Kurze Information zum Wochenabschluss. Microsoft hat die Nacht noch eine Security Advisory Notification mit Stand 10. Januar 2018 freigegeben. Diese listet Überarbeitungen von Sicherheitsbeschreibungen auf.
Anzeige
Das Ganze bezieht sich auf Sicherheitshinweise, die am 9. und 10. Januar 2018 veröffentlicht oder aktualisiert wurden.
Security Advisories Released or Updated on January 9 and January 10
* Microsoft Security Advisory ADV170021
Ergänzung um den Hinweis, dass DDE deaktiviert wurde.
– Title: Microsoft Office Defense in Depth Update
– Link ADV170021
– Reason for Revision: ADV170021 has been revised to add support
for disabling the Dynamic Update Exchange protocol (DDE) in all
supported editions of Microsoft Excel.
– Originally posted: December 12, 2017
– Updated: January 9, 2018
– Version: 2.0
Anzeige
* Microsoft Security Advisory ADV180002
Aktualisierung der betroffenen Produkte der Meltdown/Spectre-Angriffe
– Title: Guidance to mitigate speculative execution side-channel
vulnerabilities
– Link ADV180002
– Reason for Revision: Revised the Affected Products table to
include updates for supported editions of Microsoft SQL Server
2008, Microsoft SQL Server 2008, and Microsoft SQL Server 2016
because these updates provide mitigations for ADV180002.
– Originally posted: January 3, 2018
– Updated: January 9, 2018
– Version: 4.0
* Microsoft Security Advisory ADV180002
FAQ zum Dokument hinzugefügt.
– Title: Guidance to mitigate speculative execution side-channel
vulnerabilities
– Link ADV180002
– Reason for Revision: Added FAQs to provide more details about the
following: the vulnerabilities described in this advisory, what
systems are at risk from the vulnerabilities, how customers can
be protected against each specific vulnerability, information for
customers with AMD-based devices.
– Originally posted: January 3, 2018
– Updated: January 10, 2018
– Version: 4.1
Anzeige
