Windows 10 May 2019 Patches Are Out – Update Protects Against Intel’s Latest “Microarchitectural Data Sampling” Flaws

May 14, 2019
15Shares
Submit

It’s the second Tuesday of the month, which means Patch Tuesday updates are out for several Windows 10 versions, including the October 2018 Update and the April 2018 Update. There are still a number of known issues impacting version 1809 but the latest Windows 10 cumulative update also brings some bug fixes.

Among other fixes and security updates, the latest Windows 10 cumulative update will also enable “Retpoline” by default if Spectre Variant 2 (CVE-2017-5715) is enabled, the release notes read. “Make sure previous OS protections against the Spectre Variant 2 vulnerability are enabled using the registry settings described in the Windows Client and Windows Server articles.”

Related Download Windows 10 for Free and Upgrade Windows 7 Ahead of End of Support Deadline [How To]

The latest update also “provides protections against a new subclass of speculative execution side-channel vulnerabilities, known as Microarchitectural Data Sampling, for 64-Bit (x64) versions of Windows (CVE-2018-11091, CVE-2018-12126, CVE-2018-12127, CVE-2018-12130).” This is a new strain of side-channel vulnerabilities that have been discovered in Intel chips that can allow attackers to eavesdrop on raw data. While researchers are calling variants of the exploit techniques ZombieLoad, Fallout and RIDL (Rogue In-Flight Data Load), Intel is going with MDS (Microarchitectural Data Sampling).

Complete changelog of Windows 10 1809 Build 17763.503 (KB4494441):

  • Enables “Retpoline” by default if Spectre Variant 2 (CVE-2017-5715) is enabled. Make sure previous OS protections against the Spectre Variant 2 vulnerability are enabled using the registry settings described in the Windows Client and Windows Server articles. (These registry settings are enabled by default for Windows Client OS editions, but disabled by default for Windows Server OS editions). For more information about “Retpoline”, see Mitigating Spectre variant 2 with Retpoline on Windows.
  • Provides protections against a new subclass of speculative execution side-channel vulnerabilities, known as Microarchitectural Data Sampling, for 64-Bit (x64) versions of Windows (CVE-2018-11091, CVE-2018-12126CVE-2018-12127CVE-2018-12130). Use the registry settings as described in the Windows Client and Windows Server articles(These registry settings are enabled by default for Windows Client OS editions and Windows Server OS editions).
  • Adds “uk.gov” into the HTTP Strict Transport Security Top Level Domains (HSTS TLD) for Internet Explorer and Microsoft Edge.
  • Addresses an issue that may cause “Error 1309” while installing or uninstalling certain types of .msi and .msp files on a virtual drive.
  • Addresses an issue that prevents the Microsoft Visual Studio Simulator from starting.
  • Addresses an issue that may cause zone transfers between primary and secondary DNS servers over the Transmission Control Protocol (TCP) to fail.
  • Addresses an issue that causes Simple Network Management Protocol (SNMP) Management Information Base registration to fail when the Windows Management Instrumentation (WMI) provider uses the Windows tool SMI2SMIR.exe.
  • Addresses an issue that may cause the text, layout, or cell size to become narrower or wider than expected in Microsoft Excel when using the MS UI Gothic or MS PGothic fonts.
  • Security updates to Microsoft Edge, Internet Explorer, Microsoft Scripting Engine, Windows App Platform and Frameworks, Windows Graphics, Windows Storage and Filesystems, Windows Cryptography, the Microsoft JET Database Engine, Windows Kernel, Windows Virtualization, and Windows Server.

Apart from version 1809, the April 2018 Update receives KB4499167 (Build 17134.765), version 1709 is receiving KB4499179 (Build 16299.1146), Creators Update gets KB4499181 (Build 15063.1805), Anniversary Update is receiving KB4494440 (Build 14393.2969), and the original Windows 10 is getting KB4499154 (Build 10240.18215).

– Earlier: W10 Powers Through – Now Installed on Over 825 Million Active Devices | How to Get Latest May 2019 Update Before Everyone Else

Submit