Yesterday was patch Tuesday, and Microsoft released a fair number of fixes for Windows, Office, Internet Explorer and Edge. The patches were distributed in nine different bulletins containing in all 27 different fixes. Five of the bulletins were listed as critical, covering Edge, Office, IE, and Windows. They are:
- Cumulative Security Update for Internet Explorer (3177356)
- Cumulative Security Update for Microsoft Edge (3177358)
- Security Update for Microsoft Graphics Component (3177393)
- Security Update for Microsoft Office (3177451)
- Security Update for Microsoft Windows PDF Library (3182248)
The Critical updates fix flaws which allowed for remote code execution. The other four bulletins fix flaws concerning unauthorized elevation of privileges, information disclosure, and bypasses for certain security features. The four remaining bulletins are:
- Security Update for Windows Kernel-Mode Drivers (3178466)
- Security Update for Secure Boot (3179577)
- Security Update for Windows Authentication Methods (3178465)
- Security Update for ActiveSyncProvider (3182332)
The bulletins apply to a variety of operating systems, including Windows Vista, Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows 8.1, Windows Server 2012, Windows Server 2012 R2, Windows RT 8.1, and Windows 10. The Office updates affect Microsoft Office 2007 and onward up to Office 2016. And some of the bulletins also fix flaws for Skype for Business 2016, Lync 2013, Lync 2010, and Microsoft Live Meeting 2007 Console. It was a pretty extensive list of fixes for a wide range of software. So odds are it would be prudent for everyone to head over to Windows Update click “check for updates” if you haven’t done so already.
