Microsoft Cumulative Update for WIndows 10 Version 1903

Windows 10 Version 1903 is continuing to be rolled out slowly.  However, Microsoft has released a cumulative update with non-security improvements and fixes for this newly-released version.  In addition to addressing a number of issues, the update addresses "Windows Update blocked because of drive reassignment", described in KB 4500988.


To view the improvements and features, see the following:  KB4497935 (OS Build 18362.145)

To download and install this update, go to Settings > Update and Security >  Windows Update and select Check for updates.

If you are using Windows Update, the latest SSU (KB4498523) will be offered to you automatically. However, to get the standalone package for the SSU update, go to the Microsoft Update Catalog website.

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Microsoft Cumulative Update Released for Windows 10 1709 and 1703

Microsoft has released cumulative updates with non-security improvements and fixes for Windows 10 Versions 1709 and 1703.  As shown in their respective KB articles, the issues addressed are almost the same for both versions as is the sole known issue.

Windows 10 Version 1709:   KB4499147 (OS Build 16299.1182), Microsoft Update Catalog

Windows 10 Version 1703:   KB4499162 (OS Build 15063.1839), Microsoft Update Catalog

To download and install this update, go to Settings > Update and Security >  Windows Update and select Check for updates.

The standalone packages are available for both versions from the Microsoft Update Catalog, linked above. Note, however, if you use the Update Catalog, it will be necessary to manually check for any needed Servicing stack updates (SSU).  Using Windows Update, any needed Servicing stack updates will be offered automatically.

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

A Day of Remembrance

Vietnam Memorial Wall
April 30, 2005
Photograph by Luigi Masu

In honor of those who gave their all in the service of their country. 

Memorial Day History

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Microsoft Cumulative Update Released for Windows 8.1 and Windows 7

Microsoft has released a cumulative update for both Windows 7 SP1 and Windows 8.1. There is a known issue for both operating systems for users of Mcfee:

Microsoft and McAfee have identified an issue on devices with McAfee Endpoint Security (ENS) Threat Prevention 10.x or McAfee Host Intrusion Prevention (Host IPS) 8.0 or McAfee VirusScan Enterprise (VSE) 8.8 installed. It may cause the system to have slow startup or become unresponsive at restart after installing this update.

Microsoft has released a cumulative update with non-security improvements and fixes for Windows 8.1. This update includes improvements and fixes with no new operating system features introduced.

See KB4499182 for the list of improvements and fixes as well as the various know issues and accompanying workarounds.  To get the standalone package for this update, go to the Microsoft Update Catalog website.





Microsoft has also released a cumulative update with non-security improvements and fixes for Windows 7 SP1. This update includes improvements and fixes with no new operating system features introduced.

See KB4499178 for the list of improvements and fixes as well as the various know issues and accompanying workarounds.  As indicated previously, starting with KB4493472 Monthly Rollup updates will no longer include PciClearStaleCache.exe. This installation utility addressees inconsistencies in the internal PCI cache. This can cause the symptoms documented in the KB article.

If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.  To get the standalone package for this update, go to the Microsoft Update Catalog website.

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart... 

Windows 10 Version 1903, May 2019 Update Released!

The long-awaited Windows 10 Version 1903 "Spring" Update has been released.  Although the release will take a "measured and throttled approach" and may not be available in all areas yet, if you have Windows 10, version 1803 or version 1809 and have the May 21, 2019 (or later) update installed you can try to get the update now.

The May 21, 2019 update is a cumulative update (linked below) which provides the functionality change shown below.  The change allows the user to decide when to install a feature update by doing the following:

• Open Windows Update settings and select Update, Windows and Security, Windows Update, Check for updates.

• After the installation of the May 21 cumulative update, if the Windows 10 Version 1903 update is available, select Download and install now.  

It is important to note that the installation of the cumulative update won't necessarily be the catalyst for installing Windows 10 Version 1903 if you are not ready to do so.  Rather, as explained by Windows Corporate Vice President Mike Fortin in Improving the Windows 10 update experience with control, quality and transparency, the option is provided to download and install now rather than waiting.  However, you can still wait until the update is offered as well as pause updates.

