• Home
  • blog
  • Microsoft, monthly security up...
Microsoft, monthly security update in March 2022 -New features of taskbar on Windows 11

Microsoft, monthly security update in March 2022 -New features of taskbar on Windows 11

Photo: IMPRESS WATCH

Microsoft、2022年3月の月例セキュリティ更新 ~Windows 11にはタスクバーの新機能も

 On March 8 (local time), Microsoft released a monthly security update program for all supported Windows (Patch Choes Day, B Release).Currently available from "Windows Update" and "Microsoft Update Catalog".Security updates are also provided for the following Microsoft products.[See another image about this article] ・.There are three fatal issues that have been evaluated as "Critical".・ CVE-2022-22006: HEVC Video Expansion Function Remote CVE-2022-23277: Microsoft Exchange Server Remote Vulnerability to execute code CVE-2022-24501: VP9 VP9: VP9There are three vulnerability in which the code is executed by remote extensions, and three vulnerabilities that have already been published in the public.It is said that the attack case has not been confirmed yet, but it is highly dangerous to use it.All seriousness is "Important".・ CVE-2022-24512:.Net and Visual Studio Remote Code is executed, CVE-2022-21990: Vulnerability in which the code is executed in remote desktop clients, CVE-2022-24459: promoted the privilege of Windows Fax and Scan ServiceVulnerability ■ Windows 10/11 and Windows Server 2016/2019/2022 The maximum severity is "important" (remotely executed).In addition to security corrections, it also includes functional improvements such as the weather display on the taskbar, the "Microsoft Teams" screen sharing from the live thumbnail, the mute of the task tray, and the clock display on the sub monitor.In addition, when reset or remote wipe (remote eras) a Windows device, even if you select the [Delete] option, the data will not be deleted and the problem will remain.The OS core of Windows 10 after 10 version 2004 is common, and it is a mechanism that switches only the difference function with a patch called the "enablment package".Therefore, the contents of the update program are the same.■ Windows 8.1 and Windows Server 2012/2012 R2 The maximum severity is "important" (promotion of privileges).There are two types of "security only" and "monthly roll -up", but please note that "monthly rollup" is recommended as much as possible.・ Windows 8.1/Windows Server 2012 R2 Monthly Roll -up: KB5011564 ・ Windows 8.1/Windows Server 2012 R2 Security only: KB5011560/Windows Server 2012 Monsthier Roll -up: KB5011535, Windows Server 2012 Security Only: KB5011527 Increased extended support for companies "Expansion Security Update (ESU)"Patches are also provided for Windows 7 and Windows Server 2008/2008 R2.■ Microsoft Office -related software maximum severity is "important" (remotely executed).See the following documentation for details.It is updated regardless of "Patch Choes Day". The latest security revision was released on March 3,USA..0.1150.30.There is no problem if it is a subsequent version.■ Microsoft Exchange Server, as mentioned above, two vulnerabilities, including the problem of the seriousness "CRITICAL", have been corrected.・ CVE-2022-23277 (Emergency: Remote code is executed) ・ CVE-2022-24463 (Important: spoofing) also refer to the official blog.・.Net MARCH 2022 Updates-.Net 6.0.3,.Net 5.0.15 and,.Net 3.1.23-.Net BLOG ■ Microsoft Defender's guidance on the spoofing vulnerabilities (CVE-2022-23278) have been published on the official blog.GUIDANCE FOR CVE-2022-23278 SPOOFING IN Microsoft Defender for Endpoint-Microsoft Security Response Center In addition, Microsoft Defender for Iot has been dealt with two vulnerabilities.・ CVE-2022-23265 (Important: Remote code is executed) ・ CVE-2022-23266 (Implementation of privilege) ■.Net ".Net 6.0.3 ",".Net 5.0.15 "and".Net 3.1."23" has been released.Three vulnerabilities have been revised.・.Net MARCH 2022 Updates-.Net 6.0.3,.Net 5.0.15 and,.Net 3.1.23-.Net BLOG ■ Other products and other security updates have been provided for the following products.・ VP9 Video Extensions: 2 (Emergency: 1, 1, 1 important) ・ Visual Studio Code: 1 (Important: 1) ・ Skype Extension for Chrome: 1 (Important: 1)DESKTOP: 2 (Important: 2), Raw Image Extension: 2 (Important: 2), Paint 3D: 1 (Important: 1), Intune Company Portal for IOS: 1 (1)・ HEVC Video Extensions: 6 (Emergency: 1, 5 important cases) ・ Heif Image Extension: 1 (Important: 1) ・ Azure Site Recovery VMware to Azure: 11 (Important: 11)2022 Version 17.0: 3 (Important: 3) ・ Microsoft Visual Studio 2019 Version 16.9: 3 cases (important: 3) ・ Microsoft Visual Studio 2019 Version 16.7: 3 cases (important: 3) ・ Microsoft Visual Studio 2019 Version 16.11: 3 cases (important: 3)

Window forest, Hideto Tarui

Category

Hot Articles

With Fire HD 8, you can listen to music with LDAC and watch online videos in HD quality! 6980 yen at Amazon Time Sale Festival 11/03/2022
What makes a gaming router different from a regular Wi-Fi router?I compared the points 10/03/2022
You can also play PS5 at 4K / 120Hz! Gaming monitor "MSI Optix MPG321UR-QD" which is 32 type and has all the functions 04/04/2022
If you want a tablet "somehow", buy the Fire HD 10 series on Amazon. I'm sure most people are very satisfied with this! 10/04/2022
DIE VORTEILE EINES ERNEUERUNGSKONSOLENPLANS 18/08/2022
Renault launches new SUV "Arkana" equipped with original hybrid on May 26 Price is 4.29 million yen 07/04/2022
"FFXIV" patch 5.2 "Recollection of the evil star", scheduled to be implemented in mid-February 2020 27/04/2022
What is the plan that can be used at "maximum 1 Mbps" even at low speeds?Compare by sub-brand, online only, MVNO 04/04/2022

Tags