{"id":226873,"date":"2020-01-14T22:26:27","date_gmt":"2020-01-14T21:26:27","guid":{"rendered":"https:\/\/www.borncity.com\/blog\/?p=226873"},"modified":"2022-08-22T10:17:34","modified_gmt":"2022-08-22T08:17:34","slug":"microsoft-security-update-summary-14-januar-2020","status":"publish","type":"post","link":"https:\/\/borncity.com\/blog\/2020\/01\/14\/microsoft-security-update-summary-14-januar-2020\/","title":{"rendered":"Microsoft Security Update Summary (14. Januar 2020)"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline; border-width: 0px;\" title=\"Update\" src=\"https:\/\/borncity.com\/blog\/wp-content\/uploads\/2015\/02\/Update.jpg\" alt=\"Windows Update\" width=\"54\" height=\"54\" align=\"left\" border=\"0\" \/>[<a href=\"https:\/\/borncity.com\/win\/2020\/01\/14\/microsoft-security-update-summary-january-14-2020\/\" target=\"_blank\" rel=\"noopener noreferrer\">English<\/a>]Zum 14. Januar 2020 hat Microsoft Sicherheitsupdates f\u00fcr Windows-Clients und \u2013Server, f\u00fcr Office etc. freigegeben. Hier ein kompakter \u00dcberblick \u00fcber diese Updates.<\/p>\n<p><!--more--><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/vg07.met.vgwort.de\/na\/ca3ee2ca9efb4b028484d521a0afcce5\" alt=\"\" width=\"1\" height=\"1\" \/>Eine Liste der Updates findet sich <a href=\"https:\/\/web.archive.org\/web\/20201101051813\/https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance\" target=\"_blank\" rel=\"noopener noreferrer\">auf dieser Microsoft-Seite<\/a>. Details zu den Update-Paketen f\u00fcr Windows, Office etc. gibt es in separaten Blog-Beitr\u00e4gen.<\/p>\n<h2>Servicing Stack Updates<\/h2>\n<p>Microsoft ver\u00f6ffentlicht inzwischen eine \u00dcbersicht \u00fcber alle aktuellen Servicing Stack Updates (SSUs). Die Liste der SSUs findet sich unter <a href=\"https:\/\/web.archive.org\/web\/20201101085445\/https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance\/advisory\/ADV990001\" target=\"_blank\" rel=\"noopener noreferrer\">ADV990001<\/a> (ist aber nicht immer aktuell).<\/p>\n<h2>Anmerkungen zu Updates<\/h2>\n<p>Alle Windows 10 Updates sind kumulativ. Das monatliche Update zum Patchday enth\u00e4lt alle Sicherheitsfixes f\u00fcr Windows 10. Zudem sind alle nicht sicherheitsrelevanten Fixes bis zum Patchday enthalten. Zus\u00e4tzlich zu den Sicherheitspatches f\u00fcr die Schwachstellen enthalten die Updates sogenannte 'defense-in-depth updates', um die Sicherheit zu verbessern.<\/p>\n<p>Die Updates lassen sich auch per <a href=\"https:\/\/www.catalog.update.microsoft.com\/Home.aspx\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a> herunterladen. Die Updates f\u00fcr Windows RT 8.1 und Microsoft Office RT sind nur \u00fcber Windows Update erh\u00e4ltlich.<\/p>\n<p>Informationen zum Support-Zeitraum f\u00fcr Windows 10 finden sich im <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/13853\/windows-lifecycle-fact-sheet\" target=\"_blank\" rel=\"noopener noreferrer\">Windows Lifecycle Facts Sheet<\/a>. Ab Mai 2019 ist der Internet Explorer 11 auf Windows Server 2012 verf\u00fcgbar. Diese Konfiguration ist nur \u00fcber das kumulative Update f\u00fcr den IE verf\u00fcgbar.<\/p>\n<p>F\u00fcr Windows 7 SP1 und Windows Server 2008\/R2 wurde am 8. Oktober 2019 ein aktualisiertes SHA-2 Code-Signing Update KB4474419 freigegeben (siehe <a href=\"https:\/\/www.askwoody.com\/forums\/topic\/october-2019-patch-tuesday-watch-out\/#post-1977137\" target=\"_blank\" rel=\"noopener noreferrer\">diesen Kommentar<\/a> bei askwoody.com). Am 14.1.2020 endet der Extended Support f\u00fcr diese Betriebssysteme \u2013 und weitere Updates sind nur noch f\u00fcr Teilnehmer am ESU-Programm erh\u00e4ltlich.