Microsoft Windows Security Updates August 2021 overview

Martin Brinkmann
Aug 10, 2021
Updated • Sep 9, 2021
Windows Updates
|
7

Microsoft has released security updates and non-security updates for its Windows operating system on today's Patch Day. Updates are available for all client and server versions of Microsoft Windows, as well as other company products such as Microsoft Office or Azure.

The overview that you are reading includes information and resource links to get you started quickly. It begins with an executive summary, which lists important details. The operating system distribution and list of cumulative updates for all Windows versions follow.

Our guide lists known issues as confirmed by Microsoft, links to security advisories, non-security patches, download information, and more resource links at the bottom of the page.

Click here to open the July 2021 Patch Day overview published last month.

The Microsoft Windows Security Updates: August 2021

Click here to download an Excel spreadsheet that lists all released security updates: windows-updates-august-2021

Executive Summary

  • Microsoft released security updates for all supported versions of Windows (client and server).
  • Security updates are also available for Microsoft Office, Azure, Azure Sphere, ASP .NET, .NET Core & Visual Studio, Microsoft Dynamics, Remote Desktop Client and other products.
  • The following Windows client and server versions have known issues: Windows 7 SP1, Windows 8.1, Windows 10 versions 1909, 2004, 20H2 and 21H1, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2, Windows Server 2019

Operating System Distribution

  • Windows 7 (extended support only): 12 vulnerabilities: 4 critical and 8 important
    • Windows Print Spooler Remote Code Execution Vulnerability -- CVE-2021-36936
    • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2021-26424
    • Remote Desktop Client Remote Code Execution Vulnerability -- CVE-2021-34535
    • Scripting Engine Memory Corruption Vulnerability -- CVE-2021-34480
  • Windows 8.1: 18 vulnerabilities: 5 critical and 13 important
    • Windows Print Spooler Remote Code Execution Vulnerability -- CVE-2021-36936
    • Windows Services for NFS ONCRPC XDR Driver Remote Code Execution Vulnerability -- CVE-2021-26432
    • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2021-26424
    • Remote Desktop Client Remote Code Execution Vulnerability -- CVE-2021-34535
    • Scripting Engine Memory Corruption Vulnerability -- CVE-2021-34480
  • Windows 10 version 1903 and 1909: 23 vulnerabilities: 7 critical and 16 important
    • Remote Desktop Client Remote Code Execution Vulnerability -- CVE-2021-34535
    • Windows MSHTML Platform Remote Code Execution Vulnerability -- CVE-2021-34534
    • Scripting Engine Memory Corruption Vulnerability -- CVE-2021-34480
    • Windows Graphics Component Remote Code Execution Vulnerability -- CVE-2021-34530
    • Windows Print Spooler Remote Code Execution Vulnerability -- CVE-2021-36936
    • Windows Services for NFS ONCRPC XDR Driver Remote Code Execution Vulnerability -- CVE-2021-26432
    • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2021-26424
  • Windows 10 version 2004, 20H2 and 21H1 : 24 vulnerabilities, 7 critical and 17 important
    • same as Windows 10 version 1909.

Windows Server products

  • Windows Server 2008 R2 (extended support only): 13 vulnerabilities: 4 critical and 9 important
    • Windows Print Spooler Remote Code Execution Vulnerability -- CVE-2021-36936
    • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2021-26424
    • Remote Desktop Client Remote Code Execution Vulnerability -- CVE-2021-34535
    • Scripting Engine Memory Corruption Vulnerability -- CVE-2021-34480
  • Windows Server 2012 R2: 19 vulnerabilities: 5 critical and 14 important
    • Windows Print Spooler Remote Code Execution Vulnerability -- CVE-2021-36936
    • Windows Services for NFS ONCRPC XDR Driver Remote Code Execution Vulnerability -- CVE-2021-26432
    • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2021-26424
    • Remote Desktop Client Remote Code Execution Vulnerability -- CVE-2021-34535
    • Scripting Engine Memory Corruption Vulnerability -- CVE-2021-34480
  • Windows Server 2016: 23 vulnerabilities: 7 critical and 16 important
    • Windows Graphics Component Remote Code Execution Vulnerability -- CVE-2021-34530
    • Scripting Engine Memory Corruption Vulnerability -- CVE-2021-34480
    • Windows MSHTML Platform Remote Code Execution Vulnerability -- CVE-2021-34534
    • Remote Desktop Client Remote Code Execution Vulnerability -- CVE-2021-34535
    • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2021-26424
    • Windows Services for NFS ONCRPC XDR Driver Remote Code Execution Vulnerability -- CVE-2021-26432
    • Windows Print Spooler Remote Code Execution Vulnerability -- CVE-2021-36936
  • Windows Server 2019: 25 vulnerabilities: 7 critical and 18 important
    • same as Windows Server 2016

