Microsoft Patch Tuesday for October 2022 Fixes 84 Vulnerabilities

Vulnerabilities fixed include elevation of privilege, security feature bypass, remote code execution, information disclosure, DDoS and spoofing attacks.

Patch Tuesday Windows 11

Microsoft’s Patch Tuesday is scheduled for every second Tuesday of the Month. Today is October’s second Tuesday, so it is time for the release of security updates and fixes for Microsoft products including Windows.

October’s Patch Tuesday includes 84 fixes for Microsoft products including Windows, Windows Server, Edge browser, .NET Framework and Exchange Server.

The breakdown of vulnerabilities found and fixed is as follows:

  1. 39 Elevation of Privilege Vulnerabilities
  2. 2 Security Feature Bypass Vulnerabilities
  3. 20 Remote Code Execution Vulnerabilities
  4. 11 Information Disclosure Vulnerabilities
  5. 8 Denial of Service Vulnerabilities
  6. 4 Spoofing Vulnerabilities

To go through each vulnerability in detail, please open the following Google Sheets document:

Microsoft Vulnerability list for October 2022

You can find more details on Microsoft’s MSRC vulnerability guide. Just make sure you set the time period to October 2022.

Windows security updates for October 2022

KB5018427/KB5018418 update for Windows 11 (22H2 + 21H2)

This is the first ever Patch Tuesday for Windows 11 22H2 or 2022 Update. After installing KB5018427, your OS build will become 22621.674.

According to Microsoft’s help doc for KB5018427, this update comes with security improvements and fixes for Windows.

Some known issues are still present. For example, if you copy large files over the network, the copy speed will decrease by up to 40%.

Using provisioning packages on Windows 11 22H2 may not work as expected. This issue only affects the enterprise or corporate users.

This update will be automatically downloaded and installed through Windows Update. However, if you want to install it manually, you can download it from the following links:

Download KB5018427 for Windows 11 22H2 64-bit

Download KB5018418 for Windows 11 21H2 64-bit

KB5018410 update for Windows 10 20H2, 21H1 and 21H2

After installing KB5018410, your OS build will become:

  • Windows 10 20H2 Build 19042.2130
  • Windows 10 21H1 Build 19043.2130
  • Windows 10 21H2 Build 19044.2130

This update includes security updates and fixes, especially for internal operating system functionality. It doesn’t come with new features.

There are a couple of known issues that were also present in previous updates.

If you have Windows 10 installed from a custom ISO, the Edge legacy browser may not be uninstalled automatically. You will need to manually install Chromium Edge on your computer.

After installing this update, file copies using Group Policy Preferences might fail or might create empty shortcuts or files using 0 (zero) bytes. Microsoft suggests one of the following workarounds:

  1. Uncheck the “Run in logged-on user security context (user policy option)”. Note: This might not mitigate the issue for items using a wildcard (*).
  2. Within the affected Group Policy, change “Action” from “Replace” to “Update”.
  3. If a wildcard (*) is used in the location or destination, deleting the trailing “\” (backslash, without quotes) from the destination might allow the copy to be successful.

This update will be automatically downloaded and installed through Windows Update. However, if you want to install it manually, you can download it from the following links:

Download KB5018410 updates for Windows 10 20H2, 21H1 & 21H2 (32-bit + 64-bit)

KB5018419 update for Windows Server 2019 and Windows 10 Version 1809

After installing this update, your operating system build will become build 17763.3532.

Please note that Microsoft has already discontinued support for Windows 10 Version 1809 and Windows Server 2019. As a result, users will only get security updates for these versions on LTSB branches.   Make sure you’re on the latest supported version of Windows.

The fixes included in this update are:

You schedule a task every two weeks, but there is a problem. Instead of every two weeks, it runs every week.

Some security fixes are also included in this update. You can go through the Google Sheets list (link above) to check each vulnerability and it’s fix by Microsoft.

Download KB5018419 for Windows Server 2019 and Windows 10 1809

KB5018411 update for Windows Server 2016 and Windows 10 Version 1607

Installing KB5018411 will take your OS build to 14393.5427.

Support for Windows Server 2016 and Windows 10 Version 1607 is long gone. Microsoft only releases essential security fixes for these Operating Systems. After January 2023, Microsoft will stop releasing security updates, leaving customers vulnerable to active security threats. It is advisable to update your OS to the latest supported version of Windows.

After installing KB5018411, you will get the following improvements:

  1. The start date for daylight saving time in Chile has been updated. Instead of September 4, 2022, it will begin on September 11, 2022.
  2. An issue that affected some virtual machines where UDP packets were dropped has been fixed.
  3. Microsoft HTML Application (MSHTA) files can be enabled and disabled with a Group Policy.
  4. The node on our primary Active Directory Federation Services (AD FS) network fails to register or update its heartbeat due to an error. Consequently, the node is removed from the farm. This issue has now been fixed.
  5. A robocopy issue is addressed.

