Content Release: Patches for Windows - June 2023 Security Updates

Release Announcements Patch (Release Announcements)
1

Content in the Patches for Windows site has been released.

New:

  • MAJOR [ID:502757401] MS23-JUN: Servicing Stack Update for Windows Server 2012 R2 - Windows Server 2012 R2 - KB5027574 (x64)
  • MAJOR [ID:500736437] MS23-JUN: Security Update for Microsoft Visual Studio 2022 version 17.6.3 update - KB5007364
  • MAJOR [ID:500736427] MS23-JUN: Security Update for Microsoft Visual Studio 2022 version 17.4.8 update - KB5007364
  • MAJOR [ID:500736439] MS23-JUN: Security Update for Microsoft Visual Studio 2022 version 17.2.16 update - KB5007364
  • MAJOR [ID:500736417] MS23-JUN: Security Update for Microsoft Visual Studio 2022 version 17.0.22 update - KB5007364
  • MAJOR [ID:457633903] MS23-JUN: Security Update for Microsoft Visual Studio 2019 version 16.11.27 update - KB4576339
  • MAJOR [ID:500241601] MS23-JUN: Security Update for Microsoft SharePoint Server Subscription Edition - Microsoft SharePoint Server Subscription Edition - KB5002416 (x64)
  • MAJOR [ID:500240301] MS23-JUN: Security Update for Microsoft SharePoint Server 2019 Language Pack - SharePoint Server 2019 - KB5002403 (x64)
  • MAJOR [ID:500240201] MS23-JUN: Security Update for Microsoft SharePoint Server 2019 Core - SharePoint Server 2019 - KB5002402 (x64)
  • MAJOR [ID:500240401] MS23-JUN: Security Update for Microsoft SharePoint Enterprise Server 2016 - SharePoint Server 2016 - KB5002404 (x64)
  • MAJOR [ID:500238701] MS23-JUN: Security Update for Microsoft Outlook 2016 - Outlook 2016 - KB5002387 (x64)
  • MAJOR [ID:500238703] MS23-JUN: Security Update for Microsoft Outlook 2016 - Outlook 2016 - KB5002387
  • MAJOR [ID:500238203] MS23-JUN: Security Update for Microsoft Outlook 2013 - Outlook 2013 SP1 - KB5002382 (x64)
  • MAJOR [ID:500238201] MS23-JUN: Security Update for Microsoft Outlook 2013 - Outlook 2013 SP1 - KB5002382
  • MAJOR [ID:500240101] MS23-JUN: Security Update for Microsoft Office Online Server - Office Online Server - KB5002401 (x64)
  • MAJOR [ID:500240503] MS23-JUN: Security Update for Microsoft Excel 2016 - Excel 2016 - KB5002405 (x64)
  • MAJOR [ID:500240501] MS23-JUN: Security Update for Microsoft Excel 2016 - Excel 2016 - KB5002405
  • MAJOR [ID:500241401] MS23-JUN: Security Update for Microsoft Excel 2013 - Excel 2013 SP1 - KB5002414 (x64)
  • MAJOR [ID:500241403] MS23-JUN: Security Update for Microsoft Excel 2013 - Excel 2013 SP1 - KB5002414
  • MAJOR [ID:502626103] MS23-JUN: Security Update For Exchange Server 2019 CU13 - Exchange Server 2019 CU13 - KB5026261 (x64)
  • MAJOR [ID:502626101] MS23-JUN: Security Update For Exchange Server 2019 CU12 - Exchange Server 2019 CU12 - KB5026261 (x64)
  • MAJOR [ID:502590301] MS23-JUN: Security Update For Exchange Server 2016 CU23 - Exchange Server 2016 CU23 - KB5025903 (x64)
  • MAJOR [ID:502753301] MS23-JUN: Security Only Update for .NET Framework 4.8 for Windows Server 2012 R2 - Windows Server 2012 R2 - .NET Framework 4.8 - KB5027109 (x64)
  • MAJOR [ID:502753205] MS23-JUN: Security Only Update for .NET Framework 4.8 for Windows Server 2012 - Windows Server 2012 - .NET Framework 4.8 - KB5027108 (x64)
  • MAJOR [ID:502753303] MS23-JUN: Security Only Update for .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Server 2012 R2 - Windows Server 2012 R2 - .NET Framework 4.6.2/4.7/4.7.1/4.7.2 - KB5027112 (x64)
  • MAJOR [ID:502753207] MS23-JUN: Security Only Update for .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Server 2012 - Windows Server 2012 - .NET Framework 4.6.2/4.7/4.7.1/4.7.2 - KB5027111 (x64)
  • MAJOR [ID:502753305] MS23-JUN: Security Only Update for .NET Framework 3.5 for Windows Server 2012 R2 - Windows Server 2012 R2 - .NET Framework 3.5 - KB5027116 (x64)
