Microsoft Security Updates June 2017 release - gHacks Tech News

Microsoft Security Updates June 2017 release

by Martin Brinkmann on June 13, 2017 in Companies, Microsoft - Last Update: January 04, 2018 - 19 comments

Microsoft released updates, security and non-security, on June 13, 2017 for all supported versions of Microsoft Windows, and other products.The number of supported operating system versions shrank by one as Vista support ended back in April 2017. The same is true for the Windows 10 RTM version which is also no longer supported.

The following guide provides you with extensive information on the June 2017 Patch Day. It features information about how operating systems and other Microsoft products are affected by vulnerabilities, and lists all updates that Microsoft released since the May 2017 Patch Day.

It furthermore offers information on security advisories, provides download instructions and direct downloads for cumulative updates, and links to useful resources.

Microsoft Security Updates June 2017

The following Excel spreadsheet lists all security updates that Microsoft released on the June 2017 Patch Day. You can download it from our server with a click on the following link: Security Update List June 2017

Executive Summary

  • Microsoft released security updates for all client and server versions of Windows.
  • All Windows products are affected by critical vulnerabilities.
  • Other Microsoft products that have received updates are Internet Explorer, Microsoft Edge, and Microsoft Office.
  • Microsoft released security updates for non-supported Windows editions like XP or Vista.

Operating System Distribution

  • Windows 7:  48 vulnerabilities of which 6 are rated critical, and 42 important
  • Windows 8.1: 52 vulnerabilities of which 8 are rated critical, and the remaining 44 important
  • Windows RT 8.1: 48 vulnerabilities of which 8 are rated critical, and 40 important
  • Windows 10 version 1703: 45 vulnerabilities of which 7 are rated critical, and 38 important.

Windows Server products:

  • Windows Server 2008:  45 vulnerabilities, of which 6 are rated critical, and 39 important
  • Windows Server 2008 R2: 49 vulnerabilities, of which 6 are rated critical, and 43 important
  • Windows Server 2012 and 2012 R2: 52 vulnerabilities, of which 8 are rated critical and 44 important
  • Windows Server 2016: 57 vulnerabilities of which 7 are rated critical, and 50 important

Other Microsoft Products

  • Internet Explorer 11: 6 vulnerabilities, 3 critical, 3 important
  • Microsoft Edge: 17 vulnerabilities, 11 critical,  5 important, 1 moderate, 1 low
  • Microsoft Office 2010 Service Pack 2: 18 vulnerabilities, 3 critical, 15 important
  • Microsoft Office 2013 Service Pack 1: 5 vulnerabilities, 5 important
  • Microsoft Office 2016: 4 vulnerabilities, 4 important

Security Updates

 

KB4022725 -- June 13, 2017 Windows 10 version 1703 cumulative update (OS Build 15063.413 and 15063.414)

  • Security updates to Windows kernel, Microsoft Windows PDF, Windows kernel-mode drivers, Microsoft Uniscribe, Device Guard, Internet Explorer, Windows Shell, and Microsoft Edge.
  • Issues described in KB4020102 (below)

KB4022726 -- June 13, 2017 Windows 8.1 and Windows Server 2012 R2 Monthly Rollup

  • Addressed issue where, after installing KB3170455 (MS16-087), users have difficulty importing printer drivers and get errors with error code 0x80070bcb.
  • Addressed a rare issue where mouse input can cease to function. The mouse pointer may continue to move, but movements and clicks produce no response other than a beeping noise.
    Addressed issue where printing a document using a 32-bit application can crash a Print Server in a call to nt!MiGetVadWakeList.
  • Addressed issue where an unsupported hardware notification is shown and Windows Updates not scanning, for systems using the AMD Carrizo DDR4 processor or Windows Server 2012 R2 systems using Xeon E3V6 processor. For the affected system, follow the steps in the Additional Information section below to install this update.
  • Security updates to Microsoft Windows PDF, Windows shell, Windows Kernel, Microsoft Graphics Component, Microsoft Uniscribe, Microsoft Scripting Engine, Internet Explorer, Windows COM, and Windows Kernel-Mode Drivers.

KB4022717 -- June 13, 2017 Windows 8.1 and Windows Server 2012 R2 Security-only update

  • Security updates to Microsoft Windows PDF, Windows shell, Windows Kernel, Microsoft Graphics Component, Microsoft Uniscribe, Microsoft Scripting Engine, Windows COM, and Windows Kernel-Mode Driver
  • lists same non-security fixes as KB4022726. (What is up with that?)

