Patchday: Windows 10-Updates (June 14, 2022)

[German]On June 14, 2022 (second Tuesday of the month, patchday at Microsoft), various cumulative updates for the supported Windows 10 builds (from the RTM version to the current version) were released. In the process, the vulnerability in MSDT called Follina was also closed. Here are some details about the respective security updates.

A list of the updates can be found on this Microsoft website. I have extracted the details below. Since March 2021, yes, Microsoft has been integrating Servicing Stack Updates (SSUs) for newer Windows 10 builds into the cumulative update.

The description of the fixes in the June 14, 2022 security updates is extremely brief. If you are looking for details about the fixes, you have to look at the descriptions of the preview updates of the previous weeks

Updates for Windows 10 Version 20H2-21H2

For the Windows 10 versions mentioned above, Microsoft provides only one update package, which is mentioned below.

Update KB5014699 for Windows 10 Version 20H2 – 21H2

Cumulative Update KB5014699 raises the OS build to 19042.1766 for Windows Server version 20H2, 19043.1766 for Windows 10 version 21H1, and 19044.1766 for Windows 10 version 21H2. The update contains only security fixes, but no new OS features – with Microsoft providing the following details:

Addresses an elevation of privilege (EOP) vulnerability under CVE-2022-30154 for the Microsoft File Server Shadow Copy Agent Service. To become protected and functional, you must install the June 14, 2022 or later Windows update on both the application server and the file server. The application server runs the Volume Shadow Copy Service (VSS)-aware application that stores data on the remote Server Message Block 3.0 (or higher) shares on a file server. The file server hosts the file shares. If you don't install the update on both machine roles, backup operations carried out by applications, which previously worked, might fail. For such failure scenarios, the Microsoft File Server Shadow Copy Agent Service will log FileShareShadowCopyAgent event 1013 on the file server. For more information, see KB5015527.

The fact that the MSDT vulnerability CVE-2022-30190 (Follina) has been closed is not explicitly mentioned in the support article. Microsoft notes that this update performs quality improvements to the servicing stack (is responsible for Microsoft updates). This update is automatically downloaded and installed by Windows Update, but is also available from the Microsoft Update Catalog and via WSUS and WUfB.

For Windows Server, note the installation sequence described in support post KB5014699 and also the notes on other requirements. Microsoft states various known problems for the update in the support article.

Updates for Windows 10 Version 1809

Windows 10 October 2018 Update (version 1809) has fallen out of support, but the following update is available for Windows 10 Enterprise 2019 LTSC and Windows Server 2019.

Update KB5014692 for Windows 10 Enterprise 2019 LTSC /Windows Server 2019 LTSC

Cumulative Update KB5014692 raises the OS build (according to MS) to 17763.3046 and includes quality improvements but no new OS features. Also for this Windows 10 version, which only receives updates for Enterprise LTSC and IoT Enterprise LTSC (the rest of the variants are out of the security update supply on May 11, 2021), Microsoft states the same security fix as for update KB5014699.

Update is automatically downloaded and installed by Windows Update, but is also available from the Microsoft Update Catalog, via WSUS and WUfB. Microsoft has also updated the Service Stack Update (SSU) to build 17763.2865. For Windows Server, note the installation sequence described in support post KB5014692 and also the notes on other requirements. Microsoft states several known issues for the update in the support article.

Updates for Windows 10 Version 1507 and 1607

For Windows 10 RTM to version 1607 updates for the Enterprise LTSC versions are available. These updates are automatically downloaded and installed by Windows Update, but are available for download from the Microsoft Update Catalog (search by KB number). Before manual installation, the latest Servicing Stack Update (SSU) must be installed. Details can be found in the respective KB article.

• Windows 10 Version 1607: Update KB5014702 is only available for Enterprise LTSC and Windows Server 2016. The update upgrades the OS build to 14393.5192.
• Windows 10 Version 1507: Update KB5014710 is available for the RTM version (LTSC). The update raises the OS build to 10240.19325.

There was no update for the remaining Windows 10 versions, as these versions have fallen out of support. Details about the above updates can be found in the respective Microsoft KB articles if in doubt.

Similar articles:
Microsoft Office Updates (June 7, 2022)
Microsoft Security Update Summary (June 14, 2022)
Patchday: Windows 10-Updates (June 14, 2022)
Patchday: Windows 11/Server 2022 Updates (June 14, 2022)
Windows 7/Server 2008R2; Windows 8.1/Server 2012R2: Updates (June 14, 2022)

June 2022 patch day review: Windows update issues, Intel vulnerability, documentation fails
June 2022 Patchday issues (part 2): RDP, VPN, WLAN, hotspot connection and more

Windows 10 21H1 – 21H2/Server 20H2: Preview Update KB5014023 (June 2, 2022) with bug fixes
Windows Server 2022 Preview Update (May 24, 2022)
Windows 11: Preview Update KB5014019 (May 24, 2022)
Windows 10 / Windows Server 1809 Preview Update (May 24, 2022)
Windows 11 preview update KB5014019 breaks Trend Micro Ransomware Protection