14 April 21, 05:35
Quote:Continue Reading
Microsoft released security and non-security updates for supported versions of Microsoft Windows and other company products such as Office on the April 2021 Patch Tuesday.
Our guide provides administrators and home users with information on the released updates. It links to all support pages, lists known issues and direct patch downloads, and lists all security and non-security update releases of the day.
Click here to open the March 2021 Patch Day overview in case you missed it or want to revisit it.
The Microsoft Windows Security Updates: April 2021
Click on the following link to download an Excel spreadsheet with the released security updates: Security-updates-windows-april-2021
Executive SummaryOperating System Distribution
- Security updates are available for all supported versions of Windows (client and server).
- Microsoft released security updates for other company products including Azure, Microsoft Edge, Exchange Server, Microsoft Office, Visual Studio and Visual Studio Code, and Windows Media Player.
- If you manage Exchange Servers, check out this blog post on the April 2021 security updates.
- Several updates have known issues, including those for Windows 7 and 8.1, various Windows 10 versions, Windows Server versions, and Microsoft Exchange Server.
- Windows 10 version 1909 for Home customers runs out of support after the May 2021 Patch Day.
Windows Server products
- Windows 7 (extended support only): 50 vulnerabilities: 14 critical and 36 important
- CVE-2021-27095 -- Windows Media Video Decoder Remote Code Execution Vulnerability
- CVE-2021-28315 -- Windows Media Video Decoder Remote Code Execution Vulnerability
- CVE-2021-28329 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2021-28330 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2021-28331 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2021-28332 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2021-28333 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2021-28334 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2021-28335 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2021-28336 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2021-28337 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2021-28338 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2021-28339 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2021-28343 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- Windows 8.1: 5 5vulnerabilities: 14 critical and 41 important
- same as Windows 7
- Windows 10 version 1903 and 1909: 77 vulnerabilities: 14 critical and 62 important and 1 moderate
- same as Windows 7
- Windows 10 version 2004 and 20H2: 79 vulnerabilities, 14 critical and 64 important and 1 moderate
- same as Windows 7
Windows Security Updates
- Windows Server 2008 R2 (extended support only): 47 vulnerabilities: 14 critical and 33 important
- CVE-2021-27095 -- Windows Media Video Decoder Remote Code Execution Vulnerability
- CVE-2021-28315 -- Windows Media Video Decoder Remote Code Execution Vulnerability
- CVE-2021-28329 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2021-28330 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2021-28331 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2021-28332 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2021-28333 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2021-28334 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2021-28335 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2021-28336 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2021-28337 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2021-28338 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2021-28339 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2021-28343 -- Remote Procedure Call Runtime Remote Code Execution Vulnerability
- Windows Server 2012 R2: 55 vulnerabilities: 14 critical and 41 important
- same as Windows Sever 2008 R2
- Windows Server 2016: 63 vulnerabilities: 14 critical and 49 important.
- same as Windows Sever 2008 R2
- Windows Server 2019: 77 vulnerabilities: 14 critical and 62 important and 1 moderate
- same as Windows Sever 2008 R2
Windows 7 SP1 and Windows Server 2008 R2 Updates and improvements:Windows 8.1 and Windows Server 2012 R2 Updates and improvements:
- Time Zone change for Volgograd, Russia and The Republic of South Sudan.
- Removed support for the RemoteFX vGPU feature. Microsoft suggests to use secure vGPU alternatives. (Monthly Rollup only)
- Addressed an issue that prevents users from specifying up to 255 columns when using the Jet Text installable indexed sequential access method (IISAM) format. (Monthly Rollup only)
- Fixed a Windows Backup Event ID reporting issue. (Monthly Rollup only)
- Fixed security issues.
Windows 10 version 1909
- Time Zone change for Volgograd, Russia and The Republic of South Sudan.
- Fixed security issues.
- Removed support for the RemoteFX vGPU feature. Microsoft suggests to use secure vGPU alternatives. (Monthly Rollup only)
- Addressed an issue that prevents users from specifying up to 255 columns when using the Jet Text installable indexed sequential access method (IISAM) format. (Monthly Rollup only)
Updates and improvements:
- Support Page: KB5001337
Windows 10 version 2004 and 20H2
- Fixed a "potential elevation of privilege vulnerability in the way Azure Active Directory web sign-in allows arbitrary browsing". See Policy CSP Authentication for more information.
- Fixed an issue in "which a principal in a trusted MIT realm fails to obtain a Kerberos service ticket from Active Directory domain controllers (DC)".
- Removed support for the RemoteFX vGPU feature. Microsoft suggests to use secure vGPU alternatives. (Monthly Rollup only)
- Security updates.
Updates and improvements:
- Support Page: KB5001330
Other security updates
- same as Windows 10 version 1909
2021-04 Cumulative Update for Windows 10 Version 1507 (KB5001340)
2021-04 Cumulative Update for Windows 10 Version 1803 (KB5001339)
2021-04 Cumulative Update for Windows 10 Version 1809 (KB5001342)
2021-04 Security Only Quality Update for Windows Server 2008 (KB5001332)
2021-04 Security Monthly Quality Rollup for Windows Server 2008 (KB5001389)
2021-04 Security Only Quality Update for Windows Embedded 8 Standard and Windows Server 2012 (KB5001383)
2021-04 Security Monthly Quality Rollup for Windows Embedded 8 Standard and Windows Server 2012 (KB5001387)
2021-04 Cumulative Update for Windows Server 2016 and Windows 10 Version 1607 (KB5001347)
...