Windows Security Updates

Windows 7 SP1 and Windows Server 2008 R2

Updates and improvements:

  • Administrative privileges are required to install printer drivers using Point and Print. More information is available here and here.
  • Fixed an issue with Smart Card Authentication failures on non-RFC compliant printers and scanners. See here for more information.
  • Security updates

Windows 8.1 and Windows Server 2012 R2

Updates and improvements:

  • Administrative privileges are required to install printer drivers using Point and Print. More information is available here and here.
  • Fixed an issue with Smart Card Authentication failures on non-RFC compliant printers and scanners. See here for more information.
  • Security updates

Windows 10 version 1909

Updates and improvements:

  • Administrative privileges are required to install printer drivers using Point and Print. More information is available here and here.

Windows 10 version 2004, 20H2 and 21H1

Updates and improvements:

  • Administrative privileges are required to install printer drivers using Point and Print. More information is available here and here.

Other security updates

2021-08 Cumulative Security Update for Internet Explorer (KB5005036)

2021-08 Security Monthly Quality Rollup for Windows Server 2008 (KB5005090)

2021-08 Security Only Quality Update for Windows Server 2008 (KB5005095)

2021-08 Security Only Quality Update for Windows Embedded 8 Standard and Windows Server 2012 (KB5005094)

2021-08 Security Monthly Quality Rollup for Windows Embedded 8 Standard and Windows Server 2012 (KB5005099)

2021-08 Cumulative Update for Windows 10 version 1507 (KB5005040)

2021-08 Cumulative Update for Windows Server 2016 and Windows 10 Version 1607 (KB5005043)

2021-08 Cumulative Update for Windows Server 2019 and Windows 10 Version 1809 (KB5005030)

2021-08 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5005039)

Servicing Stack Updates

2021-08 Servicing Stack Update for Windows Server 2019 and Windows 10 Version 1809 (KB5005112)

2021-08 Servicing Stack Update for Windows 10 Version 1909 (KB5005412)

2021-08 Servicing Stack Update for Windows Server, version 20H2, Windows 10 Version 20H2, Windows Server, version 2004, Windows 10 Version 2004, Windows 10 Version 1909, and Windows 10 Version 1903 (KB5005260)

Known Issues

Windows 7 SP1 and Windows Server 2008 R2

  • After installing this update, the Elastic File System (EFS) API OpenEncryptedFileRaw(A/W), often used in backup software, will not work when you back up to or from a Windows Server 2008 SP2 device.
  • Certain operations will fail on Cluster Shared Volumes.
    • Perform the task from a process with elevated rights.
    • Perform the task from a node that does not have CSV ownership.
  • Updates will be uninstalled if the device does not support ESU.
    • Expected behavior.

Windows 8.1 and Server 2012 R2

  • After installing this update, the Elastic File System (EFS) API OpenEncryptedFileRaw(A/W), often used in backup software, will not work when you back up to or from a Windows Server 2008 SP2 device.
  • Certain operations will fail on Cluster Shared Volumes.
    • Perform the task from a process with elevated rights.
    • Perform the task from a node that does not have CSV ownership.

