Microsoft is aware of new variants of the class of attack known as speculative execution side-channel vulnerabilities. The variants are named L1 Terminal Fault (L1TF) and Microarchitectural Data Sampling (MDS). An attacker who can successfully exploit L1TF or MDS may be able to read privileged data across trust boundaries.

The MANIFEST files (.manifest) and the MUM files (.mum) that are installed for each environment are listed separately. MUM and MANIFEST files, and the associated security catalog (.cat) files, are critical to maintaining the state of the updated component.

Microsoft is aware that some customers are running versions of Windows that no longer receive mainstream support. That means those customers will not have received any security updates to protect their systems from CVE-2019-0708, which is a critical remote code execution vulnerability.

Resolves a vulnerability in Windows Explorer that could allow remote code execution if a user visited a specially crafted webpage.

Resolves a vulnerability in Windows that could allow remote code execution if user or application runs or installs a specially crafted, signed portable executable (PE) file on an affected system.

Resolves a vulnerability in Microsoft Windows Object Linking and Embedding (OLE) Automation that could allow remote code execution if a user visits a website that contains a specially crafted Windows Metafile (WMF) image.

Assume that you use the query_post_execution_plan_profile extended event (XEvent) in Microsoft SQL Server 2019. If the engine's cache is filled during XEvent generation, and you reuse the same execution plan, this cache points to invalid memory and causes an access violation. Resolution

Resolves a vulnerability in Windows Explorer that could allow remote code execution when a specially crafted saved-search file is opened and saved.

Resolves several vulnerabilities in Microsoft Windows GDI+ that could allow remote code execution if a user viewed a specially crafted image file using affected software.

The vulnerability could allow remote code execution if Windows Media Center opens a specially crafted Media Center link (.mcl) file that references malicious code. An attacker who successfully exploits this vulnerability could gain the same user rights as the current user.