Microsoft August 2017 Patchday Summary

Windows UpdateMicrosoft has released a couple of security updates for Windows and other products on August 8, 2017. Here is a short patchday summary.


Advertising


Details about these security updates may be found within Security TechCenter and within several blog posts here.

Critical Security Updates
============================

Adobe Flash Player
Internet Explorer 9
Internet Explorer 11
Microsoft Edge
Windows 7 for 32-bit Systems Service Pack 1
Windows 7 for x64-based Systems Service Pack 1
Windows 8.1 for 32-bit systems
Windows 8.1 for x64-based systems
Windows RT 8.1
Windows 10 for 32-bit Systems
Windows 10 for x64-based Systems
Windows 10 Version 1511 for 32-bit Systems
Windows 10 Version 1511 for x64-based Systems
Windows 10 Version 1607 for 32-bit Systems
Windows 10 Version 1607 for x64-based Systems
Windows 10 Version 1703 for 32-bit Systems
Windows 10 Version 1703 for x64-based Systems
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2008 for 32-bit Systems Service Pack 2
(Server Core installation)
Windows Server 2008 for Itanium-Based Systems Service Pack 2
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for x64-based Systems Service Pack 2
(Server Core installation)
Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1
(Server Core installation)
Windows Server 2012
Windows Server 2012 (Server Core installation)
Windows Server 2012 R2
Windows Server 2012 R2 (Server Core installation)
Windows Server 2016
Windows Server 2016 (Server Core installation)

Important Security Updates
============================

Microsoft SharePoint Server 2010 Service Pack 2
Microsoft SQL Server 2012 for 32-bit Systems Service Pack 3
Microsoft SQL Server 2012 for 32-bit Systems Service Pack 3 (CU)
Microsoft SQL Server 2012 for x64-based Systems Service Pack 3
Microsoft SQL Server 2012 for x64-based Systems Service Pack 3 (CU)
Microsoft SQL Server 2014 Service Pack 1 for 32-bit Systems
Microsoft SQL Server 2014 Service Pack 1 for 32-bit Systems (CU)
Microsoft SQL Server 2014 Service Pack 1 for x64-based Systems
Microsoft SQL Server 2014 Service Pack 1 for x64-based Systems (CU)
Microsoft SQL Server 2014 Service Pack 2 for 32-bit Systems
Microsoft SQL Server 2014 Service Pack 2 for 32-bit Systems (CU)
Microsoft SQL Server 2014 Service Pack 2 for x64-based Systems
Microsoft SQL Server 2014 Service Pack 2 for x64-based Systems (CU)
Microsoft SQL Server 2016 for x64-based Systems
Microsoft SQL Server 2016 for x64-based Systems (CU)
Microsoft SQL Server 2016 for x64-based Systems Service Pack 1
Microsoft SQL Server 2016 for x64-based Systems Service Pack 1 (CU)

Moderate Security Updates
============================

Internet Explorer 10

Revised CVEs

Microsoft has also revised the following security bulletins.

CVE-2017-0071

– Title: CVE-2017-0071 | Scripting Engine Memory Corruption
Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance
– Reason for Revision: To comprehensively address CVE-2017-0071,
Microsoft released the July security updates for all versions of
Windows 10. Note that Windows 10 for 32-bit Systems, Windows 10
for x64-based Systems, Windows 10 Version 1703 for 32-bit Systems,
and Windows 10 Version 1703 for x64-based Systems have been added
to the Affected Products table as they are also affected by this
vulnerability. Microsoft recommends that customers who have not
already done so install the July 2017 security updates to be
fully protected from this vulnerability.
– Originally posted: March 14, 2017
– Updated: August 8, 2017
– CVE Severity Rating: Critical
– Version: 2.0

CVE-2017-0228

– Title: CVE-2017-0228| Scripting Engine Memory Corruption
Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance
– Reason for Revision: To comprehensively address CVE-2017-0228,
Microsoft has released August security updates for Internet
Explorer 11 on affected editions of Windows 8.1, Windows Server
2012 R2, Windows 8.1 RT, Windows 10, Windows 10 Version 1511,
Windows 10 Version 1607, and Windows 10 Version 1703; and for
Microsoft Edge on affected editions of Windows 10, Windows 10
Version 1511, Windows 10 Version 1607, and Windows 10 Version 1703.
Microsoft strongly recommends that customers install the updates
to be fully protected from the vulnerability. Customers whose
systems are configured to receive automatic updates do not need
to take any further action.
– Originally posted: May 9, 2017
– Updated: August 8, 2017
– CVE Severity Rating: Critical
– Version: 2.0

CVE-2017-0299

– Title: CVE-2017-0299 | Windows Kernel Information Disclosure
Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance
– Reason for Revision: To comprehensively address CVE-2017-0299,
Microsoft has released August security updates for all affected
editions of Microsoft Windows. Microsoft strongly recommends that
customers install the updates to be fully protected from the
vulnerability. Customers whose systems are configured to receive
automatic updates do not need to take any further action.
– Originally posted: June 13, 2017
– Updated: August 8, 2017
– CVE Severity Rating: Important
– Version: 5.0

Security Bulletin Revision Information:
=====================

MS17-007

– Title: Cumulative Security Update for Microsoft Edge (4013071)
https://technet.microsoft.com/library/security/ms17-007.aspx
– Reason for Revision: To comprehensively address CVE-2017-0071,
Microsoft released the July security updates for all versions of
Windows 10. Note that Windows 10 for 32-bit Systems, Windows 10
for x64-based Systems, Windows 10 Version 1703 for 32-bit Systems,
and Windows 10 Version 1703 for x64-based Systems have been added
to the Affected Products table as they are also affected by this
vulnerability. Microsoft recommends that customers who have not
already done so install the July 2017 security updates to be fully
protected from this vulnerability.
– Originally posted: March 14, 2017
– Updated: August 8, 2017
– Bulletin Severity Rating: Critical
– Version: 2.0

MS17-MAR

– Title: Microsoft Security Bulletin Summary for March 2017
https://technet.microsoft.com/library/security/ms17-MAR.aspx
– Reason for Revision: For MS17-007, to comprehensively address
CVE-2017-0071, Microsoft released the July security updates for
all versions of Windows 10. Note that Windows 10 for 32-bit Systems,
Windows 10 for x64-based Systems, Windows 10 Version 1703 for 32-bit
Systems, and Windows 10 Version 1703 for x64-based Systems have been
added to the Affected Products table as they are also affected by
this vulnerability. Microsoft recommends that customers who have not
already done so install the July 2017 security updates to be fully
protected from this vulnerability.
– Originally posted: March 14, 2017
– Updated: August 8, 2017
– Bulletin Severity Rating: N/A
– Version: 4.0

Similar articles:
Microsoft August 2017 Patchday Summary
Windows 10 V1703: Update KB4032188 (July 31, 2017)
Windows 10: Critical Updates KB4035631 and KB4035632
Windows 10: August 2017 Updates KB4038220, KB4034674, KB4034658, KB4034660
Patchday August 2017: Updates for Windows 7/8.1
Further Microsoft Updates August 8, 2017
Microsoft Office: Non security updates August 1, 2017
Microsoft Office Security Updates (August 8, 2017)
Flash Player Update 26.0.0.151 (August 8, 2017)
Microsoft Office Security Updates (August 8, 2017)


Advertising

This entry was posted in Update, Windows and tagged , , , . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *