Spyware, Viruses, & Security forum

Alert

Microsoft Security Bulletin Summary for May 2016

Published : May 10, 2016

Microsoft released 16 new security updates today. Eight (8) are rated Critical and eight (8) are rated as Important.

Microsoft also released an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center.

Critical: 8

MS16-151 - Cumulative Security Update for Internet Explorer (3155533)
MS16-152 - Cumulative Security Update for Microsoft Edge (3155538)
MS16-153 - Cumulative Security Update for JScript and VBScript (3156764)
MS16-154 - Security Update for Microsoft Office (3155544)
MS16-155 - Security Update for Microsoft Graphics Component (3156754)
MS16-156 - Security Update for Windows Journal (3156761)
MS16-157 - Security Update for Windows Shell (3156987)
MS16-164 - Security Update for Adobe Flash Player (3157993)

Important: 8

MS16-158 - Security Update for Windows IIS (3141083)
MS16-159 - Security Update for Windows Media Center (3150220)
MS16-160 - Security Update for Windows Kernel (3154846)
MS16-161 - Security Update for Microsoft RPC (3155520)
MS16-162 - Security Update for Windows Kernel-Mode Drivers (3158222)
MS16-165 - Security Update for .NET Framework (3156757)
MS16-166 - Security Update for Virtual Secure Mode (3155451)
MS16-167 - Security Update for Volume Manager Driver (3155784)

Security Bulletin:
https://technet.microsoft.com/en-us/library/security/ms16-may.aspx

Discussion is locked
You are posting a reply to: Microsoft Security Bulletin Summary for May 2016
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: Microsoft Security Bulletin Summary for May 2016
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
Microsoft Security Bulletin Minor Revisions

In reply to: Microsoft Security Bulletin Summary for May 2016

Issued: May 12, 2016

Summary
The following bulletins and/or bulletin summaries have undergone a minor revision increment.

Please see the appropriate bulletin for more details.

* MS16-065 - Important

Bulletin Information:

MS16-065
- Title: Security Update for .NET Framework (3156757)
- https://technet.microsoft.com/library/security/ms16-065.aspx
- Reason for Revision: V1.1 (May 12, 2016): Revised bulletin to announce a detection change for the 3142037 update for .NET Framework 4.6/4.6.1. This is an informational change only. Customers who have already successfully updated their systems do not need to take any action.
- Originally posted: May 10, 2016
- Updated: May 12, 2016
- Bulletin Severity Rating: Important
- Version: 1.1

Collapse -
Microsoft Security Bulletin Minor Revisions

In reply to: Microsoft Security Bulletin Summary for May 2016

Issued: May 13, 2016

Summary
The following bulletins and/or bulletin summaries have undergone a minor revision increment.

Please see the appropriate bulletin for more details.

* MS16-MAY
* MS16-067 - Important

Bulletin Information:

MS16-MAY
- Title: Microsoft Security Bulletin Summary for May 2016
- https://technet.microsoft.com/library/security/ms16-may.aspx
- Reason for Revision: V1.2 (May 13, 2016): For MS16-067, Bulletin Summary revised to change the vulnerability severity rating for Windows 8.1 and Windows RT 8.1 to Not applicable, because these operating systems are not affected by the vulnerability described in this bulletin. Customers who have applied security update 3155784 do not need to take any further action. This is an informational change only.
- Originally posted: May 10, 2016
- Updated: May 13, 2016
- Bulletin Severity Rating: Not applicable
- Version: 1.2

MS16-067
- Title: Security Update for Volume Manager Driver (3155784)
- https://technet.microsoft.com/library/security/ms16-067.aspx
- Reason for Revision: V1.1 (May 13, 2016): Bulletin revised to change the vulnerability severity rating for Windows 8.1 and Windows RT 8.1 to Not applicable, because these operating systems are not affected by the vulnerability described in this bulletin. Customers who have applied security update 3155784 do not need to take any further action. This is an informational change only.
- Originally posted: May 10, 2016
- Updated: May 13, 2016
- Bulletin Severity Rating: Important
- Version: 1.1

Collapse -
Security Advisories Updated or Released

In reply to: Microsoft Security Bulletin Summary for May 2016

Issued: May 18, 2016

* Microsoft Security Advisory 2880823
- Title: Deprecation of SHA-1 Hashing Algorithm for Microsoft Root Certificate Program
- https://technet.microsoft.com/library/security/2880823.aspx
- Reason for Revision: V2.0 (May 18, 2016): Advisory updated to provide links to the current information regarding the use of the SHA1 hashing algorithm for the purposes of SSL and code signing. For more information, see Windows Enforcement of Authenticode Code Signing and Timestamping.
- Originally posted: November 12, 2013
- Updated: May 18, 2016
- Bulletin Severity Rating: None
- Version: 2.0

Collapse -
Microsoft Security Bulletin Minor Revisions

In reply to: Microsoft Security Bulletin Summary for May 2016

Issued: May 18, 2016

Summary
The following bulletins and/or bulletin summaries have undergone a minor revision increment.

Please see the appropriate bulletin for more details.

