Microsoft Windows Security Updates August 2019 overview

[Karlston]

Microsoft Windows Security Updates August 2019 overview

Today is the August 2019 Patch Day over at Microsoft. The company released security and non-security updates for all supported versions of Microsoft Windows and other company products today.

 

We publish detailed information for system administrators, organizations, and interested home users on each Microsoft Patch Day. These cover links information and links to patches, the list of known issues, links to resource pages, and other relevant information to make educated updating decisions.

 

You can check out the July 2019 Update overview if you missed it.

Microsoft Windows Security Updates August 2019

The following Excel spreadsheet lists updates that Microsoft released for its products in August 2019. You can download it with a click on the following link: Microsoft Windows Security Updates August 2019 List

Executive Summary

• Microsoft released security updates for all client and server versions of Microsoft Windows. All systems are affected by multiple critical security vulnerabilities.
• Microsoft released updates for other products including Internet Explorer, Microsoft Edge, Visual Studio, Active Directory, Microsoft Office, and Microsoft Dynamics.
• Microsoft fixed the MIT Kerberos known issue for affected versions of Windows.
• The Microsoft Update Catalog lists 90 entries.

Operating System Distribution

• Windows 7: 39 vulnerabilities: 11 rated critical and 28 rated important
  • CVE-2019-0720 | Hyper-V Remote Code Execution Vulnerability
  • CVE-2019-0736 | Windows DHCP Client Remote Code Execution Vulnerability
  • CVE-2019-1144 | Microsoft Graphics Remote Code Execution Vulnerability
  • CVE-2019-1145 | Microsoft Graphics Remote Code Execution Vulnerability
  • CVE-2019-1149 | Microsoft Graphics Remote Code Execution Vulnerability
  • CVE-2019-1150 | Microsoft Graphics Remote Code Execution Vulnerability
  • CVE-2019-1151 | Microsoft Graphics Remote Code Execution Vulnerability
  • CVE-2019-1152 | Microsoft Graphics Remote Code Execution Vulnerability
  • CVE-2019-1181 | Remote Desktop Services Remote Code Execution Vulnerabilit
  • CVE-2019-1182 | Remote Desktop Services Remote Code Execution Vulnerability
  • CVE-2019-1183 | Windows VBScript Engine Remote Code Execution Vulnerability
• Windows 8.1: 39 vulnerabilities: 11 rated critical and 28 rated important
  • same as Windows 7
• Windows 10 version 1709: 53 vulnerabilities: 13 critical and 40 important
  • CVE-2019-0720 | Hyper-V Remote Code Execution Vulnerability
  • CVE-2019-0736 | Windows DHCP Client Remote Code Execution Vulnerability
  • CVE-2019-0965 | Windows Hyper-V Remote Code Execution Vulnerability
  • CVE-2019-1144 | Microsoft Graphics Remote Code Execution Vulnerability
  • CVE-2019-1145 | Microsoft Graphics Remote Code Execution Vulnerability
  • CVE-2019-1149 | Microsoft Graphics Remote Code Execution Vulnerability
  • CVE-2019-1150 | Microsoft Graphics Remote Code Execution Vulnerability
  • CVE-2019-1151 | Microsoft Graphics Remote Code Execution Vulnerability
  • CVE-2019-1152 | Microsoft Graphics Remote Code Execution Vulnerability
  • CVE-2019-1181 | Remote Desktop Services Remote Code Execution Vulnerability
  • CVE-2019-1182 | Remote Desktop Services Remote Code Execution Vulnerability
  • CVE-2019-1183 | Windows VBScript Engine Remote Code Execution Vulnerability
  • CVE-2019-1188 | LNK Remote Code Execution Vulnerability
• Windows 10 version 1803: 61 vulnerabilities: 15 critical and 46 important
  • Same as Windows 10 version 1709 plus..
  • CVE-2019-1222 | Remote Desktop Services Remote Code Execution Vulnerability
  • CVE-2019-1226 | Remote Desktop Services Remote Code Execution Vulnerability
• Windows 10 version 1809: 64 vulnerabilities: 14 critical and 50 important
  • Same as Windows 10 version 1803 except CVE-2019-0736
• Windows 10 version 1903: 64 vulnerabilities: 13 critical and 51 important.
  • Same as Windows 10 version 1803 except CVE-2019-0720 and CVE-2019-0736