  • MAJOR [ID:502753203] MS23-JUN: Security Only Update for .NET Framework 3.5 for Windows Server 2012 - Windows Server 2012 - .NET Framework 3.5 - KB5027107 (x64)
  • MAJOR [ID:502728201] MS23-JUN: Security Only Quality Update - Security Only - Windows Server 2012 R2 - KB5027282 (x64)
  • MAJOR [ID:502728101] MS23-JUN: Security Only Quality Update - Security Only - Windows Server 2012 - KB5027281 (x64)
  • MAJOR [ID:502727103] MS23-JUN: Security Monthly Quality Rollup - Monthly Rollup - Windows Server 2012 R2 - KB5027271 (x64)
  • MAJOR [ID:502728301] MS23-JUN: Security Monthly Quality Rollup - Monthly Rollup - Windows Server 2012 - KB5027283 (x64)
  • MAJOR [ID:502754201] MS23-JUN: Security and Quality Rollup for .NET Framework 4.8 for Windows Server 2012 R2 - Windows Server 2012 R2 - .NET Framework 4.8 - KB5027128 (x64)
  • MAJOR [ID:502754103] MS23-JUN: Security and Quality Rollup for .NET Framework 4.8 for Windows Server 2012 - Windows Server 2012 - .NET Framework 4.8 - KB5027126 (x64)
  • MAJOR [ID:502754203] MS23-JUN: Security and Quality Rollup for .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Server 2012 R2 - Windows Server 2012 R2 - .NET Framework 4.6.2/4.7/4.7.1/4.7.2 - KB5027133 (x64)
  • MAJOR [ID:502754105] MS23-JUN: Security and Quality Rollup for .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Server 2012 - Windows Server 2012 - .NET Framework 4.6.2/4.7/4.7.1/4.7.2 - KB5027132 (x64)
  • MAJOR [ID:502754205] MS23-JUN: Security and Quality Rollup for .NET Framework 3.5 for Windows Server 2012 R2 - Windows Server 2012 R2 - .NET Framework 3.5 - KB5027141 (x64)
  • MAJOR [ID:502754107] MS23-JUN: Security and Quality Rollup for .NET Framework 3.5 for Windows Server 2012 - Windows Server 2012 - .NET Framework 3.5 - KB5027138 (x64)
  • MAJOR [ID:502722205] MS23-JUN: Cumulative Update for Windows Server 2019 - Windows Server 2019 - KB5027222 (x64)
  • MAJOR [ID:502721905] MS23-JUN: Cumulative Update for Windows Server 2016 - Windows Server 2016 - KB5027219 (x64)
  • MAJOR [ID:502723101] MS23-JUN: Cumulative Update for Windows 11 Version 22H2 - Windows 11 - KB5027231 (x64)
  • MAJOR [ID:502722301] MS23-JUN: Cumulative Update for Windows 11 - Windows 11 - KB5027223 (x64)
  • MAJOR [ID:502721507] MS23-JUN: Cumulative Update for Windows 10 Version 22H2 - Windows 10 Version 22H2 - KB5027215 (x64)
  • MAJOR [ID:502721503] MS23-JUN: Cumulative Update for Windows 10 Version 22H2 - Windows 10 Version 22H2 - KB5027215
  • MAJOR [ID:502721505] MS23-JUN: Cumulative Update for Windows 10 Version 21H2 - Windows 10 Version 21H2 - KB5027215 (x64)
  • MAJOR [ID:502721501] MS23-JUN: Cumulative Update for Windows 10 Version 21H2 - Windows 10 Version 21H2 - KB5027215
  • MAJOR [ID:502722203] MS23-JUN: Cumulative Update for Windows 10 Version 1809 - Windows 10 Version 1809 LTSC - KB5027222 (x64)
  • MAJOR [ID:502722201] MS23-JUN: Cumulative Update for Windows 10 Version 1809 - Windows 10 Version 1809 LTSC - KB5027222
  • MAJOR [ID:502721903] MS23-JUN: Cumulative Update for Windows 10 Version 1607 - Windows 10 Version 1607 LTSB - KB5027219 (x64)
  • MAJOR [ID:502721901] MS23-JUN: Cumulative Update for Windows 10 Version 1607 - Windows 10 Version 1607 LTSB - KB5027219
  • MAJOR [ID:502723001] MS23-JUN: Cumulative Update for Windows 10 Version 1507 - Windows 10 Version 1507 LTSB - KB5027230 (x64)
  • MAJOR [ID:502723003] MS23-JUN: Cumulative Update for Windows 10 Version 1507 - Windows 10 Version 1507 LTSB - KB5027230
  • MAJOR [ID:502722501] MS23-JUN: Cumulative Update for Microsoft server operating system version 21H2 - Windows Server 2022 - KB5027225 (x64)
