Windows 10: Microsoft Windows Security Updates March 2023: What you need to know before installation

Welcome to the overview for the March 2023 Microsoft Windows security releases. Microsoft published security updates for all client and server versions of Windows that it supports.

Security updates and non-security updates are already available for Windows and other Microsoft products, including Microsoft Edge and Microsoft Office.

Our monthly overview offers information about all security patches that Microsoft released, including their severity, known issues as confirmed by Microsoft, links to support pages and downloads, and more.

Click here to check out the February 2023 Microsoft Windows Patch Day overview in case you missed it.

Microsoft Windows Security Updates: March 2023


Here is the Excel spreadsheet for the security updates that Microsoft released on the March 2023 Patch Day. A click on the following link downloads the archive to the local system: Microsoft Windows security updates march 2023

Executive Summary

• Microsoft released security updates for all supported client and server versions of Windows.
• Security updates are also available for Azure, Microsoft Office, Microsoft Edge, Microsoft printer drivers, Visual Studio, and other company products.
• The following Windows client version have known issues: Windows 10, version 1809, version 20H2, 21H1 and 22H2, Windows 11 version 22H2.
• The following Windows server versions have known issues: Windows Server 2008, 2008 R2, 2012, Windows Server 2019, and Windows Server 2022.

Operating System Distribution

• Windows 10 version 21H2 and 22H2: 52 vulnerabilities, 7 critical and 44 important and 1 moderate
  • CERT/CC: CVE-2023-1017 TPM2.0 Module Library Elevation of Privilege Vulnerability -- CVE-2023-1017
  • CERT/CC: CVE-2023-1018 TPM2.0 Module Library Elevation of Privilege Vulnerability -- CVE-2023-1018
  • Remote Procedure Call Runtime Remote Code Execution Vulnerability -- CVE-2023-21708
  • Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability -- CVE-2023-23404
  • Windows Hyper-V Denial of Service Vulnerability -- CVE-2023-23411
  • Internet Control Message Protocol (ICMP) Remote Code Execution Vulnerability -- CVE-2023-23415
  • Windows Cryptographic Services Remote Code Execution Vulnerability -- CVE-2023-23416
• Windows 11 and Windows 11 version 22H2: 54 vulnerabilities, 8 critical and 45 important and 1 moderate
  • HTTP Protocol Stack Remote Code Execution Vulnerability -- CVE-2023-23392
  • CERT/CC: CVE-2023-1017 TPM2.0 Module Library Elevation of Privilege Vulnerability -- CVE-2023-1017
  • CERT/CC: CVE-2023-1018 TPM2.0 Module Library Elevation of Privilege Vulnerability -- CVE-2023-1018
  • Remote Procedure Call Runtime Remote Code Execution Vulnerability -- CVE-2023-21708
  • Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability -- CVE-2023-23404
  • Windows Hyper-V Denial of Service Vulnerability -- CVE-2023-23411
  • Internet Control Message Protocol (ICMP) Remote Code Execution Vulnerability -- CVE-2023-23415
  • Windows Cryptographic Services Remote Code Execution Vulnerability -- CVE-2023-23416