KB4022719 -- June 13, 2017 Windows 7 and Windows Server 2008 R2 Monthly Rollup

  • Addressed issue where, after installing KB3164035, users cannot print enhanced metafiles (EMF) or documents containing bitmaps rendered out of bounds using the BitMapSection(DIBSection) function.
  • Addressed issue where updates were not correctly installing all components and would prevent them from booting.
  • Addressed issue where an unsupported hardware notification is shown and Windows Updates not scanning, for systems using the AMD Carrizo DDR4 processor. For the affected systems, follow the steps in the Additional Information section to install this update.
  • Security updates to Windows kernel, Microsoft Graphics Component, Microsoft Uniscribe, Windows kernel-mode drivers, the Windows OS, Windows COM, Internet Explorer and Windows Shell.

KB4022722 -- June 13, 2017 Windows 7 and Windows Server 2008 R2 Security-only update

  • Security updates to Windows kernel, Microsoft Graphics Component, Microsoft Uniscribe, Windows kernel-mode drivers, the Windows OS, Windows COM and Windows shell
  • lists same non-security fixes as KB4022719.

Known Issues

If an iSCSI target becomes unavailable, attempts to reconnect will cause a leak. Initiating a new connection to an available target will work as expected.

Security advisories and updates

Microsoft Security Advisory 4025685 -- Guidance related to June 2017 security update release

Non-security related updates

KB4020102 -- Windows 10 Version 1703 Cumulative Update

  • Addressed issue where NTLM fails to generate a challenge response when CredGuard is enabled, NTLMv2 is used, and no target information is provided by the server.
    Addressed issue where Internet Explorer does not respect the “Send all sites not included in the Enterprise Mode Site List to Microsoft Edge” policy when opening favorites.
  • Addressed issue in Internet Explorer 11 where a non-administrator user is not able to install an ActiveX control.
  • Addressed issue where, after starting Split View, some apps (Microsoft Edge, Hub, Cortana, etc.) no longer receive input when multiple displays are in use.
  • Addressed issue with an unnecessary scrollbar in the logon credential provider dialog, which may block use of other fields when the dialog has multiple fields.
  • Addressed issue where, during a VM reset, the VM goes into Second Level Paging (SLP) even if there is enough balancer available memory on the host.
  • Addressed issue where some non-Unicode fonts (Courier, MS Sans Serif, etc.) do not render characters correctly on non-Latin, single-byte system locales (Greek, Hebrew, Arabic, etc.). Black bars or other artifacts appear instead.
  • Addressed issue with an SMS/messaging app that stops working when attempting to delete messages.
  • Addressed issue where, after installing the Creators Update, audio output through external decoders no longer works.
  • Addressed issue where the IoT shell fails to keep monitored background applications running.
  • Addressed issue with high latency when using the Universal Windows Platform (UWP) MIDI API.
  • Addressed issue where PrintBRM fails to restore the Print Queue Configurations when printer names are identical and a port is set to FILE:.
  • Addressed issue with per user proxy settings not migrating to machine proxy settings.
  • Addressed issue where non-English characters showed incorrectly in apps that attempt to wrap/replace the in-box console.
  • Addressed issue when trying to set a default lockscreen using the following Group Policy, you do not see the defined image on the lockscreen but you do see the defined image in Settings under lockscreen settings.
  • Computer Configuration\Administrative Templates\Control Panel\Personalization\"Force a specific default lock screen image"

KB4022868 -- Update for Windows 10 and Windows 10 Version 1511 -- Update to Windows 10 Version 1507 and Version 1511 for update reliability: May 30, 2017

KB4023136 -- 2017 - Morocco Ramadan DST changes

KB890830 -- Windows Malicious Software Removal Tool - May 2017

KB4023136 -- Update for Windows Server 2012, Windows 7, Windows Server 2008 R2, and Windows XP Embedded -- 2017 - Morocco Ramadan DST changes

KB4021701 -- Update for Windows 10 -- Updates to Windows 10, Version 1507 update components: May 16, 2017

KB4021702 -- Update for Windows 10 Version 1511 -- Updates to Windows 10, Version 1511 update components: May 16, 2017

KB4019217 -- 2017-05 Preview of Monthly Quality Rollup for Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2

KB4019218 -- 2017-05 Preview of Monthly Quality Rollup for Windows Embedded 8 Standard and Windows Server 2012

KB4019265 -- 2017-05 Preview of Monthly Quality Rollup for Windows 7 and Windows Server 2008 R2

KB4019288 -- May, 2017 Preview of Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 on Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

KB4019289 -- May, 2017 Preview of Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1 on Windows Embedded 8 Standard and Windows Server 2012

KB4019290 -- May, 2017 Preview of Quality Rollup for .NET Framework 4.5.2, 4.6, 4.6.1, 4.6.2 on Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2

KB4019291 -- May, 2017 Preview of Quality Rollup for .NET Framework 2.0 on Windows Server 2008

KB4019990 --  Update for Windows Embedded 8 Standard, Windows Server 2012, Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2

How to download and install the June 2017 security updates

microsoft june 2017 patch day

Most home users run systems with automatic updates enabled. This means that updates are downloaded and installed automatically some time after they are made available through Windows Update.

