Patch Tuesday: Microsoft patches a zero-day bug under active attack computing.co.uk - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from computing.co.uk Daily Mail and Mail on Sunday newspapers.
minute read
Share this article:
The higher-rated advisories focus on privilege-escalation bugs in CPU firmware: Tough to patch, hard to exploit, tempting to a savvy attacker.
Intel has unleashed 29 security advisories to plug up some serious bugs in the BIOS firmware for Intel processors, as well as in its Bluetooth products, Active Management Technology tools, the NUC Mini PC line, and, ironically, in its own security library.
Details about the advisories can be found at Intel’s Product Security Center.
Intel’s senior director of communications, Jerry Bryant, said in a blog post on Wednesday that Intel’s mostly digging these security issues up internally – as in, 95 percent – through its own diligence, with big chunks of them coming through its bugs bounty program and the company’s own research.
Updates to improve security when using Microsoft Office products.
Updates to improve security when Windows performs basic operations. In this update, we can see some vulnerabilities that are already being exploited and some that look ripe for exploitation in the future, Immersive Labs’ Kevin Breen, Director of Cyber Threat Research, said about today s security patches. We have seen motivated attackers reproduce exploits within days of the patches being released, so, as always, it’s vital that you patch as quickly as possible to ensure your exposure is reduced.
Here is the complete changelog of KB4598229 (Build 18363.1316) for Windows 10 v1909 and v1903