Windows Server products

• Windows Server 2008 R2 (extended support only): 20 vulnerabilities: 2 critical and 18 important
  • Remote Procedure Call Runtime Remote Code Execution Vulnerability -- CVE-2023-21708
  • Internet Control Message Protocol (ICMP) Remote Code Execution Vulnerability -- CVE-2023-23415
• Windows Server 2012 R2: 45 vulnerabilities: 4 critical and 41 important
  • Remote Procedure Call Runtime Remote Code Execution Vulnerability -- CVE-2023-21708
  • Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability -- CVE-2023-23404
  • Internet Control Message Protocol (ICMP) Remote Code Execution Vulnerability -- CVE-2023-23415
  • Windows Cryptographic Services Remote Code Execution Vulnerability -- CVE-2023-23416
• Windows Server 2016: 51 vulnerabilities: 7 critical and 43 important and 1 moderate.
  • CERT/CC: CVE-2023-1017 TPM2.0 Module Library Elevation of Privilege Vulnerability -- CVE-2023-1017
  • CERT/CC: CVE-2023-1018 TPM2.0 Module Library Elevation of Privilege Vulnerability -- CVE-2023-1018
  • Remote Procedure Call Runtime Remote Code Execution Vulnerability -- CVE-2023-21708
  • Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability -- CVE-2023-23404
  • Windows Hyper-V Denial of Service Vulnerability -- CVE-2023-23411
  • Internet Control Message Protocol (ICMP) Remote Code Execution Vulnerability -- CVE-2023-23415
  • Windows Cryptographic Services Remote Code Execution Vulnerability -- CVE-2023-23416
• Windows Server 2019: 52 vulnerabilities: 7 critical and 44 important and 1 moderate
  • Same as Windows Server 2016.
• Windows Server 2022: 54 vulnerabilities: 8 critical and 45 important and 1 moderate
  • HTTP Protocol Stack Remote Code Execution Vulnerability -- CVE-2023-23392
  • CERT/CC: CVE-2023-1017 TPM2.0 Module Library Elevation of Privilege Vulnerability -- CVE-2023-1017
  • CERT/CC: CVE-2023-1018 TPM2.0 Module Library Elevation of Privilege Vulnerability -- CVE-2023-1018
  • Remote Procedure Call Runtime Remote Code Execution Vulnerability -- CVE-2023-21708
  • Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability -- CVE-2023-23404
  • Windows Hyper-V Denial of Service Vulnerability -- CVE-2023-23411
  • Internet Control Message Protocol (ICMP) Remote Code Execution Vulnerability -- CVE-2023-23415
  • Windows Cryptographic Services Remote Code Execution Vulnerability -- CVE-2023-23416

Windows Security Updates


Windows 10 version 21H2 and 22H2

• Support Page: KB5023696

Updates and improvements:

• The update implements the third-phase of DCOM (Distributed Component Object Model) hardening. See this support article for more information.
• This update addresses an issue that affects a computer account and Active Directory. When you reuse an existing computer account to join an Active Directory domain, joining fails.
• Security issues.
• All changes introduced in the February 21, 2023 preview update.

Windows 11 Release version

• Support Page: KB5023698

Updates and improvements:

• The update implements the third-phase of DCOM (Distributed Component Object Model) hardening. See this support article for more information.
• This update addresses an issue that affects a computer account and Active Directory. When you reuse an existing computer account to join an Active Directory domain, joining fails.
• Security issues.

Windows 11 version 22H2

• Support Page: KB5023706

Updates and improvements:

• The update implements the third-phase of DCOM (Distributed Component Object Model) hardening. See this support article for more information.
• This update addresses an issue that affects a computer account and Active Directory. When you reuse an existing computer account to join an Active Directory domain, joining fails.
• Security issues.
• And all changes introduced in the February 28, 2023 preview update. Check out our Moments 2 update article for the details.

Other security updates

2023-03 Cumulative Update for Windows 10 Version 1507 for x86-based Systems (KB5023713)

2023-03 Cumulative Update for Windows Server 2016 and Windows 10 Version 1607 (KB5023697)

2023-03 Cumulative Update for Windows Server 2019 and Windows 10 Version 1809 (KB5023702)

2023-03 Security Only Quality Update for Windows Server 2008 (KB5023754)

2023-03 Security Monthly Quality Rollup for Windows Server 2008 (KB5023755)

2023-03 Security Only Quality Update for Windows Embedded Standard 7 and Windows Server 2008 R2 (KB5023759)

2023-03 Security Monthly Quality Rollup for Windows Embedded Standard 7 and Windows Server 2008 R2 (KB5023769)

2023-03 Security Only Quality Update for Windows Embedded 8 Standard and Windows Server 2012 (KB5023752)

2023-03 Security Monthly Quality Rollup for Windows Embedded 8 Standard and Windows Server 2012 (KB5023756)

2023-03 Security Only Quality Update for Windows Server 2012 R2 (KB5023764)

2023-03 Security Monthly Quality Rollup for Windows Server 2012 R2 (KB5023765)

2023-03 Cumulative security Hotpatch for Azure Stack HCI, version 21H2 and Windows Server 2022 Datacenter: Azure Edition for x64-based Systems (KB5023786)

2023-03 Cumulative Update for Microsoft server operating system, version 22H2 for x64-based Systems (KB5023705)

Known Issues


Windows 10 versions 21H2 and 22H2

• (Old) Custom installations may not receive the new Microsoft Edge web browser, while the old version may be removed.
  • Workaround described on the support page.

