Patch Repository

MS18-MAY8 Bulletin Details
Bulletin ID MS18-MAY8
Title Security Update for .NET Framework (KB4095875)
Summary A security feature bypass vulnerability exists in .Net Framework which could allow an attacker to bypass Device Guard. An attacker who successfully exploited this vulnerability could circumvent a User Mode Code Integrity (UMCI) policy on the machine. To exploit the vulnerability, an attacker would first have to access the local machine, and then run a malicious program. The update addresses the vulnerability by correcting how .Net Framework instantiates COM objects.
Knowledgebase 4095875

List of Patches

S.No Patch Description Severity
.KB4099640-Description of the Security Only update for .NET Framework 4.5.2 for Windows Server 2008 SP2 (KB4095519)Important
.KB4099634, KB4098968- Description of the Security and Quality Rollup for .NET Framework 3.5 SP1 for Windows Server 2012 (KB 4095872)Important
.KB4099640-Description of the Security Only update for .NET Framework 4.5.2 for Windows Server 2008 (x64) SP2 (KB4095519)Important
.KB4099634 - Description of the Security and Quality Rollup for .NET Framework 4.5.2 for Windows Server 2012 (KB 4096494)Important
.KB4099634 - Description of the Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, and 4.7.1 for Windows Server 2012 (KB 4096416)Important
.KB4099640-Description of the Security Only update for .NET Framework 2.0 SP2 and 3.0 SP2 for Windows Server 2008 SP2 (KB4095513)Important
.KB4099640-Description of the Security Only update for .NET Framework 2.0 SP2 and 3.0 SP2 for Windows Server 2008 SP2 (x64) (KB4095513)Important
.KB4099638 - Description of the Security Only update for .NET Framework 3.5 SP1 for Windows Server 2012 (KB4095512)Important
.KB4099638 - Description of the Security Only update for .NET Framework 4.5.2 for Windows Server 2012 (KB4095518)Important
.Description of the Security Only update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1 for Windows 7 SP1(KB4096237)Important
.KB4099638 - Description of the Security Only update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, and 4.7.1 for Windows Server 2012 (KB4096235)Important
.KB4099640-Description of the Security Only update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1 for Windows 7 SP1 (x64) and Server 2008 R2 SP1(KB4096237)Important
.KB4099636-Description of the Security and Quality Rollup for .NET Framework 2.0 SP2 and 3.0 SP2 for Windows Server 2008 SP2 (KB4095873)Important
.KB4099639 - Description of the Security Only update for .NET Framework 3.5 SP1 for Windows 8.1 (KB4095515)Important
.KB4099639 - Description of the Security Only update for .NET Framework 4.5.2 for Windows 8.1(KB4095517)Important
.KB4099636-Description of the Security and Quality Rollup for .NET Framework 2.0 SP2 and 3.0 SP2 for Windows Server 2008 SP2 (x64)(KB4095873)Important
.KB4099639 - Description of the Security Only update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, and 4.7.1 for Windows 8.1(KB4096236)Important
.KB4099636-Description of the Security and Quality Rollup for .NET Framework 4.5.2 for Windows 7 SP1, Server 2008 R2 SP1, and Server 2008 SP2 (x64)(KB4096495)Important
.KB4099636-Description of the Security and Quality Rollup for .NET Framework 4.5.2 for Windows 7 SP1 and Server 2008 SP2(KB4096495)Important
.KB4099639 - Description of the Security Only update for .NET Framework 3.5 SP1 for Windows 8.1 and Server 2012 R2 x64 (KB4095515)Important
.KB4099639 - Description of the Security Only update for .NET Framework 4.5.2 for Windows 8.1, RT 8.1, and Server 2012 R2 x64 (KB4095517)Important
.KB4099639 - Description of the Security Only update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, and 4.7.1 for Windows 8.1, RT 8.1, and Server 2012 R2 x64(KB4096236)Important
.KB4099636-Description of the Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1 for Windows 7 SP1 and Server 2008 R2 SP1, and for the .NET Framework 4.6 for Server 2008 (KB4096418)Important
.KB4099636-Description of the Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1 for Windows 7 SP1 and Server 2008 R2 SP1, and for the .NET Framework 4.6 for Server 2008 (x64)(KB4096418)Important
.KB4099635,KB4291497 - Description of the Security and Quality Rollup for .NET Framework 3.5 SP1 for Windows 8.1 and Server 2012 R2 (KB4095875)Important
.KB4099635 - Description of the Security and Quality Rollup for .NET Framework 4.5.2 for Windows 8.1(KB4095876)Important
.KB4099637-Description of the Security Only update for .NET Framework 3.5.1 for Windows 7 SP1(KB4095514)Important
.KB4099635 - Description of the Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, and 4.7.1 for Windows 8.1 (KB4096417)Important
.KB4099636-Description of the Security Only update for .NET Framework 3.5.1 for Windows 7 SP1 and Server 2008 R2 SP1 (x64) (KB4095514)Important
.KB4099635, KB4291493, KB4291497 - Description of the Security and Quality Rollup for .NET Framework 3.5 SP1 for Windows 8.1 and Server 2012 R2 x64 (KB4095875)Important
.KB4099635, KB4291493 - Description of the Security and Quality Rollup for .NET Framework 4.5.2 for Windows 8.1, RT 8.1, and Server 2012 R2 x64 (KB4095876)Important
.KB4099633, KB4291493 -Description of the Security and Quality Rollup for .NET Framework 3.5.1 for Windows 7 SP1 (KB4095874)Important
.KB4099635 - Description of the Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, and 4.7.1 for Windows 8.1, RT 8.1, and Server 2012 R2 x64 (KB4096417)Important
.KB4099633, KB4291493 -Security and Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1 on Windows 7 and Server 2008 R2 for x64 (KB4095874)Important
.KB4099640-Description of the Security Only update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1 for Windows 7 SP1 (x64) and Server 2008 R2 SP1(KB4096237)Important
.KB4099636-Description of the Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1 for Windows 7 SP1 and Server 2008 R2 SP1, and for the .NET Framework 4.6 for Server 2008 (x64)(KB4096418)Important

Disclaimer: This webpage is intended to provide you information about patch announcement for certain specific software products. The information is provided "As Is" without warranty of any kind. The links provided point to pages on the vendors websites. You can get more information by clicking the links to visit the relevant pages on the vendors website.