Windows Server products

• Windows Server 2008 R2: 39 vulnerabilities: 11 critical and 28 important.
  • CVE-2019-0720 | Hyper-V Remote Code Execution Vulnerability
  • CVE-2019-0736 | Windows DHCP Client Remote Code Execution Vulnerability
  • CVE-2019-1144 | Microsoft Graphics Remote Code Execution Vulnerability
  • CVE-2019-1145 | Microsoft Graphics Remote Code Execution Vulnerability
  • CVE-2019-1149 | Microsoft Graphics Remote Code Execution Vulnerability
  • CVE-2019-1150 | Microsoft Graphics Remote Code Execution Vulnerability
  • CVE-2019-1151 | Microsoft Graphics Remote Code Execution Vulnerability
  • CVE-2019-1152 | Microsoft Graphics Remote Code Execution Vulnerability
  • CVE-2019-1181 | Remote Desktop Services Remote Code Execution Vulnerabilit
  • CVE-2019-1182 | Remote Desktop Services Remote Code Execution Vulnerability
  • CVE-2019-1183 | Windows VBScript Engine Remote Code Execution Vulnerability
• Windows Server 2012 R2: 40 vulnerabilities: 11 critical and 29 important.
  • Same as Windows Server 2008 R2.
• Windows Server 2016: 50 vulnerabilities: 11 critical and 39 important
  • Same as Windows Server 2008 R2.
• Windows Server 2019: 65 vulnerabilities: 14 critical and 51 are important.
  • Same as Windows Server 2008 R2 plus
  • CVE-2019-1212 | Windows DHCP Server Denial of Service Vulnerability
  • CVE-2019-1226 | Remote Desktop Services Remote Code Execution Vulnerability

Other Microsoft Products

• Internet Explorer 11: 4 vulnerabilities: 2 critical, 2 important
  • CVE-2019-1133 | Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1194 | Scripting Engine Memory Corruption Vulnerability
• Microsoft Edge: 9 vulnerabilities: 7 critical, 2 important
  • CVE-2019-1131 | Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1139 | Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1140 | Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1141 | Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1195 | Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1196 | Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2019-1197 | Chakra Scripting Engine Memory Corruption Vulnerability

Windows Security Updates

Windows 7 SP1 and Windows Server 2008 R2 SP1

KB4512506 -- Monthly Rollup

KB4512486 -- Security-only update

• Security updates to Windows App Platform and Frameworks, Windows Wireless Networking, Windows Storage and Filesystems, Windows Virtualization, Windows Datacenter Networking, Microsoft Scripting Engine, the Microsoft JET Database Engine, Windows Input and Composition, Windows MSXML, Internet Explorer, and Windows Server.

Windows 8.1 and Windows Server 2012 R2

KB4512488 -- Monthly Rollup

KB4512489 -- Security-only update

• Security updates to Windows App Platform and Frameworks, Windows Input and Composition, Windows Wireless Networking, Windows Virtualization, Windows Datacenter Networking, Windows Storage and Filesystems, the Microsoft JET Database Engine, Microsoft Scripting Engine, Windows MSXML, Internet Explorer, and Windows Server.

Windows 10 version 1709

KB4512516 -- Cumulative Update

• Fixed the MIT Kerberos realms issue that prevented devices from starting up or caused them to continue restarting.
• Security updates to Windows Wireless Networking, Windows Storage and Filesystems, Windows App Platform and Frameworks, Microsoft Scripting Engine, Microsoft Edge, Windows Server, Windows MSXML, the Microsoft JET Database Engine, Windows Datacenter Networking, Windows Virtualization, Windows Cryptography, Windows Input and Composition, and Internet Explorer.

