May 2023 Security updates are now available for all versions of Windows including Windows 11, 10, 8.1, and 7. This Tuesday, Microsoft also releases Windows Server Updates for different versions like 2022, 20H2, 2019, 2016, 2012 R2, 2012, 2007 SP2 & SP1. New .NET Frameworks are now available for specific Windows versions and are included in this blog post.
As usual, the recent updates will download and install on your Windows PC automatically unless you have forced them not to download/install. If that’s the case, you may visit your specific Windows version’s download link, and get the latest standalone package matching your system architecture. Let’s learn what new features the new updates hold and how you may download and install them on your Windows PC.
May 2023 Security updates for Windows PC
The latest security updates for Windows 11, 10, 8, and 7 are now available for all users. We have included below the links to download these updates along with what new bug fixes and features come on these cumulative updates. We have also discussed ways to install these monthly patches on your computer.
1] Windows 11, version 22h2
- OS Build: 22621.1702
- Release Note: KB5026372
- SSU: 22621.1626
Key Highlights:
- Improves the security of all Windows components and Microsoft Services.
- Users may now prioritize even non-security updates on their devices. To activate this feature, all you require is to visit Settings > Windows Update and enable the toggle switch next to “Get the latest updates as soon as they’re available“. If you are on a managed device, this toggle switch is disabled by default. To know more about this, visit this webpage.
- Resolves a blue screen error affecting the Kernel-mode Hardware-enforced Stack Protection security feature on your PC. After you upgrade to this version, more drivers will be added to the database of drivers which are not compatible with Windows 11, version 21h2.
- Works and resolves a race condition in Windows Local Administrator Password Solution (LAPS). This was the issue that stopped the local security authority subsystem from working or responding on Windows 11. This happens only when the system processes multiple local account operations at the same time and thus results in an error code 0xc0000005.
Direct Download Page for different architectures: Microsoft Update Catalog
Known Issues on this update:
- After you upgrade to Windows 11 version 22621.1702, some apps might face intermittent issues with speech recognition, expressive input, and handwriting when using Chinese or Japanese languages. The affected apps might fail to recognize any input from speech or other input types. This mostly happens when you are using offline speech recognition.
Sol: If you face this issue as well, you should first close the application on which you received this trouble. After closing the problematic app, open Task Manager, and search for ctfrmon.exe under the Processes tab. Right-click on this process and choose the option – End task. Wait for some time and you will find the ctfrmon.exe process restarting soon afterward. You will find your buggy application working again.
2] Windows 11, version 21h2
- OS Build: 22000.1936
- Release Note: KB5026368
- SSU: 22000.1879
Key Highlights:
- Enhances the overall security of all Windows Components and Microsoft Services.
- Processing multiple local account operations at the same time triggers an access violation error code 0xc0000005 on Windows 11 version 21h2. After you upgrade to Build version 22000.1936 on Windows 11, this race condition fixes automatically. The local security authority subsystem service (LSASS) should work effectively after upgrading to this OS version.
Direct Download Page for different architectures: Microsoft Update Catalog
Known Issues on this update:
- If you are using some third-party UI customization apps on your Windows 11 PC, your device might not start up after upgrading to this Build version. This happens because third-party apps are known to cause errors with explorer.exe and might reboot your device multiple times. A few examples include using third-party UI apps like ExplorerPatcher and StartAllBack.
Sol: If you are using these apps or any other application, and your device gets stuck into a reboot loop, you must boot your device into Safe mode and get rid of these UI customizing apps.
3] Windows 10 versions 22h2, 21h2, and 20h2
- Release Note: KB5026361
- Respective OS Build numbers: 19045.2965, 19044.2965, and 19042.2965
- Servicing Stack update: 19045.2905, 19044.2905, and 19042.2905
Note: This is the last patch update for Windows 10 version 20h2. From today onward, there won’t come any new security updates for this version. If you are still using this version of Windows 10, we suggest upgrading to either version 21h2 or 22h2.
