Windows 10: Patching of CVE-2020-0601

Discus and support Patching of CVE-2020-0601 in Windows 10 Installation and Upgrade to solve the problem; I have a computer that does not list the patch for CVE-2020-060, KB4534293, OS build17134.1246. However, KB4554349 is listed on the same PC, which is... Discussion in 'Windows 10 Installation and Upgrade' started by DaveCiP, May 30, 2020.

  1. DAVECIP
    DaveCiP Win User

    Patching of CVE-2020-0601


    I have a computer that does not list the patch for CVE-2020-060, KB4534293, OS build17134.1246. However, KB4554349 is listed on the same PC, which is OS build 17134.1401. Was the patch for CVE-2020-0601 included in OS build 17134.1401?

    :)
     
    DaveCiP, May 30, 2020
    #1
  2. DT-ECS
    DT-ECS Win User

    CVE-2020-0601 Patch Fails

    With the recent release of patches for the CVE-2020-0601 vulnerability, I have been working to address patching for Windows 10, Server 2016, and Server 2019 machines that my office manages. Our RMM tool has been able to apply patches to many machines,
    however I have also configured targeted scripts to roll out the patches faster, to cover more ground. In doing so, I have found that there seem to be quite a number of machines that are not successfully patching. This includes various builds of Windows 10,
    of which each has it's own patch. Is anyone else having issues getting Windows 10 machines patched for CVE-2020-0601 on a mass scale?
     
    DT-ECS, May 30, 2020
    #2
  3. NICK ADSL UK
    NICK ADSL UK Win User
    Microsoft January 2020 Security Updates

    Release Notes

    January 2020 Security Updates

    Release Date: January 14, 2020

    The January security release consists of security updates for the following software:

    • Microsoft Windows
    • Internet Explorer
    • Microsoft Office and Microsoft Office Services and Web Apps
    • ASP.NET Core
    • .NET Core
    • .NET Framework
    • OneDrive for Android
    • Microsoft Dynamics
    Please note the following information regarding the security updates:

    • For information regarding enabling Windows 10, version 1909 features, please see

      Microsoft Update Catalog.
    • For information on lifecycle and support dates for Windows 10 operating systems, please see

      Windows Lifecycle Facts Sheet      .
    • A list of the latest servicing stack updates for each operating system can be found in

      ADV990001      . This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
    • Starting in May 2019, Internet Explorer 11 is available on Windows Server 2012. This configuration is present only in the IE Cumulative package.
    • Updates for Windows RT 8.1 and Microsoft Office RT software are only available via

      Windows Update      .
    • In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
    • Note: Support for Windows 7, Windows Server 2008 R2, and Windows Server 2008 ends January 14, 2020. For more information please see

      Lifecycle FAQ-Extended Security Updates      .
    The following CVEs have FAQs with additional information and may include * further steps to take after installing the updates. Please note that this is not a complete list of CVEs for this release.

    Known Issues

    The f****ssues with the security updates. For a complete list of security update KBs, please see

    2****ssues, please see     Windows message center (links to currently-supported versions of Windows are in the left pane).

    [table][tr][td]4534271[/td][td]Windows 10, version 1607, Windows Server 2016[/td][/tr][tr][td]4534273[/td][td]Windows 1****809[/td][/tr][tr][td]4534276[/td][td]Windows 10, version 1709[/td][/tr][tr][td]4534283[/td][td]Windows Server 2012 (Monthly Rollup)[/td][/tr][tr][td]4534288[/td][td]Windows Server 2012 (Security-only update)[/td][/tr][tr][td]4534293[/td][td]Windows 10, version 1803, Windows Server version 1803[/td][/tr][tr][td]4534297[/td][td]Windows 8.1, Windows Server 2012 R2 (Monthly Rollup)[/td][/tr][tr][td]4534306[/td][td]Windows 10[/td][/tr][tr][td]4534309[/td][td]Windows 8.1, Windows Server 2012 R2 (Security-only update[/td][/tr][/table]
     
    NICK ADSL UK, May 30, 2020
    #3
  4. 1PW
    1PW Win User

    Patching of CVE-2020-0601

    "NSA discovers security flaw in Microsoft Windows operating system"

    Windows CryptoAPI Spoofing Vulnerability

    The reported Common Vulnerability and Exposures (CVE) being referred to in above posts is:

    CVE -
    CVE-2020-0601

    NVD - CVE-2020-0601

    The above is the one that grabbed the media's attention. Yet it is only ranked as an "important" fix.