  • MAJOR [ID:502712303] MS23-JUN: Cumulative Update for .NET Framework 4.8 for Windows Server 2016 for x64 - Windows Server 2016 - .NET Framework 4.8 - KB5027123 (x64)
  • MAJOR [ID:502712301] MS23-JUN: Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1607 for x64 - Windows 10 Version 1607 - .NET Framework 4.8 - KB5027123 (x64)
  • MAJOR [ID:502712305] MS23-JUN: Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1607 - Windows 10 Version 1607 - .NET Framework 4.8 - KB5027123
  • MAJOR [ID:502754401] MS23-JUN: Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows Server 2022 - Windows Server 2022 - .NET Framework 3.5/4.8.1 - KB5027121 (x64)
  • MAJOR [ID:502711901] MS23-JUN: Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows 11, version 22H2 - Windows 11 - .NET Framework 3.5/4.8.1 - KB5027119 (x64)
  • MAJOR [ID:502753903] MS23-JUN: Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows 11 - Windows 11 - .NET Framework 3.5/4.8.1 - KB5027118 (x64)
  • MAJOR [ID:502753801] MS23-JUN: Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows 10 Version 22H2 - Windows 10 Version 22H2 - .NET Framework 3.5/4.8.1 - KB5027117 (x64)
  • MAJOR [ID:502753803] MS23-JUN: Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows 10 Version 22H2 - Windows 10 Version 22H2 - .NET Framework 3.5/4.8.1 - KB5027117
  • MAJOR [ID:502753701] MS23-JUN: Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows 10 Version 21H2 - Windows 10 Version 21H2 - .NET Framework 3.5/4.8.1 - KB5027117 (x64)
  • MAJOR [ID:502753703] MS23-JUN: Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows 10 Version 21H2 - Windows 10 Version 21H2 - .NET Framework 3.5/4.8.1 - KB5027117
  • MAJOR [ID:502754403] MS23-JUN: Cumulative Update for .NET Framework 3.5 and 4.8 for Windows Server 2022 - Windows Server 2022 - .NET Framework 3.5/4.8 - KB5027127 (x64)
  • MAJOR [ID:502753603] MS23-JUN: Cumulative Update for .NET Framework 3.5 and 4.8 for Windows Server 2019 - Windows Server 2019 - .NET Framework 3.5/4.8 - KB5027124 (x64)
  • MAJOR [ID:502753901] MS23-JUN: Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 11 - Windows 11 - .NET Framework 3.5/4.8 - KB5027125 (x64)
  • MAJOR [ID:502753805] MS23-JUN: Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 22H2 - Windows 10 Version 22H2 - .NET Framework 3.5/4.8 - KB5027122 (x64)
  • MAJOR [ID:502753807] MS23-JUN: Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 22H2 - Windows 10 Version 22H2 - .NET Framework 3.5/4.8 - KB5027122
  • MAJOR [ID:502753705] MS23-JUN: Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 21H2 - Windows 10 Version 21H2 - .NET Framework 3.5/4.8 - KB5027122 (x64)
  • MAJOR [ID:502753707] MS23-JUN: Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 21H2 - Windows 10 Version 21H2 - .NET Framework 3.5/4.8 - KB5027122
  • MAJOR [ID:502753601] MS23-JUN: Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 1809 - Windows 10 Version 1809 LTSC - KB5027124 (x64)
  • MAJOR [ID:502753605] MS23-JUN: Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 1809 - Windows 10 Version 1809 LTSC - KB5027124
  • MAJOR [ID:502753607] MS23-JUN: Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows Server 2019 - Windows Server 2019 - .NET Framework 3.5/4.7.2 - KB5027131 (x64)
  • MAJOR [ID:502753609] MS23-JUN: Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows 10 Version 1809 - Windows 10 Version 1809 LTSC - .NET Framework 3.5/4.7.2 - KB5027131 (x64)
  • MAJOR [ID:502753611] MS23-JUN: Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows 10 Version 1809 - Windows 10 Version 1809 LTSC - .NET Framework 3.5/4.7.2 - KB5027131
  • MAJOR [ID:500234307] 5002343: Update for Microsoft Visio 2013 - Visio 2013 SP1 - KB5002343
  • MAJOR [ID:500234305] 5002343: Update for Microsoft Visio 2013 - Visio 2013 SP1 - KB5002343 (x64)

