Microsoft Security Updates June 2017 release

By Martin Brinkmann on June 13, 2017 in Microsoft - Last Update:June 14, 2017 19

Microsoft released updates, security and non-security, on June 13, 2017 for all supported versions of Microsoft Windows, and other products.The number of supported operating system versions shrank by one as Vista support ended back in April 2017. The same is true for the Windows 10 RTM version which is also no longer supported.

The following guide provides you with extensive information on the June 2017 Patch Day. It features information about how operating systems and other Microsoft products are affected by vulnerabilities, and lists all updates that Microsoft released since the May 2017 Patch Day.

It furthermore offers information on security advisories, provides download instructions and direct downloads for cumulative updates, and links to useful resources.

Microsoft Security Updates June 2017

The following Excel spreadsheet lists all security updates that Microsoft released on the June 2017 Patch Day. You can download it from our server with a click on the following link: Security Update List June 2017

Executive Summary

Microsoft released security updates for all client and server versions of Windows.
All Windows products are affected by critical vulnerabilities.
Other Microsoft products that have received updates are Internet Explorer, Microsoft Edge, and Microsoft Office.
Microsoft released security updates for non-supported Windows editions like XP or Vista.

Operating System Distribution

Windows 7: 48 vulnerabilities of which 6 are rated critical, and 42 important
Windows 8.1: 52 vulnerabilities of which 8 are rated critical, and the remaining 44 important
Windows RT 8.1: 48 vulnerabilities of which 8 are rated critical, and 40 important
Windows 10 version 1703: 45 vulnerabilities of which 7 are rated critical, and 38 important.

Windows Server products:

Windows Server 2008: 45 vulnerabilities, of which 6 are rated critical, and 39 important
Windows Server 2008 R2: 49 vulnerabilities, of which 6 are rated critical, and 43 important
Windows Server 2012 and 2012 R2: 52 vulnerabilities, of which 8 are rated critical and 44 important
Windows Server 2016: 57 vulnerabilities of which 7 are rated critical, and 50 important

Other Microsoft Products

Internet Explorer 11: 6 vulnerabilities, 3 critical, 3 important
Microsoft Edge: 17 vulnerabilities, 11 critical, 5 important, 1 moderate, 1 low
Microsoft Office 2010 Service Pack 2: 18 vulnerabilities, 3 critical, 15 important
Microsoft Office 2013 Service Pack 1: 5 vulnerabilities, 5 important
Microsoft Office 2016: 4 vulnerabilities, 4 important

Security Updates

KB4022725 -- June 13, 2017 Windows 10 version 1703 cumulative update (OS Build 15063.413 and 15063.414)

Security updates to Windows kernel, Microsoft Windows PDF, Windows kernel-mode drivers, Microsoft Uniscribe, Device Guard, Internet Explorer, Windows Shell, and Microsoft Edge.
Issues described in KB4020102 (below)

KB4022726 -- June 13, 2017 Windows 8.1 and Windows Server 2012 R2 Monthly Rollup

Addressed issue where, after installing KB3170455 (MS16-087), users have difficulty importing printer drivers and get errors with error code 0x80070bcb.
Addressed a rare issue where mouse input can cease to function. The mouse pointer may continue to move, but movements and clicks produce no response other than a beeping noise.
Addressed issue where printing a document using a 32-bit application can crash a Print Server in a call to nt!MiGetVadWakeList.
Addressed issue where an unsupported hardware notification is shown and Windows Updates not scanning, for systems using the AMD Carrizo DDR4 processor or Windows Server 2012 R2 systems using Xeon E3V6 processor. For the affected system, follow the steps in the Additional Information section below to install this update.
Security updates to Microsoft Windows PDF, Windows shell, Windows Kernel, Microsoft Graphics Component, Microsoft Uniscribe, Microsoft Scripting Engine, Internet Explorer, Windows COM, and Windows Kernel-Mode Drivers.

KB4022717 -- June 13, 2017 Windows 8.1 and Windows Server 2012 R2 Security-only update

Security updates to Microsoft Windows PDF, Windows shell, Windows Kernel, Microsoft Graphics Component, Microsoft Uniscribe, Microsoft Scripting Engine, Windows COM, and Windows Kernel-Mode Driver
lists same non-security fixes as KB4022726. (What is up with that?)