Users can run a manual check for updates to speed up that process. To do so, tap on the Windows-key, type Windows Update, and hit the Enter-key.

The interface that loads runs the update check automatically, or you have to click on the check for updates button to start it. Depending on your configuration, updates that are found are either downloaded and installed directly, or on user request.

Direct update downloads

Windows 7 SP1 and Windows Server 2008 R2 SP

Windows 8.1 and Windows Server 2012 R2

Windows 10 and Windows Server 2016 (version 1703)

  • KB4022725 --  Cumulative Update for Windows 10 Version 1703

Additional resources

Summary
Microsoft Security Updates May 2017 release
Article Name
Microsoft Security Updates May 2017 release
Description
An overview of security and non-security updates that Microsoft released in June 2017 for Microsoft Windows and other company products.
Author
Publisher
Ghacks Technology News
Logo
Advertisement

We need your help

Advertising revenue is falling fast across the Internet, and independently-run sites like Ghacks are hit hardest by it. The advertising model in its current form is coming to an end, and we have to find other ways to continue operating this site.

We are committed to keeping our content free and independent, which means no paywalls, no sponsored posts, no annoying ad formats or subscription fees.

If you like our content, and would like to help, please consider making a contribution:

Donate via PayPal

Previous Post: «
Next Post: »

Comments

  1. CHEF-KOCH said on June 13, 2017 at 8:45 pm
    Reply

    Seems KB4022715 is missing.

    1703:
    http://www.catalog.update.microsoft.com/Search.aspx?q=KB4022725

    1607:
    http://www.catalog.update.microsoft.com/Search.aspx?q=KB4022715

    1511:
    http://www.catalog.update.microsoft.com/Search.aspx?q=KB4022714

    1507:
    http://www.catalog.update.microsoft.com/Search.aspx?q=KB4022727

    1. Martin Brinkmann said on June 13, 2017 at 8:49 pm
      Reply

      Hi Chef-Koch, What do you mean it is missing?

      1. CHEF-KOCH said on June 13, 2017 at 9:02 pm
        Reply

        You didn’t list it. It’s the same security update for all Windows 10 versions just released under other KB names.

        You listed KB4022725 which is just the one for 1703 systems but MS still supports lower versions like 1507 too.

        Well I added the links for you don’t worry. ;)

      2. Martin Brinkmann said on June 13, 2017 at 9:07 pm
        Reply

        Ah, that’s what you mean. I only list the latest version of Windows 10. If there is demand, I could add other supported versions in future posts.

  2. Tony said on June 13, 2017 at 9:02 pm
    Reply

    Servers were busy. Took many attempts to get patches. It’s like they’ve never done this before.

    Beware of some unwanted patches now being offered (again).

  3. Ruan said on June 14, 2017 at 3:50 am
    Reply

    Martin,
    Microsoft has released patches for Windows XP and Vista this month.
    -https://blogs.technet.microsoft.com/msrc/2017/06/13/june-2017-security-update-release/
    -https://www.askwoody.com/2017/a-most-unusual-patch-tuesday/

    1. Martin Brinkmann said on June 14, 2017 at 5:39 am
      Reply

      Thank you, I have added the information to the article.

  4. stevie said on June 14, 2017 at 10:16 am
    Reply

    Hi, Martin.
    I have not updated for around 8 months. I was looking at ask woody and he recommends downloading some of the updates, but be wary of which updates to use (but I could not find which ones).
    If you could help that would be great.
    I’m using Win 7 x64 home premium and Microsoft Office 2010.
    Cheers.
    Stevie.

    1. Martin Brinkmann said on June 14, 2017 at 10:25 am
      Reply

      Check this out, I suggest you follow this: https://www.askwoody.com/2017/playing-catch-up-with-windows-and-office-patches/

      1. stevie said on June 14, 2017 at 11:10 am
        Reply

        Hi.
        Patched MS17-010 for now and I shall look again later.
        Unless there is something more important.
        Stevie.

