-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ******************************************************************** Title: Microsoft Security Update Releases Issued: March 23, 2018 ******************************************************************** Summary ======= The following CVEs have undergone a major revision increment: * CVE-2018-0889 * CVE-2018-0932 * CVE-2018-0891 * CVE-2018-0935 * CVE-2018-0927 * CVE-2018-0942 * CVE-2018-0929 Revision Information: ===================== - https://portal.msrc.microsoft.com/en-us/security-guidance - Version: 2.0 - Reason for Revision: Microsoft is releasing security update 4096040 for Internet Explorer for Windows 7 for 32-bit Systems Service Pack 1, Windows 7 for x64-based Systems Service Pack 1, and Windows Server 2008 R2 for x64-based Systems Service Pack 1 to address a signing issue experienced by some Enterprise Customers. Security update 4096040 replaces security update 4089187, and is available on the Microsoft Update Catalog and WSUS. - Originally posted: March 13, 2018 - Updated: March 23, 2018 - Aggregate CVE Severity Rating: Critical Other Information ================= Recognize and avoid fraudulent email to Microsoft customers: ============================================================= If you receive an email message that claims to be distributing a Microsoft security update, it is a hoax that may contain malware or pointers to malicious websites. Microsoft does not distribute security updates via email. The Microsoft Security Response Center (MSRC) uses PGP to digitally sign all security notifications. However, PGP is not required for reading security notifications, reading security bulletins, or installing security updates. You can obtain the MSRC public PGP key at . ******************************************************************** THE INFORMATION PROVIDED IN THIS MICROSOFT COMMUNICATION IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY. ******************************************************************** Microsoft respects your privacy. Please read our online Privacy Statement at . If you would prefer not to receive future technical security notification alerts by email from Microsoft and its family of companies please visit the following website to unsubscribe: . These settings will not affect any newsletters youave requested or any mandatory service communications that are considered part of certain Microsoft services. For legal Information, see: . This newsletter was sent by: Microsoft Corporation 1 Microsoft Way Redmond, Washington, USA 98052 -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEELe29pj1Ogz+2MnKbEEiO2re18ugFAlq1dEEACgkQEEiO2re1 8uiA4Q//QbjiX+4bEcSEd2c2wFZ51NkLiTqIqMJ9A1+hDj0wvMbPPCxaJ3hsor8Q 4heNet/RmGRADwVxNzGLJR+cAN62iCq/vrvUVcsf2JM97j7leoT9cHJv99tR5A3m EiHuoHM27t/6o2rEYZoxPZRVL+4H6+sqaIVqES8Shj8rrdBA1VmQskek//gIt+QZ S+iP+vPuo3XTYMwgXKzlN/rRMuBQ5j1W9vzVcATkvxFnzm31Rp41pnCEA64P0JeY 2rA6fAzKDuWdr4n9pWKQPn/h93ea4vwzYm+ZzT/UEC/8lUlFm31RjlEskvxrPwKm HFapc4vdz+8JXwY+N1kZKHkcV4XfPkCqe7WwQ6bh/I1skpWsuoQL1sFpwfbgXhP7 L5hJ4bH5QN0K4jsHQ/t37mMtctfKpsWaVMbiVT7Csog68b7O7WnjPgrEhgKfaDnw 0tWYVzP9ormnOxRpOllZhTRWgO7Jx9LG+Xli5gKLMwHs8N+R7Zum3/R8CXbQn88e xJYRf/SRZFL87e7dv6PcMw2ziSfpT5YcbbRMkjiR787PAs/4q27XPSB7OyezzGrc 56nrqynDrx7SLUmu3vj3VyL3xRM8aMrw9kiUet+VTN6dKoIEfODqn/VBeUtTeJMM yA0fj07PLL3n7VR4IY7RIQ+FEW+gYtS2qA17pbR26Jqo1qUpJmo= =H576 -----END PGP SIGNATURE-----