Before attempting the update, however, it is advisable to check whether an of the Known issues and notifications will be a problem for your device.  Also note that the minimum storage requirement for Windows 10 version 1903 is 32GB for both 32-bit and 64-bit Windows. Although an older article, see Andre Da Costa's suggestions on 7 Ways to Maximize Storage Space on Low Capacity Windows 10 Devices.

To see what new Windows 10 features and changes to Windows apps have been tested by Windows Insiders prior to the release, scroll through the "What's new" links in the References below.

References:

• How to get the Windows 10 May 2019 Update | Windows Experience Blog
• Microsoft Cumulative Update Released for Windows 10 Versions 1803 and 1809
• Improving the Windows 10 update experience with control, quality and transparency
• Known issues and notifications
• What's new for Windows 10 Insider Preview Builds (19H1)
• What's new in Windows apps (19H1)
• 7 Ways to Maximize Storage Space on Low Capacity Windows 10 Devices

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Microsoft Cumulative Update Released for Windows 10 Versions 1803 and 1809

Microsoft has released cumulative updates with non-security improvements and fixes for Windows 10 Versions 1803 and 1809.  In addition to the numerous improvements and fixes, the update provides the following functionality change which allows the user to decide when to install a feature update:

"we are introducing functionality that allows you to decide when to install a feature update. You control when you get a feature update while simultaneously keeping your devices up to date. Feature updates that are available for eligible devices will appear in a separate module on the Windows Update page (Settings > Update & Security > Windows Update). If you would like to get an available update right away, select Download and install now. To find out more about this feature, please go to this blog."

To view the improvements and features, see the following:

• Windows 10 Version 1803: May 21, 2019—KB4499183 (OS Build 17134.799)
• Windows 10 Version 1809: May 21, 2019—KB4497934 (OS Build OS 17763.529)

To download and install this update, go to Settings > Update and Security >  Windows Update and select Check for updates.

To get the standalone package for this update, go to the Microsoft Update Catalog website.

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Mozilla Firefox Version 67.0 Released With Security Updates

Mozilla sent Firefox Version 67.0 to the release channel today.  The update included twenty-two (22) security updates of which two (2) are critical, twelve (12) are high, six (6) moderate and two (2) are rated low.

Firefox  ESR was updated to version 60.7.

Critical

• # CVE-2019-9814: Memory safety bugs fixed in Firefox 67
• # CVE-2019-9800: Memory safety bugs fixed in Firefox 67 and Firefox ESR 60.7

High

• # CVE-2019-9815: Disable hyperthreading on content JavaScript threads on macOS
• # CVE-2019-9816: Type confusion with object groups and UnboxedObjects
• # CVE-2019-9816: Type confusion with object groups and UnboxedObjects
• # CVE-2019-9817: Stealing of cross-domain images using canvas
• # CVE-2019-9818: Use-after-free in crash generation server
• # CVE-2019-9819: Compartment mismatch with fetch API
• # CVE-2019-9820: Use-after-free of ChromeEventHandler by DocShell
• # CVE-2019-9821: Use-after-free in AssertWorkerThread
• # CVE-2019-11691: Use-after-free in XMLHttpRequest
• # CVE-2019-11692: Use-after-free removing listeners in the event listener manager
• # CVE-2019-11693: Buffer overflow in WebGL bufferdata on Linux
• # CVE-2019-7317: Use-after-free in png_image_free of libpng library

Moderate

• # CVE-2019-11694: Uninitialized memory memory leakage in Windows sandbox
• # CVE-2019-11695: Custom cursor can render over user interface outside of web content
• # CVE-2019-11696: Java web start .JNLP files are not recognized as executable files for download prompts
• # CVE-2019-11697: Pressing key combinations can bypass installation prompt delays and install extensions
• # CVE-2019-11698: Theft of user history data through drag and drop of hyperlinks to and from bookmarks
• # CVE-2019-11700: res: protocol can be used to open known local files

Low

• # CVE-2019-11699: Incorrect domain name highlighting during page navigation
• # CVE-2019-11701: webcal: protocol default handler loads vulnerable web page

New

• Enhanced tracking protection: Simplified content blocking settings give users standard, strict, and custom options to control online trackers. A redesigned content blocking section in the site information panel (viewed by expanding the small “i” icon i
  
• Firefox 67 demonstrates improved performance thanks to a number of changes such as:
  
  • Lowering priority of setTimeout during page load
  • Delayed component initialization until after start up
  • Painting sooner during page load but less often
  • Suspending unused tabs
  Learn more about our approach to performance in 67 in the Mozilla blog.
  
