Windows Update (11.10.2016)

Avis et alertes de sécurité au jour le jour (aucune question posée dans ce sous-forum)

Modérateur: Modérateurs et Modératrices

Windows Update (11.10.2016)

Messagede pierre » 12 Oct 2016, 08:57

Windows Update (11.10.2016)

Microsoft Security Bulletin Summary for October 2016

Cette synthèse n'est pas encore disponible en français.

Published: October 11, 2016Version: 1.0 This bulletin summary lists security bulletins released for October 2016.

The following table summarizes the security bulletins for this month in order of severity.
Bulletin IDBulletin Title and Executive SummaryMaximum Severity Rating
and Vulnerability Impact
Restart RequirementKnown
Issues
Affected Software
MS16-118Cumulative Security Update for Internet Explorer (3192887)
This security update resolves vulnerabilities in Internet Explorer. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
Critical
Remote Code Execution
Requires restart---------Microsoft Windows,
Internet Explorer
MS16-119Cumulative Security Update for Microsoft Edge (3192890)
This security update resolves vulnerabilities in Microsoft Edge. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Microsoft Edge. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than users with administrative user rights.
Critical
Remote Code Execution
Requires restart---------Microsoft Windows,
Microsoft Edge
MS16-120Security Update for Microsoft Graphics Component (3192884)
This security update resolves vulnerabilities in Microsoft Windows, Microsoft .NET Framework, Microsoft Office, Skype for Business, Silverlight, and Microsoft Lync. The most serious of these vulnerabilities could allow remote code execution if a user either visits a specially crafted website or opens a specially crafted document. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Critical
Remote Code Execution
Requires restart---------Microsoft Windows, Microsoft .NET Framework,
Microsoft Office, Skype for Business,
and Microsoft Lync.
MS16-121Security Update for Microsoft Office (3194063)
This security update resolves a vulnerability in Microsoft Office. An Office RTF remote code execution vulnerability exists in Microsoft Office software when the Office software fails to properly handle RTF files. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user.
Important
Remote Code Execution
May require restart---------Microsoft Office,
Microsoft Office Services and Web Apps
MS16-122Security Update for Microsoft Video Control (3195360)
This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if Microsoft Video Control fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. However, an attacker must first convince a user to open either a specially crafted file or a program from either a webpage or an email message.
Critical
Remote Code Execution
Requires restart---------Microsoft Windows
MS16-123Security Update for Windows Kernel-Mode Drivers (3192892)
This security update resolves vulnerabilities in Microsoft Windows. The more severe of the vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application that could exploit the vulnerabilities and take control of an affected system.
Important
Elevation of Privilege
Requires restart---------Microsoft Windows
MS16-124Security Update for Windows Registry (3193227)
This security update resolves vulnerabilities in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker can access sensitive registry information.
Important
Elevation of Privilege
Requires restart---------Microsoft Windows
MS16-125Security Update for Diagnostics Hub (3193229)
This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application.
Important
Elevation of Privilege
Requires restart---------Microsoft Windows
MS16-126Security Update for Microsoft Internet Messaging API (3196067)
This security update resolves a vulnerability in Microsoft Windows. An information disclosure vulnerability exists when the Microsoft Internet Messaging API improperly handles objects in memory. An attacker who successfully exploited this vulnerability could test for the presence of files on disk.
Moderate
Information Disclosure
Requires restart---------Microsoft Windows
MS16-127Security Update for Adobe Flash Player (3194343)
This security update resolves vulnerabilities in Adobe Flash Player when installed on all supported editions of Windows 8.1, Windows Server 2012, Windows Server 2012 R2, Windows RT 8.1, and Windows 10.
Critical
Remote Code Execution
Requires restart---------Microsoft Windows,
Adobe Flash Player
Image
__________________
Pierre (aka Terdef)
Appel à donation - Le site a besoin de votre aide

Comment je me fais avoir/infecter ? - Protéger navigateur, navigation et vie privée - Bloquer publicité et surveillance sur le Web
Accélérer Windows - Accélérer Internet - Décontamination - Installer Malwarebytes - Forums d'entraide

Il ne sera répondu à aucune demande de dépannage posée en MP (Messagerie Privée). Les demandes doivent être publiques et les réponses doivent profiter au public.
Image
Avatar de l’utilisateur
pierre
 
Messages: 29402
Inscription: 20 Mai 2002, 23:01
Localisation: Ici et maintenant

Re: Windows Update (11.10.2016)

