Home / vulnerabilities Microsoft Security Bulletin Summary For May, 2015
Posted on 23 May 2015
Source : packetstormsecurity.org Link
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
********************************************************************
Title: Microsoft Security Bulletin Releases
Issued: May 21, 2015
********************************************************************
Summary
=======
The following bulletins have undergone a major revision increment.
* MS15-044 - Critical
Bulletin Information:
=====================
MS15-044 - Critical
- Title: Vulnerabilities in Microsoft Font Drivers Could Allow
Remote Code Execution (3057110)
- https://technet.microsoft.com/library/security/ms15-044
- Reason for Revision: V2.0 (May 21, 2015): Bulletin revised
to announce the availability of a new update (3065979) that
fixes a known issue that some customers experienced after
installing the 3045171 security update on all supported
editions of Windows 7/Windows 2008 R2 and earlier systems.
The 3045171 security update causes customer applications to
crash while attempting to create text-outline-based path
objects using GDI+. Customers who are experiencing this
known issue can correct the problem by installing the
3065979 update. See Microsoft Knowledge Base Article
3065979 for more information and download links.
- Originally posted: May 12, 2015
- Updated: May 21, 2015
- Bulletin Severity Rating: Critical
- Version: 2.0
Other Information
=================
Recognize and avoid fraudulent email to Microsoft customers:
=============================================================
If you receive an email message that claims to be distributing
a Microsoft security update, it is a hoax that may contain
malware or pointers to malicious websites. Microsoft does
not distribute security updates via email.
The Microsoft Security Response Center (MSRC) uses PGP to digitally
sign all security notifications. However, PGP is not required for
reading security notifications, reading security bulletins, or
installing security updates. You can obtain the MSRC public PGP key
at <https://technet.microsoft.com/security/dn753714>.
********************************************************************
THE INFORMATION PROVIDED IN THIS MICROSOFT COMMUNICATION IS
PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT
DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING
THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
PURPOSE.
IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE
LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT,
INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL
DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN
ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY
FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING
LIMITATION MAY NOT APPLY.
********************************************************************
Microsoft respects your privacy. Please read our online Privacy
Statement at <http://go.microsoft.com/fwlink/?LinkId=81184>.
If you would prefer not to receive future technical security
notification alerts by email from Microsoft and its family of
companies please visit the following website to unsubscribe:
<https://profile.microsoft.com/RegSysProfileCenter/subscriptionwizar
d.aspx?wizid=5a2a311b-5189-4c9b-9f1a-d5e913a26c2e&%3blcid=1033>.
These settings will not affect any newsletters you’ve requested or
any mandatory service communications that are considered part of
certain Microsoft services.
For legal Information, see:
<http://www.microsoft.com/info/legalinfo/default.mspx>.
This newsletter was sent by:
Microsoft Corporation
1 Microsoft Way
Redmond, Washington, USA
98052
-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 10.2.0 (Build 1950)
Charset: utf-8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=kA54
-----END PGP SIGNATURE-----