Microsoft Windows Security Updates September 2022 overview

Martin Brinkmann
Sep 13, 2022
Updated • Sep 13, 2022
Windows Updates
|
14

Microsoft released security and non-security updates for Windows and other company products on the September 2022 Patch Day. These updates address security issues in Microsoft products, and may also introduce improvements, fix bugs, and other changes.

windows security updates september 2022

Security updates are released via Windows Update and other update management services, including WSUS. The updates will get installed automatically on most home Windows PCs, thanks to the built-in automatic updating functionality.

Our security updates overview for the September 2022 Windows security updates contains an overview of the released updates, links to Microsoft support pages, a list of known issues, download links, and much more.

ADVERTISEMENT

Tipcheck out the August 2022 Windows Update overview for last month's releases.

Microsoft Windows Security Updates: September 2022

The following Excel spreadsheet includes the released security updates for Windows and other company products. Just download it with a click on the following link:  Windows security updates september 2022

Executive Summary

  • Microsoft released security updates for all supported client and server versions of the Windows operating system.
  • Security updates are also available for .Net And Visual Studio, .Net Framework, Microsoft Dynamics, Microsoft Edge, Microsoft Office, Visual Studio Code and other Microsoft products.
  • The following client versions of Windows have known issues: Windows 7, Windows 10, Windows 11
  • The following server versions of Windows have known issues: Windows Server 2008, 2008 R2, 2012, 2012 R2, 2019, 2022 and Server 20H2.

Operating System Distribution

  • Windows 7 (extended support only): 32 vulnerabilities: 3 critical and 29 important
    • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2022-34718
    • Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability -- CVE-2022-34721
    • Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability -- CVE-2022-34722
  • Windows 8.1: 33 vulnerabilities: 3 critical and 30 important
    • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2022-34718
    • Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability -- CVE-2022-34721
    • Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability -- CVE-2022-34722
  • Windows 10 version 20H2, 21H1 and 21H2 : 40 vulnerabilities, 3 critical and 37 important
    • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2022-34718
    • Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability -- CVE-2022-34721
    • Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability -- CVE-2022-34722
  • Windows 11:  42 vulnerabilities, 3 critical and 39 important
    • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2022-34718
    • Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability -- CVE-2022-34721
    • Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability -- CVE-2022-34722

Windows Server products

  • Windows Server 2008 R2 (extended support only): 36 vulnerabilities: 3 critical and 33 important
    • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2022-34718
    • Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability -- CVE-2022-34721
    • Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability -- CVE-2022-34722
  • Windows Server 2012 R2: 38 vulnerabilities: 3 critical and 35 important
    • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2022-34718
    • Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability -- CVE-2022-34721
    • Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability -- CVE-2022-34722
  • Windows Server 2016: 43 vulnerabilities: 4 critical and 40 important
    • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2022-34718
    • Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability -- CVE-2022-34721
    • Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability -- CVE-2022-34722
  • Windows Server 2019: 45 vulnerabilities: 3 critical and 42 important
    • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2022-34718
    • Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability -- CVE-2022-34721
    • Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability -- CVE-2022-34722
  • Windows Server 2022:  46 vulnerabilities: 3 critical and 43 important
    • Windows TCP/IP Remote Code Execution Vulnerability -- CVE-2022-34718
    • Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability -- CVE-2022-34721
    • Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability -- CVE-2022-34722

Windows Security Updates

Windows 7 SP1 and Windows Server 2008 R2

Updates and improvements:

  • Includes unspecified "miscellaneous security improvements to internal OS functionality".

Windows 8.1 and Windows Server 2012 R2

Updates and improvements:

  • Includes unspecified "miscellaneous security improvements to internal OS functionality".

Windows 10 version 20H2, 21H1 and 21H2

Updates and improvements:

  • Includes unspecified "miscellaneous security improvements to internal OS functionality".
  • Plus, everything listed here as part of the preview update.

Windows 11

Updates and improvements:

  • Fixes an issue that is affecting Microsoft Accounts. According to the description, a web dialog might not appear that is used to sign-in or sign-out. .
  • Security issue fixes.
  • Plus, everything listed here as part of the preview update.

