Security News > 2020 > July > Microsoft Releases Emergency Security Updates for Windows 10, Server
Microsoft has quietly pushed out two emergency security updates to fix remote code execution bugs in Microsoft Windows Codecs Library.
The out-of-band updates, addressing a critical-severity flaw and important-severity vulnerability, were sent out via Windows Update Tuesday night and affect several versions of Windows 10 and Windows Server 2019.
Both vulnerabilities allow for remote code execution "In the way that Microsoft Windows Codecs Library handles objects in memory," according to the updates.
Microsoft included a complete list of the Windows 10 and Windows Server distributions affected in its advisories, which offered little in terms of specific detail on the flaws.
It's not completely uncommon for Microsoft to release updates outside of the second Tuesday of every month, also known as "Patch Tuesday." However, typically the company does so in response to vulnerabilities uncovered by third-party security researchers-including from rivals such as Google - that are found to be under attack.
News URL
https://threatpost.com/microsoft-releases-emergency-security-updates-for-windows-10-server/157055/
Related news
- Microsoft fixes auth issues on Windows Server, Windows 11 24H2 (source)
- Microsoft: Windows 'inetpub' folder created by security fix, don’t delete (source)
- Microsoft: Windows Server 2025 restarts break connectivity on some DCs (source)
- Microsoft fixes Windows Server 2025 blue screen, install issues (source)
- Microsoft pitches pay-to-patch reboot reduction subscription for Windows Server 2025 (source)
- Microsoft: Windows Server hotpatching to require subscription (source)
- Microsoft silently fixes Start menu bug affecting Windows 10 PCs (source)
- Microsoft: April updates cause Windows Server auth issues (source)
- Microsoft: March Windows updates mistakenly uninstall Copilot (source)
- Microsoft fixes Windows update bug that uninstalled Copilot (source)