Windows 11 version 22H2

• (New) Some Windows devices with third-party user interface customizations may not start up after installing this update or future updates.
  • Microsoft recommends uninstalling the third-party UI customization applications before installing this update, or updating them, if updates are available. Check out our support article for additional information on the issue.
• (Old) Updates released on February 14, 2023 or later may not be offered from some WSUS servers to Windows 11 version 22H2.
  • A support page is available on Tech Community that offers a mitigation of the issue.
• (Old) Provisioning packages may not work as expected. Windows may only be configured partially and the " Out Of Box Experience might not finish or might restart unexpectedly".
  • Provisioning the Windows device before upgrading to Windows 11 version 22H2 fixes the issue.
• (Old) Copying large files (multiple gigabytes) may take longer than expected.
  • Use the commands robocopy \\someserver\someshare c:\somefolder somefile.img /J or xcopy \\someserver\someshare c:\somefolder /J until fixed.

Security advisories and updates

• ADV 990001 -- Latest Servicing Stack Updates

Non-security updates


Microsoft Office Updates

You find Office update information here.

How to download and install the February 2023 security updates




Home and non-managed devices with Windows receive updates automatically via Windows Update by default. It may take hours and sometimes even longer before updates are offered on some devices. Some administrators may want to expedite the installation of security updates, and this is possible by running manual checks for updates.

Do the following to run a manual check for updates:

1. Select Start, type Windows Update and load the Windows Update item that is displayed.
2. Select check for updates to run a manual check for updates.

Direct update downloads


Below are resource pages with direct download links, if you prefer to download the updates to install them manually.

Windows 10 Version 21H2

• KB5023696 -- 2023-03 Cumulative Update for Windows 10 Version 21H2

Windows 10 version 22H2

• KB5023696 -- 2023-03 Cumulative Update for Windows 10 Version 21H2

Windows 11 Release version

• KB5023698 -- 2023-03 Cumulative Update for Windows 11

Windows 11 version 22H2

• KB5023706 -- 2023-03 Cumulative Update for Windows 11 version 22H2

Additional resources

• March 2023 Security Updates release notes
• List of software updates for Microsoft products
• List of the latest Windows Updates and Services Packs
• Security Updates Guide
• Microsoft Update Catalog site
• Our in-depth Windows update guide
• How to install optional updates on Windows 10
• Windows 11 Update History
• Windows 10 Update History

Thank you for being a Ghacks reader. The post Microsoft Windows Security Updates March 2023: What you need to know before installation appeared first on gHacks Technology News.

read more...

 

Microsoft February 2023 Security Updates

February 2023 Security Updates

Updates this Month

This release consists of security updates for the following products, features and roles.

• .NET and Visual Studio
• .NET Framework
• 3D Builder
• Azure App Service
• Azure Data Box Gateway
• Azure DevOps
• Azure Machine Learning
• HoloLens
• Internet Storage Name Service
• Microsoft Defender for Endpoint
• Microsoft Defender for IoT
• Microsoft Dynamics
• Microsoft Edge (Chromium-based)
• Microsoft Exchange Server
• Microsoft Graphics Component
• Microsoft Office
• Microsoft Office OneNote
• Microsoft Office Publisher
• Microsoft Office SharePoint
• Microsoft Office Word
• Microsoft PostScript Printer Driver
• Microsoft WDAC OLE DB provider for SQL
• Microsoft Windows Codecs Library
• Power BI
• SQL Server
• Visual Studio
• Windows Active Directory
• Windows ALPC
• Windows Common Log File System Driver
• Windows Cryptographic Services
• Windows Distributed File System (DFS)
• Windows Fax and Scan Service
• Windows HTTP.sys
• Windows Installer
• Windows iSCSI
• Windows Kerberos
• Windows MSHTML Platform
• Windows ODBC Driver
• Windows Protected EAP (PEAP)
• Windows SChannel
• Windows Win32K

