\nTitle: Microsoft Security Update
\nIssued: December 14, 2021
\n********************************************************************<\/p>\n
Microsoft hat zum 14. und 16. Dezember einige Security Update-Revisions zu Schwachstellen ver\u00f6ffentlicht. Ich stelle die betreffenden Informationen einfach als unkommentierten Nachtrag im Blog zur Information ein.<\/p>\n
<\/p>\n
********************************************************************
\nTitle: Microsoft Security Update Revisions
\nIssued: December 14, 2021
\n********************************************************************<\/p>\n
Summary
\n=======<\/p>\n
The following CVEs have undergone revision increments.
\n====================================================================<\/p>\n
* CVE-2019-0887
\n* CVE-2020-0655
\n* CVE-2021-1669
\n* CVE-2021-24084<\/p>\n
– CVE-2019-0887<\/a> | Remote Desktop Services Remote Code Execution Vulnerability – CVE-2020-0655<\/a> | Remote Desktop Services Remote Code Execution Vulnerability – CVE-2021-1669<\/a> | Windows Remote Desktop Security Feature Bypass Vulnerability – CVE-2021-24084<\/a> | Windows Mobile Device Management Information Disclosure Vulnerability ******************************************************************** Summary The following CVE has been published to the Security Update Guide. * CVE-2021-44228<\/p>\n – CVE-2021-44228<\/a> | Apache Log4j Remote Code Execution Vulnerability The following CVEs have undergone revision increments. * CVE-2021-43236 – CVE-2021-43236<\/a> | Microsoft Message Queuing Information Disclosure Vulnerability – CVE-2021-43883<\/a> | Windows Installer Elevation of Privilege Vulnerability
\n– Version: 2.0
\n– Reason for Revision: The following revisions have been made: 1) In the Security
\nUpdates table, added Windows 11 for x64-based Systems, Windows 11 for ARM64-based
\nSystems, Windows Server 2022, and Windows Server 2022 (Server Core installation)
\nas these versions of Windows are affected by this vulnerability. Customers running
\nWindows 11 or Windows Server 2022 should install the December 2021 security updates
\nto be protected from this vulnerability. 2) Added an acknowledgement.
\n– Originally posted: July 9, 2019
\n– Updated: December 14, 2021
\n– Aggregate CVE Severity Rating: Important<\/p>\n
\n– Version: 2.0
\n– Reason for Revision: The following revisions have been made: 1) In the Security
\nUpdates table, added Windows 11 for x64-based Systems, Windows 11 for ARM64-based
\nSystems, Windows Server 2022, and Windows Server 2022 (Server Core installation)
\nas these versions of Windows are affected by this vulnerability. Customers running
\nWindows 11 or Windows Server 2022 should install the December 2021 security updates
\nto be protected from this vulnerability. 2) Added an acknowledgement.
\n– Originally posted: February 11, 2020
\n– Updated: December 14, 2021
\n– Aggregate CVE Severity Rating: Important<\/p>\n
\n– Version: 2.0
\n– Reason for Revision: The following revisions have been made: 1) In the Security
\nUpdates table, added Microsoft Remote Desktop for iOS and Microsoft Remote Desktop
\nfor Mac as these versions are affected by CVE-2021-1669. 2) New updates are available
\nthat comprehensively address this vulnerability for the following: Microsoft Remote
\nDesktop, Microsoft Remote Desktop for Android, and Remote Desktop client for Windows
\nDesktop. Customers running any of these versions of Remote Desktop should check for
\nupdates and ensure that they have the most recent update installed. Links to the
\nupdates on the respective app stores are listed in the Security Updates table.
\n– Originally posted: January 12, 2021
\n– Updated: December 14, 2021
\n– Aggregate CVE Severity Rating: Important<\/p>\n
\n– Version: 2.0
\n– Reason for Revision: To comprehensively address CVE-2021-24084, Microsoft has released
\nDecember 2021 security updates for all supported editions of Microsoft Windows.
\nMicrosoft strongly recommends that customers install the updates to be fully protected
\nfrom the vulnerability. Customers whose systems are configured to receive automatic
\nupdates do not need to take any further action.
\n– Originally posted: February 9, 2021
\n– Updated: December 14, 2021
\n– Aggregate CVE Severity Rating: Important<\/p>\n
\nTitle: Microsoft Security Update Revisions
\nIssued: December 16, 2021
\n********************************************************************<\/p>\n
\n=======<\/p>\n
\n====================================================================<\/p>\n
\n– Version: 1.0
\n– Reason for Revision: Information published.
\n– Originally posted: December 16, 2021
\n– Updated: N\/A
\n– Aggregate CVE Severity Rating: Important<\/p>\n
\n======================================================================================<\/p>\n
\n* CVE-2021-43883
\n* CVE-2021-43893
\n* CVE-2021-43905<\/p>\n
\n– Version: 1.1
\n– Reason for Revision: Updated FAQ information. This is an informational change only.
\n– Originally posted: December 14, 2021
\n– Updated: December 16, 2021
\n– Aggregate CVE Severity Rating: Important<\/p>\n
\n– Version: 1.1
\n– Reason for Revision: Corrected the Download and Article links in the Affected
\nProducts table. This is an informational change only.
\n– Originally posted: December 14, 2021
\n– Updated: December 16, 2021
\n– Aggregate CVE Severity Rating: Important<\/p>\n