Windows 10 version 1909

  • After installing this update, the Elastic File System (EFS) API OpenEncryptedFileRaw(A/W), often used in backup software, will not work when you back up to or from a Windows Server 2008 SP2 device.

Windows 10 versions 2004, 20H2 and 21H1

  • After installing this update, the Elastic File System (EFS) API OpenEncryptedFileRaw(A/W), often used in backup software, will not work when you back up to or from a Windows Server 2008 SP2 device.
  • Some devices will receive the error "PSFX_E_MATCHING_BINARY_MISSING" when trying to install updates after the KB5003690 update released in June.
    • See here for a workaround.
  • If Windows was installed from custom ISO images or custom offline media, the new Microsoft Edge may not be installed.
    • See the support article for a workaround.
  • Character input issues with the Japanese Input Method Editor.
    • No workaround or solution yet.

Security advisories and updates

ADV 990001 -- Latest Servicing Stack Updates

Other updates

2021-08 Security and Quality Rollup for .NET Framework 4.8 for Windows Embedded 8 Standard and Windows Server 2012 (KB5004753)

2021-08 Security and Quality Rollup for .NET Framework 4.8 for Windows 8.1 and Windows Server 2012 R2 (KB5004754)

2021-08 Security and Quality Rollup for .NET Framework 4.8 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2 (KB5004755)

2021-08 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Embedded Standard 7, Windows 7, Windows Server 2008 R2, and Windows Server 2008 (KB5004757)

2021-08 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Embedded 8 Standard and Windows Server 2012 (KB5004758)

2021-08 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows 8.1 and Windows Server 2012 R2 (KB5004759)

2021-08 Security and Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2 (KB5004871)

2021-08 Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded 8 Standard and Windows Server 2012 (KB5004872)

2021-08 Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 8.1 and Windows Server 2012 R2 (KB5004873)

2021-08 Cumulative Update for .NET Framework 3.5 and 4.8 for Microsoft server operating system version 21H2 for ARM64 (KB5004330)

2021-08 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows Server, version 20H2, Windows 10 Version 20H2, Windows Server, version 2004, Windows 10 Version 2004, Windows 10 Version 1909, and Windows 10 Version 1903 (KB5004331)

2021-08 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows Server 2019 and Windows 10 Version 1809 (KB5004332)

2021-08 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 1909 (KB5004333)

2021-08 Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows Server 2019 and Windows 10 Version 1809 (KB5004335)

2021-08 Cumulative Update for .NET Framework 4.8 for Windows Server 2016 and Windows 10 Version 1607 (KB5004752)

2021-08 Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows Server 2019 and Windows 10 Version 1809 (KB5004870)

2021-08 Security and Quality Rollup for .NET Framework 2.0, 3.0, 4.5.2, 4.6 and 4.6.2 for Windows Server 2008 (KB5004874)

Microsoft Office Updates

You find Office update information here.

How to download and install the August 2021 security updates

microsoft windows security updates august 2021

Security updates are installed automatically on most home systems. Some home administrators have disabled automatic updates; these may download and install updates from Microsoft's Update Catalog website to install them manually on Windows PCs.

System administrators who manage systems using update management systems such as WSUS may install updates to managed systems using the updating tools.

You may run a manual check for updates on Home systems in the following way:

  1. Select Start, type Windows Update and load the Windows Update item that is displayed.
  2. Select check for updates to run a manual check for updates.

Direct update downloads

Below are resource pages with direct download links, if you prefer to download the updates to install them manually.

