Windows 10: The Windows Security Updates of July 2024 are now available

Microsoft has released security updates for its Windows operating system and other company products. The security updates are available already and should be installed automatically on most home Windows PCs.

Our monthly overview provides Windows home users and system administrators with the information they need to make educated decisions. These may help administrators determine when to install these updates.

The overview offers information on all main security updates, lists known issues, has links to resource pages and direct update downloads, and much more.

Tip: you can check out the June 2024 overview here.

Microsoft Windows Security Updates: July 2024


You may download the following Excel spreadsheet to get a list of released updates. Click on the following link to download the archive to the local device: Windows Security Updates Master List July 2024

Executive Summary

• Microsoft released a total of 139 security updates for various Microsoft products.
• Windows clients with issues are: Windows 10 version 1809, 21H2 and 22H2, Windows 11 version 21H2 and 22H2.
• Windows Server clients with issues: Windows Server 2008 and Windows Server 2022, Windows Server 2019, and Windows Server 2022

Product overview


Each supported version of Windows and their critical vulnerabilities are listed below.

• Windows 10 version 22H2: 70 vulnerabilities, 1 critical, 67 important, and 2 moderate
  • Windows Imaging Component Remote Code Execution Vulnerability New -- CVE-2024-38060
• Windows 11 version 22H2: 73 vulnerabilities, 1 critical, 70 important, and 2 moderate
  • Same as Windows 10 version 22H2.
• Windows 11 version 23H2: 73 vulnerabilities, 1 critical, 70 important, and 2 moderate
  • Same as Windows 10 version 22H2.

Windows Server products

• Windows Server 2008 R2 (extended support only): 35 vulnerabilities: 3 critical, 32 important
  • Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability New -- CVE-2024-38074
  • Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability New -- CVE-2024-38077
  • Windows Imaging Component Remote Code Execution Vulnerability New -- CVE-2024-38060
• Windows Server 2012 R2 (extended support only): vulnerabilities: critical and important
  • unknown
• Windows Server 2016: 77 vulnerabilities: 4 critical, 72 important, and 1 moderate
  • Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability New -- CVE-2024-38074
  • Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability New -- CVE-2024-38076
  • Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability New -- CVE-2024-38077
  • Windows Imaging Component Remote Code Execution Vulnerability New -- CVE-2024-38060
• Windows Server 2019: 79 vulnerabilities: 4 critical, 74 important, and 1 moderate
  • Same as Windows Server 2016
• Windows Server 2022: 82 vulnerabilities: 4 critical, 77 important, and 1 moderate
  • Same as Windows Server 2016

Windows Security Updates


Windows 10 version 22H2

• Support Page: KB5040427

Updates and improvements:

• New: Copilot app is now pinned to the taskbar. It is a web wrapper to be precise. Can be uninstalled like any other app
• Fix: fixes the right-click "open with" issue that occurred when right-clicking files.
• Fixes security issues.

Windows 11 version 22H2 and 23H2

• Support Page: KB5040442

Updates and improvements:

• New: Game Pass recommendations (ads) in Settings > Home when using a Microsoft account and if games are played on the PC.
• New: Copilot app is now pinned to the taskbar. It is a web wrapper to be precise. Can be uninstalled like any other app
• New: restores the "show desktop" icon at the rightmost location of the taskbar.
• New: File Explorer now supports creating 7-Zip and TAR archives next to ZIP.
• New: adds support for Emoji 15.1
• New: copy files from the Windows Share window using the new copy button.
• New: account manager rollout in the Start menu (ads)

Windows Security updates

2024-07 Dynamic Cumulative Update for Windows 10 Version 22H2 and Windows 10 Version 21H2 (KB5040427)

2024-07 Dynamic Cumulative Update for Windows 11 (KB5040431)

2024-07 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5040437)

2024-07 Cumulative Update for Windows 10 Version 1507 (KB5040448)

Server

2024-07 Cumulative Security Update for Internet Explorer for Windows Server 2012 R2, Windows Server 2012, Windows Embedded Standard 7, Windows Server 2008 R2, and Windows Server 2008 (KB5040426)

2024-07 Security Only Quality Update for Windows Server 2008 (KB5040490)

