MS16-090: Description of the security update for Windows kernel-mode drivers: July 12, 2016

Summary

This security update resolves vulnerabilities in Microsoft Windows. The more severe of the vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application that could exploit the vulnerabilities and take control of an affected system.

To learn more about the vulnerability, see Microsoft Security Bulletin MS16-090.

More Information

Important

• All future security and non-security updates for Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 require update 2919355 to be installed. We recommend that you install update 2919355 on your Windows RT 8.1-based, Windows 8.1-based, or Windows Server 2012 R2-based computer so that you receive future updates.
• If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

__

Non–security-related fixes that are included in this security update

This security update also fixes the following non–security-related issues:

• In certain versions of the Bentley MicroStation app, customers might have problems accessing and arranging windows in the app.

The third-party products that this article discusses are manufactured by companies that are independent of Microsoft. Microsoft makes no warranty, implied or otherwise, about the performance or reliability of these products.

How to obtain and install the update

Method 1: Windows UpdateThis update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see Get security updates automatically.

Note For Windows RT 8.1, this update is available through Windows Update only.

__

Method 2: Microsoft Download Center

You can obtain the stand-alone update package through the Microsoft Download Center. Follow the installation instructions on the download page to install the update.

Click the download link in Microsoft Security Bulletin MS16-090 that corresponds to the version of Windows that you are running.

More Information

__

How to obtain help and support for this security update

Help for installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help for protecting your Windows-based computer from viruses and malware: Virus Solution and Security Center

Local support according to your country: International Support

File Information

__

File hash information

File name	SHA1 hash	SHA256 hash
Windows8.1-KB3168965-x86.msu	375526148340BE7D7D38F820D027666956BA11E5	4DABA6F50556A155D6F1F5F75786B6938E8C2D0D8D4C1C03A12AF3EF9AAD4CC6
Windows8.1-KB3168965-x64.msu	883B41D191EFC9CCDCAD0F40350074A196459582	9C31170CD3BF9C1EE96FB59BBFD4F73C083BE9FF95219401DD99262B99985CF2
Windows6.1-KB3168965-x64.msu	936C2CDB1A9D11DEB25A2B28D98CD300EFF933FB	89A96766CF55BF234EFD240B01FD3E83B4FC427F6E4F20111BB7AEB741D81E37
Windows8-RT-KB3168965-x64.msu	A0387735CB2BB6613867C62E57278FECD5FF3F3B	1AFD6AD646861699177E66108CA1E71FBD6FACF0E200A5BFD36EC5547AE8569D
Windows6.1-KB3168965-ia64.msu	1ECA451381884C3E0795E6C41921FB732DF54C1E	F497493819886CCDACDFE5991A09B60DA96CC4495021C44AB29A9603491D1444
Windows6.0-KB3168965-ia64.msu	8748F20332E93722F15AE994EA32399FC03FA859	9299D9C1B9BE8DE25E44CB5CADFC4BDE8CFFE62E7C43196F6BE16E0047BAB36C
Windows6.1-KB3168965-x86.msu	A083CD38F90820350A2BFFF0C1A609A841515D02	B695780266CEAA73AD1F30A772442A9772936087DAB1C10B9C44037D959EA073
Windows6.0-KB3168965-x64.msu	4D6AF938468D6165C214A26CC6B5A5CEE23C6017	4D4B46385E8DA83244B1CCC92A72F569933D14E338E0BB130FA2EB9339608DC6
Windows6.0-KB3168965-x86.msu	C8F26AFD260E995D14DEE85DA24C249C9ECB17E8	2BB5E6DCE81C3A0FF9AB1344684872D075E6FBC3A6EFC9FA7D9941487DDDF9BF

__

File information

The English (United States) version of this software update installs files that have the attributes that are listed in the following tables.Windows 8.1 and Windows Server 2012 R2 file informationNotes

* The files that apply to a specific product, milestone (RTM, SPn), and service branch (LDR, GDR) can be identified by examining the file version numbers as shown in the following table:Version	Product	Milestone	Service branch
6.3.960 0.16xxx	Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2	RTM	GDR
6.3.960 0.17xxx	Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2	RTM	GDR
6.3.960 0.18xxx	Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2	RTM	GDR

• GDR service branches contain only those fixes that are widely released to address widespread, critical issues. LDR service branches contain hotfixes in addition to widely released fixes.

