Microsoft has released security update for various versions of its Windows Operating systems and other applications like Microsoft Office, Microsoft Internet explorer and Microsoft edge browser.

Starting from this month we will be covering all the updates Microsoft releases on it Patch Day in detail. We are going to call it “Microsoft Patch Day Guide“.

Microsoft Patch Tuesday Guide, Microsoft Patch Day

Microsoft Patch Day October 2017 Guide

Microsoft has released security updates to fix vulnerabilities & exploits found in Windows Operating, multiple version of Microsoft office, Internet explorer, Microsoft edge browser and Chackra Core browser engine.

We shall be providing direct download links for cumulative windows updates in relevant sections of this guide.

Important points of October 2017 Patch day

  • Support for Windows 10 version 1511 has ended and this will the last security update Microsoft providing to user on this version. It is highly recommended to users on this version to update to latest Windows 10 Version 1703. You should download latest Windows 10 ISO and perform a clean install. You will need to create a bootable Windows 10 USB to preform a clean install
  • Applications getting there vulnerabilities fixed include web browsers like Internet Explorer & Microsoft Edge. Skype for Business, Microsoft Lync and Microsoft office is also getting there share of fixes.

Windows 10 Version 1703 KB4041676 Cumulative Update

A total of 29 vulnerabilities are taken care of in windows 10 Version. Out of which 6 are rated as critical and 23 as important.

Changelog for KB4041676 Security Update

  • Addressed issue where some UWP and Centennial apps show a gray icon and display the error message “This app can’t open” on launch.
  • Addressed reliability issue that causes the AppReadiness service to stop working.
  • Addressed issue where applications that use the Silverlight map stack stop working.
  • Addressed issue where VSync prevents devices from entering Panel Self Refresh mode, which can lead to reduced battery life.
  • Addressed issue where user customizations (like pinned tiles) made to an enforced partial Start layout are lost when upgrading to Windows 10 1703.
  • Addressed issue where the Universal CRT caused the linker (link.exe) to stop working for large projects.
  • Addressed issue that prevents Windows Error Reporting from saving error reports in a temporary folder that is recreated with incorrect permissions. Instead, the temporary folder is inadvertently deleted.
  • Addressed issue where the MSMQ performance counter (MSMQ Queue) may not populate queue instances when the server hosts a clustered MSMQ role.
  • Addressed issue with the token broker where it was leaking a token that caused sessions to remain allocated after logoff.
  • Addressed issue where Personal Identity Verification (PIV) smart card PINs are not cached on a per-application basis. This caused users to see the PIN prompt multiple times in a short time period; normally, the PIN prompt only displays once.
  • Addressed issue where using the Cipher.exe /u tool to update Data Recovery Agent (DRA) encryption keys fails unless user certification encryption already exists on the machine.
  • Addressed issue where using AppLocker to block a Modern app fails. This issue occurs only with Modern apps that come pre-installed with Windows.
  • Addressed issue with form submissions in Internet Explorer.
  • Addressed issue with the rendering of a graphics element in Internet Explorer.
  • Addressed issue that prevents an element from receiving focus in Internet Explorer.
  • Addressed issue with the docking and undocking of Internet Explorer windows.
  • Addressed issue caused by a pop-up window in Internet Explorer.
  • Addressed issue where a Vendor API deleted data unexpectedly.
  • Addressed issue where using the Robocopy utility to copy a SharePoint document library, which is mounted as a drive letter, fails to copy files. However, in this scenario, Robocopy will copy folders successfully.
  • Addressed issue where MDM USB restrictions did not disable the USB port as expected.
  • Addressed issue where creating an iSCSI session on a new OS installation may result in the “Initiator instance does not exist” error when attempting to connect to a target.ressed issue where connecting to RDS applications published using Azure App Proxy fails. The error message is, “Your computer can’t connect to the Remote Desktop Gateway server. Contact your network administrator for assistance”. The error can occur when the RDP cookie size limit is exceeded. This update increased the size of the RDP cookie limit.
  • Addressed issue where USBHUB.SYS randomly causes memory corruption that results in random system crashes that are extremely difficult to diagnose.
  • Addressed issue that affects the download of some games from the Microsoft Store during the pre-order phase. Download fails with the error code 0x80070005, and the device attempts to restart the download from the beginning.
  • Addressed issue where the ServerSecurityDescriptor registry value does not migrate when you upgrade to Windows 10 1703. As a result, users might not be able to add a printer using the Citrix Print Manager service. Additionally, they might not be able to print to a client redirected printer, a Citrix universal print driver, or a network printer driver using the Citrix universal print driver.
  • Security updates to Microsoft Windows Search Component, Windows kernel-mode drivers, Microsoft Graphics Component, Internet Explorer, Windows kernel, Microsoft Edge, Windows Authentication, Windows TPM, Device Guard, Windows Wireless Networking, Windows Storage and Filesystems, Microsoft Windows DNS, Microsoft Scripting Engine, Windows Server, Windows Subsystem for Linux, Microsoft JET Database Engine, and the Windows SMB Server.

