Windows 10: Microsoft Windows Security Updates October 2020 overview

It is the second Tuesday of October 2020 and that means that it is Microsoft Patch Day. Microsoft released security updates for all supported versions of the company's Windows operating system as well as other company products such as Microsoft Edge and Microsoft Office.

Our overview of the October 2020 provides you with information on the released patches and links to Microsoft support pages and downloads. All Windows updates are cumulative in nature, and available as direct downloads, via Windows Updates, WSUS, and other update management systems.

The overview begins with an executive summary. The analysis that follows includes information about the distribution of vulnerabilities across different versions of Windows (client and server), as well as Microsoft's browsers, details on each of the updates, links to support pages, information about other updates and security advisories, direct download links and instructions, and a resource link list at the end.

You can check out the September 2020 Microsoft Patch Day overview here.

Microsoft Windows Security Updates October 2020


Download the following Excel spreadsheet if you are interested in a detailed spreadsheet listing the released security updates of October 2020. Just extract the zip archive after download and load it in a spreadsheet application such as Excel or LibreOffice Calc. Click here to download it: microsoft-windows-security-updates-october-2020

Executive Summary

• Security updates are available for all supported versions of Microsoft's Windows operating system (client and server).
• Microsoft released security updates for the following products besides Windows: Microsoft Office, Microsoft JET Database Engine, Visual Studio, Microsoft Exchange Server, Azure Functions and Sphere, PowerShellGet, Microsoft .Net Framework, Microsoft Dynamics, Adobe Flash Player, Microsoft Windows Codecs Library

Operating System Distribution

• Windows 7 (extended support only): 23 vulnerabilities: 2 critical and 21 important
  • CVE-2020-16923 | Microsoft Graphics Components Remote Code Execution Vulnerability
  • CVE-2020-16891 | Windows Hyper-V Remote Code Execution Vulnerability
• Windows 8.1: 19 vulnerabilities: 3 rated critical and 16 rated important
  • CVE-2020-16911 | GDI+ Remote Code Execution Vulnerability
  • CVE-2020-16923 | Microsoft Graphics Components Remote Code Execution Vulnerability
  • CVE-2020-16891 | Windows Hyper-V Remote Code Execution Vulnerability
• Windows 10 version 1803: 48 vulnerabilities: 7 critical and 41 important
  • CVE-2020-16967 | Windows Camera Codec Pack Remote Code Execution Vulnerability
  • CVE-2020-16923 | Microsoft Graphics Components Remote Code Execution Vulnerability
  • CVE-2020-16915 | Media Foundation Memory Corruption Vulnerability
  • CVE-2020-16968 | Windows Camera Codec Pack Remote Code Execution Vulnerability
  • CVE-2020-16911 | GDI+ Remote Code Execution Vulnerability
  • CVE-2020-16898 | Windows TCP/IP Remote Code Execution Vulnerability
  • CVE-2020-16891 | Windows Hyper-V Remote Code Execution Vulnerability
• Windows 10 version 1809: 48 vulnerabilities: 7 critical and 41 important
  • same as Windows 10 version 1803
• Windows 10 version 1903 and 1909: 49 vulnerabilities: 7 critical and 42 important
  • same as Windows 10 version 1803
• Windows 10 version 2004:
  • no information provided by Microsoft