Windows 7 and Server 2008 R2

  • KB5005088 -- 2021-08 Security Monthly Quality Rollup for Windows 7
  • KB5005089 -- 2021-08 Security Only Quality Update for Windows 7

Windows 8.1 and Windows Server 2012 R2

  • KB5005076 -- 2021-08 Security Monthly Quality Rollup for Windows 8.1
  • KB5005106 -- 2021-08 Security Only Quality Update for Windows 8.1

Windows 10 (version 1909)

  • KB5005031 -- 2021-08 Cumulative Update for Windows 10 Version 1909

Windows 10 (version 2004)

  • KB5005033 -- 2021-08 Cumulative Update for Windows 10 Version 2004

Windows 10 (version 20H2)

  • KB5005033 -- 2021-08 Cumulative Update for Windows 10 Version 20H2

Windows 10 (version 21H1)

  • KB5005033 -- 2021-08 Cumulative Update for Windows 10 Version 21H1

Additional resources

Summary
Microsoft Windows Security Updates August 2021 overview
Article Name
Microsoft Windows Security Updates August 2021 overview
Description
Microsoft has released security updates and non-security updates for its Windows operating system on today's Patch Day.
Author
Publisher
Ghacks Technology News
Logo
Advertisement

Previous Post: «
Next Post: «

Comments

  1. Shiva said on August 11, 2021 at 5:14 pm
    Reply

    0x800f081f again after installing post 100% with KB5005033 (since KB5004237). No issue with all other updates. Everything works fine, followed all suggestions and now with greatest reluctance I will try in-place upgrade.
    Few months have gone sice Windows 10 has been installed and I already f… tired, there’s got to be some explanation about I’ve never encounter all these issues with 7. Never!

    Off topic: is there a technical term when a site open the link with a popup and the previous page redirects to an AD? I remember I probably solved this on Waterfox but I can’t find a solution on Firefox.

  2. 6 fingered man said on August 11, 2021 at 10:59 am
    Reply

    >They’re never going to fix Windows.

    BINGO! That’s the whole point! To constantly create a need. The next one will be better and more secure, just believe us!

    Windows 10 should be illegal for the telemetry it sends back.

    People have a NEED, for example, for using Windows for GAMES.

    If every single Linux user who “gamed” on Windows would refuse to do so and instead only accept gaming on Linux, everything would change. It would take time but it would change.

    Instead, like the lame ducks they are, they just continue to suck off the M$ tit because of a NEED. It’s ALWAYS about a NEED. Well guess what, the NEED is artificial, it is created to ENSLAVE YOU.

  3. Henk said on August 11, 2021 at 10:47 am
    Reply

    Once again, many thanks for giving us these monthly overviews. It may not be the most exciting stuff and I’m sure it does cost you some time to put it all together for us every month again, but it’s very useful indeed, and highly appreciated!

  4. Belga said on August 11, 2021 at 8:38 am
    Reply

    No problem to install the KB5005106 — 2021-08 Security Only Quality Update under Win 8.1.
    Thank you Martin !

  5. Anonymous said on August 11, 2021 at 4:32 am
    Reply

    They’re never going to fix Windows. Now they’ve added 11 to make things even worse for their devs. How many operating system versions does MS have to maintain now? That’s in addition to Windows needing compatibility with all of MS’s other platforms.

    This system is being run by inept bureaucrats. It is impossible to fix the Windows codebase by adding more bloat to it, it is corrupted and only becomes more corrupted with every addition to it.

    A competent company would have moved away from the broken Windows codebase a decade ago and made Windows 10 a completely new OS that ran legacy software in a sandbox. Instead they continue to beat the same dead bug-infested, bloated horse even with Win 11. They retrofit more overhead and unnecessary requirements to try to get their dead horse to do what it cannot.

    1. Paul(us) said on August 11, 2021 at 11:38 am
      Reply

      Well written Anoymous a sandbox o.s. should be the difference between “The last o.s.!” (according Microsoft) and the new Windows 11 being a o.s. which should be a sandbox based o.s. witch is compatible with not only Linux, but also Unix and Mac.

  6. Paul(us) said on August 10, 2021 at 10:30 pm
    Reply

    Thanks Martin for guiding me to the KB5005033 update so I upgrade Windows 10 pro to version 21H1 o.s. bild 19043.1165

Leave a Reply

Check the box to consent to your data being stored in line with the guidelines set out in our privacy policy

We love comments and welcome thoughtful and civilized discussion. Rudeness and personal attacks will not be tolerated. Please stay on-topic.
Please note that your comment may not appear immediately after you post it.