KB4022719 -- June 13, 2017 Windows 7 and Windows Server 2008 R2 Monthly Rollup

Addressed issue where, after installing KB3164035, users cannot print enhanced metafiles (EMF) or documents containing bitmaps rendered out of bounds using the BitMapSection(DIBSection) function.
Addressed issue where updates were not correctly installing all components and would prevent them from booting.
Addressed issue where an unsupported hardware notification is shown and Windows Updates not scanning, for systems using the AMD Carrizo DDR4 processor. For the affected systems, follow the steps in the Additional Information section to install this update.
Security updates to Windows kernel, Microsoft Graphics Component, Microsoft Uniscribe, Windows kernel-mode drivers, the Windows OS, Windows COM, Internet Explorer and Windows Shell.

KB4022722 -- June 13, 2017 Windows 7 and Windows Server 2008 R2 Security-only update

Security updates to Windows kernel, Microsoft Graphics Component, Microsoft Uniscribe, Windows kernel-mode drivers, the Windows OS, Windows COM and Windows shell
lists same non-security fixes as KB4022719.

Known Issues

If an iSCSI target becomes unavailable, attempts to reconnect will cause a leak. Initiating a new connection to an available target will work as expected.

Security advisories and updates

Microsoft Security Advisory 4025685 -- Guidance related to June 2017 security update release

Guidance for supported platforms
Guidance for older platforms (XP, Vista..)

Non-security related updates

KB4020102 -- Windows 10 Version 1703 Cumulative Update

Addressed issue where NTLM fails to generate a challenge response when CredGuard is enabled, NTLMv2 is used, and no target information is provided by the server.
Addressed issue where Internet Explorer does not respect the “Send all sites not included in the Enterprise Mode Site List to Microsoft Edge” policy when opening favorites.
Addressed issue in Internet Explorer 11 where a non-administrator user is not able to install an ActiveX control.
Addressed issue where, after starting Split View, some apps (Microsoft Edge, Hub, Cortana, etc.) no longer receive input when multiple displays are in use.
Addressed issue with an unnecessary scrollbar in the logon credential provider dialog, which may block use of other fields when the dialog has multiple fields.
Addressed issue where, during a VM reset, the VM goes into Second Level Paging (SLP) even if there is enough balancer available memory on the host.
Addressed issue where some non-Unicode fonts (Courier, MS Sans Serif, etc.) do not render characters correctly on non-Latin, single-byte system locales (Greek, Hebrew, Arabic, etc.). Black bars or other artifacts appear instead.
Addressed issue with an SMS/messaging app that stops working when attempting to delete messages.
Addressed issue where, after installing the Creators Update, audio output through external decoders no longer works.
Addressed issue where the IoT shell fails to keep monitored background applications running.
Addressed issue with high latency when using the Universal Windows Platform (UWP) MIDI API.
Addressed issue where PrintBRM fails to restore the Print Queue Configurations when printer names are identical and a port is set to FILE:.
Addressed issue with per user proxy settings not migrating to machine proxy settings.
Addressed issue where non-English characters showed incorrectly in apps that attempt to wrap/replace the in-box console.
Addressed issue when trying to set a default lockscreen using the following Group Policy, you do not see the defined image on the lockscreen but you do see the defined image in Settings under lockscreen settings.
Computer Configuration\Administrative Templates\Control Panel\Personalization\"Force a specific default lock screen image"

KB4022868 -- Update for Windows 10 and Windows 10 Version 1511 -- Update to Windows 10 Version 1507 and Version 1511 for update reliability: May 30, 2017

KB4023136 -- 2017 - Morocco Ramadan DST changes

KB890830 -- Windows Malicious Software Removal Tool - May 2017

KB4023136 -- Update for Windows Server 2012, Windows 7, Windows Server 2008 R2, and Windows XP Embedded -- 2017 - Morocco Ramadan DST changes

KB4021701 -- Update for Windows 10 -- Updates to Windows 10, Version 1507 update components: May 16, 2017

KB4021702 -- Update for Windows 10 Version 1511 -- Updates to Windows 10, Version 1511 update components: May 16, 2017

KB4019217 -- 2017-05 Preview of Monthly Quality Rollup for Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2

KB4019218 -- 2017-05 Preview of Monthly Quality Rollup for Windows Embedded 8 Standard and Windows Server 2012

