Patchday: MS Office security updates (February 13, 2018)

[German]On Tuesday, February 13,2018 (Patchday), Microsoft released various security updates for Microsoft Office in addition to Windows updates. Here is the list of updates.

These updates only apply to the MSI Installer version of Microsoft Office. The click-n-run update history is available here and on this Microsoft site. I pulled out the security updates. The non-safety relevant updates from December 2017 are listed in the blog article Microsoft Office Patchday (February 6, 2018).

Microsoft Office 2016

• Office 2016: Description of the security update for Office 2016: February 13, 2018 (KB4011686); fixes several bugs in PowerPoint 2016 and changes regional settings.
• Office 2016: Description of the security update for Office 2016: February 13, 2018 (KB4011143); This security update fixes security vulnerabilities in Microsoft Office that could allow remote code execution when a user opens a specially crafted Office file. For more information about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2018-0853.
• Outlook 2016: Description of the security update for Outlook 2016: February 13, 2018 (KB34011682); This security update fixes security vulnerabilities in Microsoft Office that could allow remote code execution when a user opens a specially crafted Office file. For more information about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2018-0850 and Microsoft Common Vulnerabilities and Exposures CVE-2018-0852. This update fixes also some other errors in Outlook 2016.

Microsoft Office 2013

To install the following updates, Service Pack 1 for Microsoft Office 2013 is required on the Computer.

• Office 2013: Description of the security update for Office 2013: February 13, 2018 (KB3172459); This security update fixes security vulnerabilities in Microsoft Office that could allow remote code execution when a user opens a specially crafted Office file. For more information about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2018-0853.
• Office 2013: Description of the security update for Office 2013: February 13, 2018 (KB4011690); This security update fixes security vulnerabilities in Microsoft Office that could allow remote code execution when a user opens a specially crafted Office file. For more information about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2018-0851. This update contains fixes for PowerPoint.
• Outlook 2013: Description of the security update for Outlook 2013: February 13, 2018 (KB4011697); This security update fixes security vulnerabilities in Microsoft Office that could allow remote code execution when a user opens a specially crafted Office file. For more information about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2018-0850 and Microsoft Common Vulnerabilities and Exposures CVE-2018-0852. This update contains also fixes and improvments.

Office 2010

To apply this security update, the release version of Service Pack 2 für Office 2010 need to be installed.

• Office 2010: Description of the security update for Office 2010: February 13, 2018 (KB4011707); This security update fixes security vulnerabilities in Microsoft Office that could allow remote code execution when a user opens a specially crafted Office file. For more information about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2018-0851.
• Office 2010: Description of the security update for Office 2010: February 13, 2018 (KB3114874); This security update fixes security vulnerabilities in Microsoft Office that could allow remote code execution when a user opens a specially crafted Office file. For more information about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2018-0853.
• Outlook 2010: Description of the security update for Outlook 2010: February 13, 2018 (KB4011711); This security update fixes security vulnerabilities in Microsoft Office that could allow remote code execution when a user opens a specially crafted Office file. For more information about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2018-0850 and Microsoft Common Vulnerabilities and Exposures CVE-2018-0852.

Office 2007

An installed Service Pack 3 for 2007 Microsoft Office Suite is required to apply these updates.

• 2007 Microsoft Office Suite: Description of the security update for 2007 Microsoft Office Suite: February 13, 2018 (KB4011715); This security update fixes security vulnerabilities in Microsoft Office that could allow remote code execution when a user opens a specially crafted Office file. For more information about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2018-0851.
• Outlook 2007: Description of the security update for Outlook 2007: February 13, 2018 (KB4011200); This security update fixes security vulnerabilities in Microsoft Office that could allow remote code execution when a user opens a specially crafted Office file. For more information about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2018-0850 and CVE-2018-0852.

Word Viewer

• Word Viewer: Description of the security update for Word Viewer: February 13, 2018 (KB4011703); This security update fixes security vulnerabilities in Microsoft Office that could allow remote code execution when a user opens a specially crafted Office file. For more information about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2018-0851. An installed Service Pack 3 for 2007 Microsoft Office Suite is required.

SharePoint Server 2016

• SharePoint Enterprise Server 2016: Description of the security update for SharePoint Enterprise Server 2016: February 13, 2018 (KB4011680)

SharePoint Server 2013, Project Server 2013, and SharePoint Foundation 2013

• Project Server 2013: Description of the security update for Project Server 2013: February 13, 2018 (KB4011701)
• Project Server 2013: February 13, 2018, cumulative update for Project Server 2013 (KB4011694)
• SharePoint Enterprise Server 2013: February 13, 2018, update for SharePoint Enterprise Server 2013 (KB4011691)
• SharePoint Enterprise Server 2013: February 13, 2018, cumulative update for SharePoint Enterprise Server 2013 (KB4011696)
• SharePoint Foundation 2013: February 13, 2018, update for SharePoint Foundation 2013 (KB4011699)
• SharePoint Foundation 2013: February 13, 2018, cumulative update for SharePoint Foundation 2013 (KB4011693)

Details can be found in the linked KB articles.

Similar articles:
Adobe Flash Player: New Update 28.0.0.161
Update KB4074595 (Flash Player) for Windows
Microsoft Office Patchday (February 6, 2018)
Microsoft Patchday Summary (February 13, 2018)
Patchday: Updates for Windows 7/8.1 (February 13, 2018)
Patchday: Windows 10 updates (February 13, 2018)
Patchday: Other Microsoft Updates (February 13, 2018)