5 replies to this topic

[AplusWebMaster]

FYI...

- https://technet.micr...curity/ms16-jun
June 14, 2016 - "This bulletin summary lists security bulletins released for June 2016...
(Total of -16-)

Microsoft Security Bulletin MS16-063 - Critical
Cumulative Security Update for Internet Explorer (3163649)
- https://technet.micr...curity/MS16-063
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Internet Explorer

Microsoft Security Bulletin MS16-068 - Critical
Cumulative Security Update for Microsoft Edge (3163656)
- https://technet.micr...curity/MS16-068
Critical - Remote Code Execution - Requires restart - Microsoft Windows, Microsoft Edge

Microsoft Security Bulletin MS16-069 - Critical
Cumulative Security Update for JScript and VBScript (3163640)
- https://technet.micr...curity/MS16-069
Critical - Remote Code Execution - May require restart - Microsoft Windows

Microsoft Security Bulletin MS16-070 - Critical
Security Update for Microsoft Office (3163610)
- https://technet.micr...curity/MS16-070
Critical - Remote Code Execution - May require restart - Microsoft Office, Microsoft Office Services and Web Apps

Microsoft Security Bulletin MS16-071 - Critical
Security Update for Microsoft Windows DNS Server (3164065)
- https://technet.micr...curity/MS16-071
Critical - Remote Code Execution - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-072 - Important
Security Update for Group Policy (3163622)
- https://technet.micr...curity/MS16-072
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-073 - Important
Security Update for Windows Kernel-Mode Drivers (3164028)
- https://technet.micr...curity/MS16-073
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-074 - Important
Security Update for Microsoft Graphics Component (3164036)
- https://technet.micr...curity/MS16-074
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-075 - Important
Security Update for Windows SMB Server (3164038)
- https://technet.micr...curity/MS16-075
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-076 - Important
Security Update for Netlogon (3167691)
- https://technet.micr...curity/MS16-076
Important - Remote Code Execution - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-077 - Important
Security Update for WPAD (3165191)
- https://technet.micr...curity/MS16-077
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-078 - Important
Security Update for Windows Diagnostic Hub (3165479)
- https://technet.micr...curity/MS16-078
Important - Elevation of Privilege - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-079 - Important
Security Update for Microsoft Exchange Server (3160339)
- https://technet.micr...curity/MS16-079
Important - Elevation of Privilege - May require restart - Microsoft Windows

Microsoft Security Bulletin MS16-080 - Important
Security Update for Microsoft Windows PDF (3164302)
- https://technet.micr...curity/MS16-080
Important - Remote Code Execution - May require restart - Microsoft Windows

Microsoft Security Bulletin MS16-081 - Important
Security Update for Active Directory (3160352)
- https://technet.micr...curity/MS16-081
Important - Denial of Service - Requires restart - Microsoft Windows

Microsoft Security Bulletin MS16-082 - Important
Security Update for Microsoft Windows Search Component (3165270)
- https://technet.micr...curity/MS16-082
Important - Denial of Service - Requires restart - Microsoft Windows
___

- https://blogs.techne...update-release/
June 14, 2016

- https://technet.micr...y/mt631688.aspx

June 2016 Office Update Release
- https://blogs.techne...update-release/
June 14, 2016 - "... there are 22 security updates (1 bulletin) and 46 non-security updates.
Security bulletins:
    MS16-070: https://technet.micr...y/ms16-070.aspx
All of the security and non-security updates for June are listed in KB article 3166910*
* http://support.micro....com/kb/3166910
A new version of Office 2013 Click-To-Run is available: 15.0.4833.1001
A new version of Office 2010 Click-To-Run is available: 14.0.7170.5000
For information on Office 365 Click-To-Run updates, see Office 365 client update branch releases:
- https://technet.micr.../en-us/mt465751
___

MS16-063: http://www.securityt....com/id/1036096
MS16-068: http://www.securityt....com/id/1036099
MS16-069: http://www.securityt....com/id/1036097
MS16-070: http://www.securityt....com/id/1036093
MS16-071: http://www.securityt....com/id/1036095
MS16-072: http://www.securityt....com/id/1036100
MS16-073: http://www.securityt....com/id/1036109
MS16-074: http://www.securityt....com/id/1036101
MS16-075: http://www.securityt....com/id/1036110
MS16-076: http://www.securityt....com/id/1036103
MS16-077: http://www.securityt....com/id/1036104
MS16-078: http://www.securityt....com/id/1036105
MS16-079: http://www.securityt....com/id/1036106
MS16-080:
MS16-081: http://www.securityt....com/id/1036108
MS16-082: http://www.securityt....com/id/1036102
___

ISC Analysis
- https://isc.sans.edu...wday=2016-06-14
2016-06-14

Qualys Analysis
- https://blog.qualys....esday-june-2016
June 14, 2016 - "... 16 bulletins fixing over 40 distinct vulnerabilities (CVEs). It brings up the half-year total to 81 which projects to a total of over 160 bulletins for 2016, a new record in terms of patches for the last decade..."

