Connect with us

    Hi, what are you looking for?

    Reviews

    Microsoft Reveals Windows Security Updates Scheduled for December 2024

    Greetings to the concluding overview of Windows security enhancements for 2024. Today, Microsoft has revealed security upgrades for its Windows operating system, Office suite, and a range of additional products.

    This monthly reference acts as a useful tool for both home users and IT managers, offering a comprehensive breakdown of the security updates that have been issued. It also presents insights into known complications, non-security updates, connections to support resources, and download links, among other relevant details.

    Note: Microsoft has recently expanded updates to devices that have surpassed their support lifecycle, in addition to the latest version of Windows 10. These updates aim to inform users regarding their support status and to implement feature upgrades where feasible.

    Microsoft Windows Security Updates: October 2024

    You can obtain the following Excel file for an exhaustive list of distributed updates. Click the link below to save the archive to your local device: Windows Security Updates December 2024.

    Executive Summary

    • Microsoft has issued a total of 72 security updates for various Microsoft offerings, along with one update concerning non-Microsoft issues (such as Chromium).
    • Identified complications on Windows client versions comprise:
      • Windows 11 versions 22H2, 23H2, and 24H2.
    • Identified complications on Windows Server clients include:
      • Windows Server 2008.
      • Windows Server 2025.
    • Windows 11, version 22H2, Home and Pro editions have reached the end of their support, and Microsoft will automatically transition these devices to newer versions of Windows.

    Product Overview

    The subsequent sections detail each supported version of Windows along with their related critical vulnerabilities.

    • Windows 10 version 22H2: 44 vulnerabilities, comprising 8 critical and 36 important
      • Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability — CVE-2024-49112
      • Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability — CVE-2024-49118
      • Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability — CVE-2024-49122
      • Windows Remote Desktop Services Remote Code Execution Vulnerability — CVE-2024-49123
      • Lightweight Directory Access Protocol (LDAP) Client Remote Code Execution Vulnerability — CVE-2024-49124
      • Windows Local Security Authority Subsystem Service (LSASS) Remote Code Execution Vulnerability — CVE-2024-49126
      • Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability — CVE-2024-49127
      • Windows Remote Desktop Services Remote Code Execution Vulnerability — CVE-2024-49132
    • Windows 11 versions 22H2 and 23H2: 44 vulnerabilities, consisting of 9 critical and 35 important
      • Windows Hyper-V Remote Code Execution Vulnerability — CVE-2024-49117
      • Incorporates critical corrections from Windows 10 version 22H2.
    • Windows 11 version 24H2: 45 vulnerabilities, with 9 critical and 46 important
      • Contains identical vulnerabilities as found in versions 22H2 and 23H2.

    Windows Server Products

    • Windows Server 2008 R2 (extended support only): 22 vulnerabilities: 6 critical and 16 important
      • Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability — CVE-2024-49112
      • Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability — CVE-2024-49122
      • Lightweight Directory Access Protocol (LDAP) Client Remote Code Execution Vulnerability — CVE-2024-49124
      • Windows Local Security Authority Subsystem Service (LSASS) Remote Code Execution Vulnerability — CVE-2024-49126
      • Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability — CVE-2024-49118
      • Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability — CVE-2024-49127
    • Windows Server 2012 R2 (extended support only): specific number of vulnerabilities remains undisclosed.
    • Windows Server 2016: 33 vulnerabilities: 13 critical and 20 important
      • Windows Remote Desktop Services Remote Code Execution Vulnerability — CVE-2024-49106
      • Windows Remote Desktop Services Remote Code Execution Vulnerability — CVE-2024-49108
      • Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability — CVE-2024-49112
      • Windows Remote Desktop Services Remote Code Execution Vulnerability — CVE-2024-49115
      • Windows Remote Desktop Services Remote Code Execution Vulnerability — CVE-2024-49116
      • Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability — CVE-2024-49118
      • Windows Remote Desktop Services Remote Code Execution Vulnerability — CVE-2024-49119
      • Windows Remote Desktop Services Remote Code Execution Vulnerability — CVE-2024-49120
      • Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability — CVE-2024-49122
      • Lightweight Directory Access Protocol (LDAP) Client Remote Code Execution Vulnerability — CVE-2024-49124
      • Windows Local Security Authority Subsystem Service (LSASS) Remote Code Execution Vulnerability — CVE-2024-49126
      • Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability — CVE-2024-49127
      • Windows Remote Desktop Services Remote Code Execution Vulnerability — CVE-2024-49128
    • Windows Server 2019: 56 vulnerabilities: 15 critical and 41 important
      • Windows Remote Desktop Services Remote Code Execution Vulnerability — CVE-2024-49123
      • Windows Remote Desktop Services Remote Code Execution Vulnerability — CVE-2024-49132
      • Includes updates addressing all critical vulnerabilities identified in Windows Server 2016.
    • Windows Server 2022: 41 vulnerabilities: 16 critical and 25 important
      • Windows Hyper-V Remote Code Execution Vulnerability — CVE-2024-49117
      • Contains updates for all critical issues found in Windows Server 2019 and 2016.
    • Windows Server 2025: 57 vulnerabilities: 16 critical and 41 important
      • Includes identical vulnerabilities as in Windows Server 2022.

    Windows Security Updates

    Windows 10 version 22H2

    Updates and improvements:

    • Implemented security enhancements.
    • Addressed an issue that hindered Windows activation following a motherboard change.
    • Updated Country and Operator Settings Assets.
    • Resolved an issue associated with IPP USB printers.

    Windows 11 versions 22H2 and 23H2

    Updates and enhancements:

    • Implemented security enhancements.
    • Customized Experiences have been retitled to Personalized offers in the Out of Box experience. This feature can be disabled in Settings > Privacy & Security.
    • The System Tray now presents a condensed format for date and time. The year has been omitted from the date, and the am/pm indicator is absent from the time. Users can revert these options via Settings > Date and Time.
    • Start menu applications now support jumplists accessible through right-click. Holding Shift while clicking allows applications to be launched with administrative permissions.
    • New options for touchscreen edge gestures permit users to disable gestures on the left or right edges of the display. Configuration is conducted under Settings > Bluetooth & Devices.

    You May Also Like

    Reviews

    Microsoft has resolved 74 security issues in its software during the company’s August 2023 Patch Tuesday release. The previous month’s update tackled 132 vulnerabilities,...

    Hacks

    An economical high-voltage power supply project has been developed by Sebastian from Baltic Labs. The primary element of this endeavor is a commercial power...

    Hacks

    The issue of compatibility centers around the POPCNT CPU function. TheBobPony’s posts on Twitter uncovered that this function is found in several Windows 11...

    Hacks

    The choice to utilize USB storage was influenced by the nonexistence of Bluetooth and the substandard audio input port in the dated entertainment system....