Download KB5018411 for Windows Server 2016 and Windows 10 1607

Block any Windows Update from installing

Since Patch Tuesday for October 2022 is a mandatory update, it will download and install itself on the schedule. If you want to block it from temporarily or permanently installing, you can follow the steps below:

  1. Download Show or hide updates tool from Microsoft.

  2. Run the utility and start Next to start the scanning process.

    Show or hide updates
    Show or hide updates
  3. Next, select the Hide updates button.

    Hide updates
    Hide updates
  4. The tool will show available updates to hide. Select problematic updates and press Next.

    list of updates to hide
    list of updates to hide
  5. This automatically hides the update from Windows Update and it will not be installed during the next update process. Press the Close button to close.

If you want to unhide or show hidden updates, run the tool again and select Show hidden updates instead of Hide updates. The rest of the process is the same.

Conclusion

Since Patch Tuesday updates are mandatory updates, we should always install them when they are available. However, you should always delay the update installation to an extent to make sure there’s no critical problem with the update.

If you want to dig deeper into Microsoft Patch Tuesday updates, you can go through the following references:

Ghacks summarizes the patch Tuesday updates including Windows as well as other product updates.

Tenable provides a graphical way of explaining the patches.

Rapid7 provides a summary charts and tables of October 2022 Patch Tuesday vulnerability fixes.

I hope this will be helpful in understanding all the security fixes included in Patch Tuesday’s update. Are we missing something that you want included in our Patch Tuesday coverage? Please share your thoughts with us in the comments or contact us directly.

Windows 11 Cumulative Updates History

KB UpdateRelease DateFeatures and fixes
KB5018427/KB501841812-Oct-22– Security improvements and fixes
KB501732814-Sep-22– Remotely add languages, Windows Defender blocks ransomware and advanced attacks.
KB501662910-Aug-22– Fixed start menu not opening.
KB501581413-Jul-22– New feature: Search highlights
KB501469715-Jun-22– Windows Spotlight for Desktop
– Family safety improvements
– Faster file copying and network transfers
KB501394310-May-22– (Windows 11) 3 publicly exploits fixed
KB501264325-Apr-22– Fix Windows 11 startup delay
KB50114938-Mar-22– Clock and dates added to taskbar on multiple monitors.
– Weather flyout shifted to left of taskbar.
– Mute/Unmute Microsoft Teams from taskbar.
KB50103868-Feb-22– An issue with Lightweight Directory Access Protocol (LDAP) was fixed.
KB500956611-Jan-22– Introduction of Fluent-style emojis.
KB500821514-Dec-21– Few security updates.
KB50072159-Nov-21– A display issue regarding certain apps using GDI+ was fixed.
KB500667412-Oct-21– A compatibility issue between some Intel “Killer” and “SmartByte” networking software and Windows 11 was fixed.
Windows 11 Patch Tuesday history

Windows 10 Cumulative Updates History

KB UpdateRelease DateFeatures and Fixes
KB501841012-Oct-22– Security improvements and fixes.
KB501730814-Sep-22– Security improvements and fixes.
KB501661610-Aug-22– Local Security Authority Server Service (LSASS) token leak fixed.
– Duplicate print queue issue fixed.
– Issue with language bar not displaying fixed.
KB501580713-Jul-22– Issue with PowerShell transcript logs fixed.
KB501469915-Jun-22– Security improvements and fixes.
KB501394210-May-22– (Windows 10) 3 publicly exploited vulnerabilities fixed.
KB501183125-Apr-22– Many new fixes were already released to Insiders two weeks ago.
KB50114878-Mar-22-The issue with some leftover files that were not deleted when resetting the PC was fixed.
KB50103428-Feb-22– An issue with Lightweight Directory Access Protocol (LDAP) was addressed. 
KB500954311-Jan-22-An issue with the Japanese Input Method Editors (IME) was fixed.
KB500821214-Dec-21– A few security updates were implemented.
KB50071869-Nov-21-The display issue regarding certain apps using GDI+ was fixed.
KB500667012-Oct-22– The issue on devices subject to Microsoft Exploit Protection for Export Address Filtering (EAF) was addressed.
Windows 10 Patch Tuesday history

Also see:

Usman Khurshid is a seasoned IT Pro with over 15 years of experience in the IT industry. He has experience in everything from IT support, helpdesk, sysadmin, network admin, and cloud computing. He is also certified in Microsoft Technologies (MCTS and MCSA) and also Cisco Certified Professional in Routing and Switching.

Leave a Reply

You have to agree to the comment policy.