Windows 10: Microsoft Windows Security Updates March 2022 overview

It is the second Tuesday of the month, and that means it is Microsoft Patch Day. Microsoft released security updates for its Windows operating system and other company products, including Microsoft Office, on March 8, 2022.



Our security updates reference for March 2022 provides you with information about the released updates. The overview includes links to support pages, informs you about known issues confirmed by Microsoft, lists the severity for every supported server and client product, and more.

Click here to check out the February 2022 Windows Security Updates guide.

Microsoft Windows Security Updates: March 2022


The following Excel spreadsheet includes the released security updates for Windows and other company products. Just download it with a click on the following link: Security Updates 2022-03-08-065952pm

Executive Summary

• Microsoft released security updates for all client and server versions of the Windows operating system that it supports.
• The highest severity rating for all versions of Windows is important.
• Security products are also available for .NET and Visual Studio, Azure Site Recovery, Paint 3D, Microsoft Office, Visual Studio code, Xbox and Microsoft Edge (among others)
• The following client versions of Windows have known issues: Windows 7, Windows 8.1, Windows 10 version 1607, 20H2, 21H1, 21H2,
• The following server versions of Windows have known issues: Windows Server 2008, 2008 R2, 2012, 2012 R2, 2016, 2019, and 2022

Operating System Distribution

• Windows 7 (extended support only): 16 vulnerabilities: 0 critical and 16 important
• Windows 8.1: 22 vulnerabilities: 0 critical and 22 important
• Windows 10 version 1909: 30 vulnerabilities: 0 critical and 30 important
• Windows 10 version 2004, 20H2, 21H1 and 21H2 : 30 vulnerabilities, 0 critical and 30 important
• Windows 11: 27vulnerabilities, 0 critical and 27 important

Windows Server products

• Windows Server 2008 R2 (extended support only): 15 vulnerabilities: 0 critical and 15 important
• Windows Server 2012 R2: 22 vulnerabilities: 0 critical and 22 important
• Windows Server 2016: 25 vulnerabilities: 0 critical and 25 important
• Windows Server 2019: 28 vulnerabilities: 0critical and 28 important
• Windows Server 2022: 28 vulnerabilities: 0 critical and 28 important

Windows Security Updates


Windows 7 SP1 and Windows Server 2008 R2

• Monthly Rollup: KB5011552
• Security-Only: KB5011529

Updates and improvements:

• Addressed the SHA1 deprecation in Windows Embedded platforms by "removing specific SHA1-signed security and non-security fixes and resigned the fixes with SHA2 in this release" (monthly rollup only)
• Fixed the cause of the error message "Insufficient system resources exist to complete the requested service" after installing the January 2022 update on the Primary domain controller emulator.

Windows 8.1 and Windows Server 2012 R2

• Monthly Rollup: KB5011564
• Security-only: KB5011560

Updates and improvements:

• Fixed an issue that could cause "some low integrity level process apps" printing unexpectedly.
• Fixed an Access Denied error when trying to write a "service principal name alias and Host/Name already exists on another object.
• Fixed the cause of the error message "Insufficient system resources exist to complete the requested service" after installing the January 2022 update on the Primary domain controller emulator.

Windows 10 version 2004, 20H2, 21H1 and 21H2

• Support Page: KB5011487

Updates and improvements:

• Fixed the Windows reset issue that could result in data leftovers under certain configurations.
• Plus the changes introduced by the preview update.

Windows 11

• Support Page: KB5011493

Updates and improvements:

• Fixed the Windows reset issue that could result in data leftovers under certain configurations.
• Plus the changes introduced by the preview update.

Other security updates

2022-03 Cumulative Security Update for Internet Explorer (KB5011486)

2022-03 Cumulative Update for Windows 10 Version 1909 (KB5011485)

2022-03 Cumulative Update for Windows 10 version 1507 (KB5011491)

2022-03 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5011497)

Server and embedded

2022-03 Security Only Quality Update for Windows Server 2008 (KB5011525)

2022-03 Security Only Quality Update for Windows Embedded 8 Standard and Windows Server 2012 (KB5011527)

2022-03 Security Monthly Quality Rollup for Windows Server 2008 (KB5011534)

2022-03 Security Monthly Quality Rollup for Windows Embedded 8 Standard and Windows Server 2012 (KB5011535)

2022-03 Cumulative Update for Windows Server 2016 and Windows 10 Version 1607 (KB5011495)

2022-03 Cumulative Update for Windows Server 2019 and Windows 10 Version 1809 (KB5011503)

