As always, the latest cumulative update comes with “functionality improvements and resolves the vulnerabilities” in Windows 10. Here are all the patches that have been released for Windows 10 users as part of Patch Tuesday November 2015 and their explanations:

3105256 MS15-122: Security update for Kerberos to address security feature bypass

3104521 MS15-119: Security update in TDX.sys to address elevation of privilege

3104507 MS15-118: Security updates in the .NET Framework to address elevation of privilege

3105864 MS15-115: Security update for Windows to address remote code execution

3104519 MS15-113: Cumulative security update for Microsoft Edge

3104517 MS15-112: Cumulative security update for Internet Explorer

As we can see, these updates are quite serious, as they address some important products, such as the .NET Framework, and both the Microsoft Edge and Internet Explorer browsers. Furthermore, the Microsoft security advisory also released an update to Hyper-V to address CPU weakness. SPONSORED This cumulative update is just a security update and while it doesn’t bring any new features, it’s most likely going to fix quite a few annoying bugs and glitches for Windows 10 users that have been affected. Here are some other updates that have been released on this Patch Tuesday:

MS15-114 – resolves a vulnerability in Windows, specifically Windows Journal, that could allow remote code execution. This patch is rated critical for all supported editions of Windows Vista and Windows 7, and for all supported non-Itanium editions of Windows Server 2008 and Windows Server 2008 R2. MS15-116 addresses bugs and issues in Microsoft Office, according to Network World, who is citing Qualys CTO Wolfgang Kandek:

MS15-117 provides the fix for a flaw in Microsoft Windows NDIS to stop an attacker from exploiting the bug and gaining elevation of privilege MS15-120 resolves a denial of service vulnerability in Windows IPSEC MS15-121 fixes a flaw in Windows Schannel that “could allow spoofing if an attacker performs a man-in-the-middle (MiTM) attack between a client and a legitimate server. This security update is rated Important for all supported releases of Microsoft Windows excluding Windows 10.” MS15-123 is for Skype for Business and Microsoft Lync to address a vulnerability which “could allow information disclosure if an attacker invites a target user to an instant message session and then sends that user a message containing specially crafted JavaScript content.”

Let us know by leaving your comment below if this Patch Tuesday fixed things for you, or, as it happens sometimes, it actually brought botched updates.

Name * Email * Commenting as . Not you? Save information for future comments
Comment

Δ