{"id":23576,"date":"2022-03-08T23:08:58","date_gmt":"2022-03-08T22:08:58","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=23576"},"modified":"2022-03-10T09:03:35","modified_gmt":"2022-03-10T08:03:35","slug":"microsoft-security-update-summary-march-8-2022","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2022\/03\/08\/microsoft-security-update-summary-march-8-2022\/","title":{"rendered":"Microsoft Security Update Summary (March 8, 2022)"},"content":{"rendered":"<p><img decoding=\"async\" style=\"margin: 0px 10px 0px 0px;\" title=\"Update\" src=\"https:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2021\/06\/Update-01.jpg\" alt=\"Update\" align=\"left\" border=\"0\" \/>[<a href=\"https:\/\/www.borncity.com\/blog\/2022\/03\/08\/microsoft-security-update-summary-8-mrz-2022\/\" target=\"_blank\" rel=\"noopener\">German<\/a>]On March 8, 2022, Microsoft released security updates for Windows clients and servers, for Office, etc. &#8211; as well as for other products &#8211; were released. Below is a compact overview of these updates that were released on Patchday.<\/p>\n<p><!--more--><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/vg04.met.vgwort.de\/na\/6e0a6c018c8049f2a79b27b6604afcf8\" alt=\"\" width=\"1\" height=\"1\" \/>A list of the updates can be found on <a href=\"https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance\" target=\"_blank\" rel=\"noopener\">this Microsoft page<\/a>. Details about the update packages for Windows, Office, etc. are available in separate blog posts.<\/p>\n<h2>Notes on the updates<\/h2>\n<p>Windows 10 version 20H2 to 21H2 use a common core and have an identical set of system files. Therefore, the same security update will be delivered for these Windows 10 versions. Information on how to enable the features of Windows 10, which is done through an Enablement Package update, can be found in <a href=\"https:\/\/techcommunity.microsoft.com\/t5\/Windows-IT-Pro-Blog\/Windows-10-version-1909-delivery-options\/ba-p\/1002660\" target=\"_blank\" rel=\"noopener\">this Techcommunity post<\/a>.<\/p>\n<p>All Windows 10 updates are cumulative. The monthly Patchday update includes all security fixes for Windows 10 and all non-security fixes up to Patchday. In addition to vulnerability security patches, the updates include security enhancement measures. Microsoft is integrating the Servicing Stack Updates (SSUs) into the Latest Cumulative Updates (LCUs) for newer versions of Windows 10. A list of the latest SSUs can be found at <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/ADV990001\" target=\"_blank\" rel=\"noopener\">ADV990001<\/a> (although the list is not always up-to-date).<\/p>\n<p>Windows 7 SP1 is no longer supported as of January 2020. Only customers with a 2nd year ESU license (or workarounds) will still receive updates for the last time in January 2022. For upcoming patches an ESU license for the 3rd year is required. The current ESU bypass allows the update to be installed. Updates can also be downloaded from the <a href=\"https:\/\/www.catalog.update.microsoft.com\/Home.aspx\" target=\"_blank\" rel=\"noopener\">Microsoft Update Catalog<\/a>. The updates for Windows RT 8.1 and Microsoft Office RT are only available via Windows Update.<\/p>\n<h2>Fixed vulnerabilities<\/h2>\n<p>The March 2022 security updates fix 71 vulnerabilities, three of which are 0-day, in Microsoft products. A list of all covered CVEs can be found on <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/\" target=\"_blank\" rel=\"noopener\">this Microsoft page<\/a> as well as on <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/releaseNote\/2022-Feb\" target=\"_blank\" rel=\"noopener\">this Microsoft page<\/a>. The colleagues at Bleeping Computer have published an overview of the fixed vulnerabilities <a href=\"https:\/\/www.bleepingcomputer.com\/news\/microsoft\/microsoft-march-2022-patch-tuesday-fixes-71-flaws-3-zero-days\/\" target=\"_blank\" rel=\"noopener\">here<\/a>. Tenable also has <a href=\"https:\/\/www.tenable.com\/blog\/microsofts-march-2022-patch-tuesday-addresses-71-cves-cve-2022-23277-cve-2022-24508\" target=\"_blank\" rel=\"noopener\">this blog post<\/a> with an overview &#8211; the following critical updates are included in March 2022.<\/p>\n<ul>\n<li><u><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2022-23277\" target=\"_blank\" rel=\"noopener\">CVE-2022-23277<\/a><\/u>: Microsoft Exchange Server Remote Code Execution Vulnerability<\/li>\n<li><u><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-23285\" target=\"_blank\" rel=\"noopener\">CVE-2022-23285<\/a><\/u> und <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-21990\" target=\"_blank\" rel=\"noopener\">CVE-2022-21990<\/a><u><\/u>: Remote Desktop Client Remote Code Execution Vulnerability<\/li>\n<li><u><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2022-24508\" target=\"_blank\" rel=\"noopener\">CVE-2022-24508<\/a><\/u>: Windows SMBv3 Client\/Server Remote Code Execution Vulnerability<\/li>\n<li><u><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-24459\" target=\"_blank\" rel=\"noopener\">CVE-2022-24459<\/a><\/u>: Windows Fax and Scan Service Elevation of Privilege Vulnerability<\/li>\n<li><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-24512\"><u>CVE-2022-24512<\/u><\/a>: .NET and Visual Studio Remote Code Execution Vulnerability<\/li>\n<\/ul>\n<p>Below is the list of critical and important security updates &#8211; details of which will be reported in separate blog posts.<\/p>\n<h3>Critical Security Updates<\/h3>\n<p>Microsoft Exchange Server 2013 Cumulative Update 23<br \/>\nMicrosoft Exchange Server 2016 Cumulative Update 21<br \/>\nMicrosoft Exchange Server 2016 Cumulative Update 22<br \/>\nMicrosoft Exchange Server 2019 Cumulative Update 10<br \/>\nMicrosoft Exchange Server 2019 Cumulative Update 11<br \/>\nHEVC Video Extension<br \/>\nHEVC Video Extensions<br \/>\nVP9 Video Extensions<\/p>\n<h3>Important Security Updates<\/h3>\n<p>Windows 10 for 32-bit Systems<br \/>\nWindows 10 for x64-based Systems<br \/>\nWindows 10 Version 1607 for 32-bit Systems<br \/>\nWindows 10 Version 1607 for x64-based Systems<br \/>\nWindows 10 Version 1809 for 32-bit Systems<br \/>\nWindows 10 Version 1809 for ARM64-based Systems<br \/>\nWindows 10 Version 1809 for x64-based Systems<br \/>\nWindows 10 Version 1909 for 32-bit Systems<br \/>\nWindows 10 Version 1909 for ARM64-based Systems<br \/>\nWindows 10 Version 1909 for x64-based Systems<br \/>\nWindows 10 Version 20H2 for 32-bit Systems<br \/>\nWindows 10 Version 20H2 for ARM64-based Systems<br \/>\nWindows 10 Version 20H2 for x64-based Systems<br \/>\nWindows 10 Version 21H1 for 32-bit Systems<br \/>\nWindows 10 Version 21H1 for ARM64-based Systems<br \/>\nWindows 10 Version 21H1 for x64-based Systems<br \/>\nWindows 10 Version 21H2 for 32-bit Systems<br \/>\nWindows 10 Version 21H2 for ARM64-based Systems<br \/>\nWindows 10 Version 21H2 for x64-based Systems<br \/>\nWindows 11 for ARM64-based Systems<br \/>\nWindows 11 for x64-based Systems<br \/>\nWindows 8.1 for 32-bit systems<br \/>\nWindows 8.1 for x64-based systems<br \/>\nWindows RT 8.1<br \/>\nWindows Server 2012<br \/>\nWindows Server 2012 (Server Core installation)<br \/>\nWindows Server 2012 R2<br \/>\nWindows Server 2012 R2 (Server Core installation)<br \/>\nWindows Server 2016<br \/>\nWindows Server 2016\u00a0 (Server Core installation)<br \/>\nWindows Server 2019<br \/>\nWindows Server 2019\u00a0 (Server Core installation)<br \/>\nWindows Server 