From b31a8ee719c31ecccbfcbbcaeba4b94f5968e70a Mon Sep 17 00:00:00 2001 From: Tara Overfield Date: Fri, 20 Sep 2024 20:16:03 -0700 Subject: [PATCH 1/7] Add Q1 release notes and 10B new notes --- ...-09-january-security-and-quality-rollup.md | 113 ++++++++++++++++++ ...01-23-january-preview-cumulative-update.md | 47 ++++++++ ...14-february-security-and-quality-rollup.md | 88 ++++++++++++++ .../03-26-march-preview-cumulative-update.md | 55 +++++++++ ...04-09-april-security-and-quality-rollup.md | 2 +- ...-08-october-security-and-quality-rollup.md | 108 +++++++++++++++++ docs/framework/toc.yml | 10 ++ 7 files changed, 422 insertions(+), 1 deletion(-) create mode 100644 docs/framework/release-notes/2024/01-09-january-security-and-quality-rollup.md create mode 100644 docs/framework/release-notes/2024/01-23-january-preview-cumulative-update.md create mode 100644 docs/framework/release-notes/2024/02-14-february-security-and-quality-rollup.md create mode 100644 docs/framework/release-notes/2024/03-26-march-preview-cumulative-update.md create mode 100644 docs/framework/release-notes/2024/10-08-october-security-and-quality-rollup.md diff --git a/docs/framework/release-notes/2024/01-09-january-security-and-quality-rollup.md b/docs/framework/release-notes/2024/01-09-january-security-and-quality-rollup.md new file mode 100644 index 0000000000000..550b7ac170b71 --- /dev/null +++ b/docs/framework/release-notes/2024/01-09-january-security-and-quality-rollup.md @@ -0,0 +1,113 @@ +--- +title: January 2024 security and quality rollup +description: Learn about the improvements in the .NET Framework January 2024 security and quality rollup. +ms.date: 01/08/2024 +--- +# January 2024 security and quality rollup + +_Released January 8, 2024_ + +## Summary of what's new in this release + +- [Security improvements](#security-improvements) +- [Quality and reliability improvements](#quality-and-reliability-improvements) + +### Security improvements + +#### CVE-2023-36042 – Denial of service vulnerability + +This security update addresses a remote code execution vulnerability detailed in [CVE 2023-36042](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36042). + +#### CVE-2024-0056 – Security feature bypass vulnerability + +This security update addresses a security feature bypass vulnerability detailed in [CVE 2024-0056](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-0056). + +#### CVE-2024-0057 – Security feature vulnerability + +This security update addresses a security feature vulnerability detailed in [CVE 2024-0057](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-0057). + +#### CVE-2024-21312 – Denial of service vulnerability + +This security update addresses a denial of service vulnerability detailed in [CVE 2024-21312](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21312). + +#### Remote code execution vulnerability + +This security update addresses a remote code execution vulnerability to HTTP .NET remoting server channel chain. + +### Quality and reliability improvements + +There are no new Quality and Reliability Improvements in this update. + +## Known issues + +This release contains no known issues. + +## Summary tables + +The following table outlines the updates in this release. + +| Product version | Cumulative update | +| --- | --- | +| **Microsoft server operating system, version 23H2** | | +| .NET Framework 3.5, 4.8.1 | [5033917](https://support.microsoft.com/kb/5033917) | +| **Windows 11, version 22H2 and Windows 11, version 23H2** | | +| .NET Framework 3.5, 4.8.1 | [5033920](https://support.microsoft.com/kb/5033920) | +| **Windows 11, version 21H2** | **[5034276](https://support.microsoft.com/kb/5034276)** | +| .NET Framework 3.5, 4.8 | [5033912](https://support.microsoft.com/kb/5033912) | +| .NET Framework 3.5, 4.8.1 | [5033919](https://support.microsoft.com/kb/5033919) | +| **Microsoft server operating system, version 22H2** | **[5034272](https://support.microsoft.com/kb/5034272)** | +| .NET Framework 3.5, 4.8 | [5033914](https://support.microsoft.com/kb/5033914) | +| .NET Framework 3.5, 4.8.1 | [5033922](https://support.microsoft.com/kb/5033922) | +| **Microsoft server operating system, version 21H2** | **[5034272](https://support.microsoft.com/kb/5034272)** | +| .NET Framework 3.5, 4.8 | [5033914](https://support.microsoft.com/kb/5033914) | +| .NET Framework 3.5, 4.8.1 | [5033922](https://support.microsoft.com/kb/5033922) | +| **Windows 10, version 22H2** | **[5034275](https://support.microsoft.com/kb/5034275)** | +| .NET Framework 3.5, 4.8 | [5033909](https://support.microsoft.com/kb/5036608) | +| .NET Framework 3.5, 4.8.1 | [5033918](https://support.microsoft.com/kb/5033918) | +| **Windows 10, version 21H2** | **[5037035](https://support.microsoft.com/kb/5037035)** | +| .NET Framework 3.5, 4.8 | [5033909](https://support.microsoft.com/kb/5036608) | +| .NET Framework 3.5, 4.8.1 | [5033918](https://support.microsoft.com/kb/5033918) | +| **Windows 10 1809 and Windows Server 2019** | **[5034273](https://support.microsoft.com/kb/5034273)** | +| .NET Framework 3.5, 4.7.2 | [5033904](https://support.microsoft.com/kb/5033904) | +| .NET Framework 3.5, 4.8 | [5033911](https://support.microsoft.com/kb/5033911) | +| **Windows 10 1607 and Windows Server 2016** | | +| .