{"id":24055,"date":"2022-04-12T23:59:53","date_gmt":"2022-04-12T21:59:53","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=24055"},"modified":"2022-04-22T17:10:49","modified_gmt":"2022-04-22T15:10:49","slug":"microsoft-security-update-summary-12-april-2022","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2022\/04\/12\/microsoft-security-update-summary-12-april-2022\/","title":{"rendered":"Microsoft Security Update Summary (April 12, 2022)"},"content":{"rendered":"<p><img decoding=\"async\" style=\"margin: 0px 10px 0px 0px;\" title=\"Update\" src=\"https:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2021\/06\/Update-01.jpg\" alt=\"Update\" align=\"left\" border=\"0\" \/>[<a href=\"https:\/\/www.borncity.com\/blog\/2022\/04\/12\/microsoft-security-update-summary-12-april-2022\/\" target=\"_blank\" rel=\"noopener\">German<\/a>]On April 12, 2022, Microsoft released security updates for Windows clients and servers, for Office, etc. &#8211; as well as for other products &#8211; were released. Below is a compact overview of these updates that were released on Patchday.<\/p>\n<p><!--more--><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/vg02.met.vgwort.de\/na\/19de74bac587478eb33036f9b0c2d897\" alt=\"\" width=\"1\" height=\"1\" \/>A list of the updates can be found on <a href=\"https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance\" target=\"_blank\" rel=\"noopener\">this Microsoft page<\/a>. Details about the update packages for Windows, Office, etc. are available in separate blog posts.<\/p>\n<h2>Notes on the updates<\/h2>\n<p>Windows 10 Version 20H2 up to 21H2 use a common core and have an identical set of system files. Therefore, the same security update will be delivered for these Windows 10 versions. Information on enabling the features of Windows 10, which is done through an Enablement Package update, can be found in <a href=\"https:\/\/techcommunity.microsoft.com\/t5\/Windows-IT-Pro-Blog\/Windows-10-version-1909-delivery-options\/ba-p\/1002660\" target=\"_blank\" rel=\"noopener\">this Techcommunity post<\/a>.<\/p>\n<p>All Windows 10 updates are cumulative. The monthly patchday update contains all security fixes for Windows 10 and all non-security fixes until patchday. In addition to vulnerability security patches, the updates include security improvement measures. Microsoft is integrating the Servicing Stack Updates (SSUs) into the Latest Cumulative Updates (LCUs) for newer versions of Windows 10. A list of the latest SSUs can be found at <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/ADV990001\" target=\"_blank\" rel=\"noopener\">ADV990001<\/a> (although the list is not always up-to-date).<\/p>\n<p>Windows 7 SP1 is no longer supported as of January 2020. Only customers with a 3rd year ESU license (or bypasses) will still receive updates. With the current ESU bypass lets install the update. Updates can also be downloaded from the <a href=\"https:\/\/www.catalog.update.microsoft.com\/Home.aspx\" target=\"_blank\" rel=\"noopener\">Microsoft Update Catalog<\/a>. Updates for Windows RT 8.1 and Microsoft Office RT are only available through Windows Update.<\/p>\n<h2>Fixed vulnerabilities<\/h2>\n<p>The April 2022 security updates fix 119 vulnerabilities, two of which are 0-day, in Microsoft products. A list of all the CVEs covered can be found on <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/\" target=\"_blank\" rel=\"noopener\">this Microsoft page<\/a> as well as <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/releaseNote\/\" target=\"_blank\" rel=\"noopener\">this Microsoft page<\/a>. The colleagues at Bleeping Computer have published an overview of the fixed vulnerabilities <a href=\"https:\/\/www.bleepingcomputer.com\/news\/microsoft\/microsoft-april-2022-patch-tuesday-fixes-119-flaws-2-zero-days\/\" target=\"_blank\" rel=\"noopener\">here<\/a>. Tenable also has <a href=\"https:\/\/www.tenable.com\/blog\/microsofts-april-2022-patch-tuesday-addresses-117-cves-cve-2022-24521\" target=\"_blank\" rel=\"noopener\">this blog<\/a> post with an overview &#8211; the following critical updates are included in March 2022.