Edge 96.0.1054.29

Posted on 2021-11-20 by guenni

Edge[German]Microsoft has released a security advisory for the Edge browser as of November 19, 2021, updating the browser to version 96.0.1054.29. The update also addressed security vulnerabilities reported to the Chromium team.

Advertising

In the blog post Chrome 96.0.4664.45 I had reported on the November 15 update and the security vulnerabilities that were fixed. In the release notes for the Edge browser, there is information that Edge 96.0.1054.29 fixes the following three vulnerabilities. 

The numerous new features in Edge 96.0.1054.29 are described on this Microsoft page. There are some improvements especially for enterprise environments. The browser should be updated automatically, but can also be downloaded here.

It is unclear to me whether the problems described for the Chrome browser (Google Chrome 96: Issues with Twitter, Discord, Video and more) also occur with Edge.

Below is the security information from Microsoft, which I received via email while writing this post.

**********************************************************
Title: Microsoft Security Update Releases
Issued: November 19, 2021
**********************************************************

Summary
=======

The following Chrome CVEs have been released on November 19, 2021.

Advertising

CVE-2021-42308 | Microsoft Edge (HTML-based) Spoofing Vulnerability
– Version 1.0
– Reason for Revision: Information published.
– Originally posted: November 19, 2021
– Updated: N/A
– Aggregate CVE Severity Rating: Important

CVE-2021-43220 | Microsoft Edge for iOS Spoofing Vulnerability
– Version 1.0
– Reason for Revision: Information published.
– Originally posted: November 19, 2021
– Updated: N/A
– Aggregate CVE Severity Rating: Moderate

CVE-2021-43221 | Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
– Reason for Revision: Information published.
– Originally posted: November 19, 2021
– Updated: N/A
– Aggregate CVE Severity Rating: Important

The following CVEs were assigned by Chrome. Microsoft Edge
(Chromium-based) ingests Chromium, which addresses these vulnerabilities. Please see
Google Chrome Releases (https://chromereleases.googleblog.com/2021 for more information.

See here for more information about third-party CVEs in the Security Update Guide.

* CVE-2021-38005
* CVE-2021-38006
* CVE-2021-38007
* CVE-2021-38008
* CVE-2021-38009
* CVE-2021-38010
* CVE-2021-38011
* CVE-2021-38012
* CVE-2021-38013
* CVE-2021-38014
* CVE-2021-38015
* CVE-2021-38016
* CVE-2021-38017
* CVE-2021-38018
* CVE-2021-38019
* CVE-2021-38020
* CVE-2021-38021
* CVE-2021-38022

Revision Information:
=====================

– Version 1.0
– Reason for Revision: Information published.
– Originally posted: November 19, 2021

Advertising
This entry was posted in browser, Security, Software, Update and tagged , , . Bookmark the permalink.

One Response to Edge 96.0.1054.29

  1. EP says:
    2021-11-23 at 18:51

    IE mode is more accessible in Edge 96 by enabling the "internet explorer mode button" in the "edge://settings/appearance" section (though this option requires the "Allow sites to be reloaded in Internet Explorer mode" option to be enabled first before turning on the IE mode button on the toolbar)

    no more needing some group policies to enable the IE mode options like I did with past MS Edge versions

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: Please note the rules for commenting on the blog (first comments and linked posts end up in moderation, I release them every few hours, I rigorously delete SEO posts/SPAM).