Windows Server products

• Windows Server 2008 R2 (extended support only): 23 vulnerabilities: 2 critical and 21 important
  • CVE-2020-16923 | Microsoft Graphics Components Remote Code Execution Vulnerability
  • CVE-2020-16891 | Windows Hyper-V Remote Code Execution Vulnerability
• Windows Server 2012 R2: 20 vulnerabilities: 3 critical and 17 important.
  • CVE-2020-16923 | Microsoft Graphics Components Remote Code Execution Vulnerability
  • CVE-2020-16911 | GDI+ Remote Code Execution Vulnerability
  • CVE-2020-16891 | Windows Hyper-V Remote Code Execution Vulnerability
• Windows Server 2016: 38 vulnerabilities: 4 critical and 34 important.
  • CVE-2020-16915 | Media Foundation Memory Corruption Vulnerability
  • CVE-2020-16923 | Microsoft Graphics Components Remote Code Execution Vulnerability
  • CVE-2020-16911 | GDI+ Remote Code Execution Vulnerability
  • CVE-2020-16891 | Windows Hyper-V Remote Code Execution Vulnerability
• Windows Server 2019: 46 vulnerabilities: 5 critical and 41 are important
  • same as Windows Server 2016, plus
  • CVE-2020-16898 | Windows TCP/IP Remote Code Execution Vulnerability

Other Microsoft Products

• • no information provided

Windows Security Updates


Windows 7 SP1 and Windows Server 2008 R2

• Monthly Rollup: KB4580345
• Security Only: KB4580387

Fixes and improvements

• Security updates
• Fixed an issue in Graphics Device Interface (GDI) that could cause unexpected user interface experiences such as missing screen elements, screen flickering, or a trailing screen.
• Fixed daylight savings time for Fiji Islands.
• Fixed a Group Policy issue that could cause it to delete critical files if the policy "Delete local user profile" was enabled. (monthly-rollup only)
• Fixed an issue that created a Null port.

Windows 8.1 and Server 2012 R2

• Monthly Rollup: KB4580347
• Security Only: KB4580358

Fixes and improvements

• Security updates
• Fixed daylight savings time for Fiji Islands.
• Fixed a Group Policy issue that could cause it to delete critical files if the policy "Delete local user profile" was enabled. (monthly-rollup only)
• Fixed an issue that created a Null port. (monthly-rollup only)
• Internet Explorer 11 will show a notification that Flash support ends in December 2020.(monthly-rollup only)
• Administrators may disable JScript in security zones.(monthly-rollup only)
• Fixed an unnamed issue in Microsoft Edge's IE Mode that occurred when Configure enhanced hang detection for Internet Explorer mode was enabled.(monthly-rollup only)

Windows 10 version 1803

• Support page: KB4580330

Fixes and improvements

• Security updates
• Fixed daylight savings time for Fiji Islands.
• Administrators may disable JScript in security zones.
• Internet Explorer 11 will show a notification that Flash support ends in December 2020.
• Fixed an unnamed issue in Microsoft Edge's IE Mode that occurred when Configure enhanced hang detection for Internet Explorer mode was enabled.
• Fixed an issue that created a Null port.
• Fixed an issue with a possible elevation of privilege in win32k.
• Fixed a Group Policy issue that could cause it to delete critical files if the policy "Delete local user profile" was enabled.

Windows 10 version 1809

• Support page: KB4577668

Fixes and improvements

• Security updates
• Fixed an issue with a possible elevation of privilege in win32k.
• Fixed a Group Policy issue that could cause it to delete critical files if the policy "Delete local user profile" was enabled.
• Fixed an issue that created a Null port.
• Fixed an issue that caused apps that use Dynamic Data Exchange (DDE) to stop responding when closing the app.

Windows 10 version 1903 and 1909

• Support page: KB4577671

Fixes and improvements

• Security updates
• Fixed an issue with a possible elevation of privilege in win32k.
• Fixed a Group Policy issue that could cause it to delete critical files if the policy "Delete local user profile" was enabled.
• Fixed an issue that created a Null port.

Windows 10 version 2004

• Support page: KB4579311

Fixes and improvements

• Security updates
• Fixed an issue with a possible elevation of privilege in win32k.
• Fixed a Group Policy issue that could cause it to delete critical files if the policy "Delete local user profile" was enabled.
• Fixed an issue that created a Null port.

