-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
*******************************************************************************
*******
Title: Microsoft Security Update Releases
Issued: November 20, 2019 *****************************************************
*********************************
Summary
=======
The following CVEs have undergone a major revision increment:
* CVE-2019-1460
* CVE-2019-1108
Revision Information:
=====================
- CVE-2019-1460 | Outlook for Android Spoofing Vulnerability
- https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-
1460
- Version: 1.0
- Reason for Revision: Information published.
- Originally posted: November 19, 2019
- Updated: N/A
- Aggregate CVE Severity Rating: Important
- CVE-2019-1108 | Remote Desktop Protocol Client Information Disclosure
Vulnerability
- https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-
1108
- Version: 3.0
- Reason for Revision: The following updates have been made: 1. Added Microsoft
Remote Desktop for Mac OS to the Security Updates table because it is
affected by
this vulnerability. Microsoft recommends that customers running Microsoft
Remote
Desktop for Mac OS install the latest security update to be fully protected
from
this vulnerability.
2. Added Microsoft Remote Desktop for iOS to the Security Updates table
because it
is affected by this vulnerability. Microsoft recommends that customers
running
Microsoft Remote Desktop for iOS install the latest security update to be
fully
protected from this vulnerability. Added an FAQ to explain how to get the
update
for iOS.
- Originally posted: July 9, 2019
- Updated: November 19, 2019
- Aggregate CVE Severity Rating: Important
*******************************************************************************
*******
Other Information
=================
Recognize and avoid fraudulent email to Microsoft customers: ==================
====================================================================
If you receive an email message that claims to be distributing a Microsoft
security
update, it is a hoax that may contain malware or pointers to malicious websites.
Microsoft does not distribute security updates via email.
The Microsoft Security Response Center (MSRC) uses PGP to digitally sign all
security
notifications. However, PGP is not required for reading security notifications,
reading security bulletins, or installing security updates. You can obtain the
MSRC
public PGP key at <https://technet.microsoft.com/security/dn753714>.
*******************************************************************************
*******
THE INFORMATION PROVIDED IN THIS MICROSOFT COMMUNICATION IS PROVIDED "AS IS"
WITHOUT
WARRANTY OF ANY KIND. MICROSOFT DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR
IMPLIED,
INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
PURPOSE.
IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE LIABLE FOR ANY
DAMAGES
WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF
BUSINESS
PROFITS OR SPECIAL DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE
BEEN
ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR
CONSEQUENTIAL
OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY. **************
************************************************************************
Microsoft respects your privacy. Please read our online Privacy Statement at
<http://go.microsoft.com/fwlink/?LinkId=81184>.
If you would prefer not to receive future technical security notification alerts
by
email from Microsoft and its family of companies please visit the following
website
to unsubscribe:
<https://profile.microsoft.com/RegSysProfileCenter/subscriptionwizar
d.aspx?wizid=5a2a311b-5189-4c9b-9f1a-d5e913a26c2e&%3blcid=1033>.
These settings will not affect any newsletters you've requested or any mandatory
service communications that are considered part of certain Microsoft services.
For legal Information, see:
<http://www.microsoft.com/info/legalinfo/default.mspx>.
This newsletter was sent by:
Microsoft Corporation
1 Microsoft Way
Redmond, Washington, USA
98052
-----BEGIN PGP SIGNATURE-----
iQEzBAEBCAAdFiEELTQbGKdJ0A4NErYObMczVWaPe3UFAl3VrfkACgkQbMczVWaP
e3UBwAgAuRNZZOSwOedyFB3yWWEQbB6kyIpCK6knsYG2oQfHtddFE/MygcdwRLmQ
fLBrYGZavGS3zkN/1eqAM0zCHZNH6w8ZU4K7vbaU2dSD/Vuj2EjNx96fuY5q2B38
Mih3rUz3NucgfU/q4+AZBVA+wmPiT124esLHYCs85cnDp1wwkX+fFkicuKlnX7O9
p/90fkeU7wUkzkIMoB+yfOsBNv42pPwxgPC0tKDdJoJoubzY8Tvw3wahq9Ui3vku
tcBc7Ac7gMO9EenmG0/ztf34OytG/PudKtMrx2ehPn+6zYG+j5UoxLIQHh8OBIct
VR+fc7WvG5oC8+GrnM444a70w2UMkg==
=oSl9
-----END PGP SIGNATURE-----
If you would prefer not to receive future technical security
notification alerts by email from Microsoft and its family of
companies please visit the following website to unsubscribe: https://account.m
icrosoft.com/profile/unsubscribe?CTID=0&ECID=Ucu8BdJx02dhrjRpPaLv7dfzJXCOIF7sw5
N%2BjlJXSjM%3D&K=f51aa0c0-ae8e-4246-8d41-e165fefbf418&CMID=null&D=6370979049966
66851&PID=18000&TID=adfd46f4-992a-45ec-935c-4c9bc4baf506
---
■ Synchronet ■ Time Warp of the Future BBS - Home of League 10 IBBS Games
|
