{"id":210424,"date":"2018-10-10T00:05:00","date_gmt":"2018-10-09T22:05:00","guid":{"rendered":"https:\/\/www.borncity.com\/blog\/?p=210424"},"modified":"2023-06-01T01:02:05","modified_gmt":"2023-05-31T23:02:05","slug":"microsoft-security-update-summary-9-oktober-2018","status":"publish","type":"post","link":"https:\/\/borncity.com\/blog\/2018\/10\/10\/microsoft-security-update-summary-9-oktober-2018\/","title":{"rendered":"Microsoft Security Update Summary 9. Oktober 2018"},"content":{"rendered":"

\"Windows[English]Zum 9. Oktober 2018 hat Microsoft wieder zahlreiche Sicherheitsupdates f\u00fcr Windows-Clients und \u2013Server, f\u00fcr Office etc. freigegeben. Hier ein kompakter \u00dcberblick.<\/p>\n

<\/p>\n

\"\"Die Liste wurde auf seclists.org ver\u00f6ffentlicht<\/a>. Eine weitere Liste der Updates findet sich auf dieser Microsoft-Seite<\/a>. Details zu den Update-Paketen f\u00fcr Windows, Office etc. gibt es in separaten Blog-Beitr\u00e4gen.<\/p>\n

********************************************************************
\nMicrosoft Security Update Summary for October 9, 2018
\nIssued: October 9, 2018
\n********************************************************************<\/p>\n

This summary lists security updates released for October 9, 2018.<\/p>\n

Complete information for the October 2018 security update release can
\nBe found at <https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance<\/a>>.<\/p>\n

Please note the following information regarding the security updates:<\/p>\n

* Customers running Windows 7 or Windows Server 2008 R2 need to
\nensure they have Servicing Stack Update (SSU) 3177467 installed
\nbefore installing the October 2018 security updates, to avoid a
\nfailure to install. See [Microsoft Knowledge Base Article
\n3177467](https:\/\/support.microsoft.com\/en-us\/help\/3177467) for more
\ninformation about this SSU.
\n* Windows 10 updates are cumulative. The monthly security release
\nincludes all security fixes for vulnerabilities that affect Windows 10,
\nin addition to non-security updates. The updates are available via
\nthe [Microsoft Update
\nCatalog](http:\/\/catalog.update.microsoft.com\/v7\/site\/Home.aspx)<\/a>.
\n* Starting in March 2017, a delta package will be available on the
\nMicrosoft Update Catalog for Windows 10 version 1607 and newer. This
\ndelta package contains just the delta changes between the previous
\nmonth and the current release.
\n* Updates for Windows RT 8.1 and Microsoft Office RT software are
\nonly available via [Windows
\nUpdate](http:\/\/go.microsoft.com\/fwlink\/?LinkId=21130)<\/a>.
\n* For information on lifecycle and support dates for Windows 10
\noperating systems, please see [Windows Lifecycle Facts
\nSheet](https:\/\/support.microsoft.com\/en-us\/help\/13853\/windows-<\/a>
\nlifecycle-fact-sheet).
\n* In addition to security changes for the vulnerabilities, updates
\ninclude defense-in-depth updates to help improve security-related
\nfeatures.<\/p>\n

