[German]Microsoft has released further updates for Internet Explorer, Windows Server, etc. on the patchday (February 13,2018). Here are some details about selected patches.
Advertising
A complete overview of all updates from Microsoft can be found on this website. Some of the updates mentioned on this website are are described in separate blog posts (see link list at the end of this article).
Security updates
- Update KB4034044 (2018-02 Security Update for Windows Server 2008 and Windows XP Embedded); closes a VBScript-Windows Scripting Engine vulnerability CVE-2018-0947 that allows information disclosure.
- Update KB4057893 (Windows Embedded POSReady /Windows Embedded Standard 2009)
- Update KB4058165 (Description of the security update for the Windows Kernel information disclosure vulnerability in Windows Server 2008: February 13, 2018); closes vulnerability CVE-2018-0829, if the Windows kernel does not handle memory objects properly.
- Update KB4073079 (Description of the security update for the Windows Common Log file system driver elevation of privilege vulnerability in Windows Server 2008: February 13, 2018); This happens if the Windows Common Log File System (CLFS) driver does not handle objects in memory properly. Details can be found in CVE-2018-0844 and CVE-2018-0846.
- Update KB4073080 (Description of the security update for the Windows Kernel vulnerability in Windows Server 2008: February 13, 2018); closes an information disclosure vulnerability and a authorization vulnerability occurs when the Windows kernel messes up memory objects. For more information about vulnerabilities, see CVE-2018-0830 and CVE-2018-0820.
- Update KB4074589 (Security-only update) for Windows Server 2012 Standard;
- Update KB4074593 (Monthly Rollup) for Windows Server 2012 Standard;
- Update KB4074603 (Description of the security update for the Windows Kernel vulnerabilities in Windows Server 2008: February 13, 2018) for Windows Server 2008 Service Pack 2, Windows Server 2008 Foundation, Windows Server 2008 Standard. closes vulnerabilities:
CVE-2018-0742 | Windows Kernel Elevation of Privilege Vulnerability
CVE-2018-0757 | Windows Kernel Information Disclosure Vulnerability
CVE-2018-0810 | Windows Kernel Information Disclosure Vulnerability - Update KB4074836 (Description of the security update for the Windows remote code execution vulnerability in Windows Server 2008: February 13, 2018); closes a remote code execution vulnerability (CVE-2018-0842).
- Update KB4074851 (Description of the security update for the StructuredQuery remote code execution vulnerability in Windows Server 2008: February 13, 2018); closes a remote code execution vulnerability (CVE-2018-0825).
- Update KB4074852 (Description of the security update for WES09 and POSReady 2009: February 13, 2018); applies to Windows Embedded Standard 2009 and Windows Embedded POSReady. The update is intended to fix a security problem that may affect the system.
According to this comment and to this foren entry, the update is causing issues.
Update KB4074736 Internet Explorer
Update KB4074736 (Cumulative security update for Internet Explorer: February 13, 2018) closes several vulnerabilities in Internet Explorer 11, Internet Explorer 10, and Windows Internet Explorer 9, and the most critical vulnerabilities can allow remote code execution. Details are available in the KB article.
Non security updates
- Update KB4019276 WES09 and POSReady 2009 (support for TLS 1.1 and TLS 1.2 in Windows Server 2008 SP2 and Windows Embedded POSReady 2009)
- Update KB4076492; Quality Rollup for .NET Framework 3.5.1 Windows Embedded Standard 7, Windows 7, and Windows Server 2008 R2
- Update KB4076493; Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1 on Windows Embedded 8 Standard and Windows Server 2012
- Update KB4076494; Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1 on Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2
- Update KB4076495; Quality Rollup for .NET Framework 2.0, 3.0, 4.5.2, 4.6 on Windows Server 2008
There was also an update KB890830 (Windows Malicious Software Removal Tool – February 2018). Updates mentioned above, that are also compatible with Windows Vista can be found within this German comment.
Similar articles:
Adobe Flash Player: New Update 28.0.0.161
Update KB4074595 (Flash Player) for Windows
Microsoft Office Patchday (February 6, 2018)
Microsoft Patchday Summary (February 13, 2018)
Patchday: Updates for Windows 7/8.1 (February 13, 2018)
Patchday: Windows 10 updates (February 13, 2018)
Patchday: MS Office security updates (February 13, 2018)
Advertising