Home / Technology / Microsoft Windows Security Updates May 2019 overview

Microsoft Windows Security Updates May 2019 overview

Welcome to the Microsoft Patch Day overview for May 2019. Microsoft launched safety updates and non-security updates for all supported variations of the Windows working system — shopper and server — and different Microsoft merchandise equivalent to Microsoft Office on May 14, 2019.

Our overview offers you with data and useful resource hyperlinks; we cowl all main replace releases for all Microsoft platforms, present an overview of important updates (which you will wish to tackle shortly), working system distribution statistics, and obtain directions.

Microsoft plans to launch the May 2019 Update for Windows 10 on the finish of the month; try this guide if you plan to update to the new feature update for Windows 10. If you are taking the disastrous Windows 10 version 1809 release into consideration, it’s in all probability higher to attend a number of months earlier than you  contemplate putting in the replace on manufacturing machines.

Note that there are some upgrade blocks in place at present that stop the set up of the brand new replace.

Microsoft Windows Security Updates May 2019

Download the next Excel spreadsheet (zipped) that lists the launched safety updates and data: security-updates-windows-microsoft-may-2019.zip

Executive Summary

  • Microsoft launched safety updates for all supported variations of Windows.
  • All variations of Windows are affected by CVE-2019-0903,  a GDI+ Remote Code Execution Vulnerability important vulnerability.
  • Windows 7 is the one shopper system affected by one other important vulnerability CVE-2019-0708 , Remote Desktop Services Remote Code Execution Vulnerability
  • Microsoft launched a safety replace for Windows XP (KB4500331)
  • All server variations affected by CVE-2019-0725 | Windows DHCP Server Remote Code Execution Vulnerability.
  • Server 2008 R2 solely model affected by CVE-2019-0708 Remote Desktop Services Remote Code Execution Vulnerability.
  • Other Microsoft merchandise with safety replace releases: IE, Edge, Team Foundation Server, SQL Server, Azure, Skype for Android, Office, Visual Studio, Azure DevOps Server, .Net Framework and Core, ASP.NET Core, ChakraCore, NuGet.
  • The Update Catalog lists 243 updates.

Operating System Distribution

  • Windows 7: 23 vulnerabilities of which 2 are rated important and 21 are rated necessary
    • CVE-2019-0903 | GDI+ Remote Code Execution Vulnerability
    • CVE-2019-0708 | Remote Desktop Services Remote Code Execution Vulnerability
  • Windows eight.1: 23 vulnerabilities of which 1 is rated important and 22 are rated necessary
  • Windows 10 model 1703:  28 vulnerabilities of which 1 is important and 27 are necessary
  • Windows 10 model 1709: 29 vulnerabilities of which 1 is important and 28 are necessary
  • Windows 10 model 1803: 29 vulnerabilities of which 1 is important and 28 are necessary
  • Windows 10 model 1809: 29 vulnerabilities of which 1 is important and 28 are necessary

Windows Server merchandise

  • Windows Server 2008 R2: 24 vulnerabilities of which three are important and 21 are necessary.
    • CVE-2019-0708 | Remote Desktop Services Remote Code Execution Vulnerability
    • CVE-2019-0725 | Windows DHCP Server Remote Code Execution Vulnerability
    • CVE-2019-0903 | GDI+ Remote Code Execution Vulnerability
  • Windows Server 2012 R2: 24 vulnerabilities of which 2 are important and 22 are necessary.
  • Windows Server 2016: 28 vulnerabilities of which 2 are important and 26 are necessary
  • Windows Server 2019: 30 vulnerabilities of which 2 are important and 28 are necessary.

