Microsoft Security Bulletin Minor Revisions Issued: May 25, 2016

Security Bulletins / Advisories No Comments »
Summary

The following bulletins and/or bulletin summaries have undergone a
minor revision increment.

Please see the appropriate bulletin for more details.

* MS15-JUL
* MS16-MAY
* MS15-126 – Critical
* MS15-134 – Important
* MS16-003 – Critical
* MS16-054 – Critical

Bulletin Information:

MS15-JUL

– Title: Microsoft Security Bulletin Summary for July 2015
– »technet.microsoft.com/li ··· jul.aspx
– Reason for Revision: V3.1 (May 25, 2016): For MS15-076, added a
Known Issues reference to the Executive Summaries table. For more
information, see Microsoft Knowledge Base Article 3067505. For
information about the solution for this Known Issue, see Microsoft
Knowledge Base Article 3155218.
– Originally posted: July 14, 2015
– Updated: May 25, 2016
– Bulletin Severity Rating: Not applicable
– Version: 3.1

MS16-MAY

– Title: Microsoft Security Bulletin Summary for May 2016
– »technet.microsoft.com/li ··· may.aspx
– Reason for Revision: V2.1 (May 25, 2016): For MS16-065, added a
Known Issue to the Executive Summaries table. After you install
any of the security updates that are included in MS16-065 on a
Front End or Standard Edition server for Lync Server 2010, Lync
Server 2013, or Skype for Business Server 2015, several
conferencing modalities no longer function for internal users.
For information about the solution for this Known Issue, see
Microsoft Knowledge Base Article 3165438.
– Originally posted: May 10, 2016
– Updated: May 25, 2016
– Bulletin Severity Rating: Not applicable
– Version: 2.1

MS15-126

– Title: Cumulative Security Update for JScript and VBScript to
Address Remote Code Execution (3116178)
– »technet.microsoft.com/li ··· 126.aspx
– Reason for Revision: V1.1 (May 25, 2016): Removed redundant
rows from the Vulnerability Severity Rating and Maximum Security
Impact by Affected Software table, and added the applicable
update numbers for clarity. This is an informational change only.
– Originally posted: December 8, 2015
– Updated: May 25, 2016
– Bulletin Severity Rating: Critical
– Version: 1.1

MS15-134

– Title: Security Update for Windows Media Center to Address
Remote Code Execution (3108669)
– »technet.microsoft.com/li ··· 134.aspx
– Reason for Revision: V1.1 (May 25, 2016): Removed the mitigating
factors for CVE-2015-6131 and CVE-2015-6127. These are
informational changes only.
– Originally posted: December 8, 2015
– Updated: May 25, 2016
– Bulletin Severity Rating: Important
– Version: 1.1

MS16-003

– Title: Cumulative Security Update for JScript and VBScript
to Address Remote Code Execution (3125540)
– »technet.microsoft.com/li ··· 003.aspx
– Reason for Revision: V1.1 (May 25, 2016): Removed redundant
rows from the Vulnerability Severity Rating and Maximum Security
Impact by Affected Software table, and added the applicable
update numbers for clarity. This is an informational change only.
– Originally posted: January 12, 2016
– Updated: May 25, 2016
– Bulletin Severity Rating: Critical
– Version: 1.1

MS16-054

– Title: Security Update for Microsoft Office (3155544)
– »technet.microsoft.com/li ··· 054.aspx
– Reason for Revision: V1.1 (May 25, 2016): Corrected the updates
replaced for Microsoft Office 2013 to 3114486 in MS16-004, and
for CVE-2016-0183, clarified that the Preview Pane is an attack
vector for this vulnerability. These are informational changes
only.
– Originally posted: May 10, 2016
– Updated: May 25, 2016
– Bulletin Severity Rating: Critical
– Version: 1.1

Microsoft® Consumer Security MVP, 2004 – 2016
DP’s Security Bits

Microsoft Security Bulletin Minor Revisions Issued: May 18, 2016

Security Bulletins / Advisories No Comments »

Summary

The following bulletins and/or bulletin summaries have undergone a
minor revision increment.

Please see the appropriate bulletin for more details.