Superseded:

  • MAJOR [ID:502644601] 5026446: Cumulative Update Preview for Windows 11 Version 22H2 - Windows 11 - KB5026446 (x64) (Superseded)
  • MAJOR [ID:502643601] 5026436: Cumulative Update Preview for Windows 11 - Windows 11 - KB5026436 (x64) (Superseded)
  • MAJOR [ID:502643501] 5026435: Cumulative Update Preview for Windows 10 Version 22H2 - Windows 10 Version 22H2 - KB5026435 (x64) (Superseded)
  • MAJOR [ID:502643503] 5026435: Cumulative Update Preview for Windows 10 Version 22H2 - Windows 10 Version 22H2 - KB5026435 (Superseded)
  • MAJOR [ID:502429607] MS23-MAR: Security Update For Exchange Server 2019 CU12 - Exchange Server 2019 CU12 - KB5024296 (x64) (Superseded)
  • MAJOR [ID:502429603] MS23-MAR: Security Update For Exchange Server 2016 CU23 - Exchange Server 2016 CU23 - KB5024296 (x64) (Superseded)
  • MAJOR [ID:500226501] MS23-MAR: Security Update for Microsoft Outlook 2013 - Outlook 2013 SP1 - KB5002265 (x64) (Superseded)
  • MAJOR [ID:500225401] MS23-MAR: Security Update for Microsoft Outlook 2016 - Outlook 2016 - KB5002254 (x64) (Superseded)
  • MAJOR [ID:500225403] MS23-MAR: Security Update for Microsoft Outlook 2016 - Outlook 2016 - KB5002254 (Superseded)
  • MAJOR [ID:500226503] MS23-MAR: Security Update for Microsoft Outlook 2013 - Outlook 2013 SP1 - KB5002265 (Superseded)
  • MAJOR [ID:500233001] MS23-FEB: Security Update for Microsoft SharePoint Server 2019 Language Pack - SharePoint Server 2019 - KB5002330 (x64) (Superseded)
  • MAJOR [ID:500238603] MS23-MAY: Security Update for Microsoft Excel 2016 - Excel 2016 - KB5002386 (x64) (Superseded)
  • MAJOR [ID:500238401] MS23-MAY: Security Update for Microsoft Excel 2013 - Excel 2013 SP1 - KB5002384 (x64) (Superseded)
  • MAJOR [ID:500238601] MS23-MAY: Security Update for Microsoft Excel 2016 - Excel 2016 - KB5002386 (Superseded)
  • MAJOR [ID:500238403] MS23-MAY: Security Update for Microsoft Excel 2013 - Excel 2013 SP1 - KB5002384 (Superseded)
  • MAJOR [ID:500237201] MS23-MAY: Security Update for Microsoft Office Online Server - Office Online Server - KB5002372 (x64) (Superseded)
  • MAJOR [ID:500238901] MS23-MAY: Security Update for Microsoft SharePoint Server 2019 Core - SharePoint Server 2019 - KB5002389 (x64) (Superseded)
  • MAJOR [ID:502636203] MS23-MAY: Cumulative Update for Windows 10 Version 1809 - Windows 10 Version 1809 LTSC - KB5026362 (x64) (Superseded)
