|
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it. |
-
Microsoft Security Advisory: CVE-2018-8115 fix is available on GitHub
This one isn’t particularly interesting from a vulnerability point of view — it’s a zero day that hasn’t been exploited as yet. CVE-2018-8115 | Windows Host Compute Service Shim Remote Code Execution Vulnerability can be fixed by installing a new version of the file hcsshim
What I found interesting: The new version of hcsshim isn’t in the Microsoft Update Catalog. It’s posted on GitHub. The new hcsshim isn’t from an official Microsoft account, mind you, but from a personal account, darrenstahlmsft.
Times change, eh?
UPDATE: Michael Hanselmann, who discovered and reported the security hole, has posted a brief explanation.
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
Woody
by 2 hours, 5 minutes ago
-
24H2 has suppressed my favoured spider
by 2 hours, 7 minutes ago
-
GeForce RTX 5060 in certain motherboards could experience blank screens
by 16 hours, 17 minutes ago
-
MS Office 365 Home on MAC
by 10 hours, 6 minutes ago
-
Google’s Veo3 video generator. Before you ask: yes, everything is AI here
by 1 day, 6 hours ago
-
Flash Drive Eject Error for Still In Use
by 1 day, 7 hours ago
-
Windows 11 Insider Preview build 27863 released to Canary
by 2 days, 1 hour ago
-
Windows 11 Insider Preview build 26120.4161 (24H2) released to BETA
by 2 days, 1 hour ago
-
AI model turns to blackmail when engineers try to take it offline
by 1 day, 4 hours ago
-
Migrate off MS365 to Apple Products
by 1 day, 5 hours ago
-
Login screen icon
by 20 hours, 3 minutes ago
-
AI coming to everything
by 5 hours, 24 minutes ago
-
Mozilla : Pocket shuts down July 8, 2025, Fakespot shuts down on July 1, 2025
by 2 days, 16 hours ago
-
No Screen TurnOff???
by 2 days, 17 hours ago
-
Identify a dynamic range to then be used in another formula
by 2 days, 17 hours ago
-
InfoStealer Malware Data Breach Exposed 184 Million Logins and Passwords
by 3 days, 5 hours ago
-
How well does your browser block trackers?
by 2 days, 15 hours ago
-
You can’t handle me
by 14 hours, 28 minutes ago
-
Chrome Can Now Change Your Weak Passwords for You
by 2 days, 8 hours ago
-
Microsoft: Over 394,000 Windows PCs infected by Lumma malware, affects Chrome..
by 3 days, 16 hours ago
-
Signal vs Microsoft’s Recall ; By Default, Signal Doesn’t Recall
by 2 days, 20 hours ago
-
Internet Archive : This is where all of The Internet is stored
by 3 days, 17 hours ago
-
iPhone 7 Plus and the iPhone 8 on Vantage list
by 3 days, 17 hours ago
-
Lumma malware takedown
by 3 days, 5 hours ago
-
“kill switches” found in Chinese made power inverters
by 4 days, 2 hours ago
-
Windows 11 – InControl vs pausing Windows updates
by 4 days, 1 hour ago
-
Meet Gemini in Chrome
by 4 days, 6 hours ago
-
DuckDuckGo’s Duck.ai added GPT-4o mini
by 4 days, 6 hours ago
-
Trump signs Take It Down Act
by 4 days, 14 hours ago
-
Do you have a maintenance window?
by 2 days, 18 hours ago
Remembering Woody
