Microsoft Patch Tuesday, January 2021 Edition

Microsoft today released updates to plug more than 80 security holes in its Windows operating systems and other software, including one that is actively being exploited and another which was disclosed prior to today. Ten of the flaws earned Microsoft’s most-dire “critical” rating, meaning they could be exploited by malware or miscreants to seize remote control over unpatched systems with little or no interaction from Windows users. Yes, good people of the Windows world, it’s time once again to use XEOX!

Get back full control on windows update by using XEOX Job Editor.

The January 2021 Patch Tuesday Security Updates

Security Updates are available for the following software:

  • Microsoft Windows
  • Microsoft Edge (EdgeHTML-based)
  • Microsoft Office and Microsoft Office Services and Web Apps
  • Microsoft Windows Codecs Library
  • Visual Studio
  • SQL Server
  • Microsoft Malware Protection Engine
  • .NET Core
  • .NET Repository
  • ASP .NET
  • Azure

Information about the updates:

  • CVE-2020-0689 has been re-released. For further information see Security update for Secure Boot DBX: January 12, 2021.
  • For information regarding enabling Windows 10, version 1909 features, please see Windows 10, version 1909 delivery options. Note that Windows 10, versions 1903 and 1909 share a common core operating system with an identical set of system files. They will also share the same security update KBs.
  • Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
  • For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
  • A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
  • Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
  • In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
  • Customers running Windows 7, Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.
TagCVE IDCVE Title
.NET RepositoryCVE-2021-1725Bot Framework SDK Information Disclosure Vulnerability
ASP.NET core & .NET coreCVE-2021-1723ASP.NET Core and Visual Studio Denial of Service Vulnerability
Azure Active Directory Pod IdentityCVE-2021-1677Azure Active Directory Pod Identity Spoofing Vulnerability
Microsoft Bluetooth DriverCVE-2021-1683Windows Bluetooth Security Feature Bypass Vulnerability
Microsoft Bluetooth DriverCVE-2021-1638Windows Bluetooth Security Feature Bypass Vulnerability
Microsoft Bluetooth DriverCVE-2021-1684Windows Bluetooth Security Feature Bypass Vulnerability
Microsoft DTV-DVD Video DecoderCVE-2021-1668Microsoft DTV-DVD Video Decoder Remote Code Execution Vulnerability
Microsoft Edge (HTML-based)CVE-2021-1705Microsoft Edge (HTML-based) Memory Corruption Vulnerability
Microsoft Graphics ComponentCVE-2021-1709Windows Win32k Elevation of Privilege Vulnerability
Microsoft Graphics ComponentCVE-2021-1696Windows Graphics Component Information Disclosure Vulnerability
Microsoft Graphics ComponentCVE-2021-1665GDI+ Remote Code Execution Vulnerability
Microsoft Graphics ComponentCVE-2021-1708Windows GDI+ Information Disclosure Vulnerability
Microsoft Malware Protection EngineCVE-2021-1647Microsoft Defender Remote Code Execution Vulnerability
Microsoft OfficeCVE-2021-1713Microsoft Excel Remote Code Execution Vulnerability
Microsoft OfficeCVE-2021-1714Microsoft Excel Remote Code Execution Vulnerability
Microsoft OfficeCVE-2021-1711Microsoft Office Remote Code Execution Vulnerability
Microsoft OfficeCVE-2021-1715Microsoft Word Remote Code Execution Vulnerability
Microsoft OfficeCVE-2021-1716Microsoft Word Remote Code Execution Vulnerability
Microsoft Office SharePointCVE-2021-1712Microsoft SharePoint Elevation of Privilege Vulnerability
Microsoft Office SharePointCVE-2021-1707Microsoft SharePoint Server Remote Code Execution Vulnerability
Microsoft Office SharePointCVE-2021-1718Microsoft SharePoint Server Tampering Vulnerability
Microsoft Office SharePointCVE-2021-1717Microsoft SharePoint Spoofing Vulnerability
Microsoft Office SharePointCVE-2021-1719Microsoft SharePoint Elevation of Privilege Vulnerability
Microsoft Office SharePointCVE-2021-1641Microsoft SharePoint Spoofing Vulnerability
Microsoft RPCCVE-2021-1702Windows Remote Procedure Call Runtime Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2021-1649Active Template Library Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2021-1676Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability
Microsoft WindowsCVE-2021-1689Windows Multipoint Management Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2021-1657Windows Fax Compose Form Remote Code Execution Vulnerability
Microsoft WindowsCVE-2021-1646Windows WLAN Service Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2021-1650Windows Runtime C++ Template Library Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2021-1706Windows LUAFV Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2021-1699Windows (modem.sys) Information Disclosure Vulnerability
