-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ******************************************************************** Title: Microsoft Security Update Releases Issued: September 11, 2018 ******************************************************************** Summary ======= The following CVE has undergone a major revision increment: * CVE-2018-8154 Revision Information: ===================== - CVE-2018-8154 | Microsoft Exchange Memory Corruption Vulnerability - https://portal.msrc.microsoft.com/en-us/security-guidance - Reason for Revision: To comprehensively address CVE-2018-8154, Microsoft has released security update 4458311 for Microsoft Exchange Server 2010 Service Pack 3. Microsoft recommends that enterprise customers running Microsoft Exchange Server 2010 Service Pack 3 ensure that they have update 4458311 installed to be protected from this vulnerability. - Originally posted: May 8, 2018 - Updated: September 11, 2018 - Aggregate CVE Severity Rating: Critical - Version: 2.0 Other Information ================= Recognize and avoid fraudulent email to Microsoft customers: ============================================================= If you receive an email message that claims to be distributing a Microsoft security update, it is a hoax that may contain malware or pointers to malicious websites. Microsoft does not distribute security updates via email. The Microsoft Security Response Center (MSRC) uses PGP to digitally sign all security notifications. However, PGP is not required for reading security notifications, reading security bulletins, or installing security updates. You can obtain the MSRC public PGP key at . ******************************************************************** THE INFORMATION PROVIDED IN THIS MICROSOFT COMMUNICATION IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY. ******************************************************************** Microsoft respects your privacy. Please read our online Privacy Statement at . If you would prefer not to receive future technical security notification alerts by email from Microsoft and its family of companies please visit the following website to unsubscribe: . These settings will not affect any newsletters youave requested or any mandatory service communications that are considered part of certain Microsoft services. For legal Information, see: . This newsletter was sent by: Microsoft Corporation 1 Microsoft Way Redmond, Washington, USA 98052 -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEELe29pj1Ogz+2MnKbEEiO2re18ugFAluXFcsACgkQEEiO2re1 8uixRA//XaInyFfnr1qAxWdgV65N7NNx7rrAm2fTa8+D8mk15cD4nwV60M84ouD+ niB/AgwCoBEmX7AhzKSNEzugaqeqMf+zlKc3s392mFz+xr9XI6vEHy6brYt8h4AH ly3PjUWJ8kBjGWoN+eph+Nge2xGfqXmFono+UY/Z+iNMgDLuOfEUylL0q6Xi3IzF AyBhVu+OIYXeTLuigrPATfy+lJrGRO/I/otc47vMSaI1HpfMHEYW782263jJz9mO Sd+Omi1Pd4jvLU3983TwiViZgwaZH5DD2Xxr9gNingH8+xSodMAes5sTP3rx+j8h VE9yW0swCm4CNc1pcf1bjr4qPgRz2AePa97lD/PsB83l33KL3SXO3ailZxu1+lYJ 1GsiyktpWf/FcOyUXsjUN8eXCjJC/+oM7RFEr+5VG3zIlIx1qvGOtNaFfC4pjFbI oRBNOi6l1WZUZ1MNy9qKeTI6Tdwt3wGpFmnV7FeWmsA2UiSEEZNLgAzHDGXh9Kkp IcD9d9h/BZUNTY7GPApfieLxL4ztjVfjlQqsdpt5EvWcooRh/94VUZN+NCX9XsFS nxcKqaff0BvYQXBaU56MPS2A6PNWk5fSGNgPMYjBKq517ZoWiHv8Bi29wIXoPGYw y9edDYJqE3gQrfibpIpnbOSj3OeoO8WrqiGKAdZ9Apq7XCqM68o= =laDH -----END PGP SIGNATURE-----