bleepingcomputer[.]com/news/microsoft/microsoft-october-2023-patch-tuesday-fixes-3-zero-days-104-flaws/
bleepingcomputer[.]com/news/microsoft/windows-11-kb5031354-cumulative-update-released-with-new-features/
bleepingcomputer[.]com/news/microsoft/windows-10-kb5031356-update-released-with-25-improvements/
For Win11, unless you installed last month's 2nd update, this is the one that includes the latest Moment update, with most [all?] of the new features expected in the next version of Windows, 23H2. Haven't read of any problems, and the only problem I've had *so far* is the copy of Win11 22H2 on my mini-PC refused to install the update, both September's 2nd update & this one. I've got 3 devices running Win11 on unsupported hardware [including 1 VM]. I didn't try updating the VM, installing 23H2 from an ISO as a test before upgrading my tablet from Win11 21H2. The 3rd device with unsupported hardware, my mini-PC, was running Win11 22H2. One device is Not enough to speculate that Microsoft's blocking the update on devices with unsupported hardware -- it could be coincidental -- but I wanted to make folks aware of the possibility, however remote. [FWIW, I wound up installing 23H2.]
While forty-five remote code execution (RCE) bugs were fixed, Microsoft only rated twelve vulnerabilities as 'Critical,' all of which are RCE flaws.The number of bugs in each vulnerability category is listed below:
26 Elevation of Privilege Vulnerabilities
3 Security Feature Bypass Vulnerabilities
45 Remote Code Execution Vulnerabilities
12 Information Disclosure Vulnerabilities
17 Denial of Service Vulnerabilities
1 Spoofing Vulnerabilities
This month's Patch Tuesday fixes three zero-day vulnerabilities, with all of them exploited in attacks and two of them publicly disclosed.
Win11 21H2 has now reached EOL.
bleepingcomputer[.]com/news/microsoft/windows-11-21h2-and-windows-server-2012-reach-end-of-support/