{"id":219582,"date":"2019-06-21T09:55:24","date_gmt":"2019-06-21T07:55:24","guid":{"rendered":"https:\/\/www.borncity.com\/blog\/?p=219582"},"modified":"2023-02-07T07:42:05","modified_gmt":"2023-02-07T06:42:05","slug":"microsoft-sicherheitshinweise-juni-2019","status":"publish","type":"post","link":"https:\/\/borncity.com\/blog\/2019\/06\/21\/microsoft-sicherheitshinweise-juni-2019\/","title":{"rendered":"Microsoft Sicherheitshinweise Juni 2019"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline\" src=\"https:\/\/borncity.com\/blog\/wp-content\/uploads\/2015\/01\/Schutz.jpg\" width=\"40\" align=\"left\" height=\"47\"\/>[<a href=\"https:\/\/borncity.com\/win\/2019\/06\/21\/microsoft-security-advisories-notifications-june-2019\/\" target=\"_blank\" rel=\"noopener noreferrer\">English<\/a>]Kleiner Nachtrag in Sachen Sicherheit. Zum Patchday und danach hat Microsoft einige 'Microsoft Security Update Releases'-Meldungen freigegeben. Die letzte stammt von gestern. Hier ein \u00dcberblick. Zudem habe ich eine \u00dcbersicht der Servicing Stack Updates sowie Auflistungen zum Spectre-Schutz mit aufgenommen. <\/p>\n<p><!--more--><\/p>\n<h2>Sicherheitsmeldung CVE-2019-1105 vom 20. Juni 2019<\/h2>\n<p><img loading=\"lazy\" decoding=\"async\" alt=\"\" src=\"https:\/\/vg07.met.vgwort.de\/na\/970e3d4d14fd4c8c9d865545705d2528\" width=\"1\" height=\"1\"\/>Zum 20. Juni 2019 hat Microsoft die Sicherheitswarnung CVE-2019-1105 ver\u00f6ffentlicht. Es handelt sich um eine&nbsp; Spoofing-Schwachstelle in Microsofts Outlook-App f\u00fcr Android. Ein authentifizierter Angreifer k\u00f6nnte die Schwachstelle ausnutzen, indem er eine speziell gestaltete E-Mail-Nachricht an ein Opfer sendet.<\/p>\n<p>Der Angreifer, der diese Schwachstelle erfolgreich ausgenutzt hat, k\u00f6nnte dann Cross-Site-Scripting-Angriffe auf die betroffenen Systeme durchf\u00fchren und Skripte im Sicherheitskontext des aktuellen Benutzers ausf\u00fchren. Ein Sicherheitsupdate f\u00fcr die Outlook-App behebt die Sicherheitsl\u00fccke. Anschlie\u00dfend kann der Angriff in Outlook f\u00fcr Android durch speziell gestaltete E-Mail-Nachrichten nicht mehr genutzt werden.<\/p>\n<h2>Microsoft Security Advisory Notification (14. Juni 2019)<\/h2>\n<p>Von Microsoft wurden bereits zum 14. Juni 2019 folgende Hinweise ein einer Security Advisory Notification ver\u00f6ffentlicht.&nbsp; <\/p>\n<h3>ADV990001: Neueste Servicing Stack Updates (SSUs)<\/h3>\n<p>Grund f\u00fcr die Benachrichtigung: F\u00fcr Windows 10 Version 1903 und Windows Server&nbsp; Version 1903 (Server Core Installation) wurde ein SSU ver\u00f6ffentlicht. Die Liste der SSUs wird von Microsoft unter <a href=\"https:\/\/web.archive.org\/web\/20201101085445\/https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance\/advisory\/ADV990001\" target=\"_blank\" rel=\"noopener noreferrer\">ADV990001<\/a> gepflegt. Hier ein schneller \u00dcberblick, der mir von Blog-Leser Karl \u00fcber die patchlists.org zuging &#8211; wobei die Updates f\u00fcr die Version 1607, 1809 und 1903 sich sowohl auf Windows 10 Clients als auch auf die Windows Server-Pendants beziehen.