2024-07 Security Monthly Quality Rollup for Windows Server 2008 (KB5040499)

2024-07 Security Only Quality Update for Windows Embedded Standard 7 and Windows Server 2008 R2 (KB5040498)

2024-07 Security Monthly Quality Rollup for Windows Embedded Standard 7 and Windows Server 2008 R2 (KB5040497)

2024-07 Security Monthly Quality Rollup for Windows Server 2012 R2 (KB5040456)

2024-07 Security Monthly Quality Rollup for Windows Server 2012 (KB5040485)

2024-07 Cumulative Update for Windows Server 2019 and Windows 10 Version 1809 (KB5040430)

2024-07 Cumulative Update for Windows Server 2016 and Windows 10 Version 1607 (KB5040434)

.NET

2024-07 Security and Quality Rollup for .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Server 2012 for x64 (KB5039880)

2024-07 Security and Quality Rollup for .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Server 2012 R2 for x64 (KB5039881)

2024-07 Security and Quality Rollup for .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Embedded Standard 7, Windows Server 2008 R2, and Windows Server 2008 (KB5039882)

2024-07 Security and Quality Rollup for .NET Framework 4.8 for Windows Server 2012 for x64 (KB5039888)

2024-07 Security and Quality Rollup for .NET Framework 4.8 for Windows Server 2012 R2 for x64 (KB5039890)

2024-07 Security and Quality Rollup for .NET Framework 4.8 for Windows Embedded Standard 7 and Windows Server 2008 R2 (KB5039891)

2024-07 Security and Quality Rollup for .NET Framework 3.5 for Windows Server 2012 for x64 (KB5039908)

2024-07 Security and Quality Rollup for .NET Framework 3.5.1 for Windows Embedded Standard 7 and Windows Server 2008 R2 (KB5039909)

2024-07 Security and Quality Rollup for .NET Framework 3.5 for Windows Server 2012 R2 for x64 (KB5039910)

2024-07 Security and Quality Rollup for .NET Framework 2.0, 3.0 for Windows Server 2008 (KB5039911)

2024-07 Security Only Update for .NET Framework 2.0, 3.0 for Windows Server 2008 (KB5040118)

2024-07 Security Only Update for .NET Framework 3.5.1 for Windows Embedded Standard 7 and Windows Server 2008 R2 (KB5040119)

2024-07 Security Only Update for .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Embedded Standard 7, Windows Server 2008 R2, and Windows Server 2008 (KB5040122)

2024-07 Security Only Update for .NET Framework 4.8 for Windows Embedded Standard 7 and Windows Server 2008 R2 (KB5040123)

2024-07 Security and Quality Rollup for .NET Framework 3.5 SP1 for Windows Server 2008 (KB5040673)

2024-07 Security Only Update for .NET Framework 3.5 SP1 for Windows Server 2008 (KB5040680)

2024-07 Security and Quality Rollup for .NET Framework 3.5.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded Standard 7 and Windows Server 2008 R2 (KB5041021)

2024-07 Security and Quality Rollup for .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 for x64 (KB5041022)

2024-07 Security and Quality Rollup for .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 R2 for x64 (KB5041023)

2024-07 Security and Quality Rollup for .NET Framework 2.0, 3.0, 3.5 SP1, 4.6.2 for Windows Server 2008 (KB5041024)

2024-07 Security Only Update for .NET Framework 3.5.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded Standard 7 and Windows Server 2008 R2 (KB5041026)

2024-07 Security Only Update for .NET Framework 2.0, 3.0, 3.5 SP1, 4.6.2 for Windows Server 2008 (KB5041027)

2024-07 Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows Server 2019 and Windows 10 Version 1809 (KB5039879)

2024-07 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 22H2 and Windows 10 Version 21H2 (KB5039884)

2024-07 Cumulative Update for .NET Framework 4.8 for Windows Server 2016 and Windows 10 Version 1607 (KB5039885)

2024-07 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows Server 2019 and Windows 10 Version 1809 (KB5039886)

2024-07 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 11 (KB5039887)

2024-07 Cumulative Update for .NET Framework 3.5 and 4.8 for Microsoft server operating system, version 22H2 for x64 (KB5039889)

2024-07 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Microsoft server operating system, version 23H2 for x64 (KB5039892)

2024-07 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows 10 Version 22H2 and Windows 10 Version 21H2 (KB5039893)

2024-07 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows 11 (KB5039895)

2024-07 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows 11 (KB5039906)

2024-07 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Microsoft server operating system, version 22H2 for x64 (KB5039907)

2024-07 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Microsoft server operating system version 21H2 for x64 (KB5041016)

2024-07 Cumulative Update for .NET Framework 3.5, 4.7.2 and 4.8 for Windows Server 2019 and Windows 10 Version 1809 (KB5041017)

2024-07 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 21H2 (KB5041018)

2024-07 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 22H2 (KB5041019)

2024-07 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 11 (KB5041020)

2024-07 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Microsoft server operating system, version 22H2 for x64 (KB5041025)

Servicing Stack Updates

2024-07 Servicing Stack Update for Windows Server 2016 and Windows 10 Version 1607 (KB5040562)

2024-07 Servicing Stack Update for Windows 10 Version 1507 (KB5040566)

2024-07 Servicing Stack Update for Windows Server 2012 R2 for x64-based Systems (KB5040569)

2024-07 Servicing Stack Update for Windows Server 2012 for x64-based Systems (KB5040570)

Non-Security updates

2024-07 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows 10 Version 22H2, Windows 10 Version 21H2, Windows 10 Version 21H1, and Windows 10 Version 20H2 (KB5041170)
Known Issues


Windows 10 version 22H2

(OLD) Description: After installation of the update, users may be unable to change their account profile picture.

Workaround: none available at the time.

(OLD) Description: Devices that use Microsoft Connected Cache (MCC) may download updates or apps from the public Internet instead, if they use DHCP Option 235 and have a recent update installed.

Workaround: Configure Microsoft Connected Cache endpoint in DOCacheHost policy as indicated in Cache hostname. Additionally, DOCacheHostSourcehas to be set to 1or removed as indicated in Cache hostname source. By default, the DOCacheHost and DOCacheHostSource policies have no value.

(Fixed) Description: Desktop icons may be moved around unexpectedly between monitors when using Copilot on more than one monitor. Users may also experience "other alignment issues" according to Microsoft.

Workaround: none. Microsoft may disable Copilot on multimonitor devices.

(Fixed) Description: Copilot in Windows is not supported if the taskbar is located vertically on the right or left side of the screen.

Workaround: align the taskbar horizontally, either at the top or bottom of the screen.

Windows 11 version 22H2 and 23H2

(NEW) Description: Enterprise customers may face issues when upgrading from a Windows Pro license to a valid Windows Enterprise subscription.

Workaround: none, Microsoft is investigating.

(Fixed) Description: After installation of the update, users may be unable to change their account profile picture.

Workaround: none available at the time.

Security advisories and updates

• ADV 990001 -- Latest Servicing Stack Updates

Microsoft Office Updates

You find Office update information here.

How to download and install the July 2024 security updates


Most non-managed systems are updated automatically through Windows Updates. Managed systems get updated at the administrators discretion.

Home users who want to install the updates immediately after release may run a manual check for updates to do so. This is done in the following ways both on Windows 10 and on Windows 11 PCs:

1. Select Start, type Windows Update and load the Windows Update item that is displayed.
2. Select check for updates to run a manual check for updates.

Windows Updates returns the new cumulative update and often other updates that Microsoft released on the same day. These should be downloaded immediately on most systems.

Direct update downloads


Below are resource pages with direct download links, if you prefer to download the updates to install them manually.

Windows 10 version 22H2

• KB5040427 -- 2024-7 Cumulative Update for Windows 10 Version 21H2

Windows 11 version 22H2

• KB5040442 -- 2024-7 Cumulative Update for Windows 11 version 22H2

Windows 11 version 23H2

• KB5040442 -- 2024-7 Cumulative Update for Windows 11 version 23H2

Additional resources

• July 2024 Security Updates release notes
• List of software updates for Microsoft products
• List of the latest Windows Updates and Services Packs
• Security Updates Guide
• Microsoft Update Catalog site
• Our in-depth Windows update guide
• How to install optional updates on Windows 10
• Windows 11 Update History
• Windows 10 Update History

Thank you for being a Ghacks reader. The post The Windows Security Updates of July 2024 are now available appeared first on gHacks Technology News.

read more...

