Not a user yet?
Log in Register for free Suggest a product
Update

KB5058722: Fixes an issue that was introduced in a previous Windows

SQL Server 2019SQL Server 2019
Microsoft
Update from patrick-devicebaseUpdate from:
patrick-devicebase (expert)

KB5058722 - Description of the security update for SQL Server 2019 CU32: July 8, 2025

Applies To

  • SQL Server 2019 on Windows SQL Server 2019 on Linux

Summary
This security update contains fixes and resolves vulnerabilities. To learn more about the vulnerabilities, see the following security advisories:

  • CVE-2025-49719 - Microsoft SQL Server Information Disclosure Vulnerability
  • CVE-2025-49718 - Microsoft SQL Server Information Disclosure Vulnerability
  • CVE-2025-49717 - Microsoft SQL Server Remote Code Execution Vulnerability

The Microsoft SQL Server components are updated to the following builds in this security update.

  • SQL Server - Product version: 15.0.4435.7, file version: 2019.150.4435.7

Improvements and fixes included in this update

  • Bug reference: 4238993
    Description: Fixes an issue where under specific conditions an attacker can execute a query against the server to cause unavailability.
    Fix area: SQL Server Engine
    Component: Programmability
    Platform: All
  • Bug reference: 4239681
    Description: Fixes an issue in which uninitialized memory is returned in some rare cases when using limited length parameters with REPLACE function.
    Fix area: SQL Server Engine
    Component: Programmability
    Platform: All

Bug reference: 4053221
Description: Fixes an issue in which uninitialized memory can be read in some rare cases when using variable length parameters.
Fix area: SQL Server Engine
Component: Query Execution
Platform: All

  • Bug reference: 3801161
    Description: Fixes an issue in which the manual change tracking cleanup stored procedure incorrectly sets the invalid cleanup version to negative when the TableName parameter isn't passed.
    Fix area: SQL Server Engine
    Component: Replication
    Platform: All
  • Bug reference: 4241789
    Description: Fixes an issue that was introduced in a previous Windows update that causes restarts and prevents Setup from continuing. After you apply this fix, the value of the PendingFileRenameOperations registry key is deleted when you apply updates to SQL Server.
    Fix area: SQL Setup
    Component: Patching
    Platform: Windows
Version: 2019.150.4435.7 Link
More updatesTo the product
Receive Important Update Messages Stay tuned for upcoming Microsoft SQL Server 2019 updates

More from the Apps & Software section

Was the content helpful to you?

Advertisement Advertise here?
Udemy IT certification ad