Please note the following information regarding the security updates:
Security Update Guide Blog Posts

[table][tr]Date Blog Post [/tr] [tr][td]January 6, 2023[/td] [td]Publishing CBL-Mariner CVEs on the Security Update Guide CVRF API[/td] [/tr] [tr][td]December 29, 2022[/td] [td]Security Update Guide Improvement – Representing Hotpatch Updates[/td] [/tr] [tr][td]August 9, 2022[/td] [td]Security Update Guide Notification System News: Create your profile now[/td] [/tr] [tr][td]January 11, 2022[/td] [td]Coming Soon: New Security Update Guide Notification System[/td] [/tr] [tr][td]February 9, 2021[/td] [td]Continuing to Listen: Good News about the Security Update Guide API[/td] [/tr] [tr][td]January 13, 2021[/td] [td]Security Update Guide Supports CVEs Assigned by Industry Partners[/td] [/tr] [tr][td]December 8, 2020[/td] [td]Security Update Guide: Let’s keep the conversation going[/td] [/tr] [tr][td]November 9, 2020[/td] [td]Vulnerability Descriptions in the New Version of the Security Update Guide[/td] [/tr] [/table]
Relevant Information

• The new Hotpatching feature is now generally available. Please see Hotpatching feature for Windows Server Azure Edition virtual machines (VMs) for more information.
• Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog. For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
• Microsoft is improving Windows Release Notes. For more information, please see What's next for Windows release notes.
• A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
• In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
• Customers running Windows 7, Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.

FAQs, Mitigations, and Workarounds

The following CVEs have FAQs, Mitigations, or Workarounds. You can see these in more detail from the Vulnerabilities tab by selecting FAQs, Mitigations and Workarounds columns in the Edit Columns panel.

• CVE-2019-15126
• CVE-2023-21528
• CVE-2023-21529
• CVE-2023-21553
• CVE-2023-21564
• CVE-2023-21566
• CVE-2023-21567
• CVE-2023-21568
• CVE-2023-21570
• CVE-2023-21571
• CVE-2023-21572
• CVE-2023-21573
• CVE-2023-21684
• CVE-2023-21685
• CVE-2023-21686
• CVE-2023-21687
• CVE-2023-21688
• CVE-2023-21689
• CVE-2023-21690
• CVE-2023-21691
• CVE-2023-21692
• CVE-2023-21693
• CVE-2023-21694
• CVE-2023-21695
• CVE-2023-21697
• CVE-2023-21699
• CVE-2023-21700
• CVE-2023-21703
• CVE-2023-21704
• CVE-2023-21705
• CVE-2023-21706
• CVE-2023-21707
• CVE-2023-21710
• CVE-2023-21713
• CVE-2023-21714
• CVE-2023-21715
• CVE-2023-21716
• CVE-2023-21717
• CVE-2023-21718
• CVE-2023-21720
• CVE-2023-21721
• CVE-2023-21722
• CVE-2023-21777
• CVE-2023-21778
• CVE-2023-21794
• CVE-2023-21797
• CVE-2023-21798
• CVE-2023-21799
• CVE-2023-21800
• CVE-2023-21801
• CVE-2023-21802
• CVE-2023-21803
• CVE-2023-21804
• CVE-2023-21805
• CVE-2023-21806
• CVE-2023-21807
• CVE-2023-21808
• CVE-2023-21809
• CVE-2023-21812
• CVE-2023-21815
• CVE-2023-21817
• CVE-2023-21820
• CVE-2023-21822
• CVE-2023-21823
• CVE-2023-23374
• CVE-2023-23376
• CVE-2023-23377
• CVE-2023-23378
• CVE-2023-23379
• CVE-2023-23381
• CVE-2023-23382
• CVE-2023-23390