<\/p>\n<p>Die Januar 2020-Sicherheitsupdates decken 49 CVE-Schwachstellen in Microsoft Windows, Internet Explorer (IE), Office- und Officedienste und Webanwendungen, ASP.NET, .NET Core, .NET Framework, Modern Apps und Microsoft Dynamics ab. Von diesen Schwachstellen sind mit dem Schweregrad acht als Kritisch und 41 als Wichtig aufgelistet. Laut Microsoft ist zum Zeitpunkt der Ver\u00f6ffentlichung keine dieser Schwachstellen \u00f6ffentlich bekannt oder wird aktiv angegriffen. Es gab jedoch einige Berichte \u00fcber einen IE-Bug, der aktiv ausgenutzt, aber bisher nicht durch ein Update behoben wird. Eine Liste findet sich im <a href=\"https:\/\/www.thezdi.com\/blog\/2020\/1\/14\/the-january-2020-security-update-review\" target=\"_blank\" rel=\"noopener noreferrer\">Blog der Zero-Day-Initiative<\/a> \u2013 auch Talos hat <a href=\"https:\/\/blog.talosintelligence.com\/2020\/01\/microsoft-patch-tuesday-jan-2020.html\" target=\"_blank\" rel=\"noopener noreferrer\">hier eine Zusammenfassung<\/a> ver\u00f6ffentlicht (Details werde ich separat in Blog-Beitr\u00e4gen behandeln).<\/p>\n<h2>Critical Security Updates<\/h2>\n<p>Internet Explorer 11<br \/>\nWindows 10 for 32-bit Systems<br \/>\nWindows 10 for x64-based Systems<br \/>\nWindows 10 Version 1607 for 32-bit Systems<br \/>\nWindows 10 Version 1607 for x64-based Systems<br \/>\nWindows 10 Version 1709 for 32-bit Systems<br \/>\nWindows 10 Version 1709 for ARM64-based Systems<br \/>\nWindows 10 Version 1709 for x64-based Systems<br \/>\nWindows 10 Version 1803 for 32-bit Systems<br \/>\nWindows 10 Version 1803 for ARM64-based Systems<br \/>\nWindows 10 Version 1803 for x64-based Systems<br \/>\nWindows 10 Version 1809 for 32-bit Systems<br \/>\nWindows 10 Version 1809 for ARM64-based Systems<br \/>\nWindows 10 Version 1809 for x64-based Systems<br \/>\nWindows 10 Version 1903 for 32-bit Systems<br \/>\nWindows 10 Version 1903 for ARM64-based Systems<br \/>\nWindows 10 Version 1903 for x64-based Systems<br \/>\nWindows 10 Version 1909 for 32-bit Systems<br \/>\nWindows 10 Version 1909 for ARM64-based Systems<br \/>\nWindows 10 Version 1909 for x64-based Systems<br \/>\nWindows 7 for 32-bit Systems Service Pack 1<br \/>\nWindows 7 for x64-based Systems Service Pack 1<br \/>\nWindows 8.1 for 32-bit systems<br \/>\nWindows 8.1 for x64-based systems<br \/>\nWindows RT 8.1<br \/>\nWindows Server 2008 for 32-bit Systems Service Pack 2<br \/>\nWindows Server 2008 for 32-bit Systems Service Pack 2 (Server Core<br \/>\ninstallation)<br \/>\nWindows Server 2008 for Itanium-Based Systems Service Pack 2<br \/>\nWindows Server 2008 for x64-based Systems Service Pack 2<br \/>\nWindows Server 2008 for x64-based Systems Service Pack 2 (Server Core<br \/>\ninstallation)<br \/>\nWindows Server 2008 R2 for Itanium-Based Systems Service Pack 1<br \/>\nWindows Server 2008 R2 for x64-based Systems Service Pack 1<br \/>\nWindows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core<br \/>\ninstallation)<br \/>\nWindows Server 2012<br \/>\nWindows Server 2012 (Server Core installation)<br \/>\nWindows Server 2012 R2<br \/>\nWindows Server 2012 R2 (Server Core installation)<br \/>\nWindows Server 2016<br \/>\nWindows Server 2016 (Server Core installation)<br \/>\nWindows Server 2019<br \/>\nWindows Server 2019 (Server Core installation)<br \/>\nWindows Server, version 1803\u00a0 (Server Core Installation)<br \/>\nWindows Server, version 1903 (Server Core installation)<br \/>\nWindows Server, version 1909 (Server Core installation)<br \/>\n.NET Core 3.0<br \/>\n.NET Core 3.1<br \/>\nASP.NET Core 2.1<br \/>\nASP.NET Core 3.0<br \/>\nASP.NET Core 3.1<br \/>\nMicrosoft .NET Framework 3.0 Service Pack 2<br \/>\nMicrosoft .NET Framework 3.5<br \/>\nMicrosoft .NET Framework 3.5 AND 4.6.2\/4.7\/4.7.1\/4.7.2<br \/>\nMicrosoft .NET Framework 3.5 AND 4.7.1\/4.7.2<br \/>\nMicrosoft .NET Framework 3.5 AND 4.7.2<br \/>\nMicrosoft .NET Framework 3.5 AND 4.8<br \/>\nMicrosoft .NET Framework 3.5.1<br \/>\nMicrosoft .NET Framework 4.5.2<br \/>\nMicrosoft .NET Framework 4.6<br \/>\nMicrosoft .NET Framework 4.6.2\/4.7\/4.7.1\/4.7.2<br \/>\nMicrosoft .NET Framework 4.6\/4.6.1\/4.6.2\/4.7\/4.7.1\/4.7.2<br \/>\nMicrosoft .NET Framework 4.8<\/p>\n<h2>Important Security Updates<\/h2>\n<p>Dynamics 365 Field Service (on-premises) v7 series<br \/>\nMicrosoft Excel 2010 Service Pack 2 (32-bit editions)<br \/>\nMicrosoft Excel 2010 Service Pack 2 (64-bit editions)<br \/>\nMicrosoft Excel 2013 RT Service Pack 1<br \/>\nMicrosoft Excel 2013 Service Pack 1 (32-bit editions)<br \/>\nMicrosoft Excel 2013 Service Pack 1 (64-bit editions)<br \/>\nMicrosoft Excel 2016 (32-bit edition)<br \/>\nMicrosoft Excel 2016 (64-bit edition)<br \/>\nMicrosoft Office 2010 Service Pack 2 (32-bit editions)<br \/>\nMicrosoft Office 2010 Service Pack 2 (64-bit editions)<br \/>\nMicrosoft Office 2013 RT Service Pack 1<br \/>\nMicrosoft Office 2013 Service Pack 1 (32-bit editions)<br \/>\nMicrosoft Office 2013 Service Pack 1 (64-bit editions)<br \/>\nMicrosoft Office 2016 (32-bit edition)<br \/>\nMicrosoft Office 2016 (64-bit edition)<br \/>\nMicrosoft Office 2016 for Mac<br \/>\nMicrosoft Office 2019 for 32-bit editions<br \/>\nMicrosoft Office 2019 for 64-bit editions<br \/>\nMicrosoft Office 2019 for Mac<br \/>\nOffice 365 ProPlus for 32-bit Systems<br \/>\nOffice 365 ProPlus for 64-bit Systems<br \/>\nOffice Online Server<br \/>\nOneDrive for Android<\/p>\n<h2>Low Security Updates<\/h2>\n<p>Internet Explorer 9<br \/>\nInternet Explorer 10<\/p>\n<p><strong>\u00c4hnliche Artikel:<\/strong><br \/>\n<a href=\"https:\/\/borncity.com\/blog\/2020\/01\/08\/microsoft-office-patchday-7-januar-2020\/\">Microsoft Office Patchday (7. Januar 2020)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/blog\/2020\/01\/14\/microsoft-security-update-summary-14-januar-2020\/\">Microsoft Security Update Summary (14. Januar 2020<\/a>)<br \/>\n<a href=\"https:\/\/borncity.com\/blog\/2020\/01\/15\/patchday-updates-fr-windows-7-8-1-server-14-januar-2020\/\" rel=\"bookmark\">Patchday: Updates f\u00fcr Windows 7\/8.1\/Server (14. Januar 2020)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/blog\/2020\/01\/15\/patchday-windows-10-updates-14-januar-2020\/\">Patchday Windows 10-Updates (14. Januar 2020)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/blog\/2020\/01\/16\/patchday-microsoft-office-updates-14-januar-2020\/\" rel=\"bookmark\">Patchday Microsoft Office Updates (14. Januar 2020)<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>[English]Zum 14. Januar 2020 hat Microsoft Sicherheitsupdates f\u00fcr Windows-Clients und \u2013Server, f\u00fcr Office etc. freigegeben. Hier ein kompakter \u00dcberblick \u00fcber diese Updates.<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[270,426,185,3694,2557],"tags":[7854,4322,1229,4328,3836,4315,3288],"class_list":["post-226873","post","type-post","status-publish","format-standard","hentry","category-office","category-sicherheit","category-update","category-windows-10","category-windows-server","tag-14-1-2020","tag-office","tag-patchday","tag-sicherheit","tag-software","tag-update","tag-windows-en"],"_links":{"self":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/226873","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/comments?post=226873"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/226873\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/media?parent=226873"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/categories?post=226873"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/tags?post=226873"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}