Windows 10 testers receive two more patches, one of which plugs the
security holes in MS15-078 and SA 2755801
Late last night, Windows 10
spokesman Gabe Aul tweeted that there's
"another update now available" for Windows 10 build 10240. He must
have been referring to KB 3074679. Then sometime in the middle of the
night Redmond time, KB 3074686 also flew out the Windows Update chute.
KB 3074679 is billed in the delivery window as a "Security Update
for Windows 10 for x64-based Systems." The KB article explains:
This
security update resolves the following vulnerabilities in Microsoft Windows:
·
The
vulnerability could allow remote code execution if a user opens a specially
crafted document or visits an untrusted webpage that contains embedded OpenType
fonts. To learn more about the vulnerability, see Microsoft Security Bulletin
MS15-078.
·
The
vulnerability impacts Adobe Flash Player in Internet Explorer. To learn more
about the vulnerability, see Microsoft security advisory 2755801 and Adobe
Security bulletin APSB15-18.
·
The
vulnerability could allow elevation of privilege if the Windows Installer
service incorrectly runs custom action scripts.
Additionally, this update includes
non-security-related changes to enhance the functionality of Windows 10 through
new features and improvements.
Of course, the non-security changes aren't listed or explained.
This patch triggers a reboot.
KB
3074686 is similarly labelled "Update for Windows 10 for x64-based
Systems." The KB article says it's an improvement to
the "Out of Box Experience" (I've always loved that phrase. I wonder
if that's what Count Dracula encounters every evening) for Windows 10. Per the
KB article:
This update improves the Windows 10 out-of-box
experience (OOBE). This update applies only to the Windows 10 OOBE process and
will be available only at the time that OOBE updates are installed.
Presumably, OOBE updates will be installed after July 29 as part of
the giant whooshing sound when people first install Windows 10.
There's also a new Intel HD Graphics Driver in the update mill.
Hey, at least Microsoft posted the KB articles.
No comments:
Post a Comment