Windows 10: The Windows December 2023 security updates fix a 0-day vulnerability

Microsoft released security updates for all supported Windows operating systems and other company products on the December 2023 Patch Day. The company fixed 36 unique Microsoft product vulnerabilities and six non Microsoft product vulnerabilities on the last Patch Day of the year 2023.

It is a smaller Patch Day that fixes three critical security issues in all supported Windows client and server products. The update fixes one publicly disclosed 0-day vulnerability. Listed as CVE-2023-20588, it affects devices with AMD processors only.

Our overview is designed to be a resource for system administrators and home users alike. It includes information about all major security updates that Microsoft released. You find links to support pages and resources, the list of known issues, direct download links and more listed below.

Check out the November 2023 Security update overview here.

Microsoft Windows Security Updates: November 2023


Here is a link to an Excel spreadsheet that lists information about the released security updates on the December 2023 Microsoft Patch Day. Follow this link to download an archive file that contains the spreadsheet: Microsoft Windows security updates December 2023

Executive Summary

• Windows 11 version 21H2 is no longer supported. Upgrades to Windows 11 version 22H2 are available.
• Windows Copilot is now available on Windows 10 devices. Microsoft's March 2023 announced change to app pinning and app defaults is now in effect. It applies to Microsoft apps and third-party apps, according to the company.
• Windows clients with issues are: Windows 10 version 1809, Windows 10 version 21H2 and 22H2, Windows 11 version 21H2, 22H2 and 23H2
• Windows Server clients: Windows Server 2008 and 2008 R2, Windows Server 2019

Each supported version of Windows and their critical vulnerabilities are listed below.

• Windows 10 version 22H2: 15 vulnerabilities, 3 critical and 12 important.
  • Internet Connection Sharing (ICS) Remote Code Execution Vulnerability -- CVE-2023-35630
  • Windows MSHTML Platform Remote Code Execution Vulnerability -- CVE-2023-35628
  • Internet Connection Sharing (ICS) Remote Code Execution Vulnerability -- CVE-2023-35641
• Windows 11 version 22H2: 17 vulnerabilities, 3 critical and 14 important
  • same as Windows 10 version 22H2
• Windows 11 version 23H2: 18 vulnerabilities, 3 critical and 15 important
  • same as Windows 10 version 22H2

Windows Server products

• Windows Server 2008 R2 (extended support only): 15 vulnerabilities: 3 critical and 12 important
  • Internet Connection Sharing (ICS) Remote Code Execution Vulnerability -- CVE-2023-35630
  • Windows MSHTML Platform Remote Code Execution Vulnerability -- CVE-2023-35628
  • Internet Connection Sharing (ICS) Remote Code Execution Vulnerability -- CVE-2023-35641
• Windows Server 2012 R2 (extended support only): 61 vulnerabilities: 11 critical and 50 important
  • Not published (yet)
• Windows Server 2016: 17 vulnerabilities: 3 critical and 14 important
  • same as Windows Server 2008 R2
• Windows Server 2019: 19 vulnerabilities: 3 critical and 16 important
  • same as Windows Server 2008 R2
• Windows Server 2022: 18 vulnerabilities: 3 critical and 15 important.
  • same as Windows Server 2008 R2

Windows Security Updates


Windows 10 version 22H2

• Support Page: KB5033372

Updates and improvements:

• Security updates.
• Includes all non-security changes of the November 30, 2023 preview update for the operating system.

Windows 11 version 22H2 and 23H2

• Support Page: KB5033375

Updates and improvements:

• This update makes miscellaneous [unspecified] security improvements to internal OS functionality.
• Includes all non-security updates of the December 2023 Preview Update, including:
  • Support for multiple displays when using Copilot in Windows (even though issues on multi-monitor systems is still listed as a known issue).
  • Alt-Tab supports Copilot in Windows now.
  • Windows Spotlight will become the default background on Windows to replace the inbox Windows image.
  • Account-related notifications will display in Settings > Home after the update.

