.NET Framework September 2022 Security and Quality Rollup

Salini Agarwal

[9/15/2022] revised to update add more details about where to get the security update. 

Today, we are releasing the September 2022 Security and Quality Rollup for .NET Framework.

Security

CVE-2022-26929– .NET Framework Remote Code Execution Vulnerability

This security update addresses an issue where an attacker could convince a local user to open a specially crafted file which could execute malicious code on an affected system.

This update is included in the .NET Framework Security and Quality Rollup for Windows 10, version 20H2 and newer operating systems.  For Windows 10, version 1809 and older operating systems this security vulnerability is addressed with the operating system specific Windows Monthly Rollup, Windows Security-Only Update and Windows Cumulative Update.  The update needed for each version of .NET Framework and operating system may be reviewed at CVE-2022-26929 and below.

Getting the Update

The Security and Quality Rollup is available via Windows Update, Windows Server Update Services, and Microsoft Update Catalog.

Note: Customers that rely on Windows Update and Windows Server Update Services will automatically receive the .NET Framework version-specific updates. Advanced system administrators can also take use of the below direct Microsoft Update Catalog download links to .NET Framework-specific updates. Before applying these updates, please ensure that you carefully review the .NET Framework version applicability, to ensure that you only install updates on systems where they apply.

The following table is for Windows 10+ and Windows Server 2016+ versions.

Product Version Cumulative Update
Windows 11 5017497
.NET Framework 3.5, 4.8 Catalog 5017024
.NET Framework 3.5, 4.8.1 Catalog 5017029
Microsoft server operating systems version 21H2 5017501
.NET Framework 3.5, 4.8 Catalog 5017028
.NET Framework 3.5, 4.8.1 Catalog 5017030
Windows 10 21H2 5017500
.NET Framework 3.5, 4.8 Catalog 5017022
.NET Framework 3.5, 4.8.1 Catalog 5017025
Windows 10 21H1 5017499
.NET Framework 3.5, 4.8 Catalog 5017022
.NET Framework 3.5, 4.8.1 Catalog 5017025
Windows 10, version 20H2 and Windows Server, version 20H2 5017498
.NET Framework 3.5, 4.8 Catalog 5017022
.NET Framework 3.5, 4.8.1 Catalog 5017025
Windows 10 1809 (October 2018 Update) and Windows Server 2019
.NET Framework 3.5, 4.7.2, 4.8 Catalog 5017315
Windows 10 1607 (Anniversary Update) and Windows Server 2016
.NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 Catalog 5017305
Windows 10 1507
.NET Framework 3.5, 4.6.2 Catalog 5017327

 

The following table is for earlier Windows and Windows Server versions.

Product Version Monthly Rollup Security-only Update
Windows 8.1, Windows RT 8.1 and Windows Server 2012 R2
.NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 Catalog 5017367 Catalog 5017365
Windows Server 2012
.NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 Catalog 5017370 Catalog 5017377
Windows 7 SP1 and Windows Server 2008 R2 SP1
.NET Framework 3.5.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 Catalog 5017361 Catalog 5017373
Windows Server 2008 SP2
.NET Framework 3.5.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 Catalog 5017361 Catalog 5017373

 

Quality and Reliability

This release contains the following quality and reliability improvements.

WinForms
  • Addresses an issue regarding integer overflow exception in System.Windows.Forms.InputLanguage class.

Getting the Update

The Security and Quality Rollup is available via Windows Update, Windows Server Update Services, and Microsoft Update Catalog.

Note: Customers that rely on Windows Update and Windows Server Update Services will automatically receive the .NET Framework version-specific updates. Advanced system administrators can also take use of the below direct Microsoft Update Catalog download links to .NET Framework-specific updates. Before applying these updates, please ensure that you carefully review the .NET Framework version applicability, to ensure that you only install updates on systems where they apply.

The following table is for Windows 10+ and Windows Server 2016+ versions.

Product Version Cumulative Update
Windows 11 5017497
.NET Framework 3.5, 4.8 Catalog 5017024
.NET Framework 3.5, 4.8.1 Catalog 5017029
Microsoft server operating systems version 21H2 5017501
.NET Framework 3.5, 4.8 Catalog 5017028
.NET Framework 3.5, 4.8.1 Catalog 5017030
Windows 10 21H2 5017500
.NET Framework 3.5, 4.8 Catalog 5017022
.NET Framework 3.5, 4.8.1 Catalog 5017025
Windows 10 21H1 5017499
.NET Framework 3.5, 4.8 Catalog 5017022
.NET Framework 3.5, 4.8.1 Catalog 5017025
Windows 10, version 20H2 and Windows Server, version 20H2 5017498
.NET Framework 3.5, 4.8 Catalog 5017022
.NET Framework 3.5, 4.8.1 Catalog 5017025
Windows 10 1809 (October 2018 Update) and Windows Server 2019 5017528
.NET Framework 3.5, 4.7.2 Catalog 5016713
.NET Framework 3.5, 4.8 Catalog 5016593
Windows 10 1607 (Anniversary Update) and Windows Server 2016
.NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2 Catalog 5017305
.NET Framework 4.8 Catalog 5017035

The following table is for earlier Windows and Windows Server versions.

Product Version Security and Quality Rollup
Windows 8.1, Windows RT 8.1 and Windows Server 2012 R2 5017531
.NET Framework 3.5 Catalog 5016268
.NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 Catalog 5016372
.NET Framework 4.8 Catalog 5017038
Windows Server 2012 5017530
.NET Framework 3.5 Catalog 5013635
.NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 Catalog 5016371
.NET Framework 4.8 Catalog 5017037
Windows 7 SP1 and Windows Server 2008 R2 SP1 5017529
.NET Framework 3.5.1 Catalog 5013637
.NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 Catalog 5016368
.NET Framework 4.8 Catalog 5017036

 

Previous Monthly Rollups

The last few .NET Framework Monthly updates are listed below for your convenience: