=========================================================<\/p>\n
Microsoft has released revisions to its security alerts and update descriptions as of March 17, 2022. Here is a summary of these revisions that I received by mail.<\/p>\n
<\/p>\n
*********************************************************
Title: Microsoft Security Update Revisions
Issued: March 17, 2022
*********************************************************<\/p>\n
Summary
=======<\/p>\n
The following CVEs have undergone revision increments.
=========================================================<\/p>\n
* CVE-2020-8927
* CVE-2022-24512
* CVE-2022-24511<\/p>\n
– CVE-2020-8927<\/a> | Brotli Library Buffer Overflow Vulnerability – CVE-2022-24512<\/a> | .NET and Visual Studio Remote Code Execution Vulnerability – CVE-2022-24511<\/a> | Microsoft Office Word Tampering Vulnerability Reason for Revision for the following CVEs: Corrected Download and Article links * CVE-2022-21977 – CVE-2022-21977<\/a> | Media Foundation Information Disclosure Vulnerability – CVE-2022-22010<\/a> | Media Foundation Information Disclosure Vulnerability – CVE-2022-23283<\/a> | Windows ALPC Elevation of Privilege Vulnerability
– Version: 2.0
– Reason for Revision: Revised the Security Updates table to include PowerShell 7.0,
PowerShell 7.1, and PowerShell 7.2 because these versions of PowerShell 7 are
affected by this vulnerability. See
Github<\/a> for more information.
– Originally posted: March 8, 2022
– Updated: March 16, 2022
– Aggregate CVE Severity Rating: Important<\/p>\n
– Version: 2.0
– Reason for Revision: Revised the Security Updates table to include PowerShell 7.0,
PowerShell 7.1, and PowerShell 7.2 because these versions of PowerShell 7 are
affected by this vulnerability. See
Github<\/a> for more information.
– Originally posted: March 8, 2022
– Updated: March 16, 2022
– Aggregate CVE Severity Rating: Important<\/p>\n
– Version: 2.0
– Reason for Revision: Microsoft is announcing the availability of the security
updates for Microsoft Office for Mac. Customers running affected Mac software
should install the update for their product to be protected from this
vulnerability. Customers running other Microsoft Office software do not need to
take any action. See the Release Notes for more information and download links.
– Originally posted: March 8, 2022
– Updated: March 16, 2022
– Aggregate CVE Severity Rating: Important<\/p>\n
in the Security Updates table. This is an informational change only.<\/p>\n
* CVE-2022-22010
* CVE-2022-23283
* CVE-2022-23285
* CVE-2022-23299<\/p>\n
– Version: 1.2
– Originally posted: March 8, 2022
– Updated: March 16, 2022
– Aggregate CVE Severity Rating: Important<\/p>\n
– Version: 1.1
– Originally posted: March 8, 2022
– Updated: March 16, 2022
– Aggregate CVE Severity Rating: Important<\/p>\n
– Version: 1.1
– Originally posted: March 8, 2022
– Updated: March 16, 2022
– Aggregate CVE Severity Rating: Important<\/p>\n