KB4019265 -- 2017-05 Preview of Monthly Quality Rollup for Windows 7 and Windows Server 2008 R2

KB4019288 -- May, 2017 Preview of Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 on Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4019289 -- May, 2017 Preview of Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1 on Windows Embedded 8 Standard and Windows Server 2012

KB4019290 -- May, 2017 Preview of Quality Rollup for .NET Framework 4.5.2, 4.6, 4.6.1, 4.6.2 on Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2

KB4019291 -- May, 2017 Preview of Quality Rollup for .NET Framework 2.0 on Windows Server 2008

KB4019990 -- Update for Windows Embedded 8 Standard, Windows Server 2012, Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

How to download and install the June 2017 security updates

Most home users run systems with automatic updates enabled. This means that updates are downloaded and installed automatically some time after they are made available through Windows Update.

Users can run a manual check for updates to speed up that process. To do so, tap on the Windows-key, type Windows Update, and hit the Enter-key.

The interface that loads runs the update check automatically, or you have to click on the check for updates button to start it. Depending on your configuration, updates that are found are either downloaded and installed directly, or on user request.

Direct update downloads

Windows 7 SP1 and Windows Server 2008 R2 SP

KB4022719: June 13, 2017 Monthly Rollup
KB4022722: June 13, 2017 Security-only update

Windows 8.1 and Windows Server 2012 R2

KB4022726: June 13, 2017 Monthly Rollup
KB4022717: June 13, 2017 Security-only update

Windows 10 and Windows Server 2016 (version 1703)

KB4022725 -- Cumulative Update for Windows 10 Version 1703

Additional resources

Summary

Article Name

Microsoft Security Updates May 2017 release

Description

An overview of security and non-security updates that Microsoft released in June 2017 for Microsoft Windows and other company products.

