Ho ho ho! December’s Patch Tuesday delivers three zero-days

Uloženo v:

Podrobná bibliografie
Vydáno v:	Computerworld.com (Dec 12, 2025)
Vydáno:	Foundry
Témata:	Microsoft Corp Window systems Codec Visual programming languages Remote searching Windows operating system Revisions Hydration Servers Windows (computer programs)
On-line přístup:	Citation/Abstract Full Text
Tagy:	Přidat tag Žádné tagy, Buďte první, kdo vytvoří štítek k tomuto záznamu!

Popis
Abstrakt:	Microsoft had released an out-of-band update (KB5070881) for Windows Server 2025, which was briefly offered to all Windows Server 2025 machines, regardless of Hotpatch enrollment. Browsers (Microsoft Edge) Microsoft Windows (both desktop and server) Microsoft Office Microsoft Exchange and SQL Server Microsoft Developer Tools (Visual Studio and .NET) Adobe (if you get this far) Browsers Microsoft has released a single update to Microsoft Edge (CVE-2025-62223) and a further 13 Chromium-based updates with this December release. Windows Cloud Files Mini Filter, VSP, Brokering and Windows Resilient File System (ReFS) Win32k, DWM and DirectX Graphics Kernel Windows Common Log File System Windows Remote Access Connection Manager Windows Routing and Remote Access Service (RRAS) Windows Installer and PowerShell Microsoft Hyper-V Windows Shell and Camera codecs Unfortunately, we have three zero-days through reported exploitation and public disclosure (CVE-2025-64671, CVE-2025-54100, and CVE-2025-62221) that affect GitHub, PowerShell, and the Windows mini-driver, respectively.
Zdroj:	Advanced Technologies & Aerospace Database