Security updates

2023-12 Cumulative Update for Windows 10 Version 1507 (KB5033379)

2023-12 Cumulative Update for Windows 10 Version 1607 (KB5033373)

2023-12 Cumulative Update for Windows 10 Version 1809 (KB5033371)

2023-12 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5033118)

2023-12 Cumulative Update for Windows 10 Version 22H2 and Windows 10 Version 21H2 (KB5033372)

2023-12 Cumulative Update for Windows 11 (KB5033369)

2023-12 Servicing Stack Update for Windows Server 2008 (KB5033466)

Windows Server

2023-12 Cumulative Security Update for Internet Explorer Windows Server 2012 R2, Windows Server 2012, Windows Embedded Standard 7, Windows Server 2008 R2, and Windows Server 2008 (KB5033376)

2023-12 Security Only Quality Update for Windows Embedded Standard 7 and Windows Server 2008 R2 (KB5033424)

2023-12 Security Monthly Quality Rollup for Windows Embedded Standard 7 and Windows Server 2008 R2 (KB5033433)

2023-12 Security Monthly Quality Rollup for Windows Server 2008 (KB5033422)

2023-12 Security Only Quality Update for Windows Server 2008 (KB5033427)

2023-12 Security Monthly Quality Rollup for Windows Server 2012 R2 (KB5033420)

2023-12 Security Monthly Quality Rollup for Windows Server 2012 (KB5033429)

2023-12 Cumulative security Hotpatch for Azure Stack HCI, version 21H2 and Windows Server 2022 Datacenter: Azure Edition for x64-based Systems (KB5033464)

Non-Security updates

None listed

Known Issues


Windows 10 version 22H2

Description: Desktop icons may be moved around unexpectedly between monitors when using Copilot on more than one monitor. Users may also experience "other alignment issues" according to Microsoft.

Workaround: none. Microsoft may disable Copilot on multimonitor devices.

Description: Copilot in Windows is not supported if the taskbar is located vertically on the right or left side of the screen.

Workaround: align the taskbar horizontally, either at the top or bottom of the screen.

(OLD) Description: Using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the "Require Device Encryption" setting for some devices in your environment.

Workaround: this is a reporting issue only according to Microsoft. Microsoft suggests to set the "Enforce drive encryption type on operating system drives" or the "Enforce drive encryption on fixed drives" policies to not configured as a workaround.

Windows 11 version 22H2 and 23H2

Description: Microsoft Narrator may not start when installing Windows 11 from physical media or disk images.

Workaround: Microsoft is working on a resolution.

(OLD) Description: Users who use multiple monitors on their Windows devices may notice that desktop icons move around unexpectedly. They may, for instance, move between monitors.

Workaround: Microsoft "may" have disabled Windows Copilot on multi-monitor devices until a solution is found.

(OLD) Description: The color font format COLRv1 does not render properly. It is used to display emoji with a 3D-like appearance.

Workaround: none at the time. Microsoft is working on a solution.

(OLD) Description: Using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the "Require Device Encryption" setting for some devices in your environment.

Workaround: this is a reporting issue only according to Microsoft. Microsoft suggests to set the "Enforce drive encryption type on operating system drives" or the "Enforce drive encryption on fixed drives" policies to not configured as a workaround.

Security advisories and updates

• ADV 990001 -- Latest Servicing Stack Updates

Microsoft Office Updates

You find Office update information here.

How to download and install the December 2023 security updates




Security updates roll out to all non-managed Windows devices automatically by default. This process may take a while to reach all devices. Administrators may download the updates as soon as they are released, either via Windows Update or by downloading the updates manually.

Tip: create a backup before you install updates

To update using Windows Update, use the following guide:

1. Select Start, type Windows Update and load the Windows Update item that is displayed.
2. Select check for updates to run a manual check for updates.

Managed systems receive updates when system administrators allow them to be distributed to managed devices.

Direct update downloads


Below are resource pages with direct download links, if you prefer to download the updates to install them manually.

