How to remove old GDI+ versions from WinSxS folder

AlbertG 1 Reputation point
2023-03-17T16:05:57.5666667+00:00

We have a security product scanning our servers and it has reported that there are old versions of GDI+ on our servers. These are in the Windows\WinSxS.

The vulnerability is CVE-2019-0618.

I think the newest version is on the server (that does not have the vulnerability) but I am thinking that the old versions are in this folder and that is what is raising the security alert.

Is there a way to remove the old versions from this folder safely?

Thanks.

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
13,053 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Limitless Technology 44,316 Reputation points
    2023-03-20T15:07:01.4633333+00:00

    Hello

    Thank you for your question and reaching out. I can understand you are having query\issues related to WinSxS and GDI+ vulnerability.

    I think you should apply update KB4487044 which are mentioned in this article as Manual cleanup of WinSxS folder is not recommended.

    https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2019-0618

    --If the reply is helpful, please Upvote and Accept as answer--

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.