Security News > 2020 > July > Microsoft Releases Emergency Security Updates for Windows 10, Server
Microsoft has quietly pushed out two emergency security updates to fix remote code execution bugs in Microsoft Windows Codecs Library.
The out-of-band updates, addressing a critical-severity flaw and important-severity vulnerability, were sent out via Windows Update Tuesday night and affect several versions of Windows 10 and Windows Server 2019.
Both vulnerabilities allow for remote code execution "In the way that Microsoft Windows Codecs Library handles objects in memory," according to the updates.
Microsoft included a complete list of the Windows 10 and Windows Server distributions affected in its advisories, which offered little in terms of specific detail on the flaws.
It's not completely uncommon for Microsoft to release updates outside of the second Tuesday of every month, also known as "Patch Tuesday." However, typically the company does so in response to vulnerabilities uncovered by third-party security researchers-including from rivals such as Google - that are found to be under attack.
News URL
https://threatpost.com/microsoft-releases-emergency-security-updates-for-windows-10-server/157055/
Related news
- Windows 10 KB5051974 update force installs new Microsoft Outlook app (source)
- Microsoft fixes bug causing Windows Server 2025 boot errors (source)
- Microsoft fixes auth issues on Windows Server, Windows 11 24H2 (source)
- FINALDRAFT Malware Exploits Microsoft Graph API for Espionage on Windows and Linux (source)
- Microsoft to remove the Location History feature in Windows (source)
- Microsoft testing fix for Windows 11 bug breaking SSH connections (source)
- Microsoft launches ad-supported Office apps for Windows users (source)
- Microsoft tests ad-supported Office apps for Windows users (source)
- Windows 10 KB5052077 update fixes broken SSH connections (source)
- Microsoft fixes Outlook drag-and-drop broken by Windows updates (source)