Downloading a Windows update can be a gamble these days, but this week’s Windows 10 “Update Tuesday” patch feels more important than most. The update includes plenty of important security fixes, including patches for two actively exploited vulnerabilities in the Windows Adobe Font Manager that affect all Windows 10 users.
The two vulnerabilities in question—listed as CVE-2020-1020 and CVE-2020-0938—could let hackers remotely run malicious code and even install malware programs embedded in a document or webpage’s font files. A user doesn’t even have to open an infected document to be exposed to the attack. Simply previewing the file in Windows Explorer is enough to run any malicious code found within. The threat is severe enough that even the U.S. government is telling people to run this update.
CVE-2020-1020 and CVE-2020-0938 have been actively exploited by hackers since at least March, but Microsoft has been unable to fix the issue until this week’s patch. The patch also fixes 133 other security issues, 15 of which Microsoft identified as potential threats. You can read the full patch notes here for full details on all of the fixes.
How to install the April 2020 Windows security update
The update should be available for everyone, and some probably already have it installed if you have automatic updates enabled. But if you haven’t updated, or aren’t sure how, here’s how to install the patch:
Open the Windows Start menu.
Click the gear-shaped Settings icon.
Go to Update and Security > “Windows Update” to check for the patch. (You may see a yellow “!” notification when you open the settings menu if an update is already pending).
Click “Download” to install the patch.
Wait for it to complete, then reboot your PC when prompted.
Despite Microsoft’s repeated history of undercooked and broken Windows Updates, these vulnerabilities are severe enough that you should update right away. At the time I’m writing up this post, no bugs or unforeseen compatibility issues have cropped up yet, and hopefully it’ll stay that way as more people install it. That said, it never hurts to back up your system (or your critical files) prior to installing any decently sized Windows update. And in case something goes wrong, be sure to keep our guide for uninstalling recent Windows updates on hand.