Microsoft December 2023 Patch Tuesday update Fixes 34 Security Flaws

Today Microsoft fixed at least 68 security vulnerabilities in its product portfolio. Here are Details on Microsoft's security updates in November's Patch Tuesday

Today is the second Tuesday of December 2023, and Microsoft has released its latest security updates. These updates address 34 vulnerabilities across various Microsoft products. Among them, Four are considered critical because they can allow attackers to gain higher privileges, execute remote code, or engage in spoofing activities, and the remaining 30 are classified as important. In this month’s update, Microsoft has also fixed one previously disclosed zero-day (CVE-2023-20588), a vulnerability affecting Advanced Micro Devices (AMD) processors.

Microsoft patched 34 CVEs in its December 2023 Patch Tuesday Release, including one previously disclosed zero-day (CVE-2023-20588), with Four rated as critical and 30 rated as important.

Microsoft December 2023 Patch Tuesday update

34 vulnerabilities this December Patch Tuesday including a single zero-day vulnerability and three critical remote code execution (RCE) vulnerabilities.

AMD processors received a patch for CVE-2023-20588, a division-by-zero error potentially revealing speculative data. The patch is rated Important with a CVSS score of 5.5, following mitigations released in August 2023.

Critical vulnerabilities impact Microsoft systems. CVE-2023-35628, an 8.1 CVSS-rated RCE, requires a crafted email triggering automatically in Outlook. CVE-2023-35630 and CVE-2023-35641, both CVSS 8.8, are RCE vulnerabilities in Microsoft Internet Connection Sharing, exploiting the same network segment.

CVE-2023-36019, a Critical spoofing vulnerability with a 9.6 CVSS score, affects the Microsoft Power Platform Connector. Exploitation relies on users clicking a crafted URL, with Microsoft addressing it by updating OAuth 2.0 connectors.

Windows security updates

In addition to Microsoft security updates, this December 2023 Patch Tuesday update also brought Windows 11 and Windows 10 cumulative updates. That includes KB5033372 for Windows 10 and KB5033375 for Windows 10 version 23H2. So if you are running any of these Windows versions make sure you update them as you install the new patches.

Windows 7 and Windows 8.1 reached the End of support from Microsoft, which means the company no longer provides frequent updates or security patches for these operating systems. For more information please visit the Microsoft lifecycle page at https://learn.microsoft.com/en-us/lifecycle/end-of-support/end-of-support-2023

Windows 11 KB5033375

Windows 11’s December 2023 Update, KB5033375 advance Build 22631.2861, introduces notable enhancements. Copilot, a key feature, gains support for multiple displays and Alt-Tab functionality. Users can position Copilot across various screens and navigate through open windows seamlessly using Alt+Tab.

Additionally, this update prioritizes Alt+Tab support for Copilot, integrating its thumbnail preview with other open windows. Microsoft plans to make Windows Spotlight the default background soon, especially when using inbox Windows images.

Improvements focus on the speed of Copilot’s launch from the taskbar. Addressing an issue, this update ensures that the Copilot icon on the taskbar accurately reflects its status when active.

Notably, the update resolves problems related to IE mode, preventing it from freezing when certain actions, like pressing the left arrow key in an empty text box, are performed. It also addresses issues when multiple IE mode tabs are open.

Furthermore, this update optimizes Dynamic Lighting, curbing its power consumption on devices.

Despite these enhancements, Microsoft acknowledges ongoing investigations into issues like the incorrect rendering of the COLRv1 color font format and automatic desktop icon movements between monitors.

You can read the complete changelog Microsoft support blog here.

Windows 10 KB5030211

The KB5033372 cumulative update for Windows 10 22H2 brings significant changes and additions. Upon installation, Windows 10 22H2 is updated to build 19045.3803. Notably, the update introduces Copilot for Windows, Microsoft’s new AI assistant, accessible from the right side of the taskbar. Copilot provides a chat interface for users to ask questions and control basic OS functions.

Among the nineteen changes, key highlights include an expanded news & interests feature, improved accessibility for Home, Pro, and non-managed business devices to access new experiences promptly, and updates to app defaults functionality. Additionally, Windows Update opt-in notifications are now displayed upon sign-in.

The update addresses various issues, such as resolving unresponsiveness in IE mode with multiple tabs open and fixing cursor movement lag in specific screen capture scenarios. However, three known issues are reported: a BitLocker reporting error, Copilot causing icon switching between monitors, and Copilot not supporting vertically placed taskbars on the left or right of the screen.

You can read the complete changelog Microsoft support blog here.

Download the Windows 10 Cumulative update

All these Security updates Automatically download and get installed on your device via Windows update. If your device has not received it yet open Settings, Update & Security and Check for updates. Once done restart your Device to apply the updates.

Install windows 11 update

The above link directly opens the Microsoft Update Catalog which is the library of Windows Update offline installers. You need to click on the ‘Download’ button next to the version of the OS installed on your machine and run the .msu files to begin the installation of the update.

If you are Looking for Windows 10 22H2 Update ISO image click here Or check How to Upgrade to Windows 10 version 22H2 Using the media creation tool.

If you face any difficulty while installing these updates, Check the Windows 10 Update troubleshooting guide to fix the Windows 10 Cumulative update stuck downloading, failed to install with different errors, etc.

  • What time do Patch Tuesday patches come out?

Microsoft schedules the release of security updates on “Patch Tuesday,” the second Tuesday of each month at 10:00 AM PST.

Is Patch Tuesday weekly or monthly?

Patch Tuesday falls on the second Tuesday of each month. The upcoming Patch Tuesday is on October 10, 2023.

  • Why did the second Tuesday of every month call Patch Tuesday?

The second Tuesday of the month is referred to as “Patch Tuesday” because Microsoft attempts to combine the largest updates into this maintenance window.

  • What is the latest update for Windows 11 December 2023?

The latest KB5033375 for Windows 11 version 23H2/22H2 and KB5033372 for Windows 10 version 22H2.

  • What is the zero-day patch?

The term “Zero-Day” is used when security teams are unaware of their software vulnerability, and they’ve had “0” days to work on a security patch or an update to fix the issue.

Also read:

Source Microsoft windows 10 update history Microsoft windows 11 update history
You might also like

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More