[German]I'll post a short information for Sharepoint administrators here in the blog. Microsoft has already published an authentication bypass vulnerability (CVE-2023-29357) in June 2023. So the vulnerability can be closed via update. Now a security researcher has made public an exploit to exploit the vulnerability.
[German]Microsoft has made an U turn on a recent announcement that photos in albums on OnDrive would be counted twice in storage usage. The latest statement is that photos in albums will not be added to storage capacity if the photos are stored as files on OnDrive gallery.
[German]A buffer overflow vulnerability CVE-2023-4911 exists in the Gnu-C library (glibc) in the dynamic loader used to execute programs. The vulnerability, discovered by Qualys' Threat Research Unit (TRU), is called Looney Tunables and has probably existed since 2021. In the worst case, attackers could gain root privileges on the Linux system via the vulnerability. In the meantime, however, most Linux distributions ship a patch for the affected systems.
[German]As of September 12, Microsoft has released various security updates for Office 2013, 2016 and the click-to-run variants (2016-2021 as well as Office 365). There has been some feedback from users on the blog regarding problems. I'll summarize the problems in a review – one crash problem has been fixed in the meantime.
[German]Microsoft has released the update KB5001716 for machines with older Windows 10 versions on Oct. 3, 2023. The package updates the Update Service components so that the machine can be updated to a newer Windows 10 build. Here's a brief overview of what the update does and how it gets onto machines.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]After a preview phase that started in spring 2023, Microsoft has now released its Teams 2.0 client for macOS and Windows in general. The promise: This new client is supposed to use fewer resources and also be faster than the old client. And some new features have probably been added.
[German]The UK Competition and Markets Authority (CMA) has launched a market investigation into cloud services in the UK. Following an investigation by Ofcom, the aim is to examine in more detail whether there are any competition concerns and, if so, what measures can improve the offering of these important services to UK customers.
[German]Microsoft updated the Edge browser in the stable channel to version 117.0.2045.55 on October 4, 2023. The release notes state, "Fixed various bugs and performance issues". The update fixed the Chromium Type Confusion vulnerability (CVE-2023-5346) in V8 with severity level High.
[German]Apple released the update to iOS 17.0.3 for compatible iPhone models on October 4, 2023. On the one hand, this update is supposed to close the vulnerability CVE-2023-42824 in libvpx. On the other hand, Apple promises to fix the heat problem in the iPhone 15 Pro, which is unsettling some users.
[German]A quick question for the administrators and users of Microsoft Teams. Do you have the problem that no more links can be opened from MS Teams when version 1.6.00.26474 of this software is installed. An administrator just pointed out the problem to me (thanks for that). I'll put together the information here in the blog that I received from the user – maybe someone else is affected.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