Critical Security Updates<\/h2>\n

ChakraCore
\nInternet Explorer 11
\nMicrosoft Edge
\nWindows Server 2008 for 32-bit Systems Service Pack 2
\nWindows Server 2008 for 32-bit Systems Service Pack 2 (Server Core
\ninstallation)
\nWindows Server 2008 for Itanium-Based Systems Service Pack 2
\nWindows Server 2008 for x64-based Systems Service Pack 2
\nWindows Server 2008 for x64-based Systems Service Pack 2 (Server Core
\ninstallation)
\nWindows 7 for 32-bit Systems Service Pack 1
\nWindows 7 for x64-based Systems Service Pack 1
\nWindows Server 2008 R2 for Itanium-Based Systems Service Pack 1
\nWindows Server 2008 R2 for x64-based Systems Service Pack 1
\nWindows Server 2008 R2 for x64-based Systems Service Pack 1
\nServer Core installation)
\nWindows Server 2012
\nWindows Server 2012 (Server Core installation)
\nWindows 8.1 for 32-bit systems
\nWindows 8.1 for x64-based systems
\nWindows RT 8.1
\nWindows Server 2012 R2
\nWindows Server 2012 R2 (Server Core installation)
\nWindows 10 for 32-bit Systems
\nWindows 10 for x64-based Systems
\nWindows 10 Version 1607 for 32-bit Systems
\nWindows 10 Version 1607 for x64-based Systems
\nWindows 10 Version 1703 for 32-bit Systems
\nWindows 10 Version 1703 for x64-based Systems
\nWindows 10 version 1709 for 32-bit Systems
\nWindows 10 version 1709 for x64-based Systems
\nWindows 10 Version 1803 for 32-bit Systems
\nWindows 10 Version 1803 for x64-based Systems
\nWindows 10 Version 1809 for 32-bit Systems
\nWindows 10 Version 1809 for x64-based Systems
\nWindows Server 2016
\nWindows Server 2016 (Server Core installation)
\nWindows Server, version 1709 (Server Core Installation)
\nWindows Server, version 1803 (Server Core Installation)
\nWindows Server 2019
\nWindows Server 2019 (Server Core installation)<\/p>\n

 <\/p>\n

Important Security Updates<\/h2>\n

Hub Device Client SDK for Azure IoT
\nAzure IoT Edge
\nMicrosoft Office 2010 Service Pack 2 (32-bit editions)
\nMicrosoft Office 2010 Service Pack 2 (64-bit editions)
\nMicrosoft Office 2013 RT Service Pack 1
\nMicrosoft Office 2013 Service Pack 1 (32-bit editions)
\nMicrosoft Office 2013 Service Pack 1 (64-bit editions)
\nMicrosoft Office 2016 (32-bit edition)
\nMicrosoft Office 2016 (64-bit edition)
\nMicrosoft Office 2016 for Mac
\nMicrosoft Office 2019 for 32-bit editions
\nMicrosoft Office 2019 for 64-bit editions
\nOffice 365 ProPlus for 32-bit Systems
\nOffice 365 ProPlus for 64-bit Systems
\nMicrosoft Excel 2010 Service Pack 2 (32-bit editions)
\nMicrosoft Excel 2010 Service Pack 2 (64-bit editions)
\nMicrosoft Excel 2013 RT Service Pack 1
\nMicrosoft Excel 2013 Service Pack 1 (32-bit editions)
\nMicrosoft Excel 2013 Service Pack 1 (64-bit editions)
\nMicrosoft Excel 2016 (32-bit edition)
\nMicrosoft Excel 2016 (64-bit edition)
\nMicrosoft Excel Viewer 2007 Service Pack 3
\nMicrosoft Office Word Viewer
\nMicrosoft Office Compatibility Pack Service Pack 3
\nMicrosoft Office Web Apps 2010 Service Pack 2
\nMicrosoft PowerPoint 2010 Service Pack 2 (32-bit editions)
\nMicrosoft PowerPoint 2010 Service Pack 2 (64-bit editions)
\nMicrosoft PowerPoint 2013 RT Service Pack 1
\nMicrosoft PowerPoint 2013 Service Pack 1 (32-bit editions)
\nMicrosoft PowerPoint 2013 Service Pack 1 (64-bit editions)
\nMicrosoft PowerPoint 2016 (32-bit edition)
\nMicrosoft PowerPoint 2016 (64-bit edition)
\nMicrosoft PowerPoint Viewer 2007
\nPowerPoint Viewer 2010 32-bit edition
\nMicrosoft SharePoint Server 2010 Service Pack 2
\nMicrosoft SharePoint Enterprise Server 2013 Service Pack 1
\nMicrosoft SharePoint Enterprise Server 2016
\nMicrosoft Word 2010 Service Pack 2 (32-bit editions)
\nMicrosoft Word 2010 Service Pack 2 (64-bit editions)
\nMicrosoft Word 2013 RT Service Pack 1
\nMicrosoft Word 2013 Service Pack 1 (32-bit editions)
\nMicrosoft Word 2013 Service Pack 1 (64-bit editions)
\nMicrosoft Word 2016 (32-bit edition)
\nMicrosoft Word 2016 (64-bit edition)
\nMicrosoft Exchange Server 2010 Service Pack 3
\nMicrosoft Exchange Server 2013
\nMicrosoft Exchange Server 2013 Cumulative Update 21
\nMicrosoft Exchange Server 2016
\nMicrosoft Exchange Server 2016 Cumulative Update 10
\nSQL Server Management Studio 17.9
\nSQL Server Management Studio 18.0 (Preview 4)<\/p>\n

