVE-2021-21198
• CVE-2021-21199
• CVE-2021-26416
• CVE-2021-26417
• CVE-2021-27067
• CVE-2021-27079
• CVE-2021-27093
• CVE-2021-27095
• CVE-2021-28309
• CVE-2021-28315
• CVE-2021-28317
• CVE-2021-28318
• CVE-2021-28323
• CVE-2021-28324
• CVE-2021-28325
• CVE-2021-28328
• CVE-2021-28435
• CVE-2021-28437
• CVE-2021-28441
• CVE-2021-28442
• CVE-2021-28444
• CVE-2021-28446
• CVE-2021-28449
• CVE-2021-28451
• CVE-2021-28452
• CVE-2021-28453
• CVE-2021-28454
• CVE-2021-28456
• CVE-2021-28460
• CVE-2021-28464
• CVE-2021-28466
• CVE-2021-28468
• CVE-2021-28480
• CVE-2021-28481
• CVE-2021-28482
• CVE-2021-28483

Known Issues
You can see these in more detail from the Deployments tab by selecting Known Issues column in the Edit Columns panel.


For more information about Windows Known Issues, please see Windows message center (links to currently-supported versions of Windows are in the left pane).


KB Article Applies To
4504715 SharePoint Server 2019 Language Pack
4504716 SharePoint Server 2019
5001330 Windows 10, Version 2004, Windows Server, Version 2004, Windows 10, Version 20H2, Windows Server, Version 20H2
5001332 Windows Server 2008 (Security-only update)
5001335 Windows 7, Windows Server 2008 R2 (Monthly Rollup)
5001337 Windows 10, Version 1909, Windows Server, Version 1909
5001342 Windows 10, Version 1809, Windows Server 2019
5001347 Windows 10, Version 1607, Windows Server 2016
5001382 Windows 8.1, Windows RT 8.1, Windows Server 2012 R2 (Monthly Rollup)
5001383 Windows Server 2012 (Security-only update)
5001387 Windows Server 2012 (Monthly Rollup)
5001389 Windows Server 2008 (Monthly Rollup)
5001392 Windows 7, Windows Server 2008 R2 (Security-only update)
5001393 Windows 8.1, Windows RT 8.1, Windows Server 2012 R2 (Security-only update)
5001779 Microosft Exchange Server 2019, 2016, 2013


April 2021 Security Updates - Release Notes - Security Update Guide - Microsoft