* MS16-035 - Important

Bulletin Information:

MS16-035
- Title: Security Update for .NET Framework to Address Security Feature Bypass (3141780)
- https://technet.microsoft.com/library/security/ms16-035.aspx
- Reason for Revision: V2.1 (May 18, 2016): Revised bulletin to clarify the distribution audience for the Microsoft .NET Framework 4.5.2 and Microsoft .NET Framework 4.6/4.6.1 security updates that were re-released on May 10, 2016, as follows: The security updates for Microsoft .NET Framework 4.5.2 have been re-released to Limited Distribution Release (LDR) customers only. The security updates for Microsoft .NET Framework 4.6/4.6.1 have been re-released to all customers.
- Originally posted: March 8, 2016
- Updated: May 18, 2016
- Bulletin Severity Rating: Important
- Version: 2.1

Collapse -
Microsoft Security Bulletin Minor Revisions

In reply to: Microsoft Security Bulletin Summary for May 2016

Issued: May 25, 2016

Summary
The following bulletins and/or bulletin summaries have undergone a minor revision increment.

Please see the appropriate bulletin for more details.

* MS15-JUL
* MS16-MAY
* MS15-126 - Critical
* MS15-134 - Important
* MS16-003 - Critical
* MS16-054 - Critical

Bulletin Information:

MS15-JUL
- Title: Microsoft Security Bulletin Summary for July 2015
- https://technet.microsoft.com/library/security/ms15-jul.aspx
- Reason for Revision: V3.1 (May 25, 2016): For MS15-076, added a Known Issues reference to the Executive Summaries table. For more information, see Microsoft Knowledge Base Article 3067505. For information about the solution for this Known Issue, see Microsoft Knowledge Base Article 3155218.
- Originally posted: July 14, 2015
- Updated: May 25, 2016
- Bulletin Severity Rating: Not applicable
- Version: 3.1

MS16-MAY
- Title: Microsoft Security Bulletin Summary for May 2016
- https://technet.microsoft.com/library/security/ms16-may.aspx
- Reason for Revision: V2.1 (May 25, 2016): For MS16-065, added a Known Issue to the Executive Summaries table. After you install any of the security updates that are included in MS16-065 on a Front End or Standard Edition server for Lync Server 2010, Lync Server 2013, or Skype for Business Server 2015, several conferencing modalities no longer function for internal users.For information about the solution for this Known Issue, see Microsoft Knowledge Base Article 3165438.
- Originally posted: May 10, 2016
- Updated: May 25, 2016
- Bulletin Severity Rating: Not applicable
- Version: 2.1

MS15-126
- Title: Cumulative Security Update for JScript and VBScript to Address Remote Code Execution (3116178)
- https://technet.microsoft.com/library/security/ms15-126.aspx
- Reason for Revision: V1.1 (May 25, 2016): Removed redundant rows from the Vulnerability Severity Rating and Maximum Security Impact by Affected Software table, and added the applicable update numbers for clarity. This is an informational change only.
- Originally posted: December 8, 2015
- Updated: May 25, 2016
- Bulletin Severity Rating: Critical
- Version: 1.1

MS15-134
- Title: Security Update for Windows Media Center to Address Remote Code Execution (3108669)
- https://technet.microsoft.com/library/security/ms15-134.aspx
- Reason for Revision: V1.1 (May 25, 2016): Removed the mitigating factors for CVE-2015-6131 and CVE-2015-6127. These are informational changes only.
- Originally posted: December 8, 2015
- Updated: May 25, 2016
- Bulletin Severity Rating: Important
- Version: 1.1

MS16-003
- Title: Cumulative Security Update for JScript and VBScript to Address Remote Code Execution (3125540)
- https://technet.microsoft.com/library/security/ms16-003.aspx
- Reason for Revision: V1.1 (May 25, 2016): Removed redundant rows from the Vulnerability Severity Rating and Maximum Security Impact by Affected Software table, and added the applicable update numbers for clarity. This is an informational change only.
- Originally posted: January 12, 2016
- Updated: May 25, 2016
- Bulletin Severity Rating: Critical
- Version: 1.1

MS16-054
- Title: Security Update for Microsoft Office (3155544)
- https://technet.microsoft.com/library/security/ms16-054.aspx
- Reason for Revision: V1.1 (May 25, 2016): Corrected the updates replaced for Microsoft Office 2013 to 3114486 in MS16-004, and for CVE-2016-0183, clarified that the Preview Pane is an attack vector for this vulnerability. These are informational changes only.
- Originally posted: May 10, 2016
- Updated: May 25, 2016
- Bulletin Severity Rating: Critical
- Version: 1.1

Popular Forums

icon
Computer Newbies 10,686 discussions
icon
Computer Help 54,365 discussions
icon
Laptops 21,181 discussions
icon
Networking & Wireless 16,313 discussions
icon
Phones 17,137 discussions
icon
Security 31,287 discussions
icon
TVs & Home Theaters 22,101 discussions
icon
Windows 7 8,164 discussions
icon
Windows 10 2,657 discussions

SMART HOME

This one tip will help you sleep better tonight

A few seconds are all you need to get a better night's rest.