• Users can block known cryptominers and fingerprinters in the Custom settings of their Content Blocking preferences.
  
• Keyboard accessibility has improved in the latest version of Firefox. Toolbar and toolbar overflow menu are both fully keyboard accessible: keyboard users can now access add-ons, the downloads panel, the overflow, Page actions and Firefox menus, and much more.
  
• Private Browsing sees both usability and security improvements:
  
  • Save passwords in private browsing mode
  • Choose which extensions to exclude from private tabs
• A myriad of new features help make Firefox easier to use:
  
  • We’ve added a toolbar menu for your Firefox Account to provide more transparency for when you are synced, sharing data across devices and with Firefox. Personalize the appearance of the menu with your own avatar
  • Tabs can now be pinned from the Page Actions menu in the address bar
  • Firefox will highlight useful features (like Pin Tabs) when users are most likely to benefit from them.
  • Easier access to your list of saved logins from the main menu and login autocomplete. Learn about all the ways you can manage your passwords in Firefox.
  • The Import Data from Another Browser feature is now also available from the File menu
  • Users will be able to run different Firefox installs side by side by default so that you can run the beta and release versions simultaneously
• Firefox will now protect you against running older versions of the browser which can lead to data corruption and stability issues
  
• Firefox is upgrading to the newer, higher performance, AV1 decoder known as ‘dav1d’
  
• WebRender is gradually enabled by default on Windows 10 desktops with NVIDIA graphics cards
  
• Mozilla’s highest performing JavaScript compiler now supports ARM64 Windows devices.
  
• Enable FIDO U2F API, and permit registrations for Google Accounts
  
• Some users will see experiments with an improved Pocket experience in Firefox Home with different layouts and more topical content.
  

Changed:

• Firefox no longer supports handling webcal: links with 30boxes.com
  
• Change to extensions in Private Windows: Any new extensions you add to the browser won’t work in Private Windows unless you allow this in the settings.
  
• Users will no longer be able to upload and share screenshots through the Firefox Screenshots server. Users who want to keep existing screenshots need to export them before the server shuts down in the coming months.
  
• Included Twemoji Mozilla font updated to support Emoji 11.0
  
• Font and date adjustments to accommodate the new Reiwa era in Japan
  

Update:  To get the update now, select "Help" from the Firefox menu, then pick "About Firefox."  Mac users need to select "About Firefox" from the Firefox menu. If you do not use the English language version, Fully Localized Versions are available for download.

References

• Common questions after updating Firefox
• Security Updates
• Release Notes
• Rapid Release Calendar

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Microsoft Cumulative Update Released for ALL Windows 10 Versions!

Microsoft has released a cumulative updates with non-security improvements and fixes for each of the released Windows 10 versions.   This update addresses an issue that may prevent access to some gov.uk websites that don’t support HTTP Strict Transport Security (HSTS) when using Internet Explorer 11 or Microsoft Edge.

See the KB articles listed below for your specific version of Windows 10:

1903 support.microsoft.com/help/4505057
1809 support.microsoft.com/help/4505056
1803 support.microsoft.com/help/4505064
1709 support.microsoft.com/help/4505062 
1703 support.microsoft.com/help/4505055 
1607 support.microsoft.com/help/4505052 
1507 support.microsoft.com/help/4505051 .

To download and install this update, go to Settings > Update and Security >  Windows Update and select Check for updates.

To get the standalone package for this update, go to the Microsoft Update Catalog website.

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Microsoft May 2019 Security Updates

The May security updates have been released and consist of 79 CVEs along with two advisories. Of these 79 CVEs, 22 are rated Critical and 57 are rated Important in severity. Two of these bugs are listed as publicly known and one is listed as under active attack at the time of release.