Windows 10 version 22H2

• KB5033372 -- 2023-12 Cumulative Update for Windows 10 Version 21H2

Windows 11 version 22H2

• KB5033375 -- 2023-12 Cumulative Update for Windows 11 version 22H2

Windows 11 version 23H2

• KB5033375 -- 2023-12 Cumulative Update for Windows 11 version 23H2

Additional resources

• December 2023 Security Updates release notes
• List of software updates for Microsoft products
• List of the latest Windows Updates and Services Packs
• Security Updates Guide
• Microsoft Update Catalog site
• Our in-depth Windows update guide
• How to install optional updates on Windows 10
• Windows 11 Update History
• Windows 10 Update History

Thank you for being a Ghacks reader. The post The Windows December 2023 security updates fix a 0-day vulnerability appeared first on gHacks Technology News.

read more...

 

WPA2 Vulnerability Found

A small update with regards to the Microsoft fix. The fix itself is sufficient to solve the issue on Windows, even if your WiFi device has no driver update, with one caveat:

Does this security update fully address these vulnerabilities on Microsoft Platforms, or do I need to perform any additional steps to be fully protected?
The provided security updates address the reported vulnerabilities; however, when affected Windows based systems enter a connected standby mode in low power situations, the vulnerable functionality may be offloaded to installed Wi-Fi hardware. To fully address potential vulnerabilities, you are also encouraged to contact your Wi-Fi hardware vendor to obtain updated device drivers. For a listing of affected vendors with links to their documentation, review the ICASI Multi-Vendor Vulnerability Disclosure statement here: ICASI integrates into FIRST PSIRT SIG bolstering the incident response and security team industry

Source: Security Update Guide - Microsoft Security Response Center

 

