Microsoft Windows Security Updates January 2022 overview

Martin Brinkmann
Jan 11, 2022
Updated • Jan 11, 2022
Windows Updates
|
13

Microsoft released security updates and non-security updates for all supported versions of its Windows operating system and other company products on January 11, 2022.

windows-security updates january 2022

The first Patch Tuesday of the year 2022is already available via Windows Update, update management systems such as WSUS, and as direct downloads from the Microsoft Update Catalog.

The guide that you are reading has all the information that you require to make educated updating decisions. It links to all support pages and downloads, list critical vulnerabilities, includes a list of known issues, and also links to additional support pages and resources.

The Microsoft Windows Security Updates: January 2022

We have prepared a Microsoft Excel spreadsheet that contains all relevant security updates that Microsoft released on the January 2022 Patch Day. Click on the following link to download it, as a zip file, to your local system: Security Updates 2022-01-11-070359pm

Executive Summary

  • Security updates have been released for all support client and server versions of the Windows operating system.
  • Microsoft released security updates for other company products as well, including .NET Framework, Microsoft Dynamics, Microsoft Office, Microsoft Edge, Microsoft Teams, Microsoft Windows Codecs Library, DirectX, Windows Defender, Windows Secure Boot and others.
  • The following client operating systems have known issues: Windows 7, Windows 8.1, Windows 10 version 1607, Windows 10 version 20H2, Windows 10 version 21H1, Windows 11
  • The following server operating systems have known issues: Windows Server 2008, Windows Server 2008 R2, Windows Server 2012 R2, Windows Server 2016, Windows Server 2019, Windows Server 2022

Operating System Distribution

  • Windows 7 (extended support only): 34 vulnerabilities: 2 critical and 32 important
    • Virtual Machine IDE Drive Elevation of Privilege Vulnerability -- CVE-2022-21833
    • Active Directory Domain Services Elevation of Privilege Vulnerability -- CVE-2022-21857
  • Windows 8.1: 51 vulnerabilities: 3 critical and 18 important
    • same as Windows 7
  • Windows 10 version 1909: 77 vulnerabilities: 5 critical and 72 important
    • Open Source Curl Remote Code Execution Vulnerability -- CVE-2021-22947
    • Virtual Machine IDE Drive Elevation of Privilege Vulnerability -- CVE-2022-21833
    • Active Directory Domain Services Elevation of Privilege Vulnerability -- CVE-2022-21857
    • DirectX Graphics Kernel Remote Code Execution Vulnerability -- CVE-2022-21912
    • DirectX Graphics Kernel Remote Code Execution Vulnerability -- CVE-2022-21898
  • Windows 10 version 2004, 20H2, 21H1 and 21H2 : 78 vulnerabilities, 6 critical and 72 important
    • DirectX Graphics Kernel Remote Code Execution Vulnerability -- CVE-2022-21912
    • HTTP Protocol Stack Remote Code Execution Vulnerability -- CVE-2022-21907
    • DirectX Graphics Kernel Remote Code Execution Vulnerability -- CVE-2022-21898
    • Active Directory Domain Services Elevation of Privilege Vulnerability -- CVE-2022-21857
    • Virtual Machine IDE Drive Elevation of Privilege Vulnerability -- CVE-2022-21833
    • Open Source Curl Remote Code Execution Vulnerability -- CVE-2021-22947
  • Windows 11 66 vulnerabilities, 3 critical and 63 important
    • HTTP Protocol Stack Remote Code Execution Vulnerability -- CVE-2022-21907
    • Active Directory Domain Services Elevation of Privilege Vulnerability -- CVE-2022-21857
    • Open Source Curl Remote Code Execution Vulnerability -- CVE-2021-22947

