Security News > 2020 > June > Microsoft squishes 129 bugs with Patch Tuesday updates
2020-06-11 09:13
The lion's share of the bugs are rated important, but there are 11 CVEs rated critical.
These are all bugs affecting Windows 10, and many also affected the latest 2004 build.
There were also some other non-critical CVEs that it didn't release separate security updates for, including the batch's only bug rated with moderate severity: CVE-2020-1195.
Instead of patches, Microsoft fixed these bugs with product updates.
APSB20-32 fixes three critical bugs in its Framemaker product for Windows: a memory corruption issue and two out-of-bounds write bugs.
News URL
https://nakedsecurity.sophos.com/2020/06/11/microsoft-squishes-129-bugs-with-patch-tuesday-updates/
Related news
- Microsoft October 2024 Patch Tuesday fixes 5 zero-days, 118 flaws (source)
- Microsoft cleans up hot mess of Patch Tuesday preview (source)
- Microsoft November 2024 Patch Tuesday fixes 4 zero-days, 91 flaws (source)
- Microsoft November 2024 Patch Tuesday fixes 4 zero-days, 89 flaws (source)
- Microsoft slips Task Manager and processor count fixes into Patch Tuesday (source)
- October 2024 Patch Tuesday forecast: Recall can be recalled (source)
- Week in review: Critical Zimbra RCE vulnerability exploited, Patch Tuesday forecast (source)
- Patch Tuesday: Internet Explorer Vulnerabilities Still Pose a Problem (source)
- Microsoft SharePoint RCE flaw exploits in the wild – you've had 3 months to patch (source)
- November 2024 Patch Tuesday forecast: New servers arrive early (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-05-21 | CVE-2020-1195 | Improper Input Validation vulnerability in Microsoft Edge An elevation of privilege vulnerability exists in Microsoft Edge (Chromium-based) when the Feedback extension improperly validates input, aka 'Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability'. | 5.9 |