Other Microsoft Products

  • Internet Explorer 11: eight vulnerability, 5 important, four necessary
  • Microsoft Edge: 14 vulnerabilities, 11 important, three necessary
    • CVE-2019-0915 | Chakra Scripting Engine Memory Corruption Vulnerability
    • CVE-2019-0916 | Chakra Scripting Engine Memory Corruption Vulnerability
    • CVE-2019-0917 | Chakra Scripting Engine Memory Corruption Vulnerability
    • CVE-2019-0922 | Chakra Scripting Engine Memory Corruption Vulnerability
    • CVE-2019-0924 | Chakra Scripting Engine Memory Corruption Vulnerability
    • CVE-2019-0925 | Chakra Scripting Engine Memory Corruption Vulnerability
    • CVE-2019-0926 | Microsoft Edge Memory Corruption Vulnerability
    • CVE-2019-0927 | Chakra Scripting Engine Memory Corruption Vulnerability
    • CVE-2019-0933 | Chakra Scripting Engine Memory Corruption Vulnerability
    • CVE-2019-0937 | Chakra Scripting Engine Memory Corruption Vulnerability
    • CVE-2019-0940 | Microsoft Browser Memory Corruption Vulnerability

Windows Security Updates

Windows 7 Service Pack 1

KB4499175 — Security-only replace

  • Protections in opposition to a brand new subclass of speculative execution side-channel vulnerabilities (Microarchitectural Data Sampling)
  • Addresses a difficulty which will stop functions that depend on unconstrained delegation from authenticating after the Kerberos ticket-granting ticket (TGT) expires (the default is 10 hours).
  • Security updates

KB4499164 — Monthly Rollup

  • Same as security-only replace, and
  • Fixed Excel show situation.
  • Fixed Microsoft Visual Studio Simulator startup situation.

Windows eight.1

KB4499165 — Security-only Update

  • Protections in opposition to a brand new subclass of speculative execution side-channel vulnerabilities (Microarchitectural Data Sampling)
  • Security updates

KB4499151 — Monthly Rollup

  • Same as Security-only replace, and
  • Fixed “Error 1309” situation with msi and msp recordsdata.
  • Fixed Microsoft Visual Studio Simulator startup situation.
  • Added uk.gov into HTTP Strict Transport Security Top Level Domains (HSTS TLD) for Internet Explorer and Microsoft Edge.
  • Fixed show situation in Excel.

Windows 10 model 1703

KB4499181

  • Same as Windows 10 model 1809 aside from Retpoline, Simple Network Management Protocol Management Information Base registration, and the zone switch situation.

Windows 10 model 1709

KB4499179

  • Same as Windows 10 model 1809 aside from Retpoline and Simple Network Management Protocol Management Information Base registration

Windows 10 model 1803

KB4499167

  • Same as Windows 10 model 1809 aside from Retpoline and Simple Network Management Protocol Management Information Base registration

Windows 10 model 1809

KB4494441

  • Retpoline is enabled by default if protections in opposition to Spectre Variant 2 are enabled.
  • Protections in opposition to a brand new subclass of speculative execution side-channel vulnerabilities (Microarchitectural Data Sampling)
  • uk.gov added into the HTTP Strict Transport Security Top Level Domains for IE and Edge.
  • Fixed the reason for Error 1309 when putting in or eradicating sure msi or msp recordsdata on a digital drive.
  • Fixed a difficulty that prevented Microsoft Visual Studio Simulator from beginning.
  • Fixed a difficulty that might trigger zone transfers between major and secondary DNS servers over TCP to fail.
  • Fixed a difficulty that might trigger Simple Network Management Protocol Management Information Base registration to fail.
  • Fixed a font situation in Microsoft Excel that might make textual content, format, or cell sizes narrower or wider.
  • Security updates.

Other safety updates

KB4498206 — Cumulative safety replace for Internet Explorer: May 14, 2019

KB4474419 — SHA-2 code signing assist replace for Windows Server 2008 R2, Windows 7, and Windows Server 2008: March 12, 2019

KB4495582 — 2019-05 Security and Quality Rollup for .NET Framework four.6, four.6.1, four.6.2, four.7, four.7.1, four.7.2 for Windows Embedded eight Standard and Windows Server 2012

KB4495584 — 2019-05 Security Only Update for .NET Framework four.6, four.6.1, four.6.2, four.7, four.7.1, four.7.2 for Windows Embedded eight Standard and Windows Server 2012

