Patch Tuesday

August sees Microsoft release the smallest number of security fixes for its products so far this year. In fact, it's the smallest batch since December 2019. In addition to new bug fixes for the Windows Print Spooler service and NTLM, there are also changes in the default Point and Print driver installation behavior. Recurring PrintNightmare?… Read More

Microsoft patches 103 security vulnerabilities this month, including PrintNightmare, a Windows DNS Server bug, 3 elevation of privilege vulnerabilities in the Windows kernel, and much more. Windows and Windows Server Let's start with the bug that surfaced earlier in July month called PrintNightmare. PrintNightmare Microsoft issued an out-of-band cumulative update (CU) for a remote execution… Read More

This month Microsoft patches 7 zero-day flaws in Windows, 6 of which are being exploited in the wild. And there are also important updates for SharePoint Server, Microsoft Office, and Adobe Acrobat and Reader. Windows and Windows Server If you haven't already started testing and deploying June's updates for Windows and Windows Server, then it's… Read More

This month Microsoft releases critical patches for on-premises Exchange Server, a fix for the AD Kerberos KDC flaw, and plugs a zero-day elevation of privilege bug in Windows 10. Windows and Windows Server This month Microsoft patched an elevation of privilege bug (CVE-2021-28310) in Windows that is already been exploited in the wild. The patch… Read More

Microsoft released patches to fix 82 security bugs in Windows and other software this month. There are critical bugs in IE, Exchange Server, and Windows Server DNS. Windows and Windows Server Windows gets two patches for critical remote code execution (RCE) flaws. CVE-2021-26876 is a vulnerability in OpenType font parsing and CVE-2021-26867 is a flaw… Read More

Microsoft fixes a zero-day in its Defender antimalware software and issues a patch for a vulnerability that was publicly disclosed in December.

This month there are just 58 bugs patched for Microsoft products, including a critical remote code execution flaw in Hyper-V and Microsoft issues a security advisory for Windows DNS.

Microsoft patches 112 bugs, including a zero-day for the Windows kernel.

This month Microsoft patches a serious remote code execution (RCE) in Windows that could be easily wormable and Outlook gets a patch for a bug that could let an attacker run arbitrary code on affected systems. And after a break of a few months, Adobe releases a security update for Flash Player.

Microsoft patches 120 vulnerabilities this month, including 2 zero-day flaws. One in Windows and the second in Internet Explorer.

Microsoft releases 123 security updates, including a patch for a critical Windows Server DNS bug and Hyper-V RemoteFX vGPU gets disabled.

This month Microsoft addresses 129 vulnerabilities, including SMBv3 bugs, Flash Player, and remote code execution flaws in VBScript.

Microsoft issues fixes for 111 vulnerabilities, making this month the third biggest set of patches in Microsoft's history.

This month Microsoft patches three Windows 10 zero-days, including a patch for two RCE flaws discovered last month in the Windows Adobe Type Manager Library. There are also important updates for vulnerabilities in the OneDrive desktop app for Windows, the DNS client service, and in the way that Windows handles token relationships.

Microsoft recommends applying an out-of-band emergency patch for SMB remote code execution flaw as soon as possible.