An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address, allowing an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (KASLR) bypass. To learn more about the vulnerability, see CVE-2017-8481.

An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass. To learn more about the vulnerability, go to the Security Update Guide.

Resolves a vulnerability in Windows that could allow remote code execution.

The computer is restarted, and then you receive the STOP 0x6B error message. To resolve this issue, you can use the Startup Repair recovery tool. For more information, go to the following Microsoft webpage: http://windows.microsoft.com/en-ca/windows7/startup-repair-frequently-asked-questions.

Resolves a vulnerability in Windows Service Control Manager that could allow elevation of privilege if an authenticated user is convinced to execute a specially crafted application.

An information disclosure vulnerability and an elevation of privilege vulnerability exist when the Windows kernel improperly handles objects in memory. To learn more about the vulnerabilities, go to the following Common Vulnerabilities and Exposures (CVE) pages: CVE-2018-0830. CVE-2018-0820.

Fixes an issue in which a process that runs in the Untrusted integrity level is reported incorrectly as an AppContainer. The issue occurs after you install hotfix 2532445 on Windows 7 SP1-based and Windows Server 2008 R2 SP1-based computers.

Improvement and fixes. Provides protections for an additional vulnerability involving side-channel speculative execution known as Lazy Floating Point (FP) State Restore ( CVE-2018-3665) for 32-Bit (x86) versions of Windows.

An attacker who successfully exploits this vulnerability could bypass certain security checks in the operating system. The update addresses the vulnerability by correcting how Windows SMB Server handles such specially crafted files. To learn more about the vulnerability, go to CVE-2018-0749.

This security update resolves vulnerabilities in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker runs a specially crafted application on a target system. To learn more about the vulnerability, see Microsoft Security Bulletin MS16-111.