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2 | [5034119](https://support.microsoft.com/kb/5034119) | +| .NET Framework 4.8 | [5033910](https://support.microsoft.com/kb/5033910) | +| **Windows 10 1507** | | +| .NET Framework 3.5, 4.6, 4.6.2 | [5034134](https://support.microsoft.com/kb/5034134) | + +The following table is for earlier Windows and Windows Server versions for Security and Quality Rollup updates.   + +| Product version | Security and quality rollup | +| --- | --- | +| **Windows Server 2012 R2** | **[5034279](https://support.microsoft.com/kb/5034279)** | +| .NET Framework 3.5 | [5033900](https://support.microsoft.com/kb/5033900) | +| .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 | [5033906](https://support.microsoft.com/kb/5033906) | +| .NET Framework 4.8 | [5033915](https://support.microsoft.com/kb/5033915) | +| **Windows Server 2012** | **[5034278](https://support.microsoft.com/kb/5034278)** | +| .NET Framework 3.5 | [5033897](https://support.microsoft.com/kb/5033897) | +| .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 | [5033905](https://support.microsoft.com/kb/5033905) | +| .NET Framework 4.8 | [5033913](https://support.microsoft.com/kb/5033913) | +| **Windows Server 2008 R2** | **[5034277](https://support.microsoft.com/kb/5033977)** | +| .NET Framework 3.5.1 | [5033899](https://support.microsoft.com/kb/5033899) | +| .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 | [5033907](https://support.microsoft.com/kb/5033907) | +| .NET Framework 4.8 |[5033916](https://support.microsoft.com/kb/5033916) | +| **Windows Server 2008** | **[5034280](https://support.microsoft.com/kb/5034280)** | +| .NET Framework 2.0, 3.0 | [5033898](https://support.microsoft.com/kb/5033898) | +| .NET Framework 3.5 SP1 | [5034008](https://support.microsoft.com/kb/5034008) | +| .NET Framework 4.6.2 | [5033907](https://support.microsoft.com/kb/5033907) | + +The following table is for earlier Windows and Windows Server versions for Security Only updates, which aren't cumulative. + +| Product version | Security only update | +| --- | --- | +| **Windows Server 2008 R2** | **[5034269](https://support.microsoft.com/kb/5034269)** | +| .NET Framework 3.5.1 | [5033946](https://support.microsoft.com/kb/5033946) | +| .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 | [5033947](https://support.microsoft.com/kb/5033947) | +| .NET Framework 4.8 |[5033948](https://support.microsoft.com/kb/5033948) | +| **Windows Server 2008** | **[5034270](https://support.microsoft.com/kb/5034270)** | +| .NET Framework 2.0, 3.0 | [5033945](https://support.microsoft.com/kb/5033945) | +| .NET Framework 3.5 SP1 | [5033952](https://support.microsoft.com/kb/5033952) | +| .NET Framework 4.6.2 | [5033947](https://support.microsoft.com/kb/5033947) | + +The operating system row lists a KB which will be used for update offering purposes. When the operating system KB is offered, the applicability logic will determine the specific .NET Framework update(s) will be installed. Updates for individual .NET Framework versions will be installed based on the version of .NET Framework that is already present on the device. Because of this the operating system KB is not expected to be listed as installed updates on the device. The expected update to be installed are the .NET Framework specific version updates listed in the preceding table. diff --git a/docs/framework/release-notes/2024/01-23-january-preview-cumulative-update.md b/docs/framework/release-notes/2024/01-23-january-preview-cumulative-update.md new file mode 100644 index 0000000000000..678b24ab8d599 --- /dev/null +++ b/docs/framework/release-notes/2024/01-23-january-preview-cumulative-update.md @@ -0,0 +1,47 @@ +--- +title: January 2024 cumulative update preview +description: Learn about the improvements in the .NET Framework January 2024 cumulative update preview. +ms.date: 01/23/2024 +--- +# January 2024 cumulative update preview + +_Released January 23, 2024_ + +## Summary of what's new in this release + +- [Security improvements](#security-improvements) +- [Quality and reliability improvements](#quality-and-reliability-improvements) + +### Security improvements + +There are no new security improvements in this release. This update is cumulative and contains all previously released security improvements. + +### Quality and reliability improvements + +This release contains the following quality and reliability improvements. + +#### ASP.NET + +Addresses an issue with “System.ArgumentException: Illegal characters in path” in some ASP.Net MVC requests. (*Applies to: .