Home / Technology / Microsoft Windows Security Updates November 2019 overview

Microsoft Windows Security Updates November 2019 overview

It is the second Tuesday of November 2019 and that implies that it’s Microsoft Patch Day. Microsoft launched safety and non-security updates for its Windows working system and different firm merchandise.

Our overview supplies you with info on these updates: it begins with an government abstract and details about the variety of launched updates for all supported shopper and server variations of Windows in addition to the Microsoft Edge (basic) and Internet Explorer net browsers.

What follows is details about the updates, all with hyperlinks to help articles on Microsoft’s web site, the checklist of identified points, direct obtain hyperlinks to cumulative updates for Windows, and extra replace associated info.

Click right here to open the October 2019 Patch Day overview.

Microsoft Windows Security Updates October 2019

Download the next Excel spreadsheet to your native system; it lists safety updates that Microsoft launched in November 2019: November 2019 Security Updates

Executive Summary

feature update windows 10 1909

  • Microsoft launched safety updates for all supported shopper and server variations of the Microsoft Windows working system.
  • The following Microsoft merchandise have acquired safety updates as nicely: Internet Explorer, Microsoft Edge, Microsoft Office, Secure Boot, Microsoft Exchange Server, Visual Studio, Azure Stack.
  • The Windows 10 model 1909 options are included within the Windows 10 model 1903 replace however not activated till “they’re turned on utilizing an enablement package deal, which is a small, quick-to-install “grasp swap” that merely prompts the Windows 10, model 1909 options.” Microsoft launched a blog post that particulars find out how to get the replace. (mainly, set up common 1903 replace, then examine for updates once more and the 1909 replace needs to be supplied)
  • Windows 10 Home, Pro, Pro for Workstations and IoT Core, model 1803 have reached end of servicing. These editions will not obtain safety updates or different updates after November 12, 2019.

Operating System Distribution

  • Windows 7: 35 vulnerabilities: four rated essential and 31 rated vital
    • CVE-2019-1389 | Windows Hyper-V Remote Code Execution Vulnerability
    • CVE-2019-1397 | Windows Hyper-V Remote Code Execution Vulnerability
    • CVE-2019-1419 | OpenSort Font Parsing Remote Code Execution Vulnerability
    • CVE-2019-1441 | Win32okay Graphics Remote Code Execution Vulnerability
  • Windows eight.1: 37 vulnerabilities: three rated essential and 34 rated vital
    • Same as Windows 7 aside from CVE-2019-1441 (not affected)
  • Windows 10 model 1803: 46 vulnerabilities: 5 essential and 41 vital
    • CVE-2019-0721 | Hyper-V Remote Code Execution Vulnerability
    • CVE-2019-1389 | Windows Hyper-V Remote Code Execution Vulnerability
    • CVE-2019-1397 | Windows Hyper-V Remote Code Execution Vulnerability
    • CVE-2019-1398 | Windows Hyper-V Remote Code Execution Vulnerability
    • CVE-2019-1419 | OpenSort Font Parsing Remote Code Execution Vulnerability
  • Windows 10 model 1809: 46 vulnerabilities: four essential and 42  vital
    • Same as Windows 10 model 1803 aside from CVE-2019-1389 (not affected)
  • Windows 10 model 1903: 46 vulnerabilities: 2 essential and 28 vital
    • Same as Windows 10 model 1809 plus
    • CVE-2019-1430 | Microsoft Windows Media Foundation Remote Code Execution Vulnerability

Windows Server merchandise

  • Windows Server 2008 R2: 35 vulnerabilities: four essential and 31 vital.
    • CVE-2019-1441 | Win32okay Graphics Remote Code Execution Vulnerability
    • CVE-2019-1419 | OpenSort Font Parsing Remote Code Execution Vulnerability
    • CVE-2019-1397 | Windows Hyper-V Remote Code Execution Vulnerability
    • CVE-2019-1389 | Windows Hyper-V Remote Code Execution Vulnerability
  • Windows Server 2012 R2: 37 vulnerabilities: three essential and 34 vital.
    • similar as Windows Server 2008 R2 aside from CVE-2019-1441 (not affected)
  • Windows Server 2016: 38 vulnerabilities: 2 essential and 20 vital.
    • similar as Windows Server 2008 R2 aside from CVE-2019-1441 (not affected)
  • Windows Server 2019: 46 vulnerabilities: 2 essential and 29 are vital
    • similar as Windows Server 2008 R2 aside from CVE-2019-1441 (not affected) plus
    • CVE-2019-0721 | Hyper-V Remote Code Execution Vulnerability

