Published: Aug 14, 2024
Key Takeaways:
- Microsoft released the August 2024 Patch Tuesday updates, addressing 90 vulnerabilities, including seven critical ones, such as remote code execution and privilege escalation flaws.
- The August 2024 update introduces the ability for users to drag app shortcuts from the Start menu to the Taskbar in Windows 11.
- Windows 11 version 22H2 Home and Pro editions will reach end of support on October 8, 2024.
Microsoft has released the August 2024 Patch Tuesday updates for Windows 11 and Windows 10. This month, Microsoft addressed 90 new vulnerabilities in Windows, Office, Azure, Co-Pilot, and other components.
Microsoft is reminding customers that the Home and Pro editions of Windows 11 version 22H2 will reach end of support on October 8. The company recommends users to upgrade to the latest version of Windows 11 to continue receiving security and non-security updates.
According to the Zero Day Initiative, Microsoft has released a total of 90 security patches, with fixes for seven critical vulnerabilities. Here’s a list of the most important security flaws you should know about this month:
Here’s a full list of CVEs Microsoft released this month:
Product | Impact | Max Severity | Article | Download | Details |
Windows Server 2022 | Elevation of Privilege | Important | 5040437 | Security Update | CVE-2024-38186 |
Windows Server 2019 (Server Core installation) | Elevation of Privilege | Important | 5040430 | Security Update | CVE-2024-38186 |
Windows Server 2019 | Elevation of Privilege | Important | 5040430 | Security Update | CVE-2024-38186 |
Windows 10 Version 1809 for ARM64-based Systems | Elevation of Privilege | Important | 5040430 | Security Update | CVE-2024-38186 |
Windows 10 Version 1809 for x64-based Systems | Elevation of Privilege | Important | 5040430 | Security Update | CVE-2024-38186 |
C SDK for Azure IoT | Remote Code Execution | Important | Release Notes | Security Update | CVE-2024-38158 |
Azure IoT Hub Device Client SDK | Remote Code Execution | Important | Release Notes | Security Update | CVE-2024-38157 |
Windows 11 Version 24H2 for x64-based Systems | Information Disclosure | Important | 5041571 | Security Update | CVE-2024-38155 |
Windows 11 Version 24H2 for ARM64-based Systems | Information Disclosure | Important | 5041571 | Security Update | CVE-2024-38155 |
Windows 11 Version 23H2 for x64-based Systems | Information Disclosure | Important | 5041585 | Security Update | CVE-2024-38155 |
Windows 11 Version 23H2 for ARM64-based Systems | Information Disclosure | Important | 5041585 | Security Update | CVE-2024-38155 |
Windows 10 Version 22H2 for 32-bit Systems | Information Disclosure | Important | 5041580 | Security Update | CVE-2024-38155 |
Windows 10 Version 21H2 for x64-based Systems | Remote Code Execution | Important | 5041580 | Security Update | CVE-2024-38152 |
Windows 10 Version 21H2 for ARM64-based Systems | Remote Code Execution | Important | 5041580 | Security Update | CVE-2024-38152 |
Windows 10 Version 21H2 for 32-bit Systems | Remote Code Execution | Important | 5041580 | Security Update | CVE-2024-38152 |
Windows 11 version 21H2 for ARM64-based Systems | Remote Code Execution | Important | 5041592 | Security Update | CVE-2024-38152 |
Windows 11 version 21H2 for x64-based Systems | Remote Code Execution | Important | 5041592 | Security Update | CVE-2024-38152 |
Windows Server 2022 (Server Core installation) | Remote Code Execution | Important | 5041160 | Security Update | CVE-2024-38152 |
Windows Server 2016 | Denial of Service | Important | 5041773 | Security Update | CVE-2024-38146 |
Windows 10 Version 1607 for x64-based Systems | Denial of Service | Important | 5041773 | Security Update | CVE-2024-38146 |
Windows 10 Version 1607 for 32-bit Systems | Denial of Service | Important | 5041773 | Security Update | CVE-2024-38146 |
Windows 10 for x64-based Systems | Denial of Service | Important | 5041782 | Security Update | CVE-2024-38146 |
