July 9, 2024—KB5040456 (Monthly Rollup)

July 9, 2024—KB5040456 Monthly Rollup Important The installation of this Extended Security Update ESU might fail when you try to install it on an Azure Arc-enabled device that is running Windows Server 2012 R2. For a successful installation, please make sure all Subset of endpoints for ESU only a...

June 11, 2024—KB5039294 (Monthly Rollup)

June 11, 2024—KB5039294 Monthly Rollup IMPORTANT The installation of this Extended Security Update ESU might fail when you try to install it on an Azure Arc-enabled device that is running Windows Server 2012 R2. For a successful installation, please make sure all Subset of endpoints for ESU only...

August 13, 2024—KB5041160 (OS Build 20348.2655)

August 13, 2024—KB5041160 OS Build 20348.2655 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows Server 2022, see its update history page. Note Follow @WindowsUpdate to find out when...

August 13, 2024-KB5041951 Cumulative Update for .NET Framework 4.8 for Windows 10, version 1607 and Windows Server 2016

August 13, 2024-KB5041951 Cumulative Update for .NET Framework 4.8 for Windows 10, version 1607 and Windows Server 2016 Release Date: August 13, 2024 Version: .NET Framework 4.8 The August 13, 2024 update for Windows 10, version 1607 and Windows Server 2016 includes security and cumulative...

August 13, 2024-KB5042351 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 21H2

August 13, 2024-KB5042351 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 21H2 Release Date: August 13, 2024 Version: .NET Framework 3.5, 4.8 and 4.8.1 Summary This article describes the security and cumulative update for 3.5, 4.8 and 4.8.1 for Windows 10 Version...

ALSA-2024:4928 Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: block: null pointer dereference in ioctl.c when length and logical block size are misaligned CVE-2023-52458 kernel: ext4: avoid allocating blocks from corrupted group in ext4mbtrybestfoun...

OPENSUSE-SU-2024:0211-1 Security update for caddy

This update for caddy fixes the following issues: Update to version 2.8.4: cmd: fix regression in auto-detect of Caddyfile 6362 Tag v2.8.3 was mistakenly made on the v2.8.2 commit and is skipped Update to version 2.8.2: cmd: fix auto-detetction of .caddyfile extension 6356 caddyhttp: properly...

SUSE SLES15 / openSUSE 15 Security Update : nodejs20 (SUSE-SU-2024:2543-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2543-1 advisory. Update to 20.15.1: - CVE-2024-36138: Fixed CVE-2024-27980 fix bypass bsc1227560 - CVE-2024-22020: Fixed a bypass of...

Announcing the CVRF API 3.0 upgrade

At the Microsoft Security Response Center, we are committed to continuously improving the security and performance of our services to meet the evolving needs of our customers. We are excited to announce the rollout of the latest version of our Common Vulnerability Reporting CVRF API. This update...

July 9, 2024-KB5039885 Cumulative Update for .NET Framework 4.8 for Windows 10, version 1607 and Windows Server 2016

July 9, 2024-KB5039885 Cumulative Update for .NET Framework 4.8 for Windows 10, version 1607 and Windows Server 2016 Revised August 28, 2024: Update breaking change details to known issue section.Revised July 30, 2024: Add breaking change information to known issue section. Release Date: July 9,...

July 9, 2024-KB5041019 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 22H2

July 9, 2024-KB5041019 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 22H2 Revised August 28, 2024: Update breaking change details to known issue section.Revised July 30, 2024: Add breaking change information to known issue section. Release Date: July 9, 2024...

July 9, 2024-Security and Quality Rollup for .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 R2 (KB5041023)

July 9, 2024-Security and Quality Rollup for .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 R2 KB5041023 Revised August 28, 2024: Update breaking change details to known issue section.Revised July 30, 2024: Add breaking change information to known issue section. Applies...

KB5040569: Servicing stack update for Windows Server 2012 R2: July 9, 2024

KB5040569: Servicing stack update for Windows Server 2012 R2: July 9, 2024 End of support information REMINDER Windows 8.1 reached end of support EOS on January 10, 2023, at which point technical assistance and software updates are no longer provided. If you have devices running Windows 8.1, we...

KB5040566: Servicing stack update for Windows 10: July 9, 2024

KB5040566: Servicing stack update for Windows 10: July 9, 2024 End of support information Windows 10, version 1507 reached the end of support EOS on May 9, 2017 for devices running the Pro, Home, Enterprise, Education, and Enterprise LoT editions. After April 9, 2019, these devices are no longer...

July 9, 2024-KB5041025 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Azure Stack HCI, version 22H2

July 9, 2024-KB5041025 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Azure Stack HCI, version 22H2 Revised August 28, 2024: Update breaking change details to known issue section.Revised July 30, 2024: Add breaking change information to known issue section. Release Date: July 9, 2024...

Virtuozzo Hybrid Infrastructure 6.2 (6.2.0-136)

In this release, Virtuozzo Hybrid Infrastructure provides a range of new features that cover the compute service, high availability of the management node, object storage management, networking, and monitoring. Additionally, this release delivers stability improvements and addresses issues found ...

June 25, 2024-KB5040370 Cumulative Update Preview for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 22H2

June 25, 2024-KB5040370 Cumulative Update Preview for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 22H2 Release Date: June 25, 2024 Version: .NET Framework 3.5, 4.8 and 4.8.1 Summary This article describes the security and cumulative update for 3.5, 4.8 and 4.8.1 for Windows 10 Versio...

DEBIAN-CVE-2024-38610

In the Linux kernel, the following vulnerability has been resolved: drivers/virt/acrn: fix PFNMAP PTE checks in acrnvmrammap Patch series "mm: followpte improvements and acrn followpte fixes". Patch 1 fixes a bunch of issues I spotted in the acrn driver. It compiles, that's all I know. I'll...

CVE-2024-38610 drivers/virt/acrn: fix PFNMAP PTE checks in acrn_vm_ram_map()

In the Linux kernel, the following vulnerability has been resolved: drivers/virt/acrn: fix PFNMAP PTE checks in acrnvmrammap Patch series "mm: followpte improvements and acrn followpte fixes". Patch 1 fixes a bunch of issues I spotted in the acrn driver. It compiles, that's all I know. I'll...

CVE-2024-38351 Password auth and OAuth2 unverified email linking

Pocketbase is an open source web backend written in go. In affected versions a malicious user may be able to compromise other user accounts. In order to be exploited users must have both OAuth2 and Password auth methods enabled. A possible attack scenario could be: 1. a malicious actor register...