Corsair H170i Elite Capellix XT review
Forspoken: PC performance graphics benchmarks
ASRock Z790 Taichi review
The Callisto Protocol: PC graphics benchmarks
G.Skill TridentZ 5 RGB 6800 MHz CL34 DDR5 review
Be Quiet! Dark Power 13 - 1000W PSU Review
Palit GeForce RTX 4080 GamingPRO OC review
Core i9 13900K DDR5 7200 MHz (+memory scaling) review
Seasonic Prime Titanium TX-1300 (1300W PSU) review
F1 2022: PC graphics performance benchmark review
Microsoft patched 70 vulnerabilities and one zero-day vulnerability in Windows with Patch Tuesday
Microsoft releases its second Patch Tuesday update for Windows 11. A Zero-day vulnerability have been addressed, and 48 vulnerabilities, excluding 22 Edge-related issues, have been closed.
Microsoft's Patch Tuesday for February 2022, includes fixes for one zero-day vulnerability as well as 48 other vulnerabilities. Microsoft has fixed 48 vulnerabilities in today's version (excluding 22 vulnerabilities in Microsoft Edge), none of which are considered significant by the security community.
The number for each type of vulnerability is listed below:
- 16 Elevation of Privilege Vulnerabilities
- 3 Security Feature Bypass Vulnerabilities
- 16 Remote Code Execution Vulnerabilities
- 5 Information Disclosure Vulnerabilities
- 5 Denial of Service Vulnerabilities
- 3 Spoofing Vulnerabilities
- 22 Edge - Chromium Vulnerabilities
| Tag | CVE ID | CVE Title | Severity |
|---|---|---|---|
| Azure Data Explorer | CVE-2022-23256 | Azure Data Explorer Spoofing Vulnerability | Important |
| Kestrel Web Server | CVE-2022-21986 | .NET Denial of Service Vulnerability | Important |
| Microsoft Dynamics | CVE-2022-21957 | Microsoft Dynamics 365 (on-premises) Remote Code Execution Vulnerability | Important |
| Microsoft Dynamics GP | CVE-2022-23272 | Microsoft Dynamics GP Elevation Of Privilege Vulnerability | Important |
| Microsoft Dynamics GP | CVE-2022-23271 | Microsoft Dynamics GP Elevation Of Privilege Vulnerability | Important |
| Microsoft Dynamics GP | CVE-2022-23273 | Microsoft Dynamics GP Elevation Of Privilege Vulnerability | Important |
| Microsoft Dynamics GP | CVE-2022-23274 | Microsoft Dynamics GP Remote Code Execution Vulnerability | Important |
| Microsoft Dynamics GP | CVE-2022-23269 | Microsoft Dynamics GP Spoofing Vulnerability | Important |
| Microsoft Edge (Chromium-based) | CVE-2022-0469 | Chromium: CVE-2022-0469 Use after free in Cast | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2022-0467 | Chromium: CVE-2022-0467 Inappropriate implementation in Pointer Lock | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2022-23261 | Microsoft Edge (Chromium-based) Tampering Vulnerability | Moderate |
| Microsoft Edge (Chromium-based) | CVE-2022-0453 | Chromium: CVE-2022-0453 Use after free in Reader Mode | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2022-23262 | Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability | Important |
| Microsoft Edge (Chromium-based) | CVE-2022-0468 | Chromium: CVE-2022-0468 Use after free in Payments | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2022-0452 | Chromium: CVE-2022-0452 Use after free in Safe Browsing | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2022-23263 | Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability | Important |
| Microsoft Edge (Chromium-based) | CVE-2022-0462 | Chromium: CVE-2022-0462 Inappropriate implementation in Scroll | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2022-0461 | Chromium: CVE-2022-0461 Policy bypass in COOP | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2022-0460 | Chromium: CVE-2022-0460 Use after free in Window Dialog | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2022-0465 | Chromium: CVE-2022-0465 Use after free in Extensions | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2022-0464 | Chromium: CVE-2022-0464 Use after free in Accessibility | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2022-0463 | Chromium: CVE-2022-0463 Use after free in Accessibility | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2022-0459 | Chromium: CVE-2022-0459 Use after free in Screen Capture | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2022-0455 | Chromium: CVE-2022-0455 Inappropriate implementation in Full Screen Mode | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2022-0454 | Chromium: CVE-2022-0454 Heap buffer overflow in ANGLE | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2022-0466 | Chromium: CVE-2022-0466 Inappropriate implementation in Extensions Platform | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2022-0458 | Chromium: CVE-2022-0458 Use after free in Thumbnail Tab Strip | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2022-0457 | Chromium: CVE-2022-0457 Type Confusion in V8 | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2022-0456 | Chromium: CVE-2022-0456 Use after free in Web Search | Unknown |