Other security updates

KB4580325 -- 2020-10 Security Update for Adobe Flash Player for Windows Server, version 2004, Windows 10 Version 2004, Windows Server, version 1909, Windows 10 Version 1909, Windows Server 2019 (1903), Windows 10 Version 1903, Windows 10 Version 1809, Windows 10 Version 1803, Windows Server 2016, Windows 10 Version 1709, Windows 10 Version 1703, Windows 10 Version 1607, Windows 8.1, Windows RT 8.1, Windows Server 2012 R2, Windows Embedded 8 Standard, and Windows Server 2012

KB4580353 -- 2020-10 Security Only Quality Update for Windows Embedded 8 Standard and Windows Server 2012

KB4580358 -- 2020-10 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2

KB4580378 -- 2020-10 Security Monthly Quality Rollup for Windows Server 2008

KB4580385 -- 2020-10 Security Only Quality Update for Windows Server 200

KB4580382 -- 2020-10 Security Monthly Quality Rollup for Windows Embedded 8 Standard and Windows Server 2012

KB4580327 -- 2020-10 Cumulative Update for Windows 10 Version 1507

KB4580370 -- 2020-10 Cumulative Update for Windows 10 Version 1703

KB4580328 -- 2020-10 Cumulative Update for Windows 10 Version 1709

KB4580346 -- 2020-10 Cumulative Update for Windows 10 Version 1607, and Windows Server 2016

.Net Framework

KB4565577 -- 2020-10 Security Only Update for .NET Framework 3.5 for Windows Embedded 8 Standard and Windows Server 2012

KB4565578 -- 2020-10 Security Only Update for .NET Framework 2.0, 3.0 for Windows Server 2008

KB4565579 -- 2020-10 Security Only Update for .NET Framework 3.5.1 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4565580 -- 2020-10 Security Only Update for .NET Framework 3.5 for Windows 8.1 and Windows Server 2012 R2

KB4565581 -- 2020-10 Security Only Update for .NET Framework 4.5.2 for Windows 8.1 and Windows Server 2012 R2

KB4565582 -- 2020-10 Security Only Update for .NET Framework 4.5.2 for Windows Embedded 8 Standard and Windows Server 2012

KB4565583 -- 2020-10 Security Only Update for .NET Framework 4.5.2 for Windows Embedded Standard 7, Windows 7, Windows Server 2008 R2, and Windows Server 2008

KB4565584 -- 2020-10 Security Only Update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Embedded 8 Standard and Windows Server 2012

KB4565585 -- 2020-10 Security Only Update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows 8.1 and Windows Server 2012 R2

KB4565586 -- 2020-10 Security Only Update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Embedded Standard 7, Windows 7, Windows Server 2008 R2, and Windows Server 2008

KB4565587 -- 2020-10 Security Only Update for .NET Framework 4.8 for Windows Embedded 8 Standard and Windows Server 2012

KB4565588 -- 2020-10 Security Only Update for .NET Framework 4.8 for Windows 8.1 and Windows Server 2012 R2

KB4565589 -- 2020-10 Security Only Update for .NET Framework 4.8 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4566466 -- 2020-10 Security Only Update for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4566467 -- 2020-10 Security Only Update for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded 8 Standard and Windows Server 2012

KB4566468 -- 2020-10 Security Only Update for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 8.1 and Windows Server 2012 R2

KB4566469 -- 2020-10 Security Only Update for .NET Framework 2.0, 3.0, 4.5.2, 4.6 for Windows Server 2008

KB4578950 -- 2020-10 Security and Quality Rollup for .NET Framework 3.5 for Windows Embedded 8 Standard and Windows Server 2012

KB4578951 -- 2020-10 Security and Quality Rollup for .NET Framework 2.0, 3.0 for Windows Server 2008

KB4578952 -- 2020-10 Security and Quality Rollup for .NET Framework 3.5.1 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4578953 -- 2020-10 Security and Quality Rollup for .NET Framework 3.5 for Windows 8.1 and Windows Server 2012 R2

KB4578954 -- 2020-10 Security and Quality Rollup for .NET Framework 4.5.2 for Windows Embedded 8 Standard and Windows Server 2012

