Microsoft Updates June 2021

It’s time to plan and prepare for the coming months security updates from Microsoft!

If you manage any number of Endpoints, then this is a must read.

Severity and distribution of affected systems

%

Windows Updates

%

ESU Updates

Executive Summary

Windows 10 version 21H1 was released last month. It is rolled out gradually to systems running Windows 10 version 2004 and 20H2 currently.

All client and server versions of Windows are affected by at least 1 critical security vulnerability.

Microsoft released updates for other products including Microsoft Office, Microsoft Intune, 3D Viewer, .Net Core & Visual Studio, Windows Defender, Paint 3D and Windows Installer.

 

Operating System Distribution


Windows Clients


Windows 7 (extended support only): 14 vulnerabilities: 2 critical and 12 important

  1. Windows MSHTML Platform Remote Code Execution Vulnerability – CVE-2021-33742
  2. Scripting Engine Memory Corruption Vulnerability — CVE-2021-31959

Windows 8.1: 19 vulnerabilities: 2 critical and 12 important

  1. same critical as Windows 7

Windows 10 version 1903 and 1909: 24 vulnerabilities: 2 critical and 22 important

  1. same critical as Windows 7

Windows 10 version 2004, 20H2 and 21H1 : 25 vulnerabilities, 2 critical and 23 important

  1. same critical as Windows 7

 

Windows Servers

Windows Server 2008 R2 (extended support only): 12 vulnerabilities: 1 critical and 11 important

  1. Windows MSHTML Platform Remote Code Execution Vulnerability — CVE-2021-33742

Windows Server 2012 R2: 19 vulnerabilities: 2 critical and 17 important

  1. Scripting Engine Memory Corruption Vulnerability — CVE-2021-31959
  2. Windows MSHTML Platform Remote Code Execution Vulnerability — CVE-2021-33742

Windows Server 2016: 20 vulnerabilities: 2 critical and 18 important.

  1. same as Windows Server 2012 R2

Windows Server 2019: 24 vulnerabilities: 2 critical and 22 important

  1. same as Windows Server 2012 R2


Windows Security Updates

Windows 7 SP1 and Windows Server 2008 R2

§  Monthly Rollup:  KB5003667

§  Security-Only: KB5003694 

§  Fixes an issue in the SMB (Server Message Block) protocol which caused frequent crashes with stop error code 0xA on Windows Server 2008 R2 SP1 devices. (Security-only)

Windows 8.1 and Windows Server 2012 R2

§  Monthly Rollup: KB5003671

§  Security-only: KB5003681

Windows 10 version 1909

§  Support Page:  KB5003637

§  Addresses an issue with an inconsistent shutdown during Windows Update that damages the Windows Management Instrumentation (WMI) repository.

§  Addresses an issue that might prevent you from signing in to some Microsoft 365 desktop client apps after installing the May 11, 2021 or later update and restarting your device

§  Security updates

Windows 10 version 2004, 20H2 and 21H1

§  Support Page: KB5003173 

Other security updates

KB5003165: Cumulative security update for Internet Explorer: May 11, 2021

 

 

Known Issues

Windows 7 SP1 and Server 2008 R2

§  Connections to SQL Server 2005 may fail after installation of the update. Error “Cannot connect to <Server name>” may be displayed.

§  Microsoft notes that the behaviour is expected and suggests that customers upgrade to a supported version of SQL server.

§  Installed update may be reverted.

§  Expected behaviour if the machine is not supported for ESU.

§  Certain operations may fail on Cluster Shared Volumes.

§  Either perform the operation from a process with administrator privileges, or from a node that does not have CSV ownership.

Windows 8.1 and Server 2012 R2

§  Certain operations may fail on Cluster Shared Volumes.

§  Either perform the operation from a process with administrator privileges, or from a node that does not have CSV ownership.

Windows 10 version 1909

§  System and user certificates may be lost when the device is updated to a newer version of Windows 10.

§  Microsoft suggests to go back to the previous version of Windows, but it is only available up to 30 days after installation of the update.

§   

Windows 10 version 2004, 20H2 and 21H1

§  Same system and user certificates issue as version 1909.

§  Issue with the Microsoft Japanese Input Method Editor and Japanese Kanji / Furigana characters.

§  No workaround at the time of writing. Microsoft is working on a resolution.

§  Issues with the performance of games after installing recent updates.

§  Is resolved according to Microsoft except for Enterprise-managed devices.

§  Issue with Microsoft Edge Legacy being removed but Microsoft Edge (new) not being installed if W10 is installed using custom offline media or ISO images.

§  Workaround provided on the support page.

 

Security advisories and updates

ADV 990001 — Latest Servicing Stack Updates

 

Additional resources

 

§  June 2021 Security Updates release notes

§  List of software updates for Microsoft products

§  List of the latest Windows Updates and Services Packs

§  Security Updates Guide

§  Microsoft Update Catalog site

§  Our in-depth Windows update guide

§  How to install optional updates on Windows 10

§  Windows 10 Update History

§  Windows 8.1 Update History

§  Windows 7 Update History

Data courtesy of : https://patchmanagement.org/

Download June 2021 PDF Patch List

WordPress Appliance - Powered by TurnKey Linux