KB4495585 — 2019-05 Security and Quality Rollup for .NET Framework four.6, four.6.1, four.6.2, four.7, four.7.1, four.7.2 for Windows eight.1 and Windows Server 2012 R2

KB4495586 — 2019-05 Security Only Update for .NET Framework four.6, four.6.1, four.6.2, four.7, four.7.1, four.7.2 for Windows eight.1 and Windows Server 2012 R2

KB4495587 — 2019-05 Security Only Update for .NET Framework four.6 for Windows Embedded Standard 7, Windows 7, Windows Server 2008 R2, and Windows Server 2008

KB4495588 — 2019-05 Security and Quality Rollup for .NET Framework four.6, four.6.1, four.6.2, four.7, four.7.1, four.7.2 for Windows Embedded Standard 7, Windows 7, Windows Server 2008 R2, and Windows Server 2008

KB4495589 — 2019-05 Security Only Update for .NET Framework four.5.2 for Windows eight.1 and Windows Server 2012 R2

KB4495591 — 2019-05 Security Only Update for .NET Framework four.5.2 for Windows Embedded eight Standard and Windows Server 2012

KB4495592 — 2019-05 Security and Quality Rollup for .NET Framework four.5.2 for Windows eight.1 and Windows Server 2012 R2

KB4495593 — 2019-05 Security Only Update for .NET Framework four.5.2 for Windows Embedded Standard 7, Windows 7, Windows Server 2008 R2, and Windows Server 2008

KB4495594 — 2019-05 Security and Quality Rollup for .NET Framework four.5.2 for Windows Embedded eight Standard and Windows Server 2012

KB4495596 — 2019-05 Security and Quality Rollup for .NET Framework four.5.2 for Windows Embedded Standard 7, Windows 7, Windows Server 2008 R2, and Windows Server 2008

KB4495602 — 2019-05 Security and Quality Rollup for .NET Framework three.5 for Windows Embedded eight Standard and Windows Server 2012

KB4495604 — 2019-05 Security and Quality Rollup for .NET Framework 2.zero, three.zero for Windows Server 2008

KB4495606 — 2019-05 Security and Quality Rollup for .NET Framework three.5.1 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4495607 — 2019-05 Security Only Update for .NET Framework three.5 for Windows Embedded eight Standard and Windows Server 2012

KB4495608 — 2019-05 Security and Quality Rollup for .NET Framework three.5 for Windows eight.1 and Windows Server 2012 R2

KB4495609 — 2019-05 Security Only Update for .NET Framework 2.zero on Windows Server 2008

KB4495612 — 2019-05 Security Only Update for .NET Framework three.5.1 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4495615 — 2019-05 Security Only Update for .NET Framework three.5 for Windows eight.1 and Windows Server 2012 R2

KB4495622 — 2019-05 Security and Quality Rollup for .NET Framework four.eight for Windows Embedded eight Standard and Windows Server 2012

KB4495623 — 2019-05 Security Only Update for .NET Framework four.eight for Windows Embedded eight Standard and Windows Server 2012

KB4495624 — 2019-05 Security and Quality Rollup for .NET Framework four.eight for Windows eight.1 and Windows Server 2012 R2

KB4495625 — 2019-05 Security Only Update for .NET Framework four.eight for Windows eight.1 and Windows Server 2012 R2

KB4495626 — 2019-05 Security and Quality Rollup for .NET Framework four.eight for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4495627 — 2019-05 Security Only Update for .NET Framework four.eight for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4497932 — Adobe Flash Player Security Update

KB4498961 — 2019-05 Security Only Update for .NET Framework three.5.1, four.5.2, four.6, four.6.1, four.6.2, four.7, four.7.1, four.7.2, four.eight for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4498962 — 2019-05 Security Only Update for .NET Framework three.5, four.5.2, four.6, four.6.1, four.6.2, four.7, four.7.1, four.7.2, four.eight for Windows Embedded eight Standard and Windows Server 2012

KB4498963 — 2019-05 Security Only Update for .NET Framework three.5, four.5.2, four.6, four.6.1, four.6.2, four.7, four.7.1, four.7.2, four.eight for Windows eight.1 and Windows Server 2012 R2