<\/p>\n<ul>\n<li>KB955430, 28. Apr. 2009, Win Vista SP2 \/ Server 2008 SP2 (6.0.x)  <\/li>\n<li>KB4490628, 12. Mar 2019, Win 7 SP1 \/ Server 2008 R2 SP1 (+Embedded) (6.1.x)  <\/li>\n<li>KB3173426, 12. Jul 2016, Win 8 \/ Server 2012 (6.2.x)  <\/li>\n<li>KB3173424, 12. Jul 2016, Win 8.1 \/ Server 2012 R2 (6.3.x)  <\/li>\n<li>KB4498353, 14. May 2019, Win 10 1507 SAC \/ LTSC (10.10240.x)  <\/li>\n<li>KB4035632, 08. Aug 2017, Win 10 1511 SAC (10.10586.x)  <\/li>\n<li>KB4503537, 11. Jun 2019, Win 10 1607 SAC \/ LTSC \/ Server 2016 LTSC (10.14393.x)  <\/li>\n<li>KB4500640, 14. May 2019, Win 10 1703 SAC (10.15063.x)  <\/li>\n<li>KB4500641, 14. May 2019, Win 10 1709 SAC \/ Server 2016 SAC (+ARM64) (10.16299.x)  <\/li>\n<li>KB4497398, 14. May 2019, Win 10 1803 SAC \/ Server 2016 SAC (+ARM64) (10.17134.x)  <\/li>\n<li>KB4504369, 11. Jun 2019, Win 10 1809 SAC \/ Server 2019 LTSC \/ SAC (+ARM64) (10.17763.x)  <\/li>\n<li>KB4498523, 29. May 2019, Win 10 1903 RP (+ARM64) (10.18362.x)<\/li>\n<\/ul>\n<p>Hier noch einige Hinweise, was bestimmte SSUs f\u00fcr Windows 10 jeweils beheben.  <\/p>\n<p><strong>Windows 10 V1903 <\/strong> <\/p>\n<p>F\u00fcr das SSU <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4498523\/windows-10-update-kb4498523\" target=\"_blank\" rel=\"noopener noreferrer\">KB4498523<\/a> f\u00fcr Windows 10 V1903 gilt:  <\/p>\n<ul>\n<li>Behebt ein Problem, das das korrekte Laden von Benutzerprofilen beim Neustart nach der Installation bestimmter Updates verhindern kann.  <\/li>\n<li>Behebt ein Problem, das auftreten kann, wenn ein Language Pack installiert wird, w\u00e4hrend ein Update ansteht.&nbsp; Das Update kann m\u00f6glicherweise nicht installiert werden, und Sie erhalten m\u00f6glicherweise den Fehler \"0x800f0982\".  <\/li>\n<li>Behebt ein Problem, das auftreten kann, wenn eine optionale Funktion, wie beispielsweise .Net Framework 3.5, installiert wird, w\u00e4hrend ein Update ansteht.&nbsp; Die Installation der Funktion kann fehlschlagen, und Sie erhalten m\u00f6glicherweise den Fehler \"0x800F080C\".  <\/li>\n<li>Behebt ein Problem, bei dem Updates m\u00f6glicherweise nicht installiert werden k\u00f6nnen, nachdem der Befehl \/resetbase in DISM ausgef\u00fchrt wurde.<\/li>\n<\/ul>\n<p>Es wurden also eine Reihe an Bugs bei Windows Update mit dem SSU behoben. <\/p>\n<p><strong>Windows 10 V1809<\/strong>  <\/p>\n<p>F\u00fcr das SSU <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4504369\/windows-10-update-kb4504369\" target=\"_blank\" rel=\"noopener noreferrer\">KB4504369<\/a> f\u00fcr Windows 10 V1809 gilt: Behebt ein Problem, das auftreten kann, wenn ein Language Pack installiert wird, w\u00e4hrend ein Update ansteht.&nbsp; Das Update kann m\u00f6glicherweise nicht installiert werden, und Sie erhalten m\u00f6glicherweise den Fehler \"0x800f0982\".  <\/p>\n<p><strong>Windows 10 V1607<\/strong>  <\/p>\n<p>F\u00fcr das SSU <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4503537\/windows-10-update-kb4503537\" target=\"_blank\" rel=\"noopener noreferrer\">KB4503537<\/a> f\u00fcr Windows 10 V1607 gilt: Behebt ein Problem, das das korrekte Laden von Benutzerprofilen beim Neustart nach der Installation bestimmter Updates verhindern kann. <\/p>\n<h3>ADV180002: Leitlinien f\u00fcr Spectre-Schutz<\/h3>\n<\/p>\n<p>Im Microsoft Security Advisory <a href=\"https:\/\/web.archive.org\/web\/20201012150049\/https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/ADV180002\" target=\"_blank\" rel=\"noopener noreferrer\">ADV180002<\/a> (Guidance to mitigate speculative execution side-channel vulnerabilities, erstmals am 3. Januar 2018 ver\u00f6ffentlicht) wurde die Tabelle in FAQ #9 zum 14.6.2019 mit Informationen f\u00fcr ARM-Prozessoren erg\u00e4nzt. <\/p>\n<p>Erg\u00e4nzend zu Microsofts Informationen liegt mir von Blog-Leser Karl (danke daf\u00fcr) die folgende Aufstellung \u00fcber Patches f\u00fcr die diversen Spectre-Schwachstellen vor. Vielleicht kann die jemand brauchen.