Windows Server products

  • Windows Server 2008 R2 (extended support only): 34 vulnerabilities: 2 critical and 32 important
    • Virtual Machine IDE Drive Elevation of Privilege Vulnerability -- CVE-2022-21833
    • Active Directory Domain Services Elevation of Privilege Vulnerability -- CVE-2022-21857
  • Windows Server 2012 R2: 52 vulnerabilities: 2 critical and 50  important
    • Active Directory Domain Services Elevation of Privilege Vulnerability -- CVE-2022-21857
    • Virtual Machine IDE Drive Elevation of Privilege Vulnerability -- CVE-2022-21833
  • Windows Server 2016: 63 vulnerabilities: 2 critical and 61 important
    • Active Directory Domain Services Elevation of Privilege Vulnerability -- CVE-2022-21857
    • Virtual Machine IDE Drive Elevation of Privilege Vulnerability -- CVE-2022-21833
  • Windows Server 2019: 82 vulnerabilities: 6 critical and 76 important
    • HTTP Protocol Stack Remote Code Execution Vulnerability -- CVE-2022-21907
    • DirectX Graphics Kernel Remote Code Execution Vulnerability -- CVE-2022-21912
    • DirectX Graphics Kernel Remote Code Execution Vulnerability -- CVE-2022-21898
    • Active Directory Domain Services Elevation of Privilege Vulnerability -- CVE-2022-21857
    • Virtual Machine IDE Drive Elevation of Privilege Vulnerability -- CVE-2022-21833
    • Open Source Curl Remote Code Execution Vulnerability -- CVE-2021-22947
  • Windows Server 2022:  81 vulnerabilities: 5 critical and 76 important
    • HTTP Protocol Stack Remote Code Execution Vulnerability -- CVE-2022-21907
    • DirectX Graphics Kernel Remote Code Execution Vulnerability -- CVE-2022-21898
    • Active Directory Domain Services Elevation of Privilege Vulnerability -- CVE-2022-21857
    • Virtual Machine IDE Drive Elevation of Privilege Vulnerability -- CVE-2022-21833
    • Open Source Curl Remote Code Execution Vulnerability -- CVE-2021-22947

Windows Security Updates

Windows 7 SP1 and Windows Server 2008 R2

Updates and improvements:

  • Fixed a Windows Server issue "in which Active Directory attributes are not written correctly during a Lightweight Directory Access Protocol (LDAP) modify operation with multiple specific attribute changes".

Windows 8.1 and Windows Server 2012 R2

Updates and improvements:

  • Fixed a Windows Server issue "in which Active Directory attributes are not written correctly during a Lightweight Directory Access Protocol (LDAP) modify operation with multiple specific attribute changes".

Windows 10 version 1909

Updates and improvements:

  • Addresses an issue that causes Windows to go into BitLocker recovery after a servicing update.
  • Enables credentials for Azure Active Directory (Azure AD) Active Directory Federation Services (ADFS) users in Quick Assist.
  • Addresses an issue that sometimes prevents Quick Assist users from using full screen view after they start a remote assistance session.

Windows 10 version 2004, 20H2, 21H1 and 21H2

Updates and improvements:

  • Fixed a Windows Server issue "in which Active Directory attributes are not written correctly during a Lightweight Directory Access Protocol (LDAP) modify operation with multiple specific attribute changes".
  • Fixed an issue that affected Japanese Input Method Editors. In particular, it addressed an issue that made text appear out of order or move the text cursor unexpectedly.

Windows 11

Updates and improvements:

  • Fixed an issue that affected Japanese Input Method Editors. In particular, it addressed an issue that made text appear out of order or move the text cursor unexpectedly.

Other security updates

  • 2022-01 Security Monthly Quality Rollup for Windows Embedded 8 Standard and Windows Server 2012 (KB5009586)
  • 2022-01 Security Only Quality Update for Windows Embedded 8 Standard and Windows Server 2012 (KB5009619)
  • 2022-01 Security Only Quality Update for Windows Server 2008 (KB5009601)
  • 2022-01 Security Monthly Quality Rollup for Windows Server 2008 (KB5009627)
  • 2022-01 Cumulative Update for Windows Server 2016 and Windows 10 Version 1607 (KB5009546)
  • 2022-01 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5009555)
  • 2022-01 Cumulative Update for Windows Server 2019 and Windows 10 Version 1809 (KB5009557)
  • 2022-01 Cumulative Update for Windows 10 Version 1507 (KB5009585)