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8, 4.8.1.*) + +#### .NET libraries + +Addresses an issue where version of the OSS zlib library is out of date. (*Applies to: .NET Framework 4.8, 4.8.1.*) + +## Known issues + +This release contains no known issues. + +## Summary tables + +The following table outlines the updates in this release. + +| Product version | Cumulative update preview | +| --- | --- | +| **Windows 11, version 22H2 and Windows 11, version 23H2** | | +| .NET Framework 3.5, 4.8.1 | [5034467](https://support.microsoft.com/kb/5034467) | +| **Windows 10, version 22H2** | **[5034582](https://support.microsoft.com/kb/5034582)** | +| .NET Framework 3.5, 4.8 | [5034468](https://support.microsoft.com/kb/5034468) | +| .NET Framework 3.5, 4.8.1 | [5034466](https://support.microsoft.com/kb/5034466) | + +The operating system row lists a KB which will be used for update offering purposes. When the operating system KB is offered, the applicability logic will determine the specific .NET Framework update(s) will be installed. Updates for individual .NET Framework versions will be installed based on the version of .NET Framework that is already present on the device. Because of this the operating system KB is not expected to be listed as installed updates on the device. The expected update to be installed are the .NET Framework specific version updates listed in the table above. diff --git a/docs/framework/release-notes/2024/02-14-february-security-and-quality-rollup.md b/docs/framework/release-notes/2024/02-14-february-security-and-quality-rollup.md new file mode 100644 index 0000000000000..93e54af1b9743 --- /dev/null +++ b/docs/framework/release-notes/2024/02-14-february-security-and-quality-rollup.md @@ -0,0 +1,88 @@ +--- +title: February 2024 security and quality rollup +description: Learn about the improvements in the .NET Framework February 2024 security and quality rollup. +ms.date: 02/14/2024 +--- +# February 2024 security and quality rollup + +_Released February 14, 2024_ + +## Summary of what's new in this release + +- [Security improvements](#security-improvements) +- [Quality and reliability improvements](#quality-and-reliability-improvements) + +### Security improvements + +There are no new security improvements in this release. This update is cumulative and contains all previously released security improvements. + +### Quality and reliability improvements + +This release contains the following quality and reliability improvements. + +#### ASP.NET + +Addresses an issue with “System.ArgumentException: Illegal characters in path” in some ASP.Net MVC requests. (*Applies to: .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8, 4.8.1.*) + +#### .NET libraries + +Addresses an issue where version of the OSS zlib library is out of date. (*Applies to: .NET Framework 4.8, 4.8.1.*) + +## Known issues + +This release contains no known issues. + +## Summary tables + +The following table outlines the updates in this release. + +| Product version | Cumulative update | +| --- | --- | +| **Microsoft server operating system, version 23H2** | | +| .NET Framework 3.5, 4.8.1 | [5034626](https://support.microsoft.com/kb/5034626) | +| **Windows 11, version 22H2 and Windows 11, version 23H2** | | +| .NET Framework 3.5, 4.8.1 | [5034467](https://support.microsoft.com/kb/5034467) | +| **Windows 11, version 21H2** | **[5034686](https://support.microsoft.com/kb/5034686)** | +| .NET Framework 3.5, 4.8 | [5034625](https://support.microsoft.com/kb/5034625) | +| .NET Framework 3.5, 4.8.1 | [5034612](https://support.microsoft.com/kb/5034612) | +| **Microsoft server operating system, version 22H2** | **[5034923](https://support.microsoft.com/kb/5034923)** | +| .NET Framework 3.5, 4.8 | [5034613](https://support.microsoft.com/kb/5034613) | +| .NET Framework 3.5, 4.8.1 | [5034611](https://support.microsoft.com/kb/5034611) | +| **Microsoft server operating system, version 21H2** | **[5034682](https://support.microsoft.com/kb/5034682)** | +| .NET Framework 3.5, 4.8 | [5034613](https://support.microsoft.com/kb/5034613) | +| .NET Framework 3.5, 4.8.1 | [5034611](https://support.microsoft.com/kb/5034611) | +| **Windows 10, version 22H2** | **[5034685](https://support.microsoft.com/kb/5034685)** | +| .NET Framework 3.5, 4.8 | [5034468](https://support.microsoft.com/kb/5034468) | +| .NET Framework 3.5, 4.8.1 | [5034466](https://support.microsoft.com/kb/5034466) | +| **Windows 10, version 21H2** | **[5034684](https://support.microsoft.com/kb/5034684)** | +| .NET Framework 3.5, 4.8 | [5034468](https://support.microsoft.com/kb/5034468) | +| .NET Framework 3.5, 4.8.1 | [5034466](https://support.microsoft.com/kb/5034466) | +| **Windows 10 1809 and Windows Server 2019** | **[5034683](https://support.microsoft.com/kb/5034683)** | +| .NET Framework 3.5, 4.7.2 | [5034619](https://support.microsoft.com/kb/5034619) | +| .NET Framework 3.5, 4.8 | [5034624](https://support.microsoft.com/kb/5034624) | +| **Windows 10 1607 and Windows Server 2016** | | +| .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2 | [5034767](https://support.microsoft.com/kb/5034767) | +| .NET Framework 4.8 | [5034614](https://support.microsoft.com/kb/5034614) | + +The following table is for earlier Windows and Windows Server versions for Security and Quality Rollup updates.   + +| Product version | Security and quality rollup | +| --- | --- | +| **Windows Server 2012 R2** | **[5034689](https://support.microsoft.com/kb/5034689)** | +| .NET Framework 3.5 | [5033900](https://support.microsoft.com/kb/5033900) | +| .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 | [5034622](https://support.microsoft.com/kb/5034622) | +| .NET Framework 4.8 | [5034617](https://support.microsoft.com/kb/5034617) | +| **Windows Server 2012** | **[5034688](https://support.microsoft.com/kb/5034688)** | +| .NET Framework 3.5 | [55033897](https://support.microsoft.com/kb/5033897) | +| .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 | [5034621](https://support.microsoft.com/kb/5034621) | +| .NET Framework 4.8 | [5034616](https://support.microsoft.com/kb/5034616) | +| **Windows Server 2008 R2** | **[5034687](https://support.microsoft.com/kb/5034687)** | +| .NET Framework 3.5.1 | [5033899](https://support.microsoft.com/kb/5033899) | +| .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 | [5034620](https://support.microsoft.com/kb/5034620) | +| .NET Framework 4.8 |[5034615](https://support.microsoft.com/kb/5034615) | +| **Windows Server 2008** | **[5034690](https://support.microsoft.com/kb/5034690)** | +| .NET Framework 2.0, 3.0 | [5033898](https://support.microsoft.com/kb/5033898) | +| .NET Framework 3.5 SP1 | [5034008](https://support.microsoft.com/kb/5034008) | +| .NET Framework 4.6.2 | [5034620](https://support.microsoft.com/kb/5034620) | + +The operating system row lists a KB which will be used for update offering purposes. When the operating system KB is offered, the applicability logic will determine the specific .NET Framework update(s) will be installed. Updates for individual .NET Framework versions will be installed based on the version of .NET Framework that is already present on the device. Because of this the operating system KB is not expected to be listed as installed updates on the device. The expected update to be installed are the .NET Framework specific version updates listed in the preceding table. diff --git a/docs/framework/release-notes/2024/03-26-march-preview-cumulative-update.md b/docs/framework/release-notes/2024/03-26-march-preview-cumulative-update.md new file mode 100644 index 0000000000000..8b8281c67e8e4 --- /dev/null +++ b/docs/framework/release-notes/2024/03-26-march-preview-cumulative-update.md @@ -0,0 +1,55 @@ +--- +title: March 2024 cumulative update preview +description: Learn about the improvements in the .NET Framework March 2024 cumulative update preview. +ms.date: 03/26/2024 +--- +# March 2024 cumulative update preview + +_Released March 26, 2024_ + +## Summary of what's new in this release + +- [Security improvements](#security-improvements) +- [Quality and reliability improvements](#quality-and-reliability-improvements) + +### Security improvements + +There are no new security improvements in this release. This update is cumulative and contains all previously released security improvements. + +### Quality and reliability improvements + +This release contains the following quality and reliability improvements. + +#### .NET libraries + +Addresses a performance issue in ASP.NET applications after installing the January 2024 .NET Framework update. (*Applies to: .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8, 4.8.1.*) + +#### .NET runtime + +Addresses an issue when thread pool recycled lists become unresponsive on multi-CPU-group computers. (*Applies to: .NET Framework 4.8, 4.8.1.