[German]On January 11, 2022 there was a security update for Adobe Acrobat (Reader) DC to version 21.011.20039. Furthermore, the last few days some users have contacted me to report open bugs. Here's an overview about that topics.
[German]The ACROS Security team around founder Mitja Kolsek has just developed a micro-patch to close a Local Privilege Escalation vulnerability of Windows. The patch is available free of charge for all customers with the 0patch agent until Microsoft closes this vulnerability. Here is some information about it.
[German]The January patch day 2022 (January 11, 2022) brought administrators of Windows Server systems into serious trouble: Hyper-V is bricked, DCs are force into boot loops, ReFS has been removed, IPSec VPN connections are broken, and so on. Microsoft has confirmed some of these issues and is probably also in the process of withdrawing the updates (it has been pulled on Windows Update on Jan. 13th, but are now offered again). Below I try to summarize the current state.
Small hint for people who are still using Ubuntu 21.04. This was released on April 22, 2021, as you can read here. According to this page, support expires in January 2022 – 9too4linux.com has it a bit more precise in this article: the support end date is January 20, 2022. And Ubuntu 21.10 is also only supported until July 2022. Only Ubuntu 22.04 is supported until April 2027.
[German]Mozilla developers have released version 96.0.0 with some new features and 95.5.0esr of the Firefox browser on January 11, 2022. However, with the new Firefox 96 there was problems accessing various websites. Here is the information on how to fix the access issues, caused by a (now fixed) telemetry http3 bug.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]On January 11, 2022 (second Tuesday of the month, Microsoft Patchday), Microsoft released several security-related updates for still-supported Microsoft Office versions and other products. RCE vulnerabilities will be closed again. For Microsoft Access, the bug from December 2021 is fixed according to reader feedback. Here is an overview of the available updates.
[German]Small addendum: The developers of the Thunderbird email client have released Thunderbird 91.5.0 on January 11, 2022. This is a maintenance update for the 91 development branch, which makes numerous fixes. Here is a brief overview.
[German]Microsoft Hyper-V users running Windows Server 2012/R2 should be cautious about installing update security update KB5009586 or KB5009624 for Windows Server 2012/R2. The security updates released on January 11, 2022 have several unpleasant collateral damages at once. After installing the security updates, the Hyper-V host (Windows Server 2012, Windows Server 2012 R2 or Hyper-V Server 2012) can no longer be started. Here's an overview of what's currently known about this in reader comments from the blog and elsewhere.
[German]The security updates for Windows released on January 11, 2022 have a very unpleasant collateral damage. All users who rely on VPN connections with L2TP over IPSEC will no longer work after installing the updates in question. Here is an overview of what is currently known about this from reader comments from the blog and elsewhere.
[German]I'll pull it out separately as a blog post. Administrators of Windows Domain Controllers should be careful about installing the January 2022 security updates. I have now received numerous reports that Windows servers acting as domain controllers will not boot afterwards. Lsass.exe (or wininit.exe) triggers a blue screen with the stop error 0xc0000005. It can hit all Windows Server versions that act as domain controllers, according to my estimation.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