Messagede pierre » 12 Oct 2016, 09:02

Documentation

CVE IDVulnerability TitleExploitability Assessment for
Latest Software Release
Exploitability Assessment for
Older Software Release
Denial of Service
Exploitability Assessment
MS16-118: Cumulative Security Update for Internet Explorer (3192887)
CVE-2016-3267Microsoft Browser Information Disclosure Vulnerability1 - Exploitation More Likely1 - Exploitation More LikelyNot applicable
CVE-2016-3298Microsoft Browser Information Disclosure Vulnerability0 - Exploitation Detected0 - Exploitation DetectedNot applicable
CVE-2016-3331Microsoft Browser Memory Corruption Vulnerability1 - Exploitation More Likely4 - Not affectedNot applicable
CVE-2016-3382Scripting Engine Memory Corruption Vulnerability1 - Exploitation More Likely1 - Exploitation More LikelyNot applicable
CVE-2016-3383Internet Explorer Memory Corruption Vulnerability4 - Not affected1 - Exploitation More LikelyNot applicable
CVE-2016-3384Internet Explorer Memory Corruption Vulnerability1 - Exploitation More Likely1 - Exploitation More LikelyNot applicable
CVE-2016-3385Scripting Engine Memory Corruption Vulnerability1 - Exploitation More Likely1 - Exploitation More LikelyNot applicable
CVE-2016-3387Microsoft Browser Elevation of Privilege Vulnerability1 - Exploitation More Likely1 - Exploitation More LikelyNot applicable
CVE-2016-3388Microsoft Browser Elevation of Privilege Vulnerability1 - Exploitation More Likely1 - Exploitation More LikelyNot applicable
CVE-2016-3390Scripting Engine Memory Corruption Vulnerability1 - Exploitation More Likely1 - Exploitation More LikelyNot applicable
CVE-2016-3391Microsoft Browser Information Disclosure Vulnerability3 - Exploitation Unlikely3 - Exploitation UnlikelyNot applicable
MS16-119: Cumulative Security Update for Microsoft Edge (3192890)
CVE-2016-3267Microsoft Browser Information Disclosure Vulnerability1 - Exploitation More Likely4 - Not affectedNot applicable
CVE-2016-3331Microsoft Browser Memory Corruption Vulnerability1 - Exploitation More Likely4 - Not affectedNot applicable
CVE-2016-3382Scripting Engine Memory Corruption Vulnerability1 - Exploitation More Likely4 - Not affectedNot applicable
CVE-2016-3386Scripting Engine Memory Corruption Vulnerability1 - Exploitation More Likely4 - Not affectedNot applicable
CVE-2016-3387Microsoft Browser Elevation of Privilege Vulnerability1 - Exploitation More Likely4 - Not affectedNot applicable
CVE-2016-3388Microsoft Browser Elevation of Privilege Vulnerability1 - Exploitation More Likely4 - Not affectedNot applicable
CVE-2016-3389Scripting Engine Memory Corruption Vulnerability1 - Exploitation More Likely4 - Not affectedNot applicable
CVE-2016-3390Scripting Engine Memory Corruption Vulnerability1 - Exploitation More Likely4 - Not affectedNot applicable
CVE-2016-3391Microsoft Browser Information Disclosure Vulnerability3 - Exploitation Unlikely4 - Not affectedNot applicable
CVE-2016-3392Microsoft Edge Security Feature Bypass3 - Exploitation Unlikely4 - Not affectedNot applicable
CVE-2016-7189Scripting Engine Remote Code Execution Vulnerability0 - Exploitation Detected4 - Not affectedNot applicable
CVE-2016-7190Scripting Engine Memory Corruption Vulnerability1 - Exploitation More Likely4 - Not affectedNot applicable
CVE-2016-7194Scripting Engine Memory Corruption Vulnerability1 - Exploitation More Likely4 - Not affectedNot applicable
MS16-120: Security Update for Microsoft Graphics Component (3192884)
CVE-2016-3209True Type Font Parsing Information Disclosure Vulnerability2 - Exploitation Less Likely1 - Exploitation More LikelyNot applicable
CVE-2016-3262GDI+ Information Disclosure Vulnerability2 - Exploitation Less Likely2 - Exploitation Less LikelyNot applicable
CVE-2016-3263GDI+ Information Disclosure Vulnerability4 - Not affected2 - Exploitation Less LikelyTemporary
CVE-2016-3270Win32k Elevation of Privilege Vulnerability1 - Exploitation More Likely1 - Exploitation More LikelyNot applicable
CVE-2016-3393Windows Graphics Component RCE Vulnerability1 - Exploitation More Likely0 - Exploitation DetectedPermanent
CVE-2016-3396GDI+ Remote Code Execution Vulnerability1 - Exploitation More Likely1 - Exploitation More LikelyNot applicable
CVE-2016-7182True Type Font Parsing Elevation of Privilege Vulnerability2 - Exploitation Less Likely1 - Exploitation More LikelyNot applicable
MS16-121: Security Update for Microsoft Office (3194063)
CVE-2016-7193Microsoft Office Memory Corruption Vulnerability0 - Exploitation Detected0 - Exploitation DetectedNot applicable
MS16-122: Security Update for Microsoft Video Control (3195360)
CVE-2016-0142Microsoft Video Control Remote Code Execution Vulnerability2 - Exploitation Less Likely2 - Exploitation Less LikelyNot applicable
MS16-123: Security Update for Windows Kernel-Mode Drivers (3192892)
CVE-2016-3266Win32k Elevation of Privilege Vulnerability1 - Exploitation More Likely1 - Exploitation More LikelyNot applicable
CVE-2016-3341Windows Transaction Manager Elevation of Privilege Vulnerability2 - Exploitation Less Likely2 - Exploitation Less LikelyNot applicable
CVE-2016-3376Win32k Elevation of Privilege Vulnerability2 - Exploitation Less Likely2 - Exploitation Less LikelyNot applicable
CVE-2016-7185Win32k Elevation of Privilege Vulnerability2 - Exploitation Less Likely2 - Exploitation Less LikelyPermanent
CVE-2016-7211Win32k Elevation of Privilege Vulnerability1 - Exploitation More Likely1 - Exploitation More LikelyNot applicable
MS16-124: Security Update for Windows Registry (3193227)
CVE-2016-0070Windows Kernel Local Elevation of Privilege2 - Exploitation Less Likely2 - Exploitation Less LikelyNot applicable
CVE-2016-0073Windows Kernel Local Elevation of Privilege2 - Exploitation Less Likely2 - Exploitation Less LikelyNot applicable
CVE-2016-0075Windows Kernel Local Elevation of Privilege2 - Exploitation Less Likely2 - Exploitation Less LikelyNot applicable
CVE-2016-0079Windows Kernel Local Elevation of Privilege2 - Exploitation Less Likely4 - Not affectedNot applicable
MS16-125: Security Update for Diagnostics Hub (3193229)
CVE-2016-7188Windows Diagnostics Hub Elevation of Privilege1 - Exploitation More Likely4 - Not affectedNot applicable
MS16-126: Security Update for Microsoft Internet Messaging API (3196067)
CVE-2016-3298Internet Explorer Information Disclosure Vulnerability4 - Not affected0 - Exploitation DetectedNot applicable
MS16-127: Security Update for Adobe Flash Player (3194343)
APSB16-32See Adobe Security Bulletin APSB16-32 for vulnerability severity and update priority ratings.--------------------------Not applicable
Image
__________________
Pierre (aka Terdef)
Appel à donation - Le site a besoin de votre aide