Known Issues

You can see these in more detail from the Deployments tab by selecting Known Issues column in the Edit Columns panel.
For more information about Windows Known Issues, please see Windows message center (links to currently-supported versions of Windows are in the left pane).
[table][tr]KB Article Applies To [/tr] [tr][td]5022083[/td] [td]Change in how WPF-based applications render XPS documents[/td] [/tr] [tr][td]5022834[/td] [td]Windows 10, version 20H2, Windows 10, version 21H2, Windows 10, version 22H2[/td] [/tr] [tr][td]5022840[/td] [td]Windows 10, version 1809, Windows Server 2019[/td] [/tr] [tr][td]5022845[/td] [td]Windows 11 version 22H2[/td] [/tr] [tr][td]5022872[/td] [td]Windows Server 2008 R2 (Monthly Rollup)[/td] [/tr] [tr][td]5022874[/td] [td]Windows Server 2008 R2 (Security-only update)[/td] [/tr] [tr][td]5022890[/td] [td]Windows Server 2008 (Monthly Rollup)[/td] [/tr] [tr][td]5022893[/td] [td]Windows Server 2008 (Security-only update)[/td] [/tr] [tr][td]5022894[/td] [td]Windows Server 2012 R2 (Security-only update)[/td] [/tr] [tr][td]5022895[/td] [td]Windows Server 2012 (Security-only update)[/td] [/tr] [tr][td]5022899[/td] [td]Windows Server 2012 R2 (Monthly Rollup)[/td] [/tr] [tr][td]5022903[/td] [td]Windows Server 2012 (Monthly Rollup)[/td] [/tr] [/table]

Released: Feb 14, 2023

 

Microsoft January 2023 Security Updates

January 2023 Security Updates
Updates this Month


This release consists of security updates for the following products, features and roles.

• .NET Core
• 3D Builder
• Azure Service Fabric Container
• Microsoft Bluetooth Driver
• Microsoft Exchange Server
• Microsoft Graphics Component
• Microsoft Local Security Authority Server (lsasrv)
• Microsoft Message Queuing
• Microsoft Office
• Microsoft Office SharePoint
• Microsoft Office Visio
• Microsoft WDAC OLE DB provider for SQL
• Visual Studio Code
• Windows ALPC
• Windows Ancillary Function Driver for WinSock
• Windows Authentication Methods
• Windows Backup Engine
• Windows Bind Filter Driver
• Windows BitLocker
• Windows Boot Manager
• Windows Credential Manager
• Windows Cryptographic Services
• Windows DWM Core Library
• Windows Error Reporting
• Windows Event Tracing
• Windows IKE Extension
• Windows Installer
• Windows Internet Key Exchange (IKE) Protocol
• Windows iSCSI
• Windows Kernel
• Windows Layer 2 Tunneling Protocol
• Windows LDAP - Lightweight Directory Access Protocol
• Windows Local Security Authority (LSA)
• Windows Local Session Manager (LSM)
• Windows Malicious Software Removal Tool
• Windows Management Instrumentation
• Windows MSCryptDImportKey
• Windows NTLM
• Windows ODBC Driver
• Windows Overlay Filter
• Windows Point-to-Point Tunneling Protocol
• Windows Print Spooler Components
• Windows Remote Access Service L2TP Driver
• Windows RPC API
• Windows Secure Socket Tunneling Protocol (SSTP)
• Windows Smart Card
• Windows Task Scheduler
• Windows Virtual Registry Provider
• Windows Workstation Service

Please note the following information regarding the security updates:


Security Update Guide Blog Posts
Date Blog Post
January 6, 2023 Publishing CBL-Mariner CVEs on the Security Update Guide CVRF API
December 29, 2022 Security Update Guide Improvement – Representing Hotpatch Updates
August 9, 2022 Security Update Guide Notification System News: Create your profile now
January 11, 2022 Coming Soon: New Security Update Guide Notification System
February 9, 2021 Continuing to Listen: Good News about the Security Update Guide API
January 13, 2021 Security Update Guide Supports CVEs Assigned by Industry Partners
December 8, 2020 Security Update Guide: Let’s keep the conversation going
November 9, 2020 Vulnerability Descriptions in the New Version of the Security Update Guide
Relevant Information

• The new Hotpatching feature is now generally available. Please see Hotpatching feature for Windows Server Azure Edition virtual machines (VMs) for more information.
• Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog. For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
• Microsoft is improving Windows Release Notes. For more information, please see What's next for Windows release notes.
• A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
• In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
• Customers running Windows 7, Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.