Windows 10 Version 1607 KB4041691 Cumulative Update

A total of 23 vulnerabilities are fixed in windows 10 Version. Out of which 6 are rated as critical and 23 as important.

Changelog for KB4041691 Security Update

  • Addressed issue where the Universal CRT caused the linker (link.exe) to stop working for large projects.
  • Addressed issue with form submissions in Internet Explorer.
  • Addressed issue with rendering a graphics element in Internet Explorer.
  • Addressed issue with docking and undocking Internet Explorer windows.
  • Addressed issue caused by a pop-up window in Internet Explorer.
  • Addressed issue where a vendor API deleted data unexpectedly.
  • Addressed issue where SD propagation stops working when you manually trigger Security Descriptor propagation (SDPROP) by setting the RootDse attribute FixupInheritance to 1. After setting this attribute, SD propagation and permissions changes made on Active Directory objects don’t propagate to child objects. No errors are logged.
  • Addressed access violation in LSASS that occurs during startup of domain controller role conditions. A race condition causes the violation when account management calls occur while the database is refreshing internal metadata. A password reset or change is one of the management calls that may trigger this problem.
  • Addressed issue where USBHUB.SYS randomly causes memory corruption that results in random system crashes that are extremely difficult to diagnose.
  • Addressed issue where the ServerSecurityDescriptor registry value does not migrate when you upgrade to Windows 10 1607. As a result, users might not be able to add a printer using the Citrix Print Manager service. Additionally, they might not be able to print to a client redirected printer, a Citrix universal print driver, or a network printer driver using the Citrix universal print driver.
  • Security updates to Microsoft Windows Search Component, Windows kernel-mode drivers, Microsoft Graphics Component, Internet Explorer, Windows kernel, Microsoft Edge, Windows Authentication, Windows TPM, Device Guard, Windows Wireless Networking, Windows Storage and Filesystems, Microsoft Windows DNS, Microsoft Scripting Engine, Windows Server, Microsoft JET Database Engine, and the Windows SMB Server.

Windows 10 Version 1511 KB4041689 Cumulative Update

Windows 10 Version 1511 is not going to get monthly security & Quality updates from next month as it reached end of service on October 10, 2017. A Total of 24 vulnerabilities are fixed in KB4041689 Cumulative Update.

Changelog for Cumulative Update KB4041689

  • Addressed issue where the Universal CRT _splitpath was not handling multibyte strings correctly, which caused apps to fail when accessing multibyte filenames.
  • Addressed issue where the Universal CRT caused the linker (link.exe) to stop working for large projects.
  • Addressed issue where the MSMQ performance counter (MSMQ Queue) may not populate queue instances when the server hosts a clustered MSMQ role.
  • Addressed issue with the Lock Workstation policy for smart cards where, in some cases, the system doesn’t lock when you remove the smart card.
  • Addressed issue where, when using Conditional Access with Azure Active Directory, authentication fails.
  • Addressed issue with form submissions in Internet Explorer.
  • Addressed issue where messages that should be in a non-English language display in English in Internet Explorer.
  • Addressed issue where USBHUB.SYS randomly causes memory corruption that results in random system crashes that are extremely difficult to diagnose.
  • Security updates to Microsoft Windows Search Component, Windows kernel-mode drivers, Microsoft Graphics Component, Internet Explorer, Windows kernel, Microsoft Edge, Windows Authentication, Windows TPM, Microsoft PowerShell, Windows Wireless Networking, Windows Storage and Filesystems, Microsoft Windows DNS, Microsoft Scripting Engine, Windows Server, Device Guard, and the Windows SMB Server.