KB4578955 -- 2020-10 Security and Quality Rollup for .NET Framework 4.5.2 for Windows Embedded Standard 7, Windows 7, Windows Server 2008 R2, and Windows Server 2008

KB4578956 -- 2020-10 Security and Quality Rollup for .NET Framework 4.5.2 for Windows 8.1 and Windows Server 2012 R2

KB4578961 -- 2020-10 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Embedded 8 Standard and Windows Server 2012

KB4578962 -- 2020-10 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows 8.1 and Windows Server 2012 R2

KB4578963 -- 2020-10 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Embedded Standard 7, Windows 7, Windows Server 2008 R2, and Windows Server 2008

KB4578975 -- 2020-10 Security and Quality Rollup for .NET Framework 4.8 for Windows Embedded 8 Standard and Windows Server 2012

KB4578976 -- 2020-10 Security and Quality Rollup for .NET Framework 4.8 for Windows 8.1 and Windows Server 2012 R2

KB4578977 -- 2020-10 Security and Quality Rollup for .NET Framework 4.8 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4578978 -- 2020-10 Security Only Update for .NET Framework 3.5 for Windows Embedded 8 Standard and Windows Server 2012

KB4578979 -- 2020-10 Security Only Update for .NET Framework 2.0, 3.0 for Windows Server 2008

KB4578980 -- 2020-10 Security Only Update for .NET Framework 3.5.1 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4578981 -- 2020-10 Security Only Update for .NET Framework 3.5 for Windows 8.1 and Windows Server 2012 R2

KB4578982 -- 2020-10 Security Only Update for .NET Framework 4.5.2 for Windows Embedded 8 Standard and Windows Server 2012

KB4578983 -- 2020-10 Security Only Update for .NET Framework 4.5.2 for Windows Embedded Standard 7, Windows 7, Windows Server 2008 R2, and Windows Server 2008

KB4578984 -- 2020-10 Security Only Update for .NET Framework 4.5.2 for Windows 8.1 and Windows Server 2012 R2

KB4578985 -- 2020-10 Security Only Update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Embedded 8 Standard and Windows Server 2012

KB4578986 -- 2020-10 Security Only Update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows 8.1 and Windows Server 2012 R2

KB4578987 -- 2020-10 Security Only Update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Embedded Standard 7, Windows 7, Windows Server 2008 R2, and Windows Server 2008

KB4578988 -- 2020-10 Security Only Update for .NET Framework 4.8 for Windows Embedded 8 Standard and Windows Server 2012

KB4578989 -- 2020-10 Security Only Update for .NET Framework 4.8 for Windows 8.1 and Windows Server 2012 R2

KB4578990 -- 2020-10 Security Only Update for .NET Framework 4.8 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4579977 -- 2020-10 Security and Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4579978 -- 2020-10 Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded 8 Standard and Windows Server 2012

KB4579979 -- 2020-10 Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 8.1 and Windows Server 2012 R2

KB4579980 -- 2020-10 Security and Quality Rollup for .NET Framework 2.0, 3.0, 4.5.2, 4.6 for Windows Server 2008

KB4580467 -- 2020-10 Security Only Update for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4580468 -- 2020-10 Security Only Update for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded 8 Standard and Windows Server 2012

KB4580469 -- 2020-10 Security Only Update for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 8.1 and Windows Server 2012 R2

KB4580470 -- 2020-10 Security Only Update for .NET Framework 2.0, 3.0, 4.5.2, 4.6 for Windows Server 2008

KB4578966 -- 2020-10 Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows Server 2019 and Windows 10 Version 1809

KB4578968 -- 2020-10 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows Server, version 2004, and Windows 10 Version 2004

KB4578969 -- 2020-10 Cumulative Update for .NET Framework 4.8 for Windows Server 2016 and Windows 10 Version 1607

