Author Topic: Microsoft Security Bulletin January 2018  (Read 112 times)

Offline hayc59

  • Esquire
  • Administrator
  • Sr. Member
  • *****
  • Posts: 485
  • Your A Daisy
    • View Profile
Microsoft Security Bulletin January 2018
« on: January 04, 2018, 09:58:12 pm »
January 2018 Security Updates
Release Date: January 03, 2018

The January security release consists of security updates for the following software:
  • Internet Explorer
  • Microsoft Edge
  • Microsoft Windows
Please note the following information regarding the security updates:
  • Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
  • Starting in March 2017, a delta package will be available on the Microsoft Update Catalog for Windows 10 version 1607 and newer. This delta package contains just the delta changes between the previous month and the current release.
  • Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
  • In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
  • After May 9, 2017, customers running Windows 10 version 1507 will no longer receive security and quality updates, with the exception of the Windows 10 2015 LTSB and the Windows 10 IoT Enterprise 2015 LTSB editions. Microsoft recommends that customers with devices running other editions of Windows 10 version 1507 that are no longer supported update these devices to the latest version of Windows 10. For more information see Microsoft Knowledge Base Article 4015562.

9.11.01
Microsoft® Windows Insider MVP
Don’t Fear The Enemy That Attacks You,
But The Fake Friend That Hugs You



Offline hayc59

  • Esquire
  • Administrator
  • Sr. Member
  • *****
  • Posts: 485
  • Your A Daisy
    • View Profile
Re: Microsoft Security Bulletin January 2018
« Reply #1 on: January 04, 2018, 10:05:40 pm »
Critical Security Updates
Windows 7 for 32-bit Systems Service Pack 1 Windows 7 for x64-based Systems Service Pack 1 Windows 8.1 for 32-bit systems Windows 8.1 for x64-based systems Windows Server 2008 for 32-bit Systems Service Pack 2 Windows Server 2008 for Itanium-Based Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1 Windows Server 2008 R2 for x64-based Systems Service Pack 1 Windows Server 2012 Windows Server 2012 R2 Windows 10 for 32-bit Systems Windows 10 for x64-based Systems Windows 10 Version 1511 for 32-bit Systems Windows 10 Version 1511 for x64-based Systems Windows 10 Version 1607 for 32-bit Systems Windows 10 Version 1607 for x64-based Systems Windows 10 Version 1703 for 32-bit Systems Windows 10 Version 1703 for x64-based Systems Windows 10 Version 1709 for 32-bit Systems Windows 10 Version 1709 for x64-based Systems Windows Server 2016

Important Security Updates
Windows 7 for 32-bit Systems Service Pack 1 Windows 7 for x64-based Systems Service Pack 1 Windows 8.1 for 32-bit systems Windows 8.1 for x64-based systems Windows Server 2008 for 32-bit Systems Service Pack 2 Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) Windows Server 2008 for Itanium-Based Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1 Windows Server 2008 R2 for x64-based Systems Service Pack 1 Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Windows Server 2012 Windows Server 2012 (Server Core installation) Windows Server 2012 R2 Windows Server 2012 R2 (Server Core installation) Windows 10 for 32-bit Systems Windows 10 for x64-based Systems Windows 10 Version 1511 for 32-bit Systems Windows 10 Version 1511 for x64-based Systems Windows 10 Version 1607 for 32-bit Systems Windows 10 Version 1607 for x64-based Systems Windows 10 Version 1703 for 32-bit Systems Windows 10 Version 1703 for x64-based Systems Windows 10 Version 1709 for 32-bit Systems Windows 10 Version 1709 for x64-based Systems Windows Server 2016 Windows Server 2016 (Server Core installation) Windows Server, version 1709 (Server Core Installation)

MS patches are available at below link:
https://www.catalog.update.microsoft.com/Search.aspx?q=KB4056892