<\/p>\n<ul>\n<li><u><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-24521\" target=\"_blank\" rel=\"noopener\">CVE-2022-2452<\/a><\/u> and <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-24481\" target=\"_blank\" rel=\"noopener\">CVE-2022-24481<\/a><u><\/u>: Important; Windows Common Log File System Driver Elevation of Privilege Vulnerabilities<\/li>\n<li><u><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-26904\" target=\"_blank\" rel=\"noopener\">CVE-2022-26904<\/a><\/u>: Important; Windows User Profile Service Elevation of Privilege Vulnerability<\/li>\n<li><u><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-24491\" target=\"_blank\" rel=\"noopener\">CVE-2022-24491<\/a><\/u>: Critical; Windows Network File System Remote Code Execution Vulnerability<\/li>\n<li><u><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-26809\" target=\"_blank\" rel=\"noopener\">CVE-2022-26809<\/a><\/u>: Critical; Remote Procedure Call Runtime Remote Code Execution Vulnerability<\/li>\n<li><u><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-26817\" target=\"_blank\" rel=\"noopener\">CVE-2022-26817<\/a><\/u> and <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-26814\" target=\"_blank\" rel=\"noopener\">CVE-2022-26814<\/a><u><\/u>: Important; Windows DNS Server Remote Code Execution Vulnerabilities<\/li>\n<li>15 Elevation of Privilege Vulnerabilities in Windows Print Spooler; Important;\n<ul>\n<li><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-26803\" target=\"_blank\" rel=\"noopener\">CVE-2022-26803<\/a><\/li>\n<li><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-26786\" target=\"_blank\" rel=\"noopener\">CVE-2022-26786<\/a><\/li>\n<li><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-26787\" target=\"_blank\" rel=\"noopener\">CVE-2022-26787<\/a><\/li>\n<li><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-26789\" target=\"_blank\" rel=\"noopener\">CVE-2022-26789<\/a><\/li>\n<li><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-26790\" target=\"_blank\" rel=\"noopener\">CVE-2022-26790<\/a><\/li>\n<li><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-26791\" target=\"_blank\" rel=\"noopener\">CVE-2022-26791<\/a><\/li>\n<li><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-26802\" target=\"_blank\" rel=\"noopener\">CVE-2022-26802<\/a><\/li>\n<li><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-26792\" target=\"_blank\" rel=\"noopener\">CVE-2022-26792<\/a><\/li>\n<li><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-26797\" target=\"_blank\" rel=\"noopener\">CVE-2022-26797<\/a><\/li>\n<li><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-26795\" target=\"_blank\" rel=\"noopener\">CVE-2022-26795<\/a><\/li>\n<li><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-26796\" target=\"_blank\" rel=\"noopener\">CVE-2022-26796<\/a><\/li>\n<li><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-26798\" target=\"_blank\" rel=\"noopener\">CVE-2022-26798<\/a><\/li>\n<li><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-26801\" target=\"_blank\" rel=\"noopener\">CVE-2022-26801<\/a><\/li>\n<li><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-26793\" target=\"_blank\" rel=\"noopener\">CVE-2022-26793<\/a><\/li>\n<li><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-26794\" target=\"_blank\" rel=\"noopener\">CVE-2022-26794<\/a><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<p>Below is the list of critical and important security updates &#8211; details of which will be reported in separate blog posts.