*) + +Addresses an issue where Interlocked.Read from 32-bit apps are much slower on some computers. (*Applies to: .NET Framework 4.8.1.*) + +#### .NET compilers + +Addresses an issue when using the native C# compiler (csc.exe) to compile code making calls to COM interop assemblies. (*Applies to: .NET Framework 4.8.1.*) + +## Known issues + +This release contains no known issues. + +## Summary tables + +The following table outlines the updates in this release. + +| Product version | Cumulative update preview | +| --- | --- | +| **Windows 11, version 23H2** | | +| .NET Framework 3.5, 4.8.1 | [5036035](https://support.microsoft.com/kb/5036035) | +| **Windows 11, version 22H2** | | +| .NET Framework 3.5, 4.8.1 | [5036581](https://support.microsoft.com/kb/5036581) | +| **Windows 10, version 22H2** | **[5036580](https://support.microsoft.com/kb/5036580)** | +| .NET Framework 3.5, 4.8 | [5036036](https://support.microsoft.com/kb/5036036) | +| .NET Framework 3.5, 4.8.1 | [5036034](https://support.microsoft.com/kb/5036034) | + +The operating system row lists a KB which will be used for update offering purposes. When the operating system KB is offered, the applicability logic will determine the specific .NET Framework update(s) will be installed. Updates for individual .NET Framework versions will be installed based on the version of .NET Framework that is already present on the device. Because of this the operating system KB is not expected to be listed as installed updates on the device. The expected update to be installed are the .NET Framework specific version updates listed in the table above. diff --git a/docs/framework/release-notes/2024/04-09-april-security-and-quality-rollup.md b/docs/framework/release-notes/2024/04-09-april-security-and-quality-rollup.md index a00ca3ad6e05e..eebb11f5cc0a3 100644 --- a/docs/framework/release-notes/2024/04-09-april-security-and-quality-rollup.md +++ b/docs/framework/release-notes/2024/04-09-april-security-and-quality-rollup.md @@ -32,7 +32,7 @@ This release contains the following quality and reliability improvements. #### ASP.NET -Addresses an issue with `JavaScriptSerializer` where after installing the January Security and Quality update, there is a performance degradation. (*Applies to: .NET Framework 4.6.2, 4.7, 4.7.1,4.7.2, 4.8, 4.8.1.*) +Addresses an issue with `JavaScriptSerializer` where after installing the January Security and Quality update, there is a performance degradation. (*Applies to: .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8, 4.8.1.*) #### CLR diff --git a/docs/framework/release-notes/2024/10-08-october-security-and-quality-rollup.md b/docs/framework/release-notes/2024/10-08-october-security-and-quality-rollup.md new file mode 100644 index 0000000000000..a7aae9b19d488 --- /dev/null +++ b/docs/framework/release-notes/2024/10-08-october-security-and-quality-rollup.md @@ -0,0 +1,108 @@ +--- +title: October 2024 security and quality rollup +description: Learn about the improvements in the .NET Framework October 2024 security and quality rollup. +ms.date: 10/08/2024 +--- +# October 2024 security and quality rollup + +_Released October 8, 2024_ + +## Summary of what's new in this release + +- [Security improvements](#security-improvements) +- [Quality and reliability improvements](#quality-and-reliability-improvements) + +### Security improvements + +#### CVE-2024-43483 – Denial of service vulnerability + +This security update addresses an denial of service vulnerability detailed in [CVE 2024-43483](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43483). + +#### CVE-2024-43484 – Denial of service vulnerability + +This security update addresses an denial of service vulnerability detailed in [CVE 2024-43484](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-434843). + +### Quality and reliability improvements + +This release contains the following quality and reliability improvements. + +#### .NET fundamentals + +Addresses an issue where applications cannot target .NET Framework (*Applies to: .NET Framework 4.8.1.*) + +#### .NET libraries + +Addresses an issue with May cumulative updates causing customers to observe runtime exceptions in certain SQL CLR hosted scenarios. (*Applies to: .NET Framework 4.8, 4.8.1.