Microsoft Windows Codecs LibraryCVE-2021-1644HEVC Video Extensions Remote Code Execution Vulnerability
Microsoft Windows Codecs LibraryCVE-2021-1643HEVC Video Extensions Remote Code Execution Vulnerability
Microsoft Windows DNSCVE-2021-1637Windows DNS Query Information Disclosure Vulnerability
SQL ServerCVE-2021-1636Microsoft SQL Elevation of Privilege Vulnerability
Visual StudioCVE-2020-26870Visual Studio Remote Code Execution Vulnerability
Windows AppX Deployment ExtensionsCVE-2021-1642Windows AppX Deployment Extensions Elevation of Privilege Vulnerability
Windows AppX Deployment ExtensionsCVE-2021-1685Windows AppX Deployment Extensions Elevation of Privilege Vulnerability
Windows CryptoAPICVE-2021-1679Windows CryptoAPI Denial of Service Vulnerability
Windows CSC ServiceCVE-2021-1652Windows CSC Service Elevation of Privilege Vulnerability
Windows CSC ServiceCVE-2021-1654Windows CSC Service Elevation of Privilege Vulnerability
Windows CSC ServiceCVE-2021-1659Windows CSC Service Elevation of Privilege Vulnerability
Windows CSC ServiceCVE-2021-1653Windows CSC Service Elevation of Privilege Vulnerability
Windows CSC ServiceCVE-2021-1655Windows CSC Service Elevation of Privilege Vulnerability
Windows CSC ServiceCVE-2021-1693Windows CSC Service Elevation of Privilege Vulnerability
Windows CSC ServiceCVE-2021-1688Windows CSC Service Elevation of Privilege Vulnerability
Windows Diagnostic HubCVE-2021-1680Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability
Windows Diagnostic HubCVE-2021-1651Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability
Windows DP APICVE-2021-1645Windows Docker Information Disclosure Vulnerability
Windows Event Logging ServiceCVE-2021-1703Windows Event Logging Service Elevation of Privilege Vulnerability
Windows Event TracingCVE-2021-1662Windows Event Tracing Elevation of Privilege Vulnerability
Windows Hyper-VCVE-2021-1691Hyper-V Denial of Service Vulnerability
Windows Hyper-VCVE-2021-1704Windows Hyper-V Elevation of Privilege Vulnerability
Windows Hyper-VCVE-2021-1692Hyper-V Denial of Service Vulnerability
Windows InstallerCVE-2021-1661Windows Installer Elevation of Privilege Vulnerability
Windows InstallerCVE-2021-1697Windows InstallService Elevation of Privilege Vulnerability
Windows KernelCVE-2021-1682Windows Kernel Elevation of Privilege Vulnerability
Windows MediaCVE-2021-1710Microsoft Windows Media Foundation Remote Code Execution Vulnerability
Windows NTLMCVE-2021-1678NTLM Security Feature Bypass Vulnerability
Windows Print Spooler ComponentsCVE-2021-1695Windows Print Spooler Elevation of Privilege Vulnerability
Windows Projected File System Filter DriverCVE-2021-1663Windows Projected File System FS Filter Driver Information Disclosure Vulnerability
Windows Projected File System Filter DriverCVE-2021-1672Windows Projected File System FS Filter Driver Information Disclosure Vulnerability
Windows Projected File System Filter DriverCVE-2021-1670Windows Projected File System FS Filter Driver Information Disclosure Vulnerability
Windows Remote DesktopCVE-2021-1674Windows Remote Desktop Protocol Core Security Feature Bypass Vulnerability
Windows Remote DesktopCVE-2021-1669Windows Remote Desktop Security Feature Bypass Vulnerability
Windows Remote Procedure Call RuntimeCVE-2021-1701Remote Procedure Call Runtime Remote Code Execution Vulnerability
Windows Remote Procedure Call RuntimeCVE-2021-1700Remote Procedure Call Runtime Remote Code Execution Vulnerability
Windows Remote Procedure Call RuntimeCVE-2021-1666Remote Procedure Call Runtime Remote Code Execution Vulnerability
Windows Remote Procedure Call RuntimeCVE-2021-1664Remote Procedure Call Runtime Remote Code Execution Vulnerability
Windows Remote Procedure Call RuntimeCVE-2021-1671Remote Procedure Call Runtime Remote Code Execution Vulnerability
Windows Remote Procedure Call RuntimeCVE-2021-1673Remote Procedure Call Runtime Remote Code Execution Vulnerability
Windows Remote Procedure Call RuntimeCVE-2021-1658Remote Procedure Call Runtime Remote Code Execution Vulnerability
Windows Remote Procedure Call RuntimeCVE-2021-1667Remote Procedure Call Runtime Remote Code Execution Vulnerability
Windows Remote Procedure Call RuntimeCVE-2021-1660Remote Procedure Call Runtime Remote Code Execution Vulnerability
Windows splwow64CVE-2021-1648Microsoft splwow64 Elevation of Privilege Vulnerability
Windows TPM Device DriverCVE-2021-1656TPM Device Driver Information Disclosure Vulnerability
Windows Update StackCVE-2021-1694Windows Update Stack Elevation of Privilege Vulnerability
Windows WalletServiceCVE-2021-1686Windows WalletService Elevation of Privilege Vulnerability
Windows WalletServiceCVE-2021-1681Windows WalletService Elevation of Privilege Vulnerability
Windows WalletServiceCVE-2021-1690Windows WalletService Elevation of Privilege Vulnerability
Windows WalletServiceCVE-2021-1687Windows WalletService Elevation of Privilege Vulnerability