Windows 10 version 1803

KB4512501 -- Cumulative Update

• Fixed the MIT Kerberos realms issue that prevented devices from starting up or caused them to continue restarting.
• Security updates to Windows Wireless Networking, Windows Storage and Filesystems, Windows App Platform and Frameworks, Windows Datacenter Networking, Microsoft JET Database Engine, Windows Input and Composition, Windows MSXML, Internet Explorer, Windows Server, Microsoft Scripting Engine, Windows Cryptography, Windows Server, Windows Virtualization, Microsoft Edge, and Windows Shell.

Windows 10 version 1809 and Windows Server 1809

KB4511553 -- Cumulative Update

• Fixed the MIT Kerberos realms issue that prevented devices from starting up or caused them to continue restarting.
• Fixed an issue with an Windows Server Update Services console user interface exception that occurred when expanding the Computers directory.
• Security updates to Windows App Platform and Frameworks, Windows Wireless Networking, Windows Storage and Filesystems, Microsoft Scripting Engine, Internet Explorer, Windows Input and Composition, Windows Cryptography, Windows Virtualization, Windows Datacenter Networking, the Microsoft JET Database Engine, Windows Server, Windows Kernel, Windows MSXML, and Microsoft Edge.

Windows 10 version 1903 and Windows Server 1903

KB4512508 -- Cumulative Update

• Fixed the MIT Kerberos realms issue that prevented devices from starting up or caused them to continue restarting.
• Security updates to Windows App Platform and Frameworks, Windows Storage and Filesystems, Microsoft Scripting Engine, Windows Input and Composition, Windows Wireless Networking, Windows Cryptography, Windows Datacenter Networking, Windows Virtualization, Windows Storage and Filesystems, the Microsoft JET Database Engine, Windows Linux, Windows Kernel, Windows Server, Windows MSXML, Internet Explorer, and Microsoft Edge.

Other security updates

KB4511872 -- Cumulative security update for Internet Explorer: August 13, 2019

KB4474419 -- SHA-2 code signing support update for Windows Server 2008 R2, Windows 7, and Windows Server 2008: August 13, 2019

KB4512476 -- Windows Server 2008 SP2 Monthly Rollup

KB4512491 -- Windows Server 2008 SP2 Security-Only Update

KB4512518 -- Windows Server 2012 and Windows Embedded 8 Standard Monthly Rollup

KB4512482 -- Windows Server 2012 and Windows Embedded 8 Standard Security-Only Update

Known Issues

Windows 7 and Server 2008 R2

• Devices that use Preboot Execution Environment may fail to start.
• IA64 devices may fail to start. Solution: install KB4474419 .
• Systems with Symantec or Norton software installed may block or delete Windows updates which causes Windows to stop working or fail to start. Upgrade block is in place. Symantec support article for the issue.

Windows 8.1 and Server 2012 R2

• Certain operations on Cluster Shared Volumes fail.
• Devices that use Preboot Execution Environment may fail to start.

Windows 10 version 1709

• Same as Windows 8.1 and Server 2012 R2

Windows 10 version 1803

• Same as Windows 8.1 and Server 2012 R2, plus..
• Black screen on first startup after installing updates.

Windows 10 version 1809 and Server 1809

• Same as Windows 1803, plus..
• Issue on systems with Asian language packs installed.
• Applications and scripts that call the NetQueryDisplayInformation API or the WinNT provider equivalent may fail to return results after the first page of data.

Windows 10 version 1903 and Server 1903

• Windows Sandbox may fail to start.
• Devices that use Preboot Execution Environment may fail to start.