Windows 10 version 21h2 will continue to receive updates till 13th June 2023. So, you may continue using this version till June of this year.
Key Highlights:
- Brings Security updates for all Windows components and Microsoft Services.
- Works and resolves a race condition in Windows Local Administrator Password Solution (LAPS). It was because of this issue, the Local Security Authority Subsystem Service (LSASS) stops working. Do note that this issue occurs when the system processes multiple local account operations at the same time and thus causes an access violation error code 0xc0000005.
- No new bugs or issues are reported in this patch update.
Before you proceed ahead to the direct download page, make sure to download and install the following LCU on your Windows PC –
- For offline OS image servicing:
If your Windows image doesn’t have the March 22, 2022 (KB5011543) or later LCU, you must install the special standalone package (SSU), KB5014032 dated May 10, 2022.
- For Windows Server Update Services (WSUS) deployment or when installing updates downloaded from Microsoft Update Catalog:
If you haven’t yet upgraded your device to May 11, 2021 (KB5003173) or later LCU, you must install this special standalone package, KB5005260 dated Aug 10, 2021.
Direct Download Page for different architectures: Microsoft Update Catalog
Note: Windows 10 versions 22h1, 2004, 1909, and 1903 have already reached their end-of-service statement. If you are still on these versions, we recommend upgrading your device to the latest versions of Windows 10 or Windows 11 (if your device meets the minimum system requirements).
4] Windows 10, version 1809
- Release Note: KB5026362
- OS Build: 17763.4377
- Servicing Stack update: 17763.4121
Key Highlights:
- Addresses an issue that affects conhost.exe which makes the application stop responding.
- Confirms updating the Daylight Savings Time as per the Islamic Republic of Iran Government’s order for 2022.
- Fixes a key issue that affects the Key Distribution Center (KDC) service. Earlier, when a service stops on a local machine, signing in to all local Kerberos fails on an error – “STATUS_NETLOGON_NOT_STARTED”.
- Resolves an anomaly that corrupts the Remote Procedure Call Service (RPCSS). Such a deadlock happens because of the lock order inversion in Windows.
- When you use multi-byte character sets, this causes in consumption of all Endpoints. As there are no endpoints available on the system, this might cause an issue affecting SMB Direct. Microsoft has resolved this issue as well.
- Addresses an issue that affects apps that use DirectX on older Intel graphics drivers. You might receive an error from apphelp.dll.
- Resolves an issue that affects accounts that run the Set-AdfsCertificate command. The command fails. This occurs when an account does not have read permissions for the related Distributed Key Manager (DKM) container.
- Solves yet another issue related to the Active Directory Federation Services (AD FS). You should attempt signing into your account multiple times to authenticate your account much faster.
Improvements and Fixes on LAPS
- Resolves an issue that might affect the Windows Local Administrator Password Solution (LAPS). The LAPS fails on an error code 0x8007007f which occurs on versions of Windows Server 2019 running Server Core.
- Fixes an issue that affects both the legacy Local Administrator Password Solution (LAPS) and the new Windows LAPS feature. This happens primarily when you install the legacy LAPS .msi file after you have installed the April 11, 2023, Windows update on machines that have a legacy LAPS policy. When this occurs, both of these fail to manage the configured local account password. Worry not, as Microsoft has resolved this issue for sure.
- Also fixes an access violation error code 0xc0000005 which occurs when the system processes multiple local account operations at the same time. Microsoft has resolved this race condition wherein the Local Security Authority Subsystem Service (LSASS) simply stops responding.
Known Issue on it:
- After installing KB5001342, the Cluster Service failed to start because a Cluster Network Driver is not found. This bug might appear after this patch update as well.
Direct Download Page for different architectures: Microsoft Update Catalog
Note: Windows 10 versions 1803, 1707, and 1703 have also reached their service-end statements. If you are still on either of the above versions, consider upgrading to Windows 10 version 1809 or a newer version. This way, you can avoid getting into unwarranted hacks and other issues on your computer.