FAQs, Mitigations, and Workarounds
The following CVEs have FAQs, Mitigations, or Workarounds. You can see these in more detail from the Vulnerabilities tab by selecting FAQs, Mitigations and Workarounds columns in the Edit Columns panel.

• CVE-2023-21524
• CVE-2023-21525
• CVE-2023-21531
• CVE-2023-21532
• CVE-2023-21535
• CVE-2023-21536
• CVE-2023-21537
• CVE-2023-21539
• CVE-2023-21540
• CVE-2023-21541
• CVE-2023-21542
• CVE-2023-21543
• CVE-2023-21546
• CVE-2023-21548
• CVE-2023-21549
• CVE-2023-21550
• CVE-2023-21551
• CVE-2023-21552
• CVE-2023-21555
• CVE-2023-21556
• CVE-2023-21557
• CVE-2023-21558
• CVE-2023-21559
• CVE-2023-21560
• CVE-2023-21561
• CVE-2023-21563
• CVE-2023-21674
• CVE-2023-21675
• CVE-2023-21676
• CVE-2023-21678
• CVE-2023-21679
• CVE-2023-21680
• CVE-2023-21681
• CVE-2023-21682
• CVE-2023-21724
• CVE-2023-21725
• CVE-2023-21726
• CVE-2023-21730
• CVE-2023-21732
• CVE-2023-21733
• CVE-2023-21734
• CVE-2023-21735
• CVE-2023-21736
• CVE-2023-21737
• CVE-2023-21738
• CVE-2023-21739
• CVE-2023-21741
• CVE-2023-21742
• CVE-2023-21743
• CVE-2023-21744
• CVE-2023-21745
• CVE-2023-21746
• CVE-2023-21747
• CVE-2023-21748
• CVE-2023-21749
• CVE-2023-21750
• CVE-2023-21752
• CVE-2023-21753
• CVE-2023-21754
• CVE-2023-21755
• CVE-2023-21759
• CVE-2023-21760
• CVE-2023-21761
• CVE-2023-21762
• CVE-2023-21763
• CVE-2023-21764
• CVE-2023-21765
• CVE-2023-21766
• CVE-2023-21767
• CVE-2023-21768
• CVE-2023-21771
• CVE-2023-21772
• CVE-2023-21773
• CVE-2023-21774
• CVE-2023-21776
• CVE-2023-21779
• CVE-2023-21780
• CVE-2023-21781
• CVE-2023-21782
• CVE-2023-21783
• CVE-2023-21784
• CVE-2023-21785
• CVE-2023-21786
• CVE-2023-21787
• CVE-2023-21788
• CVE-2023-21789
• CVE-2023-21790
• CVE-2023-21791
• CVE-2023-21792
• CVE-2023-21793

Known Issues
You can see these in more detail from the Deployments tab by selecting Known Issues column in the Edit Columns panel.


For more information about Windows Known Issues, please see Windows message center (links to currently-supported versions of Windows are in the left pane).


KB Article Applies To
5022143 Microsoft Exchange Server 2016
5022188 Microsoft Exchange Server 2013
5022193 Microsoft Exchange Server 2019
5022286 Windows 10, version 1809, Windows Server 2019
5022303 Windows 11 version 22H2
5022338 Windows 7, Windows Server 2008 R2 (Monthly Rollup)
5022339 Windows 7, Windows Server 2008 R2 (Security-only update)
5022340 Windows Server 2008 (Monthly Rollup)
5022343 Windows Server 2012 (Security-only update)
5022346 Windows 8.1, Windows Server 2012 R2 (Security-only update)
5022348 Windows Server 2012 (Monthly Rollup)
5022352 Windows 8.1, Windows Server 2012 R2 (Monthly Rollup)
5022353 Windows Server 2008 (Security-only update)
Released: Jan 10, 2023


January 2023 Security Updates - Release Notes - Security Update Guide - Microsoft

 

microsoft January 2023 Security Updates

January 2023 Security Updates

Updates this Month

This release consists of security updates for the following products, features and roles.

