Security update for windows что это

This update provides latest updates for Windows Security platform, which is comprised of the Windows Security app and its underlying service.

To obtain the current version of Windows Security app, please run powershell command below:

Get-AppPackage Microsoft.SecHealthUI

Manually download the update

• Windows Security Application Version: 1000.25931.1002.0

• Windows Security Platform Version: 1.0.2306.10002

64-Bit | ARM64

More about Windows Security app here.

Описание и рекомендации

KB3033929 – целевое обновление системы безопасности, совместимое исключительно с Windows 7 (обе разрядности x64/x32) и серверной версией — Server 2008 R2.

В обоих случаях требуется наличие в системе сервисного пакета Service Pack 1 (SP1). Установщик обновления – файл msu, реализован на множестве языков, включая русский.

Смысл в инсталляции утилиты

Необходимость в применении KB3033929 к системе Windows 7 x64 (или 32-битной архитектуре) возникла с начала 2016 года. Причина – отказ Microsoft от поддержки SHA-1 в пользу усовершенствованной методики хэширования SHA-2.

Новое семейство криптографических алгоритмов объединяет 6 хэш-функций с вариативной длиной дайджеста. Используемые в SHA-2 размеры хэша – 224/256/384/512 бит. Для сравнения: дайджест SHA-1 составляет 160 бит.

Результат: часть клиентов, включая большинство игровых серверов, не работают без установки KB3033929. Также обновление необходимо для функционирования ряда редакторов мультимедиа, EDIUS в частности.

Порядок установки

Утилита вызвала ряд системных сбоев у отечественных пользователей. Поэтому, разумно привести краткое описание процесса инсталляции KB3033929:

1. Скачать бесплатно программный модуль у нас.
2. Убедиться в наличии SP1. Если сервисный пакет отсутствует, предварительно установить его.
3. Запустить скачанный файл msu соответственно типу ОС Windows 7 x32 или x64.
4. Перезагрузить систему.

Устанавливать софт рекомендуется только на оригинальные издания Windows 7/Server 2008 R2. Отличий в инсталляции утилиты на 32-х и 64-битные системы нет. Владельцам более поздних выпусков операционной среды от Microsoft, Виндовс 8, 8.1, 10 и 11, данный продукт не требуется.

Заключение

Обновление KB3033929 скачать бесплатно в оригинальной версии от разработчика на русском языке можно у нас. Установка программного продукта на неофициальные сборки Windows 7 x32, x64 может привести к циклической перезагрузке системе.

Скриншоты

нет

Microsoft has released security Patch Tuesday updates for Windows 11 and Windows 10 versions 22H2, and 21H2, for June 2023. These are cumulative updates, which means that all fixes and improvements will be included if you only install this update and missed out on the previous ones.

You can now download KB5027215 using the direct download links below or through Windows Update. This is a security update that also addresses a Windows kernel information disclosure vulnerability. However, it does not include any new features for the Windows 10 OS.

That said, Windows 10 version 21H2 is reaching End of Service today, which means it will no longer receive Patch Tuesday updates. However, only Windows 10 Enterprise, Education, IoT Enterprise, and Enterprise multi-session editions will be supported. Moreover, Windows 10 version 20H2 reached the End of Service last month, so this update does not apply to it.

Most of the improvements included in KB5027215 were released in last month’s optional non-security update KB5026435. So if you installed that update, then this one ought to be a small one.

To learn more about the security vulnerability fixes with this update, refer to Microsoft’s MSRC vulnerability guide.

In the Vulnerability Guide, set the filter to “Update Tuesday (2nd Tuesday of the month)” and then select “June 2023” in the “Vulnerabilities” tab.

KB5027215 Release Summary

The table below gives a brief summary of the update and the updated OS builds:

Article KB	OS Version	Release Date	Updated OS Build
KB5027215	Windows 10 22H2	13 June 2023	19045.3086
KB5027215	Windows 10 21H2	13 June 2023	19044.3086

Fixes and Improvements in KB5027215

This update includes all the improvements that were introduced in KB5026435 which was released on 23rd May 2023 and was a Type D update, and then some. We have compiled and listed all of the updates below:

