5 replies to this topic

[AplusWebMaster]

FYI...

- https://technet.micr...curity/ms16-apr
April 12, 2016 - "This bulletin summary lists security bulletins released for April 2016...
(Total of -13-)

Microsoft Security Bulletin MS16-037 - Critical
Cumulative Security Update for Internet Explorer (3148531)
- https://technet.micr...curity/MS16-037
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Internet Explorer

Microsoft Security Bulletin MS16-038 - Critical
Cumulative Security Update for Microsoft Edge (3148532)
- https://technet.micr...curity/MS16-038
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Microsoft Edge

Microsoft Security Bulletin MS16-039 - Critical
Security Update for Microsoft Graphics Component (3148522)
- https://technet.micr...curity/MS16-039
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Microsoft .NET Framework, Microsoft Office, Skype for Business, Microsoft Lync.

Microsoft Security Bulletin MS16-040 - Critical
- https://technet.micr...curity/MS16-040
Critical - Remote Code Execution - May require restart - Microsoft Windows

Microsoft Security Bulletin MS16-041 - Important
Security Update for .NET Framework (3148789)
- https://technet.micr...curity/MS16-041
Important - Remote Code Execution - May require restart - Microsoft Windows, Microsoft .NET Framework

Microsoft Security Bulletin MS16-042 - Critical
Security Update for Microsoft Office (3148775)
- https://technet.micr...curity/MS16-042
Critical - Remote Code Execution - May require restart - Microsoft Office, Microsoft Office Services and Web Apps

Microsoft Security Bulletin MS16-044 - Important
Security Update for Windows OLE (3146706)
- https://technet.micr...curity/MS16-044
Important - Remote Code Execution - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-045 - Important
Security Update for Windows Hyper-V (3143118)
- https://technet.micr...curity/MS16-045
Important - Remote Code Execution - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-046 - Important
Security Update for Secondary Logon (3148538)
- https://technet.micr...curity/MS16-046
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-047 - Important
Security Update for SAM and LSAD Remote Protocols (3148527)
- https://technet.micr...curity/MS16-047
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-048 - Important
Security Update for CSRSS (3148528)
- https://technet.micr...curity/MS16-048
Important - Security Feature Bypass - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-049 - Important
Security Update for HTTP.sys (3148795)
- https://technet.micr...curity/MS16-049
Important - Denial of Service - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-050 - Critical
Security Update for Adobe Flash Player (3154132)
- https://technet.micr...curity/MS16-050
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Adobe Flash Player
___

MS16-037: http://www.securityt....com/id/1035521
MS16-038: http://www.securityt....com/id/1035522
MS16-039: http://www.securityt....com/id/1035528
- http://www.securityt....com/id/1035529
- http://www.securityt....com/id/1035530
- http://www.securityt....com/id/1035531
- http://www.securityt....com/id/1035532
MS16-040: http://www.securityt....com/id/1035523
MS16-041: http://www.securityt....com/id/1035535
MS16-042: http://www.securityt....com/id/1035524
- http://www.securityt....com/id/1035525
MS16-044: http://www.securityt....com/id/1035536
MS16-045: http://www.securityt....com/id/1035538
MS16-046: http://www.securityt....com/id/1035541
MS16-047: http://www.securityt....com/id/1035534
MS16-048: http://www.securityt....com/id/1035544
MS16-049: http://www.securityt....com/id/1035546
MS16-050: http://securitytracker.com/id/1035527
___

- https://blogs.techne...update-release/
April 12, 2016

Security Advisories:
Microsoft Security Advisory 3152550
Update to Improve Wireless Mouse Input Filtering
- https://technet.micr...ty/3152550.aspx
April 12, 2016

April 2016 Office Update Release
- https://blogs.techne...update-release/
April 12, 2016 - "... This month, there are -23- security updates (2 bulletins) and -47- non-security updates. Security bulletins:
MS16-039: https://technet.micr...y/ms16-039.aspx
MS16-042: https://technet.micr...y/ms16-042.aspx
All of the security and non-security updates for April are listed in KB article KB3150264:
> https://support.micr...n-us/kb/3150264
A new version of Office 2013 Click-To-Run is available: 15.0.4815.1001
A new version of Office 2010 Click-To-Run is available: 14.0.7168.5000
For information on Office 365 Click-To-Run updates, see:
- https://technet.micr.../en-us/mt465751
___

ISC Analysis
- https://isc.sans.edu...wday=2016-04-12
___

Qualys Analysis
- https://blog.qualys....016/04/12/22939
___

- https://www.us-cert....curity-Bulletin
April 12, 2016

.