Other security updates

2022-09 Cumulative Update for Windows 10 Version 1507 (KB5017327)

2022-09 Cumulative Update for Windows Server 2016 and Windows 10 Version 1607 (KB5017305)

2022-09 Cumulative Update for Windows 10 Version 20H2, Windows 10 Version 2004, Windows 10 Version 1909, Windows 10 Version 1903, Windows 10 Version 1809, and Windows 10 Version 1607 (KB5017308)

Server updates

2022-09 Security Monthly Quality Rollup for Windows Server 2008 (KB5017358)

2022-09 Security Only Quality Update for Windows Server 2008 (KB5017371)

2022-09 Security Monthly Quality Rollup for Windows Embedded 8 Standard and Windows Server 2012 (KB5017370)

2022-09 Security Only Quality Update for Windows Embedded 8 Standard and Windows Server 2012 (KB5017377)

2022-09 Cumulative Update for Windows Server 2019 and Windows 10 Version 1809 (KB5017315)

2022-09 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5017316)

.NET Framework

2022-09 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 20H2, Windows 10 Version 2004, Windows 10 Version 1909, Windows 10 Version 1903, Windows 10 Version 1809, and Windows 10 Version 1607 (KB5017022)

2022-09 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 11 (KB5017024)

2022-09 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows 10 Version 20H2, Windows 10 Version 2004, Windows 10 Version 1909, Windows 10 Version 1903, Windows 10 Version 1809, and Windows 10 Version 1607 (KB5017025)

2022-09 Cumulative Update for .NET Framework 3.5 and 4.8 for Microsoft server operating system version 21H2 for x64 (KB5017028)

2022-09 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows 11 (KB5017029)

2022-09 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Microsoft server operating system version 21H2 for x64 (KB5017030)

2022-09 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 11 (KB5017497)

2022-09 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 20H2 (KB5017498)

2022-09 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 20H2, Windows 10 Version 2004, Windows 10 Version 1909, and Windows 10 Version 1903 (KB5017499)

2022-09 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 20H2, Windows 10 Version 2004, Windows 10 Version 1909, Windows 10 Version 1903, Windows 10 Version 1809, and Windows 10 Version 1607 (KB5017500)

2022-09 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Microsoft server operating system version 21H2 for x64 (KB5017501)

Servicing Stack Updates

2022-09 Servicing Stack Update for Windows Server 2016 and Windows 10 Version 1607 (KB5017396)

2022-09 Servicing Stack Update for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2 (KB5017397)

2022-09 Servicing Stack Update for Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2 (KB5017398)

Known Issues

Windows 7 SP1 and Windows Server 2008 R2

  • (New) Daylight saving time advancement in Chile may cause issues.
  • (Old) Updates may show as failed and may be uninstalled because the machine is not on ESU.
    • Expected behaviour.

Windows 8.1 and Windows Server 2012 R2

  • (New) Daylight saving time advancement in Chile may cause issues.

Windows 10 versions 20H2, 21H1 and 21H2

  • (New) XPS Viewer may be unable to open XML Paper Specification documents in certain non-English languages, including "some Japanese and Chinese character encodings".  The issue is not affecting Home users, according to Microsoft.
    • Microsoft is working on a resolution.
  • (New) Daylight saving time advancement in Chile may cause issues.
  • (Old) Custom installations may not receive the new Microsoft Edge web browser, while the old version may be removed.
  • (Fixed) IE Mode tabs might stop responding in Microsoft Edge when sites display modal dialogs.
    • Microsoft resolved the issue with a Known Issue Rollback, which may take up to 24 hours to propagate.
  • (Fixed) Some printing devices may have issues after installation of the update. These may include duplicate copies of printers installed on a device and problems when printing from applications that refer to a printer by a specific name.
    • View the “Settings” app on your device. If a duplicate copy of a printer appears to exist under the “Bluetooth & devices” section, confirm whether this printer works. If so, this printer can be used normally, and other copies of the printer can be removed. If the issue persists, update the print driver for your device.

Windows 11

  • (New) Daylight saving time advancement in Chile may cause issues.
  • (New) XPS Viewer may be unable to open XML Paper Specification documents in certain non-English languages, including "some Japanese and Chinese character encodings".  The issue is not affecting Home users, according to Microsoft.
    • Microsoft is working on a resolution.
  • (Fixed) IE Mode tabs might stop responding in Microsoft Edge when sites display modal dialogs.
    • Microsoft resolved the issue with a Known Issue Rollback, which may take up to 24 hours to propagate.