<\/p>\n<table cellspacing=\"0\" cellpadding=\"1\" width=\"629\" border=\"1\">\n<tbody>\n<tr>\n<td valign=\"top\" width=\"272\"><strong>Spectre 1, 2, 3, 3a, 4 (SSBD), <\/strong><\/td>\n<td valign=\"top\" width=\"355\"><strong>L1TF, MDS, Retpoline<\/strong><\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\"><strong>Spectre v1\/2<\/p>\n<p>Server<br \/><\/strong><\/td>\n<td valign=\"top\" width=\"355\">&nbsp;<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2008 SP2&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; <\/td>\n<td valign=\"top\" width=\"355\">KB4090450[0] &gt; KB4093478[1] + Registry AMD \/ Intel + BIOS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2008 R2 SP1 <\/td>\n<td valign=\"top\" width=\"355\">KB4056897[0] &gt; KB4338821[1] + Registry AMD \/ Intel + BIOS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2012<\/td>\n<td valign=\"top\" width=\"355\">KB4088880[0] &gt; KB4338816[1] + Registry AMD \/ Intel + BIOS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2012 R2 U1 <\/td>\n<td valign=\"top\" width=\"355\">KB4056898[0] &gt; KB4338831[1] + Registry AMD \/ Intel + BIOS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2016 1607\/Core&nbsp; <\/td>\n<td valign=\"top\" width=\"355\">KB4056890[0] &gt; KB4132216 + KB4338822[1] + Registry AMD \/ Intel + BIOS or 2018-10 KB4091664-v6<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2016 1709 Core <\/td>\n<td valign=\"top\" width=\"355\">KB4056892[0] &gt; KB4131372 + KB4338817[1] + Registry AMD \/ Intel + BIOS or 2018-10 KB4091663-v6<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2016 1803 Core<\/td>\n<td valign=\"top\" width=\"355\">KB4338853 + KB4340917[1] + Registry AMD \/ Intel + BIOS or 2018-10 KB4100347-v4<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2019 1809\/Core<\/td>\n<td valign=\"top\" width=\"355\">included in OS + Registry AMD \/ Intel<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2019 1903 Core <\/td>\n<td valign=\"top\" width=\"355\">included in OS + Registry AMD \/ Intel<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\"><strong>Clients<\/strong><\/td>\n<td valign=\"top\" width=\"355\">&nbsp;<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows Vista SP2 <\/td>\n<td valign=\"top\" width=\"355\">KB4090450[0] &gt; KB4093478[1] + Registry AMD \/ Intel + BIOS (out of support)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 7 SP1<\/td>\n<td valign=\"top\" width=\"355\">KB4056897[0] &gt; KB4338821[1] + Registry AMD \/ Intel + BIOS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 8.0<\/td>\n<td valign=\"top\" width=\"355\">KB4088880[0] &gt; KB4338816[1] + Registry AMD \/ Intel + BIOS (out of support)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 8.1 U1<\/td>\n<td valign=\"top\" width=\"355\">KB4056898[0] &gt; KB4338831[1] + Registry AMD \/ Intel + BIOS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">&nbsp;<\/td>\n<td valign=\"top\" width=\"355\">&nbsp;<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1507 LTSC<\/td>\n<td valign=\"top\" width=\"355\">KB4345455[1] + Registry AMD \/ Intel + BIOS or 2018-05 KB4091666-v5 (Home \/ Pro \/ Ent \/ Edu out of support)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1511<\/td>\n<td valign=\"top\" width=\"355\">KB4035632 + KB4093109[1] + Registry AMD \/ Intel + BIOS (Home \/ Pro \/ Ent \/ Edu out of support)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1607 LTSC<\/td>\n<td valign=\"top\" width=\"355\">KB4056890[0] &gt; KB4132216 + KB4338822[1] + Registry AMD \/ Intel + BIOS or 2018-10 KB4091664-v6 (Home \/ Pro \/ Ent \/ Edu out of support)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1703 <\/td>\n<td valign=\"top\" width=\"355\">KB4132649 + KB4338827[1] + Registry AMD \/ Intel + BIOS or 2018-10 KB4091663-v6 (Home \/ Pro \/ Ent \/ Edu out of support)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1709 <\/td>\n<td valign=\"top\" width=\"355\">KB4056892[0] &gt; KB4131372 + KB4338817[1] + Registry AMD \/ Intel + BIOS 2018-10 KB4090007_v6 (Home \/ Pro out of support)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1803<\/td>\n<td valign=\"top\" width=\"355\">KB4338853 + KB4340917[1] + Registry AMD \/ Intel + BIOS or 2018-10 KB4100347-v4<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1809<\/td>\n<td valign=\"top\" width=\"355\">included in OS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1903 <\/td>\n<td valign=\"top\" width=\"355\">included in OS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 20H1 <\/td>\n<td valign=\"top\" width=\"355\">included in OS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">&nbsp;<\/td>\n<td valign=\"top\" width=\"355\">&nbsp;<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\"><strong>Spectre NG v3, 3a, <\/strong><strong>4 (SSBD)<\/strong><\/td>\n<td valign=\"top\" width=\"355\"><strong>[3],&nbsp; <\/strong><strong>L1TF<\/strong><\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\"><strong>Server<\/strong><\/td>\n<td valign=\"top\" width=\"355\">&nbsp;<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2008 SP2&nbsp;&nbsp;&nbsp; <\/td>\n<td valign=\"top\" width=\"355\">KB4480968[0] &gt; KB4499180[1] + Registry AMD \/ Intel + BIOS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2008 R2 SP1&nbsp; <\/td>\n<td valign=\"top\" width=\"355\">KB4480970[0] &gt; KB4093478[1] + Registry AMD \/ Intel + BIOS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2012&nbsp; <\/td>\n<td valign=\"top\" width=\"355\">KB4480975[0] &gt; KB4499158[1] + Registry AMD \/ Intel + BIOS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2012 R2 U1<\/td>\n<td valign=\"top\" width=\"355\">KB4480963[0] &gt; KB4499165[1] + Registry AMD \/ Intel + BIOS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2016 1607\/Core<\/td>\n<td valign=\"top\" width=\"355\">KB4467691[0] &gt; KB4494440[1] + Registry AMD \/ Intel + BIOS or 2019-02 KB4346087-v3<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2016 1709 Core<\/td>\n<td valign=\"top\" width=\"355\">KB4467686[0] &gt; KB4499179[1] + Registry AMD \/ Intel + BIOS or 2019-02 KB4346085-v3<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2016 1803 Core<\/td>\n<td valign=\"top\" width=\"355\">KB4467702[0] &gt; KB4499167[1] + Registry AMD \/ Intel + BIOS or 2019-02 KB4346084-v3<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2019 1809\/Core<\/td>\n<td valign=\"top\" width=\"355\">BIOS or 2019-02 KB4465065-v3 + Registry AMD \/ Intel<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2019 1903 Core<\/td>\n<td valign=\"top\" width=\"355\">included in OS + Registry AMD \/ Intel<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\"><strong>Clients<\/strong><\/td>\n<td valign=\"top\" width=\"355\">&nbsp;<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows Vista SP2<\/td>\n<td valign=\"top\" width=\"355\">KB4480968[0] &gt; KB4499180[1] + Registry AMD \/ Intel + BIOS (out of support)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 7 SP1&nbsp;&nbsp; <\/td>\n<td valign=\"top\" width=\"355\">KB4480970[0] &gt; KB4093478[1] + Registry AMD \/ Intel + BIOS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 8.0<\/td>\n<td valign=\"top\" width=\"355\">KB4480975[0] &gt; KB4499158[1] + Registry AMD \/ Intel + BIOS (out of support)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 8.1 U1 <\/td>\n<td valign=\"top\" width=\"355\">KB4480963[0] &gt; KB4499165[1] + Registry AMD \/ Intel + BIOS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1507 LTSC&nbsp; <\/td>\n<td valign=\"top\" width=\"355\">KB4467680[0] &gt; KB4471323[1] + Registry AMD \/ Intel + BIOS or 2019-02 KB4346088-v2 (Home \/ Pro \/ Ent \/ Edu out of support)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1511<\/td>\n<td valign=\"top\" width=\"355\">KB4035632 + KB4093109[1] + Registry AMD \/ Intel + BIOS (Home \/ Pro \/ Ent \/ Edu out of support)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1607 LTSC<\/td>\n<td valign=\"top\" width=\"355\">KB4467691[0] &gt; KB4494440[1] + Registry AMD \/ Intel + BIOS or 2019-02 KB4346087-v3 (Home \/ Pro \/ Ent \/ Edu out of support)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1703&nbsp; <\/td>\n<td valign=\"top\" width=\"355\">KB4467696[0] &gt; KB4499181[1] + Registry AMD \/ Intel + BIOS or 2019-02 KB4346086-v3 (Home \/ Pro \/ Ent \/ Edu out of support)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1709<\/td>\n<td valign=\"top\" width=\"355\">KB4467686[0] &gt; KB4499179[1] + Registry AMD \/ Intel + BIOS or 2019-02 KB4346085-v3 (Home \/ Pro out of support)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1803&nbsp; <\/td>\n<td valign=\"top\" width=\"355\">KB4467702[0] &gt; KB4499167[1] + Registry AMD \/ Intel + BIOS or 2019-02 KB4346084-v3<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1809<\/td>\n<td valign=\"top\" width=\"355\">KB4467708[0] &gt; KB4471332[1] + Registry AMD \/ Intel + BIOS or 2019-02 KB4465065-v3<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1903<\/td>\n<td valign=\"top\" width=\"355\">included in OS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 20H1 <\/td>\n<td valign=\"top\" width=\"355\">included in OS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\"><strong>MDS<br \/><\/strong><br \/><strong>Server<\/strong><\/td>\n<td valign=\"top\" width=\"355\">&nbsp;<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2008 SP2&nbsp;&nbsp; <\/td>\n<td valign=\"top\" width=\"355\">Registry AMD \/ Intel + BIOS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2008 R2 SP1 <\/td>\n<td valign=\"top\" width=\"355\">Registry AMD \/ Intel + BIOS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2012&nbsp;&nbsp; <\/td>\n<td valign=\"top\" width=\"355\">Registry AMD \/ Intel + BIOS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2012 R2 U1<\/td>\n<td valign=\"top\" width=\"355\">Registry AMD \/ Intel + BIOS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2016 1607\/Core<\/td>\n<td valign=\"top\" width=\"355\">Registry AMD \/ Intel + BIOS or 2019-05 KB4494175<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2016 1709 Core <\/td>\n<td valign=\"top\" width=\"355\">Registry AMD \/ Intel + BIOS or 2019-05 KB4494452<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2016 1803 Core<\/td>\n<td valign=\"top\" width=\"355\">Registry AMD \/ Intel + BIOS (KB Microcode not yet available)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2019 1809\/Core<\/td>\n<td valign=\"top\" width=\"355\">Registry AMD \/ Intel + BIOS (KB Microcode not yet available)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2019 1903 Core<\/td>\n<td valign=\"top\" width=\"355\">included in OS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\"><strong>Clients<\/strong><\/td>\n<td valign=\"top\" width=\"355\">&nbsp;<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows Vista SP2<\/td>\n<td valign=\"top\" width=\"355\">Registry AMD \/ Intel + BIOS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 7 SP1 <\/td>\n<td valign=\"top\" width=\"355\">Registry AMD \/ Intel + BIOS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 8.0 <\/td>\n<td valign=\"top\" width=\"355\">Registry AMD \/ Intel + BIOS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 8.1 U1<\/td>\n<td valign=\"top\" width=\"355\">Registry AMD \/ Intel + BIOS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1507 LTSC <\/td>\n<td valign=\"top\" width=\"355\">Registry AMD \/ Intel + BIOS or 2019-05 KB4494454 (Home \/ Pro \/ Ent \/ Edu out of support)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1511&nbsp; <\/td>\n<td valign=\"top\" width=\"355\">(out of support)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1607 LTSC <\/td>\n<td valign=\"top\" width=\"355\">Registry AMD \/ Intel + BIOS or 2019-05 KB4494175 (Home \/ Pro \/ Ent \/ Edu out of support)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1703<\/td>\n<td valign=\"top\" width=\"355\">Registry AMD \/ Intel + BIOS or 2019-02 KB4494453 (Home \/ Pro \/ Ent \/ Edu out of support)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1709<\/td>\n<td valign=\"top\" width=\"355\">Registry AMD \/ Intel + BIOS or 2019-05 KB4494452 (Home \/ Pro out of support)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1803<\/td>\n<td valign=\"top\" width=\"355\">Registry AMD \/ Intel + BIOS (KB Microcode not yet available)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1809 <\/td>\n<td valign=\"top\" width=\"355\">Registry AMD \/ Intel + BIOS (KB Microcode not yet available)<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1903&nbsp; <\/td>\n<td valign=\"top\" width=\"355\">included in OS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 20H1<\/td>\n<td valign=\"top\" width=\"355\">included in OS<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\"><strong>Retpoline (&lt;=Skylake)\/ <\/strong><\/td>\n<td valign=\"top\" width=\"355\"><strong>ImportOptimization (&gt;Skylake)<\/strong><\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2019 1809\/Core<\/td>\n<td valign=\"top\" width=\"355\">2019-05 KB4494441 + Registry AMD \/ Intel<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Server 2019 1903 Core<\/td>\n<td valign=\"top\" width=\"355\">included in OS + Registry AMD \/ Intel<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1809 <\/td>\n<td valign=\"top\" width=\"355\">2019-05 KB4494441<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"272\">Windows 10 1903<\/td>\n<td valign=\"top\" width=\"355\">included in OS<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p>SP = Service Pack, U = Update  <\/p>\n<p>[0] superseded, bugged should be declined<br \/>[1] or later cumulative security quality update. READ RESPECTIVE UPDATE HISTORY KNOWN ISSUES BEFORE APPLYING<br \/>[2] Exceptions apply to clients with AMD CPUs that need Registry AMD, refer MS advisories<br \/>[3] SSBD is never enable by default without Registry Intel, refer MS advisories<\/p>\n<p>Registry values: <strong>Server:<\/strong>&nbsp; <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4072698\/windows-server-guidance-to-protect-against-the-speculative-execution\" target=\"_blank\" rel=\"noopener noreferrer\">kb4072698<\/a>&nbsp;<strong>Clients:<\/strong> <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4073119\/protect-against-speculative-execution-side-channel-vulnerabilities-in\" target=\"_blank\" rel=\"noopener noreferrer\">KB4073119<\/a><\/p>\n<h2>Weiter Sicherheitshinweise 11. Juni 2019<\/h2>\n<p>**************************************************************************************<br \/>Title: Microsoft Security Advisory Notification<br \/>Issued: June 11, 2019<br \/>**************************************************************************************<\/p>\n<p>Security Advisories Released or Updated on June 11, 2019<br \/>====================================================================<\/p>\n<p>* Microsoft Security Advisory ADV190015<\/p>\n<p> &#8211; ADV190015 | June 2019 Adobe Flash Security Update<br \/> &#8211; <a href=\"https:\/\/web.archive.org\/web\/20191009124316\/https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/ADV190015\">https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance\/advisory\/ADV190015<\/a><br \/> &#8211; Reason for Revision: Information published.<br \/> &#8211; Originally posted: June 11, 2019<br \/> &#8211; Updated: N\/A<br \/> &#8211; Version: 1.0<\/p>\n<p>* Microsoft Security Advisory ADV190016<\/p>\n<p> &#8211; ADV190016 | Bluetooth Low Energy Advisory<br \/> &#8211; <a href=\"https:\/\/web.archive.org\/web\/20200306222848\/https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/ADV190016\">https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance\/advisory\/ADV190016<\/a><br \/> &#8211; Reason for Revision: Information published.<br \/> &#8211; Originally posted: June 11, 2019<br \/> &#8211; Updated: N\/A<br \/> &#8211; Version: 1.0<\/p>\n<p>* Microsoft Security Advisory ADV190017<\/p>\n<p> &#8211; ADV190017 | Microsoft HoloLens Remote Code Execution Vulnerabilities<br \/> &#8211; <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/de-de\/vulnerability\/ADV190017\">https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance\/advisory\/ADV190017<\/a><br \/> &#8211; Reason for Revision: Information published.<br \/> &#8211; Originally posted: June 11, 2019<br \/> &#8211; Updated: N\/A<br \/> &#8211; Version: 1.0<\/p>\n<p>* Microsoft Security Advisory ADV190018<\/p>\n<p> &#8211; ADV190018 | Microsoft Exchange Server Defense in Depth Update<br \/> &#8211; <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-us\/vulnerability\/ADV190018ADV190018\">https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance\/advisory\/ADV190018<\/a><br \/> &#8211; Reason for Revision: Information published.<br \/> &#8211; Originally posted: June 11, 2019<br \/> &#8211; Updated: N\/A<br \/> &#8211; Version: 1.0<\/p>\n<p>* Microsoft Security Advisory 190013<\/p>\n<p> &#8211; ADV190013 | Microsoft Guidance to mitigate Microarchitectural Data Sampling <br \/>&nbsp;&nbsp; vulnerabilities<br \/> &#8211; <a href=\"https:\/\/web.archive.org\/web\/20200916142137\/https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance\/advisory\/ADV190013\">https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance\/advisory\/ADV190013<\/a><br \/> &#8211; Reason for revision: Microsoft is announcing that security updates 4503273 <br \/>&nbsp;&nbsp; (monthly rollup) and 4503287 (security only), released on June 11, 2019 for <br \/>&nbsp;&nbsp; supported x64-based versions of Windows Server 2008, provide protections against<br \/>&nbsp;&nbsp; the Microarchitectural Data Sampling vulnerabilities addressed in this advisory.<br \/> &#8211; Originally posted: May 14, 2019<br \/> &#8211; Updated: June 11, 2019<br \/> &#8211; Version: 2.0<\/p>\n<p>* Microsoft Security Advisory 190009<\/p>\n<p> &#8211; ADV190009 | SHA-2 Code Sign Support Advisory<br \/> &#8211; <a href=\"https:\/\/web.archive.org\/web\/20201004024648\/https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/adv190009\">https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance\/advisory\/ADV190009<\/a><br \/> &#8211; Reason for revision: To correct an issue with the SHA-2 support for MSI files,<br \/>&nbsp;&nbsp; Microsoft is re-releasing KB4474419 for Windows Server 2008 Service Pack 2.<br \/>&nbsp;&nbsp; Microsoft recommends that customers running Windows Server 2008 Service Pack 2<br \/>&nbsp;&nbsp; reinstall update 4474419.<br \/> &#8211; Originally posted: March 13, 2019<br \/> &#8211; Updated: June 11, 2019<br \/> &#8211; Version: 3.0<\/p>\n<p>****************************************************************************<br \/>Title: Microsoft Security Update Releases<br \/>Issued: June 11, 2019<br \/>****************************************************************************<\/p>\n<p>Summary<br \/>=======<\/p>\n<p>The following CVE has undergone a major revision increment: <strong>CVE-2017-8533<\/strong><\/p>\n<p> Revision Information:<br \/>=====================<\/p>\n<p> &#8211; <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-us\/vulnerability\/CVE-2017-8533\" target=\"_blank\" rel=\"noopener noreferrer\">CVE-2017-8533<\/a><br \/> &#8211; Version: 5.0<br \/> &#8211; Reason for Revision: To comprehensively address CVE-2017-8533 for supported <br \/>&nbsp;&nbsp; editions of Windows 7 and Windows Server 2008 R2, Microsoft is releasing security<br \/>&nbsp;&nbsp; updates 4503292 (Monthly Rollup) and 4503269 (Security Only). We recommend that<br \/>&nbsp;&nbsp; customers running supported editions of these operating systems install the<br \/>&nbsp;&nbsp; appropriate June 2019 update to be fully protected from this vulnerability.<br \/> &#8211; Originally posted: June 13, 2017 <br \/> &#8211; Updated: June 11, 2019<br \/> &#8211; Aggregate CVE Severity Rating: Important<\/p>\n","protected":false},"excerpt":{"rendered":"<p>[English]Kleiner Nachtrag in Sachen Sicherheit. Zum Patchday und danach hat Microsoft einige 'Microsoft Security Update Releases'-Meldungen freigegeben. Die letzte stammt von gestern. Hier ein \u00dcberblick. Zudem habe ich eine \u00dcbersicht der Servicing Stack Updates sowie Auflistungen zum Spectre-Schutz mit aufgenommen.<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[426,301],"tags":[4328,4325],"class_list":["post-219582","post","type-post","status-publish","format-standard","hentry","category-sicherheit","category-windows","tag-sicherheit","tag-windows"],"_links":{"self":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/219582","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/comments?post=219582"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/219582\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/media?parent=219582"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/categories?post=219582"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/tags?post=219582"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}