Рекомендации по обновлению ПО

Документы

Полная история обновлений безопасности


Обновления за последний месяц


11.09.19 September 2019 NCR FSE Microsoft Security Updates

NOTICE OF CHANGE TO MICROSOFT WINDOWS 10 PATCHING PROCESS
 
Beginning April 9th 2019 Microsoft are discontinuing the release of “Delta” patches for windows 10.
From this date going forwards, the only regular patches made available for download and testing for Windows 10 1607 x64 will be the “Full” cumulative update patch which is released on a monthly cadence. This patch release includes all patches from the date of the release of windows 10 1607 to the present day and, due to its cumulative nature, the size of this patch increases each month. The overall file is large. For example, the size of the monthly cumulative Update for Windows 10 1607 x64 released by Microsoft for March 2019 was 1394.4MB. There is no means to break this patch down, nor to make it any smaller. There are no other options available.
Due to this change, NCR can only recommend that customers pick up this cumulative patch to test and deploy, in place of the “Delta” patches supplied by Microsoft previously.  
NCR will continue to provide our regularly scheduled Microsoft Patch recommendations that contain the release information for these patches.
 
If the infrastructure is already in place to provide “Express” updates from Microsoft, then customers can also use this. However, the effective final patched state is the same as when applying the “full” cumulative patches. due to the complexity of testing the express patches NCR can only provide guidance based upon the “Full” cumulative patch releases.
 
Note: There is no impact on Windows 7 – this change only affects windows 10 patch releases


Microsoft has replaced security bulletins with the Security Updates Guide . Please see the blog post, Furthering our commitment to security updates, for more details. Security issues are no longer listed as bulletins but are listed by CVE number. CVEs are grouped by Monthly Security Rollup for all applicable software.
Anyone creating new software builds for Windows 7 SP1 can use the convenience roll up that was issued in April 2016 and then just install all the security patches since April 2016. The convenience roll up can be found here and includes all security patches up to April 2016.

September 2019 Security Updates

Pre-Requisite - Latest Servicing Stack Updates

Always ensure that you have the latest Servicing Stack Updates: ADV990001
 
Windows 7

Security Rollup ID: 4516033
Affected Software: Windows 7 for 32-bit Systems Service Pack 1
Critical CVEs: CVE-2019-0787, CVE-2019-1280, CVE-2019-1290, CVE-2019-1291
Important CVEs: CVE-2019-1214, CVE-2019-1215, CVE-2019-1216, CVE-2019-1219, CVE-2019-1235, CVE-2019-1240, CVE-2019-1241, CVE-2019-1242, CVE-2019-1243,
                            CVE-2019-1244, CVE-2019-1245, CVE-2019-1246, CVE-2019-1247, CVE-2019-1248, CVE-2019-1249, CVE-2019-1250, CVE-2019-1252, CVE-2019-1256,
                            CVE-2019-1267, CVE-2019-1268, CVE-2019-1271, CVE-2019-1274, CVE-2019-1282, CVE-2019-1283, CVE-2019-1284, CVE-2019-1285, CVE-2019-1286,
                            CVE-2019-1293
 
Security Rollup ID: 4516046
Affected Software: Internet Explorer 11
Critical CVEs: CVE-2019-1208, CVE-2019-1221, CVE-2019-1236
Important CVEs: CVE-2019-1220
 
Windows 10

Security Rollup ID: 4516044
Affected Software: Windows 10 Version 1607 for x64-based Systems
Critical CVEs: CVE-2019-0787, CVE-2019-0788, CVE-2019-1280, CVE-2019-1290, CVE-2019-1291, CVE-2019-1183
Important CVEs: CVE-2019-0928, CVE-2019-1214, CVE-2019-1215, CVE-2019-1216, CVE-2019-1219, CVE-2019-1232, CVE-2019-1235, CVE-2019-1240, CVE-2019-1241, CVE-2019-1242,
                           CVE-2019-1243, CVE-2019-1244, CVE-2019-1245, CVE-2019-1246, CVE-2019-1247, CVE-2019-1248, CVE-2019-1249, CVE-2019-1250, CVE-2019-1252, CVE-2019-1254,
                           CVE-2019-1256, CVE-2019-1267, CVE-2019-1268, CVE-2019-1269, CVE-2019-1270, CVE-2019-1271, CVE-2019-1272, CVE-2019-1274, CVE-2019-1278, CVE-2019-1282,
                           CVE-2019-1285, CVE-2019-1286, CVE-2019-1287, CVE-2019-1289, CVE-2019-1292, CVE-2019-1293
 
Security Rollup ID: 4516044
Affected Software: Internet Explorer 11
Critical CVEs: CVE-2019-1208, CVE-2019-1221, CVE-2019-1236
Important CVEs: CVE-2019-1220
 
Security Rollup ID: 4516044
Affected Software: Microsoft .NET Framework 3.5
Critical CVEs: N/A
Important CVEs: CVE-2019-1142
 
Security Rollup ID: 4514354
Affected Software: Microsoft .NET Framework 4.8
Critical CVEs: N/A
Important CVEs: CVE-2019-1142
 
Security Advisories
N/A
 
Microsoft Release Notes for September 2019 Security Updates are available – Click Here.

Historical patching information from December 2017 and earlier is available on Confluence at the following location: https://confluence.ncr.com/display/FSE/Microsoft+Security+Patch+Historical+Archives
If you are unable to access these archives, please contact your Account Manager, who shall retrieve them for you.

Please note only customers and partners who are on software maintenance can be subscribed to this list and only if they have Account team approval.

С 13 сентября вступили в силу новые дополнения (!)

Microsoft has replaced security bulletins with the Security Updates Guide . Please see the blog post, Furthering our commitment to security updates, for more details. Security issues are no longer listed as bulletins but are listed by CVE number. CVEs are grouped by Monthly Security Rollup for all applicable software.
Anyone creating new software builds for Windows 7 SP1 can use the convenience roll up that was issued in April 2016 and then just install all the security patches since April 2016. The convenience roll up can be found here and includes all security patches up to April 2016.
September 2019 Out of Band Security Updates
Pre-Requisite - Latest Servicing Stack Updates
Always ensure that you have the latest Servicing Stack Updates: ADV990001

INFORMATION
This is an out of band update
These updates address an issue that may cause applications written in down versions of Visual Basic or apps that use Visual Basic Scripting Edition (VBScript) to stop responding; an issue that was introduced by the August 2019 Microsoft patch release.
These updates do not relate to any CVE IDs.
For further information, please refer to the release notes provided by Microsoft for each individual patch
.

Windows 7

Security Rollup ID: 4517297
Affected Software: Windows 7 for 32-bit Systems Service Pack 1
Critical CVEs: N/A
Important CVEs: N/A

Windows 10

Security Rollup ID: 4512534
Affected Software: Windows 10 Version 1607 for x64-based Systems
Critical CVEs: N/A
Important CVEs: N/A

Historical patching information from December 2017 and earlier is available on Confluence at the following location: https://confluence.ncr.com/display/FSE/Microsoft+Security+Patch+Historical+Archives
If you are unable to access these archives, please contact your Account Manager, who shall retrieve them for you.

Please note only customers and partners who are on software maintenance can be subscribed to this list and only if they have Account team approval.

Адрес:
129075 г. Москва,
Мурманский проезд, 14, к. 1

http://www.lanatmservice.ru
Тел:
+7 (495) 967 6674
Факс:
+7 (495) 721 9155
E-mail:

Copyright 2019 «ЛАН АТМсервис»

Создано Webway