• The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.
  For all supported x86-based versionsFile name| File version| File size| Date| Time| Platform
  —|—|—|—|—|—
  Win32k.ptxml| Not applicable| 4,213| 21-Aug-2013| 23:39| Not applicable
  Win32k.sys| 6.3.9600.18377| 3,485,184| 10-Jun-2016| 19:06| x86
  For all supported x64-based versionsFile name| File version| File size| Date| Time| Platform
  —|—|—|—|—|—
  Win32k.ptxml| Not applicable| 4,213| 22-Aug-2013| 06:44| Not applicable
  Win32k.sys| 6.3.9600.18377| 4,167,680| 10-Jun-2016| 21:35| x64
  Wow64_win32k.ptxml| Not applicable| 4,213| 21-Aug-2013| 23:39| Not applicable
  Windows 7 and Windows Server 2008 R2 file informationNotes

• The files that apply to a specific product, milestone (RTM, SPn), and service branch (LDR, GDR) can be identified by examining the file version numbers as shown in the following table:Version| Product| Milestone| Service branch
  —|—|—|—
  6.1.760 1.18xxx| Windows 7 or Windows Server 2008 R2| SP1| GDR
  6.1.760 1.23xxx| Windows 7 or Windows Server 2008 R2| SP1| LDR

• GDR service branches contain only those fixes that are widely released to address widespread, critical issues. LDR service branches contain hotfixes in addition to widely released fixes.

• The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.
  For all supported x64-based versionsFile name| File version| File size| Date| Time| Platform
  —|—|—|—|—|—
  Sysmain.sdb| Not applicable| 125,290| 14-Jun-2016| 13:26| Not applicable
  Win32k.sys| 6.1.7601.23471| 3,217,408| 14-Jun-2016| 15:03| x64
  Acres.dll| 6.1.7601.23471| 2,560| 14-Jun-2016| 15:21| x86
  Sysmain.sdb| Not applicable| 4,080,122| 14-Jun-2016| 13:27| Not applicable
  For all supported ia64-based versionsFile name| File version| File size| Date| Time| Platform
  —|—|—|—|—|—
  Sysmain.sdb| Not applicable| 122,268| 14-Jun-2016| 13:25| Not applicable
  Win32k.sys| 6.1.7601.23471| 7,512,064| 14-Jun-2016| 14:52| IA-64
  Acres.dll| 6.1.7601.23471| 2,560| 14-Jun-2016| 15:21| x86
  Sysmain.sdb| Not applicable| 4,080,122| 14-Jun-2016| 13:27| Not applicable
  For all supported x86-based versionsFile name| File version| File size| Date| Time| Platform
  —|—|—|—|—|—
  Acres.dll| 6.1.7601.23471| 2,560| 14-Jun-2016| 15:21| x86
  Sysmain.sdb| Not applicable| 4,080,122| 14-Jun-2016| 13:27| Not applicable
  Win32k.sys| 6.1.7601.23471| 2,398,208| 14-Jun-2016| 14:57| x86
  Windows Server 2012 file informationNotes

• The files that apply to a specific product, milestone (RTM, SPn), and service branch (LDR, GDR) can be identified by examining the file version numbers as shown in the following table:Version| Product| Milestone| Service branch
  —|—|—|—
  6.2.920 0.17xxx| Windows 8, Windows RT, or Windows Server 2012| RTM| GDR
  6.2.920 0.21xxx| Windows 8, Windows RT, or Windows Server 2012| RTM| LDR

• GDR service branches contain only those fixes that are widely released to address widespread, critical issues. LDR service branches contain hotfixes in addition to widely released fixes.

• The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.
  For all supported x64-based versionsFile name| File version| File size| Date| Time| Platform
  —|—|—|—|—|—
  Win32k.ptxml| Not applicable| 4,172| 25-Jul-2012| 20:29| Not applicable
  Win32k.sys| 6.2.9200.21896| 4,050,432| 10-Jun-2016| 23:17| x64
  Wow64_win32k.ptxml| Not applicable| 4,172| 12-Feb-2013| 00:09| Not applicable
  Windows Vista and Windows Server 2008 file informationNotes

• The files that apply to a specific product, milestone (RTM, SPn), and service branch (LDR, GDR) can be identified by examining the file version numbers as shown in the following table:Version| Product| Milestone| Service branch
  —|—|—|—
  6.0.600 2.19xxx| Windows Vista or Windows Server 2008| SP2| GDR
  6.0.600 2.23xxx| Windows Vista or Windows Server 2008| SP2| LDR

• GDR service branches contain only those fixes that are widely released to address widespread, critical issues. LDR service branches contain hotfixes in addition to widely released fixes.

• The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.
  For all supported ia64-based versionsFile name| File version| File size| Date| Time| Platform
  —|—|—|—|—|—
  Win32k.sys| 6.0.6002.19664| 6,697,472| 10-Jun-2016| 14:27| IA-64
  Win32k.sys| 6.0.6002.23979| 6,707,200| 10-Jun-2016| 14:23| IA-64
  For all supported x64-based versionsFile name| File version| File size| Date| Time| Platform
  —|—|—|—|—|—
  Win32k.sys| 6.0.6002.19664| 2,802,176| 10-Jun-2016| 14:45| x64
  Win32k.sys| 6.0.6002.23979| 2,804,736| 10-Jun-2016| 14:41| x64
  For all supported x86-based versionsFile name| File version| File size| Date| Time| Platform
  —|—|—|—|—|—
  Win32k.sys| 6.0.6002.19664| 2,071,040| 10-Jun-2016| 14:19| x86
  Win32k.sys| 6.0.6002.23979| 2,079,744| 10-Jun-2016| 14:23| x86