Recently, Microsoft rolled out security patches for its Windows operating system and other software offerings. These patches are now accessible and will be automatically applied on the majority of personal Windows computers.
Our monthly roundup provides valuable information for Windows home users and IT administrators to aid them in making well-informed decisions. It helps administrators in determining the optimal timing for applying these patches.
The summary includes an extensive overview of all significant security patches, flags any identified issues, provides links to resource pages and direct patch downloads, and more.
Tip: To refer to the summary for June 2024, simply click here.
Security Patches for Microsoft Windows: July 2024
You can find the Excel file listing all the released patches by following this link: Windows Security Patches Master List July 2024
Executive Overview
- Microsoft has launched a total of 139 security patches encompassing various Microsoft products.
- Troubled Windows client versions include: Windows 10 iterations 1809, 21H2, and 22H2, along with Windows 11 versions 21H2 and 22H2.
- Windows Server client versions encountering hurdles are: Windows Server 2008, Windows Server 2022, Windows Server 2019, and Windows Server 2022.
Product Insight
Below are the critical vulnerabilities for each supported Windows version.
- Windows 10 version 22H2: 70 vulnerabilities, 1 critical, 67 important, and 2 moderate
- New Exposure: Windows Imaging Component Remote Code Execution – CVE-2024-38060
- Windows 11 version 22H2: 73 vulnerabilities, 1 critical, 70 important, and 2 moderate
- Same as Windows 10 version 22H2
- Windows 11 version 23H2: 73 vulnerabilities, 1 critical, 70 important, and 2 moderate
- Same as Windows 10 version 22H2
Windows Server Products
- Windows Server 2008 R2 (limited support): 35 vulnerabilities: 3 critical, 32 important
- New Vulnerabilities: Windows Remote Desktop Licensing Service Remote Code Execution – CVE-2024-38074, CVE-2024-38077, Windows Imaging Component Remote Code Execution – CVE-2024-38060
- Windows Server 2012 R2 (limited support): Vulnerabilities: critical and important
- Windows Server 2016: 77 vulnerabilities: 4 critical, 72 important, and 1 moderate
- New Vulnerabilities: Windows Remote Desktop Licensing Service Remote Code Execution – CVE-2024-38074, CVE-2024-38076, CVE-2024-38077, Windows Imaging Component Remote Code Execution – CVE-2024-38060
- Windows Server 2019: 79 vulnerabilities: 4 critical, 74 important, and 1 moderate
- Same as Windows Server 2016
- Windows Server 2022: 82 vulnerabilities: 4 critical, 77 important, and 1 moderate
- Same as Windows Server 2016
Windows Security Patches
Windows 10 version 22H2
Enhancements and updates:
- New: Copilot app is now affixed to the taskbar and can be uninstalled like any other application.
- Fix: Rectified the right-click “open with” concern related to files.
- Addresses security issues.
Windows 11 version 22H2 and 23H2
Enhancements and updates:
- New: Game Pass recommendations now accessible in Settings > Home for Microsoft account users who engage in gaming on their PCs.
- New: Copilot app is now docked to the taskbar and can be uninstalled similar to other apps.
- New: Reinstated the “show desktop” icon at the extreme right side of the taskbar.
- New: File Explorer now supports crafting 7-Zip and TAR archives in addition to ZIP files.
- New: Extended support for Emoji 15.1
- New: Capability to duplicate files from the Windows Share window using the novel copy button.
- New: Introduction of account manager in the Start menu.
Windows Security Patches
2024-07 Dynamic Cumulative Update for Windows 10 Version 22H2 and Windows 10 Version 21H2 (KB5040427)
2024-07 Dynamic Cumulative Update for Windows 11 (KB5040431)
2024-07 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5040437)
2024-07 Cumulative Update for Windows 10 Version 1507 (KB5040448)
Server Updates
2024-07 Cumulative Security Update for Internet Explorer for Windows Server 2012 R2, Windows Server 2012, Windows Embedded Standard 7, Windows Server 2008 R2, and Windows Server 2008 (KB5040426)
2024-07 Security Only Quality Update for Windows Server 2008 (KB5040490)
2024-07 Security Monthly Quality Rollup for Windows Server 2008 (KB5040499)
2024-07 Security Only Quality Update for Windows Embedded Standard 7 and Windows Server 2008 R2 (KB5040498)
2024-07 Security Monthly Quality Rollup for Windows Embedded Standard 7 and Windows Server 2008 R2 (KB5040497)
2024-07 Security Monthly Quality Rollup for Windows Server 2012 R2 (KB5040456)
2024-07 Security Monthly Quality Rollup for Windows Server 2012 (KB5040485)
2024-07 Cumulative Update for Windows Server 2019 and Windows 10 Version 1809 (KB5040430)
2024-07 Cumulative Update for Windows Server 2016 and Windows 10 Version 1607 (KB5040434)
.NET Updates
2024-07 Security and Quality Rollup for .NET Framework various versions for different Windows Server editions
[Please note that the list above has been abbreviated for readability. For full details, refer to the original document.]
In July 2024, Microsoft rolled out several security updates and quality rollups for diverse versions of the .NET Framework and Windows Operating Systems. These updates mitigate probable vulnerabilities and bolster the overall system performance.
Here are a few noteworthy updates:
– Security Only Update for .NET Framework 3.5 SP1 for Windows Server 2008
– Security and Quality Rollup for .NET Framework for Windows Embedded Standard 7 and Windows Server 2008 R2
– Security and Quality Rollup for .NET Framework for Windows Server 2012 and Windows Server 2012 R2
– Cumulative Update for .NET Framework for assorted Windows editions including Windows 10, Windows 11, and Windows Server 2019
Additionally, there are Servicing Stack Updates for various Windows editions to guarantee smooth update installation and maintenance.
Identified Concerns:
– Windows 10 and Windows 11 platforms might face difficulties concerning alterations in account profile images and Microsoft Connected Cache (MCC) settings.
– In multi-monitor setups, desktop icons might shift unexpectedly when using Copilot, and Copilot functionality could be compromised with vertically oriented taskbars.
– Corporate customers could encounter obstacles when transitioning from Windows Pro to Windows Enterprise subscriptions on Windows 11.
For most unmanaged systems, updates are automatically received via Windows Update, while managed systems are supervised by administrators. Home users can manually check for updates via Windows Update settings.
For individuals preferring manual installations, specific update download links are supplied.
For more comprehensive details and download links specific to updates, kindly visit Microsoft’s designated update webpages.
Image Source: rawf8 / Shutterstock