Microsoft Windows Security Updates July 2019 overview

[Karlston]

Microsoft Windows Security Updates July 2019 overview

Microsoft released security updates and non-security updates for Microsoft Windows (client and server) and other company products on the July 9, 2019 Patch Day.

 

Our overview provides system administrators, organizations, and home users with detailed information on released patches, known issues, and other relevant information.

 

The overview starts with an executive summary; it is followed by the operating system distribution, and the list of security updates for all versions of Windows.

 

The list of known issues, security advisories released by Microsoft, and download information follow.

 

Here is the link to the June 2019 Patch Day in case you missed it.

Microsoft Windows Security Updates July 2019

Here is an Excel spreadsheet listing security updates that Microsoft released for its products in July 2019. You can download the archive with a click on the following link: Microsoft Windows Security Updates July 2019 Overview

Executive Summary

• Microsoft released security updates for all client and server versions of the Windows operating system.
• All versions of Windows are affected by (at least) 1 critical security issue.
• Security updates were also released for other company products such as Internet Explorer, Microsoft Edge, Microsoft Office, Azure DevOps, .NET Framework, Azure, SQL Server, ASP.NET, Visual Studio, and Microsoft Exchange Server
• The Microsoft Update Catalog lists 212 entries.

Operating System Distribution

• Windows 7: 21 vulnerabilities: 1 rated critical and 20 rated important
  • CVE-2019-1102 | GDI+ Remote Code Execution Vulnerability
• Windows 8.1: 19 vulnerabilities: 1 rated critical and 18 rated important
  • CVE-2019-1102 | GDI+ Remote Code Execution Vulnerability
• Windows 10 version 1703: 24 vulnerabilities: 1 critical and 23 important
  • CVE-2019-1102 | GDI+ Remote Code Execution Vulnerability
• Windows 10 version 1709: 36 vulnerabilities: 1 critical and 35 important
  • CVE-2019-1102 | GDI+ Remote Code Execution Vulnerability
• Windows 10 version 1803: 37 vulnerabilities: 1 critical and 36 important
  • CVE-2019-1102 | GDI+ Remote Code Execution Vulnerability
• Windows 10 version 1809: 36 vulnerabilities: 1 critical and 35 important
  • CVE-2019-1102 | GDI+ Remote Code Execution Vulnerability
• Windows 10 version 1903: 36 vulnerabilities: 1 critical and 35 important.
  • CVE-2019-1102 | GDI+ Remote Code Execution Vulnerability

Windows Server products

• Windows Server 2008 R2: 21 vulnerabilities: 1 critical and 20 important.
  • CVE-2019-1102 | GDI+ Remote Code Execution Vulnerability
• Windows Server 2012 R2: 22 vulnerabilities: 2 critical and 20 important.
  • CVE-2019-0785 | Windows DHCP Server Remote Code Execution Vulnerability
  • CVE-2019-1102 | GDI+ Remote Code Execution Vulnerability
• Windows Server 2016: 27 vulnerabilities: 2 critical and 25 important
  • CVE-2019-0785 | Windows DHCP Server Remote Code Execution Vulnerability
  • CVE-2019-1102 | GDI+ Remote Code Execution Vulnerability
• Windows Server 2019: 40 vulnerabilities: 2 critical and 38 are important.
  • CVE-2019-0785 | Windows DHCP Server Remote Code Execution Vulnerability
  • CVE-2019-1102 | GDI+ Remote Code Execution Vulnerability

Other Microsoft Products

• Internet Explorer 11: 6 vulnerabilities: 6 critical
  • CVE-2019-1001 | Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1004 | Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1056 | Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1059 | Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1063 | Internet Explorer Memory Corruption Vulnerability
  • CVE-2019-1104 | Microsoft Browser Memory Corruption Vulnerability
• Microsoft Edge: 7 vulnerabilities: 7 critical
  • CVE-2019-1001 | Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1062 | Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1092 | Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1103 | Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1104 | Microsoft Browser Memory Corruption Vulnerability
  • CVE-2019-1106 | Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1107 | Chakra Scripting Engine Memory Corruption Vulnerability

Windows Security Updates

Windows 7 Service Pack 1 and Windows Server 2008 R2

KB4507449 -- Monthly Rollup

• Same as KB4507456.

KB4507456 -- Security-only Update

• Security updates to Windows Server, Microsoft Graphics Component, Windows Storage and Filesystems, Windows Shell, Windows Input and Composition, and Windows Kernel.

Windows 8.1 and Windows Server 2012 R2

KB4507448 -- Monthly Rollup

• Fixed a Bitlocker issue that caused Bitlocker to go into recovery mode.
• Same as KB4507457.

KB4507457 -- Security-only Update

• Security updates to Windows Wireless Networking, Windows Server, Windows Storage and Filesystems, Microsoft Graphics Component, Windows Input and Composition, Windows Kernel, and Windows App Platform and Frameworks

Windows 10 version 1803

KB4507435

• Fixed a Bitlocker issue that caused the encryption software to go into recover mode.
• Security updates to Windows Wireless Networking, Windows Server, Microsoft Scripting Engine, Windows Storage and Filesystems, Microsoft Graphics Component, Windows Kernel, Internet Explorer, Windows Input and Composition, Windows Virtualization, Windows App Platform and Frameworks, Microsoft Edge, Windows Cryptography, and Windows Fundamentals.