• .NET Core
  
• 3D Builder
  
• Azure Service Fabric Container
  
• Microsoft Bluetooth Driver
  
• Microsoft Exchange Server
  
• Microsoft Graphics Component
  
• Microsoft Local Security Authority Server (lsasrv)
  
• Microsoft Message Queuing
  
• Microsoft Office
  
• Microsoft Office SharePoint
  
• Microsoft Office Visio
  
• Microsoft WDAC OLE DB provider for SQL
  
• Visual Studio Code
  
• Windows ALPC
  
• Windows Ancillary Function Driver for WinSock
  
• Windows Authentication Methods
  
• Windows Backup Engine
  
• Windows Bind Filter Driver
  
• Windows BitLocker
  
• Windows Boot Manager
  
• Windows Credential Manager
  
• Windows Cryptographic Services
  
• Windows DWM Core Library
  
• Windows Error Reporting
  
• Windows Event Tracing
  
• Windows IKE Extension
  
• Windows Installer
  
• Windows Internet Key Exchange (IKE) Protocol
  
• Windows iSCSI
  
• Windows Kernel
  
• Windows Layer 2 Tunneling Protocol
  
• Windows LDAP - Lightweight Directory Access Protocol
  
• Windows Local Security Authority (LSA)
  
• Windows Local Session Manager (LSM)
  
• Windows Malicious Software Removal Tool
  
• Windows Management Instrumentation
  
• Windows MSCryptDImportKey
  
• Windows NTLM
  
• Windows ODBC Driver
  
• Windows Overlay Filter
  
• Windows Point-to-Point Tunneling Protocol
  
• Windows Print Spooler Components
  
• Windows Remote Access Service L2TP Driver
  
• Windows RPC API
  
• Windows Secure Socket Tunneling Protocol (SSTP)
  
• Windows Smart Card
  
• Windows Task Scheduler
  
• Windows Virtual Registry Provider
  
• Windows Workstation Service
  

Please note the following information regarding the security updates:

Security Update Guide Blog Posts

[table][tr]DateBlog Post[/tr][tr][td]January 6, 2023[/td][td]Publishing CBL-Mariner CVEs on the Security Update Guide CVRF API[/td][/tr][tr][td]December 29, 2022[/td][td]Security Update Guide Improvement – Representing Hotpatch Updates[/td][/tr][tr][td]August 9, 2022[/td][td]Security Update Guide Notification System News: Create your profile now[/td][/tr][tr][td]January 11, 2022[/td][td]Coming Soon: New Security Update Guide Notification System[/td][/tr][tr][td]February 9, 2021[/td][td]Continuing to Listen: Good News about the Security Update Guide API[/td][/tr][tr][td]January 13, 2021[/td][td]Security Update Guide Supports CVEs Assigned by Industry Partners[/td][/tr][tr][td]December 8, 2020[/td][td]Security Update Guide: Let’s keep the conversation going[/td][/tr][tr][td]November 9, 2020[/td][td]Vulnerability Descriptions in the New Version of the Security Update Guide[/td][/tr][/table]
Relevant Information

• The new Hotpatching feature is now generally available. Please see Hotpatching feature for Windows Server Azure Edition virtual machines (VMs) for more information.
  
• Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog. For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
  
• Microsoft is improving Windows Release Notes. For more information, please see What's next for Windows release notes.
  
• A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
  
• In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
  
• Customers running Windows 7, Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.
  

FAQs, Mitigations, and Workarounds

The following CVEs have FAQs, Mitigations, or Workarounds. You can see these in more detail from the Vulnerabilities tab by selecting FAQs, Mitigations and Workarounds columns in the Edit Columns panel.

