FYI: Microsoft Security Advisory Notification (January 5, 2018)

Sicherheit[German]Beside the revised Security Update Advisory, mentioned within the blog post PSA: Microsoft Security Update Releases January 5, 2018, Microsoft released also a 2nd Security Advisory Notification, detailling security revisions related to 'speculative execution side-channel' mitigation.


Advertising

Microsoft Security Advisory Notification (January 5, 2018)

Security Advisories Released or Updated Today

* Microsoft Security Advisory ADV180002

– Title: Guidance to mitigate speculative execution side-channel vulnerabilities
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180002
– Reason for Revision: The following updates have been made: 

Revised the Affected Products table to include Windows 10 Version 1709 for x64-based Systems because the update provides mitigations for ADV180002.

Corrected the security update numbers for the 2016 and 2017 SQL Server Cumulative Updates.

Removed Windows Server 2012 and Windows Server 2012 (Server Core installation) from the Affected Products table because there are no mitigations available for  ADV180002 for these products.

Revised the Affected Products table to include Monthly Rollup updates for Windows 7 and Windows Server 2008 R2. Customers who install monthly rollups should install these updates to receive the mitigations against the vulnerabilities discussed in this advisory.

In the Recommended Actions section, added information for Surface customers.

Added an FAQ to explain why Windows Server 2008 and Windows Server 2012 will not receive mitigations for these vulnerabilities.

Added an FAQ to explain the protection against these vulnerabilties for customers using x86 architecture. 

– Originally posted: January 3, 2018
– Updated: January 5, 2018
– Version: 3.0


Advertising

This entry was posted in Security, Windows and tagged , , . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: Please note the rules for commenting on the blog (first comments and linked posts end up in moderation, I release them every few hours, I rigorously delete SEO posts/SPAM).