Microsoft Security Bulletin Release for April 2015

[Corrine]

Microsoft released fourteen (11) bulletins. Four (4) bulletins are identified as Critical and the remaining seven (7) are rated Important in severity.

The updates address vulnerabilities in Microsoft Windows, Microsoft Office, Internet Explorer, Microsoft Server Software, Productivity Software and .NET Framework. Details about the CVEs can be found in the below-referenced TechNet Security Bulletin.

For those who have had issues with .NET Framework updates, it is suggested that MS-041 be installed separately with a shut/down restart between other updates.

As part of the Internet Explorer update released today, SSL 3.0 has been disabled by default in Internet Explorer 11.

Microsoft Security Bulletin for April 2015

 

[niemiro]

As part of the Internet Explorer update released today, SSL 3.0 has been disabled by default in Internet Explorer 11.

I'm glad they're doing this. I've been running with SSL 3.0 disabled for a couple of months now and have not yet run into a single website I haven't been able to access as a result. Seems like a good move with very minimal user impact.

 

[Corrine]

It was announced in February (February 2015 security updates for Internet Explorer) but since then the IE Blog seems to be concentrating on Spartan and Windows 10 so no further information has been published yet about the change.

 

[Corrine]

April 2015 Updates, Part 2:

KB Article 894199, Description of Software Update Services and Windows Server Update Services changes in content for 2015 has been updated to list 34 new and modified updates being released today. The majority of the updates are for Windows 8, 8.1, RT and Windows Server 2012 R2, although there are several that are directed to Windows 7. The updates are option and details are available in the referenced KB article.

 

[Triple Helix]

Yea I only had 20 offered on Win 8.1 Pro x64.

Daniel