Windows 10 version 1809 and Windows Server 2019

KB4507469

• Fixed a Bitlocker issue that caused the encryption software to go into recover mode.
• Fixed an issue that caused the camera to become unresponsive.
• Security updates to Windows Server, Microsoft Scripting Engine, Microsoft Graphics Component, Internet Explorer, Windows Input and Composition, Windows Virtualization, Windows App Platform and Frameworks, Windows Kernel, Microsoft Edge, Windows Cryptography, and Windows Fundamentals.

Windows 10 version 1903

KB4507453

• Fixes of the preview release plus security updates.

Other security updates

Known Issues

Windows 7 Service Pack 1 and Windows Server 2008 R2

• Issue with McAfee Enterprise software that causes slow startup or the system to become unresponsive.

Windows 8.1 and Windows Server 2012 R2

• Still the long standing issue with Cluster Shared Volumes that throws the error "STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)".
• Issue with McAfee Enterprise software that causes slow startup or the system to become unresponsive.
• Windows-Eyes screen reader may may throw errors on launch or during use, and some features may not work properly.

Windows 10 version 1803

• Still the long standing issue with Cluster Shared Volumes that throws the error "STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)".
• Black screen during first logon after installing updates.
• Issue with Window-Eyes screen reader app that may not work correctly.

Windows 10 version 1809 and Server 2019

• Long standing issue with Cluster Shared Volumes.
• Error "0x800f0982 - PSFX_E_MATCHING_COMPONENT_NOT_FOUND" on devices with "some Asian language packs installed".
• Black screen during first logon after installing updates.
• Issue with Window-Eyes screen reader app that may not work correctly.

Windows 10 version 1903

• Windows Sandbox may fail to start.
• The Remote Access Connection Manager (RASMAN) service may stop working and you may receive the error “0xc0000005” on devices where the diagnostic data level is manually configured to the non-default setting of 0.

Security advisories and updates

ADV190015 | June 2019 Adobe Flash Security Update

ADV190020 | Linux Kernel TCP SACK Denial of Service Vulnerability

ADV990001 | Latest Servicing Stack Updates

Non-security related updates

KB4501375 --Windows 10 version 1903 and Windows Server version 1903

• Several fixes, see our coverage of KB4501375 here.

KB4509479 -- Windows 10 version 1809 and Windows Server 2019

• Fixed a Storage Area Network (SAN) connection issue.

KB4501371 --Windows 10 version 1809 and Windows Server 2019

• Several fixes, see our coverage of KB4501371 here.

KB4509478 -- Windows 10 version 1803

• Same as KB4509479 for Windows 10 version 1809.

KB4503288 -- Windows 10 version 1803

• Several fixes, see our coverage of KB4503288 here.

KB4509477 -- Windows 10 version 1709

• Same as KB4509479 for Windows 10 version 1809.

KB4503281 -- Windows 10 version 1709

Microsoft Office Updates

You find Office update information here.

How to download and install the July 2019 security updates

 

The July 2019 security updates are distributed through Windows Update, WSUS, and other means. Most client-based Windows systems are configured to check for updates automatically.

 

Windows administrators who don't want to wait may run manual checks for updates. It is generally not recommended as bugs may be discovered after the general availability. Backups are recommended if the installation of updates can't be delayed.

 

Do the following to run a manual check for updates:

1. Tap on the Windows-key, type Windows Update, and select the result.
2. A click on "check for updates" runs a manual check. Updates may be installed automatically or on user request depending on system settings.

Direct update downloads

Windows 7 SP1 and Windows Server 2008 R2 SP

• KB4507449 -- 2019-07 Security Monthly Quality Rollup for Windows 7
• KB4507456 -- 2019-07 Security Only Quality Update for Windows 7

Windows 8.1 and Windows Server 2012 R2

• KB4507448 -- 2019-07 Security Monthly Quality Rollup for Windows 8.1
• KB4507457 -- 2019-07 Security Only Quality Update for Windows 8.1

Windows 10 (version 1803)

• KB4507435 -- 2019-07 Cumulative Update for Windows 10 Version 1803

Windows 10 (version 1809)

• KB4507469 -- 2019-07 Cumulative Update for Windows 10 Version 1809

Windows 10 (version 1903)

• KB4501375 -- 2019-07 Cumulative Update for Windows 10 Version 1903

Additional resources

• July 2019 Security Updates release notes
• List of software updates for Microsoft products
• List of the latest Windows Updates and Services Packs
• Security Updates Guide
• Microsoft Update Catalog site
• Our in-depth Windows update guide
• How to install optional updates on Windows 10
• Windows 10 Update History
• Windows 8.1 Update History
• Windows 7 Update History

 

 

 

Source: Microsoft Windows Security Updates July 2019 overview (gHacks - Martin Brinkmann)