Windows 8.1 and Windows Server 2012 Cumulative Update KB4041693

In October 2017 patch Tuesday for windows 8.1 KB4041693 cumulative update is released. This update patches 23 vulnerabilities out of which 6 are rated and Critical and rest 17 are marked as Important 23

Changelog for Window 8.1 KB4041693 Cumulative Update

  • Addressed issue with docking and undocking Internet Explorer windows.
  • Addressed issue with form submissions in Internet Explorer.
  • Addressed issue where Internet Explorer stops responding to a navigation request.
  • Addressed issue that occurs in the WebView Control of Internet Explorer in certain scenarios.
  • Addressed issue with URL encoding in Internet Explorer.
  • Addressed issue that prevents an element from receiving focus in Internet Explorer.
  • Addressed issue caused by a pop-up window in Internet Explorer.
  • Addressed issue with the rendering of a graphics element in Internet Explorer.
  • Addressed issue in Internet Explorer caused by a redirection link.
  • Addressed issue where messages that should be in a non-English language display in English in Internet Explorer.
  • Addressed issue where USBHUB.SYS randomly causes memory corruption that results in random system crashes that are extremely difficult to diagnose.
  • Security updates to Microsoft Windows Search Component, Windows kernel-mode drivers, Microsoft Graphics Component, Internet Explorer, Windows kernel, Windows Wireless Networking, Windows Storage and Filesystems, Microsoft Windows DNS, Windows Server, Microsoft JET Database Engine, and the Windows SMB Server.

Windows 7 Cumulative Update KB4041681

October 2017 patch tuesday fixes 20 vulnerabilities of which 5 are rated as Critical and rest 15 are labeled as Important

Changelog for Windows 7 KB4041681 Security Update

  • Addressed issue with docking and undocking Internet Explorer windows.
  • Addressed issue with form submissions in Internet Explorer.
  • Addressed issue with URL encoding in Internet Explorer.
  • Addressed issue that prevents an element from receiving focus in Internet Explorer.
  • Addressed issue with the rendering of a graphics element in Internet Explorer.
  • Addressed issue where USBHUB.SYS randomly causes memory corruption that results in random system crashes that are extremely difficult to diagnose.
  • Security updates to Microsoft Windows Search Component, Windows kernel-mode drivers, Microsoft Graphics Component, Internet Explorer, Windows kernel, Windows Wireless Networking, Microsoft JET Database Engine, and the Windows SMB Server.

Cumulative Security Update for Microsoft Office

Microsoft Outlook Security Feature Bypass Vulnerability (CVE-2017-11774) MS Rating: Important

A security bypass vulnerability exists when Microsoft Office improperly handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary commands.

Microsoft Office SharePoint XSS Vulnerability (CVE-2017-11775) MS Rating: Important

A cross site scripting vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint server.

Microsoft Outlook Information Disclosure Vulnerability (CVE-2017-11776) MS Rating: Important

An information disclosure vulnerability exists when Microsoft Outlook fails to establish a secure connection. An attacker who exploited the vulnerability could use it to obtain the email content of a user.

Microsoft Office SharePoint XSS Vulnerability (CVE-2017-11777) MS Rating: Important

A cross site scripting vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint server.

Microsoft Office SharePoint XSS Vulnerability (CVE-2017-11820) MS Rating: Important

A cross site scripting vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint server.

Microsoft Office Remote Code Execution Vulnerability (CVE-2017-11825) MS Rating: Important

A remote code execution vulnerability exists in Microsoft Office software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security context of the current user.

Microsoft Office Memory Corruption Vulnerability (CVE-2017-11826) MS Rating: Important

A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user.

Cumulative Security Update for Microsoft Skype for Business

Skype for Business Elevation of Privilege Vulnerability (CVE-2017-11786) MS Rating: Important

A privilege escalation vulnerability exists when Skype for Business fails to properly handle specific authentication requests.

Cumulative Security Update for Microsoft JET Database Engine

Microsoft JET Database Engine Remote Code Execution Vulnerability (CVE-2017-8717) MS Rating: Important

A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system. An attacker who successfully exploited this vulnerability could take control of an affected system.

Microsoft JET Database Engine Remote Code Execution Vulnerability (CVE-2017-8718) MS Rating: Important

A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system. An attacker who successfully exploited this vulnerability could take control of an affected system.

 

LEAVE A REPLY

Please enter your comment!
Please enter your name here