<\/p>\n<h2>Critical Security Updates<\/h2>\n<p>Windows 10 for 32-bit Systems<br \/>\nWindows 10 for x64-based Systems<br \/>\nWindows 10 Version 1607 for 32-bit Systems<br \/>\nWindows 10 Version 1607 for x64-based Systems<br \/>\nWindows 10 Version 1809 for 32-bit Systems<br \/>\nWindows 10 Version 1809 for ARM64-based Systems<br \/>\nWindows 10 Version 1809 for x64-based Systems<br \/>\nWindows 10 Version 1909 for 32-bit Systems<br \/>\nWindows 10 Version 1909 for ARM64-based Systems<br \/>\nWindows 10 Version 1909 for x64-based Systems<br \/>\nWindows 10 Version 20H2 for 32-bit Systems<br \/>\nWindows 10 Version 20H2 for ARM64-based Systems<br \/>\nWindows 10 Version 20H2 for x64-based Systems<br \/>\nWindows 10 Version 21H1 for 32-bit Systems<br \/>\nWindows 10 Version 21H1 for ARM64-based Systems<br \/>\nWindows 10 Version 21H1 for x64-based Systems<br \/>\nWindows 10 Version 21H2 for 32-bit Systems<br \/>\nWindows 10 Version 21H2 for ARM64-based Systems<br \/>\nWindows 10 Version 21H2 for x64-based Systems<br \/>\nWindows 11 for ARM64-based Systems<br \/>\nWindows 11 for x64-based Systems<br \/>\nWindows 7 for 32-bit Systems Service Pack 1<br \/>\nWindows 7 for x64-based Systems Service Pack 1<br \/>\nWindows 8.1 for 32-bit systems<br \/>\nWindows 8.1 for x64-based systems<br \/>\nWindows RT 8.1<br \/>\nWindows Server 2008 for 32-bit Systems Service Pack 2<br \/>\nWindows Server 2008 for 32-bit Systems Service Pack 2 (Server Core<br \/>\ninstallation)<br \/>\nWindows Server 2008 for x64-based Systems Service Pack 2<br \/>\nWindows Server 2008 for x64-based Systems Service Pack 2 (Server Core<br \/>\ninstallation)<br \/>\nWindows Server 2008 R2 for x64-based Systems Service Pack 1<br \/>\nWindows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core<br \/>\ninstallation)<br \/>\nWindows Server 2012<br \/>\nWindows Server 2012 (Server Core installation)<br \/>\nWindows Server 2012 R2<br \/>\nWindows Server 2012 R2 (Server Core installation)<br \/>\nWindows Server 2016<br \/>\nWindows Server 2016\u00a0 (Server Core installation)<br \/>\nWindows Server 2019<br \/>\nWindows Server 2019\u00a0 (Server Core installation)<br \/>\nWindows Server 2022<br \/>\nWindows Server 2022 (Server Core installation)<br \/>\nWindows Server, version 20H2 (Server Core Installation)<br \/>\nMicrosoft Dynamics 365 (on-premises) version 9.0<br \/>\nMicrosoft Dynamics 365 (on-premises) version 9.1<\/p>\n<h2>Important Security Updates<\/h2>\n<p>Microsoft 365 Apps for Enterprise for 32-bit Systems<br \/>\nMicrosoft 365 Apps for Enterprise for 64-bit Systems<br \/>\nMicrosoft Office LTSC 2021 for 32-bit editions<br \/>\nMicrosoft Office LTSC 2021 for 64-bit editions<br \/>\nMicrosoft Office LTSC for Mac 2021<br \/>\nMicrosoft Excel 2013 RT Service Pack 1<br \/>\nMicrosoft Excel 2013 Service Pack 1 (32-bit editions)<br \/>\nMicrosoft Excel 2013 Service Pack 1 (64-bit editions)<br \/>\nMicrosoft Excel 2016 (32-bit edition)<br \/>\nMicrosoft Excel 2016 (64-bit edition)<br \/>\nMicrosoft Office 2013 RT Service Pack 1<br \/>\nMicrosoft Office 2013 Service Pack 1 (32-bit editions)<br \/>\nMicrosoft Office 2013 Service Pack 1 (64-bit editions)<br \/>\nMicrosoft Office 2016 (32-bit edition)<br \/>\nMicrosoft Office 2016 (64-bit edition)<br \/>\nMicrosoft Office 2019 for 32-bit editions<br \/>\nMicrosoft Office 2019 for 64-bit editions<br \/>\nMicrosoft Office 2019 for Mac<br \/>\nMicrosoft Office Online Server<br \/>\nMicrosoft