.

Edited by AplusWebMaster, 14 June 2016 - 07:42 PM.

[AplusWebMaster]

FYI...

Microsoft Security Bulletin MS16-039 - Critical
Security Update for Microsoft Graphics Component (3148522)
- https://technet.micr...y/ms16-039.aspx
V3.0 (June 14, 2016): Microsoft has re-released security update 3144427 for affected editions of Microsoft Lync 2010 and Microsoft Lync 2010 Attendee. The re-release addresses issues customers might have experienced downloading security update 3144427. Customers running Microsoft Lync 2010 should install the update to be fully protected from the vulnerability. See Microsoft Knowledge Base Article 3144427* for more information.
* https://support.micr...n-us/kb/3144427
Last Review: 05/31/2016 00:46:00 - Rev: 4.0
___

Cumulative update for Windows 10
- https://support.micr...n-us/kb/3163017
Last Review: 06/14/2016 18:16:00 - Rev: 1.0
___

MS16-072 patch/update borks Group Policy...
- http://www.theregist...s_group_policy/
15 Jun 2016 - "...  most recent security update is causing problems with Windows Group Policy settings.
Users on Reddit* and Microsoft support forums** are reporting that after the MS16-072 update was installed, changes were made in Group Policy object (GPO) settings that left previously hidden drives and devices accessible..."
* https://www.reddit.c..._to_remove_all/

** https://social.techn...rum=winserverGP

MS16-072: Security update for Group Policy
- https://support.micr...n-gb/kb/3163622
Last Review: 06/16/2016 21:06:00 - Rev: 4.0
Applies to:
    Windows 10 ...
    Windows Server 2012 ...
    Windows 8.1 ...
    Windows Server 2008 ...
    Windows 7 SP1
    Windows Vista SP2...

[ Known issues:
MS16-072 changes the security context with which user group policies are retrieved. This 'by-design' behavior change protects customers’ computers from a security vulnerability. Before MS16-072 is installed, user group policies were retrieved by using the user’s security context. After MS16-072 is installed, user group policies are retrieved by using the machines security context. This issue is applicable for the following KB articles:
• https://support.micr...n-us/kb/3159398- MS16-072: Description of the security update for Group Policy: June 14, 2016
• https://support.micr...n-us/kb/3163017- Cumulative update for Windows 10: June 14, 2016
• https://support.micr...n-us/kb/3163018- Cumulative update for Windows 10 Version 1511 and Windows Server 2016 Technical Preview 4: June 14, 2016
• https://support.micr...n-us/kb/3163016- Cumulative Update for Windows Server 2016 Technical Preview 5: June 14 2016
Symptoms: All user Group Policy, including those that have been security filtered on user accounts or security groups, or both, may fail to apply on domain joined computers.
Cause: This issue may occur if the Group Policy Object is missing the Read permissions for the Authenticated Users group or if you are using security filtering and are missing Read permissions for the domain computers group.
Resolution: To resolve this issue, use the Group Policy Management Console (GPMC.MSC) and follow one of the following steps:
    Add the Authenticated Users group with Read Permissions on the Group Policy Object (GPO).
    If you are using security filtering, add the Domain Computers group with read permission. ]
> https://blogs.techne...-to-check-gpos/
June 16, 2016
 

>> https://social.techn...rum=winserverGP
"... uninstalled this update and rebooted, everything was back to normal..."

Related: MS16-072: Description of the security update for Group Policy
> https://support.micr...n-us/kb/3159398
Last Review: 06/16/2016 21:18:00 - Rev: 2.0
See "Known issues"

> https://support.micr...n-us/kb/3163016
Last Review: 06/16/2016 21:09:00 - Rev: 2.0
Applies to: Windows Server 2016
See "Known issues"
> https://support.micr...n-us/kb/3163017
Last Review: 06/16/2016 21:14:00 - Rev: 2.0
Applies to: Windows 10
See "Known issues"
> https://support.micr...n-us/kb/3163018
Last Review: 06/15/2016 08:02:00 - Rev: 2.0
Applies to: Windows Server 2016... Windows 10
 

Edited by AplusWebMaster, 20 June 2016 - 11:13 AM.