• CVE-2023-21524
  
• CVE-2023-21525
  
• CVE-2023-21531
  
• CVE-2023-21532
  
• CVE-2023-21535
  
• CVE-2023-21536
  
• CVE-2023-21537
  
• CVE-2023-21539
  
• CVE-2023-21540
  
• CVE-2023-21541
  
• CVE-2023-21542
  
• CVE-2023-21543
  
• CVE-2023-21546
  
• CVE-2023-21548
  
• CVE-2023-21549
  
• CVE-2023-21550
  
• CVE-2023-21551
  
• CVE-2023-21552
  
• CVE-2023-21555
  
• CVE-2023-21556
  
• CVE-2023-21557
  
• CVE-2023-21558
  
• CVE-2023-21559
  
• CVE-2023-21560
  
• CVE-2023-21561
  
• CVE-2023-21563
  
• CVE-2023-21674
  
• CVE-2023-21675
  
• CVE-2023-21676
  
• CVE-2023-21678
  
• CVE-2023-21679
  
• CVE-2023-21680
  
• CVE-2023-21681
  
• CVE-2023-21682
  
• CVE-2023-21724
  
• CVE-2023-21725
  
• CVE-2023-21726
  
• CVE-2023-21730
  
• CVE-2023-21732
  
• CVE-2023-21733
  
• CVE-2023-21734
  
• CVE-2023-21735
  
• CVE-2023-21736
  
• CVE-2023-21737
  
• CVE-2023-21738
  
• CVE-2023-21739
  
• CVE-2023-21741
  
• CVE-2023-21742
  
• CVE-2023-21743
  
• CVE-2023-21744
  
• CVE-2023-21745
  
• CVE-2023-21746
  
• CVE-2023-21747
  
• CVE-2023-21748
  
• CVE-2023-21749
  
• CVE-2023-21750
  
• CVE-2023-21752
  
• CVE-2023-21753
  
• CVE-2023-21754
  
• CVE-2023-21755
  
• CVE-2023-21759
  
• CVE-2023-21760
  
• CVE-2023-21761
  
• CVE-2023-21762
  
• CVE-2023-21763
  
• CVE-2023-21764
  
• CVE-2023-21765
  
• CVE-2023-21766
  
• CVE-2023-21767
  
• CVE-2023-21768
  
• CVE-2023-21771
  
• CVE-2023-21772
  
• CVE-2023-21773
  
• CVE-2023-21774
  
• CVE-2023-21776
  
• CVE-2023-21779
  
• CVE-2023-21780
  
• CVE-2023-21781
  
• CVE-2023-21782
  
• CVE-2023-21783
  
• CVE-2023-21784
  
• CVE-2023-21785
  
• CVE-2023-21786
  
• CVE-2023-21787
  
• CVE-2023-21788
  
• CVE-2023-21789
  
• CVE-2023-21790
  
• CVE-2023-21791
  
• CVE-2023-21792
  
• CVE-2023-21793
  

Known Issues

You can see these in more detail from the Deployments tab by selecting Known Issues column in the Edit Columns panel.

For more information about Windows Known Issues, please see Windows message center (links to currently-supported versions of Windows are in the left pane).

[table][tr]KB ArticleApplies To[/tr][tr][td]5022143[/td][td]Microsoft Exchange Server 2016[/td][/tr][tr][td]5022188[/td][td]Microsoft Exchange Server 2013[/td][/tr][tr][td]5022193[/td][td]Microsoft Exchange Server 2019[/td][/tr][tr][td]5022286[/td][td]Windows 10, version 1809, Windows Server 2019[/td][/tr][tr][td]5022303[/td][td]Windows 11 version 22H2[/td][/tr][tr][td]5022338[/td][td]Windows 7, Windows Server 2008 R2 (Monthly Rollup)[/td][/tr][tr][td]5022339[/td][td]Windows 7, Windows Server 2008 R2 (Security-only update)[/td][/tr][tr][td]5022340[/td][td]Windows Server 2008 (Monthly Rollup)[/td][/tr][tr][td]5022343[/td][td]Windows Server 2012 (Security-only update)[/td][/tr][tr][td]5022346[/td][td]Windows 8.1, Windows Server 2012 R2 (Security-only update)[/td][/tr][tr][td]5022348[/td][td]Windows Server 2012 (Monthly Rollup)[/td][/tr][tr][td]5022352[/td][td]Windows 8.1, Windows Server 2012 R2 (Monthly Rollup)[/td][/tr][tr][td]5022353[/td][td]Windows Server 2008 (Security-only update)[/td][/tr][/table]
Released: Jan 10, 2023

January 2023 Security Updates - Release Notes - Security Update Guide - Microsoft