Other Microsoft Products

  • Internet Explorer 11: 2 vulnerabilities: 2 essential
  • Microsoft Edge: four vulnerabilities: four essential
    • CVE-2019-1413 | Microsoft Edge Security Feature Bypass Vulnerability
    • CVE-2019-1426 | Scripting Engine Memory Corruption Vulnerability
    • CVE-2019-1427 | Scripting Engine Memory Corruption Vulnerability
    • CVE-2019-1428 | Scripting Engine Memory Corruption Vulnerability

Windows Security Updates

Windows 7 SP1 and Windows Server 2008 R2

The security-only replace resolves the next points/makes the next modifications:

  • Provides protections in opposition to the Intel® Processor Machine Check Error vulnerability (CVE-2018-12207). Note: the safety shouldn’t be enabled by default. Consult this text for guidance.
  • Provides protections in opposition to the Intel® Transactional Synchronization Extensions (Intel® TSX) Transaction Asynchronous Abort vulnerability (CVE-2019-11135). Note: the safety shouldn’t be enabled by default. Consult the Windows Client or Windows Server guides for steering.
  • Security updates for numerous working system parts.

The month-to-month rollup replace contains all the updates of the security-only replace plus:

  • Fixes a difficulty that prevented sure 16-bit Visual Basic three purposes or different VB3 purposes from operating.
  • Fixes a short lived person profile problem when the coverage “Delete cached copies of roaming profiles” is about.

Windows eight.1 and Server 2012 R2

The security-only replace resolves the next points/makes the next modifications:

  • Same as Windows 7 SP1 and Windows Server 2008 R2.

The month-to-month rollup replace contains all the updates of the security-only replace plus:

  • Same as Windows 7 SP1 and Windows Server 2008 R2 plus
  • Fixes a difficulty that prevented a number of Bluetooth Basic Rate gadgets from functioning correctly after putting in the August 2019 updates.
  • Fixes a difficulty that brought about error 0x7E when connecting Bluetooth gadgets after putting in the June 2019 updates.

Windows 10 model 1803

The cumulative replace fixes the next points / makes the next modifications:

  • Fixes a difficulty that brought about Windows Defender Application Control Code Integrity occasions to develop into unreadable.
  • Provides protections in opposition to the Intel® Processor Machine Check Error vulnerability (CVE-2018-12207). Note: the safety shouldn’t be enabled by default. Consult this text for guidance.
  • Provides protections in opposition to the Intel® Transactional Synchronization Extensions (Intel® TSX) Transaction Asynchronous Abort vulnerability (CVE-2019-11135). Note: the safety shouldn’t be enabled by default. Consult the Windows Client or Windows Server guides for steering.
  • Security updates

Windows 10 model 1809

The cumulative replace fixes the next points / makes the next modifications:

  • Fixes a difficulty that might trigger the Microsoft Defender Advanced Threat Protection service to cease operating or cease sending report knowledge.
  • Provides protections in opposition to the Intel® Processor Machine Check Error vulnerability (CVE-2018-12207). Note: the safety shouldn’t be enabled by default. Consult this text for guidance.
  • Provides protections in opposition to the Intel® Transactional Synchronization Extensions (Intel® TSX) Transaction Asynchronous Abort vulnerability (CVE-2019-11135). Note: the safety shouldn’t be enabled by default. Consult the Windows Client or Windows Server guides for steering.
  • Security updates

Windows 10 model 1903

The cumulative replace lists modifications for Windows 10 model 1903 and 1909. It seems that Microsoft included the modifications of 1909 within the cumulative replace however has not activated them on the time of writing.

  • Fixes a difficulty within the Keyboard Lockdown Subsystem that may not filter key enter accurately.
  • Provides protections in opposition to the Intel® Processor Machine Check Error vulnerability (CVE-2018-12207). Note: the safety shouldn’t be enabled by default. Consult this text for guidance.
  • Provides protections in opposition to the Intel® Transactional Synchronization Extensions (Intel® TSX) Transaction Asynchronous Abort vulnerability (CVE-2019-11135). Note: the safety shouldn’t be enabled by default. Consult the Windows Client or Windows Server guides for steering.
  • Security updates