Edited by AplusWebMaster, 28 April 2016 - 01:58 PM.

[AplusWebMaster]

FYI...

Patch -reliability- is unclear...

It’s NOT time to install Windows or Office updates
> http://www.askwoody....office-updates/
Apr 16, 2016 - "... Right now is a -bad-time- to install updates. Check back in a-week-or-two...
(Right now I’m waiting to see what MS does with KB3146706*, but other problems may well surface)..."

* https://support.micr...n-us/kb/3146706
Last Review: 04/12/2016 18:38:00 - Rev: 1.1
___

> http://www.askwoody....using-problems/
Apr 16, 2016 - "... lots of reports of MS16-044/KB3146706 throwing errors – most commonly blue screen 0x0000006B – that go away if the patch is removed..." (-aka- BSOD).
___

MS16-039: Description of the security update for Office 2010
- https://support.micr...n-us/kb/3114566
Last Review: 04/13/2016 00:37:00 - Rev: 2.0
"... Known issues in this security update:
 After you install this security update, you may receive an error message that resembles the following when you try to start an Office application:
    'The Windows installer service could not be accessed.'
 To resolve this problem, do one of the following:
        Option 1 On systems that have update 3139923* installed, make sure that update 3072630** is also installed.
        Option 2 Uninstall update 3139923..."
Applies to:
    Microsoft Office 2010 Service Pack 2

* https://support.micr...n-us/kb/3139923
Last Review: 03/15/2016 17:15:00 - Rev: 1.0

** https://support.micr...n-us/kb/3072630
Last Review: 12/14/2015 19:59:00 - Rev: 2.0
 

Edited by AplusWebMaster, 18 April 2016 - 09:37 AM.

[AplusWebMaster]

FYI...

Speed up Win7 scans for updates
- http://www.infoworld...or-updates.html
Apr 19, 2016 - "If you're experiencing Windows 7 update scans measured in hours - if not days... there's a newly discovered trick that -may- reduce scan times to minutes. It's an -unlikely- combination of two updates... Try it and see how it works on yours":
> http://www.askwoody..../#comment-80655
"I needed to install a COMBINATION of the following updates on Win7 SP1 – KB3138612* AND KB3145739**. I found out that patching KB3145739 alone without patching the WU Client for Win7 SP1 is not enough...
Microsoft did -not- bother patching the WU client app for Vista SP2..."

Windows Update Client for Windows 7 and Windows Server 2008 R2
* https://support.micr...n-us/kb/3138612
Last Review: 03/08/2016 18:22:00 - Rev: 2.0

MS16-039: Description of the security update for Windows Graphics Component
** https://support.micr...n-us/kb/3145739
Last Review: 04/12/2016 17:54:00 - Rev: 1.0

... YMMV.
___

MS16-044: Security Update for Windows OLE
> https://support.micr...n-us/kb/3146706
Last Review: 04/12/2016 18:38:00 - Rev: 1.1

... now "unchecked" but still listed on 'Windows Update' list (??)
 

Edited by AplusWebMaster, 19 April 2016 - 02:52 PM.

[AplusWebMaster]

FYI...

MS releases 24 'optional' patches
- http://www.infoworld...ws-patches.html
Apr 21, 2016 - "The official Windows Update list[1] says -24- patches were released on April 19. But  it seems only two of them - KB 3138378* and 3140245** - were released that day, and the rest came out on April 20. The list itself wasn't updated until April 20... Three of the patches -fix-problems- with earlier security patches..."
1] https://support.micr...en-us/kb/894199
Last Review: 04/20/2016 19:08:00 - Rev: 1.0

Update for Journal.dll binary in Windows
* https://support.micr...n-us/kb/3138378
Last Review: 04/20/2016 04:55:00 - Rev: 3.0

A new registry key enables TLS 1.1 and TLS 1.2 to default to secure protocols in WinHTTP in Windows
** https://support.micr...n-us/kb/3140245
Last Review: 04/20/2016 04:43:00 - Rev: 3.0

(-More- listed w/details at the infoworld URL above.)
 

[AplusWebMaster]

FYI...