.NET Framework Updates

  • 2022-01 Security and Quality Rollup for .NET Framework 4.8 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2 (KB5008858)
  • 2022-01 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Embedded Standard 7, Windows 7, Windows Server 2008 R2, and Windows Server 2008 (KB5008859)
  • 2022-01 Security and Quality Rollup for .NET Framework 4.5.2 for Windows Embedded Standard 7, Windows 7, Windows Server 2008 R2, and Windows Server 2008 (KB5008860)
  • 2022-01 Security and Quality Rollup for .NET Framework 3.5 for Windows Embedded 8 Standard and Windows Server 2012 (KB5008865)
  • 2022-01 Security and Quality Rollup for .NET Framework 2.0, 3.0 for Windows Server 2008 (KB5008866)
  • 2022-01 Security and Quality Rollup for .NET Framework 3.5.1 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2 (KB5008867)
  • 2022-01 Security and Quality Rollup for .NET Framework 3.5 for Windows 8.1 and Windows Server 2012 R2 (KB5008868)
  • 2022-01 Security and Quality Rollup for .NET Framework 4.5.2 for Windows Embedded 8 Standard and Windows Server 2012 (KB5008869)
  • 2022-01 Security and Quality Rollup for .NET Framework 4.5.2 for Windows 8.1 and Windows Server 2012 R2 (KB5008870)
  • 2022-01 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Embedded 8 Standard and Windows Server 2012 (KB5008874)
  • 2022-01 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows 8.1 and Windows Server 2012 R2 (KB5008875)
  • 2022-01 Security and Quality Rollup for .NET Framework 4.8 for Windows Embedded 8 Standard and Windows Server 2012 (KB5008881)
  • 2022-01 Security and Quality Rollup for .NET Framework 4.8 for Windows 8.1 and Windows Server 2012 R2 (KB5008883)
  • 2022-01 Security Only Update for .NET Framework 4.8 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2 (KB5008885)
  • 2022-01 Security Only Update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Embedded Standard 7, Windows 7, Windows Server 2008 R2, and Windows Server 2008 (KB5008886)
  • 2022-01 Security Only Update for .NET Framework 4.5.2 for Windows Embedded Standard 7, Windows 7, Windows Server 2008 R2, and Windows Server 2008 (KB5008887)
  • 2022-01 Security Only Update for .NET Framework 3.5 for Windows Embedded 8 Standard and Windows Server 2012 (KB5008888)
  • 2022-01 Security Only Update for .NET Framework 2.0, 3.0 for Windows Server 2008 (KB5008889)
  • 2022-01 Security Only Update for .NET Framework 3.5.1 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2 (KB5008890)
  • 2022-01 Security Only Update for .NET Framework 3.5 for Windows 8.1 and Windows Server 2012 R2 (KB5008891)
  • 2022-01 Security Only Update for .NET Framework 4.5.2 for Windows Embedded 8 Standard and Windows Server 2012 (KB5008892)
  • 2022-01 Security Only Update for .NET Framework 4.5.2 for Windows 8.1 and Windows Server 2012 R2 (KB5008893)
  • 2022-01 Security Only Update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Embedded 8 Standard and Windows Server 2012 (KB5008894)
  • 2022-01 Security Only Update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows 8.1 and Windows Server 2012 R2 (KB5008895)
  • 2022-01 Security Only Update for .NET Framework 4.8 for Windows Embedded 8 Standard and Windows Server 2012 (KB5008896)
  • 2022-01 Security Only Update for .NET Framework 4.8 for Windows 8.1 and Windows Server 2012 R2 (KB5008897)
  • 2022-01 Security Only Update for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2 (KB5009711)
  • 2022-01 Security Only Update for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded 8 Standard and Windows Server 2012 (KB5009712)
  • 2022-01 Security Only Update for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 8.1 and Windows Server 2012 R2 (KB5009713)
  • 2022-01 Security Only Update for .NET Framework 2.0, 3.0, 4.5.2, 4.6 and 4.6.2 for Windows Server 2008 (KB5009714)
  • 2022-01 Security and Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2 (KB5009719)
  • 2022-01 Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded 8 Standard and Windows Server 2012 (KB5009720)
  • 2022-01 Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 8.1 and Windows Server 2012 R2 (KB5009721)
  • 2022-01 Security and Quality Rollup for .NET Framework 2.0, 3.0, 4.5.2, 4.6 and 4.6.2 for Windows Server 2008 (KB5009722)
  • 2022-01 Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows Server 2019 and Windows 10 Version 1809 (KB5008873)
  • 2022-01 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 21H1, Windows Server, version 20H2, Windows 10 Version 20H2, Windows 10 Version 2004, Windows 10 Version 1909, Windows 10 Version 1903, Windows 10 Version 1809, and Windows 10 Version 1607 (KB5008876)
  • 2022-01 Cumulative Update for .NET Framework 4.8 for Windows Server 2016 and Windows 10 Version 1607 (KB5008877)
  • 2022-01 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows Server 2019 and Windows 10 Version 1809 (KB5008878)
  • 2022-01 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 1909 (KB5008879)
  • 2022-01 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 11 (KB5008880)
  • 2022-01 Cumulative Update for .NET Framework 3.5 and 4.8 for Microsoft server operating system version 21H2 for x64 (KB5008882)
  • 2022-01 Cumulative Update for .NET Framework 3.5, 4.7.2 and 4.8 for Windows Server 2019 and Windows 10 Version 1809 (KB5009718)