  • MAJOR [ID:502636107] MS23-MAY: Cumulative Update for Windows 10 Version 21H2 - Windows 10 Version 21H2 - KB5026361 (Superseded)
  • MAJOR [ID:502636105] MS23-MAY: Cumulative Update for Windows 10 Version 21H2 - Windows 10 Version 21H2 - KB5026361 (x64) (Superseded)
  • MAJOR [ID:500239001] MS23-MAY: Security Update for Microsoft SharePoint Server Subscription Edition - Microsoft SharePoint Server Subscription Edition - KB5002390 (x64) (Superseded)
  • MAJOR [ID:502636305] MS23-MAY: Cumulative Update for Windows 10 Version 1607 - Windows 10 Version 1607 LTSB - KB5026363 (Superseded)
  • MAJOR [ID:502641901] MS23-MAY: Security Monthly Quality Rollup - Monthly Rollup - Windows Server 2012 - KB5026419 (x64) (Superseded)
  • MAJOR [ID:502641501] MS23-MAY: Security Monthly Quality Rollup - Monthly Rollup - Windows Server 2012 R2 - KB5026415 (x64) (Superseded)
  • MAJOR [ID:502638203] MS23-MAY: Cumulative Update for Windows 10 Version 1507 - Windows 10 Version 1507 LTSB - KB5026382 (Superseded)
  • MAJOR [ID:502636201] MS23-MAY: Cumulative Update for Windows Server 2019 - Windows Server 2019 - KB5026362 (x64) (Superseded)
  • MAJOR [ID:502636801] MS23-MAY: Cumulative Update for Windows 11 - Windows 11 - KB5026368 (x64) (Superseded)
  • MAJOR [ID:502637001] MS23-MAY: Cumulative Update for Microsoft server operating system version 21H2 - Windows Server 2022 - KB5026370 (x64) (Superseded)
  • MAJOR [ID:502636103] MS23-MAY: Cumulative Update for Windows 10 Version 22H2 - Windows 10 Version 22H2 - KB5026361 (x64) (Superseded)
  • MAJOR [ID:502636109] MS23-MAY: Cumulative Update for Windows 10 Version 22H2 - Windows 10 Version 22H2 - KB5026361 (Superseded)
  • MAJOR [ID:502637201] MS23-MAY: Cumulative Update for Windows 11 Version 22H2 - Windows 11 - KB5026372 (x64) (Superseded)
  • MAJOR [ID:502636301] MS23-MAY: Cumulative Update for Windows Server 2016 - Windows Server 2016 - KB5026363 (x64) (Superseded)
  • MAJOR [ID:502636205] MS23-MAY: Cumulative Update for Windows 10 Version 1809 - Windows 10 Version 1809 LTSC - KB5026362 (Superseded)
  • MAJOR [ID:500239701] MS23-MAY: Security Update for Microsoft SharePoint Enterprise Server 2016 - SharePoint Server 2016 - KB5002397 (x64) (Superseded)
  • MAJOR [ID:502638201] MS23-MAY: Cumulative Update for Windows 10 Version 1507 - Windows 10 Version 1507 LTSB - KB5026382 (x64) (Superseded)
  • MAJOR [ID:502636303] MS23-MAY: Cumulative Update for Windows 10 Version 1607 - Windows 10 Version 1607 LTSB - KB5026363 (x64) (Superseded)

