{"id":207193,"date":"2018-08-02T08:07:19","date_gmt":"2018-08-02T06:07:19","guid":{"rendered":"https:\/\/www.borncity.com\/blog\/?p=207193"},"modified":"2022-08-22T10:19:38","modified_gmt":"2022-08-22T08:19:38","slug":"microsoft-security-update-releases-notifications-2-8-2018","status":"publish","type":"post","link":"https:\/\/borncity.com\/blog\/2018\/08\/02\/microsoft-security-update-releases-notifications-2-8-2018\/","title":{"rendered":"Microsoft Security Update Releases\/Notifications (1.8.2018)"},"content":{"rendered":"

[English<\/a>]Zum 1. August 2018 hat Microsoft die Revision-Mitteilungen Microsoft Security Update Releases<\/em> f\u00fcr CVE-2018-8172 und CVE-2018-8202 sowie Microsoft Security Advisory Notification<\/em> (mit Hinweisen zu Spectre-Patches)ver\u00f6ffentlicht. Hier die Details.<\/p>\n

<\/p>\n

********************************************************************
\nTitle: Microsoft Security Update \"\"Releases
\nIssued: August 1, 2018
\n********************************************************************<\/p>\n

Summary
\n=======<\/p>\n

The following CVEs have undergone a major revision increment:<\/p>\n

* CVE-2018-8172
\n* CVE-2018-8202<\/p>\n

Revision Information:
\n=====================<\/p>\n

– CVE-2018-8172 | Visual Studio Remote Code Execution
\nVulnerability
\n– https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance<\/a>
\n– Reason for Revision: Revised the Affected Products table to
\ninclude Expression Blend 3 Service Pack 1 and Expression Blend
\n2 Service Pack 2 because they are also affected by this
\nvulnerability. Microsoft recommends that customers running
\neither of these versions of Expression Blend install the
\nupdate to be fully protected from this vulnerability.
\n– Originally posted: July 10, 2018
\n– Updated: July 31, 2018
\n– Aggregate CVE Severity Rating: Important
\n– Version: 2.0<\/p>\n

– CVE-2018-8202 | .NET Framework Elevation of Privilege
\nVulnerability
\n– https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance<\/a>
\n– Reason for Revision: Microsoft is announcing the release of
\nupdates, available via the Microsoft Update catalog, to resolve
\nknown issues some customers experienced after installing the
\nJuly 2018 security updates for .NET Framework. Microsoft
\nrecommends that customers who experienced application errors as
\ndescribed in KB4345913
\n(https:\/\/support.microsoft.com\/en-us\/help\/4345913) install the
\napplicable Standalone update for your system. Customers running
\nWindow 10 Version 1607 or Windows Server 2016 should install
\nCumulative update 4346877 to resolve application errors. See
\nthe Affected Products table for links to download and install
\nthe updates.
\n– Originally posted: July 10, 2018
\n– Updated: July 31, 2018
\n– Aggregate CVE Severity Rating: Important
\n– Version: 4.0<\/p>\n

\u00dcber den letztgenannten Punkt hatte ich im Beitrag .NET-Framework-Updates 30. Juli 2018 mit Fixes<\/a> berichtet. Das zweite Dokument betrifft Hinweise f\u00fcr die Spectre-Patches:<\/p>\n

********************************************************************
\nTitle: Microsoft Security Advisory Notification
\nIssued: August 1, 2018
\n********************************************************************<\/p>\n

Security Advisories Released or Updated on August 1, 2018
\n===================================================================<\/p>\n

* Microsoft Security Advisory ADV180002<\/p>\n

– Title: Guidance to mitigate speculative execution side-channel
\nvulnerabilities
\n– https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance\/advisory\/ADV180002<\/a>
\n– Reason for Revision: Added FAQ #18 to address a high CPU
\nutilization issue some customers with an AMD-based device are
\nexperiencing after installing the June or July Windows security
\nupdates or after installing a BIOS update.
\n– Originally posted: January 3, 2018
\n– Updated: August 1, 2018
\n– Version: 23.0<\/p>\n

Hier gibt es Probleme (hohe CPU-Auslastung) mit\u00a0Spectre v3a und v4 bei AMD-Prozessoren.<\/p>\n","protected":false},"excerpt":{"rendered":"

[English]Zum 1. August 2018 hat Microsoft die Revision-Mitteilungen Microsoft Security Update Releases f\u00fcr CVE-2018-8172 und CVE-2018-8202 sowie Microsoft Security Advisory Notification (mit Hinweisen zu Spectre-Patches)ver\u00f6ffentlicht. Hier die Details.<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[426,185],"tags":[672,4328,4315],"class_list":["post-207193","post","type-post","status-publish","format-standard","hentry","category-sicherheit","category-update","tag-microsoft","tag-sicherheit","tag-update"],"_links":{"self":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/207193","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/comments?post=207193"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/207193\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/media?parent=207193"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/categories?post=207193"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/tags?post=207193"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}