KB4578970 -- 2020-10 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1703

KB4578971 -- 2020-10 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1709

KB4578972 -- 2020-10 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1803 and Windows Server 2016 (1803)

KB4578973 -- 2020-10 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows Server 2019 and Windows 10 Version 1809

KB4578974 -- 2020-10 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows Server, version 1909, Windows 10 Version 1909, Windows Server 2019 (1903), and Windows 10 Version 1903

KB4579976 -- 2020-10 Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows Server 2019 and Windows 10 Version 1809

Servicing Stack Updates

KB4580970 -- 2020-10 Servicing Stack Update for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4580398 -- 2020-10 Servicing Stack Update for Windows 10 Version 1803

KB4577667 -- 2020-10 Servicing Stack Update for Windows Server 2019 and Windows 10 Version 1809

KB4577670 -- 2020-10 Servicing Stack Update for Windows Server, version 1909, Windows 10 Version 1909, Windows Server 2019 (1903), and Windows 10 Version 1903

KB4580971 -- 2020-10 Servicing Stack Update for Windows Server 2008

Known Issues


Windows 7 SP1 and Server 2008 R2

• Updates are reverted if the system is not supported for ESU
  • Expected behavior.
• Rename operations may fail on cluster shared volumes
  • workaround is to perform the operating from a process that has elevated privileges, or from a node that does not have CSV ownership.

Windows 8.1 and Server 2012 R2

• Third-party driver installation may throw the error "Windows can’t verify the publisher of this driver software" and/or "No signature was present in the subject".
  • Occurs when an improperly formatted catalog file is identified during validation by Windows. Starting with this release, Windows requires the validity of DER encoded PKCS#7 content in catalog files. Microsoft suggests to contact the driver vendor or OEM vendor support to get the issue corrected.
• Rename operations may fail on cluster shared volumes
  • workaround is to perform the operating from a process that has elevated privileges, or from a node that does not have CSV ownership.

Windows 10 version 1803

• Third-party driver installation may throw the error "Windows can’t verify the publisher of this driver software" and/or "No signature was present in the subject".
  • Occurs when an improperly formatted catalog file is identified during validation by Windows. Starting with this release, Windows requires the validity of DER encoded PKCS#7 content in catalog files. Microsoft suggests to contact the driver vendor or OEM vendor support to get the issue corrected.

Windows 10 version 1809

• Third-party driver installation may throw the error "Windows can’t verify the publisher of this driver software" and/or "No signature was present in the subject".
  • Occurs when an improperly formatted catalog file is identified during validation by Windows. Starting with this release, Windows requires the validity of DER encoded PKCS#7 content in catalog files. Microsoft suggests to contact the driver vendor or OEM vendor support to get the issue corrected.
• Devices with "some" Asian language packs installed may receive the error "0x800f0982 - PSFX_E_MATCHING_COMPONENT_NOT_FOUND."
  • Microsoft suggests to uninstall and reinstall the language packs, to update Windows 10, or to reset the PC if this does not help.

Windows 10 version 1903 and 1909

• Third-party driver installation may throw the error "Windows can’t verify the publisher of this driver software" and/or "No signature was present in the subject".
  • Occurs when an improperly formatted catalog file is identified during validation by Windows. Starting with this release, Windows requires the validity of DER encoded PKCS#7 content in catalog files. Microsoft suggests to contact the driver vendor or OEM vendor support to get the issue corrected.
• Windows may display a compatibility dialog when trying to update to version 1903 or 1909 from a previous version. This is caused by Windows 10 Setup Dynamic Update being unable to download required packages.
  • Needs to enable HTTP access for the Windows 10 Setup Dynamic Update using the LOCAL SYSTEM account.