* MS16-035 – Important

Bulletin Information:

MS16-035

– Title: Security Update for .NET Framework to Address Security
Feature Bypass (3141780)
https://technet.microsoft.com/library/security/ms16-035.aspx
– Reason for Revision: V2.1 (May 18, 2016): Revised bulletin to
clarify the distribution audience for the Microsoft .NET Framework
4.5.2 and Microsoft .NET Framework 4.6/4.6.1 security updates
that were re-released on May 10, 2016, as follows: The security
updates for Microsoft .NET Framework 4.5.2 have been re-released
to Limited Distribution Release (LDR) customers only. The security
updates for Microsoft .NET Framework 4.6/4.6.1 have been
re-released to all customers.
– Originally posted: March 8, 2016
– Updated: May 18, 2016
– Bulletin Severity Rating: Important
– Version: 2.1

Microsoft Security Advisory Notification Issued: May 18, 2016

Security Bulletins / Advisories No Comments »

Security Advisories Updated or Released Today

* Microsoft Security Advisory 2880823
– Title: Deprecation of SHA-1 Hashing Algorithm for Microsoft Root
Certificate Program
https://technet.microsoft.com/library/security/2880823.aspx
– Reason for Revision: V2.0 (May 18, 2016): Advisory updated to
provide links to the current information regarding the use of the
SHA1 hashing algorithm for the purposes of SSL and code signing.
For more information, see Windows Enforcement of Authenticode Code
Signing and Timestamping.
– Originally posted: November 12, 2013
– Updated: May 18, 2016
– Bulletin Severity Rating: None
– Version: 2.0

Microsoft Security Bulletin Minor Revisions Issued: May 13, 2016

Security Bulletins / Advisories No Comments »

Summary

The following bulletins and/or bulletin summaries have undergone a
minor revision increment.

Please see the appropriate bulletin for more details.

* MS16-MAY
* MS16-067 – Important

Bulletin Information:

MS16-MAY

– Title: Microsoft Security Bulletin Summary for May 2016
https://technet.microsoft.com/library/security/ms16-may.aspx
– Reason for Revision: V1.2 (May 13, 2016): For MS16-067,
Bulletin Summary revised to change the vulnerability severity
rating for Windows 8.1 and Windows RT 8.1 to Not applicable,
because these operating systems are not affected by the
vulnerability described in this bulletin. Customers who have
applied security update 3155784 do not need to take any further
action. This is an informational change only.
– Originally posted: May 10, 2016
– Updated: May 13, 2016
– Bulletin Severity Rating: Not applicable
– Version: 1.2

MS16-067

– Title: Security Update for Volume Manager Driver (3155784)
https://technet.microsoft.com/library/security/ms16-067.aspx
– Reason for Revision: V1.1 (May 13, 2016): Bulletin revised
to change the vulnerability severity rating for Windows 8.1
and Windows RT 8.1 to Not applicable, because these operating
systems are not affected by the vulnerability described in this
bulletin. Customers who have applied security update 3155784
do not need to take any further action. This is an informational
change only.
– Originally posted: May 10, 2016
– Updated: May 13, 2016
– Bulletin Severity Rating: Important
– Version: 1.1

Microsoft Security Bulletin Releases Issued: May 13, 2016

Security Bulletins / Advisories No Comments »

Summary

The following bulletins have undergone a major revision increment.

* MS16-064 – Critical
* MS16-MAY

<b><u>Bulletin Information:</u></b>

MS16-064

– Title: Security Update for Adobe Flash Player (3157993)
https://technet.microsoft.com/library/security/ms16-064.aspx
– Reason for Revision: V2.0 (May 13, 2016): Bulletin revised
to announce the release of update 3163207 to address the
vulnerabilities included in Adobe Security Bulletin APSB16-15.
Note that update 3163207 replaces the update previously released
in this bulletin (update 3157993). Microsoft strongly recommends
that customers install update 3163207 to help be protected from the
vulnerabilities described in Adobe Security Bulletin APSB16-15.
– Originally posted: May 10, 2016
– Updated: May 13, 2016
– Bulletin Severity Rating: Critical
– Version: 2.0

