Security News > 2020 > July > Microsoft Releases Emergency Security Updates for Windows 10, Server
Microsoft has quietly pushed out two emergency security updates to fix remote code execution bugs in Microsoft Windows Codecs Library.
The out-of-band updates, addressing a critical-severity flaw and important-severity vulnerability, were sent out via Windows Update Tuesday night and affect several versions of Windows 10 and Windows Server 2019.
Both vulnerabilities allow for remote code execution "In the way that Microsoft Windows Codecs Library handles objects in memory," according to the updates.
Microsoft included a complete list of the Windows 10 and Windows Server distributions affected in its advisories, which offered little in terms of specific detail on the flaws.
It's not completely uncommon for Microsoft to release updates outside of the second Tuesday of every month, also known as "Patch Tuesday." However, typically the company does so in response to vulnerabilities uncovered by third-party security researchers-including from rivals such as Google - that are found to be under attack.
News URL
https://threatpost.com/microsoft-releases-emergency-security-updates-for-windows-10-server/157055/
Related news
- Microsoft 365 apps crash on Windows Server after Office update (source)
- Microsoft ends support for Office apps on Windows 10 in October (source)
- Microsoft fixes Office 365 apps crashing on Windows Server systems (source)
- Microsoft fixes Windows Server 2022 bug breaking device boot (source)
- Microsoft issues out-of-band fix for Windows Server 2022 NUMA glitch (source)
- Microsoft: Outdated Exchange servers fail to auto-mitigate security bugs (source)
- Microsoft: January Windows security updates break audio playback (source)
- Microsoft shares workaround for Windows security update issues (source)
- Windows 10 KB5051974 update force installs new Microsoft Outlook app (source)
- Microsoft fixes bug causing Windows Server 2025 boot errors (source)