• [New] Issues with 32-bit applications are now addressed. You can find more information in our separate guide on Windows known issues.
• [New] This update addresses an issue that affects the Windows Kernel. This issue is related to CVE-2023-32019.
• This update brings an improved search box experience on the taskbar. If you have a top, bottom, regular, or small icons taskbar, you will see the search box appear. You can use it to easily access apps, files, settings, and more from Windows and the web. You will also have access to the latest search updates, such as search highlights.
• This update now displays up to three high-priority toast notifications at the same time. This feature affects apps that use Windows OS notifications to send notices for calls, reminders, or alarms. Up to four toast notifications might appear at the same time. This means that there can be three high-priority notifications and one normal-priority notification.
• This update addresses an issue that affects access to Tab settings for IE mode sites.
• This update addresses a multi-function label printer installation issue.
• This update addresses an issue that affects the touch keyboard. Sometimes, it does not show the correct layout based on the current input scope.
• This update addresses an issue that sometimes fails to open the touch keyboard.
• This update addresses an issue that affects App Installer. Sometimes, MSIX apps fail to update.
• This update addresses an issue that affects Server Message Block (SMB). You cannot access the SMB shared folder. The errors are, “Not enough memory resources” or “Insufficient system resources”.
• This update addresses an issue that affects the Local Security Authority Subsystem Service (LSASS). It stops working. This occurs when you use Azure Virtual Desktop (AVD).
• The update addresses an issue that affects scheduled tasks. The tasks fail when they use stored local user account credentials. This occurs when you enable Credential Guard. The error message is “2147943726 : ERROR_LOGON_FAILURE (The user name or password is incorrect).”
• This update addresses an issue that affects the Storage Spaces Direct (S2D) cluster. It might not come online. This occurs after a periodic password rollover. The error code is 1326.
• This update addresses an issue that affects dot sourcing. It fails files that contain class definitions in Windows PowerShell.
• This update changes the support phone number for Microsoft India for Windows activation.
• This update addresses an issue that affects the PublishDfsRoots policy. It does not apply correctly to a targeted client that has mobile device management (MDM).
• This update changes the international mobile subscriber identity (IMSI) ranges for certain mobile providers.  
• This update addresses an issue that affects the Windows Firewall. The firewall drops all connections to the IP address of a captive portal. This occurs when you choose the Captive Portal Addresses option.  
• This update addresses an issue that affects devices that are joined to Azure Active Directory (Azure AD). The Windows Firewall cannot apply the correct domain and profile for them.
• This update addresses an issue that affects signed Windows Defender Application Control (WDAC) policies. They are not applied to the Secure Kernel. This occurs when you enable Secure Boot.
• This update addresses an issue that might affect a large reparse point. You might get a stop error when you use NTFS to access it. This issue occurs after a canceled FSCTL Set operation changes the reparse tag.
• This update addresses a known issue that might affect some speech recognition apps. They might have sporadic speech recognition, expressive input, and handwriting issues. This occurs when the display language is Chinese or Japanese. The apps might not recognize certain words. They might not receive any input from speech recognition or affected input types. This issue is more likely to occur when the apps use offline speech recognition. For app developers, this issue only affects speech recognition that uses Speech Recognition Grammar Specification (SRGS) in Windows.Media.SpeechRecognition. This issue does not affect other types of speech recognition.

With these improvements, there are also some known issues with this update.

Known Issues in KB5027215

An issue with the standalone (clean) installation of Windows 10 with this update is causing Microsoft Edge Legacy to be removed. However, it is not being replaced by the new Chromium-based Edge.

This occurs only when Windows has a custom offline media or an ISO image installed that does not include the 29th March 2021 SSU update. Microsoft suggests that you either install the March SSU update through slipstreaming or simply update an existing OS through Windows Update, so you will not be facing this issue.

Alternatively, you can simply download and install the new Microsoft Edge if you have already encountered this problem.

This issue has been around for a while and Microsoft still hasn’t fixed it.

Download and Install KB5027215

This update can be installed through Windows Update and standalone installers.

We have given the direct download links to the standalone installers below, using which you can install the update on your respective Windows 10 version, or you can simply update to the latest build using Windows Update through the given guide below.

Offline Installers

For Windows 10 Version 22H2

Download KB5027215 for Windows 10 Version 22H2 64-Bit [744.1 MB]

Download KB5027215 for Windows 10 Version 22H2 32-Bit [406.9 MB]

For Windows 10 Version 21H2

Download KB5027215 for Windows 10 Version 21H2 64-Bit [744.1 MB]

Download KB5027215 for Windows 10 Version 21H2 32-Bit [406.9 MB]

To install the update, simply run the downloaded MSU file and Windows will automatically install the update. You can also extract the CAB file from the MSU file and install it.

To download any other updates related to any of the above, please check the Microsoft Catalog.

Windows Update

To install this update via Windows Update, you need to be running Windows 10 version 22H2 or 21H2 (with the supported edition). To check the version and edition of the operating system, type in winver in the Run Command box and press Enter.

Once ensured you have the right OS version, perform the following steps to install KB5027215:

1. Navigate to the following:

   Settings app > Update and Security > Windows Update

2. Click “Check for updates” from the right side of the app.

   

   You will now see the following update downloading and installing automatically:

   2023-06 Cumulative Update for Windows 10 version 2XH2 for x64/x86-based Systems (KB5027215)

3. Click “Restart Now” when the update has been installed.

   

Once the computer restarts, the update will be successfully installed. To confirm this, check the updated build number by typing in winver in the Run Command box.