*) + +## Known issues + +This release contains no known issues. + +## Summary tables + +The following table outlines the updates in this release. + +| Product version | Cumulative update | +| --- | --- | +| **Windows 11, version 24H2** | | +| .NET Framework 3.5, 4.8.1 | [5044030](https://support.microsoft.com/kb/5044030) | +| **Microsoft server operating system, version 23H2** | | +| .NET Framework 3.5, 4.8.1 | [5044028](https://support.microsoft.com/kb/5044028) | +| **Windows 11, version 22H2 and Windows 11, version 23H2** | | +| .NET Framework 3.5, 4.8.1 | [5044033](https://support.microsoft.com/kb/5044033) | +| **Microsoft server operating system, version 22H2** | **[5044087](https://support.microsoft.com/kb/5044087)** | +| .NET Framework 3.5, 4.8 | [5044025](https://support.microsoft.com/kb/5044025) | +| .NET Framework 3.5, 4.8.1 | [5044035](https://support.microsoft.com/kb/5044035) | +| **Microsoft server operating system, version 21H2** | **[5044099](https://support.microsoft.com/kb/5044099)** | +| .NET Framework 3.5, 4.8 | [5044025](https://support.microsoft.com/kb/5044025) | +| .NET Framework 3.5, 4.8.1 | [5044035](https://support.microsoft.com/kb/5044035) | +| **Windows 10, version 22H2** | **[5044091](https://support.microsoft.com/kb/5044091)** | +| .NET Framework 3.5, 4.8 | [5044023](https://support.microsoft.com/kb/5044023) | +| .NET Framework 3.5, 4.8.1 | [5044029](https://support.microsoft.com/kb/5044029) | +| **Windows 10, version 21H2** | **[5044090](https://support.microsoft.com/kb/5044090)** | +| .NET Framework 3.5, 4.8 | [5044023](https://support.microsoft.com/kb/5044023) | +| .NET Framework 3.5, 4.8.1 | [5044029](https://support.microsoft.com/kb/5044029) | +| **Windows 10 1809 and Windows Server 2019** | **[5044089](https://support.microsoft.com/kb/5044089)** | +| .NET Framework 3.5, 4.7.2 | [5044016](https://support.microsoft.com/kb/5044016) | +| .NET Framework 3.5, 4.8 | [5044022](https://support.microsoft.com/kb/5044022) | +| **Windows 10 1607 and Windows Server 2016** | | +| .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2 | [5044293](https://support.microsoft.com/kb/5044293) | +| .NET Framework 4.8 | [5044021](https://support.microsoft.com/kb/5044021) | +| **Windows 10 1507** | | +| .NET Framework 3.5, 4.6, 4.6.2 | [5044286](https://support.microsoft.com/kb/5044286) | + +The following table is for earlier Windows and Windows Server versions for Security and Quality Rollup updates.   + +| Product version | Security and quality rollup | +| --- | --- | +| **Windows Server 2012 R2** | **[5044097](https://support.microsoft.com/kb/5044097)** | +| .NET Framework 3.5 | [5044012](https://support.microsoft.com/kb/5044012) | +| .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 | [5044018](https://support.microsoft.com/kb/5044018) | +| .NET Framework 4.8 | [5044026](https://support.microsoft.com/kb/5044026) | +| **Windows Server 2012** | **[ 5044096](https://support.microsoft.com/kb/ 5044096)** | +| .NET Framework 3.5 | [5044009](https://support.microsoft.com/kb/5044009) | +| .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 | [5044017](https://support.microsoft.com/kb/5044017) | +| .NET Framework 4.8 | [5044024](https://support.microsoft.com/kb/5044024) | +| **Windows Server 2008 R2** | **[5044095](https://support.microsoft.com/kb/5044095)** | +| .NET Framework 3.5.1 | [5044011](https://support.microsoft.com/kb/5044011) | +| .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 | [5044019](https://support.microsoft.com/kb/5044019)| +| .NET Framework 4.8 |[5044027](https://support.microsoft.com/kb/5044027) | +| **Windows Server 2008** | **[5044098](https://support.microsoft.com/kb/5044098)** | +| .NET Framework 2.0, 3.0 | [5044010](https://support.microsoft.com/kb/5044010) | +| .NET Framework 3.5 SP1 | [5040673](https://support.microsoft.com/kb/5040673) | +| .NET Framework 4.6.2 | [5044019](https://support.microsoft.com/kb/5044019) | + +The following table is for earlier Windows and Windows Server versions for Security Only updates, which aren't cumulative. + +| Product version | Security only update | +| --- | --- | +| **Windows Server 2008 R2** | **[5044085](https://support.microsoft.com/kb/5044085)** | +| .NET Framework 3.5.1 | [5043946](https://support.microsoft.com/kb/5043946) | +| .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 | [5043947](https://support.microsoft.com/kb/5043947) | +| .NET Framework 4.8 |[5043948](https://support.microsoft.com/kb/5043948) | +| **Windows Server 2008** | **[5044086](https://support.microsoft.com/kb/5044086)** | +| .NET Framework 2.0, 3.0 | [5043945](https://support.microsoft.com/kb/5043945) | +| .NET Framework 3.5 SP1 | [5040680](https://support.microsoft.com/kb/5040680) | +| .NET Framework 4.6.2 | [5043947](https://support.microsoft.com/kb/5043947) | + +The operating system rows list a KB that's used for update-offering purposes. When the operating system KB is offered, the applicability logic determines the specific .NET Framework updates that will be installed. Updates for