KB4498964 — 2019-05 Security Only Update for .NET Framework 2.zero, three.zero, four.5.2, four.6 on Windows Server 2008

KB4499149 — 2019-05 Security Monthly Quality Rollup for Windows Server 2008

KB4499158 — 2019-05 Security Only Quality Update for Windows Embedded eight Standard and Windows Server 2012

KB4499171 — 2019-05 Security Monthly Quality Rollup for Windows Embedded eight Standard and Windows Server 2012

KB4499180 — 2019-05 Security Only Quality Update for Windows Server 2008

KB4499406 — 2019-05 Security and Quality Rollup for .NET Framework three.5.1, four.5.2, four.6, four.6.1, four.6.2, four.7, four.7.1, four.7.2, four.eight for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4499407 — 2019-05 Security and Quality Rollup for .NET Framework three.5, four.5.2, four.6, four.6.1, four.6.2, four.7, four.7.1, four.7.2, four.eight for Windows Embedded eight Standard and Windows Server 2012

KB4499408 — 2019-05 Security and Quality Rollup for .NET Framework four.5.2, four.6, four.6.1, four.6.2, four.7, four.7.1, four.7.2, four.eight for Windows eight.1, Windows RT eight.1, and Windows Server 2012 R2

KB4499409 — 2019-05 Security and Quality Rollup for .NET Framework 2.zero, three.zero, four.5.2, four.6 on Windows Server 2008

KB4500331 — Security Update for Windows Server 2003, Windows XP Embedded, and Windows XP

KB4494440 — 2019-05 Cumulative Update for Windows 10 Version 1607

KB4495590 — Cumulative Update for .NET Framework three.5 and four.7.2 for Windows 10

KB4495610 — 2019-05 Cumulative Update for .NET Framework four.eight for Windows 10 Version 1607, and Windows Server 2016

KB4495611 — 2019-05 Cumulative Update for .NET Framework four.eight for Windows 10 Version 1703

KB4495613 — 2019-05 Cumulative Update for .NET Framework four.eight for Windows 10 Version 1709

KB4495616 — 2019-05 Cumulative Update for .NET Framework four.eight on Windows 10 Version 1803, and Windows Server 2016

KB4495618 — 2019-05 Cumulative Update for .NET Framework three.5 and four.eight for Windows 10 Version 1809

KB4495620 — 2019-05 Cumulative Update for .NET Framework three.5 and four.eight for Windows 10 model 1903, and Windows Server 1903

KB4497398 — 2019-05 Servicing Stack Update for Windows 10 Version 1803, and Windows Server 2016

KB4498353 — 2019-05 Servicing Stack Update for Windows 10

KB4498947 — 2019-05 Servicing Stack Update for Windows 10 Version 1607, and Windows Server 2016

KB4499154 — 2019-05 Cumulative Update for Windows 10

KB4499167 — 2019-05 Dynamic Cumulative Update for Windows 10 Version 1809, and Windows Server 2016

KB4499405 — 2019-05 Cumulative Update for .NET Framework three.5, four.7.2 and four.eight for Windows 10 Version 1809, and Windows Server 2019

KB4499728 — 2019-05 Servicing Stack Update for Windows 10 Version 1809, and Windows Server 2019

KB4500109 — 2019-05 Servicing Stack Update for Windows 10 Version 1903

KB4500640 — 2019-05 Servicing Stack Update for Windows 10 Version 1703

KB4500641 — 2019-05 Servicing Stack Update for Windows 10 Version 1709

Known Issues

See the linked KB articles for workarounds and extra data.

Windows eight.1 and Serve 2012 R2

  • First two problems with Windows 10 model 1809.
  • Monthly Rollup moreover: situation with Mcafee Endpoint Security software program.

Windows 10 model 1703

  • Second situation of Windows 10 model 1809 solely.

Windows 10 model 1709

  • Second situation of Windows 10 model 1809 solely.

Windows 10 model 1803

  • First two problems with Windows 10 model 1809.