Windows 10 for 32-bit Systems | Denial of Service | Important | 5041782 | Security Update | CVE-2024-38146 |
Windows Server 2022, 23H2 Edition (Server Core installation) | Denial of Service | Important | 5041573 | Security Update | CVE-2024-38146 |
Windows Server 2022 | Elevation of Privilege | Important | 5041160 | Security Update | CVE-2024-38134 |
Windows Server 2019 (Server Core installation) | Elevation of Privilege | Important | 5041578 | Security Update | CVE-2024-38134 |
Windows Server 2012 (Server Core installation) | Elevation of Privilege | Important | 5041851 | Monthly Rollup | CVE-2024-38127 |
Windows Server 2012 | Elevation of Privilege | Important | 5041851 | Monthly Rollup | CVE-2024-38127 |
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) | Elevation of Privilege | Important | 5041838 | Monthly Rollup | CVE-2024-38127 |
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) | Elevation of Privilege | Important | 5041823 | Security Only | CVE-2024-38127 |
Windows Server 2008 R2 for x64-based Systems Service Pack 1 | Elevation of Privilege | Important | 5041838 | Monthly Rollup | CVE-2024-38127 |
Windows Server 2008 R2 for x64-based Systems Service Pack 1 | Elevation of Privilege | Important | 5041823 | Security Only | CVE-2024-38127 |
Windows Server 2016 (Server Core installation) | Elevation of Privilege | Important | 5041773 | Security Update | CVE-2024-38127 |
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) | Information Disclosure | Important | 5041850 | Monthly Rollup | CVE-2024-38122 |
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) | Information Disclosure | Important | 5041847 | Security Only | CVE-2024-38122 |
Windows Server 2008 for 32-bit Systems Service Pack 2 | Information Disclosure | Important | 5041850 | Monthly Rollup | CVE-2024-38122 |
Windows Server 2008 for 32-bit Systems Service Pack 2 | Information Disclosure | Important | 5041847 | Security Only | CVE-2024-38122 |
Windows 10 Version 22H2 for ARM64-based Systems | Elevation of Privilege | Important | 5041580 | Security Update | CVE-2024-38117 |
Windows 10 Version 22H2 for x64-based Systems | Elevation of Privilege | Important | 5041580 | Security Update | CVE-2024-38117 |
Windows 11 Version 22H2 for x64-based Systems | Elevation of Privilege | Important | 5041585 | Security Update | CVE-2024-38117 |
Windows 11 Version 22H2 for ARM64-based Systems | Elevation of Privilege | Important | 5041585 | Security Update | CVE-2024-38117 |
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) | Remote Code Execution | Important | 5041850 | Monthly Rollup | CVE-2024-38114 |
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) | Remote Code Execution | Important | 5041847 | Security Only | CVE-2024-38114 |
Windows Server 2008 for x64-based Systems Service Pack 2 | Remote Code Execution | Important | 5041850 | Monthly Rollup | CVE-2024-38114 |
Windows Server 2008 for x64-based Systems Service Pack 2 | Remote Code Execution | Important | 5041847 | Security Only | CVE-2024-38114 |
Windows Server 2012 R2 (Server Core installation) | Spoofing | Important | 5041828 | Monthly Rollup | CVE-2024-37968 |
Windows Server 2012 R2 | Spoofing | Important | 5041828 | Monthly Rollup | CVE-2024-37968 |
Windows Server 2019 | Spoofing | Important | 5041578 | Security Update | CVE-2024-37968 |
Azure Health Bot | Elevation of Privilege | Critical | CVE-2024-38109 | ||
Windows 10 Version 1809 for ARM64-based Systems | Elevation of Privilege | Important | 5041578 | Security Update | CVE-2024-38223 |
Windows 10 Version 1809 for x64-based Systems | Elevation of Privilege | Important | 5041578 | Security Update | CVE-2024-38223 |
Windows 10 Version 1809 for 32-bit Systems | Elevation of Privilege | Important | 5041578 | Security Update | CVE-2024-38223 |
Microsoft Dynamics 365 (on-premises) version 9.1 | Spoofing | Important | 5041557 | Security Update | CVE-2024-38211 |
CBL Mariner 2.0 x64 | grub2 | CBL-Mariner | CVE-2022-3775 | ||
CBL Mariner 2.0 ARM | grub2 | CBL-Mariner | CVE-2022-3775 | ||
CBL Mariner 1.0 x64 | grub2 | CBL-Mariner | CVE-2022-3775 | ||