    Yet to, other (8) "Black Tuesday" fixes this month have earned a "Critical" ranking but received far less publicity.

    Pity.

    Reference: Microsoft Patch Tuesday for January 2020
     
    1PW, May 30, 2020
    #4
Thema:

Patching of CVE-2020-0601

Loading...

  1. Patching of CVE-2020-0601 - Similar Threads - Patching CVE 2020

  2. Netlogon Zerologon CVE-2020-1472 patch for Windows Server 2016/2019

    in Windows 10 Gaming
    Netlogon Zerologon CVE-2020-1472 patch for Windows Server 2016/2019: Hi,I was looking for a patch to apply to some Windows Servers and found this link: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2020-1472When clicking the download link for the KB it redirects to another page but there is no KBs to download nor a reference to...

  3. Netlogon Zerologon CVE-2020-1472 patch for Windows Server 2016/2019

    in Windows 10 Software and Apps
    Netlogon Zerologon CVE-2020-1472 patch for Windows Server 2016/2019: Hi,I was looking for a patch to apply to some Windows Servers and found this link: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2020-1472When clicking the download link for the KB it redirects to another page but there is no KBs to download nor a reference to...

  4. Netlogon Zerologon CVE-2020-1472 patch for Windows Server 2016/2019

    in Windows 10 Installation and Upgrade
    Netlogon Zerologon CVE-2020-1472 patch for Windows Server 2016/2019: Hi,I was looking for a patch to apply to some Windows Servers and found this link: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2020-1472When clicking the download link for the KB it redirects to another page but there is no KBs to download nor a reference to...

  5. 43890 and 43907 - Looking for a security update to patch the CVE

    in Windows 10 Gaming
    43890 and 43907 - Looking for a security update to patch the CVE: 43890 and 43907 - Looking for a security update to patch the CVE https://answers.microsoft.com/en-us/windows/forum/all/43890-and-43907-looking-for-a-security-update-to/551e8cf1-9a73-4ce7-b296-58b4f3aea5b7

  6. Microsoft Windows Defender Elevation of Privilege Vulnerability CVE-2020-1163 & CVE-2020-1170

    in Windows 10 Customization
    Microsoft Windows Defender Elevation of Privilege Vulnerability CVE-2020-1163 & CVE-2020-1170: how do i update Microsoft Windows Defender on windows 2016 core server? Path : C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\ Installed version : 4.18.1911.3 Fixed version : 4.18.2005.1...

  7. Manually Download CVE-2020-1425 and CVE-2020-1457 w/o MS Store

    in Windows 10 Updates and Activation
    Manually Download CVE-2020-1425 and CVE-2020-1457 w/o MS Store: I don't want to open up the MS store app and update all of the apps there. I understand that the critical out of band updates will be downloaded in the background. https://support.microsoft.com/en-us/...apps-and-games Where can I download just the two critical out of band...

  8. CVE-2020-1425 and CVE-2020-1457

    in Windows 10 News
    CVE-2020-1425 and CVE-2020-1457: Windows Codec Library vulnerabilities. Fixes auto-updated via Microsoft Store, not WU. https://portal.msrc.microsoft.com/en.../CVE-2020-1425 and https://portal.msrc.microsoft.com/en.../CVE-2020-1457 159755

  9. CVE-2020-0601 Patch Fails

    in Windows 10 Installation and Upgrade
    CVE-2020-0601 Patch Fails: With the recent release of patches for the CVE-2020-0601 vulnerability, I have been working to address patching for Windows 10, Server 2016, and Server 2019 machines that my office manages. Our RMM tool has been able to apply patches to many machines, however I have also...

  10. CVE-2020-0601 Windows CryptoAPI Spoofing Vulnerability Security Vulnerability Published:...

    in Windows 10 Installation and Upgrade
    CVE-2020-0601 Windows CryptoAPI Spoofing Vulnerability Security Vulnerability Published:...: Having Windows 10 for some time now, I'm sure along with others, Microsoft continues seemingly monthly, at minimum to post update WARNINGS. WHY is such a company continually putting out updates for their customers with Windows 10 when they themselves don't take the proper...