9.11.01
Microsoft® Windows Insider MVP
Don’t Fear The Enemy That Attacks You,
But The Fake Friend That Hugs You



Offline hayc59

  • Esquire
  • Administrator
  • Sr. Member
  • *****
  • Posts: 485
  • Your A Daisy
    • View Profile
Re: Microsoft Security Bulletin January 2018
« Reply #2 on: January 11, 2018, 06:41:17 pm »

January 2018 Security Updates
Release Date: January 09, 2018

The January security release consists of security updates for the following software:
Internet Explorer
Microsoft Edge
Microsoft Windows
Microsoft Office and Microsoft Office Services and Web Apps
SQL Server
ChakraCore
.NET Framework
.NET Core
ASP.NET Core
Adobe Flash
Please note the following information regarding the security updates:
Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
Starting in March 2017, a delta package will be available on the Microsoft Update Catalog for Windows 10 version 1607 and newer. This delta package contains just the delta changes between the previous month and the current release.
Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
After May 9, 2017, customers running Windows 10 version 1507 will no longer receive security and quality updates, with the exception of the Windows 10 2015 LTSB and the Windows 10 IoT Enterprise 2015 LTSB editions. Microsoft recommends that customers with devices running other editions of Windows 10 version 1507 that are no longer supported update these devices to the latest version of Windows 10. For more information see Microsoft Knowledge Base Article 4015562.
Known Issues 4056890 4056891 4056892 4056893 4056888 4056895 4056898 4056894 4056897 4056896 4056899

https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/858123b8-25ca-e711-a957-000d3a33cf99

9.11.01
Microsoft® Windows Insider MVP
Don’t Fear The Enemy That Attacks You,
But The Fake Friend That Hugs You



Offline Triple Helix

  • Troll Hunter
  • Administrator
  • Sr. Member
  • *****
  • Posts: 278
  • Fortis Fortuna Adiuvat
    • View Profile
    • Webroot Community
Re: Microsoft Security Bulletin January 2018
« Reply #3 on: January 12, 2018, 01:58:32 am »
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

********************************************************************
Title: Microsoft Security Advisory Notification
Issued: January 10, 2018
********************************************************************

Security Advisories Released or Updated on January 9 and January 10 ===================================================================

* Microsoft Security Advisory ADV170021

 - Title: Microsoft Office Defense in Depth Update
 - https:https://portal.msrc.microsoft.com/en-US/security-guidance/
   advisory/ADV170021
 - Reason for Revision: ADV170021 has been revised to add support
   for disabling the Dynamic Update Exchange protocol (DDE) in all
   supported editions of Microsoft Excel.
 
 - Originally posted: December 12, 2017
 - Updated: January 9, 2018
 - Version: 2.0

* Microsoft Security Advisory ADV180002

 - Title: Guidance to mitigate speculative execution side-channel
   vulnerabilities
 - https:https://portal.msrc.microsoft.com/en-US/security-guidance/
   advisory/ADV180002
 - Reason for Revision: Revised the Affected Products table to
   include updates for supported editions of Microsoft SQL Server
   2008, Microsoft SQL Server 2008, and Microsoft SQL Server 2016
   because these updates provide mitigations for ADV180002.
 
 - Originally posted: January 3, 2018
 - Updated: January 9, 2018
 - Version: 4.0

* Microsoft Security Advisory ADV180002

 - Title: Guidance to mitigate speculative execution side-channel
   vulnerabilities
 - https:https://portal.msrc.microsoft.com/en-US/security-guidance/
   advisory/ADV180002
 - Reason for Revision: Added FAQs to provide more details about the
   following: the vulnerabilities described in this advisory, what
   systems are at risk from the vulnerabilities, how customers can
   be protected against each specific vulnerability, information for
   customers with AMD-based devices.
 
 - Originally posted: January 3, 2018
 - Updated: January 10, 2018
 - Version: 4.1
Triple Helix

Microsoft® Windows Insider MVP - Windows Security
Webroot SecureAnywhere Expert Product Advisor & Gold VIP