[AplusWebMaster]

FYI...

MS16-083: Security update for Adobe Flash Player
- https://support.micr...n-us/kb/3167685
Last Review: 06/16/2016 17:19:00 - Rev: 1.0
Applies to:
    Windows 10 ...
    Windows Server 2012 ...
    Windows 8.1 ...

>> https://forums.whatt...=93035&p=877632
 

Edited by AplusWebMaster, 16 June 2016 - 02:33 PM.

[AplusWebMaster]

FYI... Win7SP1 - WinSvr2008R2 updates revised

June 2016 update rollup for Win7SP1 and Windows Svr 2008 R2 SP1
- https://support.micr...n-us/kb/3161608
Last Review: 06/22/2016 10:00:00 - Rev: 2.0
"The June 2016 update rollup package for Windows 7 Service Pack 1 (SP1) and Windows Server 2008 R2 SP1 fixes issues and includes performance and reliability improvements. We recommend that you apply this update rollup as part of your regular maintenance routines...
Method 1: Windows Update: This update is provided as an -Optional- update on Windows Update..."

>> http://www.infoworld...date-scans.html
Jun 22, 2016
___

Windows Update Client for Win7 and Windows Svr 2008 R2
- https://support.micr...n-us/kb/3161647
Last Review: 06/21/2016 17:25:00 - Rev: 2.0
"This update contains some improvements to Windows Update Client in Windows 7 Service Pack 1 (SP1) and Windows Server 2008 R2 SP1. This includes the following:
• An optimization that addresses long scan time for updates that's reported on some computers.
• Fix for a Windows Update error 0x8007000E on some computers while they are updating.
• Some reliability improvements..."
 

[AplusWebMaster]

FYI...

Compatibility update for upgrading Windows 7
- https://support.micr...n-us/kb/2952664
Last Review: 07/05/2016 16:22:00 - Rev: 23.0
Applies to:
Windows 7 SP1
___

Compatibility update for Windows 8.1 and Windows 8
- https://support.micr...n-us/kb/2976978
Last Review: 07/05/2016 16:23:00 - Rev: 27.0
Applies to:
Windows 8.1 Enterprise, Windows 8.1, Windows 8.1 Pro, Windows 8 Enterprise, Windows 8, Windows 8 Pro
___

> http://www.infoworld...al-3170735.html
Jul 6, 2016

- https://support.micr...n-us/kb/2977759
Last Review: 07/05/2016 16:24:00 - Rev: 23.0
Applies to:
Windows 7 Enterprise, Windows 7 Home Premium, Windows 7 Home Basic, Windows 7 Professional, Windows 7 Starter, Windows 7 Ultimate

Update for Journal.dll binary in Windows
- https://support.micr...n-us/kb/3138378
Last Review: 05/10/2016 17:25:00 - Rev: 4.0
Applies to:
Windows Server 2012 R2 Datacenter, Windows Server 2012 R2 Standard, Windows Server 2012 R2 Essentials, Windows Server 2012 R2 Foundation, Windows 8.1 Enterprise, Windows 8.1 Pro, Windows 8.1, Windows RT 8.1, Windows Server 2012 Datacenter, Windows Server 2012 Standard, Windows Server 2012 Essentials, Windows Server 2012 Foundation, Windows Server 2008 R2 Service Pack 1, Windows 7 Service Pack 1, Windows Server 2008 Service Pack 2, Windows Vista Service Pack 2
 

Edited by AplusWebMaster, 06 July 2016 - 08:40 AM.

[AplusWebMaster]

FYI...

July 2016 'Non-Security' Office Update Release
> https://blogs.techne...update-release/
July 5, 2016
"Listed below are the non-security updates we released on Microsoft Update and the Download Center today. See the linked KB articles for more information.
Office 2007: Update for Microsoft Office Outlook 2007 Junk Email Filter (KB3115307)*
Office 2010: Definition Update for Microsoft Office 2010 (KB3115321)**
Office 2013 ...
Office 2016 ..."

* https://support.micr...n-us/kb/3115307
Last Review: 07/05/2016 16:32:00 - Rev: 1.0

** https://support.micr...n-us/kb/3115321
Last Review: 07/05/2016 16:33:00 - Rev: 1.0
___

MS posts -more- details for botched permissions in MS16-072
- http://www.infoworld...n-ms16-072.html
Jul 6, 2016 - "... The patch caused problems, though - not with client-side computers, but in the way admins have set permissions for Group Policies - on the server side..."
 

Edited by AplusWebMaster, 07 July 2016 - 11:39 AM.