individual .NET Framework versions are installed based on the version of .NET Framework that's already present on the device. Because of this, the operating system KB is not expected to be listed as an installed update on the device. The expected updates to be installed are the .NET Framework–specific version updates listed in the preceding table. diff --git a/docs/framework/toc.yml b/docs/framework/toc.yml index 2c45931289beb..afc5477a78c69 100644 --- a/docs/framework/toc.yml +++ b/docs/framework/toc.yml @@ -671,6 +671,14 @@ items: items: - name: Release notes items: + - name: January 2024 security and quality rollup + href: release-notes/2024/01-09-january-security-and-quality-rollup.md + - name: January 2024 cumulative update preview + href: release-notes/2024/01-23-january-preview-cumulative-update.md + - name: February 2024 security and quality rollup + href: release-notes/2024/02-14-february-security-and-quality-rollup.md + - name: March 2024 cumulative update preview + href: release-notes/2024/03-26-march-preview-cumulative-update.md - name: April 2024 security and quality rollup href: release-notes/2024/04-09-april-security-and-quality-rollup.md - name: April 2024 cumulative update preview @@ -685,6 +693,8 @@ items: href: release-notes/2024/07-25-july-preview-cumulative-update.md - name: August 2024 security and quality rollup href: release-notes/2024/08-13-august-security-and-quality-rollup.md + - name: October 2024 security and quality rollup + href: release-notes/2024/10-08-october-security-and-quality-rollup.md - name: What's new href: whats-new/index.md - name: What's new in accessibility From 5555b046d718778c22d97e020166b4fd0132d68f Mon Sep 17 00:00:00 2001 From: Tara Overfield Date: Mon, 7 Oct 2024 08:59:33 -0700 Subject: [PATCH 2/7] Update 01-23-january-preview-cumulative-update.md fix lint --- .../2024/01-23-january-preview-cumulative-update.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/framework/release-notes/2024/01-23-january-preview-cumulative-update.md b/docs/framework/release-notes/2024/01-23-january-preview-cumulative-update.md index 678b24ab8d599..c32e8b47de3b3 100644 --- a/docs/framework/release-notes/2024/01-23-january-preview-cumulative-update.md +++ b/docs/framework/release-notes/2024/01-23-january-preview-cumulative-update.md @@ -22,7 +22,7 @@ This release contains the following quality and reliability improvements. #### ASP.NET -Addresses an issue with “System.ArgumentException: Illegal characters in path” in some ASP.Net MVC requests. (*Applies to: .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8, 4.8.1.*) +Addresses an issue with “System.ArgumentException: Illegal characters in path” in some ASP.NET MVC requests. (*Applies to: .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8, 4.8.1.*) #### .NET libraries From e0ea06963dd6a8027293ce0e2229ab5c8053feb7 Mon Sep 17 00:00:00 2001 From: Tara Overfield Date: Mon, 7 Oct 2024 09:00:02 -0700 Subject: [PATCH 3/7] Update 02-14-february-security-and-quality-rollup.md --- .../2024/02-14-february-security-and-quality-rollup.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/framework/release-notes/2024/02-14-february-security-and-quality-rollup.md b/docs/framework/release-notes/2024/02-14-february-security-and-quality-rollup.md index 93e54af1b9743..e6de03150a708 100644 --- a/docs/framework/release-notes/2024/02-14-february-security-and-quality-rollup.md +++ b/docs/framework/release-notes/2024/02-14-february-security-and-quality-rollup.md @@ -22,7 +22,7 @@ This release contains the following quality and reliability improvements. #### ASP.NET -Addresses an issue with “System.ArgumentException: Illegal characters in path” in some ASP.Net MVC requests. (*Applies to: .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8, 4.8.1.*) +Addresses an issue with “System.ArgumentException: Illegal characters in path” in some ASP.NET MVC requests. (*Applies to: .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8, 4.8.1.*) #### .NET libraries From c4628d82624b1fd9fe228aa66110826e793f8b5a Mon Sep 17 00:00:00 2001 From: Tara Overfield Date: Mon, 7 Oct 2024 09:04:50 -0700 Subject: [PATCH 4/7] Update 10-08-october-security-and-quality-rollup.md --- .../2024/10-08-october-security-and-quality-rollup.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/framework/release-notes/2024/10-08-october-security-and-quality-rollup.md b/docs/framework/release-notes/2024/10-08-october-security-and-quality-rollup.md index a7aae9b19d488..a5cb5b6eefbaa 100644 --- a/docs/framework/release-notes/2024/10-08-october-security-and-quality-rollup.md +++ b/docs/framework/release-notes/2024/10-08-october-security-and-quality-rollup.md @@ -79,7 +79,7 @@ The following table is for earlier Windows and Windows Server versions for Secur | .NET Framework 3.5 | [5044012](https://support.microsoft.com/kb/5044012) | | .