Other safety updates

  • Internet Explorer Cumulative Update: KB4525106
  • 2019-11 Security Monthly Quality Rollup for Windows Server 2008 (KB4525234)
  • 2019-11 Security Only Quality Update for Windows Server 2008 (KB4525239)
  • 2019-11 Security Monthly Quality Rollup for Windows Embedded eight Standard and Windows Server 2012 (KB4525246)
  • 2019-11 Security Only Quality Update for Windows Embedded eight Standard and Windows Server 2012 (KB4525253)
  • 2019-11 Cumulative Update for Windows Server, model 1909 and Windows 10 Version 1909 (KB4524570)
  • 2019-11 Cumulative Update for Windows 10 Version 1507 (KB4525232)
  • 2019-11 Cumulative Update for Windows Server 2016, and Windows 10 Version 1607 (KB4525236)
  • 2019-11 Cumulative Update for Windows 10 Version 1709 (KB4525241)
  • 2019-11 Cumulative Update for Windows 10 Version 1703 (KB4525245)
  • 2019-11 Servicing Stack Update for Windows Server 2016, and Windows 10 Version 1607 (KB4520724)
  • 2019-11 Servicing Stack Update for Windows 10 Version 1507 (KB4523200)
  • 2019-11 Servicing Stack Update for Windows 10 Version 1703 (KB4523201)
  • 2019-11 Servicing Stack Update for Windows 10 Version 1709 (KB4523202)
  • 2019-11 Servicing Stack Update for Windows 10 Version 1803, and Windows Server 2016 (KB4523203)
  • 2019-11 Servicing Stack Update for Windows 10 Version 1809, and Windows Server 2019 (KB4523204)
  • 2019-11 Servicing Stack Update for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2 (KB4523206)
  • 2019-11 Servicing Stack Update for Windows Embedded eight Standard and Windows Server 2012 (KB4523208)
  • 2019-11 Servicing Stack Update for Windows eight.1, Windows RT eight.1, and Windows Server 2012 R2 (KB4524445)
  • 2019-11 Servicing Stack Update for Windows Server, model 1909 and Windows 10 Version 1909 (KB4524569)
  • 2019-11 Servicing Stack Update for Windows Server 2008 (KB4526478)

Known Issues

Windows eight.1 and Windows Server 2012 R2

  • Certain operations could fail on Cluster Shared Volumes with the error code “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”

Windows 10 model 1803

  • Certain operations could fail on Cluster Shared Volumes with the error code “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”
  • May be unable to create a brand new native person in the course of the Out of Box Experience when utilizing Input Method Editor (IME) — Microsoft recommends setting the keyboard language to English throughout person creation or to make use of a Microsoft Account to finish the setup.

Windows 10 model 1809

  • Same as Windows 10 model 1803 plus
  • May obtain error “0x800f0982 – PSFX_E_MATCHING_COMPONENT_NOT_FOUND” with some Asian language packs put in.

Windows 10 model 1903

  • May be unable to create a brand new native person in the course of the Out of Box Experience when utilizing Input Method Editor (IME) — Microsoft recommends setting the keyboard language to English throughout person creation or to make use of a Microsoft Account to finish the setup.

Security advisories and updates

ADV190024 | Microsoft Guidance for Vulnerability in Trusted Platform Module (TPM)

Non-security associated updates

  • 2019-11 Dynamic Update for Windows 10 Version 1809 (KB4524761)
  • 2019-11 Dynamic Update for Windows 10 Version 1903 (KB4525043)
  • Windows Malicious Software Removal Tool – November 2019 (KB890830)

Microsoft Office Updates

You discover Office replace info here.

How to obtain and set up the November 2019 safety updates

windows updates security november 2019

Most house gadgets operating Windows are configured to obtain and set up safety updates when they’re launched. Users who do not need to look ahead to that to occur or have configured their techniques to replace manually solely could run handbook checks for updates or obtain the cumulative updates from Microsoft’s Update Catalog web site.

The following must be executed to examine for updates manually:

  1. Open the Start Menu of the Windows working system, kind Windows Update and choose the end result.
  2. Select examine for updates within the utility that opens. Updates could also be put in routinely when they’re discovered or supplied by Windows; this depends upon the working system and model that’s used, and replace settings.

Direct replace downloads

Windows 7 SP1 and Windows Server 2008 R2 SP

  • KB4525235 — 2019-11 Security Monthly Quality Rollup for Windows 7
  • KB4525233 — 2019-11 Security Only Quality Update for Windows 7

Windows eight.1 and Windows Server 2012 R2

  • KB4525243 — 2019-11 Security Monthly Quality Rollup for Windows eight.1
  • KB4525250 — 2019-11 Security Only Quality Update for Windows eight.1

Windows 10 (model 1803)

  • KB4525237 — 2019-11 Cumulative Update for Windows 10 Version 1803

Windows 10 (model 1809)

  • KB4523205  — 2019-11 Cumulative Update for Windows 10 Version 1809

Windows 10 (model 1903)

  • KB4524570  — 2019-11 Cumulative Update for Windows 10 Version 1903

Additional assets

Check Also

Share Clipboard content between desktop and mobile Chrome versions

Google continues its work on integrating cross-platform options within the firm’s Chrome browser. Users of …

Leave a Reply

Your email address will not be published. Required fields are marked *