MS16-MAY

– Title: Microsoft Security Bulletin Summary for May 2016
https://technet.microsoft.com/library/security/ms16-may.aspx
– Reason for Revision: V2.0 (May 13, 2016): For MS16-064, Bulletin
Summary revised to announce the release of update 3163207 to
address the vulnerabilities included in Adobe Security Bulletin
APSB16-15. Note that update 3163207 replaces the update previously
released in MS16-064 (update 3157993). Microsoft strongly
recommends that customers install update 3163207 to help be
protected from the vulnerabilities described in
Adobe Security Bulletin APSB16-15.
– Originally posted: May 10, 2016
– Updated: May 13, 2016
– Bulletin Severity Rating: Not applicable
– Version: 2.0

Microsoft Security Bulletin Minor Revisions Issued: May 12, 2016

Security Bulletins / Advisories No Comments »

Summary

The following bulletins and/or bulletin summaries have undergone a
minor revision increment.

Please see the appropriate bulletin for more details.

* MS16-065 – Important

Bulletin Information:

MS16-065

– Title: Security Update for .NET Framework (3156757)
https://technet.microsoft.com/library/security/ms16-065.aspx
– Reason for Revision: V1.1 (May 12, 2016): Revised bulletin to
announce a detection change for the 3142037 update for .NET
Framework 4.6/4.6.1. This is an informational change only.
Customers who have already successfully updated their systems
do not need to take any action.
– Originally posted: May 10, 2016
– Updated: May 12, 2016
– Bulletin Severity Rating: Important
– Version: 1.1

Microsoft Security Bulletin Minor Revisions Issued: May 11, 2016

Security Bulletins / Advisories No Comments »

Summary

The following bulletins and/or bulletin summaries have undergone a
minor revision increment.

Please see the appropriate bulletin for more details.

* MS16-APR
* MS16-MAY
* MS16-061 – Important
* MS16-064 – Critical
Bulletin Information:

MS16-APR

– Title: Microsoft Security Bulletin Summary for April 2016
https://technet.microsoft.com/library/security/ms16-apr.aspx
– Reason for Revision: V1.2 (May 11, 2016): Added a Known Issues
reference to the Executive Summaries table for MS16-044. For more
information, see Microsoft Knowledge Base Article 3146706. Added
a Known Issues reference to the Executive Summaries table for
MS16-042. For more information, see Microsoft Knowledge Base
Article 3146723.
– Originally posted: April 12, 2016
– Updated: May 11, 2016
– Bulletin Severity Rating: Not applicable
– Version: 1.2

MS16-MAY

– Title: Microsoft Security Bulletin Summary for May 2016
https://technet.microsoft.com/library/security/ms16-may.aspx
– Reason for Revision: V1.1 (May 11, 2016): Bulletin Summary
revised to change the vulnerability impact from elevation
of privilege to remote code execution, and the title of CVE
2016-0178 to RPC Network Data Representation Engine Remote
Code Execution Vulnerability. This is an informational
change only.
– Originally posted: May 10, 2016
– Updated: May 11, 2016
– Bulletin Severity Rating: Not applicable
– Version: 1.1

MS16-061

– Title: Security Update for Microsoft RPC (3155520)
https://technet.microsoft.com/library/security/ms16-061.aspx
– Reason for Revision: V1.1 (May 11, 2016): Bulletin revised
to change the vulnerability impact from elevation of privilege
to remote code execution, and the title of CVE 2016-0178
to RPC Network Data Representation Engine Remote Code Execution
Vulnerability. This is an informational change only.
– Originally posted: May 10, 2016
– Updated: May 11, 2016
– Bulletin Severity Rating: Important
– Version: 1.1

MS16-064

– Title: Security Update for Adobe Flash Player (3157993)
https://technet.microsoft.com/library/security/ms16-064.aspx
– Reason for Revision: V1.1 (May 11, 2016): Bulletin revised
to temporarily redirect an inactive link for Adobe Security
Bulletin APSB16-15 to the May 2016 edition of Adobe Security
Advisory APSA16-02. The redirection is pending the release of
the May 2016 edition of the Adobe Security Bulletin. This is
an informational change only.
– Originally posted: May 10, 2016
– Updated: May 11, 2016
– Bulletin Severity Rating: Critical
– Version: 1.1

Security Advisory posted for Adobe Flash Player (APSA16-02)

News, Security Bulletins / Advisories No Comments »

A Security Advisory (APSA16-02) has been published regarding a critical vulnerability (CVE-2016-4117) in Adobe Flash Player.  Adobe is aware of a report that an exploit for CVE-2016-4117 exists in the wild.  Adobe will address this vulnerability in our monthly security update, which will be available as early as May 12.

https://blogs.adobe.com/psirt/?p=1346

Microsoft Security Bulletin(s) for May 10, 2016

Security Bulletins / Advisories No Comments »
Note: There may be latency issues due to replication, if the page does not display keep refreshing

Today Microsoft released the following Security Bulletin(s).

