Patch Tuesday

This month Microsoft addresses 129 vulnerabilities, including SMBv3 bugs, Flash Player, and remote code execution flaws in VBScript.

Microsoft issues fixes for 111 vulnerabilities, making this month the third biggest set of patches in Microsoft's history.

This month Microsoft patches three Windows 10 zero-days, including a patch for two RCE flaws discovered last month in the Windows Adobe Type Manager Library. There are also important updates for vulnerabilities in the OneDrive desktop app for Windows, the DNS client service, and in the way that Windows handles token relationships.

Microsoft recommends applying an out-of-band emergency patch for SMB remote code execution flaw as soon as possible.

The biggest Patch Tuesday in the company's history, this month Microsoft fixes 115 bugs. There's also a security advisory for a critical bug in SMBv3 and a patch for a flaw in the way Windows parses .LNK files. The bug could let an attacker run code regardless of whether a user opens the infected file.

Microsoft UEFI Revocation List File update causes problems on some devices. Here's what you need to know about the latest Windows Update problem.  

This month sees a bumper crop of 99 patches from Microsoft, including a fix for the IE zero-day announced last month and a change in default configuration for new Windows Server Active Directory deployments.

Windows 7 gets its last regular Patch Tuesday security updates, Microsoft fixes a CryptoAPI vulnerability reported by the NSA, and Windows Server RDP also gets patched.

This month’s end-of-year Patch Tuesday is relatively light, with Microsoft fixing a Windows zero-day and a spoofing vulnerability in SQL Server Reporting Services.

This month sees Microsoft patch a zero-day in IE, a security advisory for TPMs, and release the Windows 10 November 2019 Update for seekers.

This month is light on security fixes and there are no zero-days but there are still plenty of critical flaws that need patching.

This month Microsoft patches two zero-days that could lead to elevation of privileges and more Remote Desktop Protocol bugs.

This month Microsoft patches ‘wormable’ vulnerabilities in Remote Desktop that it discovered during routine hardening, remote code execution flaws in Edge and IE, and a new advisory for LDAP security is issued for Active Directory.

This month sees Microsoft patch two zero-day vulnerabilities in Windows, an issue that may cause BitLocker to go into recovery mode, and the usual list of important and critical flaws for other products.

This month Microsoft patches four zero-day flaws in Windows 10 and some Bluetooth security keys stop working.