Release Date:
December 13, 2022 Version: ** .NET Framework 3.5, 4.8 and 4.8.1**
**Note:**Revised on Jun 20, 2023 to add resolution to known issue.
This article describes the Cumulative Update for 3.5, 4.8 and 4.8.1 for Windows Server 2022. Security Improvements This security update addresses a vulnerability where restricted mode is triggered for the parsing of XPS files, preventing gadget chains which could allow remote code execution on an affected system. For more information please see CVE-2022-41089.Quality and Reliability ImprovementsFor a list of improvements that were released with this update, please see the article links in the Additional Information section of this article.
Symptom | After installing this update, WPF apps may have a change in behavior. For more information about this issue, see KB5022083 |
---|---|
Workaround | To mitigate this issue, see KB5022083. Resolution |
The following articles contain additional information about this update as it relates to individual product versions.
Release Channel | Available | Next Step |
---|---|---|
Windows Update and Microsoft Update | Yes | None. This update will be downloaded and installed automatically from Windows Update. |
Windows Update for Business | Yes | None. This update will be downloaded and installed automatically from Windows Update. |
Microsoft Update Catalog | Yes | To get the standalone package for this update, go to the Microsoft Update Catalog website. |
Windows Server Update Services (WSUS) | Yes | This operating system update will offer, as applicable, and individual .NET Framework product updates will be installed. For more information about individual .NET Framework product updates see additional information about this update section. This update will automatically sync with WSUS if you configure as follows: Product: Microsoft server operating system version 21H2Classification: Security Updates |