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 | [5044018](https://support.microsoft.com/kb/5044018) | | .NET Framework 4.8 | [5044026](https://support.microsoft.com/kb/5044026) | -| **Windows Server 2012** | **[ 5044096](https://support.microsoft.com/kb/ 5044096)** | +| **Windows Server 2012** | **[5044096](https://support.microsoft.com/kb/5044096)** | | .NET Framework 3.5 | [5044009](https://support.microsoft.com/kb/5044009) | | .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 | [5044017](https://support.microsoft.com/kb/5044017) | | .NET Framework 4.8 | [5044024](https://support.microsoft.com/kb/5044024) | From 0fd30f72b97176dcb548810d03dcc1b17a87b456 Mon Sep 17 00:00:00 2001 From: Tara Overfield Date: Tue, 8 Oct 2024 10:58:22 -0700 Subject: [PATCH 5/7] Update docs/framework/release-notes/2024/10-08-october-security-and-quality-rollup.md Co-authored-by: Genevieve Warren <24882762+gewarren@users.noreply.github.com> --- .../2024/10-08-october-security-and-quality-rollup.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/framework/release-notes/2024/10-08-october-security-and-quality-rollup.md b/docs/framework/release-notes/2024/10-08-october-security-and-quality-rollup.md index a5cb5b6eefbaa..749f2b8f62281 100644 --- a/docs/framework/release-notes/2024/10-08-october-security-and-quality-rollup.md +++ b/docs/framework/release-notes/2024/10-08-october-security-and-quality-rollup.md @@ -16,7 +16,7 @@ _Released October 8, 2024_ #### CVE-2024-43483 – Denial of service vulnerability -This security update addresses an denial of service vulnerability detailed in [CVE 2024-43483](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43483). +This security update addresses a denial of service vulnerability detailed in [CVE 2024-43483](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43483). #### CVE-2024-43484 – Denial of service vulnerability From 36c35cc7191c6e62c7f428f1abbc01ffb828ef1b Mon Sep 17 00:00:00 2001 From: Tara Overfield Date: Tue, 8 Oct 2024 10:58:31 -0700 Subject: [PATCH 6/7] Update docs/framework/release-notes/2024/10-08-october-security-and-quality-rollup.md Co-authored-by: Genevieve Warren <24882762+gewarren@users.noreply.github.com> --- .../2024/10-08-october-security-and-quality-rollup.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/framework/release-notes/2024/10-08-october-security-and-quality-rollup.md b/docs/framework/release-notes/2024/10-08-october-security-and-quality-rollup.md index 749f2b8f62281..c588419430f91 100644 --- a/docs/framework/release-notes/2024/10-08-october-security-and-quality-rollup.md +++ b/docs/framework/release-notes/2024/10-08-october-security-and-quality-rollup.md @@ -20,7 +20,7 @@ This security update addresses a denial of service vulnerability detailed in [CV #### CVE-2024-43484 – Denial of service vulnerability -This security update addresses an denial of service vulnerability detailed in [CVE 2024-43484](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-434843). +This security update addresses a denial of service vulnerability detailed in [CVE 2024-43484](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-434843). ### Quality and reliability improvements From 2b0d08c2a4ee21f4b569d26b70564368a313411d Mon Sep 17 00:00:00 2001 From: Tara Overfield Date: Tue, 8 Oct 2024 10:58:38 -0700 Subject: [PATCH 7/7] Update docs/framework/release-notes/2024/01-23-january-preview-cumulative-update.md Co-authored-by: Genevieve Warren <24882762+gewarren@users.noreply.github.com> --- .../2024/01-23-january-preview-cumulative-update.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/framework/release-notes/2024/01-23-january-preview-cumulative-update.md b/docs/framework/release-notes/2024/01-23-january-preview-cumulative-update.md index c32e8b47de3b3..2b5290f8839a4 100644 --- a/docs/framework/release-notes/2024/01-23-january-preview-cumulative-update.md +++ b/docs/framework/release-notes/2024/01-23-january-preview-cumulative-update.md @@ -22,7 +22,7 @@ This release contains the following quality and reliability improvements. #### ASP.NET -Addresses an issue with “System.ArgumentException: Illegal characters in path” in some ASP.NET MVC requests. (*Applies to: .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8, 4.8.1.*) +Addresses an issue with "System.ArgumentException: Illegal characters in path" in some ASP.NET MVC requests. (*Applies to: .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8, 4.8.1.*) #### .NET libraries