  5. Sam said on June 14, 2017 at 11:32 am
    Reply

    For anyone using the security-only updates for Windows 7/8.1, do remember to install the IE 2017-06 security update (KB4021558) too as it’s not included: https://support.microsoft.com/en-us/help/4021558/

    1. ejjeel said on June 14, 2017 at 3:29 pm
      Reply

      For anyone using the security-only updates: also the flash security update for IE w8.1 & W10 is not included

      http://www.catalog.update.microsoft.com/Search.aspx?q=kb4022730

    2. A different Martin said on June 16, 2017 at 11:10 pm
      Reply

      In case you ever print from Internet Explorer 11, according to AskWoody there have been reports of a bug resulting from installing either KB4022719 (quality and security) or KB4021558 (security only). (You might not be able to print single frames, iframes, or pop-ups in IE11.) Microsoft’s Edge team has apparently marked the bug “won’t fix.” I rarely use let alone print from Internet Explorer, so I might go ahead and install KB4021558 anyway.

  6. AAA said on June 14, 2017 at 5:10 pm
    Reply

    My system is running buttery smooth after all these patches :)

  7. Paul said on June 17, 2017 at 5:01 pm
    Reply

    My Windows 7 Ultimate 64-bit system locks up during the restart with both the June monthly rollup or the security-only update. The restart gets to 15% complete and then the screen freezes up. This is within perhaps 1 minute of doing the restart. I waited about 6 hours for the rollup and nothing changed. I only waited 15 minutes for the security-only update. I have had to turn the computer off and then do a restore. I suppose I will have to try individual patches until I can find out which one is causing problems. I’ve installed all previous W7 patches (except those related to W10 upgrade) and haven’t had problems, so this is new territory for me.

  8. Jozu said on June 19, 2017 at 5:43 pm
    Reply

    This update Broke my pc, it was not allowing me to install drivers for my hardware. It would list the hardware at an error state. After trying almost everything and restore points not working / failing. I went into looking for updates that may have been released a few days before I started having this issue. Uninstalled this one and everything started working.

    KB4022725 — June 13, 2017 Windows 10 version 1703 cumulative update (OS Build 15063.413 and 15063.414)
    •Security updates to Windows kernel, Microsoft Windows PDF, Windows kernel-mode drivers, Microsoft Uniscribe, Device Guard, Internet Explorer, Windows Shell, and Microsoft Edge.
    •Issues described in KB4020102 (below)

  9. helloha said on June 20, 2017 at 5:28 pm
    Reply

    Windows Update KB4022725 breaks hp network printer driver
    I have been using hp officejet pro 8610 printer for many months without a hitch. I noticed the printer driver was no longer working once Cumulative Update for Windows 10 Version 1703 for x64-based Systems KB4022725 had installed. The Printer Driver Version is 32.3 direct from HP.
    Although the printer was still visible in devices and printers, I was unable to print via network. I manually uninstalled the update and recovered the printer functionality. Problem is auto update in windows 10 keeps nagging to reinstall the update and the problem is reproducible. Any help would be appreciated!

  10. joyce said on June 28, 2017 at 5:20 pm
    Reply

    I have been trying to download the Xp old platform updates since 6-17-17 and Microsoft will not display the webpage so I can download & install the updates manually or at all when using my XP. The same page loads just fine on my windows 7 but not on mymXP. I’ve tried different websites to get the downloads and none of them will display. I’ve also tried copying the info on my windows 7 where the webpage will display to a USB stick (copy/paste then drag & drop) and plug the stick into my XP but it won’t work so I still can’t install the updates. Also tried copying the updates individually (copy & paste) to to Libre Office word doc then to the usb stick and that doesn’t work either. I did see once, “~lock the the website so I[m wondering if these XP security updats are only for certain Windows customers for downloading. Any suggestions would be appreciated. I also thought about forwarding the email on windows 7 to my windows XP email account, but found that I’d have to download 59000+ emails first from 4-20-14 to the present date to even open the forwarded email & it probably wouldn’t have opened anyway. I’m in usa and wondering if anyone else is haveing problems downloading these 12 XP security fixes?

  11. Legolas said on July 2, 2017 at 12:05 pm
    Reply

    Please consider also including the IE patches (included in the Quality and security, but not in the security only patches).

Leave a Reply

Check the box to consent to your data being stored in line with the guidelines set out in our privacy policy

Please note that your comment may not appear immediately after you post it.

Be polite: we do not allow comments that threaten or harass, or are personal attacks. Please leave politics and religion out of discussions!

Advertisement

Spread the Word

Ghacks Newsletter Sign Up

Please click on the following link to open the newsletter signup page: Ghacks Newsletter Sign up

Advertisement

Popular Posts

Advertisement

Recently Updated

This Day in History

Advertisement

About gHacks

Ghacks is a technology news blog that was founded in 2005 by Martin Brinkmann. It has since then become one of the most popular tech news sites on the Internet with five authors and regular contributions from freelance writers.

© 2019 gHacks Technology News. All Rights Reserved.