Servicing Stack updates

2022-03 Servicing Stack Update for Windows 10 version 1507 (KB5011569)

2022-03 Servicing Stack Update for Windows Server 2016 and Windows 10 Version 1607 (KB5011570)

2022-03 Servicing Stack Update for Windows Embedded 8 Standard and Windows Server 2012 (KB5011571)

2022-03 Servicing Stack Update for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2 (KB5011649)

2022-03 Servicing Stack Update for Windows Server 2008 (KB5011942)

Known Issues


Windows 7 SP1 and Windows Server 2008 R2

• (Old) Updates may show as failed and may be uninstalled because the machine is not on ESU.
  • Expected behavior.
• (Old) Certain operations such as rename may fail on Cluster Shared Volumes.
  • Perform the operation from a process with administrator privileges.
  • Perform the operation from a node that does not have CSV ownership.

Windows 8.1 and Windows Server 2012 R2

• (Old) Certain operations such as rename may fail on Cluster Shared Volumes.
  • Perform the operation from a process with administrator privileges.
  • Perform the operation from a node that does not have CSV ownership.
• (Old) Issues with apps using the " Microsoft .NET Framework to acquire or set Active Directory Forest Trust Information". These may fail, close, or may throw errors messages such as access violation (0xc0000005).
  • Install out-of-band updates for the .NET Framework version that the app in question uses. Microsoft has links to these on the support page.

Windows 10 versions 2004, 20H2, 21H1 and 21H2

• (Old) Custom installations may not receive the new Microsoft Edge web browser, while the old version may be removed.
  • Workaround described on the support page.
• (Old) Some devices can't install updates after installation of KB5003690 (June 21, 2021). Error PSFX_E_MATCHING_BINARY_MISSING is displayed.
  • Workaround instructions are available here.
• (Old) Connections may fail to authentication when using smart card authentication in Remote Desktop Connections.
  • Resolved according to Microsoft, should not be experienced anymore.

Security advisories and updates


ADV 990001 -- Latest Servicing Stack Updates

Non-security updates


None.

Microsoft Office Updates

You find Office update information here.

How to download and install the March 2022 security updates


Most home Windows devices are updated automatically via Windows Updates. Windows systems do not check in realtime for updates, and some administrators may want to speed up the installation of new security updates by running manual update checks or download updates directly from Microsoft servers.

1. Select Start, type Windows Update and load the Windows Update item that is displayed.
2. Select check for updates to run a manual check for updates.

Direct update downloads


Below are resource pages with direct download links, if you prefer to download the updates to install them manually.

Windows 7 and Server 2008 R2

• KB5011552 -- 2022-03 Security Monthly Quality Rollup for Windows 7
• KB5011529 -- 2022-03 Security Only Quality Update for Windows 7

Windows 8.1 and Windows Server 2012 R2

• KB5011564 -- 2022-03 Security Monthly Quality Rollup for Windows 8.1
• KB5011560 -- 2022-03 Security Only Quality Update for Windows 8.1

Windows 10 (version 20H2)

• KB5011487 -- 2022-03 Cumulative Update for Windows 10 Version 20H2

Windows 10 (version 21H1)

• KB5011487-- 2022-03 Cumulative Update for Windows 10 Version 21H1

Windows 10 (version 21H2)

• KB5011487-- 2022-03 Cumulative Update for Windows 10 Version 21H2

Windows 11

• KB5011493 -- 2022-03 Cumulative Update for Windows 11

Additional resources

• March 2022 Security Updates release notes
• List of software updates for Microsoft products
• List of the latest Windows Updates and Services Packs
• Security Updates Guide
• Microsoft Update Catalog site
• Our in-depth Windows update guide
• How to install optional updates on Windows 10
• Windows 11 Update History
• Windows 10 Update History
• Windows 8.1 Update History
• Windows 7 Update History

Thank you for being a Ghacks reader. The post Microsoft Windows Security Updates March 2022 overview appeared first on gHacks Technology News.

read more...

 

Microsoft January 2022 Security Updates

January 2022 Security Updates
Updates this Month


This release consists of security updates for the following products, features and roles.