The updates address Remote Code Execution, Elevation of Privilege, Security Feature Bypass, Information Disclosure, Denial of Service, Spoofing, and Security Feature Bypass and apply to the following:  The updates cover Internet Explorer, Edge, Windows, ChakraCore, Microsoft Office and Microsoft Office Services and Web Apps, .NET Framework and ASP.NET, Skype for Android, Azure DevOps Server, and the NuGet Package Manager.

Edit Note:  Due to the severity of CVE-2019-0708, Microsoft also released KB 4500331 for versions of Windows that no longer receive mainstream support:  Windows XP SP3 x86, Windows XP Professional X64 SP2, Windows XP Embedded SP3 x86 as well as Windows Server 2003.

Known Issues:  See the Known Issues and accompanying work-around in the KB Articles for your version of Windows 10:

• Windows 10, Version 1809:  KB4494441 (OS Build 17763.503). Prerequisite: The servicing stack update (SSU) (KB4499728) must be installed before installing the latest cumulative update (LCU). The LCU will not be reported as applicable until the SSU is installed. For more information, see Servicing stack updates.
• Windows 10, Version 1803:  KB4499167 (OS Build 17134.765)

Recommended Reading:  

See Dustin Childs review and analysis in Zero Day Initiative — The May 2019 Security Update Review.

For more information about the updates released today, see https://portal.msrc.microsoft.com/en-us/security-guidance/summary.  Updates can be sorted by OS from the search box. Information about the update for Windows 10 is available at Windows 10 Update history.

Additional Update Notes:

• Adobe Flash Player -- For Windows Server 2012, Windows 8.1, Windows Server 2012 R2, Windows RT 8.1 and Windows 10, Adobe Flash Player is now a security bulletin rather than a security advisory and is included with the updates as identified above.
• MSRT -- Microsoft released an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center.  Note:  Users who are paranoid about the remote possibility of a FP can opt to run this tool from a Command Prompt, appending a   /N   parameter [for "detect only" mode].
• Servicing Stack Updates -- A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update. 
• Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
• Windows 8.1 Update History 
• Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
• Windows 7 SP1 Update Histolry
• For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.

References

• Security Update FAQ
• Security Updates Guide

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Adobe Acrobat DC and Reader DC Security Updates Released

Adobe has released critical and important security updates for Adobe Acrobat and Reader for Windows and macOS. Successful exploitation could lead to arbitrary code execution in the context of the current user.  

Release date:  May 14, 2019
Vulnerability identifier: APSB19-18
Platform: Windows and MacOS

Update or Complete Download

Reader DC and Acrobat DC were updated to version 2019.012.20034. Update checks can be manually activated by choosing Help/Check for Updates. 

• Reader DC and other versions are available here:  https://www.adobe.com/support/downloads/product.jsp?product=10&platform=Windows
  
• Acrobat DC for Windows is available here:  http://www.adobe.com/support/downloads/product.jsp?product=1&platform=Windows

Note: UNcheck any pre-checked additional options presented with the update. They are not part of the software update and are completely optional.

References

• PSIRT
• Security Bulletin
• System Requirements

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Adobe Flash Player and AIR Critical Security Update Released

Adobe has released Version 32.0.0.192 of Adobe Flash Player and AIR for Windows, macOS, Linux and Chrome OS. These updates address a critical vulnerability in Flash Player.  Successful exploitation could lead to arbitrary code execution in the context of the current user.

Release date:  May 14, 2019
Vulnerability identifier: APSB19-19
Platform:  Windows, Macintosh, Linux and Chrome OS

Update:

• With the option to 'Allow Adobe to install updates', the update will be automatic. Without that setting enabled, either install the update via the update mechanism when prompted or via the Download Center*.
• Windows 7 and earlier:  Installation links for Windows 7 and earlier are provided by Adobe at Installation problems | Flash Player | Windows 7 and earlier: 
• Flash Player for Internet Explorer - ActiveX 
• Flash Player for Firefox/Pale Moon - NPAPI
• Flash Player for Opera and Chromium-based browsers - PPAPI
• Uninstaller (if needed) : http://download.macromedia.com/get/flashplayer/current/support/uninstall_flash_player.exe 
• Microsoft Edge and Internet Explorer 11:  Adobe Flash Player will be automatically updated to the latest version for Windows 8.1 and 10.
• Google Chrome:  Adobe Flash Player will be automatically updated to the latest Google Chrome version.
• Flash Player Uninstaller:  http://download.macromedia.com/get/flashplayer/current/support/uninstall_flash_player.exe
• Adobe AIR:  Adobe - Adobe AIR

