Microsoft has just released new cumulative updates for supported Windows 10 versions with security fixes and improvements. The January 2019 update is also available for users with Windows 7 or Windows 8.1 device.
The*new monthly rollups for Windows 7 and Windows 8.1 comes with typical security fixes. In the changelog, Microsoft notes that the company has addressed a*security vulnerability in session isolation that affects PowerShell remote endpoints. Microsoft also says that you can no longer configure PowerShell remote endpoints to work with non-administrator accounts.
You can download and install the latest patches by checking for updates in Control Panel. Alternatively,**you can also install them manually by downloading the package from the*Microsoft Update website.
KB4480970*for Windows 7 comes with the following fixes:

  • Provides protections against an additional subclass of speculative execution side-channel vulnerability known as*Speculative Store Bypass*(CVE-2018-3639) for AMD-based computers. These protections aren't enabled by default. For Windows client (IT pro) guidance, follow the instructions in*KB4073119. For Windows Server guidance,*follow the instructions in*KB4072698. Use these guidance documents to enable mitigations for Speculative Store Bypass (CVE-2018-3639). Additionally, use the mitigations that have already been released for Spectre Variant 2 (CVE-2017-5715) and Meltdown (CVE-2017-5754).
  • Addresses a security vulnerability in session isolation that affects PowerShell remote endpoints. By default, PowerShell remoting only works with administrator accounts, but can be configured to work with non-administrator accounts. Starting with this release, you cannot configure PowerShell remote endpoints to work with non-administrator accounts. When attempting to use a non-administrator account, the following error will appear:
    “New-PSSession: [computerName] Connecting to remote server localhost failed with the following error message: The WSMan service could not launch a host process to process the given request. Make sure the WSMan provider host server and proxy are properly registered. For more information, see the about_Remote_Troubleshooting Help topic.”
  • Security updates to Windows Kernel, Windows Storage and Filesystems, Windows Wireless Networking, and the Microsoft JET Database Engine.

Microsoft is aware of the following issue*in this release:
Known issues in this update


Symptom Workaround
After you apply this update, the network interface controller may stop working on some client software configurations. This occurs because of an issue related to a missing file, oem.inf. The exact problematic configurations are currently unknown.
  1. To locate the network device, launch devmgmt.msc. It may appear under*Other Devices.
  2. To automatically rediscover the NIC and install drivers, select*Scan for Hardware Changes*from the*Actionmenu.
    • Alternatively, install the drivers for the network device by right-clicking the device and choosing*Update.*Then choose*Search automatically for updated driver software*or*Browse my computer for driver software.
KB4480963*for Windows 8.1 has addressed the following problems:

  • Provides protections against an additional subclass of speculative execution side-channel vulnerability known as*Speculative Store Bypass*(CVE-2018-3639) for AMD-based computers. These protections aren't enabled by default. For Windows client (IT pro) guidance, follow the instructions in*KB4073119. For Windows Server guidance,*follow the instructions in*KB4072698. Use these guidance documents to enable mitigations for Speculative Store Bypass (CVE-2018-3639). Additionally, use the mitigations that have already been released for Spectre Variant 2 (CVE-2017-5715) and Meltdown (CVE-2017-5754).
  • Addresses a security vulnerability in session isolation that affects PowerShell remote endpoints. By default, PowerShell remoting only works with administrator accounts, but can be configured to work with non-administrator accounts. Starting with this release, you cannot configure PowerShell remote endpoints to work with non-administrator accounts. When attempting to use a non-administrator account, the following error will appear:
    “New-PSSession: [computerName] Connecting to remote server localhost failed with the following error message: The WSMan service could not launch a host process to process the given request. Make sure the WSMan provider host server and proxy are properly registered. For more information, see the about_Remote_Troubleshooting Help topic.”
  • Security updates to Windows App Platform and Frameworks, Windows MSXML, Windows Kernel, Windows Storage and Filesystems, Windows Wireless Networking, and the Microsoft JET Database Engine.

Microsoft is not currently aware of any issues with this update.
Windows 10 outperforms Windows 7 in market share chart

In related news,*Windows 10 finally managed to overtake*Windows 7 in December 2018. According to the latest report released by NetMarketShare, in December 2018, Windows 10 market share jumped to 39.22% market share and Windows 7 dropped to 36.90% market share.
Windows 7 support ends in exactly a year in January 2020, and it is likely that more and more Windows 7 users will upgrade their PCs in order to receive the latest security improvements.