Microsoft Security Update Summary (May 11, 2021)

[German]On May 11, 2021, Microsoft released security updates for Windows clients and servers, for Office, etc. – as well as for Microsoft Exchange – have been released. Below is a compact overview of these updates.


Advertising

A list of the updates can be found on this Microsoft page. Details about the update packages for Windows, Office, etc. are available in separate blog posts.

Notes on the updates

Windows 10 version 1903 and 1909 and 2004 and 20H2 share a common core and have an identical set of system files. Therefore, the same security updates are delivered for Windows 10 version 190x and Windows 10 2004/20H2. Information on how to enable the features of Windows 10 version 1909 as well as 20H2, which is done through an Enablement Package update, can be found in this Techcommunity post.

All Windows 10 updates are cumulative. The monthly Patchday update includes all security fixes for Windows 10 and all non-security fixes through Patchday. In addition to vulnerability security patches, the updates include security improvement measures. Last month, Microsoft began including Servicing Stack Updates (SSUs) in Latest Cumulative Updates (LCU). However, this currently only applies to the latest builds of Windows 10 (2004/20H2). A list of the current SSUs can be found at ADV990001 (although the list is not always up-to-date).

Windows 7 SP1 is no longer supported as of January 2020. Only customers with a 2nd year ESU license (or bypasses) will still receive updates. With the current ESU bypass lets install the update. Updates can also be downloaded from the Microsoft Update Catalog. Updates for Windows RT 8.1 and Microsoft Office RT are only available through Windows Update.

Fixed vulnerabilities

The May 2021 security updates cover 55 vulnerabilities (CVEs) in Microsoft products such as Microsoft Windows, .NET Core and Visual Studio, Internet Explorer (IE), Microsoft Office, SharePoint Server, open source software, Hyper-V, Skype for Business and Microsoft Lync, and Exchange Server. Of these vulnerabilities, 4 are rated critical and 50 are rated important in severity. According to Microsoft, three of these vulnerabilities are listed as public knowledge. A list of all security updates, including CVEs, can be found on the Zero Day Initiative blog (details are covered separately in blog posts).


Advertising

Critical Security Updates

Windows 10 for 32-bit Systems
Windows 10 for x64-based Systems
Windows 10 Version 1607 for 32-bit Systems
Windows 10 Version 1607 for x64-based Systems
Windows 10 Version 1803 for 32-bit Systems
Windows 10 Version 1803 for ARM64-based Systems
Windows 10 Version 1803 for x64-based Systems
Windows 10 Version 1809 for 32-bit Systems
Windows 10 Version 1809 for ARM64-based Systems
Windows 10 Version 1809 for x64-based Systems
Windows 10 Version 1909 for 32-bit Systems
Windows 10 Version 1909 for ARM64-based Systems
Windows 10 Version 1909 for x64-based Systems
Windows 10 Version 2004 for 32-bit Systems
Windows 10 Version 2004 for ARM64-based Systems
Windows 10 Version 2004 for x64-based Systems
Windows 10 Version 20H2 for 32-bit Systems
Windows 10 Version 20H2 for ARM64-based Systems
Windows 10 Version 20H2 for x64-based Systems
Windows 8.1 for 32-bit systems
Windows 8.1 for x64-based systems
Windows RT 8.1
Windows Server 2012
Windows Server 2012 (Server Core installation)
Windows Server 2012 R2
Windows Server 2012 R2 (Server Core installation)
Windows Server 2016
Windows Server 2016  (Server Core installation)
Windows Server 2019
Windows Server 2019  (Server Core installation)
Windows Server, version 1909 (Server Core installation)
Windows Server, version 2004 (Server Core installation)
Windows Server, version 20H2 (Server Core Installation)
Web Media Extensions
Internet Explorer 11

Important Security Updates

Microsoft 365 Apps for Enterprise for 32-bit Systems
Microsoft 365 Apps for Enterprise for 64-bit Systems
Microsoft Excel 2013 RT Service Pack 1
Microsoft Excel 2013 Service Pack 1 (32-bit editions)
Microsoft Excel 2013 Service Pack 1 (64-bit editions)
Microsoft Excel 2016 (32-bit edition)
Microsoft Excel 2016 (64-bit edition)
Microsoft Lync Server 2013 CU10
Microsoft Office 2013 RT Service Pack 1
Microsoft Office 2013 Service Pack 1 (32-bit editions)
Microsoft Office 2013 Service Pack 1 (64-bit editions)
Microsoft Office 2016 (32-bit edition)
Microsoft Office 2016 (64-bit edition)
Microsoft Office 2019 for 32-bit editions
Microsoft Office 2019 for 64-bit editions
Microsoft Office 2019 for Mac
Microsoft Office Online Server
Microsoft Office Web Apps Server 2013 Service Pack 1
Microsoft SharePoint Enterprise Server 2016
Microsoft SharePoint Foundation 2013 Service Pack 1
Microsoft SharePoint Server 2019
Microsoft Word 2013 RT Service Pack 1
Microsoft Word 2013 Service Pack 1 (32-bit editions)
Microsoft Word 2013 Service Pack 1 (64-bit editions)
Microsoft Word 2016 (32-bit edition)
Microsoft Word 2016 (64-bit edition)
Microsoft Exchange Server 2013 Cumulative Update 23
Microsoft Exchange Server 2016 Cumulative Update 19
Microsoft Exchange Server 2016 Cumulative Update 20
Microsoft Exchange Server 2019 Cumulative Update 8
Microsoft Exchange Server 2019 Cumulative Update 9
Microsoft Visual Studio 2019 version 16.4 (includes 16.0 – 16.3)
Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6)
Microsoft Visual Studio 2019 version 16.9 (includes 16.0 – 16.8)
Visual Studio 2019 for Mac version 8.9
Visual Studio Code
Visual Studio Code  Remote – Containers Extension
.NET 5.0
.NET Core 3.1
Skype for Business Server 2015 CU11
Skype for Business Server 2019 CU5
Microsoft Accessibility Insights for Web
Dynamics 365 for Finance and Operations
common_utils.py

Similar articles:
Microsoft Office Patchday (May 4, 2021)
Microsoft Security Update Summary (May 11, 2021)
Patchday: Windows 10-Updates (May 11, 2021)
Patchday: Windows 8.1/Server 2012-Updates (May 11, 2021)
Patchday: Windows 7/Server 2008 R2-Updates (May 11, 2021)


Advertising

This entry was posted in Office, Security, Update, Windows and tagged , , , . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: Please note the rules for commenting on the blog (first comments and linked posts end up in moderation, I release them every few hours, I rigorously delete SEO posts/SPAM).