Office Web Apps Server 2013 Service Pack 1<br \/>\nMicrosoft SharePoint Enterprise Server 2016<br \/>\nMicrosoft SharePoint Foundation 2013 Service Pack 1<br \/>\nMicrosoft SharePoint Server 2016<br \/>\nMicrosoft SharePoint Server 2019<br \/>\nMicrosoft SharePoint Server Subscription Edition<br \/>\nMicrosoft .NET Framework 2.0 Service Pack 2<br \/>\nMicrosoft .NET Framework 3.0 Service Pack 2<br \/>\nMicrosoft .NET Framework 3.5<br \/>\nMicrosoft .NET Framework 3.5 AND 4.7.2<br \/>\nMicrosoft .NET Framework 3.5 AND 4.8<br \/>\nMicrosoft .NET Framework 3.5.1<br \/>\nMicrosoft .NET Framework 4.5.2<br \/>\nMicrosoft .NET Framework 4.6<br \/>\nMicrosoft .NET Framework 4.6\/4.6.1\/4.6.2\/4.7\/4.7.1\/4.7.2<br \/>\nMicrosoft .NET Framework 4.8<br \/>\nMicrosoft Visual Studio 2017 version 15.9 (includes 15.0 &#8211; 15.8)<br \/>\nMicrosoft Visual Studio 2019 version 16.11 (includes 16.0 &#8211; 16.10)<br \/>\nMicrosoft Visual Studio 2019 version 16.7 (includes 16.0 &#8211; 16.6)<br \/>\nMicrosoft Visual Studio 2019 version 16.9 (includes 16.0 &#8211; 16.8)<br \/>\nMicrosoft Visual Studio 2022 version 17.0<br \/>\nMicrosoft Visual Studio 2022 version 17.1<br \/>\nVisual Studio 2019 for Mac version 8.10<br \/>\nVisual Studio Code<br \/>\nSkype for Business Server 2015 CU12<br \/>\nSkype for Business Server 2019 CU6<br \/>\nMicrosoft Lync Server 2013 CU10<br \/>\nWindows Upgrade Assistant<br \/>\nAzure SDK for .Net<br \/>\nAzure Site Recovery VMWare to Azure<br \/>\nHEVC Video Extension<br \/>\nHEVC Video Extensions<br \/>\nMicrosoft Malware Protection Engine<br \/>\nMicrosoft On-Premises Data Gateway<br \/>\nYARP 1.0<br \/>\nYARP 1.1RC<\/p>\n<p><strong>Similar articles:<\/strong><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2022\/04\/06\/microsoft-office-updates-5-april-2022\/\">Microsoft Office Updates (April 5, 2022)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2022\/04\/12\/microsoft-security-update-summary-12-april-2022\/\">Microsoft Security Update Summary (April 12, 2022)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2022\/04\/13\/patchday-windows-10-updates-12-april-2022\/\">Patchday: Windows 10 Updates (April 12, 2022)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2022\/04\/13\/patchday-windows-11-server-2022-updates-april-12-2022\/\">Patchday: Windows 11\/Server 2022 Updates (April 12, 2022)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2022\/04\/13\/windows-7-server-2008r2-windows-8-1-server-2012r2-updates-april-12-2022\/\">Windows 7\/Server 2008R2; Windows 8.1\/Server 2012R2: Updates (April 12, 2022)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/?p=24073\">Patchday: Microsoft Office Updates (April 12, 2022)<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>[German]On April 12, 2022, Microsoft released security updates for Windows clients and servers, for Office, etc. &#8211; as well as for other products &#8211; were released. Below is a compact overview of these updates that were released on Patchday.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1547,22,2],"tags":[125,2719,69,194],"class_list":["post-24055","post","type-post","status-publish","format-standard","hentry","category-software","category-update","category-windows","tag-office","tag-patchday-4-2022","tag-security","tag-windows"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/24055","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=24055"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/24055\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=24055"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=24055"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=24055"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}