CBL Mariner 1.0 ARM | grub2 | CBL-Mariner | CVE-2022-3775 | ||
Azure Linux 3.0 x64 | grub2 | CBL-Mariner | CVE-2022-3775 | ||
Azure Linux 3.0 ARM | grub2 | CBL-Mariner | CVE-2022-3775 | ||
Windows 10 Version 22H2 for 32-bit Systems | Elevation of Privilege | Important | 5042320 | Security Update | CVE-2024-38163 |
Windows 10 Version 22H2 for x64-based Systems | Elevation of Privilege | Important | 5042320 | Security Update | CVE-2024-38163 |
Windows 10 Version 21H2 for x64-based Systems | Elevation of Privilege | Important | 5042320 | Security Update | CVE-2024-38163 |
Windows 10 Version 21H2 for 32-bit Systems | Elevation of Privilege | Important | 5042320 | Security Update | CVE-2024-38163 |
Windows 11 version 21H2 for x64-based Systems | Elevation of Privilege | Important | 5042321 | Security Update | CVE-2024-38163 |
Windows Server 2022 | Elevation of Privilege | Important | 5042322 | Security Update | CVE-2024-38163 |
Azure CycleCloud 8.6.1 | Remote Code Execution | Important | Release Notes | Security Update | CVE-2024-38195 |
Azure CycleCloud 8.6.2 | Remote Code Execution | Important | Release Notes | Security Update | CVE-2024-38195 |
Azure CycleCloud 8.5.0 | Remote Code Execution | Important | Release Notes | Security Update | CVE-2024-38195 |
Azure CycleCloud 8.4.2 | Remote Code Execution | Important | Release Notes | Security Update | CVE-2024-38195 |
Azure CycleCloud 8.4.1 | Remote Code Execution | Important | Release Notes | Security Update | CVE-2024-38195 |
Azure CycleCloud 8.4.0 | Remote Code Execution | Important | Release Notes | Security Update | CVE-2024-38195 |
Azure CycleCloud 8.3.0 | Remote Code Execution | Important | Release Notes | Security Update | CVE-2024-38195 |
Azure CycleCloud 8.2.1 | Remote Code Execution | Important | Release Notes | Security Update | CVE-2024-38195 |
Azure CycleCloud 8.2.2 | Remote Code Execution | Important | Release Notes | Security Update | CVE-2024-38195 |
Azure CycleCloud 8.1.1 | Remote Code Execution | Important | Release Notes | Security Update | CVE-2024-38195 |
Azure CycleCloud 8.1.0 | Remote Code Execution | Important | Release Notes | Security Update | CVE-2024-38195 |
Azure CycleCloud 8.0.2 | Remote Code Execution | Important | Release Notes | Security Update | CVE-2024-38195 |
Azure CycleCloud 8.0.1 | Remote Code Execution | Important | Release Notes | Security Update | CVE-2024-38195 |
Azure CycleCloud 8.6.0 | Remote Code Execution | Important | Release Notes | Security Update | CVE-2024-38195 |
Azure CycleCloud 8.0.0 | Remote Code Execution | Important | Release Notes | Security Update | CVE-2024-38195 |
Azure CycleCloud 8.2.0 | Remote Code Execution | Important | Release Notes | Security Update | CVE-2024-38195 |
Microsoft Office LTSC 2021 for 64-bit editions | Remote Code Execution | Important | Click to Run | Security Update | CVE-2024-38189 |
Microsoft Office LTSC 2021 for 32-bit editions | Remote Code Execution | Important | Click to Run | Security Update | CVE-2024-38189 |
Microsoft Project 2016 (64-bit edition) | Remote Code Execution | Important | 5002561 | Security Update | CVE-2024-38189 |
Microsoft Project 2016 (32-bit edition) | Remote Code Execution | Important | 5002561 | Security Update | CVE-2024-38189 |
Microsoft 365 Apps for Enterprise for 64-bit Systems | Remote Code Execution | Important | Click to Run | Security Update | CVE-2024-38189 |
Microsoft 365 Apps for Enterprise for 32-bit Systems | Remote Code Execution | Important | Click to Run | Security Update | CVE-2024-38189 |
Microsoft Office 2019 for 64-bit editions | Remote Code Execution | Important | Click to Run | Security Update | CVE-2024-38189 |
Microsoft Office 2019 for 32-bit editions | Remote Code Execution | Important | Click to Run | Security Update | CVE-2024-38189 |
Windows Server 2016 (Server Core installation) | Elevation of Privilege | Important | 5040434 | Security Update | CVE-2024-38187 |
Windows Server 2016 | Elevation of Privilege | Important | 5040434 | Security Update | CVE-2024-38187 |
