Ladies and gentlemen another Patch Tuesday is upon us and for the security conscious or the glutton for punishment type, that means another round of time consuming updates that get applied to your Windows devices. While some might see Patch Tuesday as a mild annoyance it’s a still a service that should be greatly appreciated by all.
Today’s Patch Tuesday comes with some very important and critical updates, many of which address remote code execution. There are updates to the security of Internet Explorer, Adobe Font Driver, VBScript, vulnerabilities in Office, the Kernel Mode Driver, PNG processing, photo decoder and others for PC devices:
MS15-018
Cumulative Security Update for Internet Explorer (3032359)
This security update resolves vulnerabilities in Internet Explorer.MS15-019
Vulnerability in VBScript Scripting Engine Could Allow Remote Code Execution (3040297)
This security update resolves a vulnerability in the VBScript scripting engine in Microsoft Windows.MS15-020
Vulnerabilities in Microsoft Windows Could Allow Remote Code Execution (3041836)
This security update resolves vulnerabilities in Microsoft Windows.MS15-021
Vulnerabilities in Adobe Font Driver Could Allow Remote Code Execution (3032323)
This security update resolves vulnerabilities in Microsoft Windows.MS15-022
Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3038999)
This security update resolves vulnerabilities in Microsoft Office.MS15-023
Vulnerabilities in Kernel-Mode Driver Could Allow Elevation of Privilege (3034344)
This security update resolves vulnerabilities in Microsoft Windows.MS15-024
Vulnerability in PNG Processing Could Allow Information Disclosure (3035132)
This security update resolves a vulnerability in Microsoft Windows.MS15-025
Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (3038680)
This security update resolves vulnerabilities in Microsoft Windows.MS15-026
Vulnerabilities in Microsoft Exchange Server Could Allow Elevation of Privilege (3040856)
This security update resolves vulnerabilities in Microsoft Exchange Server.MS15-027
Vulnerability in NETLOGON Could Allow Spoofing (3002657)
This security update resolves a vulnerability in Microsoft Windows.MS15-028
Vulnerability in Windows Task Scheduler Could Allow Security Feature Bypass (3030377)
This security update resolves a vulnerability in Microsoft Windows.MS15-029
Vulnerability in Windows Photo Decoder Component Could Allow Information Disclosure (3035126)
This security update resolves a vulnerability in Microsoft Windows.MS15-030
Vulnerability in Remote Desktop Protocol Could Allow Denial of Service (3039976)
This security update resolves a vulnerability in Microsoft Windows.MS15-031
Vulnerability in Schannel Could Allow Security Feature Bypass (3046049)
This security update resolves a vulnerability in Microsoft Windows that facilitates exploitation of the publicly disclosed FREAK technique, an industry-wide issue that is not specific to Windows operating systems.
Other Microsoft devices are receiving a truckload of updates and patches, for security, Office, and general updates, as well as some firmware updates for the Surface Pro 3 and the original Surface RT.
The Surface Pro 3 is receiving a Surface Pen settings driver update (as wells a name change to the Surface Hub: Surface app) and after a long hiatus, the original RT devices are getting a firmware update to address audio and displays.
Further reading: Firmware, Microsoft, Patch Tuesday, Security, update, Windows
