Microsoft has published information about security update revisions for CVE-2022-34716 as of August 11, 2022. Here is the relevant information in case you did not receive it.
Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
.NET Framework Updates August 2022
As of August 9, 2022, Microsoft has released a few more updates for the .NET Framework. Bolko pointed it out here (thanks for that). Update KB5016738 iis the Security and Quality Rollup for .NET Framework 3.5.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 7 SP1 and Windows Server 2008 R2 SP1 and includes KB5016367 (.NET 4.8) and KB5016368 (.NET 4.7). There is also the Microsoft .NET Desktop Runtime 6.0.8.
Microsoft Edge 104.0.1293.54
Microsoft has updated the Edge browser in the stable and extended release channel to version 104.0.1293.54 as of August 11, 2022. The release notes do not provide any further details about the update. Thanks to Robert for the tip.
US Federal Trade Commission seeks comments to expand online privacy protections
[German]The lack of a comprehensive federal law to protect U.S. citizens from online tracking by online platforms is a growing problem in the United States. Companies are trying to collect and store vast amounts of search data and other information from consumers. This is now prompting the U.S. Federal Trade Commission (FTC) to plan an expansion of online data protection.
Microsoft: Workaround for Outlook crash; rollback of Microsoft 365 to version 2205
[German]Users of Microsoft Office products beware. Microsoft has commented on a crash bug in Outlook (I reported recently) and published a workaround. In addition, Microsoft 365 had to be rolled back from version 2206 to version 2205 due to app crashes in the Monthly Channel – I reported this bug just a few hours ago.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Windows Security Update KB5012170 for Secure Boot DBX (August 9, 2022)
[German]Another short addendum from patchday, August 9, 2022. A security update for the Secure Boot module was also provided there by Microsoft. It is a security update for the Secure Boot (DBX) that can be used by Windows on UEFI machines. The update affects all versions of Windows that are still in support. Addendum: Some users are facing an install error 0x800f0922.
Internet Explorer 11: Update KB5016618 (August 9, 2022)
[German]Microsoft has released a security update (KB5016618) for Internet Explorer on August 9, 2022. However, this is only available separately for selected Windows versions as a cumulative update. Here's an overview of this patch, which is intended to close vulnerabilities in the browser.
Windows/macOS: Vulnerabilities in Foxit PDF Reader and PDF Editor (July 2022)
[German]Both Foxit PDF Reader and Foxit PDF Editor contain security vulnerabilities that have been assigned a CVSS Base Score of 10.0. Anyone using these products in the Windows or macOS environment should take care of the corresponding product updates as soon as possible. Here is some information on the topic – thanks to blog reader Helmut S. for the corresponding tip (Foxit has not been on my radar for a while).
Microsoft 365 Version 2206 version 2206: New bug in Monthly Channel (August 2022) crashes in apps
[German]Microsoft has just confirmed a bug in Microsoft 365 apps version 2206 in a ticket. The bug causes crashes in Office apps when performing certain operations. The issue occurs in Microsoft 365 Apps for Enterprise in the Monthly Channel. Addendum: It seems that Microsoft is rolling back to version 2205.
Cisco admits hack (in May 2022) and publishes details
[German]US vendor Cisco was the victim of a cyber attack in May 2022, in which attackers were able to penetrate the company's IT infrastructure. As of August 10, 2022, Cisco has made this attack public – also because the attackers published captured information. At the same time, Cisco Talos released some information about the attack. Apparently, the Cisco security team was aware of the attacks early on and was able to observe the attacker (Yanluowang Ransomware gang) in their activities.