{"id":249824,"date":"2021-02-19T08:16:56","date_gmt":"2021-02-19T07:16:56","guid":{"rendered":"https:\/\/www.borncity.com\/blog\/?p=249824"},"modified":"2021-02-19T09:18:21","modified_gmt":"2021-02-19T08:18:21","slug":"microsoft-security-update-releases-17-feb-2021","status":"publish","type":"post","link":"https:\/\/borncity.com\/blog\/2021\/02\/19\/microsoft-security-update-releases-17-feb-2021\/","title":{"rendered":"Microsoft Security Update Releases (17. Feb. 2021)"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline;\" src=\"https:\/\/borncity.com\/blog\/wp-content\/uploads\/2015\/01\/Schutz.jpg\" width=\"40\" height=\"47\" align=\"left\" \/>[<a href=\"https:\/\/borncity.com\/win\/2021\/02\/19\/microsoft-security-update-releases-17-feb-2021\/\" target=\"_blank\" rel=\"noopener\">English<\/a>]Kleiner Nachtrag von dieser Woche: Microsoft hat eine Zusammenfassung ge\u00e4nderter Sicherheitsbeschreibungen f\u00fcr Excel RCE-Schwachstellen ver\u00f6ffentlicht und weist zudem auf revidierte Servicing Stack Updates hin. Hier ein kurzer \u00dcberblick \u00fcber die Info, die ich am 18.2.2021 per Mail bekommen habe.<\/p>\n<p><!--more--><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/vg09.met.vgwort.de\/na\/0a56cd136d7744b6b8fec2f58b6acf48\" alt=\"\" width=\"1\" height=\"1\" \/>**********************************************************************<br \/>\nTitle: Microsoft Security Update Releases Issued: February 17, 2021<br \/>\n**********************************************************************<br \/>\nSummary<br \/>\n=======<br \/>\nThe following CVEs and advisory have undergone a major revision increment:<\/p>\n<p>* CVE-2021-24067<br \/>\n* CVE-2021-24069<br \/>\n* ADV990001<\/p>\n<h2>Microsoft Excel RCE-Schwachstellen<\/h2>\n<p>F\u00fcr Microsoft Excel wurden zum 9. Februar 2021 zwei Remote Code Execution-Schwachstellen durch Sicherheitsupdates beseitigt (ich hatte die Patches im Beitrag <a href=\"https:\/\/borncity.com\/blog\/2021\/02\/11\/patchday-microsoft-office-updates-9-februar-2021\/\">Patchday Microsoft Office Updates (9. Februar 2021<\/a> aufgelistet). Hinweise auf die RCE-Schwachstellen gab es im Beitrag <a href=\"https:\/\/borncity.com\/blog\/2021\/02\/13\/windows-office-patchday-nachlese-februar-2021\/\">Windows\/Office: Patchday-Nachlese Februar 2021<\/a>. In den dem <em>Microsoft Security Update Releases<\/em>\u00a0 vom 17. Februar weist Microsoft nachfolgend auf die \u00c4nderung der Sicherheitseinstufung auf <em>Important<\/em> hin.<\/p>\n<pre> - <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2021-24067\" target=\"_blank\" rel=\"noopener\">CVE-2021-24067<\/a> | Microsoft Excel Remote Code Execution Vulnerability\r\n - Version 2.0\r\n - Reason for Revision: Microsoft is announcing the availability of the security \r\n   updates for Microsoft Office for Mac. Customers running affected Mac software\r\n   should install the update for their product to be protected from this vulnerability. \r\n   Customers running other Microsoft Office software do not need to take any action. \r\n   See the Release Notes for more information and download links.\r\n - Originally posted: February 9, 2021\r\n - Updated: February 16, 2021\r\n - Aggregate CVE Severity Rating: Important\r\n\r\n - <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2021-24069\" target=\"_blank\" rel=\"noopener\">CVE-2021-24069<\/a> | Microsoft Excel Remote Code Execution Vulnerability\r\n - Version 2.0\r\n - Reason for Revision: Microsoft is announcing the availability of the security \r\n   updates for Microsoft Office for Mac. Customers running affected Mac software\r\n   should install the update for their product to be protected from this vulnerability. \r\n   Customers running other Microsoft Office software do not need to take any action. \r\n   See the Release Notes for more information and download links.\r\n - Originally posted: February 9, 2021\r\n - Updated: February 16, 2021\r\n - Aggregate CVE Severity Rating: Important\r\n<\/pre>\n<h2>Servicing Stack Update (SSU) Revisionen<\/h2>\n<p>Zudem gab es beim SSU KB5001078 f\u00fcr Windows 10 (13. Nov2020) eine Revision der CVE-Einstufung auf kritisch. Die neuesten SSUs sollten also auf jeden fall installiert werden.<\/p>\n<pre> - <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/ADV990001\" target=\"_blank\" rel=\"noopener\">ADV990001<\/a> | Latest Servicing Stack Updates\r\n - Version 33.0\r\n - Reason for Revision: To address known issues customers might have experienced when\r\n   installing security updates released on February 9, 2021, Microsoft has released\r\n   the following servicing stack updates (SSUs): KB5001078 for all affected editions\r\n   of Windows 10; KB5001079 for all affected editions of Windows 10 Version 1607 and \r\n   Windows Server 2016. Customers must install the new SSU before installing the\r\n   applicable February 9, 2021 security update.\r\n - Originally posted: November 13, 2021\r\n - Updated: February 16, 2021\r\n - Aggregate CVE Severity Rating: Critical<\/pre>\n<p>Obige Revision hat nichts mit den zur\u00fcckgezogenen SSUs f\u00fcr Windows 10 zu tun, die in nachfolgenden Beitr\u00e4gen thematisiert wurden.<\/p>\n<p><strong>\u00c4hnliche Artikel:<\/strong><br \/>\n<a href=\"https:\/\/borncity.com\/blog\/2021\/02\/13\/fix-fr-windows-10-server-1607-update-hnger-bei-24-durch-ssu-kb4601392\/\">Fix f\u00fcr Windows 10\/Server 1607 Update-H\u00e4nger bei 24 % durch SSU KB4601392<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/blog\/2021\/02\/18\/windows-10-ssu-kb4601390-wegen-problemen-durch-kb5001079-ersetzt\/\">Windows 10: SSU KB4601390 wegen Problemen durch KB5001079 ersetzt<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>[English]Kleiner Nachtrag von dieser Woche: Microsoft hat eine Zusammenfassung ge\u00e4nderter Sicherheitsbeschreibungen f\u00fcr Excel RCE-Schwachstellen ver\u00f6ffentlicht und weist zudem auf revidierte Servicing Stack Updates hin. Hier ein kurzer \u00dcberblick \u00fcber die Info, die ich am 18.2.2021 per Mail bekommen habe.<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[270,426,185,3694],"tags":[3548,8225,4328,8232,3288],"class_list":["post-249824","post","type-post","status-publish","format-standard","hentry","category-office","category-sicherheit","category-update","category-windows-10","tag-excel","tag-patchday-2-2021","tag-sicherheit","tag-ssu","tag-windows-en"],"_links":{"self":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/249824","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/comments?post=249824"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/249824\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/media?parent=249824"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/categories?post=249824"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/tags?post=249824"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}