Rollback/Remove Windows 10 Cumulative Update

If you do not wish to keep the installed update for some reason, you can always roll back to the previous build of the OS. However, this can only be performed within the next 10 days after installing the new update.

To roll back after 10 days, you will need to apply this trick.

Cleanup After Installing Windows Updates

If you want to save space after installing Windows updates, you can run the following commands one after the other in Command Prompt with administrative privileges:

dism.exe /Online /Cleanup-Image /AnalyzeComponentStore
dism.exe /Online /Cleanup-Image /StartComponentCleanup

Block KB5027215 from Installing

Since these are mandatory updates, they will download and install themselves on the schedule. If you want to block them from installing, temporarily or permanently, you can follow the steps below:

1. Download the “Show or hide updates” tool from Microsoft.

2. Run the utility and click Next to start the scanning process.

   

3. Next, click the “Hide updates” button.

   

4. Select the updates you want to block and click Next.

   

   This automatically hides the update from Windows Update and it will not be installed during the next update process.

5. Click the Close button.

If you want to unhide or show hidden updates, run the tool again and select “Show hidden updates” instead of “Hide updates.” The rest of the process is the same.

Windows 10 KB5027215 Hands On

Unlike KB5027231 for Windows 11, KB5027215 was a lot smoother to download and install. It did not get stuck and was relatively faster as well. The update got downloaded and installed in a total of less than 12 minutes. Note that the last month’s optional non-security update was not installed, which means that KB5027215 should include all previous updates and fixes as well.

Another thing we noticed was the storage capacity before and after installing KB5027215. While the update was only downloaded and not installed, the storage capacity decreased by almost 1.1 GB in the C drive. However, once the update was installed, the total free storage space decreased by 1.6 GB!

Moreover, when we went over to perform a cleanup of the old Windows files, there weren’t many. In fact, all we could clean up was a total of nearly 1 GB.

After the cleanup, the total beginning and ending free storage capacity was decreased by nearly 0.7 GB.

Apart from this observation, the rest of the features and UI remained the same. We did not encounter any issues while maneuvering around the Windows 10 OS.

Windows 10 Patch Tuesday History

KB Article	OS Versions	Build	Release Date	Significant Changes	Announcement
KB5030211	22H2, 21H2	1904X.3448	12-Sep-23	Fixes smart card authentication for domain joining, improves location detection, expands the rollout of notification badging for Microsoft accounts on the Start menu	Microsoft Announcement of KB5030211
KB5029244	22H2, 21H2	1904X.3324	8-Aug-23	Addresses VPN issues, makes notifications more reliable, and addresses critical Remote Code Execution vulnerabilities.	Microsoft Announcement of KB5029244
KB5028166	22H2, 21H2	1904X.3208	11-Jul-23	Improvements to Microsoft Defender for Endpoint, Printer Spooler, and others.	Microsoft Announcement of KB5028166
KB5027215	22H2, 21H2	1904X.3086	13-Jun-23	Fixes issues with 32-bit apps, patches a Windows kernel information disclosure vulnerability	Microsoft Announcement of KB5027215
KB5026361	22H2, 21H2, 20H2	1904X.2965	9-May-23	Ability to sync language and region settings, addresses issues with LSASS, and other security improvements	Microsoft Announcement of KB5026361
KB5025221	22H2, 21H2, 20H2	1904X.2846	11-Apr-23	Ability to sync language and region settings addresses issues with LSASS, other security improvements	Microsoft Announcement of KB5025221
KB5023696	22H2, 21H2, 20H2	1904X.2728	14-Mar-23	Improved Windows Spotlight experience on the lock screen, fixed AD joining issue and others	Microsoft Announcement of KB5023696
KB5022834	22H2, 21H2, 20H2	1904X.2604	14-Feb-23	Fixes audio issues with IoT devices	Microsoft Announcement of KB5022834
KB5022282	22H2, 21H2, 20H2	1904X.2486	10-Jan-23	Microsoft ODBC SQL Server Driver connectivity issue resolved	Microsoft Announcement of KB5022282
KB5021233	22H2, 21H2, 21H1, 20H2	1904X.2364	13-Dec-22	-Search bar will now appear by default on the taskbar -Cortana won’t be pinned in the taskbar by default	Microsoft Announcement of KB5021233
KB5019959	22H2, 21H2, 21H1, 20H2	1904X.2251	8-Nov-22	Fixes to Microsoft Direct3D 9 and DCOM	Microsoft Announcement of KB5019959