Microsoft March 2023 Security Updates

March 2023 Security Updates Updates this Month This release consists of security updates for the following products, features and roles. Azure Client Server Run-time Subsystem (CSRSS) Internet Control Message Protocol (ICMP) Microsoft Bluetooth Driver Microsoft Dynamics Microsoft Edge (Chromium-based) Microsoft Graphics Component Microsoft Office Excel Microsoft Office Outlook Microsoft Office SharePoint Microsoft OneDrive Microsoft PostScript Printer Driver Microsoft Printer Drivers Microsoft Windows Codecs Library Office for Android Remote Access Service Point-to-Point Tunneling Protocol Role: DNS Server Role: Windows Hyper-V Service Fabric Visual Studio Windows Accounts Control Windows Bluetooth Service Windows Central Resource Manager Windows Cryptographic Services Windows Defender Windows HTTP Protocol Stack Windows HTTP.sys Windows Internet Key Exchange (IKE) Protocol Windows Kernel Windows Partition Management Driver Windows Point-to-Point Protocol over Ethernet (PPPoE) Windows Remote Procedure Call Windows Remote Procedure Call Runtime Windows Resilient File System (ReFS) Windows Secure Channel Windows SmartScreen Windows TPM Windows Win32K Please note the following information regarding the security updates: Security Update Guide Blog Posts Date Blog Post January 6, 2023 Publishing CBL-Mariner CVEs on the Security Update Guide CVRF API December 29, 2022 Security Update Guide Improvement – Representing Hotpatch Updates August 9, 2022 Security Update Guide Notification System News: Create your profile now January 11, 2022 Coming Soon: New Security Update Guide Notification System February 9, 2021 Continuing to Listen: Good News about the Security Update Guide API January 13, 2021 Security Update Guide Supports CVEs Assigned by Industry Partners December 8, 2020 Security Update Guide: Let’s keep the conversation going November 9, 2020 Vulnerability Descriptions in the New Version of the Security Update Guide Relevant Information The new Hotpatching feature is now generally available. Please see Hotpatching feature for Windows Server Azure Edition virtual machines (VMs) for more information. Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog. For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet. Microsoft is improving Windows Release Notes. For more information, please see What's next for Windows release notes. A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update. In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features. Customers running Windows 7, Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information. FAQs, Mitigations, and Workarounds The following CVEs have FAQs, Mitigations, or Workarounds. You can see these in more detail from the Vulnerabilities tab by selecting FAQs, Mitigations and Workarounds columns in the Edit Columns panel. CVE-2023-1017 CVE-2023-1018 CVE-2023-1213 CVE-2023-1214 CVE-2023-1215 CVE-2023-1216 CVE-2023-1217 CVE-2023-1218 CVE-2023-1219 CVE-2023-1220 CVE-2023-1221 CVE-2023-1222 CVE-2023-1223 CVE-2023-1224 CVE-2023-1228 CVE-2023-1229 CVE-2023-1230 CVE-2023-1231 CVE-2023-1232 CVE-2023-1233 CVE-2023-1234 CVE-2023-1235 CVE-2023-1236 CVE-2023-21708 CVE-2023-22490 CVE-2023-22743 CVE-2023-23383 CVE-2023-23385 CVE-2023-23388 CVE-2023-23389 CVE-2023-23391 CVE-2023-23392 CVE-2023-23393 CVE-2023-23394 CVE-2023-23395 CVE-2023-23396 CVE-2023-23397 CVE-2023-23398 CVE-2023-23399 CVE-2023-23400 CVE-2023-23401 CVE-2023-23402 CVE-2023-23403 CVE-2023-23404 CVE-2023-23405 CVE-2023-23406 CVE-2023-23407 CVE-2023-23408 CVE-2023-23409 CVE-2023-23410 CVE-2023-23411 CVE-2023-23412 CVE-2023-23413 CVE-2023-23414 CVE-2023-23415 CVE-2023-23416 CVE-2023-23417 CVE-2023-23418 CVE-2023-23419 CVE-2023-23420 CVE-2023-23421 CVE-2023-23422 CVE-2023-23423 CVE-2023-23618 CVE-2023-23946 CVE-2023-24856 CVE-2023-24857 CVE-2023-24858 CVE-2023-24861 CVE-2023-24863 CVE-2023-24864 CVE-2023-24865 CVE-2023-24866 CVE-2023-24867 CVE-2023-24868 CVE-2023-24869 CVE-2023-24870 CVE-2023-24871 CVE-2023-24872 CVE-2023-24876 CVE-2023-24879 CVE-2023-24880 CVE-2023-24882 CVE-2023-24890 CVE-2023-24891 CVE-2023-24892 CVE-2023-24906 CVE-2023-24908 CVE-2023-24909 CVE-2023-24910 CVE-2023-24911 CVE-2023-24913 CVE-2023-24919 CVE-2023-24920 CVE-2023-24921 CVE-2023-24922 CVE-2023-24923 CVE-2023-24930 Known Issues You can see these in more detail from the Deployments tab by selecting Known Issues column in the Edit Columns panel. For more information about Windows Known Issues, please see Windows message center (links to currently-supported versions of Windows are in the left pane). KB Article Applies To 5002355 SharePoint Server Subscription Edition 5002396 Windows 10, version 20H2, Windows 10, version 21H2, Windows 10, version 22H2 5023702 Windows 10, version 1809, Windows Server 2019 5023705 Windows Server 2022 5023706 Windows 11 version 22H2 5023752 Windows Server 2012 (Security-only update) 5023754 Windows Server 2008 (Security-only update) 5023755 Windows Server 2008 (Monthly Rollup) 5023756 Windows Server 2012 (Monthly Rollup) 5023759 Windows Server 2008 R2 (Security-only update) 5023769 Windows Server 2008 R2 (Monthly Rollup) Released: Mar 14, 2023 https://msrc.microsoft.com/update-gu...eNote/2023-Mar

 

Cumulative updates for Windows 10 and Windows 11 - December 2023

The following release notes coincide with Cumulative updates for all the supported versions of Windows, released on December 12th, 2023.

Windows 11

Windows 11, version 23H2
December 12, 2023—KB5033375 (OS Builds 22621.2861 and 22631.2861) - Microsoft Support

Windows 10

December 12, 2023—KB5033372 (OS Builds 19044.3803 and 19045.3803) - Microsoft Support

11/16/23
IMPORTANT Because of minimal operations during the Western holidays and the upcoming new year, there won’t be a non-security preview release for the month of December 2023. There will be a monthly security release for December 2023. Normal monthly servicing for both security and non-security preview releases will resume in January 2024.