Windows 10: Microsoft guidance for applying Secure Boot DBX update ADV 200011 does not work.

Microsoft guidance for applying Secure Boot DBX update ADV 200011 does not work.


Source: Microsoft guidance for applying Secure Boot DBX update


The description under step 3 seems to be incorrect:


Set-SecureBootUefi -Name dbx -ContentFilePath .\content.bin -SignedFilePath .\signature.p7 -Time 2010-03-06T19:17:21Z -AppendWrite'


It also does not describe how to determine again whether the problem has been fixed. When I re-check the changes using the following CmdLet, I always get a "true" result.

[System.Text.Encoding]::ASCII.GetStringGet-SecureBootUEFI db.bytes -match 'Microsoft Corporation UEFI CA 2011'

Is the CommandLet in step 3 only an example? Which time stamp -Time do I have to use?


Steps 1-2 worked correctly.

Best regards

:)

 

Microsoft May 2020 Security Updates

Release Notes
May 2020 Security Updates
Release Date: May 12, 2020




The May 2020 security release consists of security updates for the following software:

• Microsoft Windows
• Microsoft Edge (EdgeHTML-based)
• Microsoft Edge (Chromium-based)
• ChakraCore
• Internet Explorer
• Microsoft Office and Microsoft Office Services and Web Apps
• Windows Defender
• Visual Studio
• Microsoft Dynamics
• .NET Framework
• .NET Core
• Power BI

Please note the following information regarding the security updates:

• For information regarding enabling Windows 10, version 1909 features, please see Windows 10, version 1909 delivery options. Note that Windows 10, versions 1903 and 1909 share a common core operating system with an identical set of system files. They will also share the same security update KBs.
• Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
• For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
• A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
• Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
• In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
• Customers running Windows 7, Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.

The following CVEs have FAQs with additional information and may include * further steps to take after installing the updates. Please note that this is not a complete list of CVEs for this release.

• CVE-2020-0901
• CVE-2020-0963
• CVE-2020-1072
• CVE-2020-1075
• CVE-2020-1103
• CVE-2020-1116
• CVE-2020-1141
• CVE-2020-1145
• CVE-2020-1173
• CVE-2020-1179

Known Issues


The following KBs contain information about known issues with the security updates. For a complete list of security update KBs, please see 20200512. For more information about Windows Known Issues, please see Windows message center (links to currently-supported versions of Windows are in the left pane).


KB Article Applies To
4551853 Windows 10 Version 1809, Windows Server 2019
4556813 Windows 10, version 1607, Windows Server 2016
4556836 Windows 7, Windows Server 2008 R2 (Monthly Rollup)
4556843 Windows 7, Windows Server 2008 R2 (Security-only update)
4556854 Windows Server 2008 Service Pack 2 (Security-only update)
4556860 Windows Server 2008 Service Pack 2 (Monthly Rollup)


https://portal.msrc.microsoft.com/en...etail/2020-May

 

Microsoft Security Bulletin(s) for December 2018

Security Update Guide > Release Notes
Release Notes
December 2018 Security Updates
Release Date: December 11, 2018




The December security release consists of security updates for the following software:

• Adobe Flash Player
• Internet Explorer
• Microsoft Edge
• Microsoft Windows
• Microsoft Office and Microsoft Office Services and Web Apps
• ChakraCore
• .NET Framework
• Microsoft Dynamics NAV
• Microsoft Exchange Server
• Microsoft Visual Studio
• Windows Azure Pack (WAP)

Please note the following information regarding the security updates:

• A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
• Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
• Starting in March 2017, a delta package will be available on the Microsoft Update Catalog for Windows 10 version 1607 and newer. This delta package contains just the delta changes between the previous month and the current release.
• Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
• For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
• In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.

The following CVEs have FAQs with additional information and may include * further steps to take after installing the updates.

• CVE-2018-8477
• CVE-2018-8514
• CVE-2018-8580
• CVE-2018-8595
• CVE-2018-8596
• CVE-2018-8598
• CVE-2018-8616
• CVE-2018-8621
• CVE-2018-8622
• CVE-2018-8627
• CVE-2018-8637
• CVE-2018-8638

Known Issues

• 4471321
• 4471327
• 4471329
• 4471324
• 4471318

https://portal.msrc.microsoft.com/en...0-000d3a33a34d

 

Microsoft March 2020 Security Updates

Release Notes
March 2020 Security Updates
Release Date: March 10, 2020




The March 2020 security release consists of security updates for the following software:

• Microsoft Windows
• Microsoft Edge (EdgeHTML-based)
• Microsoft Edge (Chromium-based)
• ChakraCore
• Internet Explorer
• Microsoft Exchange Server
• Microsoft Office and Microsoft Office Services and Web Apps
• Azure DevOps
• Windows Defender
• Visual Studio
• Open Source Software
• Azure
• Microsoft Dynamics

Please note the following information regarding the security updates:

• A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
• Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
• Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
• For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.
• In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
• Customers running Windows 7, Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.

The following CVEs have additional information and may include * further steps to take after installing the updates. Please note that this is not a complete list of CVEs for this release.

• CVE-2020-0765
• CVE-2020-0774
• CVE-2020-0775
• CVE-2020-0795
• CVE-2020-0813
• CVE-2020-0820
• CVE-2020-0850
• CVE-2020-0851
• CVE-2020-0852
• CVE-2020-0853
• CVE-2020-0855
• CVE-2020-0859
• CVE-2020-0861
• CVE-2020-0863
• CVE-2020-0871
• CVE-2020-0874
• CVE-2020-0876
• CVE-2020-0879
• CVE-2020-0880
• CVE-2020-0882
• CVE-2020-0885
• CVE-2020-0891
• CVE-2020-0892
• CVE-2020-0893
• CVE-2020-0894
• CVE-2020-0902 *

Known Issues


The following KBs contain information about known issues with the security updates. For a complete list of security update KBs, please see 20200310


KB Article Applies To
4538032 Visual Studio
4538461 Windows 10 Version 1809, Windows Server 2019
4540123 Microsoft Exchange Server
4540670 Windows 10, version 1607, Windows Server 2016
4540671 Internet Explorer
4540673 Windows 10, version 1809, Windows Server version 1809, Windows 10, version 1809, Windows Server version 1809
4540688 Windows 7, Windows Server 2008 R2 (Monthly Rollup)
4540694 Windows Server 2012 (Security-only update)
4541500 Windows 7, Windows Server 2008 R2 (Security-only update)
4541504 Windows Server 2008 (Security-only update)
4541505 Windows 8.1, Windows Server 2012 R2 (Security-only update)
4541506 Windows Server 2008 Service Pack 2 (Monthly Rollup)
4541509 Windows 8.1, Windows Server 2012 R2 (Monthly Rollup)
4541510 Windows Server 2012 (Monthly Rollup)


https://portal.msrc.microsoft.com/en...etail/2020-Mar