Today's Hard|Forum Post
Today's Hard|Forum Post

Tuesday March 14, 2017

Windows 10 Gets Its March Cumulative Update

Microsoft still hasn’t explained why these security patches were delayed last month, but Patch Tuesday is back on schedule and you may hit Windows Update to clear up the lengthy list of vulnerabilities. I am seeing a number of patches related to Edge and GDI, so I assume those exploits that Google Zero let loose earlier are now fixed, along with the memory corruption bug related to SMB file-sharing.

News Image

Patch Tuesday is back -- albeit after an inadvertent and undisclosed glitch led to a month-long delay in releasing security patches. Microsoft said Tuesday that it patched dozens of vulnerabilities across 18 bulletins. Among the patches include one "critical"-rated flaw, which had publicly disclosed exploit code since early February. The vulnerability relates to a Windows SMB bug, of which its proof-of-concept code was released just days prior to this month's scheduled Patch Tuesday. The memory corruption bug could allow a remote, unauthenticated attacker to crash an affected machine, according to an advisory posted by Carnegie Mellon University's public vulnerability database posted in February.