Microsoft Security Update Summary (January 8, 2019)

Windows Update[German]As of January 8, 2019, Microsoft released several security updates for Windows clients and servers, Office, etc. Below is a compact overview of these updates and some notes.


Advertising


A list of the updates can be found on this Microsoft page. Details about the update packages for Windows, Office etc. can be found in separate blog posts.

Servicing Stack Updates (January 8, 2019)

Microsoft now publishes an overview of all current Servicing Stack Updates (SSUs). The list of SSUs can be found at ADV990001.

Notes on updates

All Windows 10 updates are cumulative. The monthly Patchday update includes all security fixes for Windows 10 and all non-security fixes until Patchday. 

Updates can also be downloaded from Microsoft Update Catalog. Since March 2017 Microsoft offers Delta Update packages for Windows 10 version 1607 and newer in the Microsoft Update Catalog. Delta updates contain only the changes between the update of the previous month and the current update.

Updates for Windows RT 8.1 and Microsoft Office RT are only available through Windows Update.


Advertising

Update-Revisions

The following CVE has undergone a major revision increment:

* CVE-2018-8651

Revision Information:

– CVE-2018-8651 | Microsoft Dynamics NAV Cross Site Scripting Vulnerability
https://portal.msrc.microsoft.com/en-us/security-guidance
– Reason for Revision: Added Microsoft Dynamics NAV 2013 R2 to
   the Security Updates table. Customers running this version of
   Microsoft Dynamics NAV should intall this version of the
   software.
– Originally posted: December 11, 2018
– Updated: January 8, 2019
– Aggregate CVE Severity Rating: Important
– Version: 2.0

Security Advisories

* Microsoft Security Advisory ADV990001

– ADV990001 | Latest Servicing Stack Updates
ADV990001
– Reason for Revision: A Servicing Stack Update has been released
   for Windows 10 Version 1703. See the FAQ section for more
   information.
– Originally posted: November 13, 2018
– Updated: January 8, 2019
– Version: 4.0

Microsoft Security Advisory ADV180012

– ADV180012 | Microsoft Guidance for Speculative Store Bypass
ADV180012
– Reason for Revision: The following updates have been made to
   this advisory: 1. Microsoft is announcing that the security
   updates released on January 8, 2018 for supported versions of
   Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows
   Server 2012, Windows 8.1, and Windows Server 2012 R2 provide
   protections against the Speculative Store Bypass vulnerability
   (CVE-2018-3639) for AMD-based computers. These protections are
   not enabled by default. For Windows client (IT pro) guidance,
   follow the instructions in Microsoft Knowledge Base article
   4073119. 2. In the Recommended Actions and FAQ sections the
   “Affected Products” table name has been corrected to “Security
   Updates” to reflect the correct table name.
– Originally posted: May 21, 2018
– Updated: January 8, 2019
– Version: 7.0

Critical Security Updates

ChakraCore
Microsoft Edge
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core
installation)
Windows Server 2008 for Itanium-Based Systems Service Pack 2
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core
installation)
Windows 7 for 32-bit Systems Service Pack 1
Windows 7 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server
Core installation)
Windows Server 2012
Windows Server 2012 (Server Core installation)
Windows 8.1 for 32-bit systems
Windows 8.1 for x64-based systems
Windows RT 8.1
Windows Server 2012 R2
Windows Server 2012 R2 (Server Core installation)
Windows 10 for 32-bit Systems
Windows 10 for x64-based Systems
Windows 10 Version 1607 for 32-bit Systems
Windows 10 Version 1607 for x64-based Systems
Windows 10 Version 1703 for 32-bit Systems
Windows 10 Version 1703 for x64-based Systems
Windows 10 version 1709 for 32-bit Systems
Windows 10 version 1709 for x64-based Systems
Windows 10 Version 1709 for ARM64-based Systems
Windows 10 Version 1803 for 32-bit Systems
Windows 10 Version 1803 for x64-based Systems
Windows 10 Version 1803 for ARM64-based Systems
Windows 10 Version 1809 for 32-bit Systems
Windows 10 Version 1809 for x64-based Systems
Windows 10 Version 1809 for ARM64-based Systems
Windows Server 2016
Windows Server 2016 (Server Core installation)
Windows Server, version 1709 (Server Core Installation)
Windows Server, version 1803 (Server Core Installation)
Windows Server 2019
Windows Server 2019 (Server Core installation)

