Today is Microsoft's Security Patch Day for March 2018. The company released security updates for all supported client and server versions of Windows, and other company products such as Microsoft Office, Microsoft Edge or Internet Explorer.
Our Microsoft Security Updates overview provides you with a detailed overview: it lists all released security and non-security updates, security advisories, and links to direct downloads and additional resources for research.
Note: We recommend that you back up Windows' system partition before you install any update released by Microsoft. You can use free backup tools like Veeam Endpoint Backup or Macrium Reflect for that, or one of the backup programs listed here.
You may download the following Excel spreadsheet to your local system. It contains a list of all security patches for all Microsoft products released on this Patch Day. Click on the following link to download it: security-updates-march-2018-windows-microsoft.zip
Windows Server products
Other Microsoft Products
KB4088875 -- Windows 7 SP1 and Windows Server 2008 R2 Monthly Rollup
KB4088878 -- Windows 7 SP1 and Windows Server 2008 R2 Security-Only Update
KB4088876 -- Windows 8.1 and Windows Server 2012 R2 Monthly Rollup
KB4088879 -- Windows 8.1 and Windows Server 2012 R2 Monthly Rollup
KB4000825 -- Windows 10 version 1607 and Windows Server 2016
KB4088782 -- Windows 10 version 1703
KB4088776 -- Windows 10 version 1709
KB4089187 -- Cumulative security update for Internet Explorer: March 13, 2018
KB4088785 -- Security update for Adobe Flash Player: March 13, 2018
KB4056564 -- Windows Server 2008 and Windows XP Embedded update that fixes a CredSSP remote code execution vulnerability.
KB4073011 -- Windows Server 2008 update that fixes a Windows Hyper-V denial of service vulnerability.
KB4087398 -- Windows Server 2008 and Windows XP Embedded update that fixes a Windows Installer elevation of privilege Vulnerability.
KB4088827 -- Windows Server 2008 update that patches a Hyper-V information disclosure vulnerability.
KB4088880 -- Windows Embedded 8 Standard and Windows Server 2012 update -- security only update.
KB4089082 -- Windows XP Embedded patches Microsoft Video Control elevation of privilege vulnerability.
KB4089175 -- Windows Server 2008 and Windows XP Embedded addresses Windows shell remote code execution vulnerability.
KB4089229 -- Windows Server 2008 addresses Windows Kernel vulnerabilities.
KB4089344 -- Windows Server 2008 and Windows XP Embedded fixes elevation of privileges vulnerability in Windows Graphics Device Interface.
KB4089453 --Windows Server 2008 and Windows XP Embedded fixes Windows remote assistance information disclosure vulnerability.
KB4089694 -- Windows XP Embedded patches Windows Wireless WPA pairwise encryption key reinstallation vulnerability.
KB4090450 -- Windows Server 2008 addresses speculative execution side-channel vulnerabilities.
ADV180005 -- all Windows version -- Document signing deprecation in XPS Viewer
KB4092077 -- Windows 10 version 1703 -- Fixes UI usability issues after installing the previous update for the operating system version.
KB4090913 -- Windows 10 Version 1709 -- This update fixes the "INACCESSIBLE_BOOT_DEVICE" issue and issue with some USB devices and onboard devices that stopped working.
KB4077525 -- Windows 10 Version 1607 and Server 2016 -- Huge update that fixes a large number of issues (mostly in Windows Server 2016)
KB4089848 -- Cumulative Update for Windows Server 2016, and Windows 10 Version 1709
KB4089938 -- Dynamic Update for Windows 10 Version 1709 -- Compatibility update for upgrading to Windows 10 Version 1709
KB4090007 -- Update for Windows 10 Version 1709 -- Intel microcode updates
KB4091663 -- Update for Windows 10 Version 1703
KB4091664 -- Update for Windows 10 Version 1607
KB4091666 -- Update for Windows 10 Version 1507
KB890830 -- Windows Malicious Software Removal Tool - March 201
KB4011665 -- Access 2016 update to prevent remote code execution attacks using specially crafted Office files.
KB4011727 -- Same as KB4011665 but for Excel 2016.
KB4011730 -- Same as KB4011665 but for Word 2016.
KB4011234 -- Access 2013 fix described in KB4011665
KB4018291 -- Excel 2013 fix described in KB4011727
KB4011695 -- Word 2013 fix described in KB4011727
KB4011673 -- Fixes a remote code execution vulnerability in Office 2010.
KB3114416 -- Access 2010 fix described in KB4011665
KB4011675 -- Excel 2010 fix described in KB4011727
KB4011674 -- Word 2010 fix described in KB4011727
All security updates get released as cumulative updates for all supported operating systems. The primary method of distributing new security updates is via Windows Update, the built-in updating system of Windows.
Windows systems run update checks regularly but not in real-time. Users who want to download and install the updates the moment they are released can do so by manually checking for updates.
Note that it is advised to create a system backup before the installation of updates to have a third-party option to restore the old version.
Do the following to check for updates:
Updates can also be downloaded from Microsoft's Update Catalog website, or through other means, WSUS for instance for Windows Server updates.
You can download cumulative updates and rollup patches for Windows 7, Windows 8.1 and Windows 10, and the server operating systems Windows Server 2008 R2, Windows Server 2012 R2, and Windows Server 2016 from the Microsoft Update Catalog website.
Windows 7 SP1 and Windows Server 2008 R2 SP
Windows 8.1 and Windows Server 2012 R2
Windows 10 and Windows Server 2016 (version 1607)
Windows 10 (version 1703)
Windows 10 (version 1709)
Advertising revenue is falling fast across the Internet, and independently-run sites like Ghacks are hit hardest by it. The advertising model in its current form is coming to an end, and we have to find other ways to continue operating this site.
We are committed to keeping our content free and independent, which means no paywalls, no sponsored posts, no annoying ad formats (video ads) or subscription fees.
If you like our content, and would like to help, please consider making a contribution:
Ghacks is a technology news blog that was founded in 2005 by Martin Brinkmann. It has since then become one of the most popular tech news sites on the Internet with five authors and regular contributions from freelance writers.