Security News > 2021 > July > Microsoft Patch Tuesday, July 2021 Edition

Microsoft today released updates to patch at least 116 security holes in its Windows operating systems and related software.
Another 103 of the security holes patched this month were flagged as "Important," which Microsoft assigns to vulnerabilities "Whose exploitation could result in compromise of the confidentiality, integrity, or availability of user data, or of the integrity or availability of processing resources."
Among the critical bugs is of course the official fix for the PrintNightmare print spooler flaw in most versions of Windows that prompted Microsoft to rush out a patch for a week ago in response to exploit code for the flaw that got accidentally published online.
Another concerning critical vulnerability in the July batch is CVE-2021-34494, a dangerous bug in the Windows DNS Server.
Satnam Narang, staff research engineer at Tenable, noted that while Microsoft says two of the Exchange bugs tackled this month were addressed as part of its security updates from April 2021, both CVEs were somehow omitted from that April release.
Before you update with this month's patch batch, please make sure you have backed up your system and/or important files.
News URL
https://krebsonsecurity.com/2021/07/microsoft-patch-tuesday-july-2021-edition/
Related news
- Microsoft March 2025 Patch Tuesday fixes 7 zero-days, 57 flaws (source)
- Patch Tuesday: Microsoft Fixes 57 Security Flaws – Including Active Zero-Days (source)
- April 2025 Patch Tuesday forecast: More AI security introduced by Microsoft (source)
- Microsoft April 2025 Patch Tuesday fixes exploited zero-day, 134 flaws (source)
- Patch Tuesday: Microsoft Fixes 134 Vulnerabilities, Including 1 Zero-Day (source)
- March 2025 Patch Tuesday forecast: A return to normalcy (source)
- Choose your own Patch Tuesday adventure: Start with six zero day fixes, or six critical flaws (source)
- Week in review: Probing activity on Palo Alto Networks GlobalProtect portals, Patch Tuesday forecast (source)
- April's Patch Tuesday leaves unlucky Windows Hello users unable to login (source)
Related Vulnerability
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-07-14 | CVE-2021-34494 | Unspecified vulnerability in Microsoft products Windows DNS Server Remote Code Execution Vulnerability | 0.0 |