Windows 7 Patch Tuesday updates focus on Spectre and Meltdown

Madeleine Dean By: Madeleine Dean
2 minute read
windows 7 KB4480970 KB4480960

Home » News » Windows 7 Patch Tuesday updates focus on Spectre and Meltdown

The first Patch Tuesday edition of 2019 is here. Windows 7 received two important updates aiming at improving the overall OS security. Monthly rollup KB4480970 and security update KB4480960 add further protection against the vicious Spectre and Meltdown cyber threats.

At the same time, these two patches also address a major PowerShell security vulnerability that affects remote endpoints.

Here is the official changelog:

  • Provides protections against an additional subclass of speculative execution side-channel vulnerability known as Speculative Store Bypass (CVE-2018-3639) for AMD-based computers. These protections aren’t enabled by default. For Windows client (IT pro) guidance, follow the instructions in KB4073119. For Windows Server guidance, follow the instructions in KB4072698. Use these guidance documents to enable mitigations for Speculative Store Bypass (CVE-2018-3639). Additionally, use the mitigations that have already been released for Spectre Variant 2 (CVE-2017-5715) and Meltdown (CVE-2017-5754).
  • Addresses a security vulnerability in session isolation that affects PowerShell remote endpoints. By default, PowerShell remoting only works with administrator accounts, but can be configured to work with non-administrator accounts. Starting with this release, you cannot configure PowerShell remote endpoints to work with non-administrator accounts. When attempting to use a non-administrator account, the following error will appear:
    “New-PSSession: [computerName] Connecting to remote server localhost failed with the following error message: The WSMan service could not launch a host process to process the given request. Make sure the WSMan provider host server and proxy are properly registered.”
  • Security updates to Windows Kernel, Windows Storage and Filesystems, Windows Wireless Networking, and the Microsoft JET Database Engine.

Microsoft hasn’t listed any known issues affecting these two updates.

Download KB4480970 and KB4480960

You can automatically download and install the latest Windows 7 updates via Windows Update. You can also download the stand-alone package from the Microsoft Update Catalog.

RELATED STORIES  YOU NEED TO CHECK OUT:

Discussions

Next up

How to use the new Reset this PC utility in Windows 10 19H1

Matthew Adams By: Matthew Adams
2 minute read

Microsoft has just showed users a little more of what the 19H1 update has in store for Windows 10. Revamped storage is one of the […]

Continue Reading

How to safely uninstall Steam games on Windows 10

Aleksandar Ognjanovic By: Aleksandar Ognjanovic
2 minute read

We live in an era of digital game distribution and Steam is most likely the king of the hill. However, as the games become significantly […]

Continue Reading

Here’s how to fix Adobe Premiere Pro could not find message

Milan Stanojevic avatar. By: Milan Stanojevic
7 minute read

Adobe Premiere Pro is one of the best video editing tools on the market, but some users reported Adobe Premiere Pro couldn’t find any valid […]

Continue Reading