Comment je me fais avoir/infecter ? - Protéger navigateur, navigation et vie privée - Bloquer publicité et surveillance sur le Web
Accélérer Windows - Accélérer Internet - Décontamination - Installer Malwarebytes - Forums d'entraide

Il ne sera répondu à aucune demande de dépannage posée en MP (Messagerie Privée). Les demandes doivent être publiques et les réponses doivent profiter au public.
Image
Avatar de l’utilisateur
pierre
 
Messages: 29402
Inscription: 20 Mai 2002, 23:01
Localisation: Ici et maintenant

Re: Windows Update (11.10.2016)

Messagede pierre » 12 Oct 2016, 09:18

Logiciels affectés

Tableau 1


Windows Vista
Bulletin IdentifierMS16-118MS16-119MS16-120MS16-122MS16-123
Aggregate Severity RatingCriticalNoneCriticalCriticalImportant
Windows Vista Service Pack 2Internet Explorer 9
(3191492)
(Critical)
Not applicableWindows Vista Service Pack 2
(3191203)
(Critical)
Windows Vista Service Pack 2
(3190847)
(Critical)
Windows Vista Service Pack 2
(3191203)
(Important)

Windows Vista Service Pack 2
(3183431) (Important)
Windows Vista x64 Edition Service Pack 2Internet Explorer 9
(3191492)
(Critical)
Not applicableWindows Vista x64 Edition Service Pack 2
(3191203)
(Critical)
Windows Vista x64 Edition Service Pack 2
(3190847)
(Critical)
Windows Vista x64 Edition Service Pack 2
(3191203)
(Important)

Windows Vista x64 Edition Service Pack 2
(3183431) (Important)
Windows Server 2008
Bulletin Identifier MS16-118MS16-119MS16-120MS16-122MS16-123
Aggregate Severity RatingModerateNoneCriticalNoneImportant
Windows Server 2008 for 32-bit Systems Service Pack 2Internet Explorer 9
(3191492)
(Moderate)
Not applicableWindows Server 2008 for 32-bit Systems Service Pack 2
(3191203)
(Critical)
Not applicableWindows Server 2008 for 32-bit Systems Service Pack 2
(3191203)
(Important)

Windows Server 2008 for 32-bit Systems Service Pack 2
(3183431) (Important)
Windows Server 2008 for x64-based Systems Service Pack 2Internet Explorer 9
(3191492)
(Moderate)
Not applicableWindows Server 2008 for x64-based Systems Service Pack 2
(3191203)
(Critical)
Not applicableWindows Server 2008 for x64-based Systems Service Pack 2
(3191203)
(Important)

Windows Server 2008 for x64-based Systems Service Pack 2
(3183431) (Important)
Windows Server 2008 for Itanium-based Systems Service Pack 2Not applicableNot applicableWindows Server 2008 for Itanium-based Systems Service Pack 2
(3191203)
(Critical)
Not applicableWindows Server 2008 for Itanium-based Systems Service Pack 2
(3191203)
(Important)