KB3148812 breaks WSUS server - DO NOT INSTALL
- https://myonlinesecu...ks-wsus-server/
22 Apr 2016 - "We are seeing loads of reports of KB3148812* -breaks- WSUS server. This update is supposed to prepare WSUS (Windows Software Update Services) to be able to install W10 updates from the WSUS server. It is described as Update enables ESD decryption provision in WSUS in Windows Server 2012 and Windows Server 2012 R2.  Update enables ESD decryption provision in WSUS in Windows Server 2012 and Windows Server 2012 R2..."

Update enables ESD decryption provision in WSUS in Windows Server 2012 and Windows Server 2012 R2
* https://support.micr...n-us/kb/3148812
Last Review: 04/20/2016 04:45:00 - Rev: 3.0

What you need to know about KB3148812
** http://blogs.technet...-kb3148812.aspx
21 Apr 2016 - "... We try not to require post-update manual effort whenever possible, and unfortunately in this case it was unavoidable. This post describes the symptoms you’ll see, details how to resolve them, and then provides some background on this change... it requires some additional manual steps to be taken afterward in order to realign the moving parts of the system. More information on that will be available via the KB article and this blog later-this-week." ??
___

Hold Off on Deploying KB3148812 for Now
>> http://windowsitpro....g-kb3148812-now
Apr 20, 2016
> http://blogs.technet...-kb3148812.aspx
___

Botched WSUS patch KB 3148812 throws errors 80244019, 80244008, 8024401f
Two days after the patch rolled out, Microsoft provided instructions for dealing with reported problems - but the new fixes don't work either
- http://www.infoworld...d-8024401f.html
Apr 22, 2016 - "... Big problem: The new fixes don't work. A tirade of complaints on the TechNet forum said the manual fixes that Microsoft offered after the fact don't fix the patch. Win10 PCs attached to the patched WSUS server still couldn't see the server. Clients are reporting errors 80244007, 80244019, 80244008, and 8024401f..."

DO NOT roll out KB3148812
___

Buggy Office 2013 patch KB 3114941
Crashes in Lync and Outlook lead to Microsoft's -fourth- official recall of a Click-to-Run version of Office in the past four months
- http://www.infoworld...kb-3114941.html
Apr 22, 2016

Lync 2013 (Skype for Business) or Outlook 2013 Crash
- https://support.micr...n-us/kb/3158521
Last Review: 04/22/2016 22:03:00 - Rev: 6.0
"Symptoms: After you install the April 5, 2016, update for Outlook 2013 (KB3114941*), you may experience random crashes of Microsoft Lync 2013 (Skype for Business) or Microsoft Outlook 2013, or both. When this issue occurs, you may find an Application Error...
Workaround:
Method 1: -Uninstall- the April 2016 Outlook update...
> https://support.micr...n-us/kb/3114941
Last Review: 04/22/2016 19:40:00 - Rev: 3.0
"Known issue: After you install this update, you may experience frequent crashes in Outlook 2013 and Skype for Business 2013. If this behavior occurs, uninstall the update...
> Click-to-Run based Installations: Revert to the March 2016 version of Office 2013 by following the steps in the following article in the Microsoft Knowledge Base:
2770432 How to revert to an earlier version of Office 2013 or Office 2016 Click-to-Run
- https://support.micr...n-us/kb/2770432
Last Review: 02/29/2016 08:38:00 - Rev: 6.0 "
 

Edited by AplusWebMaster, 23 April 2016 - 06:15 AM.

[AplusWebMaster]

FYI...

Updated: April 2016 Office Update Release
- https://blogs.techne...update-release/
Apr 29, 2016 - "A new build of Office 2013 Click-To-Run – 15.0.4815.1002 – is available now. This build fixes an intermittent -crash- that may occur in Outlook or Skype for Business (see KB 3158521*). To get this build, you can either wait until you are prompted to update, or go to
File > Account and select Update Options > Update Now."

* https://support.micr...n-us/kb/3158521
Last Review: 04/28/2016 17:11:00 - Rev: 7.0
Applies to:
    Microsoft Lync 2013
    Skype for Business 2015
    Microsoft Outlook 2013
___

Win10 nagware patch KB 3035583 back on Win7 PCs
- http://www.infoworld...dows-7-pcs.html
May 3, 2016

Update installs Get Windows 10 app in Windows 8.1 and Windows 7 SP1
> https://support.micr...n-us/kb/3035583
Last Review: 03/23/2016 18:07:00 - Rev: 11.0
Applies to:
    Windows 8.1 Pro
    Windows 8.1
    Windows 7 Service Pack 1
 

Edited by AplusWebMaster, 04 May 2016 - 07:09 AM.