Known Issues

Windows 7 SP1 and Windows Server 2008 R2

  • Updates may show as failed and may be uninstalled because the machine is not on ESU.
    • Expected behavior.
  • Certain operations such as rename may fail on Cluster Shared Volumes.
    • Perform the operation from a process with administrator privileges.
    • Perform the operation from a node that does not have CSV ownership.

Windows 8.1 and Server 2012 R2

  • Certain operations such as rename may fail on Cluster Shared Volumes.
    • Perform the operation from a process with administrator privileges.
    • Perform the operation from a node that does not have CSV ownership.

Windows 10 versions 2004, 20H2, 21H1 and 21H2

  • Custom installations may not receive the new Microsoft Edge web browser, while the old version may be removed.
  • Some devices can't install updates after installation of KB5003690 (June 21, 2021). Error PSFX_E_MATCHING_BINARY_MISSING is displayed.
    • Workaround instructions are available here.
  • Connections may fail to authentication when using smart card authentication in Remote Desktop Connections.
    • Resolved according to Microsoft, should not be experienced anymore.

Windows 11

After the installation of Windows 11, some "some image editing programs might not render colors correctly on certain high dynamic range (HDR) displays".

Security advisories and updates

ADV 990001 -- Latest Servicing Stack Updates

Non-security updates

Microsoft Office Updates

You find Office update information here.

How to download and install the January 2022 security updates

Direct update downloads

Below are resource pages with direct download links, if you prefer to download the updates to install them manually.

Windows 7 and Server 2008 R2

  • KB5009610 -- 2022-01 Security Monthly Quality Rollup for Windows 7
  • KB5009621  -- 2022-01 Security Only Quality Update for Windows 7

Windows 8.1 and Windows Server 2012 R2

  • KB5009624 -- 2022-01 Security Monthly Quality Rollup for Windows 8.1
  • KB5009595  -- 2022-01 Security Only Quality Update for Windows 8.1

Windows 10 (version 1909)

  • KB5009545 -- 2022-01 Cumulative Update for Windows 10 Version 1909

Windows 10 (version 2004)

  • KB5009543 -- 2022-01 Cumulative Update for Windows 10 Version 2004

Windows 10 (version 20H2)

  • KB5009543 -- 2022-01 Cumulative Update for Windows 10 Version 20H2

Windows 10 (version 21H1)

  • KB5009543 -- 2022-01 Cumulative Update for Windows 10 Version 21H1

Windows 10 (version 21H2)

  • KB5009543 -- 2022-01 Cumulative Update for Windows 10 Version 21H2
Windows 11
  • KB5009566  -- 2022-01 Cumulative Update for Windows 11

Additional resources

Summary
Microsoft Windows Security Updates January 2022 overview
Article Name
Microsoft Windows Security Updates January 2022 overview
Description
Microsoft released security updates and non-security updates for all supported versions of its Windows operating system and other company products on January 11, 2022. 
Author
Publisher
Ghacks Technology News
Logo
Advertisement

Previous Post: «
Next Post: «

Comments

  1. Søren said on January 31, 2022 at 9:29 am
    Reply

    Thank you Martin for the excellent overview!