The following KBs contain information about known issues with the security updates. For a complete list of security update KBs, please see 20210112. For more information about Windows Known Issues, please see Windows message center (links to currently-supported versions of Windows are in the left pane).

KB ARTICLEAPPLIES TO
4598229Windows 10, Version 1903, Windows Server, Version 1903, Windows 10, Version 1909, Windows Server, Version 1909
4598230Windows 10, Version 1809, Windows Server 2019
4598242Windows 10, Version 2004, Windows Server, Version 2004, Windows 10, Version 20H2, Windows Server, Version 20H2
4598275Windows 8.1, Windows Server 2012 R2 (Security-only update)
4598278Windows Server 2012 (Monthly Rollup)
4598279Windows 7, Windows Server 2008 R2 (Monthly Rollup)
4598285Windows 8.1, Windows Server 2012 R2 (Monthly Rollup)
4598287Windows Server 2008 (Security-only update)
4598288Windows Server 2008 (Monthly Rollup)
4598289Windows 7, Windows Server 2008 R2 (Security-only update)
4598297Windows Server 2012 (Security-only update)

More Information:

https://krebsonsecurity.com/2021/01/microsoft-patch-tuesday-january-2021-edition/
https://msrc.microsoft.com/update-guide/releaseNote/2021-Jan
https://wuinstall.com/index.php/blog-list/item/24-how-to-force-windows-2004-feature-upgrade-os-build-19041-to-install-using-the-command-line.html
https://windowsreport.com/windows-10-patch-tuesday-update-history/

KB4598229
KB4598230
KB4598242
KB4598275
KB4598278
KB4598279
KB4598285
KB4598287
KB4598288
KB4598289
KB4598297

Share This Post

Share on facebook
Share on linkedin
Share on twitter
Share on email

More blog posts

Uncategorized

RMM tools and why you should use two

RMM tools and why you should use two An Remote monitoring and management tool (also called RMM tool) is the process of supervising and controlling