 

Windows 10 Update

Well just noticed a pretty large one pop up coming in at 914MB, seems it makes some pretty serous updates.

KB3172985
https://support.microsoft.com/en-us/kb/3172985

This security update includes improvements and fixes in the functionality of Windows 10 Version 1511 and Windows Server 2016 Technical Preview 4. It also resolves the following vulnerabilities in Windows:

• 3175677 MS16-094: Security update for secure boot: July 12, 2016
• 3174060 MS16-093: Security update for Adobe Flash Player: July 12, 2016
• 3171910 MS16-092: Security update for Windows Kernel: July 12, 2016
• 3170048 MS16-091: Security update for .Net Framework: July 12, 2016
• 3171481 MS16-090: Security update for Kernel Mode Drivers: July 12, 2016
• 3170050 MS16-089: Security update for Windows secure kernel mode: July 12, 2016
• 3170005 MS16-087: Security update for the Microsoft Print Spooler: July 12, 2016
• 3169999 MS16-085: Cumulative security update for Microsoft Edge: July 12, 2016
• 3169991 MS16-084: Cumulative security update for Internet Explorer: July 12, 2016

 

Microsoft January 2024 Security Updates

January 2024 Security Updates This release consists of the following 48 Microsoft CVEs: Tag CVE Base Score CVSS Vector Exploitability FAQs? Workarounds? Mitigations? SQL Server CVE-2024-0056 .NET and Visual Studio CVE-2024-0057 Windows Scripting CVE-2024-20652 Windows Common Log File System Driver CVE-2024-20653 Windows ODBC Driver CVE-2024-20654 Windows Online Certificate Status Protocol (OCSP) SnapIn CVE-2024-20655 Visual Studio CVE-2024-20656 Windows Group Policy CVE-2024-20657 Microsoft Virtual Hard Drive CVE-2024-20658 Windows Message Queuing CVE-2024-20660 Windows Message Queuing CVE-2024-20661 Windows Online Certificate Status Protocol (OCSP) SnapIn CVE-2024-20662 Windows Message Queuing CVE-2024-20663 Windows Message Queuing CVE-2024-20664 Windows BitLocker CVE-2024-20666 .NET Core & Visual Studio CVE-2024-20672 Windows Authentication Methods CVE-2024-20674 Azure Storage Mover CVE-2024-20676 Microsoft Office CVE-2024-20677 Windows Message Queuing CVE-2024-20680 Windows Subsystem for Linux CVE-2024-20681 Windows Cryptographic Services CVE-2024-20682 Windows Win32K CVE-2024-20683 Windows Win32 Kernel Subsystem CVE-2024-20686 Windows AllJoyn API CVE-2024-20687 Windows Nearby Sharing CVE-2024-20690 Windows Themes CVE-2024-20691 Windows Local Security Authority Subsystem Service (LSASS) CVE-2024-20692 Windows Collaborative Translation Framework CVE-2024-20694 Windows Libarchive CVE-2024-20696 Windows Libarchive CVE-2024-20697 Windows Kernel CVE-2024-20698 Windows Hyper-V CVE-2024-20699 Windows Hyper-V CVE-2024-20700 Unified Extensible Firmware Interface CVE-2024-21305 Microsoft Bluetooth Driver CVE-2024-21306 Remote Desktop Client CVE-2024-21307 Windows Kernel-Mode Drivers CVE-2024-21309 Windows Cloud Files Mini Filter Driver CVE-2024-21310 Windows Cryptographic Services CVE-2024-21311 .NET Framework CVE-2024-21312 Windows TCP/IP CVE-2024-21313 Windows Message Queuing CVE-2024-21314 Windows Server Key Distribution Service CVE-2024-21316 Microsoft Office SharePoint CVE-2024-21318 Microsoft Identity Services CVE-2024-21319 Windows Themes CVE-2024-21320 Microsoft Devices CVE-2024-21325 We are republishing 5 non-Microsoft CVEs: CNA Tag CVE FAQs? Workarounds? Mitigations? MITRE Corporation SQLite CVE-2022-35737 Chrome Microsoft Edge (Chromium-based) CVE-2024-0222 Chrome Microsoft Edge (Chromium-based) CVE-2024-0223 Chrome Microsoft Edge (Chromium-based) CVE-2024-0224 Chrome Microsoft Edge (Chromium-based) CVE-2024-0225 Security Update Guide Blog Posts Date Blog Post January 11, 2022 Coming Soon: New Security Update Guide Notification System February 9, 2021 Continuing to Listen: Good News about the Security Update Guide API January 13, 2021 Security Update Guide Supports CVEs Assigned by Industry Partners December 8, 2020 Security Update Guide: Let’s keep the conversation going November 9, 2020 Vulnerability Descriptions in the New Version of the Security Update Guide Relevant Resources

