Microsoft March 2026 Security Updates

 

The Microsoft March 2026 security updates have been released and consist of 84 new CVEs to Microsoft products. In addition, there is 1 third-party and 9 chromium CVEs included.

Of the Microsoft CVEs released, 8 are rated Critical and the rest are rated Important in severity. At the time of release, two are listed as publicly known but none as being actively exploited.

The security updates apply to the following products, features and roles: Windows and Windows components, Office and Office Components, Microsoft Edge (Chromium-based), Azure, SQL Server, Hyper-V Server, and the Windows Resilient File System (ReFS). 

Information regarding known issues with KBs included in the security updates can be found at the bottom of the page at March 2026 Security Updates - Release Notes - Security Update Guide - Microsoft.

Recommended Reading:  See Dustin Childs complete review and analysis in Zero Day Initiative -- The March 2026 Security Update Review.

Additional Update Notes:

• Windows 10 -- See Windows 10 Extended Security Updates (ESU).
• Servicing Stack Updates -- Microsoft now combines the latest servicing stack update (SSU) for your operating system with the Latest Cumulative Updates (LCU). For general information about SSUs, see Servicing stack updates and Servicing Stack Updates (SSU): Frequently Asked Questions.
  
• Windows updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows, in addition to non-security updates. The updates are also available via search for the KB number in the Microsoft Update Catalog.
• For information on lifecycle and support dates for Windows 11 operating systems, please see Windows 11 Home and Pro.
• Windows Update History:  Windows 11, Windows 10

 

References

• Security Update FAQ
• Security Updates Guide

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Mozilla Firefox Version 148.0.2 Released with Security Updates

 Mozilla sent Firefox Version 148.0.2 to the release channel. 

The update includes three security updates rated critical. The security updates can be reviewed here.

A number of fixes are included in the update.  To review the fixes, see the Release Notes.

Update:  To get the update now, select "Help" from the Firefox menu and pick "About Firefox".  Mac users need to select "About Firefox" from the Firefox menu.  If you do not use the English language version, Fully Localized Versions are available for download.

Rapid Release Calendar

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Pale Moon Version 34.1.0 Released with Security Updates

  Pale Moon has been updated to version 34.1.0.  This is an important update landing technological enhancements previously intended to be in the v34.0 milestone.  

The update also addresses security issues:  CVE-2026-2806 (DiD), CVE-2026-2758, CVE-2026-2804, CVE-2026-2787 (DiD), CVE-2026-2757, CVE-2026-2773, CVE-2026-2779 (DiD), CVE-2026-2775, and several others that do not have a CVE designation.

*DiD: This means that a fix is "Defense-in-Depth": It is a fix that does not apply to a (potentially) actively exploitable vulnerability in Pale Moon, but prevents future vulnerabilities caused by the same code, e.g. when surrounding code changes, exposing the problem, or when new attack vectors are discovered.

Pale Moon includes both 32- and 64-bit versions for Windows: Pale Moon for Windows downloads.

Update: To get the update now, select "Help" from the Pale Moon menu at the upper left of the browser window.  Select About Pale Moon > Check for Updates.

Release Notes
Release Cycle

Remember - "A day without laughter is a day wasted."