The latest update for Windows operating systems is a big one and if you’re working from home it’s a good idea to download and install the update as soon as possible.
This is because the latest update contains fixes for as many as 113 security vulnerabilities.
For Windows 10 users this update is KB4549951 or 1903-OS Build 18362.778 and 1909-OS Build 18363.778. Software naming really is the sexiest thing ever, hey.
Updates aren’t limited to Windows however, with security updates also being delivered for the following Microsoft products:
- Microsoft Edge (EdgeHTML-based)
- Microsoft Edge (Chromium-based)
- Internet Explorer
- Microsoft Office and Microsoft Office Services and Web Apps
- Windows Defender
- Visual Studio
- Microsoft Dynamics
- Microsoft Apps for Android
- Microsoft Apps for Mac.
The big ticket items for the Windows update are three zero-day vulnerabilities. This is according to cybersecurity expert Brian Krebs.
Two of the zero-days – CVE-2020-1020 and CVE-2020-0938 – are associated with the Adobe Font Manager but are seemingly unrelated. Both of the vulnerabilities have been exploited in the wild and could be triggered by a user opening a tainted file.
The third major flaw addressed CVE-2020-1027 is less dangerous at the moment as it requires an attacker to be locally authenticated and that they run a specially crafted application. That having been said, it’s good that the flaw is addressed.
As always, updates can be installed automatically via the native Windows Update setting in Windows 10. Alternatively the updated can be downloaded manually here.
The update clocks in at just 193.1MB but given how many security flaws are addressed, it’s a good idea to download this update as soon as possible.
[Via – Krebs on Security]