5] Windows 10, version 1607
Key Highlights:
- Microsoft confirms updating the Daylight Savings Time as per the Islamic Republic of Iran Government’s order for 2022.
- Addresses an issue affecting Microsoft Edge IE mode which stops you from configuring add-ons.
- Fixes a key issue that affects the Key Distribution Center (KDC) service. Earlier, when a service stops on a local machine, signing in to all local Kerberos fails on an error – “STATUS_NETLOGON_NOT_STARTED”.
Known Issues on it
Microsoft is not currently aware of any issues with this update.
Direct Download Page for different architectures: Microsoft Update Catalog
6] Windows 10 1507 (Initial version)
Key Changes:
Apart from improving the security features of all Windows Components and Microsoft Services, this update brings the following changes to your PC –
- This update supports the Islamic Republic of Iran’s government daylight saving time change order from 2022.
- Addresses a key issue that affects cluster name objects (CNO) or virtual computer objects (VCO). Password reset fails. The error message is, “There was an error resetting the AD password… // 0x80070005”.
- Microsoft isn’t aware of any issues with this update.
Direct Download Page for different architectures: Microsoft Update Catalog
7] Windows 8.1 and Windows Server 2012 R2
Windows 8.1 have already reached its end-of-statement support on 10 Jan 2023. So, if you are using such devices, you better upgrade your device or operating system (if meets the minimum system requirements) to Windows 11 or 10.
The below monthly and security rollups are offered only to an Extended Security Update (ESU) program for Windows 8.1.
Key Changes:
Both Monthly as well as Security update includes the following improvements that are a part of update KB5022899 (Feb-2023) update. After you install this update, the following things will improve on your system –
- Microsoft confirms following the order of the Islamic Republic of Iran dated September 22, 2022. According to this order, daylight saving time (DST) will no longer be observed and the republic will remain on Iran Standard Time UTC+03:30.
- This update resolves the STATUS_NETLOGON_NOT_STARTED error that causes Local Kerberos authentication to fail fails when the local Key Distribution Center (KDC) service is stopped.
- This update also fixes an error KRB_AP_ERR_MODIFIED which occurs after you install a patch update dated Nov 8, 2022.
Known issue resolved:
Microsoft is currently not aware of any issues with this update.
Direct Download Links to KB5025285 & KB5025288
Additional Note: Windows Server 2012 R2 also reached its end-of-support on October 10, 2023. You can’t purchase extending security updates (ESUs) for the 2012 R2 server, however, the same is available for installation post this date. ESUs will continue for three years, renewable on an annual basis, until the final date on October 13, 2026.
8] Windows 7 SP1 and Windows Server 2008 R2
- Monthly Rollup: KB5026413
- Security-Only: KB5026426
- ESU Licensing: KB5016892
- Must install SSU: KB5017397
Note: It is mandatory to reinstall the “Extended Security Updates (ESU) Licensing Preparation Package”, KB5016892 if you want to upgrade to this security patch update.
Key Changes:
- As per the order of the Islamic Republic of Iran on September 22, 2022, daylight savings time (DST) will no longer be observed and the republic will remain on Iran Standard Time UTC+03:30.
- This update fixes the issues wherein Kerberos-constrained delegation (KCD) fails with the error message KRB_AP_ERR_MODIFIED on Read/Write Domain Controllers. This error started appearing after users upgrade their systems to the Build version dated Nov 8, 2022.
Direct Download Links to KB5026413 & KB5026426
How to Download and Install May 2023 Security updates
If you like the recent features and improvements coming to your specific Windows version, you may follow these steps to upgrade your system to its latest OS Build version –
- Launch Settings (Win + I) first.
- Go to Windows Update, and hit Check for updates.
The system will connect to Microsoft servers online and download/install the pending updates on your computer.
