It’s the second Tuesday of the month, which means it’s time for another round of “Patch Tuesday” updates for Windows 10. Like previous Patch Tuesday releases, these cumulative updates don’t contain any new features. Rather, the focus is on security and reliability improvements across the board.
This month, Microsoft has also shipped a fix for an important security vulnerability. According to Microsoft’s security guidance on the flaw, the flaw could allow an attacker to conduct man-in-the-middle attacks and get their hands on confidential information.
“An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted, legitimate source,” Microsoft says in its security guidance. “The user would have no way of knowing the file was malicious, because the digital signature would appear to be from a trusted provider.”
For PCs running Windows 10 versions 1909 and 1903, the release notes include the following: