Microsoft Security Advisory Notification March 17, 2017

Topic

New Reply

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256

********************************************************************
Title: Microsoft Security Bulletin Minor Revisions
Issued: February 23, 2017 Should Be March 17, 2017
********************************************************************

Summary
=======
The following bulletins and/or bulletin summaries have undergone a
minor revision increment.

Please see the appropriate bulletin for more details.

* MS16-084
* MS16-JUL

Bulletin Information:
=====================

MS16-084

– Title: Cumulative Security Update for Internet Explorer
– https://technet.microsoft.com/library/security/ms16-084.aspx
– Reason for Revision: Removed CVE-2016-3276 from the
Vulnerability Severity Ratings and Impact table and from
the Vulnerability Information because Internet Explorer 9,
Internet Explorer 10, and Internet Explorer 11 are not
affected by this vulnerability. This is an informational
change only.
– Originally posted: July 12, 2016
– Updated: March 17, 2017
– Bulletin Severity Rating: Critical
– Version: 1.1

MS16-JUL

– Title: Microsoft Security Bulletin Summary for July 2016
– https://technet.microsoft.com/library/security/ms16-JUL.aspx
– Reason for Revision: V1.2 (March 17, 2017): For MS16-084,
removed CVE-2016-3276 from the Exploitability Index because
Internet Explorer 9, Internet Explorer 10, and Internet
Explorer 11 are not affected. This is an informational change
only.
– Originally posted: July 12, 2016
– Updated: March 17, 2017
– Bulletin Severity Rating: Not applicable
– Version: 1.2

Other Information
=================

Recognize and avoid fraudulent email to Microsoft customers:
=============================================================
If you receive an email message that claims to be distributing
a Microsoft security update, it is a hoax that may contain
malware or pointers to malicious websites. Microsoft does
not distribute security updates via email.

The Microsoft Security Response Center (MSRC) uses PGP to digitally
sign all security notifications. However, PGP is not required for
reading security notifications, reading security bulletins, or
installing security updates. You can obtain the MSRC public PGP key
at <https://technet.microsoft.com/security/dn753714&gt;.

********************************************************************
THE INFORMATION PROVIDED IN THIS MICROSOFT COMMUNICATION IS
PROVIDED “AS IS” WITHOUT WARRANTY OF ANY KIND. MICROSOFT
DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING
THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
PURPOSE.
IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE
LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT,
INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL
DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN
ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY
FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING
LIMITATION MAY NOT APPLY.
********************************************************************

……..

For legal Information, see:
<http://www.microsoft.com/info/legalinfo/default.mspx&gt;.

This newsletter was sent by:
Microsoft Corporation
1 Microsoft Way
Redmond, Washington, USA
98052

—–BEGIN PGP SIGNATURE—–
Version: PGP Desktop 10.2.0 (Build 1950) – not licensed for commercial use: http://www.pgp.com
Charset: utf-8
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=BwiH
—–END PGP SIGNATURE—–

--------------------------------------

1. Tower Totals: 2xSSD ~512GB, 2xHHD 20 TB, Memory 32GB

SSDs: 6xOS Partitions, 2xW8.1 Main & Test, 2x10.0 Test, Pro, x64

CPU i7 2600 K, SandyBridge/CougarPoint, 4 cores, 8 Threads, 3.4 GHz
Graphics Radeon RX 580, RX 580 ONLY Over Clocked
More perishable

2xMonitors Asus DVI, Sony 55" UHD TV HDMI

1. NUC 5i7 2cores, 4 Thread, Memory 8GB, 3.1 GHz, M2SSD 140GB
1xOS W8.1 Pro, NAS Dependent, Same Sony above.

-----------------

Reply | Quote

Replies

This looks like a distraction or like someone trying to justify their current job.
This patch for IE was released 9 months ago and has been superseded few times since then.
Microsoft would be better off by expiring it entirely then revising minor description.
Internet Explorer 9 for Windows 7 was expired a while ago and is no longer available officially via Catalog, Windows Update or WSUS.
I think IE9 is still supported for Vista until the EOL for the product which is very close.

Reply | Quote