[German]A quick note for Windows Server 2022 administrators: Be careful when applying the security update KB5011497 from March 8, 2022. I have received a report from an administrator that this update can cause severe problems with remote services. Certain roles are no longer available after installing this update – and this could be verified on several server instances.
[German]Microsoft has also released security updates for Windows 7 and 8.1 as well as for the Windows Server counterparts 2008 R2 and 2012/R2 on March 8, 2022. Among other things, corrections are being made to the Lightweight Directory Access Protocol (LDAP). Here is an overview of these special updates for Windows 7/8.1 and the corresponding Windows Server versions 2008 R2 and 2012/R2.
[German]On March 8 (second Tuesday of the month, Patchday at Microsoft), Microsoft also released a cumulative update for Windows 11, which will be released on October 5, 2021. The update is supposed to fix various problems. In addition, Windows Server 2022 received an update. Here are some details about these updates. Continue reading
[German]Microsoft has released security updates for Exchange Server 2013, Exchange Server 2016 and Exchange Server 2019 as of March 8, 2022. These updates are required to address vulnerabilities reported by external security partners and found through Microsoft's internal processes. The updates apply to the Exchange Server on-premises installations listed below.
[German]On March 8, 2022 (second Tuesday of the month, Patchday at Microsoft), various cumulative updates for the supported Windows 10 builds (from the RTM version to the current version) were released. Here are some details about each of the Patchday security updates. Continue reading
[German]On March 8, 2022, Microsoft released security updates for Windows clients and servers, for Office, etc. – as well as for other products – were released. Below is a compact overview of these updates that were released on Patchday.
[German]Vendor Armis has discovered three critical zero-day vulnerabilities in smart UPS from APC. The vulnerabilities, known as TLStorm, put more than 20 million enterprise devices attached to APC uninterruptible power supplies at risk. The vulnerabilities in widely used uninterruptible power supplies could enable attackers to bypass security measures and remotely take over or damage critical industrial, medical and enterprise equipment.
[German]A vulnerability CVE-2022-0847, known as Dirty Pipe, exists in almost all Linux distributions and allows unprivileged users to gain root privileges in Linux kernel 5.8 and above. Linux distributions, IoT devices (and possibly Android systems, if they already use kernel 5.8 and higher) are at risk. To make matters worse, an exploit is now publicly known.
[German]Owners of small business routers from Cisco are in for a tough time at the moment. In February 2022, serious vulnerabilities were found in router models of the RV160, RV260, RV340 or RV345 etc. families, some of which are rated with a CVE value of 10.0. Cisco did provide firmware updates for customers with appropriate licenses. However, the firmware is so flawed that the device cannot be used afterwards.
[German]Does Windows 11 on Lenovo Thinkpad L950 models cause BlueScreens on battery power? I have a corresponding report from a reader and would like to post it again in the blog. Perhaps there are similar observations from other users.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