Windows 10 Version 1607 for x64-based Systems | Elevation of Privilege | Important | 5040434 | Security Update | CVE-2024-38187 |
Windows 10 Version 1607 for 32-bit Systems | Elevation of Privilege | Important | 5040434 | Security Update | CVE-2024-38187 |
Windows Server 2022, 23H2 Edition (Server Core installation) | Elevation of Privilege | Important | 5040438 | Security Update | CVE-2024-38187 |
Windows 11 Version 23H2 for x64-based Systems | Elevation of Privilege | Important | 5040442 | Security Update | CVE-2024-38187 |
Windows 11 Version 23H2 for ARM64-based Systems | Elevation of Privilege | Important | 5040442 | Security Update | CVE-2024-38187 |
Windows 10 Version 22H2 for 32-bit Systems | Elevation of Privilege | Important | 5040427 | Security Update | CVE-2024-38187 |
Windows 10 Version 22H2 for ARM64-based Systems | Elevation of Privilege | Important | 5040427 | Security Update | CVE-2024-38187 |
Windows 10 Version 22H2 for x64-based Systems | Elevation of Privilege | Important | 5040427 | Security Update | CVE-2024-38187 |
Windows 11 Version 22H2 for x64-based Systems | Elevation of Privilege | Important | 5040442 | Security Update | CVE-2024-38187 |
Windows 11 Version 22H2 for ARM64-based Systems | Elevation of Privilege | Important | 5040442 | Security Update | CVE-2024-38187 |
Windows 10 Version 21H2 for x64-based Systems | Elevation of Privilege | Important | 5040427 | Security Update | CVE-2024-38187 |
Windows 10 Version 21H2 for ARM64-based Systems | Elevation of Privilege | Important | 5040427 | Security Update | CVE-2024-38187 |
Windows 10 Version 21H2 for 32-bit Systems | Elevation of Privilege | Important | 5040427 | Security Update | CVE-2024-38187 |
Windows 11 version 21H2 for ARM64-based Systems | Elevation of Privilege | Important | 5040431 | Security Update | CVE-2024-38187 |
Windows 11 version 21H2 for x64-based Systems | Elevation of Privilege | Important | 5040431 | Security Update | CVE-2024-38187 |
Windows Server 2022 (Server Core installation) | Elevation of Privilege | Important | 5040437 | Security Update | CVE-2024-38187 |
Windows 10 Version 1809 for 32-bit Systems | Elevation of Privilege | Important | 5040430 | Security Update | CVE-2024-38187 |
App Installer | Spoofing | Important | Release Notes | Security Update | CVE-2024-38177 |
Microsoft Outlook 2016 (64-bit edition) | Remote Code Execution | Important | 5002626 | Security Update | CVE-2024-38173 |
Microsoft Outlook 2016 (32-bit edition) | Remote Code Execution | Important | 5002626 | Security Update | CVE-2024-38173 |
Microsoft PowerPoint 2016 (64-bit edition) | Remote Code Execution | Important | 5002586 | Security Update | CVE-2024-38171 |
Microsoft PowerPoint 2016 (32-bit edition) | Remote Code Execution | Important | 5002586 | Security Update | CVE-2024-38171 |
Microsoft Office LTSC for Mac 2021 | Remote Code Execution | Important | Release Notes | Security Update | CVE-2024-38171 |
Azure Connected Machine Agent | Elevation of Privilege | Important | Release Notes | Security Update | CVE-2024-38162 |
Remote Desktop client for Windows Desktop | Remote Code Execution | Important | Release Notes | Security Update | CVE-2024-38131 |
Microsoft OfficePLUS | Elevation of Privilege | Important | Release Notes | Security Update | CVE-2024-38084 |
Windows Server 2012 R2 (Server Core installation) | Security Feature Bypass | Moderate | 5039294 | Monthly Rollup | CVE-2024-38213 |
Windows Server 2012 R2 | Security Feature Bypass | Moderate | 5039294 | Monthly Rollup | CVE-2024-38213 |
Windows Server 2012 (Server Core installation) | Security Feature Bypass | Moderate | 5039260 | Monthly Rollup | CVE-2024-38213 |
Windows Server 2012 | Security Feature Bypass | Moderate | 5039260 | Monthly Rollup | CVE-2024-38213 |
Windows Server 2016 (Server Core installation) | Security Feature Bypass | Moderate | 5039214 | Security Update | CVE-2024-38213 |
Windows Server 2016 | Security Feature Bypass | Moderate | 5039214 | Security Update | CVE-2024-38213 |