Security advisories and updates

ADV 990001 -- Latest Servicing Stack Updates

Non-security updates

2022-09 Security and Quality Rollup for .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 8.1 and Windows Server 2012 R2 (KB5017531)

2022-09 Security and Quality Rollup for .NET Framework 3.5.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2 (KB5017529)

2022-09 Security and Quality Rollup for .NET Framework 4.8 for Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2 (KB5017036)

2022-09 Security and Quality Rollup for .NET Framework 4.8 for Windows Embedded 8 Standard and Windows Server 2012 (KB5017037)

2022-09 Security and Quality Rollup for .NET Framework 4.8 for Windows 8.1 and Windows Server 2012 R2 (KB5017038)

2022-09 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows Server 2019 and Windows 10 Version 1809 (KB5016593)

2022-09 Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows Server 2019 and Windows 10 Version 1809 (KB5016713)

2022-09 Cumulative Update for .NET Framework 4.8 for Windows Server 2016 and Windows 10 Version 1607 (KB5017035)

2022-09 Cumulative Update for .NET Framework 3.5, 4.7.2 and 4.8 for Windows Server 2019 and Windows 10 Version 1809 (KB5017528)

2022-09 Security and Quality Rollup for .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded 8 Standard and Windows Server 2012 (KB5017530)

Microsoft Office Updates

You find Office update information here.

How to download and install the September 2022 security updates

Security updates are downloaded and installed automatically on most Home devices. Update management systems and services are available for organizations to deploy updates company-wide.

Windows administrators may run manual checks for updates to install security updates immediately after release; this is done in the following way:

Do the following to run a manual check for updates:

  1. Select Start, type Windows Update and load the Windows Update item that is displayed.
  2. Select check for updates to run a manual check for updates.

Direct update downloads

Below are resource pages with direct download links, if you prefer to download the updates to install them manually.

Windows 7 and Server 2008 R2

  • KB5017361 -- 2022-09 Security Monthly Quality Rollup for Windows 7
  • KB5017373 -- 2022-09 Security Only Quality Update for Windows 7

Windows 8.1 and Windows Server 2012 R2

  • KB5017367 -- 2022-09 Security Monthly Quality Rollup for Windows 8.1
  • KB5017365 -- 2022-09 Security Only Quality Update for Windows 8.1

Windows 10 (version 20H2)

  • KB5017308 -- 2022-09 Cumulative Update for Windows 10 Version 20H2

Windows 10 (version 21H1)

  • KB5017308 -- 2022-09 Cumulative Update for Windows 10 Version 21H1

Windows 10 (version 21H2)

  • KB5017308 -- 2022-09 Cumulative Update for Windows 10 Version 21H2
Windows 11
  • KB5017328 -- 2022-09 Cumulative Update for Windows 11

Additional resources

Summary
Microsoft Windows Security Updates September 2022 overview
Article Name
Microsoft Windows Security Updates September 2022 overview
Description
Microsoft released security and non-security updates for Windows and other company products on the September 2022 Patch Day.
Author
Publisher
Ghacks Technology News
Logo
Advertisement

Previous Post: «

Comments

  1. ryegrass said on September 13, 2022 at 7:59 pm
    Reply

    Also ‘fixed’ is the Windows Media Center problem first introduced with the July Rollup (which crashes WMC when trying schedule a recording).

    1. sozzled2904 said on September 15, 2022 at 12:10 am
      Reply

      Thank God! Shows you how many people use WMC to record TV, doesn’t it? See one of the earlier discussions here: https://answers.microsoft.com/en-us/windows/forum/all/2022-07-security-monthly-quality-rollup-for/c84ab7a0-a6eb-4613-b9c7-21db1f89a58e

      1. ryegrass said on September 15, 2022 at 11:54 pm
        Reply

        When WMC wasn’t fixed in Aug, I decided to look at all the alternatives I could find, most had multiple problems including clunky 1990 style interfaces, a complicated tuner setup and hard to import guide settings as well as being unable to record and watch the same program at the same time, etc. Which just goes to show what a true gem Microsoft created with this product. Which if I’m honest with myself, I certainly didn’t realize till I checked out the alternatives.

  2. Mar Voogt said on September 13, 2022 at 9:00 pm
    Reply

    What is the 2022-09 Security Only Quality Update for Windows 7? Which KB number does it have?

