Along with May 2019 Patch, Tuesday updates KB4494441, KB4499167, KB4499179 for all supported windows 10 devices. Microsoft also released various (security) updates KB4499164, KB4499175, KB4499151, KB4499165 for Windows 7 SP1 and other updates for Windows 8.1 as well as the corresponding server versions.

According to the Microsoft support page, these updates contain security improvements for various windows components also addresses an issue that may prevent the Event Viewer from showing some event descriptions for network interface cards (NIC).

Windows 7 SP1

Users on Windows 7 SP1 and Windows Server 2008 R2 SP1 are receiving monthly roll-up KB4499164. The update can be manually downloaded from here. The list of improvements and fixes for this update include:

  • Provides protection against a new subclass of speculative execution side-channel vulnerabilities, known as Microarchitectural Data Sampling, for 64-Bit (x64) versions of Windows (CVE-2018-11091, CVE-2018-12126CVE-2018-12127CVE-2018-12130).
  • Addresses an issue that prevents the Microsoft Visual Studio Simulator from starting.
  • Addresses an issue that may prevent applications that rely on unconstrained delegation from authenticating after the Kerberos ticket-granting ticket (TGT) expires (the default is 10 hours).
  • Addresses an issue that may cause the text, layout, or cell size to become narrower or wider than expected in Microsoft Excel when using the MS UI Gothic or MS PGothic fonts.
  • Security updates to Windows App Platform and Frameworks, Microsoft Graphics Component, Windows Storage and Filesystems, Windows Cryptography, Windows Wireless Networking, Windows Kernel, Windows Server, and the Microsoft JET Database.

There is, however, one known issue in today’s cumulative update, which is present across all of the updates heading out to Windows 7, 8.1 and corresponding Windows Server versions. The issue listed is:

McAfee Endpoint Security (ENS) may cause the system to have slow startup or become unresponsive at restart after installing this update.

The security-only update, KB4499175, brings with it the same fixes with the monthly roll-up and can be downloaded manually from here.

  • Provides protections against a new subclass of speculative execution side-channel vulnerabilities, known as Microarchitectural Data Sampling, for 64-Bit (x64) versions of Windows (CVE-2018-11091, CVE-2018-12126CVE-2018-12127CVE-2018-12130).
  • Addresses an issue that may prevent applications that rely on unconstrained delegation from authenticating after the Kerberos ticket-granting ticket (TGT) expires (the default is 10 hours).
  • Security updates to Windows App Platform and Frameworks, Microsoft Graphics Component, Windows Storage and Filesystems, Windows Cryptography, Windows Wireless Networking, Windows Kernel, Windows Server, and the Microsoft JET Database.

Microsoft is not currently aware of any issues with this update.

For Windows 8.1

Those on Windows 8.1 and Windows Server 2012 R2 will receive monthly roll-up KB4499151, which can be downloaded manually from here. The list of fixes and improvements include:

  • Provides protections against a new subclass of speculative execution side-channel vulnerabilities, known as Microarchitectural Data Sampling, for 64-Bit (x64) versions of Windows (CVE-2018-11091, CVE-2018-12126CVE-2018-12127CVE-2018-12130).
  • Addresses an issue that may cause “Error 1309” while installing or uninstalling certain types of .msi and .msp files on a virtual drive.
  • Addresses an issue that prevents the Microsoft Visual Studio Simulator from starting.
  • Adds “uk.gov” into the HTTP Strict Transport Security Top Level Domains (HSTS TLD) for Internet Explorer and Microsoft Edge.
  • Addresses an issue that may cause the text, layout, or cell size to become narrower or wider than expected in Microsoft Excel when using the MS UI Gothic or MS PGothic fonts.
  • Security updates to Windows App Platform and Frameworks, Microsoft Graphics Component, Windows Storage and Filesystems, Windows Cryptography, Windows Datacenter Networking, Windows Wireless Networking, Windows Kernel, and the Microsoft JET Database Engine.

Known issues:

  • Some operations such as rename may fail on a Cluster Shared Volume and throw the error “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”.
  • Issues with using the Preboot Execution Environment (PXE) from a Windows Deployment Services server.
  • McAfee Endpoint Security (ENS) may cause the system to have slow startup or become unresponsive at restart after installing this update.

There also is a security-only update, KB4499165, which can be downloaded manually from here.

  • Provides protections against a new subclass of speculative execution side-channel vulnerabilities, known as Microarchitectural Data Sampling, for 64-Bit (x64) versions of Windows (CVE-2018-11091, CVE-2018-12126CVE-2018-12127CVE-2018-12130).
  • Security updates to Windows App Platform and Frameworks, Microsoft Graphics Component, Windows Storage and Filesystems, Windows Cryptography, Windows Datacenter Networking, Windows Wireless Networking, Windows Kernel, and the Microsoft JET Database Engine.

Known issue

  • Some operations such as rename may fail on a Cluster Shared Volume and throw the error “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”.
  • Issues with using the Preboot Execution Environment (PXE) from a Windows Deployment Services server.

Windows 7 SP1 and Windows Server 2008 R2 SP Download links

Also Microsoft mention these updates are not available via Windows Update this can only be installed with a manual download. You can download these updates from the Microsoft Update Catalog website using the links below.

Windows 7 SP1 and Windows Server 2008 R2 SP

  • KB4499164 — 2019-05 Security Monthly Quality Rollup for Windows 7
  • KB4499175 — 2019-05 Security Only Quality Update for Windows 7

Windows 8.1 and Windows Server 2012 R2

  • KB4499151 — 2019-05 Security Monthly Quality Rollup for Windows 8.1
  • KB4499165 — 2019-05 Security Only Quality Update for Windows 8.1

Also, New cumulative updates available for latest Windows 10 1809, read the changelog from here.

Also read: