Do I only need the latest .NET Security Roll-Up following .NET framework installation?

LugieLuge 1 Reputation point


I’m currently in the process of upgrading some Win7 machines from .NET 4.5.2 to .NET 4.7.2 and I’m looking into what .NET security updates will be required following the installation.

The blog states

“ The Security and Quality Rollup will contain all of the past updates for .NET Framework 4.5.x and 4.6.x.”


“Security and Quality Rollups and Security-only Updates contain the same security fixes. If you install the Security and Quality Rollup for a given month, there is no need to install the Security only Update.”

The blog is a few years old so I’d like to confirm that these statements also apply to 4.7.2?

In which case, would I only need to install either the latest 4.7.2 rollup to be fully up-to-date as far as .NET security updates go? Similarly if I had to rollback the framework to 4.5.2 would I’d just need the latest 4.5.2 roll-up?

Currently we deploy packages containing multiple security only updates and roll ups but reading the blog has me thinking that the latest roll-up alone should be sufficient.


Ps. Apologies if I used the wrong tag, I struggled to find obvious ones for this post.

Windows 7
Windows 7
A Microsoft operating system.
373 questions
.NET Runtime
.NET Runtime
.NET: Microsoft Technologies based on the .NET software framework.Runtime: The period of time during which a program is being executed in a computer.
982 questions
{count} votes

2 answers

Sort by: Most helpful
  1. Michael Taylor 41,431 Reputation points

    The security updates contain all previous updates unless otherwise specified. You only need to install the latest one but it doesn't hurt to install the older ones either.

    1 person found this answer helpful.

  2. Teemo Tang 11,056 Reputation points

    Yes, we usually only need to install the latest update. The newer updates will include all contents of previous updates
    However, 2021-02 Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows 7 for x64 (KB4600945) is not a general security update, this KB is a Security Vulnerability patch for specific situation, I agree with your idea, install both of Feb & May updates.


    If the Answer is helpful, please click "Accept Answer" and upvote it.
    Information posted in the given link is hosted by a third party. Microsoft does not guarantee the accuracy and effectiveness of information.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.