• The new Hotpatching feature is now generally available. Please see Hotpatching feature for Windows Server Azure Edition virtual machines (VMs) for more information.
• Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog. For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
• Microsoft is improving Windows Release Notes. For more information, please see What's next for Windows release notes.
• A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
• In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
• Customers running Windows 7, Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.

Known Issues You can see these in more detail from the Deployments tab by selecting Known Issues column in the Edit Columns panel. For more information about Windows Known Issues, please see Windows message center (links to currently-supported versions of Windows are in the left pane). KB Article Applies To nstalls KB Article Title 5034121 Windows 11, version 21H2 5034122 Windows 10, version 21H2, Windows 10, version 22H2 5034123 Windows 11, version 22H2, Windows 11, version 23H2 5034127 Windows 10, version 1809, Windows Server 2019 5034167 Windows Server 2008 R2 (Security-only update) 5034169 Windows Server 2008 R2 (Monthly Rollup) 5034173 Windows Server 2008 (Monthly Rollup) 5034176 Windows Server 2008 (Security-only update) Released: Jan 9, 2024 January 2024 Security Updates - Release Notes - Security Update Guide - Microsoft

 

Microsoft february 2024 Security Updates

February 2024 Security Updates This release consists of the following 73 Microsoft CVEs: Tag CVE Base Score CVSS Vector Exploitability FAQs? Workarounds? Mitigations? Azure DevOps CVE-2024-20667 Microsoft Office CVE-2024-20673 Azure Stack CVE-2024-20679 Windows Hyper-V CVE-2024-20684 Skype for Business CVE-2024-20695 Trusted Compute Base CVE-2024-21304 Microsoft Defender for Endpoint CVE-2024-21315 Microsoft Dynamics CVE-2024-21327 Microsoft Dynamics CVE-2024-21328 Azure Connected Machine Agent CVE-2024-21329 Windows Kernel CVE-2024-21338 Windows USB Serial Driver CVE-2024-21339 Windows Kernel CVE-2024-21340 Windows Kernel CVE-2024-21341 Role: DNS Server CVE-2024-21342 Windows Internet Connection Sharing (ICS) CVE-2024-21343 Windows Internet Connection Sharing (ICS) CVE-2024-21344 Windows Kernel CVE-2024-21345 Windows Win32K - ICOMP CVE-2024-21346 SQL Server CVE-2024-21347 Windows Internet Connection Sharing (ICS) CVE-2024-21348 Microsoft ActiveX CVE-2024-21349 Microsoft WDAC OLE DB provider for SQL CVE-2024-21350 Windows SmartScreen CVE-2024-21351 Microsoft WDAC OLE DB provider for SQL CVE-2024-21352 Microsoft WDAC ODBC Driver CVE-2024-21353 Windows Message Queuing CVE-2024-21354 Windows Message Queuing CVE-2024-21355 Windows LDAP - Lightweight Directory Access Protocol CVE-2024-21356 Windows Internet Connection Sharing (ICS) CVE-2024-21357 Microsoft WDAC OLE DB provider for SQL CVE-2024-21358 Microsoft WDAC OLE DB provider for SQL CVE-2024-21359 Microsoft WDAC OLE DB provider for SQL CVE-2024-21360 Microsoft WDAC OLE DB provider for SQL CVE-2024-21361 Windows Kernel CVE-2024-21362 Windows Message Queuing CVE-2024-21363 Azure Site Recovery CVE-2024-21364 Microsoft WDAC OLE DB provider for SQL CVE-2024-21365 Microsoft WDAC OLE DB provider for SQL CVE-2024-21366 Microsoft WDAC OLE DB provider for SQL CVE-2024-21367 Microsoft WDAC OLE DB provider for SQL CVE-2024-21368 Microsoft