Important Security Updates

Internet Explorer 11
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5
Microsoft .NET Framework 3.5.1
Microsoft .NET Framework 4.5.2
Microsoft .NET Framework 4.6
Microsoft .NET Framework 4.6/4.6.1/4.6.2
Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2
Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2
Microsoft .NET Framework 4.7.1/4.7.2
Microsoft .NET Framework 4.7.2
Microsoft .NET Framework 4.7/4.7.1/4.7.2
ASP.NET Core 2.1
ASP.NET Core 2.2
.NET Core 2.1
.NET Core 2.2
.NET Core 2.3
Microsoft Excel Viewer 2007 Service Pack 3
Microsoft Office 2010 Service Pack 2 (32-bit editions)
Microsoft Office 2010 Service Pack 2 (64-bit editions)
Microsoft Office 2013 RT Service Pack 1
Microsoft Office 2013 Service Pack 1 (32-bit editions)
Microsoft Office 2013 Service Pack 1 (64-bit editions)
Microsoft Office 2016 (32-bit edition)
Microsoft Office 2016 (64-bit edition)
Microsoft Office 2016 for Mac
Microsoft Office 2019 for 32-bit editions
Microsoft Office 2019 for 64-bit editions
Microsoft Office 2019 for Mac
Microsoft Office Web Apps Server 2010 Service Pack 2
Microsoft Office Word Viewer
Microsoft Outlook 2010 Service Pack 2 (32-bit editions)
Microsoft Outlook 2010 Service Pack 2 (64-bit editions)
Microsoft Outlook 2013 RT Service Pack 1
Microsoft Outlook 2013 Service Pack 1 (32-bit editions)
Microsoft Outlook 2013 Service Pack 1 (64-bit editions)
Microsoft Outlook 2016 (32-bit edition)
Microsoft Outlook 2016 (64-bit edition)
Microsoft SharePoint Server 2010 Service Pack 2
Microsoft Business Productivity Servers 2010 Service Pack 2
Microsoft SharePoint Enterprise Server 2013 Service Pack 1
Microsoft SharePoint Enterprise Server 2016
Microsoft SharePoint Server 2019
Microsoft Word 2010 Service Pack 2 (32-bit editions)
Microsoft Word 2010 Service Pack 2 (64-bit editions)
Microsoft Word 2013 RT Service Pack 1
Microsoft Word 2013 Service Pack 1 (32-bit editions)
Microsoft Word 2013 Service Pack 1 (64-bit editions)
Microsoft Word 2016 (32-bit edition)
Microsoft Word 2016 (64-bit edition)
Office 365 ProPlus for 32-bit Systems
Office 365 ProPlus for 64-bit Systems
Word Automation Services
Microsoft Exchange Server 2010 Service Pack 3 Update Rollup 25
Microsoft Exchange Server 2013 Cumulative Update 21
Microsoft Exchange Server 2016 Cumulative Update 10
Microsoft Exchange Server 2016 Cumulative Update 11
Microsoft Exchange Server 2019
Microsoft Visual Studio 2010 Service Pack 1
Microsoft Visual Studio 2012 Update 5

Moderate Security Updates

Microsoft Visual Studio 2017 version 15.9
Skype 8.35 when installed on Android Devices

Low Security Updates

Internet Explorer 9
Internet Explorer 10

Similar articles:
Microsoft Office Patchday (January 2, 2019)
Office 2010 Updates for January 2019 has been pulled
Microsoft Security Update Summary (January 8, 2019)


Advertising


This entry was posted in Office, Security, Update, Windows and tagged , , , , . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *