Security News > 2020 > June > Microsoft squishes 129 bugs with Patch Tuesday updates
2020-06-11 09:13
The lion's share of the bugs are rated important, but there are 11 CVEs rated critical.
These are all bugs affecting Windows 10, and many also affected the latest 2004 build.
There were also some other non-critical CVEs that it didn't release separate security updates for, including the batch's only bug rated with moderate severity: CVE-2020-1195.
Instead of patches, Microsoft fixed these bugs with product updates.
APSB20-32 fixes three critical bugs in its Framemaker product for Windows: a memory corruption issue and two out-of-bounds write bugs.
News URL
https://nakedsecurity.sophos.com/2020/06/11/microsoft-squishes-129-bugs-with-patch-tuesday-updates/
Related news
- Microsoft January 2025 Patch Tuesday fixes 8 zero-days, 159 flaws (source)
- Microsoft February 2025 Patch Tuesday fixes 4 zero-days, 55 flaws (source)
- February's Patch Tuesday sees Microsoft offer just 63 fixes (source)
- Microsoft’s Patch Tuesday Fixes 63 Flaws, Including Two Under Active Exploitation (source)
- Patch Tuesday: Microsoft Patches Two Actively Exploited Zero-Day Flaws (source)
- January 2025 Patch Tuesday forecast: Changes coming in cybersecurity guidance (source)
- Week in review: Exploited Ivanti Connect Secure zero-day, Patch Tuesday forecast (source)
- Patch Tuesday: January 2025 Security Update Patches Exploited Elevation of Privilege Attacks (source)
- Windows Patch Tuesday hits snag with Citrix software, workarounds published (source)
- February 2025 Patch Tuesday forecast: New directions for AI development (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-05-21 | CVE-2020-1195 | Improper Input Validation vulnerability in Microsoft Edge An elevation of privilege vulnerability exists in Microsoft Edge (Chromium-based) when the Feedback extension improperly validates input, aka 'Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability'. | 5.9 |