Windows Server 2008 for Itanium-based Systems Service Pack 2
(3183431) (Important)
Windows 7
Bulletin Identifier MS16-118MS16-119MS16-120MS16-122MS16-123
Aggregate Severity RatingCriticalNoneCriticalCriticalImportant
Windows 7 for 32-bit Systems Service Pack 1
Security Only
Internet Explorer 11
(3192391)
(Critical)
Not applicableWindows 7 for 32-bit Systems Service Pack 1
(3192391)
(Critical)
Windows 7 for 32-bit Systems Service Pack 1
(3192391)
(Critical)
Windows 7 for 32-bit Systems Service Pack 1
(3192391)
(Important)
Windows 7 for 32-bit Systems Service Pack 1
Monthly Roll Up
Internet Explorer 11
(3185330)
(Critical)
Not applicableWindows 7 for 32-bit Systems Service Pack 1
(3185330)
(Critical)
Windows 7 for 32-bit Systems Service Pack 1
(3185330)
(Critical)
Windows 7 for 32-bit Systems Service Pack 1
(3185330)
(Important)
Windows 7 for x64-based Systems Service Pack 1
Security Only
Internet Explorer 11
(3192391)
(Critical)
Not applicableWindows 7 for x64-based Systems Service Pack 1
(3192391)
(Critical)
Windows 7 for x64-based Systems Service Pack 1
(3192391)
(Critical)
Windows 7 for x64-based Systems Service Pack 1
(3192391)
(Important)
Windows 7 for x64-based Systems Service Pack 1
Monthly Roll Up
Internet Explorer 11
(3185330)
(Critical)
Not applicableWindows 7 for x64-based Systems Service Pack 1
(3185330)
(Critical)
Windows 7 for x64-based Systems Service Pack 1
(3185330)
(Critical)
Windows 7 for x64-based Systems Service Pack 1
(3185330)
(Important)
Windows Server 2008 R2
Bulletin Identifier MS16-118MS16-119MS16-120MS16-122MS16-123
Aggregate Severity RatingModerateNoneCriticalNoneImportant
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Security Only
Internet Explorer 11
(3192391)
(Moderate)
Not applicableWindows Server 2008 R2 for x64-based Systems Service Pack 1
(3192391)
(Critical)
Not applicableWindows Server 2008 R2 for x64-based Systems Service Pack 1
(3192391)
(Important)
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Monthly Roll Up
Internet Explorer 11
(3185330)
(Moderate)
Not applicableWindows Server 2008 R2 for x64-based Systems Service Pack 1
(3185330)
(Critical)
Not applicableWindows Server 2008 R2 for x64-based Systems Service Pack 1
(3185330)
(Important)
Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
Security Only
Not applicableNot applicableWindows Server 2008 R2 for Itanium-based Systems Service Pack 1
(3192391)
(Critical)
Not applicableWindows Server 2008 R2 for Itanium-based Systems Service Pack 1
(3192391)
(Important)
Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
Monthly Rollup
Not applicableNot applicableWindows Server 2008 R2 for Itanium-based Systems Service Pack 1
(3185330)
(Critical)
Not applicableWindows Server 2008 R2 for Itanium-based Systems Service Pack 1
(3185330)
(Important)
Windows 8.1
Bulletin Identifier MS16-118MS16-119MS16-120MS16-122MS16-123
Aggregate Severity RatingCriticalNoneCriticalCriticalImportant
Windows 8.1 for 32-bit Systems
Security Only
Internet Explorer 11
(3192392)
(Critical)
Not applicableWindows 8.1 for 32-bit Systems
(3192392)
(Critical)
Windows 8.1 for 32-bit Systems
(3192392)
(Critical)
Windows 8.1 for 32-bit Systems
(3192392)
(Important)
Windows 8.1 for 32-bit Systems
Monthly Roll Up
Internet Explorer 11
(3185331)
(Critical)
Not applicableWindows 8.1 for 32-bit Systems
(3185331)
(Critical)
Windows 8.1 for 32-bit Systems
(3185331)
(Critical)
Windows 8.1 for 32-bit Systems
(3185331)
(Important)
Windows 8.1 for x64-based Systems
Security Only
Internet Explorer 11
(3192392)
(Critical)
Not applicableWindows 8.1 for x64-based Systems
(3192392)
(Critical)
Windows 8.1 for x64-based Systems
(3192392)
(Critical)
Windows 8.1 for x64-based Systems
(3192392)
(Important)
Windows 8.1 for x64-based Systems
Monthly Roll Up
Internet Explorer 11
(3185331)
(Critical)
Not applicableWindows 8.1 for x64-based Systems
(3185331)
(Critical)
Windows 8.1 for x64-based Systems
(3185331)
(Critical)
Windows 8.1 for x64-based Systems
(3185331)
(Important)
Windows Server 2012 and Windows Server 2012 R2
Bulletin Identifier MS16-118MS16-119MS16-120MS16-122MS16-123
Aggregate Severity RatingModerateNoneCriticalNoneImportant
Windows Server 2012
Security Only
Internet Explorer 10
(3192393)
(Moderate)
Not applicableWindows Server 2012
(3192393)
(Critical)
Not applicableWindows Server 2012
(3192393)
(Important)
Windows Server 2012
Monthly Roll Up
Internet Explorer 10
(3185332)
(Moderate)
Not applicableWindows Server 2012
(3185332)
(Critical)
Not applicableWindows Server 2012
(3185332)
(Important)
Windows Server 2012 R2
Security Only
Internet Explorer 11
(3192392)
(Moderate)
Not applicableWindows Server 2012 R2
(3192392)
(Critical)
Not applicableWindows Server 2012 R2
(3192392)
(Important)
Windows Server 2012 R2
Monthly Roll Up
Internet Explorer 11
(3185331)
(Moderate)
Not applicableWindows Server 2012 R2
(3185331)
(Critical)
Not applicableWindows Server 2012 R2
(3185331)
(Important)
Windows RT 8.1
Bulletin Identifier MS16-118MS16-119MS16-120MS16-122MS16-123
Aggregate Severity RatingCriticalNoneCriticalCriticalImportant
Windows RT 8.1
Monthly Roll Up
Internet Explorer 11
(3185331)
(Critical)
Not applicableWindows RT 8.1
(3185331)
(Critical)
Windows RT 8.1
(3185331)
(Critical)
Windows RT 8.1
(3185331)
(Important)
Windows 10
Bulletin Identifier MS16-118MS16-119MS16-120MS16-122MS16-123
Aggregate Severity RatingCriticalCriticalCriticalCriticalImportant
Windows 10 for 32-bit SystemsInternet Explorer 11
(3192440)
(Critical)
Microsoft Edge
(3192440)
(Critical)
Windows 10 for 32-bit Systems
(3192440)
(Critical)
Windows 10 for 32-bit Systems
(3192440)
(Critical)
Windows 10 for 32-bit Systems
(3192440)
(Important)
Windows 10 for x64-based SystemsInternet Explorer 11
(3192440)
(Critical)
Microsoft Edge
(3192440)
(Critical)
Windows 10 for x64-based Systems
(3192440)
(Critical)
Windows 10 for x64-based Systems
(3192440)
(Critical)
Windows 10 for x64-based Systems
(3192440)
(Important)
Windows 10 Version 1511 for 32-bit SystemsInternet Explorer 11
(3192441)
(Critical)
Microsoft Edge
(3192441)
(Critical)
Windows 10 Version 1511 for 32-bit Systems
(3192441)
(Critical)
Windows 10 Version 1511 for 32-bit Systems
(3192441)
(Critical)
Windows 10 Version 1511 for 32-bit Systems
(3192441)
(Important)
Windows 10 Version 1511 for x64-based SystemsInternet Explorer 11
(3192441)
(Critical)
Microsoft Edge
(3192441)
(Critical)
Windows 10 Version 1511 for x64-based Systems
(3192441)
(Critical)
Windows 10 Version 1511 for x64-based Systems
(3192441)
(Critical)
Windows 10 Version 1511 for x64-based Systems
(3192441)
(Important)
Windows 10 Version 1607 for 32-bit SystemsInternet Explorer 11
(3194798)
(Critical)
Microsoft Edge
(3194798)
(Critical)
Windows 10 Version 1607 for x64-based Systems
(3194798)
(Critical)
Windows 10 Version 1607 for x64-based Systems
(3194798)
(Critical)
Windows 10 Version 1607 for x64-based Systems
(3194798)
(Important)
Windows 10 Version 1607 for x64-based SystemsInternet Explorer 11
(3194798)
(Critical)
Microsoft Edge
(3194798)
(Critical)
Windows 10 Version 1607 for x64-based Systems
(3194798)
(Critical)
Windows 10 Version 1607 for x64-based Systems
(3194798)
(Critical)
Windows 10 Version 1607 for x64-based Systems
(3194798)
(Important)
Server Core installation option
Bulletin Identifier MS16-118MS16-119MS16-120MS16-122MS16-123
Aggregate Severity RatingNoneNoneCriticalNoneImportant
Windows Server 2008 for 32-bit Systems Service Pack 2
(Server Core installation)
Not applicableNot applicableWindows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
(3191203)
(Critical)
Not applicableWindows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
(3191203)
(Important)

Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
(3183431) (Important)
Windows Server 2008 for x64-based Systems Service Pack 2
(Server Core installation)
Not applicableNot applicableWindows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
(3191203)
(Critical)
Not applicableWindows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
(3191203)
(Important)

Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
(3183431) (Important)
Windows Server 2008 R2 for x64-based Systems Service Pack 1
(Server Core installation)
Security Only
Not applicableNot applicableWindows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
(3192391)
(Critical)
Not applicableWindows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
(3192391)
(Important)
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Monthly Rollup
Not applicableNot applicableWindows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
(3185330)
(Critical)
Not applicableWindows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
(3185330)
(Important)
Windows Server 2012
(Server Core installation)
Security Only
Not applicableNot applicableWindows Server 2012 (Server Core installation)
(3192393)
(Critical)
Not applicableWindows Server 2012 (Server Core installation)
(3192393)
(Important)
Windows Server 2012
(Server Core installation)
Monthly Rollup
Not applicableNot applicableWindows Server 2012 (Server Core installation)
(3185332)
(Critical)
Not applicableWindows Server 2012 (Server Core installation)
(3185332)
(Important)
Windows Server 2012 R2
(Server Core installation)
Security Only
Not applicableNot applicableWindows Server 2012 R2 (Server Core installation)
(3192392)
(Critical)
Not applicableWindows Server 2012 R2 (Server Core installation)
(3192392)
(Important)
Windows Server 2012 R2
(Server Core installation)
Monthly Rollup
Not applicableNot applicableWindows Server 2012 R2 (Server Core installation)
(3185331)
(Critical)
Not applicableWindows Server 2012 R2 (Server Core installation)
(3185331)
(Important)




Tableau 2

Windows Vista
Bulletin Identifier MS16-124MS16-125MS16-126MS16-127
Aggregate Severity RatingImportantNoneModerateNone
Windows Vista Service Pack 2Windows Vista Service Pack 2
(3191256)
(Important)
Not applicableWindows Vista Service Pack 2
(3193515)
(Moderate)
Not applicable
Windows Vista x64 Edition Service Pack 2Windows Vista x64 Edition Service Pack 2
(3191256)
(Important)
Not applicableWindows Vista x64 Edition Service Pack 2
(3193515)
(Moderate)
Not applicable
Windows Server 2008
Bulletin Identifier MS16-124MS16-125MS16-126MS16-127
Aggregate Severity RatingImportantNoneLowNone
Windows Server 2008 for 32-bit Systems Service Pack 2Windows Server 2008 for 32-bit Systems Service Pack 2
(3191256)
(Important)
Not applicableWindows Server 2008 for 32-bit Systems Service Pack 2
(3193515)
(Low)
Not applicable
Windows Server 2008 for x64-based Systems Service Pack 2Windows Server 2008 for x64-based Systems Service Pack 2
(3191256)
(Important)
Not applicableWindows Server 2008 for x64-based Systems Service Pack 2
(3193515)
(Low)
Not applicable
Windows Server 2008 for Itanium-based Systems Service Pack 2Windows Server 2008 for Itanium-based Systems Service Pack 2
(3191256)
(Important)
Not applicableWindows Server 2008 for Itanium-based Systems Service Pack 2
(3193515)
(Low)
Not applicable
Windows 7
Bulletin Identifier MS16-124MS16-125MS16-126MS16-127
Aggregate Severity RatingImportantNoneModerateNone
Windows 7 for 32-bit Systems Service Pack 1
Security Only
Windows 7 for 32-bit Systems Service Pack 1
(3192391)
(Important)
Not applicableWindows 7 for 32-bit Systems Service Pack 1
(3192391)
(Moderate)
Not applicable
Windows 7 for 32-bit Systems Service Pack 1
Monthly Roll Up
Windows 7 for 32-bit Systems Service Pack 1
(3185330)
(Important)
Not applicableWindows 7 for 32-bit Systems Service Pack 1
(3185330)
(Moderate)
Not applicable
Windows 7 for x64-based Systems Service Pack 1
Security Only
Windows 7 for x64-based Systems Service Pack 1
(3192391)
(Important)
Not applicableWindows 7 for x64-based Systems Service Pack 1
(3192391)
(Moderate)
Not applicable
Windows 7 for x64-based Systems Service Pack 1
Monthly Roll Up
Windows 7 for x64-based Systems Service Pack 1
(3185330)
(Important)
Not applicableWindows 7 for x64-based Systems Service Pack 1
(3185330)
(Moderate)
Not applicable
Windows Server 2008 R2
Bulletin Identifier MS16-124MS16-125MS16-126MS16-127
Aggregate Severity RatingImportantNoneLowNone
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1
(3192391)
(Important)
Not applicableWindows Server 2008 R2 for x64-based Systems Service Pack 1
(3192391)
(Low)
Not applicable
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Monthly Roll Up
Windows Server 2008 R2 for x64-based Systems Service Pack 1
(3185330)
(Important)
Not applicableWindows Server 2008 R2 for x64-based Systems Service Pack 1
(3185330)
(Low)
Not applicable
Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
Security Only
Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
(3192391)
(Important)
Not applicableWindows Server 2008 R2 for Itanium-based Systems Service Pack 1
(3192391)
(Low)
Not applicable
Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
Monthly Rollup
Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
(3185330)
(Important)
Not applicableWindows Server 2008 R2 for Itanium-based Systems Service Pack 1
(3185330)
(Low)
Not applicable
Windows 8.1
Bulletin Identifier MS16-124MS16-125MS16-126MS16-127
Aggregate Severity RatingImportantNoneNoneCritical
Windows 8.1 for 32-bit Systems
Security Only
Windows 8.1 for 32-bit Systems
(3192392)
(Important)
Not applicableNot applicableAdobe Flash Player
(3194343)
(Critical)
Windows 8.1 for 32-bit Systems
Monthly Roll Up
Windows 8.1 for 32-bit Systems
(3185331)
(Important)
Not applicableNot applicableNot applicable
Windows 8.1 for x64-based Systems
Security Only
Windows 8.1 for x64-based Systems
(3192392)
(Important)
Not applicableNot applicableAdobe Flash Player
(3194343)
(Critical)
Windows 8.1 for x64-based Systems
Monthly Roll Up
Windows 8.1 for x64-based Systems
(3185331)
(Important)
Not applicableNot applicableNot applicable
Windows Server 2012 and Windows Server 2012 R2
Bulletin Identifier MS16-124MS16-125MS16-126MS16-127
Aggregate Severity RatingImportantNoneNoneModerate
Windows Server 2012
Security Only
Windows Server 2012
(3192393)
(Important)
Not applicableNot applicableAdobe Flash Player
(3194343)
(Moderate)
Windows Server 2012
Monthly Roll Up
Windows Server 2012
(3185332)
(Important)
Not applicableNot applicableNot applicable
Windows Server 2012 R2
Security Only
Windows Server 2012 R2
(3192392)
(Important)
Not applicableNot applicableAdobe Flash Player
(3194343)
(Moderate)
Windows Server 2012 R2
Monthly Roll Up
Windows Server 2012 R2
(3185331)
(Important)
Not applicableNot applicableNot applicable
Windows RT 8.1
Bulletin Identifier MS16-124MS16-125MS16-126MS16-127
Aggregate Severity RatingImportantNoneNoneCritical
Windows RT 8.1
Monthly Roll Up
Windows RT 8.1
(3185331)
(Important)
Not applicableNot applicableAdobe Flash Player
(3194343)
(Critical)
Windows 10
Bulletin Identifier MS16-124MS16-125MS16-126MS16-127
Aggregate Severity RatingImportantImportantNoneCritical
Windows 10 for 32-bit SystemsWindows 10 for 32-bit Systems
(3192440)
(Important)
Windows 10 for 32-bit Systems
(3192440)
(Important)
Not applicableAdobe Flash Player
(3194343)
(Critical)
Windows 10 for x64-based SystemsWindows 10 for x64-based Systems
(3192440)
(Important)
Windows 10 for x64-based Systems
(3192440)
(Important)
Not applicableAdobe Flash Player
(3194343)
(Critical)
Windows 10 Version 1511 for 32-bit SystemsWindows 10 Version 1511 for 32-bit Systems
(3192441)
(Important)
Windows 10 Version 1511 for 32-bit Systems
(3192441)
(Important)
Not applicableAdobe Flash Player
(3194343)
(Critical)
Windows 10 Version 1511 for x64-based SystemsWindows 10 Version 1511 for x64-based Systems
(3192441)
(Important)
Windows 10 Version 1511 for x64-based Systems
(3192441)
(Important)
Not applicableAdobe Flash Player
(3194343)
(Critical)
Windows 10 Version 1607 for 32-bit SystemsWindows 10 Version 1607 for x64-based Systems
(3194798)
(Important)
Windows 10 Version 1607 for x64-based Systems
(3194798)
(Important)
Not applicableAdobe Flash Player
(3194343)
(Critical)
Windows 10 Version 1607 for x64-based SystemsWindows 10 Version 1607 for x64-based Systems
(3194798)
(Important)
Windows 10 Version 1607 for x64-based Systems
(3194798)
(Important)
Not applicableAdobe Flash Player
(3194343)
(Critical)
Server Core installation option
Bulletin Identifier MS16-124MS16-125MS16-126MS16-127
Aggregate Severity RatingImportantNoneNoneImportant
Windows Server 2008 for 32-bit Systems Service Pack 2
(Server Core installation)
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
(3191256)
(Important)
Not applicableNot applicableNot applicable
Windows Server 2008 for x64-based Systems Service Pack 2
(Server Core installation)
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
(3191256)
(Important)
Not applicableNot applicableNot applicable
Windows Server 2008 R2 for x64-based Systems Service Pack 1
(Server Core installation)
Security Only
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
(3192391)
(Important)
Not applicableNot applicableNot applicable
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Monthly Rollup
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
(3185330)
(Important)
Not applicableNot applicableNot applicable
Windows Server 2012
(Server Core installation)
Security Only
Windows Server 2012 (Server Core installation)
(3192393)
(Important)
Not applicableNot applicableNot applicable
Windows Server 2012
(Server Core installation)
Monthly Rollup
Windows Server 2012 (Server Core installation)
(3185332)
(Important)
Not applicableNot applicableNot applicable
Windows Server 2012 R2
(Server Core installation)
Security Only
Windows Server 2012 R2 (Server Core installation)
(3192392)
(Important)
Not applicableNot applicableNot applicable
Windows Server 2012 R2
(Server Core installation)
Monthly Rollup
Windows Server 2012 R2 (Server Core installation)
(3185331)
(Important)
Not applicableNot applicableNot applicable
Image
__________________
Pierre (aka Terdef)
Appel à donation - Le site a besoin de votre aide

Comment je me fais avoir/infecter ? - Protéger navigateur, navigation et vie privée - Bloquer publicité et surveillance sur le Web
Accélérer Windows - Accélérer Internet - Décontamination - Installer Malwarebytes - Forums d'entraide

Il ne sera répondu à aucune demande de dépannage posée en MP (Messagerie Privée). Les demandes doivent être publiques et les réponses doivent profiter au public.
Image
Avatar de l’utilisateur
pierre
 
Messages: 29402
Inscription: 20 Mai 2002, 23:01
Localisation: Ici et maintenant

Re: Windows Update (11.10.2016)

Messagede zartoc » 14 Nov 2016, 19:35

Bonjour Pierre,

Il sembe qu'il y ait du changement ce mois-ci.

Toutes les failles sont corrigées par deux uniques patchs. Un patch "sécurité" et un patch "montly rollup".

Par exemple sous windows 7 c'est les patchs 3185331 (cumulatif mensuel) et 3192391 (sécurité seulement).

Je suppose qu'il faut choisir ou l'un ou l'autre...
zartoc
 
Messages: 33
Inscription: 07 Aoû 2014, 17:20

Re: Windows Update (11.10.2016)

Messagede pierre » 14 Nov 2016, 21:11

Bonjour Zartoc,

Oui, cela a été annoncé (en anglais uniquement, je crois).
Nous n'avons plus la possibilité de choisir les patchs.
Il paraît que cela simplifie notre vie (nos updates). C'est certainement vrai.

En plus, ils sont cumulatifs (ils se comportent comme des Service Packs ( "SP" ) et grossissent mois après mois). Si on loupe une mise à jour (automatismes de mises à jour désactivés), on rattrape le coup aisément.

Le 17.05.2016
Simplifying updates for Windows 7 and 8.1
https://blogs.technet.microsoft.com/win ... 7-and-8-1/
Dans cet article, Microsoft annonce également virer ActiveX de http://www.catalog.update.microsoft.com/Home.aspx afin que tous les navigateurs puissent accéder à ce site (Windows Update Catalog et point d'entrée au technet et au forum de discussion appelé "answer" (déjà accessibles librement par ailleurs). La mort d'ActiveX est l'une des meilleures choses qui puisse arriver (un générateur de faille en flux continu et un mécanisme de signatures abracadabrantesque et violable).

