windows 11 and Windows 10 Tips and How to Guide

August 2022 : Microsoft Patch Tuesday Review

Today is the second Tuesday of August 2022. Time to check out the latest security updates from Microsoft.

Today (09/08/2022) is the second Tuesday of this month and as part of the Microsoft patch Tuesday, August 2022 the company has released a bunch of cumulative updates to resolve vulnerabilities in its operating systems and other products, like the Microsoft Office productivity suite, while also addressing a series of other bugs related to performance and usability. Let’s look at the highlights from this month’s Windows security Patch Tuesday:

Today’s patch comes with fixes for one actively exploited zero-day vulnerability and a total of 121 flaws. Where 17 flaws are classified as ‘Critical’ as they allow remote code execution.

As per the release notes, the August 2022 patch fixed 64 Elevation of Privilege security issues, 6 security Feature Bypass Vulnerabilities, 31 Remote Code Execution bugs, 12 Information Disclosure vulnerabilities, 7 Denial of Service Vulnerabilities and 1 Spoofing Vulnerability.

Note – The above counts do not include twenty vulnerabilities previously fixed in Microsoft Edge.

The following client versions of Windows have known issues: Windows 7, Windows 8.1, Windows 10 version 20H2, 21H1 and 21H2, Windows 11

  • Windows 7 (extended support only): 29 vulnerabilities: 9 critical and 20 important
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-35753
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-35767
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-35752
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-35745
    • Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability — CVE-2022-35744
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-34714
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-34702
    • Active Directory Domain Services Elevation of Privilege Vulnerability — CVE-2022-34691
    • Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability — CVE-2022-30133
  • Windows 8.1: 39 vulnerabilities: 10 critical and 29 important
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-35753
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-35767
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-35752
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-35745
    • Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability — CVE-2022-35744
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-34714
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-34702
    • Windows Hyper-V Remote Code Execution Vulnerability — CVE-2022-34696
    • Active Directory Domain Services Elevation of Privilege Vulnerability — CVE-2022-34691
    • Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability — CVE-2022-30133
  • Windows 10 version 20H2, 21H1 and 21H2: 58 vulnerabilities, 12 critical and 46 important
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-35766
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-35794
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-35767
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-35753
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-35752
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-35745
    • Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability — CVE-2022-35744
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-34714
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-34702
    • Windows Hyper-V Remote Code Execution Vulnerability — CVE-2022-34696
    • Active Directory Domain Services Elevation of Privilege Vulnerability — CVE-2022-34691
    • Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability — CVE-2022-30133
  • Windows 11:  54 vulnerabilities, 13 critical and 41 important
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-35766
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-35794
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-35767
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-35753
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-35752
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-35745
    • Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability — CVE-2022-35744
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-34714
    • Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability — CVE-2022-34702
    • Windows Hyper-V Remote Code Execution Vulnerability — CVE-2022-34696
    • Active Directory Domain Services Elevation of Privilege Vulnerability — CVE-2022-34691
    • Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability — CVE-2022-30133
    • SMB Client and Server Remote Code Execution Vulnerability — CVE-2022-35804

Recent updates from other companies

Other vendors who released updates in August 2022 include:

Windows security updates August 2022

The 09 August 2022 (Patch Tuesday) windows security updates are the following:

  • KB5016629 (OS Build 22000.856) for the latest windows 11 version 21H2
  • KB5016616 (OS Builds 19043.1889) for the latest windows 10 version 21H2
  • Windows 10 October 2019 Update (version 1809): KB5016623 (OS Build 17763.3287)
  • Windows 10 Anniversary Update (version 1607): KB5016622 (OS Build 14393.5291)
  • Windows 7 and server 2008 R2 Monthly Rollup: KB5016676 and Security-Only: KB5016679
  • Windows 8.1 and server 2012 R2 Monthly Rollup: KB5016681 and Security-only: KB5016683

All these updates only include minor patches and security fixes, rather than any new features.

Note: Windows 11 was released with a number of new features and improvements as a free upgrade for eligible Windows 10 devices. Here is how to upgrade to windows 11 for free.

Windows 7

Both monthly and security-only updates

  • Addresses an issue in which Speech and Network troubleshooters will not start.
  • Addresses an issue that might cause the Local Security Authority Server Service (LSASS) to leak tokens.

  • Enforces a hardening change that requires printers and scanners that use smart cards for authentication to have firmware that complies with section 3.2.1 of RFC 4556.

Windows 8.1

Both monthly and security-only update, bring same changelog as windows 7.

  • Addresses an issue in which Speech and Network troubleshooters will not start.

  • Addresses an issue that might cause the Local Security Authority Server Service (LSASS) to leak tokens.
  • Enforces a hardening change that requires printers and scanners that use smart cards for authentication to have firmware that complies with section 3.2.1 of RFC 4556.

Windows 10

  •  Addresses security issues for your Windows operating system.
  • Addresses an issue that affects the printing of files you submit to a printer.
  • Addresses a known issue that might prevent the Input Indicator and Language Bar from displaying in the notification area.

  • Also, include changes from the preview update changelog page.

Windows 11

  • Fixed an issue that could prevent the opening of the Start Menu.
  • Addresses an issue that causes File Explorer to stop working when you use the play and pause keyboard buttons on certain devices.

  • Addresses an issue that displays a blank window that you cannot close when you hover over the search icon on the taskbar.

  • Addresses an issue that prevents certain troubleshooting tools from opening.

Also, include changes from the preview build, you can read details here.

Microsoft Security update download

All these Windows 10 August 2022 Patch Tuesday updates are automatically downloaded and install via windows update. Or you force Windows update from settings, update & security check for updates to install latest patch updates immediately.

Windows update

Windows 11 KB5016629 (OS Build 22000.856) offline installer Direct Download Link 64-bit.

Windows 10 KB5016616 (For version 21H2 and 21H1) Direct Download Links: 64-bit and 32-bit (x86).

Windows 10 KB5016623 (for version 1809) Offline Download links

If you are Looking for Windows 10 version 21H2 ISO image click here.

Or Check How to Upgrade to Windows 10 version 21H2 Using the media creation tool

If you face any difficulty while installing these updates, Check Windows 10 Update troubleshooting guide to fix the windows 10 Cumulative update KB5016616 stuck downloading, failed to install with different errors, etc.

Note: New Windows Security Updates are available for Windows 7 and 8.1 as well, read the changelog here.

Also Read

Source microsoft
You might also like
Show Comments (2)

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More