[German]On August 8 (second Tuesday of the month, patchday at Microsoft), several cumulative updates were released for the supported Windows 10 builds (from RTM version to current version) as well as for the Windows Server counterparts. Here are some details on the respective security updates for Windows 10.
Advertising
A list of the updates can be found on this Microsoft website. I've pulled out the details below. Since March 2021, Microsoft has been integrating Servicing Stack Updates (SSUs) for newer Windows 10 builds into the cumulative update. March 2023 is the last time Preview Updates will be available for older Windows 10 builds. Windows 10 version 20H2 Enterprise/Education will receive a security update for the last time and will then be removed from support.
Updates for Windows 10 Version 21H1-22H2
For the Windows 10 versions mentioned above, Microsoft provides only one update package, which is mentioned below.
Update KB5029244 foür Windows 10 Version 21H1 – 22H2
Cumulative Update KB5029244 raises the OS build for all Windows 10 variants to 1904x.3324 – at 21H2, only the Enterprise variant gets the update. The update only contains security fixes, but no new operating system features. A list of fixes can be read in the article Windows 10 22H2 Preview Update KB5028244 (July 25, 2023), these fixes have been adopted yes. For the cumulative update, it simply states:
This update addresses security issues for your Windows operating system.
Microsoft also notes that this update makes quality improvements to the servicing stack (is responsible for Microsoft updates). This update is automatically downloaded and installed by Windows Update, but is also available from the Microsoft Update Catalog and via WSUS and WUfB. Please note the installation instructions and known issues described in the support article.
Updates for Windows 10/Server 1909
The following updates are available for Windows 10 Enterprise 2019 LTSC and Windows Server 2019.
Update KB502924 for Windows 10 Enterprise 2019 LTSC /Windows Server 2019
Cumulative Update KB5029247 raises the OS build (according to MS) to 17763.4737 and includes quality improvements but no new OS features. This update is only available for Windows 10 2019 Enterprise LTSC and IoT Enterprise LTSC (the remaining variants are out of the security update supply on May 11, 2021) and Windows Server 2019. Microsoft lists the following improvements:
Advertising
- This update addresses an issue that affects apps that use DirectX on older Intel graphics drivers. You might receive an error from apphelp.dll.
- This update affects user mode printer drivers. They unload unexpectedly. This occurs when you print from multiple print queues to the same printer driver.
- This update enhances hinting for some of the letters of the Verdana Pro font family.
- This update affects the Windows Kernel Vulnerable Driver Blocklist, DriverSiPolicy.p7b. It adds drivers that are at risk for Bring Your Own Vulnerable Driver (BYOVD) attacks.
- This update addresses an issue that affects Kerberos constrained delegation (KCD). It fails on read-write domain controllers. The error message is, "KRB_AP_ERR_MODIFIED." This occurs after you install the November 2022 security updates.
- This update addresses an issue that affects the Windows Management Instrumentation (WMI) repository. This causes an installation error. The issue occurs when a device does not shut down properly.
- This update addresses an issue that affects Event Forwarding Subscriptions. When you add an Event Channel to the subscription, it forwards events you do not need.
- This update addresses a deadlock in Internet Protocol Security (IPsec). When you configure servers with IPsec rules, they stop responding. This issue affects virtual and physical servers.
- This update addresses an issue that affects Active Directory Federation Services (AD FS). It might take several attempts to sign in to AD FS successfully. This is because the time calculation for the expiration of a single sign on cookie is wrong.
- This update addresses an issue that affects AD Domains and Trusts snap-ins. They fail to enumerate domain trusts. The error message is, "The parameter is incorrect."
The update is automatically downloaded and installed by Windows Update, but is also available from the Microsoft Update Catalog, via WSUS and WUfB. Microsoft has also updated the Service Stack Update (SSU). Note the installation sequence described in the support article and also the notes on additional requirements. Microsoft states known issues for the update in the support article.
Updates for Windows 10 Version 1507 to 1607
Updates for the Enterprise LTSC versions are available for Windows 10 RTM up to version 1607. These updates are automatically downloaded and installed by Windows Update, but are available for download from the Microsoft Update Catalog (search by KB number). Before manual installation, the latest Servicing Stack Update (SSU) must be installed. Details can be found in the respective KB article.
- Windows 10 Version 1607: Update KB5029242 is now only available for Enterprise LTSC and Windows Server 2016. The update upgrades the OS build to 14393.6167 and addresses security and other issues.
- Windows 10 Version 1507: Update KB5029259 is available for the RTM version (LTSC). The update upgrades the OS build to 10240.20107 and fixes vulnerabilities and bugs.
There was no update for the remaining Windows 10 versions, as these versions are no longer supported. Details about the above updates can be found in the respective Microsoft KB articles.
Similar articles:
Microsoft Security Update Summary (August 8, 2023)
Patchday: Windows 10 Updates (August 8, 2023)
Patchday: Windows 11/Server 2022 Updates (August 8, 2023)
Windows 7/Server 2008 R2; Server 2012 R2: Updates (August 8, 2023)
Microsoft Office Updates (August 8, 2023)
Windows 11 22H2: Preview Update KB5028254 (July 25, 2023)
Windows 11 21H2: Preview-Update KB5028245 (July 25, 2023)
Windows 10 22H2 Preview Update KB5028244 (July 25, 2023)
Advertising
