[German]The developers of the Thunderbird email client have released Thunderbird 91.7.0 on March 8, 2022. It is a maintenance update for the 91 development branch, which brings various fixes.
[German]US security provider Fortinet has already published security advisories on major vulnerabilities in its products (firewalls etc.) at the beginning of March 2022. Blog reader Martin H. had informed me about these security advisories via email the other day. So I'm just posting the information here without commenting.
[German]A quick note for Windows Server 2022 administrators: Be careful when applying the security update KB5011497 from March 8, 2022. I have received a report from an administrator that this update can cause severe problems with remote services. Certain roles are no longer available after installing this update – and this could be verified on several server instances.
[German]Microsoft has also released security updates for Windows 7 and 8.1 as well as for the Windows Server counterparts 2008 R2 and 2012/R2 on March 8, 2022. Among other things, corrections are being made to the Lightweight Directory Access Protocol (LDAP). Here is an overview of these special updates for Windows 7/8.1 and the corresponding Windows Server versions 2008 R2 and 2012/R2.
[German]On March 8 (second Tuesday of the month, Patchday at Microsoft), Microsoft also released a cumulative update for Windows 11, which will be released on October 5, 2021. The update is supposed to fix various problems. In addition, Windows Server 2022 received an update. Here are some details about these updates. Continue reading
[German]Microsoft has released security updates for Exchange Server 2013, Exchange Server 2016 and Exchange Server 2019 as of March 8, 2022. These updates are required to address vulnerabilities reported by external security partners and found through Microsoft's internal processes. The updates apply to the Exchange Server on-premises installations listed below.
[German]On March 8, 2022 (second Tuesday of the month, Patchday at Microsoft), various cumulative updates for the supported Windows 10 builds (from the RTM version to the current version) were released. Here are some details about each of the Patchday security updates. Continue reading
[German]On March 8, 2022, Microsoft released security updates for Windows clients and servers, for Office, etc. – as well as for other products – were released. Below is a compact overview of these updates that were released on Patchday.
[German]Vendor Armis has discovered three critical zero-day vulnerabilities in smart UPS from APC. The vulnerabilities, known as TLStorm, put more than 20 million enterprise devices attached to APC uninterruptible power supplies at risk. The vulnerabilities in widely used uninterruptible power supplies could enable attackers to bypass security measures and remotely take over or damage critical industrial, medical and enterprise equipment.
[German]A vulnerability CVE-2022-0847, known as Dirty Pipe, exists in almost all Linux distributions and allows unprivileged users to gain root privileges in Linux kernel 5.8 and above. Linux distributions, IoT devices (and possibly Android systems, if they already use kernel 5.8 and higher) are at risk. To make matters worse, an exploit is now publicly known.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
