[German]On December 13, 2022 (second Tuesday of the month, Patchday at Microsoft), several cumulative updates were released for the supported Windows 10 builds (from RTM version to current version) as well as for the Windows Server counterparts. Here are some details on the respective security updates for Windows 10.
A list of the updates can be found on this Microsoft website. I've pulled out the details below. Since March 2021, Microsoft has been integrating the Servicing Stack Updates (SSUs) for newer Windows 10 builds into the cumulative update. The description of the fixes in the security updates is extremely brief. If you are looking for details about the fixes, you have to check the descriptions of the preview updates of the previous weeks.
Updates for Windows 10 Version 20H2-22H2
For the Windows 10 versions mentioned above, Microsoft provides only one update package, which is mentioned below.
Update KB5021233 for Windows 10 Version 20H2 – 22H2
Cumulative update KB5021233 raises the OS build on Windows 10 Enterprise/Education 20H2 as well as all Windows 10 variants from 21H1 up to 22H2 to 1904x.2364. The update only contains security fixes, but no new OS features – with Microsoft not providing any details. The list of improvements can be read in the blog post Windows 10 20H2-22H2 Preview Update KB5020030 (Nov. 15, 2022), because the preview update fixes will be included in the regular security update on the following month's patchday.
In addition, Microsoft mentions that this update fixes a problem that affects the camera app. The app stops responding when it runs out of memory. Microsoft also notes that this update makes quality improvements to the servicing stack (is responsible for Microsoft updates).
This update is automatically downloaded and installed by Windows Update, but is also available from the Microsoft Update Catalog and via WSUS and WUfB. Note the installation sequence described in the support article and also the notes on further requirements. Microsoft states known issues for the update in the support article.
Windows 10 21H1 has now received security updates for the last time and will fall out of support. Internet Explorer will then be shut down in Windows 10 from February 2023.
Updates for Windows 10 Version 1809
Windows 10 October 2018 Update (version 1809) has fallen out of support, but the following update is available for Windows 10 Enterprise 2019 LTSC and Windows Server 2019.
Update KB5021237 for Windows 10 Enterprise 2019 LTSC /Windows Server 2019
Cumulative update KB5021237 raises the OS build (according to MS) to 17763.3770 and includes quality improvements but no new OS features. This update is only available for Windows 10 2019 Enterprise LTSC and IoT Enterprise LTSC (the remaining variants are out of the security update supply on May 11, 2021) and Windows Server 2019. Microsoft lists the following highlights.
- This update addresses the suspension of daylight saving time (DST) in the Republic of Fiji for this year.
- This update addresses security issues for your Windows operating system.
as well as these improvements:
- This update addresses an issue that might affect applications that run on the Windows Lock Down Policy (WLDP). They might stop working.
- This update addresses an issue that affects remote networks. This issue stops you from reconnecting to them using DirectAccess.
- This update addresses a known issue that might affect the Local Security Authority Subsystem Service (LSASS.exe). It might leak memory on Windows domain controllers. This issue might occur when you install Windows updates dated November 8, 2022, or later.
Especially the memory leak in LSASS on domain controllers, which was also mentioned here in the blog (Windows Server November 2022 updates cause LSASS memory leak), is mentioned as be fixed and might interest some affected people.
The update is automatically downloaded and installed by Windows Update, but is also available from the Microsoft Update Catalog, via WSUS and WUfB. Microsoft has also updated the Service Stack Update (SSU). Note the installation sequence described in the support article and also the notes on additional requirements. For the update, Microsoft states known issues in the support post. Annoyingly, the Direct Access issue (see Microsoft confirms Direct Access issues after Nov. 2022 updates) is still open. But there are other known issues, that won't be funny for enterprise administrators.
Updates for Windows 10 Version 1507 till 1607
iUpdates for the Enterprise LTSC versions are available for Windows 10 RTM up to version 1607. These updates are automatically downloaded and installed by Windows Update, but are available for download from the Microsoft Update Catalog (search by KB number). Before manual installation, the latest Servicing Stack Update (SSU) must be installed. Details can be found in the respective KB article.
- Windows 10 version 1607: Update KB5021235 is only available for Enterprise LTSC and Windows Server 2016. The update upgrades the OS build to 14393.5582, and addresses security and other issues.
- Windows 10 version 1507: Update KB5021243 is available for the RTM version (LTSC). The update raises the OS build to 10240.19624 and fixes vulnerabilities as well as bugs.
There was no update for the remaining Windows 10 versions, as these versions have fallen out of support. Details about the above updates can be found in the respective Microsoft KB articles.
Microsoft Office Updates (December 6, 2022)
Microsoft Security Update Summary (December 13, 2022)
Patchday: Windows 10-Updates (December 13, 2022)
Patchday: Windows 11/Server 2022-Updates (December 13, 2022)
Windows 7/Server 2008 R2; Windows 8.1/Server 2012 R2: Updates (December 13, 2022)
Patchday: Microsoft Office Updates (December 13, 2022)
Windows: 0Patch Micropatch for MOTOW ZIP file bug (0-day, no CVE)
Microsoft confirms Direct Access issues after Nov. 2022 updates
DirectAccess fails after Windows Updates from November 2022
Windows Server November 2022 updates cause LSASS memory leak
Cookies helps to fund this blog: Cookie settings