Security News > 2020 > July > Microsoft Releases Emergency Security Updates for Windows 10, Server
Microsoft has quietly pushed out two emergency security updates to fix remote code execution bugs in Microsoft Windows Codecs Library.
The out-of-band updates, addressing a critical-severity flaw and important-severity vulnerability, were sent out via Windows Update Tuesday night and affect several versions of Windows 10 and Windows Server 2019.
Both vulnerabilities allow for remote code execution "In the way that Microsoft Windows Codecs Library handles objects in memory," according to the updates.
Microsoft included a complete list of the Windows 10 and Windows Server distributions affected in its advisories, which offered little in terms of specific detail on the flaws.
It's not completely uncommon for Microsoft to release updates outside of the second Tuesday of every month, also known as "Patch Tuesday." However, typically the company does so in response to vulnerabilities uncovered by third-party security researchers-including from rivals such as Google - that are found to be under attack.
News URL
https://threatpost.com/microsoft-releases-emergency-security-updates-for-windows-10-server/157055/
Related news
- Windows 10 users urged to upgrade to avoid "security fiasco" (source)
- Microsoft to force install new Outlook on Windows 10 PCs in February (source)
- Microsoft 365 apps crash on Windows Server after Office update (source)
- Microsoft ends support for Office apps on Windows 10 in October (source)
- Microsoft fixes Office 365 apps crashing on Windows Server systems (source)
- Microsoft fixes Windows Server 2022 bug breaking device boot (source)
- Microsoft issues out-of-band fix for Windows Server 2022 NUMA glitch (source)
- Microsoft: Outdated Exchange servers fail to auto-mitigate security bugs (source)
- Microsoft says premature patch could make Windows Recall forget how to work (source)
- Microsoft says having a TPM is "non-negotiable" for Windows 11 (source)