Microsoft August 2019 Security Updates

[Corrine 2,509]

The August security updates have been released and consist of 93 CVEs and 2 advisories. Of these 93 CVEs, 29 are rated Critical, and 64 are rated Important in severity. None are listed as publicly known or as under active attack at the time of release but multiple bugs this month fall into the wormable category.

 

The updates address Information Disclosure, Elevation of Privilege, Remote Code Execution, Denial of Service, Security Feature Bypass, Tampering and Spoofing. They apply to the following: Microsoft Windows, Internet Explorer, Microsoft Edge, ChakraCore, Microsoft Office and Microsoft Office Services and Web Apps, Visual Studio, Online Services, Active Directory, Microsoft Dynamics.

 

Known Issues: See the Known Issues and accompanying work-around in the KB Articles for your version of Windows in the Update History:

• Windows 10
  
• Windows 8.1
  
• Windows 7
  

Recommended Reading: See Dustin Childs review and analysis in Zero Day Initiative — The August 2019 Security Update Review.

[Corrine 2,509]

The block on Windows 7 with Symantec Antivirus installed has been removed. This change applies to the following updates:

 

KB4512514 (August Preview of Monthly Rollup)

KB4512486 (August Security-only update)

KB4512506 (August Monthly Rollup)

 

Note, however, the information in Microsoft Lifts Update Block On Windows 7 With Symantec AV regarding Symantec's advice.