Windows 10 version 2004

• Third-party driver installation may throw the error "Windows can’t verify the publisher of this driver software" and/or "No signature was present in the subject".
  • Occurs when an improperly formatted catalog file is identified during validation by Windows. Starting with this release, Windows requires the validity of DER encoded PKCS#7 content in catalog files. Microsoft suggests to contact the driver vendor or OEM vendor support to get the issue corrected.
• Users who use the Microsoft Input Method Editor (IME) for Japanese or Chinese may experience issues such as being unable to enter text.
  • See this support article for guidance.

Security advisories and updates

Non-security related updates


KB4578623 -- 2020-10 Update for Windows 8.1, Windows Server 2012 R2, Windows Embedded 8 Standard, Windows Server 2012, Windows 7, Windows Server 2008 R2, and Windows Server 2008

Microsoft Office Updates


You find Office update information here.

How to download and install the October 2020 security updates




Windows Update is the main option to install updates on home Windows systems. It is an automated updating system that will download and install available updates automatically. Administrators may download updates manually as well from Microsoft.

System administrators may run a manual check for updates on Windows systems to find out if updates are available; this may be faster than waiting for Windows Update to pick up the new update automatically.

Here is how that is done:

1. Open the Start Menu of the Windows operating system, type Windows Update and select the result.
2. Select check for updates in the application that opens. Updates may be installed automatically when they are found or offered by Windows; this depends on the operating system and version that is used, and update settings.

Direct update downloads


Below are resource pages with direct download links, if you prefer to download the updates to install them manually.

Windows 7 and Server 2008 R2

• KB4580345 -- 2020-10 Security Monthly Quality Rollup for Windows 7
• KB4580387 -- 2020-10 Security Only Quality Update for Windows 7

Windows 8.1 and Windows Server 2012 R2

• KB4580347 -- 2020-10 Security Monthly Quality Rollup for Windows 8.1
• KB4580358 -- 2020-10 Security Only Quality Update for Windows 8.1

Windows 10 (version 1803)

• KB4580330 -- 2020-10 Cumulative Update for Windows 10 Version 1803

Windows 10 (version 1809)

• KB4577668 -- 2020-10 Cumulative Update for Windows 10 Version 1809

Windows 10 (version 1903)

• KB4577671 -- 2020-10 Cumulative Update for Windows 10 Version 1903

Windows 10 (version 1909)

• KB4577671 -- 2020-10 Cumulative Update for Windows 10 Version 1909

Windows 10 (version 2004)

• KB4579311 -- 2020-10 Cumulative Update for Windows 10 Version 2004

Additional resources

• October 2020 Security Updates release notes
• List of software updates for Microsoft products
• List of the latest Windows Updates and Services Packs
• Security Updates Guide
• Microsoft Update Catalog site
• Our in-depth Windows update guide
• How to install optional updates on Windows 10
• Windows 10 Update History
• Windows 8.1 Update History
• Windows 7 Update History

Thank you for being a Ghacks reader. The post Microsoft Windows Security Updates October 2020 overview appeared first on gHacks Technology News.

read more...

 

Microsoft Security Bulletin for October 2007

Microsoft's October security bulletin brings six security updates and re-released one. Click here to read the Microsoft Security Bulletin Summary, and eventually download the updates.

Source: Microsoft

 

Microsoft May 2020 Security Updates

Release Notes
May 2020 Security Updates
Release Date: May 12, 2020




The May 2020 security release consists of security updates for the following software:

• Microsoft Windows
• Microsoft Edge (EdgeHTML-based)
• Microsoft Edge (Chromium-based)
• ChakraCore
• Internet Explorer
• Microsoft Office and Microsoft Office Services and Web Apps
• Windows Defender
• Visual Studio
• Microsoft Dynamics
• .NET Framework
• .NET Core
• Power BI

Please note the following information regarding the security updates:

• For information regarding enabling Windows 10, version 1909 features, please see Windows 10, version 1909 delivery options. Note that Windows 10, versions 1903 and 1909 share a common core operating system with an identical set of system files. They will also share the same security update KBs.
• Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
• For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
• A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
• Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
• In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
• Customers running Windows 7, Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.