Author

Martin Brinkmann

Publisher

Ghacks Technology News

Logo

Please share this article

You are here: Home > Microsoft > Microsoft Security Updates June 2017 release

Chrome gets super-handy rotate to fullscreen video mode

Firefox 54.0: find out what is new

Responses to Microsoft Security Updates June 2017 release

CHEF-KOCH June 13, 2017 at 8:45 pm #
Seems KB4022715 is missing.
1703:
http://www.catalog.update.microsoft.com/Search.aspx?q=KB4022725
1607:
http://www.catalog.update.microsoft.com/Search.aspx?q=KB4022715
1511:
http://www.catalog.update.microsoft.com/Search.aspx?q=KB4022714
1507:
http://www.catalog.update.microsoft.com/Search.aspx?q=KB4022727
Reply
- Martin Brinkmann June 13, 2017 at 8:49 pm #
  Hi Chef-Koch, What do you mean it is missing?
  Reply
  - CHEF-KOCH June 13, 2017 at 9:02 pm #
    You didn't list it. It's the same security update for all Windows 10 versions just released under other KB names.
    You listed KB4022725 which is just the one for 1703 systems but MS still supports lower versions like 1507 too.
    Well I added the links for you don't worry. ;)
  - Martin Brinkmann June 13, 2017 at 9:07 pm #
    Ah, that's what you mean. I only list the latest version of Windows 10. If there is demand, I could add other supported versions in future posts.
Tony June 13, 2017 at 9:02 pm #
Servers were busy. Took many attempts to get patches. It's like they've never done this before.
Beware of some unwanted patches now being offered (again).
Reply
Ruan June 14, 2017 at 3:50 am #
Martin,
Microsoft has released patches for Windows XP and Vista this month.
-https://blogs.technet.microsoft.com/msrc/2017/06/13/june-2017-security-update-release/
-https://www.askwoody.com/2017/a-most-unusual-patch-tuesday/
Reply
- Martin Brinkmann June 14, 2017 at 5:39 am #
  Thank you, I have added the information to the article.
  Reply
stevie June 14, 2017 at 10:16 am #
Hi, Martin.
I have not updated for around 8 months. I was looking at ask woody and he recommends downloading some of the updates, but be wary of which updates to use (but I could not find which ones).
If you could help that would be great.
I'm using Win 7 x64 home premium and Microsoft Office 2010.
Cheers.
Stevie.
Reply
- Martin Brinkmann June 14, 2017 at 10:25 am #
  Check this out, I suggest you follow this: https://www.askwoody.com/2017/playing-catch-up-with-windows-and-office-patches/
  Reply
  - stevie June 14, 2017 at 11:10 am #
    Hi.
    Patched MS17-010 for now and I shall look again later.
    Unless there is something more important.
    Stevie.
Sam June 14, 2017 at 11:32 am #
For anyone using the security-only updates for Windows 7/8.1, do remember to install the IE 2017-06 security update (KB4021558) too as it's not included: https://support.microsoft.com/en-us/help/4021558/
Reply
- ejjeel June 14, 2017 at 3:29 pm #
  For anyone using the security-only updates: also the flash security update for IE w8.1 & W10 is not included
  http://www.catalog.update.microsoft.com/Search.aspx?q=kb4022730
  Reply
- A different Martin June 16, 2017 at 11:10 pm #
  In case you ever print from Internet Explorer 11, according to AskWoody there have been reports of a bug resulting from installing either KB4022719 (quality and security) or KB4021558 (security only). (You might not be able to print single frames, iframes, or pop-ups in IE11.) Microsoft's Edge team has apparently marked the bug "won't fix." I rarely use let alone print from Internet Explorer, so I might go ahead and install KB4021558 anyway.
  Reply
AAA June 14, 2017 at 5:10 pm #
My system is running buttery smooth after all these patches :)
Reply
Paul June 17, 2017 at 5:01 pm #
My Windows 7 Ultimate 64-bit system locks up during the restart with both the June monthly rollup or the security-only update. The restart gets to 15% complete and then the screen freezes up. This is within perhaps 1 minute of doing the restart. I waited about 6 hours for the rollup and nothing changed. I only waited 15 minutes for the security-only update. I have had to turn the computer off and then do a restore. I suppose I will have to try individual patches until I can find out which one is causing problems. I've installed all previous W7 patches (except those related to W10 upgrade) and haven't had problems, so this is new territory for me.
Reply
Jozu June 19, 2017 at 5:43 pm #
This update Broke my pc, it was not allowing me to install drivers for my hardware. It would list the hardware at an error state. After trying almost everything and restore points not working / failing. I went into looking for updates that may have been released a few days before I started having this issue. Uninstalled this one and everything started working.
KB4022725 -- June 13, 2017 Windows 10 version 1703 cumulative update (OS Build 15063.413 and 15063.414)
•Security updates to Windows kernel, Microsoft Windows PDF, Windows kernel-mode drivers, Microsoft Uniscribe, Device Guard, Internet Explorer, Windows Shell, and Microsoft Edge.
•Issues described in KB4020102 (below)
Reply
helloha June 20, 2017 at 5:28 pm #
Windows Update KB4022725 breaks hp network printer driver
I have been using hp officejet pro 8610 printer for many months without a hitch. I noticed the printer driver was no longer working once Cumulative Update for Windows 10 Version 1703 for x64-based Systems KB4022725 had installed. The Printer Driver Version is 32.3 direct from HP.
Although the printer was still visible in devices and printers, I was unable to print via network. I manually uninstalled the update and recovered the printer functionality. Problem is auto update in windows 10 keeps nagging to reinstall the update and the problem is reproducible. Any help would be appreciated!
Reply
joyce June 28, 2017 at 5:20 pm #
I have been trying to download the Xp old platform updates since 6-17-17 and Microsoft will not display the webpage so I can download & install the updates manually or at all when using my XP. The same page loads just fine on my windows 7 but not on mymXP. I've tried different websites to get the downloads and none of them will display. I've also tried copying the info on my windows 7 where the webpage will display to a USB stick (copy/paste then drag & drop) and plug the stick into my XP but it won't work so I still can't install the updates. Also tried copying the updates individually (copy & paste) to to Libre Office word doc then to the usb stick and that doesn't work either. I did see once, "~lock the the website so I[m wondering if these XP security updats are only for certain Windows customers for downloading. Any suggestions would be appreciated. I also thought about forwarding the email on windows 7 to my windows XP email account, but found that I'd have to download 59000+ emails first from 4-20-14 to the present date to even open the forwarded email & it probably wouldn't have opened anyway. I'm in usa and wondering if anyone else is haveing problems downloading these 12 XP security fixes?
Reply
Legolas July 2, 2017 at 12:05 pm #
Please consider also including the IE patches (included in the Quality and security, but not in the security only patches).
Reply

Navigation