WDAC OLE DB provider for SQL CVE-2024-21369 Microsoft WDAC OLE DB provider for SQL CVE-2024-21370 Windows Kernel CVE-2024-21371 Windows OLE CVE-2024-21372 Microsoft Teams for Android CVE-2024-21374 Microsoft WDAC OLE DB provider for SQL CVE-2024-21375 Microsoft Azure Kubernetes Service CVE-2024-21376 Microsoft Windows DNS CVE-2024-21377 Microsoft Office Outlook CVE-2024-21378 Microsoft Office Word CVE-2024-21379 Microsoft Dynamics CVE-2024-21380 Azure Active Directory CVE-2024-21381 Microsoft Office OneNote CVE-2024-21384 .NET CVE-2024-21386 Microsoft Dynamics CVE-2024-21389 Microsoft WDAC OLE DB provider for SQL CVE-2024-21391 Microsoft Dynamics CVE-2024-21393 Microsoft Dynamics CVE-2024-21394 Microsoft Dynamics CVE-2024-21395 Microsoft Dynamics CVE-2024-21396 Azure File Sync CVE-2024-21397 Microsoft Edge (Chromium-based) CVE-2024-21399 Azure Active Directory CVE-2024-21401 Microsoft Office Outlook CVE-2024-21402 Microsoft Azure Kubernetes Service CVE-2024-21403 .NET CVE-2024-21404 Windows Message Queuing CVE-2024-21405 Microsoft Windows CVE-2024-21406 Microsoft Exchange Server CVE-2024-21410 Internet Shortcut Files CVE-2024-21412 Microsoft Office CVE-2024-21413 Microsoft WDAC OLE DB provider for SQL CVE-2024-21420 We are republising 6 non-Microsoft CVEs: CNA Tag CVE FAQs? Workarounds? Mitigations? MITRE Role: DNS Server CVE-2023-50387 No No No Chrome Microsoft Edge (Chromium-based) CVE-2024-1059 Yes No No Chrome Microsoft Edge (Chromium-based) CVE-2024-1060 Yes No No Chrome Microsoft Edge (Chromium-based) CVE-2024-1077 Yes No No Chrome Microsoft Edge (Chromium-based) CVE-2024-1283 Yes No No Chrome Microsoft Edge (Chromium-based) CVE-2024-1284 Yes No No Security Update Guide Blog Posts Date Blog Post January 11, 2022 Coming Soon: New Security Update Guide Notification System February 9, 2021 Continuing to Listen: Good News about the Security Update Guide API January 13, 2021 Security Update Guide Supports CVEs Assigned by Industry Partners December 8, 2020 Security Update Guide: Let’s keep the conversation going November 9, 2020 Vulnerability Descriptions in the New Version of the Security Update Guide Relevant Resources

• The new Hotpatching feature is now generally available. Please see Hotpatching feature for Windows Server Azure Edition virtual machines (VMs) for more information.
• Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog. For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
• Microsoft is improving Windows Release Notes. For more information, please see What's next for Windows release notes.
• A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
• In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
• Customers running Windows 7, Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.

Known Issues You can see these in more detail from the Deployments tab by selecting Known Issues column in the Edit Columns panel. For more information about Windows Known Issues, please see Windows message center (links to currently-supported versions of Windows are in the left pane). KB Article Applies To 5034763 Windows 10, version 21H2, Windows 10, version 22H2 5034770 Windows Server 2022 5034795 Windows Server 2008 (Monthly Rollup) 5034833 Windows Server 2008 R2 (Security-only update) 5035606 Exchange Server 2019 Released: Feb 13, 2024 February 2024 Security Updates - Release Notes - Security Update Guide - Microsoft