Microsoft Windows Server Security updates
If you would like to upgrade your Windows Server, locate and click on your own Server among the below list. Search for the respective Server, and when found, click the Download button. Proceeding this way, you may easily upgrade your Windows Server.
- KB5026370 – May 2023, Cumulative Update for Windows Server 2022.
- KB5026361 – May 2023, Cumulative Update for Windows Server, version 20h2.
- KB5026362 – May 2023, Cumulative Update for Windows Server 2019 or Windows Server version 1809.
- KB5026363 – May 2023, Cumulative Update for Windows Server 2016.
- KB5026415 – May 2023, Monthly Rollup Update for Windows Server 2012 R2.
- KB5026409 – May 2023, Security-only Update for Windows Server 2012 R2.
- KB5026419 – May 2023, Monthly Rollup Update for Windows Server 2012.
- KB5026411 – May 2023, Security-only Update for Windows Server 2012.
- KB5026408 – May 2023, Monthly Rollup Update for Windows Server 2008 SP2.
- KB5026427 – May 2023, Security-only Update for Windows Server 2008 SP2.
- KB5026413 – May 2023, Monthly Rollup Update for Windows Server 2008 R2 SP1.
- KB5026426 – May 2023, Security-only Update for Windows Server 2008 R2 SP1.
How do I install Windows Server Quality updates?
If you would like to upgrade your Windows server, look for your server in the above section. Once you find your Server in the above list, click on the hyperlink. You will be redirected to the Rollup page. Scroll down to the “How to Get this update” section, and click on the Microsoft update catalog link.
Search again for your server update, and when found, hit the Download button. On the subsequent page, click the top link, and the setup file starts downloading for your Windows Server. After the download completes, you may proceed with its installation.
Servicing Stack Updates
14th March 2023 was the last date on which the Servicing Stack updates for different Windows versions were released. To know if your device is eligible for an upgrade, visit this site.
We’ll update this section if any new servicing stack updates get released for this month.
Microsoft Office updates
- For updates on Office 2016 or Office 2013, visit this site.
.NET Framework Updates – April 2023
No new .NET Frameworks were released for either version of Windows after the 19th Jan 2023 update. The links of them are provided below –
- KB5025186: April 2023, Cumulative Update Preview for .NET Framework 3.5 and 4.8.1 for Windows 11, version 21H2. This update is available only for PCs running on 64-bit system architecture. Download it from here.
- KB5025184: April 2023, Cumulative Update Preview for .NET Framework 3.5 and 4.8 for Windows 11, version 21H2 is also available. Use the following links to download the latest .NET Framework to your Windows 11 PC –
- KB5025182: April 2023, Cumulative Update Preview for .NET Framework 3.5 and 4.8.1 for Windows 11, version 22H2 for ARM64 and x64 system architectures. This update was made available on 25th April 2023 and you may download it from here.
- KB5025368: This consists of both the cumulative updates KB5025184 and KB5025182 which we have already discussed above.
We will update this section later on with updates coming for February 2022. As of now, only January 2023 .NET Frameworks are available.
Direct Download May 2023 Security updates
To download and install the recent Windows or Windows Server updates on your computer, reach out to the following sites, pick your system architecture, and then hit the Download button.
- KB5026372 – May 2023 Cumulative update for Windows 11, version 22h2
- KB5026368 – May 2023 Cumulative update for Windows 11, version 21h2
- KB5026361 – May 2023 Security updates for Windows 10, versions 22h2 & 21h2
Click on the KB number, provided above, to visit the Microsoft update Catalog page. Clicking the Download button, you will be redirected to a new window. Click the top link and the patch download begins shortly afterward.
That’s it, have a look at these May 2023 Security updates and download/install the respective OS or Server version on your Windows PC.
|
Tip: If you are facing update, activation, or driver issues on your Windows PC, try RESTORO PC Repair Tool. This software will scan your device for potential issues and resolve them automatically. |
