Microsoft Windows Updates, June 11, 2019

This month the vendor has patched 88 vulnerabilities, 20 of which are rated Critical.

As always, customers are advised to follow these security best practices:

  • Install vendor patches as soon as they are available.
  • Run all software with the least privileges required while still maintaining functionality.
  • Avoid handling files from unknown or questionable sources.
  • Never visit sites of unknown or questionable integrity.
  • Block external access at the network perimeter to all key systems unless specific access is required.

Windows Server version 1903

KB4503293
Release Date:June 11, 2019
Version:OS Build 18362.175

This update includes quality improvements. Key changes include:

  • Addresses a security vulnerability by intentionally preventing connections between Windows and Bluetooth devices that are not secure and use well-known keys to encrypt connections, including security fobs. If BTHUSB Event 22 in the Event Viewer states, “Your Bluetooth device attempted to establish a debug connection….”, then your system is affected. Contact your Bluetooth device manufacturer to determine if a device update exists. For more information, see CVE-2019-2102 and KB4507623.
  • Security updates to Windows Virtualization, Microsoft Scripting Engine, Internet Explorer, Windows App Platform and Frameworks, Windows Input and Composition, Windows Media, Windows Shell, Windows Server, Windows Authentication, Windows Cryptography, Windows Storage and Filesystems, Windows SQL Components, the Microsoft JET Database Engine, and Internet Information Services.

2019-06 Cumulative Update for Windows Server, version 1903 for x64-based Systems (KB4503293)


windows10.0-kb4503293-x64_df9098dcf9761b5652aab2666438fb128c16ffe0.msu

Windows Server 2019

KB4503327
Release Date:June 11, 2019
Version:OS Build 17763.557

This update includes quality improvements. Key changes include:

  • Addresses an issue that may prevent the Windows Mixed Reality keyboard from rendering correctly in some applications.
  • Addresses a security vulnerability by intentionally preventing connections between Windows and Bluetooth devices that are not secure and use well-known keys to encrypt connections, including security fobs. If BTHUSB Event 22 in the Event Viewer states, “Your Bluetooth device attempted to establish a debug connection….”, then your system is affected. Contact your Bluetooth device manufacturer to determine if a device update exists. For more information, see CVE-2019-2102 and KB4507623.
  • Addresses an issue that may prevent the Preboot Execution Environment (PXE) from starting a device from a Windows Deployment Services (WDS) server configured to use Variable Window Extension. This may cause the connection to the WDS server to terminate prematurely while downloading the image. This issue does not affect clients or devices that are not using Variable Window Extension.
  • Adds updated Broadcom Wi-Fi firmware to Microsoft HoloLens. For more information, see Advisory 190016.
  • Addresses an issue that may prevent Internet Explorer 11 from opening if the Default Search Provider is not set or is malformed.
  • Security updates to Microsoft Scripting Engine, Internet Explorer, Microsoft Edge, Windows App Platform and Frameworks, Windows Input and Composition, Windows Media, Windows Shell, Windows Server, Windows Authentication, Windows Cryptography, Windows Datacenter Networking, Windows Storage and Filesystems, Windows SQL components, the Microsoft JET Database Engine, Windows Virtualization, Windows Kernel, and Internet Information Services.

2019-06 Cumulative Update for Windows Server 2019 for x64-based Systems (KB4503327)


windows10.0-kb4503327-x64_7bd62b3999caa3fd8d57338212e7c9676687ac68.msu

Windows Server 2016

KB4503267
Release Date:June 11, 2019
Version:OS Build 14393.3025

2019-06 Cumulative Update for Windows Server 2016 for x64-based Systems (KB4503267)


windows10.0-kb4503267-x64_51ff317097c854ffc5d9ee5badab6fcf7462d324.msu

Windows Server 2012 R2

KB4503276
Release Date:June 11, 2019
Version:Monthly Rollup

This security update includes improvements and fixes that were a part of update KB4499182 (released May 23, 2019) and addresses the following issues:

  • Addresses a security vulnerability by intentionally preventing connections between Windows and Bluetooth devices that are not secure and use well-known keys to encrypt connections, including security fobs. If BTHUSB Event 22 in the Event Viewer states, “Your Bluetooth device attempted to establish a debug connection….”, then your system is affected. Contact your Bluetooth device manufacturer to determine if a device update exists. For more information, see CVE-2019-2102 and KB4507623.
  • Addresses an issue that may prevent the Preboot Execution Environment (PXE) from starting a device from a Windows Deployment Services (WDS) server configured to use Variable Window Extension. This may cause the connection to the WDS server to terminate prematurely while downloading the image. This issue does not affect clients or devices that are not using Variable Window Extension.
  • Addresses an issue with the HTTP and HTTPS string character limit for URLs when using Internet Explorer.
  • Security updates to Windows App Platform and Frameworks, Windows Input and Composition, Windows Shell, Windows Server, Windows Authentication, Windows Datacenter Networking, Windows Storage and Filesystems, Windows Virtualization, Internet Information Services, and the Microsoft JET Database Engine.

