Microsoft August 2019 Security Updates

Discussion in 'update alerts' started by NICK ADSL UK, Aug 13, 2019 at 1:04 PM.

Thread Status:
Not open for further replies.
  1. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,316
    Location:
    UK
    August 2019 Security Updates
    Release Date: August 13, 2019


    The August security release consists of security updates for the following software:

    • Microsoft Windows
    • Internet Explorer
    • Microsoft Edge
    • ChakraCore
    • Microsoft Office and Microsoft Office Services and Web Apps
    • Visual Studio
    • Online Services
    • Active Directory
    • Microsoft Dynamics
    Please note the following information regarding the security updates:

    • A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
    • Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
    • Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
    • For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
    • In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
    • Starting in May 2019, Internet Explorer 11 is available on Windows Server 2012. This configuration is present only in the IE Cumulative package.
    The following CVEs have FAQs with additional information and may include * further steps to take after installing the updates. Please note that this is not a complete list of CVEs for this release.

    Known Issues

    KB Article Applies To
    4511553 Windows 10, version 1809, Windows Server 2019
    4511872 Internet Explorer
    4512476 Windows Server 2008 SP2 (Monthly Rollup)
    4512482 Windows Server 2012 (Security-only update)
    4512486 Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Security-only update)
    4512488 Windows 8.1, Windows Server 2012 R2 (Monthly Rollup)
    4512489 Windows 8.1, Windows Server 2012 R2 (Security-only update)
    4512491 Windows Server 2008 SP2 (Security-only Update)
    4512497 Windows 10
    4512501 Windows 10, version 1803, Windows Server version 1803
    4512506 Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Monthly Rollup)
    4512507 Windows 10, version 1703
    4512508 Windows 10, version 1903, Windows Server version 1903
    4512516 Windows 10, version 1709
    4512517 Windows 10, version 1607, Windows Server 2016
    4512518 Windows Server 2012 (Monthly Rollup)
    https://portal.msrc.microsoft.com/e...tedetail/312890cc-3673-e911-a991-000d3a33a34d
     
  2. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,316
    Location:
    UK
    Title: Microsoft Security Advisory Notification
    Issued: August 13, 2019
    **************************************************************************************

    Security Advisories Released or Updated on August 13, 2019
    ======================================================================================

    * Microsoft Security Advisory ADV190014

    - ADV190014 | Microsoft Live Accounts Elevation of Privilege Vulnerability
    - https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV190014
    - Reason for Revision: Information published.
    - Originally posted: August 13, 2019
    - Updated: N/A
    - Version: 1.0

    * Microsoft Security Advisory ADV190023

    - ADV190023 | Microsoft Guidance for Enabling LDAP Channel Binding and LDAP Signing
    - https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV190023
    - Reason for Revision: Information published.
    - Originally posted: August 13, 2019
    - Updated: N/A
    - Version: 1.0

    * Microsoft Security Advisory ADV190009

    - ADV190009 | SHA-2 Code Sign Support Advisory
    - https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV190009
    - Reason for Revision: To address a known issue with system restarts if the
    Itanium-based boot manager (bootmgfw.efi) is not updated on systems running
    Windows 7 Service Pack 1 or Windows Server 2008 R2 Service Pack 1, Microsoft is
    re-releasing KB4474419. Microsoft recommends that customers running these versions
    of Windows on Itanium-based systems reinstall update 4474419. IMPORTANT: In the
    case of systems running Windows Server 2008 R2 for Itanium-based systems, to
    prevent further restart issues customers MUST install update 4474419 before
    installing any security updates released on or after August 13, 2019. For more
    information about the known issues see Microsoft Knowledge Base Article 4474419.
    For more information about the known issues see Microsoft Knowledge Base Article
    4474419. For more information about the known issues see Microsoft Knowledge Base
    Article 4474419.
    - Originally posted: March 12, 2019
    - Updated: August 13, 2019
    - Version: 4.0
     
  3. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,316
    Location:
    UK
    Title: Microsoft Security Update Releases
    Issued: August 13, 2019
    **************************************************************************************

    Summary
    =======

    The following CVEs has undergone a major revision increment:

    * CVE-2019-0988


    Revision Information:
    =====================

    - https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0988
    - Version: 2.0
    - Reason for Revision: Added Windows 10 installed on Microsoft Edge to the Security
    Updates table because it is affected by this vulnerability. Microsoft recommends
    that customers running Edge on Windows 10 install the latest security updates to
    be fully protected from this vulnerability.
    - Originally posted: June 11, 2019
    - Updated: August 13, 2019
    - Aggregate CVE Severity Rating: Critical
     
  4. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,316
    Location:
    UK
    Title: Microsoft Security Update Releases
    Issued: August 14, 2019
    **************************************************************************************

    Summary
    =======

    The following CVE has undergone a major revision increment:

    * CVE-2019-1258


    Revision Information:
    =====================

    - CVE-2019-1258 | Azure Active Directory Authentication Library Elevation of
    Privilege Vulnerability
    - https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1258
    - Version: 1.0
    - Reason for Revision: Information published.
    - Originally posted: August 14, 2019
    - Updated: N/A
    - Aggregate CVE Severity Rating: Important
     
Loading...
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.