  2. Michael Crawley said on January 17, 2022 at 5:34 pm
    Reply

    Thanks for the post Martin love the format you use. I have not see what Microsoft is doing about KB5009624 but I declined that update for my HyperV devices and I have not see issues anywhere else in our environment. We have about 3,000 devices in total.

  3. EP said on January 13, 2022 at 7:16 pm
    Reply

    windows server reboot loops/bsods and broken non-working VPN connections after installing these January 2022 updates

    https://www.bleepingcomputer.com/news/microsoft/new-windows-server-updates-cause-dc-boot-loops-break-hyper-v/
    https://www.bleepingcomputer.com/news/microsoft/new-windows-kb5009543-kb5009566-updates-break-l2tp-vpn-connections/

    avoid or remove these recent updates for now and wait

  4. Wolfie0827 said on January 12, 2022 at 10:33 pm
    Reply

    I ended up with a “Bootmgr missing error” when I installed the updates, took three hours to get my system back.

  5. Wiphala said on January 12, 2022 at 2:44 pm
    Reply

    First comment on deskmodder blog web portal not recommend to install january monthly security and the only security for windows 7, for various reasons. Only the NET updates are safe for install.

  6. YAS13899 said on January 12, 2022 at 8:17 am
    Reply

    Attention: after installing update
    -Windows server 2012 R2 domain controllers keep restarting
    -One windows server 2012 installed on VMWARE Esxi loses a hard disk

    Both problems solved after uninstalling updates

  7. Paul(us) said on January 12, 2022 at 12:14 am
    Reply

    Thanks Martin, for helping me understandable update to version 21H2 (OS Build 19044.1466).

  8. Shiva said on January 12, 2022 at 12:10 am
    Reply

    What an effort to install KB5009543! I didn’t even understand what changes I made to fix the issue. After two unsuccessful attempts I tried the last one with no expectations and went for a coffee. Finally no update roll back message after reboot.
    On my Lenovo laptop every month is a surprise. Now I add the coffee as propitiatory rituals.

  9. Yuliya said on January 11, 2022 at 11:23 pm
    Reply

    I have completely forgotten it is the secind Tuesday. Maybe because last month I have applied them quite late. I’ll probablly get to update my machines tonight, my PC is already waiting for a restart due to some drivers which I have updated but did not have time for a restart.

  10. Martin Brinkmann said on January 11, 2022 at 7:28 pm
    Reply

    Most support pages have not been updated yet by Microsoft (as usual). I’ll add the information once the pages do get published.

    1. Martin P. said on January 11, 2022 at 10:09 pm
      Reply

      One could think that Microsoft with all the cash that they milk annually from millions of users and corporations should have more than enough resources to provide the documentation on time for monthly Windows updates.

      Alas, nope. There goes the profit first, service last moto I guess…

      1. TelV said on January 12, 2022 at 11:05 am
        Reply

        Agree totally! In fact it never ceases to amaze me that downloads from the catalog site still take place over an insecure connection.

        You’d think with all those $$$$ sitting in the bank M$ could at least ensure that downloads take place over an SSL enabled link.

    2. John G. said on January 11, 2022 at 8:33 pm
      Reply

      Thanks for the big amount of patience and also for your valuable work! @Martin! :]

Leave a Reply

Check the box to consent to your data being stored in line with the guidelines set out in our privacy policy

We love comments and welcome thoughtful and civilized discussion. Rudeness and personal attacks will not be tolerated. Please stay on-topic.
Please note that your comment may not appear immediately after you post it.