  3. MarV said on September 13, 2022 at 9:10 pm
    Reply

    Oh , I have found the answer already : KB 5017373.

    There is not any IE update ?

    1. TelV said on September 14, 2022 at 10:54 am
      Reply
  4. John G. said on September 13, 2022 at 9:14 pm
    Reply

    There is an unexpected issue noticed in this update for me: if you have two printers both identical, W11 is unable to know which one of them is the desired one to print the document. I meant, if I send to print it at printer 1, it prints at printer 1, however if I send to print it at printer 2, it prints at printer 1 again. With Ubuntu Linux 22 there is no problem. Thanks @Martin for this article. :]

  5. Shiva said on September 13, 2022 at 10:13 pm
    Reply

    KB5017500 (Windows 10 Version 21H2) is installed as a preview update of .NET Framework. At least no BSODs as lately happened to the old PC, of course programs and settings are the same as before.

    1. Anonymous said on September 13, 2022 at 10:26 pm
      Reply

      BSOD is likely to require driver update. Any drivers from Microsoft will be generic. Manufacturers sometimes have variances. Check for drivers updates on the manufacturer’s website. Always. While visiting, also check for BIOS update. In the case of drivers and BIOS, the adage is not ‘don’t fix it if it ain’t broke’. The adage is ‘fix it before it breaks but fix it with manufacturer’s components’.

      1. Shiva said on September 14, 2022 at 4:10 pm
        Reply

        Ah! Surely it was a driver problem from the reports but with generic error code. You missed the word ‘old’. What you just wrote I consider to be the practice, at least with drivers.
        Since the BSODs were only occurring with Windows Update in a PC that was working totally fine and where I have tried everything including testing the hardware, I will have updates anxiety for quite a while.

        If I hadn’t broken it I would have started exploring Linux for a smooth transition, which I will try as soon as the assembled one is here.
        To be honest, Microsoft has literally annoyed me. It is saved only because I am lazy to start from scratch and because of the wide availability of programs. But the desire to get this company and its new policies off my back is crossing the line and I’d rather eventually give something up.

  6. Paul(us) said on September 13, 2022 at 11:36 pm
    Reply

    Thanks, Martin, for helping me understandably update to the Windows 10 pro. version 21H2 (OS Build 19044.2006)

    Do I understand it correctly that the Windows Server, version 20H2 reached the end of service on August 9, 2022. Only Windows 10 Enterprise and Education, Windows 10 IoT Enterprise, Windows 10 Enterprise multi-session, and Windows 10 on Surface Hub will continue to receive security service updates.

  7. TelV said on September 14, 2022 at 11:12 am
    Reply

    @ Martin,

    Under the heading “Executive summary” it states: “Security updates are also available for .Net And Visual Studio, .Net Framework….”. but the word “Security” isn’t mentioned anywhere under the heading “NET Framework” further down the page..

    There are “Security and Quality NET updates”, but these only appear under the heading “Non-security updates”.

    I’m confused…. :(

  8. Aloha said on September 15, 2022 at 2:45 pm
    Reply

    Martin, this .NET update is also for Win10 21H2
    “2022-09 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 20H2, Windows 10 Version 2004, Windows 10 Version 1909, Windows 10 Version 1903, Windows 10 Version 1809, and Windows 10 Version 1607 (KB5017022)”

    https://support.microsoft.com/en-us/topic/september-13-2022-kb5017022-cumulative-update-for-net-framework-3-5-and-4-8-for-windows-10-version-20h2-windows-10-version-21h1-and-windows-10-version-21h2-37fe4a4a-a586-47e8-b903-f0771c4d740f

  9. Mothy said on September 15, 2022 at 11:03 pm
    Reply

    No issues to report on two Windows 8.1 Pro systems.

    After taking a Macrium image of each system, installed the Servicing Stack Update first (KB5017398) downloaded from the Microsoft Catalog. Then via Windows Update installed the Monthly Rollup (KB5017367).

    The End of Support (EOS) notification tasks (Microsoft implemented in the July updates) continue to remain disabled.

Leave a Reply

Check the box to consent to your data being stored in line with the guidelines set out in our privacy policy

We love comments and welcome thoughtful and civilized discussion. Rudeness and personal attacks will not be tolerated. Please stay on-topic.
Please note that your comment may not appear immediately after you post it.