• .NET Framework
• Microsoft Dynamics
• Microsoft Edge (Chromium-based)
• Microsoft Exchange Server
• Microsoft Graphics Component
• Microsoft Office
• Microsoft Office Excel
• Microsoft Office SharePoint
• Microsoft Office Word
• Microsoft Teams
• Microsoft Windows Codecs Library
• Open Source Software
• Role: Windows Hyper-V
• Tablet Windows User Interface
• Windows Account Control
• Windows Active Directory
• Windows AppContracts API Server
• Windows Application Model
• Windows BackupKey Remote Protocol
• Windows Bind Filter Driver
• Windows Certificates
• Windows Cleanup Manager
• Windows Clipboard User Service
• Windows Cluster Port Driver
• Windows Common Log File System Driver
• Windows Connected Devices Platform Service
• Windows Cryptographic Services
• Windows Defender
• Windows Devices Human Interface
• Windows Diagnostic Hub
• Windows DirectX
• Windows DWM Core Library
• Windows Event Tracing
• Windows Geolocation Service
• Windows HTTP Protocol Stack
• Windows IKE Extension
• Windows Installer
• Windows Kerberos
• Windows Kernel
• Windows Libarchive
• Windows Local Security Authority
• Windows Local Security Authority Subsystem Service
• Windows Modern Execution Server
• Windows Push Notifications
• Windows RDP
• Windows Remote Access Connection Manager
• Windows Remote Desktop
• Windows Remote Procedure Call Runtime
• Windows Resilient File System (ReFS)
• Windows Secure Boot
• Windows Security Center
• Windows StateRepository API
• Windows Storage
• Windows Storage Spaces Controller
• Windows System Launcher
• Windows Task Flow Data Engine
• Windows Tile Data Repository
• Windows UEFI
• Windows UI Immersive Server
• Windows User Profile Service
• Windows User-mode Driver Framework
• Windows Virtual Machine IDE Drive
• Windows Win32K
• Windows Workstation Service Remote Protocol

Please note the following information regarding the security updates:


Security Update Guide Blog Posts
Date Blog Post
January 11, 2022 Coming Soon: A Brand-New Notification System!
February 9, 2021 Continuing to Listen: Good News about the Security Update Guide API
January 13, 2021 Security Update Guide Supports CVEs Assigned by Industry Partners
December 8, 2020 Security Update Guide: Let’s keep the conversation going
November 9, 2020 Vulnerability Descriptions in the New Version of the Security Update Guide
Relevant Information

• Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog. For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
• Microsoft is improving Windows Release Notes. For more information, please see What's next for Windows release notes.
• A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
• In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
• Customers running Windows 7, Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.

FAQs, Mitigations, and Workarounds
The following CVEs have FAQs, Mitigations, or Workarounds. You can see these in more detail from the Vulnerabilities tab by selecting FAQs, Mitigations and Workarounds columns in the Edit Columns panel.

• CVE-2021-22947
• CVE-2021-36976
• CVE-2022-0096
• CVE-2022-0097
• CVE-2022-0098
• CVE-2022-0099
• CVE-2022-0100
• CVE-2022-0101
• CVE-2022-0102
• CVE-2022-0103
• CVE-2022-0104
• CVE-2022-0105
• CVE-2022-0106
• CVE-2022-0107
• CVE-2022-0108
• CVE-2022-0109
• CVE-2022-0110
• CVE-2022-0111
• CVE-2022-0112
• CVE-2022-0113
• CVE-2022-0114
• CVE-2022-0115
• CVE-2022-0116
• CVE-2022-0117
• CVE-2022-0118
• CVE-2022-0120
• CVE-2022-21836
• CVE-2022-21837
• CVE-2022-21838
• CVE-2022-21840
• CVE-2022-21841
• CVE-2022-21842
• CVE-2022-21843
• CVE-2022-21846
• CVE-2022-21848
• CVE-2022-21849
• CVE-2022-21850
• CVE-2022-21851
• CVE-2022-21855
• CVE-2022-21857
• CVE-2022-21876
• CVE-2022-21877
• CVE-2022-21880
• CVE-2022-21882
• CVE-2022-21883
• CVE-2022-21887
• CVE-2022-21889
• CVE-2022-21890
• CVE-2022-21892
• CVE-2022-21893
• CVE-2022-21900
• CVE-2022-21901
• CVE-2022-21904
• CVE-2022-21905
• CVE-2022-21907
• CVE-2022-21912
• CVE-2022-21914
• CVE-2022-21915
• CVE-2022-21917
• CVE-2022-21920
• CVE-2022-21922
• CVE-2022-21928
• CVE-2022-21929
• CVE-2022-21930
• CVE-2022-21931
• CVE-2022-21954
• CVE-2022-21958
• CVE-2022-21959
• CVE-2022-21960
• CVE-2022-21961
• CVE-2022-21962
• CVE-2022-21963
• CVE-2022-21964
• CVE-2022-21969
• CVE-2022-21970
• CVE-2022-22709

Known Issues
You can see these in more detail from the Deployments tab by selecting Known Issues column in the Edit Columns panel.