The following CVEs have FAQs with additional information and may include * further steps to take after installing the updates. Please note that this is not a complete list of CVEs for this release.

• CVE-2020-0901
• CVE-2020-0963
• CVE-2020-1072
• CVE-2020-1075
• CVE-2020-1103
• CVE-2020-1116
• CVE-2020-1141
• CVE-2020-1145
• CVE-2020-1173
• CVE-2020-1179

Known Issues


The following KBs contain information about known issues with the security updates. For a complete list of security update KBs, please see 20200512. For more information about Windows Known Issues, please see Windows message center (links to currently-supported versions of Windows are in the left pane).


KB Article Applies To
4551853 Windows 10 Version 1809, Windows Server 2019
4556813 Windows 10, version 1607, Windows Server 2016
4556836 Windows 7, Windows Server 2008 R2 (Monthly Rollup)
4556843 Windows 7, Windows Server 2008 R2 (Security-only update)
4556854 Windows Server 2008 Service Pack 2 (Security-only update)
4556860 Windows Server 2008 Service Pack 2 (Monthly Rollup)


https://portal.msrc.microsoft.com/en...etail/2020-May

 

Microsoft January 2020 Security Updates

Release Notes

January 2020 Security Updates

Release Date: January 14, 2020

The January security release consists of security updates for the following software:

• Microsoft Windows
• Internet Explorer
• Microsoft Office and Microsoft Office Services and Web Apps
• ASP.NET Core
• .NET Core
• .NET Framework
• OneDrive for Android
• Microsoft Dynamics

Please note the following information regarding the security updates:

• For information regarding enabling Windows 10, version 1909 features, please see
  
  Microsoft Update Catalog.
• For information on lifecycle and support dates for Windows 10 operating systems, please see
  
  Windows Lifecycle Facts Sheet.
• A list of the latest servicing stack updates for each operating system can be found in
  
  ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
• Starting in May 2019, Internet Explorer 11 is available on Windows Server 2012. This configuration is present only in the IE Cumulative package.
• Updates for Windows RT 8.1 and Microsoft Office RT software are only available via
  
  Windows Update.
• In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
• Note: Support for Windows 7, Windows Server 2008 R2, and Windows Server 2008 ends January 14, 2020. For more information please see
  
  Lifecycle FAQ-Extended Security Updates.

The following CVEs have FAQs with additional information and may include * further steps to take after installing the updates. Please note that this is not a complete list of CVEs for this release.

• CVE-2020-0601 *
• CVE-2020-0607
• CVE-2020-0608
• CVE-2020-0615
• CVE-2020-0622
• CVE-2020-0637
• CVE-2020-0639
• CVE-2020-0643
• CVE-2020-0647
• CVE-2020-0650
• CVE-2020-0651
• CVE-2020-0652
• CVE-2020-0653
• CVE-2020-0654 *

Known Issues

The f****ssues with the security updates. For a complete list of security update KBs, please see

2****ssues, please see Windows message center (links to currently-supported versions of Windows are in the left pane).

[table][tr][td]4534271[/td][td]Windows 10, version 1607, Windows Server 2016[/td][/tr][tr][td]4534273[/td][td]Windows 1****809[/td][/tr][tr][td]4534276[/td][td]Windows 10, version 1709[/td][/tr][tr][td]4534283[/td][td]Windows Server 2012 (Monthly Rollup)[/td][/tr][tr][td]4534288[/td][td]Windows Server 2012 (Security-only update)[/td][/tr][tr][td]4534293[/td][td]Windows 10, version 1803, Windows Server version 1803[/td][/tr][tr][td]4534297[/td][td]Windows 8.1, Windows Server 2012 R2 (Monthly Rollup)[/td][/tr][tr][td]4534306[/td][td]Windows 10[/td][/tr][tr][td]4534309[/td][td]Windows 8.1, Windows Server 2012 R2 (Security-only update[/td][/tr][/table]