********************************************************************
\nTitle: Microsoft Security Update Minor Revisions<\/a>
\nIssued: October 9, 2018
\n********************************************************************<\/p>\n

Summary
\n=======<\/p>\n

The following CVE has undergone a minor revision increment:<\/p>\n

* CVE-2018-8531<\/p>\n

Revision Information:
\n=====================<\/p>\n

CVE-2018-8531<\/a>
\nAzure IoT Device Client SDK Memory Corruption
\nVulnerability
\n– Reason for Revision: In the Security Updates table, corrected
\nthe links to the Release Notes and Security Update for Hub Device
\nClient SDK for Azure IoT. This is an informational change only.
\n– Originally posted: October 9, 2018
\n– Updated: October 9, 2018
\n– Aggregate CVE Severity Rating: Important
\n– Version: 1.1<\/p>\n

********************************************************************
\nTitle: Microsoft Security Update Releases<\/a>
\nIssued: October 9, 2018
\n********************************************************************<\/p>\n

Summary
\n=======<\/p>\n

The following CVE been added to the October 2018 Security updates:<\/p>\n

* CVE-2018-8292<\/p>\n

Revision Information:
\n=====================<\/p>\n

– CVE-2018-8292 | .NET Core Information Disclosure Vulnerability
\n– https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance<\/a>
\n– Reason for Revision: Information published. CVE-2018-8292 has
\nbeen added to the October 2018 Security Updates.
\n– Originally posted: October 9, 2018
\n– Aggregate CVE Severity Rating: Important
\n– Version: 1.0<\/p>\n

********************************************************************
\nTitle: Microsoft Security Update Releases<\/a>
\nIssued: October 9, 2018
\n********************************************************************<\/p>\n

Summary
\n=======<\/p>\n

The following bulletin has undergone a major revision increment:<\/p>\n

* MS11-025<\/p>\n

Revision Information:
\n=====================<\/p>\n

https:\/\/docs.microsoft.com\/en-us\/security-updates\/<\/a>
\nSecurityBulletins\/2011\/ms11-025:
\nCVE-2010-3190 | MFC Insecure Library Loading Vulnerability
\n– Reason for Revision: Added Exchange Servers to the Affected
\nProducts table. Customers who have any supported Exchange Server
\ninstalled (Microsoft Exchange Server 2010 Service Pack 3,
\nMicrosoft Exchange Server 2013, Microsoft Exchange Server 2016)
\nshould reinstall KB2565063.
\n– Originally posted: April 12, 2011
\n– Updated: October 9, 2018
\n– Aggregate CVE Severity Rating: Important
\n– Version: 5.0<\/p>\n

\u00c4hnliche Artikel:
\n<\/strong>Adobe Flash Player: Update Version 31.0.0.122
\nMicrosoft Security Update Summary 9. Oktober 2018<\/a>
\nPatchday Windows 10-Updates (9. Oktober 2018)<\/a>
\nPatchday: Updates f\u00fcr Windows 7\/8.1\/Server 9. Okt. 2018<\/a>
\nPatchday Microsoft Office Updates (9. Oktober 2018)<\/a>
\nMicrosoft Patchday: Weitere Updates zum 9. Oktober 2018<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

[English]Zum 9. Oktober 2018 hat Microsoft wieder zahlreiche Sicherheitsupdates f\u00fcr Windows-Clients und \u2013Server, f\u00fcr Office etc. freigegeben. Hier ein kompakter \u00dcberblick.<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[185],"tags":[4315],"class_list":["post-210424","post","type-post","status-publish","format-standard","hentry","category-update","tag-update"],"_links":{"self":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/210424","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/comments?post=210424"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/210424\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/media?parent=210424"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/categories?post=210424"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/tags?post=210424"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}