As some popular Windows versions or products stop receiving security fixes from the original vendor, we may decide to "security-adopt" them. By security-adopting a Windows version or product, we start actively monitoring for newly disclosed critical vulnerabilities in this version, and issuing patches for these vulnerabilities (as much as possible).
So far we have security-adopted the following Windows versions and products:
- Windows 7
- Windows Server 2008 R2 (R2 only)
- Windows 10 v1803
- Windows 10 v1809
- Windows 10 v2004 (Enterprise, Education and IoT Enterprise)
- Windows 10 v1909 (Enterprise, Education and IoT Enterprise)
- Windows 10 v21H1 (Enterprise, Education and IoT Enterprise)
- Windows 10 v20H2 (Enterprise, Education and IoT Enterprise)
- Microsoft Office 2010
- Microsoft Office 2013
- Windows Server 2012 and Windows Server 2012 R2 (starting October 2023)
Note that in addition to critical security patches for the above Windows versions and products, we're also providing "0day" patches (patches for vulnerabilities that don't have official vendor patches yet) for all supported Windows versions.
Windows 8 and Windows 8.1 are unlikely to get security-adopted due to their small market share.