For more information about Windows Known Issues, please see Windows message center (links to currently-supported versions of Windows are in the left pane).


KB Article Applies To
5002109 SharePoint Server 2019 Core
5002111 SharePoint Server Subscription Edition Core
5002113 SharePoint Enterprise Server 2016
5002127 SharePoint Foundation 2013
5008631 Microsoft Exchange Server 2013, 2016, 2019
5009543 Windows 10, version 20H2, Windows Server, version 20H2, Windows 10, version 21H1, Windows 10, version 21H2
5009546 Windows 10, version 1607, Windows Server 2016
5009555 Windows Server 2022
5009557 Windows Server 2019
5009566 Windows 11
5009586 Windows Server 2012 (Monthly Rollup)
5009595 Windows 8.1, Windows Server 2012 R2 (Security-only update)
5009601 Windows Server 2008 (Security-only update)
5009610 Windows 7, Windows Server 2008 R2 (Monthly Rollup)
5009619 Windows Server 2012 (Security-only update)
5009621 Windows 7, Windows Server 2008 R2 (Security-only update)
5009624 Windows 8.1, Windows Server 2012 R2 (Monthly Rollup)
5009627 Windows Server 2008 (Monthly Rollup)
Released: Jan 11, 2022
January 2022 Security Updates - Release Notes - Security Update Guide - Microsoft

 

Microsoft March 2019 Security Updates

Security Update Guide > Release Notes
Release Notes
March 2019 Security Updates
Release Date: March 12, 2019
The March security release consists of security updates for the following software:
Adobe Flash Player
Internet Explorer
Microsoft Edge
Microsoft Windows
Microsoft Office and Microsoft Office SharePoint
ChakraCore
Team Foundation Server
Skype for Business
Visual Studio
NuGet
Please note the following information regarding the security updates:
A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
The following CVEs have FAQs with additional information and may include * further steps to take after installing the updates.
ADV190008
ADV190010 *
ADV990001
CVE-2019-0614
CVE-2019-0702
CVE-2019-0703
CVE-2019-0704
CVE-2019-0755
CVE-2019-0759
CVE-2019-0767
CVE-2019-0774
CVE-2019-0775
CVE-2019-0776
CVE-2019-0782
Known Issues
KB Article Applies To
4489878 Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Monthly Rollup)
4489881 Windows 8.1, Windows Server 2012 R2 (Monthly Rollup)
4489882 Windows 10 version 1607, Windows Server 2016
4489883 Windows 8.1, Windows Server 2012 R2 (Security-only update)
4489884 Windows Server 2012 (Security-only update)
4489885 Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Security-only update)
4489891 Windows Server 2012 (Monthly Rollup)
4489899 Windows 10 version 1809, Windows Server 2019
https://portal.msrc.microsoft.com/en...b-000d3a33a34d

 

Microsoft March 2019 Security Updates

Security Update Guide > Release Notes

Release Notes

March 2019 Security Updates

Release Date: March 12, 2019

The March security release consists of security updates for the following software:

Adobe Flash Player

Internet Explorer

Microsoft Edge

Microsoft Windows

Microsoft Office and Microsoft Office SharePoint

ChakraCore

Team Foundation Server

Skype for Business

Visual Studio

NuGet

Please note the following information regarding the security updates:

A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.

Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.

Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.

For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.

In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.

The following CVEs have FAQs with additional information and may include * further steps to take after installing the updates.

ADV190008

ADV190010 *

ADV990001

CVE-2019-0614

CVE-2019-0702

CVE-2019-0703

CVE-2019-0704

CVE-2019-0755

CVE-2019-0759

CVE-2019-0767

CVE-2019-0774

CVE-2019-0775

CVE-2019-0776

CVE-2019-0782

Known Issues

KB Article Applies To

4489878 Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Monthly Rollup)

4489881 Windows 8.1, Windows Server 2012 R2 (Monthly Rollup)

4489882 Windows 10 version 1607, Windows Server 2016

4489883 Windows 8.1, Windows Server 2012 R2 (Security-only update)

4489884 Windows Server 2012 (Security-only update)

4489885 Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Security-only update)

4489891 Windows Server 2012 (Monthly Rollup)

4489899 Windows 10 version 1809, Windows Server 2019

Security Update Guide - Microsoft Security Response Center