Note: »www.microsoft.com/techne ··· security and »www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.

Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

Bulletin Summary:
»technet.microsoft.com/li ··· ms16-may

Critical (8)

Microsoft Security Bulletin MS16-051
Cumulative Security Update for Internet Explorer (3155533)
»technet.microsoft.com/li ··· ms16-051

Microsoft Security Bulletin MS16-052
Cumulative Security Update for Microsoft Edge (3155538)
»technet.microsoft.com/li ··· ms16-052

Microsoft Security Bulletin MS16-053
Cumulative Security Update for JScript and VBScript (3156764)
»technet.microsoft.com/li ··· ms16-053

Microsoft Security Bulletin MS16-054
Security Update for Microsoft Office (3155544)
»technet.microsoft.com/li ··· ms16-054

Microsoft Security Bulletin MS16-055
Security Update for Microsoft Graphics Component (3156754)
»technet.microsoft.com/li ··· ms16-055

Microsoft Security Bulletin MS16-056
Security Update for Windows Journal (3156761)
»technet.microsoft.com/li ··· ms16-056

Microsoft Security Bulletin MS16-057
Security Update for Windows Shell (3156987)
»technet.microsoft.com/li ··· ms16-057

Microsoft Security Bulletin MS16-064
Security Update for Adobe Flash Player (3157993)
»technet.microsoft.com/li ··· ms16-064

Important (8)

Microsoft Security Bulletin MS16-058
Security Update for Windows IIS (3141083)
»technet.microsoft.com/li ··· ms16-058

Microsoft Security Bulletin MS16-059
Security Update for Windows Media Center (3150220)
»technet.microsoft.com/li ··· ms16-059

Microsoft Security Bulletin MS16-060
Security Update for Windows Kernel (3154846)
»technet.microsoft.com/li ··· ms16-060

Microsoft Security Bulletin MS16-061
Security Update for Microsoft RPC (3155520)
»technet.microsoft.com/li ··· ms16-061

Microsoft Security Bulletin MS16-062
Security Update for Windows Kernel-Mode Drivers (3158222)
»technet.microsoft.com/li ··· ms16-062

Microsoft Security Bulletin MS16-065
Security Update for .NET Framework (3156757)
»technet.microsoft.com/li ··· ms16-065

Microsoft Security Bulletin MS16-066
Security Update for Virtual Secure Mode (3155451)
»technet.microsoft.com/li ··· ms16-066

Microsoft Security Bulletin MS16-067
Security Update for Volume Manager Driver (3155784)
»technet.microsoft.com/li ··· ms16-067

Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.

If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact: For home users, no-charge support for security updates (only!) is available by calling 800-MICROSOFT (800-642-7676) in the US or 877-568-2495 in Canada.

Microsoft® Consumer Security MVP, 2004 – 2016
DP’s Security Bits

Microsoft Security Advisory Notification Issued: April 22, 2016

Security Bulletins / Advisories No Comments »

Security Advisories Updated or Released Today

* Microsoft Security Advisory 3152550
– Title: Update to Improve Wireless Mouse Input Filtering (3152550)
https://technet.microsoft.com/library/security/3152550.aspx
– Reason for Revision: V1.1 (April 22, 2016): Added FAQs and
additional information to clarify that only standalone mouse
devices are affected. This is an informational change only.
– Originally posted: April 12, 2016
– Updated: April 22, 2016
– Bulletin Severity Rating: None
– Version: 1.1


© 2016 DP's Security Bits.
WordPress Theme & Icons by N.Design Studio. Provided by WPMU DEV -The WordPress Experts   Hosted by Microsoft MVPs

Featuring WPMU Bloglist Widget by YD WordPress Developer

Entries RSS Comments RSS Log in