Microsoft’s Patch Tuesday security update for April has arrived and delivered the promised fix for the “critical” Badlock vulnerability.
The flaw was revealed by Samba developers late last month and it affects all Windows and Samba.
Indeed, so serious was the flaw that the engineers took the unusual step of giving it its own website complete with a logo, in order to attract as much attention to the issue as possible.
Samba, in case you were wondering, is an open source implementation of the SMB/CIFS networking protocol used by Windows for providing shared access to files, printers, and serial ports and for communications between nodes on a network, and is built into many Unix and Linux systems.
Microsoft released a total of 13 bulletins for April Patch Tuesday; six of which are rated critical. In the end, Microsoft decided that the Badlock bulletin (MS16-047) was not as serious as first thought, and rated it only as “important”. It patches a Windows flaw that could allow elevation of privilege if an attacker launches a man-in-the-middle (MiTM) attack.
Kandek pointed out that Bulletin MS16-039 contains fixes for a graphics component with Windows and applies to all version starting with Vista to Windows 10 and Server 2008 to 2102R2. It also affects older Office versions 2007 and 2010, plus .NET, Skype and Lync.
Internet Explorer has been patched (MS16-037) as the most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. The Edge browser has also had some attention (MS16-038), again to stop remote code execution.
“Microsoft Internet Explorer and Edge are patched in critical bulletins MS16-037 and MS16-038 respectively,” wrote Kandek. “Both have six vulnerabilities (this is a first that Edge has the same number as IE) and Edge actually has more serious problems than IE (also a first). None of the vulnerabilities are under attack currently.”
MS16-040 addresses a serious flaw with Microsoft XML Core Services.
“Next on our list is MS16-042, which addresses four flaws in Microsoft Office,” blogged Kandek. “Microsoft rates this bulletin as critical which is only happens when the vulnerability can be attacked directly without user interaction.” He suggest that businesses should consider banning RTF emails.
There were also a number of non-critical vulnerabilities for system admins to consider this month.
Meanwhile Todd Schell, Product Manager at HEAT Software pointed out that Microsoft has finally executed on a change to its update cycle last week.
“Starting this month, the software maker will roll out non-security updates via Windows Update or WSUS on the first Tuesday of each month, while the security updates will remain the second Tuesday of each month, or Patch Tuesday, as normal,” wrote Schell.
“Whether this is good news for you and your team or not depends on your patching cycle but the overall intent was to make things a bit easier,” he added.
What do you know about privacy? Try our quiz!
Targetting AWS, Microsoft? British competition regulator soon to announce “behavioural” remedies for cloud sector
Move to Elon Musk rival. Former senior executive at X joins Sam Altman's venture formerly…
Bitcoin price rises towards $100,000, amid investor optimism of friendlier US regulatory landscape under Donald…
Judge Kaplan praises former FTX CTO Gary Wang for his co-operation against Sam Bankman-Fried during…
Explore the future of work with the Silicon In Focus Podcast. Discover how AI is…
Executive hits out at the DoJ's “staggering proposal” to force Google to sell off its…
View Comments
Minor-ish correction regarding Samba - it's not built in to any Unix or Linux systems, it's available for them all should they need old-school style file sharing.