Windows 10 Version 1607 for x64-based Systems | Security Feature Bypass | Moderate | 5039214 | Security Update | CVE-2024-38213 |
Windows 10 Version 1607 for 32-bit Systems | Security Feature Bypass | Moderate | 5039214 | Security Update | CVE-2024-38213 |
Windows 10 for x64-based Systems | Security Feature Bypass | Moderate | 5039225 | Security Update | CVE-2024-38213 |
Windows 10 for 32-bit Systems | Security Feature Bypass | Moderate | 5039225 | Security Update | CVE-2024-38213 |
Windows Server 2022, 23H2 Edition (Server Core installation) | Security Feature Bypass | Moderate | 5039236 | Security Update | CVE-2024-38213 |
Windows 11 Version 23H2 for x64-based Systems | Security Feature Bypass | Moderate | 5039212 | Security Update | CVE-2024-38213 |
Windows 11 Version 23H2 for ARM64-based Systems | Security Feature Bypass | Moderate | 5039212 | Security Update | CVE-2024-38213 |
Windows 10 Version 22H2 for 32-bit Systems | Security Feature Bypass | Moderate | 5039211 | Security Update | CVE-2024-38213 |
Windows 10 Version 22H2 for ARM64-based Systems | Security Feature Bypass | Moderate | 5039211 | Security Update | CVE-2024-38213 |
Windows 10 Version 22H2 for x64-based Systems | Security Feature Bypass | Moderate | 5039211 | Security Update | CVE-2024-38213 |
Windows 11 Version 22H2 for x64-based Systems | Security Feature Bypass | Moderate | 5039212 | Security Update | CVE-2024-38213 |
Windows 11 Version 22H2 for ARM64-based Systems | Security Feature Bypass | Moderate | 5039212 | Security Update | CVE-2024-38213 |
Windows 10 Version 21H2 for x64-based Systems | Security Feature Bypass | Moderate | 5039211 | Security Update | CVE-2024-38213 |
Windows 10 Version 21H2 for ARM64-based Systems | Security Feature Bypass | Moderate | 5039211 | Security Update | CVE-2024-38213 |
Windows 10 Version 21H2 for 32-bit Systems | Security Feature Bypass | Moderate | 5039211 | Security Update | CVE-2024-38213 |
Windows 11 version 21H2 for ARM64-based Systems | Security Feature Bypass | Moderate | 5039213 | Security Update | CVE-2024-38213 |
Windows 11 version 21H2 for x64-based Systems | Security Feature Bypass | Moderate | 5039213 | Security Update | CVE-2024-38213 |
Windows Server 2022 (Server Core installation) | Security Feature Bypass | Moderate | 5039227 | Security Update | CVE-2024-38213 |
Windows Server 2022 (Server Core installation) | Security Feature Bypass | Moderate | 5039330 | Security Hotpatch Update | CVE-2024-38213 |
Windows Server 2022 | Security Feature Bypass | Moderate | 5039227 | Security Update | CVE-2024-38213 |
Windows Server 2022 | Security Feature Bypass | Moderate | 5039330 | Security Hotpatch Update | CVE-2024-38213 |
Windows Server 2019 (Server Core installation) | Security Feature Bypass | Moderate | 5039217 | Security Update | CVE-2024-38213 |
Windows Server 2019 | Security Feature Bypass | Moderate | 5039217 | Security Update | CVE-2024-38213 |
Windows 10 Version 1809 for ARM64-based Systems | Security Feature Bypass | Moderate | 5039217 | Security Update | CVE-2024-38213 |
Windows 10 Version 1809 for x64-based Systems | Security Feature Bypass | Moderate | 5039217 | Security Update | CVE-2024-38213 |
Windows 10 Version 1809 for 32-bit Systems | Security Feature Bypass | Moderate | 5039217 | Security Update | CVE-2024-38213 |
Azure Stack Hub | Elevation of Privilege | Important | Release Notes | Security Update | CVE-2024-38201 |
Microsoft Teams for iOS | Spoofing | Important | Release Notes | Security Update | CVE-2024-38197 |
Windows Server 2012 R2 (Server Core installation) | Elevation of Privilege | Important | 5040456 | Monthly Rollup | CVE-2024-38191 |
Windows Server 2012 R2 | Elevation of Privilege | Important | 5040456 | Monthly Rollup | CVE-2024-38191 |
Windows Server 2012 (Server Core installation) | Elevation of Privilege | Important | 5040485 | Monthly Rollup | CVE-2024-38191 |
Windows Server 2012 | Elevation of Privilege | Important | 5040485 | Monthly Rollup | CVE-2024-38191 |