2022<br \/>\nWindows Server 2022 (Server Core installation)<br \/>\nWindows Server 2022 Azure Edition Core Hotpatch<br \/>\nWindows Server, version 20H2 (Server Core Installation)<br \/>\nRemote Desktop client for Windows Desktop<br \/>\nMicrosoft 365 Apps for Enterprise for 32-bit Systems<br \/>\nMicrosoft 365 Apps for Enterprise for 64-bit Systems<br \/>\nMicrosoft Office 2019 for 32-bit editions<br \/>\nMicrosoft Office 2019 for 64-bit editions<br \/>\nMicrosoft Office 2019 for Mac<br \/>\nMicrosoft Office LTSC 2021 for 32-bit editions<br \/>\nMicrosoft Office LTSC 2021 for 64-bit editions<br \/>\nMicrosoft Office LTSC for Mac 2021<br \/>\nMicrosoft Word 2013 RT Service Pack 1<br \/>\nMicrosoft Word 2013 Service Pack 1 (32-bit editions)<br \/>\nMicrosoft Word 2013 Service Pack 1 (64-bit editions)<br \/>\nMicrosoft Word 2016 (32-bit edition)<br \/>\nMicrosoft Word 2016 (64-bit edition)<br \/>\n.NET 5.0<br \/>\n.NET 6.0<br \/>\n.NET Core 3.1<br \/>\nMicrosoft Visual Studio 2019 version 16.11 (includes 16.0 &#8211; 16.10)<br \/>\nMicrosoft Visual Studio 2019 version 16.7 (includes 16.0 &#8211; 16.6)<br \/>\nMicrosoft Visual Studio 2019 version 16.9 (includes 16.0 &#8211; 16.8)<br \/>\nMicrosoft Visual Studio 2022 version 17.0<br \/>\nVisual Studio Code<br \/>\nMicrosoft Defender for Endpoint for Linux<br \/>\nMicrosoft Defender for Endpoint for Mac<br \/>\nMicrosoft Defender for Endpoint for Windows<br \/>\nMicrosoft Defender for IoT<br \/>\nIntune Company Portal for iOS<br \/>\nAzure Site Recovery VMWare to Azure<br \/>\nHEIF Image Extension<br \/>\nRaw Image Extension<br \/>\nSkype Extension for Chrome<br \/>\nPaint 3D<\/p>\n<p><strong>Similar articles<\/strong><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2022\/03\/02\/microsoft-office-updates-1-mrz-2022\/\">Microsoft Office Updates (March 1, 2022)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2022\/03\/08\/microsoft-security-update-summary-march-8-2022\/\">Microsoft Security Update Summary (March 8, 2022)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2022\/03\/08\/patchday-windows-10-updates-march-8-2022\/\">Patchday: Windows 10-Updates (March 8, 2022)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2022\/03\/09\/patchday-windows-11-server-2022-updates-8-mrz-2022\/\">Patchday: Windows 11\/Server 2022-Updates (March 8, 2022<\/a>)<br \/>\n<a href=\"https:\/\/borncity.com\/win\/2022\/03\/09\/windows-7-server-2008r2-windows-8-1-server-2012r2-updates-8-mrz-2022\/\">Windows 7\/Server 2008R2; Windows 8.1\/Server 2012R2: Updates (March 8, 2022)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/?p=23599\" target=\"_blank\" rel=\"noopener\">Patchday: Microsoft Office Updates (March 8, 2022)<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>[German]On March 8, 2022, Microsoft released security updates for Windows clients and servers, for Office, etc. &#8211; as well as for other products &#8211; were released. Below is a compact overview of these updates that were released on Patchday.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11,580,22,2],"tags":[125,2713,69,195,194],"class_list":["post-23576","post","type-post","status-publish","format-standard","hentry","category-office","category-security","category-update","category-windows","tag-office","tag-patchday-3-2022","tag-security","tag-update","tag-windows"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/23576","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=23576"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/23576\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=23576"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=23576"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=23576"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}