Security advisories and updates

ADV190014 | Microsoft Live Accounts Elevation of Privilege Vulnerability

Non-security related updates

KB4087513 -- Microsoft .NET Framework 4.8 Language Packs for Windows Embedded 8 Standard and Windows Server 2012

KB4087514 -- Microsoft .NET Framework 4.8 Language Packs for Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2

KB4087515 -- Microsoft .NET Framework 4.8 Language Packs for Windows Server 1903, Windows 10 Version 1903, Windows Server 2019, Windows 10 Version 1809, Windows 10 Version 1803, Windows Server 2016, Windows 10 Version 1709, Windows 10 Version 1703, Windows 10 Version 1607, Windows 10 Version 1511, and Windows 10 Version 1507

KB4087642 -- Microsoft .NET Framework 4.8 Language Packs for Windows Server 1903, Windows 10 Version 1903, Windows Server 2019, Windows 10 Version 1809, Windows 10 Version 1803, Windows Server 2016, Windows 10 Version 1709, Windows 10 Version 1703, Windows 10 Version 1607, Windows 10 Version 1511, and Windows 10 Version 1507

KB4486081 -- Microsoft .NET Framework 4.8 for Windows Embedded 8 Standard and Windows Server 2012

KB4486105 -- Microsoft .NET Framework 4.8 for Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2

KB4486129 -- Microsoft .NET Framework 4.8 for Windows Server 1703, Windows Server and Windows 10 Version 1607

KB4486153 -- Microsoft .NET Framework 4.8 for Windows Server 1903, Windows 10 Version 1903, Windows Server 2019, Windows 10 Version 1809, Windows 10 Version 1803, Windows Server 2016, Windows 10 Version 1709, Windows 10 Version 1703, Windows 10 Version 1607, Windows 10 Version 1511, and Windows 10 Version 1507

KB4497410 -- Microsoft .NET Framework 4.8 Language Packs for Windows 7 and Server 2008 R2

KB4503548 -- Microsoft .NET Framework 4.8 for Windows 7 and Windows Server 2008 R2

KB4511552 -- 2019-08 Dynamic Update for Windows 10 Version 1809

KB890830 -- Windows Malicious Software Removal Tool - August 2019

KB4505903 -- Windows 10 version 1903 and Windows Server version 1903

KB4505658 -- Windows 10 version 1809 and Windows Server 1809

KB4507466 -- Windows 10 version 1803

KB4507465 -- Windows 10 version 1709

KB4507467 -- Windows 10 version 1703

 

Microsoft Office Updates

You find Office update information here.

How to download and install the August 2019 security updates

 

Home computer systems running Windows are configured to download and install updates automatically. It is recommended to wait with the installation of updates or create backups of the system before updates are installed; updates may introduce issues of their own on systems including major issues that may prevent PCs from booting into Windows.

 

You may run manual checks for updates to speed up the installation of the new updates

1. Tap on the Windows-key, type Windows Update, and select the result.
2. A click on "check for updates" runs a manual check. Updates may be installed automatically or on user request depending on system settings.

Another option that you have is to download the updates manually from the Microsoft Update Catalog website.

Direct update downloads

Windows 7 SP1 and Windows Server 2008 R2 SP

• KB4512506 -- 2019-08 Security Monthly Quality Rollup for Windows 7
• KB4512486 -- 2019-08 Security Only Quality Update for Windows 7

Windows 8.1 and Windows Server 2012 R2

• KB4512488 -- 2019-08 Security Monthly Quality Rollup for Windows 8.1
• KB4512489 -- 2019-08 Security Only Quality Update for Windows 8.1

Windows 10 (version 1803)

• KB4512501 -- 2019-08 Cumulative Update for Windows 10 Version 1803

Windows 10 (version 1809)

• KB4511553 -- 2019-08 Cumulative Update for Windows 10 Version 1809

Windows 10 (version 1903)

• KB4512508 -- 2019-08 Cumulative Update for Windows 10 Version 1903

Additional resources

• August 2019 Security Updates release notes
• List of software updates for Microsoft products
• List of the latest Windows Updates and Services Packs
• Security Updates Guide
• Microsoft Update Catalog site
• Our in-depth Windows update guide
• How to install optional updates on Windows 10
• Windows 10 Update History
• Windows 8.1 Update History
• Windows 7 Update History

 

 

 

Source: Microsoft Windows Security Updates August 2019 overview (gHacks - Martin Brinkmann)