********************************************************************
Title: Microsoft Security Update Releases
Issued: August 10, 2017
********************************************************************
NOTE: Second email attempt for this mailer.
Summary
=======
The following CVE has undergone a major revision increment.
* CVE-2017-8658
CVE Revision Information:
=====================
CVE-2017-8658
- Title: CVE-2017-8658 | Scripting Engine Memory Corruption
Vulnerability
- https://portal.msrc.microsoft.com/en-us/security-guidance
- Reason for Revision: CVE-2017-8658 has been added to the
August 2107 Security Release in conjunction with the publication
of the 17-08 ChakraCore servicing release. See https://github.com/
Microsoft/ChakraCore/commit/5c6fbc61ccc57826e0daaf07a71c2c536614c2ad
for more information.
- Originally posted: August 10, 2017
- Updated: N/A
- CVE Severity Rating: Critical
- Version: 1.0
Other Information
=================
Recognize and avoid fraudulent email to Microsoft customers:
=============================================================
If you receive an email message that claims to be distributing a Microsoft security update, it is a hoax that may contain malware or pointers to malicious websites. Microsoft does not distribute security updates via email.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
********************************************************************
Title: Microsoft Security Update Minor Revisions
Issued: August 10, 2017
********************************************************************
NOTE: Second email attempt for this mailer.
Summary
=======
The following CVEs have been revised in the July 2017 Security Updates.
* CVE-2017-8572
Revision Information:
=====================
CVE-2017-8572
- Title: CVE-2017-8572 | Microsoft Office Outlook Information
Disclosure Vulnerability
- https://portal.msrc.microsoft.com/en-us/security-guidance
- Reason for Revision: Corrected vulnerability description. This
is an informational change only.
- Originally posted: July 27, 2017
- Updated: August 10, 2017
- CVE Severity Rating: Important
- Version: 1.1
Other Information
=================
Recognize and avoid fraudulent email to Microsoft customers:
=============================================================
If you receive an email message that claims to be distributing a Microsoft security update, it is a hoax that may contain malware or pointers to malicious websites. Microsoft does not distribute security updates via email.
Hash: SHA256
********************************************************************
Title: Microsoft Security Update Minor Revisions
Issued: August 10, 2017
********************************************************************
NOTE: Second email attempt for this mailer.
Summary
=======
The following CVEs have been revised in the July 2017 Security Updates.
* CVE-2017-8572
Revision Information:
=====================
CVE-2017-8572
- Title: CVE-2017-8572 | Microsoft Office Outlook Information
Disclosure Vulnerability
- https://portal.msrc.microsoft.com/en-us/security-guidance
- Reason for Revision: Corrected vulnerability description. This
is an informational change only.
- Originally posted: July 27, 2017
- Updated: August 10, 2017
- CVE Severity Rating: Important
- Version: 1.1
Other Information
=================
Recognize and avoid fraudulent email to Microsoft customers:
=============================================================
If you receive an email message that claims to be distributing a Microsoft security update, it is a hoax that may contain malware or pointers to malicious websites. Microsoft does not distribute security updates via email.
Reply
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.