Le 15.08.2016
Further simplifying servicing models for Windows 7 and Windows 8.1
https://blogs.technet.microsoft.com/win ... ndows-8-1/

Le 07.10.2016
More on Windows 7 and Windows 8.1 servicing changes
https://blogs.technet.microsoft.com/win ... g-changes/

Deux patchs cumulatifs chaque mois (et trois pour le prix de deux) :
  1. L'un ne comporte que les correctifs de sécurité et tous les correctifs critiques (security update). Disponible sous WSUS et Windows Update Catalog.
  2. L'autre correspond au précédent augmenté des correctifs ne relevant pas de la sécurité (rollup update). Disponible sous WSUS, Windows Update Catalog et Windows Update.
  3. Enfin, pour se préparer au prochain second mardi (Patch Tuesday) est créé le troisième mardi qui annonce le contenu du prochain Patch Tuesday. Disponible sous WSUS, Windows Update Catalog et Windows Update.

Avantages
Simplification certaine des mises à jour

Inconvénients visibles
Impossibilité de choisir les correctifs à installer or on sait que Microsoft force l'implantation de codes qui ne sont pas des correctifs, mais des mécanismes d'espionnage (dont les sondes de télémétrie). On sait aussi que le Patch Tuesday est souvent suivi du Hack Wednesday ou de processus qui ne fonctionnent plus, voir de machines totalement plantées. Il n'est plus possible, après identification du correctif fautif, de le désinstaller tout en conservant tout le reste. Ceci peut être catastrophique dans les grands parcs (administrations, etc. ...) et pour de nombreux utilisateurs avancés.

Inconvénients invisibles - le côté obscur
Déjà évoqué plus haut : comment empêcher dorénavant Microsoft d'injecter du code genre télémétrie et autres mécanismes d'espionnage dont il fait feu de tout bois (ces mécanismes, initialement de Windows10, ont été déployés dans Windows 7 et Windows 8.1 à cause des Windows Update !).

Si le "rollup update" comporte des mises à jour "intéressantes", on ne peut pas les choisir. C'est tout ou rien (le "rien", c'est on choisit "security update" seulement !).

Comme on ne peut pas avoir confiance sur le Web (et surtout pas en Microsoft), que faire ? Rester à la traîne des correctifs non sécuritaires ? Passer sa vie, chaque mois, après un update, à passer des DWS - Destroy Windows Spying et autres outils de même nature ?

Microsoft n'a jamais changé d'un iota sa manipulation des individus, depuis sa création : ne réfléchissez pas - appuyez sur le bouton et ça marche (il oublie juste de dire "ça marche pour moi, Microsoft, pour vous, l'utilisateur, je m'en fout").

Cordialement
Image
__________________
Pierre (aka Terdef)
Appel à donation - Le site a besoin de votre aide

Comment je me fais avoir/infecter ? - Protéger navigateur, navigation et vie privée - Bloquer publicité et surveillance sur le Web
Accélérer Windows - Accélérer Internet - Décontamination - Installer Malwarebytes - Forums d'entraide

Il ne sera répondu à aucune demande de dépannage posée en MP (Messagerie Privée). Les demandes doivent être publiques et les réponses doivent profiter au public.
Image
Avatar de l’utilisateur
pierre
 
Messages: 29402
Inscription: 20 Mai 2002, 23:01
Localisation: Ici et maintenant

Re: Windows Update (11.10.2016)

Messagede zartoc » 14 Nov 2016, 21:51

re-bonsoir,

Comme vous dites, il y a plus d'inconvénients que d'avantages.

Après installation du premier (3185331) un message au redémarrage : "Échec de la configuration des mises à jour Windows. Annulation des modifications. Erreur "Ne pas éteindre votre ordinateur"

Je fais rien, j'attends.

Redémarrage automatique.

A nouveau "Échec de la configuration des mises à jour Windows. Annulation des modifications. Erreur "Ne pas éteindre votre ordinateur"" mais cette fois la fenêtre de session s'ouvre.
Impossible de savoir ce qui a été installé ou pas.

Je lance le deuxième (3192391) et contrairement à mes attentes il n'affiche pas "ce patch est déjà installé" mais me propose de l'installer. Je fais.
Cette fois, redémarrage sans problème.

Je renonce à comprendre.


J'utilise pas DWS qui requiert NEt Framework 4 mais spybot anti beacon ainsi que Never10.exe de steve Gibson.

Aucun des deux n'a signalé de changement.

Cordialement.
zartoc
 
Messages: 33
Inscription: 07 Aoû 2014, 17:20

Re: Windows Update (11.10.2016)

Messagede pierre » 14 Nov 2016, 22:07

Lors d'un Windows Update, s'il y a un échec, Windows update désinstalle tout ce qu'il a fait et réessaye une seconde fois. S'il y a encore un échec il désinstalle une seconde fois tout ce qui a été fait et arrête de réessayer.
Donc, on se retrouve dans la situation avant le Windows Update, sans aucune modification apportée à Windows. De mémoire, et d'expérience, la désinstallation d'un Windows Update par Windows Update est le truc qui fonctionne le mieux ! :D
Image
__________________
Pierre (aka Terdef)
Appel à donation - Le site a besoin de votre aide

Comment je me fais avoir/infecter ? - Protéger navigateur, navigation et vie privée - Bloquer publicité et surveillance sur le Web
Accélérer Windows - Accélérer Internet - Décontamination - Installer Malwarebytes - Forums d'entraide

Il ne sera répondu à aucune demande de dépannage posée en MP (Messagerie Privée). Les demandes doivent être publiques et les réponses doivent profiter au public.
Image
Avatar de l’utilisateur
pierre
 
Messages: 29402
Inscription: 20 Mai 2002, 23:01
Localisation: Ici et maintenant


Retourner vers Alertes

Qui est en ligne

Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 25 invités