However, there is one vulnerability in which Exploit is open.Don't be careful
2022年2月のセキュリティ更新プログラムOn February 8 (local time), Microsoft released a monthly security update program for all supported Windows (Patch Choes Day, B Release).Currently available from "Windows Update" and "Microsoft Update Catalog".Security updates are also provided for the following Microsoft products.
In this month's patch, 51 vulnerabilities were dealt with based on the CVE number.There is no fatal problem that has been evaluated as "Critical", and the maximum severity is "Important".
However, the content has already been published in the CVE-2022-21989 vulnerabilities in the promotion of the privilege of Windows kernel, although the actual abuse case has not been reported.It is expected that it will be used for future attacks, so I would like to try to respond as soon as possible.
Windows 10/11 and Windows Server 2016/2019/2022
The maximum severity is "important" (the code is executed remotely).In addition to security corrections, it includes emergency patches that solve problems caused by patches in January 2022, as well as improvements and changes made in the C release.
関連記事Added a reminder to guide the abolition of IE 11 to Windows 10 -January 2022 C release
The "Microsoft account" item and Bing technology are enhanced on the setting screen of Windows 11
C P -Patch ~ Some images editing software/Correct problems that the colors are correctly displayed on a specific HDR display
The OS core of Windows 10 after "Windows 10 Version 2004" is common, and it is a mechanism that switches only the difference function with a patch called "enablment package".Therefore, the contents of the update program are the same.
Windows 8.1 and Windows Server 2012/2012 R2
The maximum severity is "important" (promotion of privileges).There are two types of "security only" and "monthly roll -up", but please note that "monthly rollup" is recommended as much as possible.
Customers who have joined the Extended Security Update (ESU) for companies will also provide patches for Windows 7 and Windows Server 2008/2008 R2.
Microsoft Office related software
The maximum severity is "important" (the code is executed remotely).See the following documentation for details.
Internet Explorer/Microsoft Edge
Vulnerability corrections regarding "Internet Explorer" are not guided.
"Microsoft Edge" has been updated regardless of "Patch Choes Day".The latest security revision was released on February 3, US time..0.1108.43.
関連記事"Microsoft Edge 98" is a stable version -adding a flag of the overlace crawl bar
Microsoft SharePoint
In "Microsoft SharePoint", three vulnerabilities have been revised.
Microsoft Dynamics
Six vulnerabilities have been revised in Microsoft Dynamics.
.Net/asp.Net
"Microsoft.The following vulnerabilities are dealt with in Net.
Other products
In addition, security updates have been provided to the following products.
関連リンク