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) | Elevation of Privilege | Important | 5040497 | Monthly Rollup | CVE-2024-38191 |
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) | Elevation of Privilege | Important | 5040498 | Security Only | CVE-2024-38191 |
Windows Server 2008 R2 for x64-based Systems Service Pack 1 | Elevation of Privilege | Important | 5040497 | Monthly Rollup | CVE-2024-38191 |
Windows Server 2008 R2 for x64-based Systems Service Pack 1 | Elevation of Privilege | Important | 5040498 | Security Only | CVE-2024-38191 |
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) | Elevation of Privilege | Important | 5040499 | Monthly Rollup | CVE-2024-38191 |
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) | Elevation of Privilege | Important | 5040490 | Security Only | CVE-2024-38191 |
Windows Server 2008 for x64-based Systems Service Pack 2 | Elevation of Privilege | Important | 5040499 | Monthly Rollup | CVE-2024-38191 |
Windows Server 2008 for x64-based Systems Service Pack 2 | Elevation of Privilege | Important | 5040490 | Security Only | CVE-2024-38191 |
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) | Elevation of Privilege | Important | 5040499 | Monthly Rollup | CVE-2024-38191 |
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) | Elevation of Privilege | Important | 5040490 | Security Only | CVE-2024-38191 |
Windows Server 2008 for 32-bit Systems Service Pack 2 | Elevation of Privilege | Important | 5040499 | Monthly Rollup | CVE-2024-38191 |
Windows Server 2008 for 32-bit Systems Service Pack 2 | Elevation of Privilege | Important | 5040490 | Security Only | CVE-2024-38191 |
Windows 10 for x64-based Systems | Elevation of Privilege | Important | 5040448 | Security Update | CVE-2024-38191 |
Windows 10 for 32-bit Systems | Elevation of Privilege | Important | 5040448 | Security Update | CVE-2024-38191 |
Windows Server 2012 R2 (Server Core installation) | Remote Code Execution | Important | 5041770 | IE Cumulative | CVE-2024-38178 |
Windows Server 2012 R2 | Remote Code Execution | Important | 5041770 | IE Cumulative | CVE-2024-38178 |
Microsoft Visual Studio 2022 version 17.8 | Denial of Service | Important | Release Notes | Security Update | CVE-2024-38168 |
Microsoft Visual Studio 2022 version 17.10 | Denial of Service | Important | Release Notes | Security Update | CVE-2024-38168 |
Microsoft Visual Studio 2022 version 17.6 | Denial of Service | Important | Release Notes | Security Update | CVE-2024-38168 |
.NET 8.0 | Denial of Service | Important | 5042132 | Security Update | CVE-2024-38168 |
Microsoft has released the KB5041585 patch for users running Windows 11 versions 22H2 and 23H2. This update brings all the new features that were previously released in July’s Week D update. Users can now drag app shortcuts from the pinned area in the Start menu to the Taskbar. For Windows 11 version 24H2, Microsoft has released a new KB5041571 patch that lets users drag app shortcuts from the Start menu to the Taskbar.
For Windows 10 users, Microsoft released the KB5041580 patch that addresses the BitLocker recovery screen bug caused by the July 2024 Patch Tuesday updates. The company is also working to fix an issue that is currently preventing users from changing their profile pictures.
Organizations looking to deploy this month’s patches should conduct thorough testing before deploying them widely on production systems. That said, applying the patches widely shouldn’t be delayed longer than necessary as hackers start to work out how to weaponize newly reported vulnerabilities.
A best practice is to make sure you have backed up systems before applying updates. Every month, users experience issues with Windows updates that lead to systems not booting, application and hardware compatibility issues, or even data loss in extreme cases.
There are backup tools built into Windows and Windows Server that you can use to restore systems in the event a patch causes a problem. The backup features in Windows can be used to restore an entire system, or files and folders on a granular basis.