*Important Note:  Downloading the update from the Adobe Flash Player Download Center link includes a pre-checked option to install unnecessary extras, such as McAfee Scan Plus or Google Drive.  If you use the download center, uncheck any unnecessary extras that you do not want.  They are not needed for the Flash Player update.

Verify Installation

To verify the Adobe Flash Player version number installed on your computer, go to the About Flash Player page, or right-click on content running in Flash Player and select "About Adobe Flash Player" from the menu. 

Do this for each browser installed on your computer.

To verify the version of Adobe Flash Player for Android, go to Settings/Applications/Manage Applications/Adobe Flash Player x.x.

References

• Adobe Priority Ratings
• AIR Download Center 
• Installing and Updating Flash Player - FAQ
• Release Notes
• Security Bulletin
• PSIRT

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Firefox Version 66.0.5 Released to Fix Master Password Issue

Mozilla sent Firefox Version 66.0.5 to the release channel today to solve the web extension issue for those using a master password resulting from the expired certificate.  At this point Firefox ESR remains at Version 60.6.2.

Fixed

• Further improvements to re-enable web extensions which had been disabled for users with a master password set (Bug 1549249). More support information

Update:  To get the update now, select "Help" from the Firefox menu, then pick "About Firefox."  Mac users need to select "About Firefox" from the Firefox menu. If you do not use the English language version, Fully Localized Versions are available for download.

References

• Common questions after updating Firefox
• Security Updates
• Release Notes
• Rapid Release Calendar

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Mozilla Firefox Version 66.0.4 Released To Replace Expired Certificate

Mozilla sent Firefox Version 66.0.4 to the release channel today to replace the expired certificate that resulted in add-ons being disabled.  Note, however, that there are a number of unresolved issues, listed below.

Firefox ESR was updated to Version 60.6.2.

Fixed

• Repaired certificate chain to re-enable web extensions that had been disabled

Unresolved

• A small number of add-ons may be listed as unsupported or may not appear in about:addons. Their data is not lost; users should be able to re-install the add-ons and recover the data (Bug 1549129). More support information
  
• If add-ons that use Containers functionality (such as Multi-Account Containers and Facebook Container) were disabled as part of this problem, any lost site data or custom configurations for those add-ons will not be recovered by this release. Users may need to set them up and login again in about:addons (Bug 1549204). More support information
  
• Themes may not be re-enabled. Users may need to re-enable them in about:addons (Bug 1549022). More support information
  
• Home page or search settings customized by an add-on may be reset to defaults. Users may need to customize them again in about:preferences or about:addons (Bug 1549192). More support information
  

Update:  To get the update now, select "Help" from the Firefox menu, then pick "About Firefox."  Mac users need to select "About Firefox" from the Firefox menu. If you do not use the English language version, Fully Localized Versions are available for download.

References

• Common questions after updating Firefox
• Security Updates
• Release Notes
• Rapid Release Calendar

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Windows 10 Version 1809 Cumulative Update Released

Microsoft has released a cumulative update with non-security improvements and fixes for Windows 10 version 1809.  This update includes a long list of improvements and fixes with no new operating system features introduced.

Edit Note:  I apparently have the May 1903 Upgrade in mind and have made the correction to correctly reflect that the cumulative update was for version 1809.

See KB4495667 for the list of improvements and fixes as well as the various know issues and accompanying workarounds.

If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.  The update is available from Windows Update or the Microsoft Update Catalog. In addition, the latest servicing stack update (SSU), KB4485449, will be offered automatically.

To download and install this update, go to Settings > Update & Security > Windows Update and select Check for updates.

To get the standalone package for this update, go to the Microsoft Update Catalog website.

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...