Microsoft Security Bulletin Summary for November 2016

by Carol~ Nov 8, 2016 11:13AM PST

Published : November 08, 2016

Microsoft released 14 new security updates today. Six (6) are rated Critical and Eight ( are rated as Important.

Microsoft also released an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center.

Critical: 6

• MS16-129 - Cumulative Security Update for Microsoft Edge (3199057)
• MS16-130 - Security Update for Microsoft Windows (3199172)
• MS16-131 - Security Update for Microsoft Video Control (3199151)
• MS16-132 - Security Update for Microsoft Graphics Component (3199120)
• MS16-141 - Security Update for Adobe Flash Player (3202790)
• MS16-142 - Cumulative Security Update for Internet Explorer (3198467)

Important: 8

• MS16-133 - Security Update for Microsoft Office (319916
• MS16-134 - Security Update for Common Log File System Driver (3193706)
• MS16-135 - Security Update for Windows Kernel-Mode Drivers (3199135)
• MS16-136 - Security Update for SQL Server (3199641)
• MS16-137 - Security Update for Windows Authentication Methods (3199173)
• MS16-138 - Security Update to Microsoft Virtual Hard Disk Driver (3199647)
• MS16-139 - Security Update for Windows Kernel (3199720)
• MS16-140 - Security Update for Boot Manager (3193479)

Security Bulletin:
https://technet.microsoft.com/en-us/library/security/ms16-nov.aspx

Discussion is locked

- Collapse -

For Windows 10 ...

by Carol~ Nov 8, 2016 1:03PM PST

Information can be found here ...

Windows 10 update history
https://support.microsoft.com/en-us/help/12387/

- Collapse -

Microsoft Security Bulletin Minor Revisions

by Carol~ Nov 11, 2016 1:37PM PST

Issued: November 8, 2016

Summary
The following bulletins and/or bulletin summaries have undergone a minor revision increment.

Please see the appropriate bulletin for more details.

* MS16-035
* MS16-091
* MS16-101

Bulletin Information:

MS16-035
- Title: Security Update for .NET Framework to Address Security Feature Bypass (3141780)
- https://technet.microsoft.com/library/security/ms16-035.aspx
- Reason for Revision: Revised bulletin to announce that a detection change was made to account for .NET Framework 4.6.1 hotfix rollup customers who were not being properly offered security updates applicable to .NET Framework 4.6.1.
- Originally posted: March 8, 2016
- Updated: November 8, 2016
- Bulletin Severity Rating: Important
- Version: 2.6

MS16-091
- Title: Security Update for .NET Framework (317004
- https://technet.microsoft.com/library/security/ms16-091.aspx
- Reason for Revision: Revised bulletin to announce that a detection change was made to account for .NET Framework 4.6.1 hotfix rollup customers who were not being properly offered security updates applicable to the .NET Framework 4.6.1
- Originally posted: July 12, 2016
- Updated: November 8, 2016
- Bulletin Severity Rating: Important
- Version: 1.1

MS16-120
- Title: Security Update for Microsoft Graphics Component (3192884)
- https://technet.microsoft.com/library/security/ms16-120.aspx
- Reason for Revision: Revise bulletin to announce a detection change to address an issue in supersedence, specifically in WSUS environments where various updates applicable to Windows 7 SP1 and Windows Server 2008 R2 SP1 were incorrectly marked as being superseded. This is a detection change only. There were no changes to the update files. Customers who have already successfully installed the update do not need to take any action.
- Originally posted: October 11, 2016
- Updated: November 8, 2016
- Bulletin Severity Rating: Critical
- Version: 1.1

- Collapse -

Microsoft to discontinue Security Bulletins after Jan 2017

by Carol~ Nov 13, 2016 1:45PM PST

From the MSRC Team ..

Information about the security updates we release are currently made available on the Microsoft Security Bulletin website. However, our customers have asked for better access to update information, as well as easier ways to customize their view to serve a diverse set of needs.

This month we released a preview of our new single destination for security vulnerability information, the Security Updates Guide. Instead of publishing bulletins to describe related vulnerabilities, the new portal lets our customers view and search security vulnerability information in a single online database.

Security update information will be published as bulletins and on the Security Updates Guide until January 2017. After the January 2017 Update Tuesday release, we will only publish update information to the Security Updates Guide.

Continued: https://blogs.technet.microsoft.com/msrc/2016/11/08/furthering-our-commitment-to-security-updates/

- Collapse -

Microsoft Security Bulletin Minor Revisions

by Carol~ Nov 23, 2016 3:19PM PST

Issued: November 23, 2016

Summary
The following bulletins and/or bulletin summaries have undergone a minor revision increment.

Please see the appropriate bulletin for more details.

* MS16-130
* MS16-140

Bulletin Information:

MS16-130
- Title: Security Update for Microsoft Windows (3199172)
- https://technet.microsoft.com/library/security/ms16-130.aspx
- Reason for Revision: Updated the vulnerability description for CVE-2016-7222. This is an informational change only.
- Originally posted: November 8, 2016
- Updated: November 23, 2016
- Bulletin Severity Rating: Critical
- Version: 1.1

MS16-140
- Title: Security Update for Boot Manager (3193479)
- https://technet.microsoft.com/library/security/ms16-140.aspx
- Reason for Revision: Revised bulletin to announce a detection change for certain servers running Windows Servers 2012, Windows Server 2012 R2, and Windows Server 2016. Affected servers will not automatically receive the security update. For more information about the servers affected by this detection change, see Knowledge Base Article 3193479.
- Originally posted: November 8, 2016
- Updated: November 23, 2016
- Bulletin Severity Rating: Important
- Version: 1.1

Microsoft Security Bulletin Summary for November 2016

CNET Forums

Other Forums

Forum Info