Windows 10 model 1809

  • Issues utilizing the Preboot Execution Environment (PXE) to start out a tool from a Windows Deployment Services (WDS) server configured to make use of Variable Window Extension. Workaround accessible.
  • Error STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5) when performing sure operations on recordsdata or recordsdata which might be on a Cluster Shared Volume. Workaround accessible.
  • Printing situation with error “Your printer has skilled an surprising configuration drawback. 0x80070007e” in Edge and UWP apps. Workaround accessible.
  • Error “0x800f0982 – PSFX_E_MATCHING_COMPONENT_NOT_FOUND” after putting in KB4493509 with sure Asian language packs put in. Workaround accessible.

Security advisories and updates

ADV190012 | May 2019 Adobe Flash Security Update

ADV190013 | Microsoft Guidance to mitigate Microarchitectural Data Sampling vulnerabilities

ADV190014 | Listed however error web page

Windows client guidance for IT Pros to protect against speculative execution side-channel vulnerabilities

Windows Server guidance to protect against speculative execution side-channel vulnerabilities

Non-security associated updates

KB4494174 — 2019-05 Update for Windows 10 Version 1809 (Intel microcode updates)

KB4494175 –2019-05 Update for Windows 10 Version 1607 (Intel microcode updates)

KB4494451 — 2019-05 Update for Windows 10 Version 1803 (Intel microcode updates)

KB4494452 — 2019-05 Update for Windows 10 Version 1709 (Intel microcode updates)

KB4494453 — 2019-05 Update for Windows 10 Version 1703 (Intel microcode updates)

KB4494454 — 2019-05 Update for Windows 10 Version 1507 (Intel microcode updates)

KB4497165 — 2019-05 Update for Windows 10 Version 1903 (Intel microcode updates)

KB4498946 — 2019-05 Dynamic Update for Windows 10 Version 1709 (Intel microcode updates)

KB890830 — Windows Malicious Software Removal Tool – May 2019

Microsoft Office Updates

You discover Office replace data here.

How to obtain and set up the May 2019 safety updates

windows may 2019 microsoft security updates

Home customers could use Windows Update to obtain and set up the updates, or set up updates manually by downloading them straight from Microsoft.

It is not recommended to select the “check for updates” option manually on Windows PCs as it’s possible you’ll set up preview updates or function updates once you use the choice.

If you continue to wish to achieve this, ensure you create a backup of necessary knowledge — higher your entire system partition — prior to installing updates.

  1. Open the Start Menu.
  2. Type Windows Update.
  3. Click on the “verify for updates” button to run a handbook verify.

Third-party tools like Windows Update Manager, Windows Update MiniTool or Sledgehammer could also be helpful in addition to you get extra management over the replace processes.

Direct replace downloads

Most Windows units are up to date robotically both via Windows Update or different replace administration programs. Some customers and organizations desire to put in updates manually. All cumulative updates might be downloaded from the Microsoft Update Catalog web site. Below are hyperlinks to all cumulative updates.

Windows 7 SP1 and Windows Server 2008 R2 SP

  • KB4499164 — 2019-05 Security Monthly Quality Rollup for Windows 7
  • KB4499175 — 2019-05 Security Only Quality Update for Windows 7

Windows eight.1 and Windows Server 2012 R2

  • KB4499151 — 2019-05 Security Monthly Quality Rollup for Windows eight.1
  • KB4499165 — 2019-05 Security Only Quality Update for Windows eight.1

Windows 10 (model 1703)

  • KB4499181 — 2019-05 Cumulative Update for Windows 10 Version 1703

Windows 10 (model 1709)

  • KB4499179 — 2019-05 Cumulative Update for Windows 10 Version 1709

Windows 10 (model 1803)

  • KB4499167 — 2019-05 Cumulative Update for Windows 10 Version 1803

Windows 10 (model 1809)

  • KB4494441 — 2019-05 Cumulative Update for Windows 10 Version 1809

Additional assets

Check Also

How to disable the email signature in Avast Free Antivirus- gHacks Tech News

People typically ask me which antivirus I like to recommend, and whereas I counsel Windows …

Leave a Reply

Your email address will not be published. Required fields are marked *