Reason for Update:

  • Microsoft released June 2023 security updates.
  • .NET supercedence to follow later.

Additional Notes:

  • None.

Actions to Take:
None

Published site version:
Patches for Windows, Version: 4217

Additional links:

Application Engineering Team
HCL BigFix

2

Hi Team ,
Could you please confirm if all the security patches has been released or some are left to be released later? Also could you please advice if .net supercedence would come in existence for this month .?

3

Hi @vishal,
All the Security updates released by Microsoft which we support from Bigfix have been released.
The .Net supersedence will be available tomorrow, contents that were released prior to this month will be superseded based on the supersedence from Microsoft
Thank you

4

Are these supersedence for dot net security patches? In this case how we can proceed with patching today without full data

5

Will there be additional updates in the next few days to offer the Registry updates to enable the fix for CVE-2023-32019?

https://support.microsoft.com/en-us/topic/kb5028407-how-to-manage-the-vulnerability-associated-with-cve-2023-32019-bd6ed35f-48b1-41f6-bd19-d2d97270f080

1 Like
6

Hi @vishal,
You can proceed to patch the June 2023 .NET Framework updates as they have all been released. All previous superseded .NET Framework updates will no longer be applicable if you successfully apply the June 2023 .NET Framework updates.
Thank you

1 Like
7

Hi @mesee2,
The vulnerability fix will have to be reviewed and analyzed before we release the content for the same
Thank you

1 Like
8

I would be extremely interested in this too. The patch alone does not remediate the vulnerability so all Bigfix customers will need to apply the post patch activation steps manually. HCL providing this as additional fixlets in the “patch” domain relating to the same CVE, which makes finding the content easier, would be a very advantageous over the offerings from other vendors…IMHO, and a great value add for those using IVR against their Qualys or Tennable vulnerbility scans :wink:

1 Like
9

The puzzle about CVE-2023-32019 is why it has to be separately enbled

There is little information from Microsoft on this, so we have to relay on third-party reports/analyses, such as the suggestion on bleepingcomputer (https://www.bleepingcomputer.com/news/security/microsoft-windows-kernel-cve-2023-32019-fix-is-disabled-by-default/) that the fix will beenabled by default in a furure release

MS has previous form on this - witness them re-releasing the note for CVE-2013-3900 recently

A fixlet to apply the registry values is reasonably tribial - but we need the information from MS about the issues so we can make a judgement call on the relative risks of enabling the patch or leaving it disabled, especially as it is off by default, rather than on by default with a workaround for the cases where there is an issue. This suggests to me that MS knows the fix will be troublesome more often than not

2 Likes
10

Hi HCL Team ,

Could you pls update why service stack for 2012 was released latter when you confirmed its all done ? Also pls provide InSite on " MS22-AUG: Security Update for Windows Server 2012 R2 - Windows Server 2012 R2 - KB5012170 (x64) " Why this patch showing relevant to all 2012 servers recently after almost 1 year ??

1 Like
11

I just noticed the issue with KB5012170 on machines in my environment. According to my investigation these were trimmed by CBS I guess as superseded (confirmed by logs), but only on some 1607 and 1809 feature versions. This means MS did this… probably an accident?

1 Like
12

This topic was automatically closed after 30 days. New replies are no longer allowed.