2019-06 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems (KB4503276)


windows8.1-kb4503276-x64_668a79da48ee0d02a5caa94c686ab7dd1270f771.msu

Windows Server 2012

KB4503285
Release Date:June 11, 2019
Version:Monthly Rollup

This security update includes improvements and fixes that were a part of update KB4499145(released May 23, 2019) and addresses the following issues:

  • Addresses a security vulnerability by intentionally preventing connections between Windows and Bluetooth devices that are not secure and use well-known keys to encrypt connections, including security fobs. If BTHUSB Event 22 in the Event Viewer states, “Your Bluetooth device attempted to establish a debug connection….”, then your system is affected. Contact your Bluetooth device manufacturer to determine if a device update exists. For more information, see CVE-2019-2102 and KB4507623
  • Addresses an issue that may prevent the Preboot Execution Environment (PXE) from starting a device from a Windows Deployment Services (WDS) server configured to use Variable Window Extension. This may cause the connection to the WDS server to terminate prematurely while downloading the image. This issue does not affect clients or devices that are not using Variable Window Extension.
  • Security updates to Adobe Flash Player, Windows App Platform and Frameworks, Windows Shell, Windows Input and Composition, Windows Authentication, Windows Server, Windows Cryptography, Windows Storage and Filesystems, Windows Datacenter Networking, Windows Virtualization, Internet Information Services, Windows Kernel, and the Microsoft JET Database Engine.

2019-06 Security Monthly Quality Rollup for Windows Server 2012 for x64-based Systems (KB4503285)


windows8-rt-kb4503285-x64_e68f93baafd20ac25d4fcb9ae70ae25c20bd2113.msu

Windows Server 2008 R2 SP1

KB4503292
Release Date:June 11, 2019
Version:Monthly Rollup

This security update includes improvements and fixes that were a part of update KB4499178(released May 23, 2019) and addresses the following issues:

  • Addresses an issue with the HTTP and HTTPS string character limit for URLs when using Internet Explorer.
  • Security updates to Windows App Platform and Frameworks, Microsoft Graphics Component, Windows Input and Composition, Windows Shell, Windows Server, Windows Authentication, Windows Datacenter Networking, Windows Storage and Filesystems, Windows Virtualization, Internet Information Services, and the Microsoft JET Database Engine.

2019-06 Security Monthly Quality Rollup for Windows Server 2008 R2 for x64-based Systems (KB4503292)


windows6.1-kb4503292-x64_a35bb4ea16d1d529fde9abfe8a0c16e9061f74cd.msu

2019-06 Security Monthly Quality Rollup for Windows Server 2008 R2 for Itanium-based Systems (KB4503292)


windows6.1-kb4503292-ia64_df65e9699760784fe84014be33f68a7c8329fef9.msu

Windows 2008 SP2

KB4503273
Release Date:June 11, 2019
Version:Monthly Rollup

This security update includes improvements and fixes that were a part of update KB4499184(released May 23, 2019) and addresses the following issues:

  • Provides protections against a new subclass of speculative execution side-channel vulnerabilities, known as Microarchitectural Data Sampling, for 64-Bit (x64) versions of Windows (CVE-2019-11091, CVE-2018-12126CVE-2018-12127CVE-2018-12130). Use the registry settings as described in the Windows Server article(These registry settings are disabled by default for Windows Server OS editions).
  • Security updates to Windows App Platform and Frameworks, Windows Input and Composition, Windows Shell, Windows Server, Windows Authentication, Windows Datacenter Networking, Windows Storage and Filesystems, Windows Virtualization, Windows Kernel, Internet Information Services, Windows Server, and the Microsoft JET Database Engine.

2019-06 Security Monthly Quality Rollup for Windows Server 2008 for x86-based Systems (KB4503273)


pcicompatforserialnumber_1e5941fb3d1c85ed07427a2a00a326f4c567c3c2.exewindows6.0-kb4503273-x86_d7d96b19b480f7caf5fa17dc069975b48dcbe1d9.msu

2019-06 Security Monthly Quality Rollup for Windows Server 2008 for Itanium-based Systems (KB4503273)


windows6.0-kb4503273-ia64_d38a287e775f69f3db58891c19aff704e3b096b9.msupcicompatforserialnumber_881b2f76705d6d725d22c95341c32d2a5cd5c68d.exe

2019-06 Security Monthly Quality Rollup for Windows Server 2008 for x64-based Systems (KB4503273)


pcicompatforserialnumber_63c8813525fb70ff517ac10ab86a2080a5a1ef35.exewindows6.0-kb4503273-x64_507ee4f3aafc92d3665fed1adba5441bc3771e15.msu

Further Reading

[Review]: Windows Admin Center (Project Honolulu)

Microsoft Security Update Guide June 2019

Davoud Teimouri

Davoud Teimouri is as a professional blogger, vExpert 2015/2016/2017/2018/2019, VCA, MCITP. This blog is started with simple posts and now, it has large following readers.

Leave a Reply

Your email address will not be published. Required fields are marked *