| Microsoft Edge (Chromium-based) | CVE-2022-0470 | Chromium: CVE-2022-0470 Out of bounds memory access in V8 | Unknown |
| Microsoft Office | CVE-2022-22004 | Microsoft Office ClickToRun Remote Code Execution Vulnerability | Important |
| Microsoft Office | CVE-2022-22003 | Microsoft Office Graphics Remote Code Execution Vulnerability | Important |
| Microsoft Office | CVE-2022-23252 | Microsoft Office Information Disclosure Vulnerability | Important |
| Microsoft Office Excel | CVE-2022-22716 | Microsoft Excel Information Disclosure Vulnerability | Important |
| Microsoft Office Outlook | CVE-2022-23280 | Microsoft Outlook for Mac Security Feature Bypass Vulnerability | Important |
| Microsoft Office SharePoint | CVE-2022-21987 | Microsoft SharePoint Server Spoofing Vulnerability | Important |
| Microsoft Office SharePoint | CVE-2022-21968 | Microsoft SharePoint Server Security Feature BypassVulnerability | Important |
| Microsoft Office SharePoint | CVE-2022-22005 | Microsoft SharePoint Server Remote Code Execution Vulnerability | Important |
| Microsoft Office Visio | CVE-2022-21988 | Microsoft Office Visio Remote Code Execution Vulnerability | Important |
| Microsoft OneDrive | CVE-2022-23255 | Microsoft OneDrive for Android Security Feature Bypass Vulnerability | Important |
| Microsoft Teams | CVE-2022-21965 | Microsoft Teams Denial of Service Vulnerability | Important |
| Microsoft Windows Codecs Library | CVE-2022-21844 | HEVC Video Extensions Remote Code Execution Vulnerability | Important |
| Microsoft Windows Codecs Library | CVE-2022-21927 | HEVC Video Extensions Remote Code Execution Vulnerability | Important |
| Microsoft Windows Codecs Library | CVE-2022-21926 | HEVC Video Extensions Remote Code Execution Vulnerability | Important |
| Microsoft Windows Codecs Library | CVE-2022-22709 | VP9 Video Extensions Remote Code Execution Vulnerability | Important |
| Power BI | CVE-2022-23254 | Microsoft Power BI Elevation of Privilege Vulnerability | Important |
| Roaming Security Rights Management Services | CVE-2022-21974 | Roaming Security Rights Management Services Remote Code Execution Vulnerability | Important |
| Role: DNS Server | CVE-2022-21984 | Windows DNS Server Remote Code Execution Vulnerability | Important |
| Role: Windows Hyper-V | CVE-2022-21995 | Windows Hyper-V Remote Code Execution Vulnerability | Important |
| Role: Windows Hyper-V | CVE-2022-22712 | Windows Hyper-V Denial of Service Vulnerability | Important |
| SQL Server | CVE-2022-23276 | SQL Server for Linux Containers Elevation of Privilege Vulnerability | Important |
| Visual Studio Code | CVE-2022-21991 | Visual Studio Code Remote Development Extension Remote Code Execution Vulnerability | Important |
| Windows Common Log File System Driver | CVE-2022-22000 | Windows Common Log File System Driver Elevation of Privilege Vulnerability | Important |
| Windows Common Log File System Driver | CVE-2022-22710 | Windows Common Log File System Driver Denial of Service Vulnerability | Important |
| Windows Common Log File System Driver | CVE-2022-21981 | Windows Common Log File System Driver Elevation of Privilege Vulnerability | Important |
| Windows Common Log File System Driver | CVE-2022-21998 | Windows Common Log File System Driver Information Disclosure Vulnerability | Important |
| Windows DWM Core Library | CVE-2022-21994 | Windows DWM Core Library Elevation of Privilege Vulnerability | Important |
| Windows Kernel | CVE-2022-21989 | Windows Kernel Elevation of Privilege Vulnerability | Important |
| Windows Kernel | CVE-2022-21992 | Windows Mobile Device Management Remote Code Execution Vulnerability | Important |
| Windows Kernel-Mode Drivers | CVE-2022-21993 | Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability | Important |
| Windows Named Pipe File System | CVE-2022-22715 | Named Pipe File System Elevation of Privilege Vulnerability | Important |
| Windows Print Spooler Components | CVE-2022-22718 | Windows Print Spooler Elevation of Privilege Vulnerability | Important |
| Windows Print Spooler Components | CVE-2022-22717 | Windows Print Spooler Elevation of Privilege Vulnerability | Important |
| Windows Print Spooler Components | CVE-2022-21999 | Windows Print Spooler Elevation of Privilege Vulnerability | Important |
| Windows Print Spooler Components | CVE-2022-21997 | Windows Print Spooler Elevation of Privilege Vulnerability | Important |
| Windows Remote Access Connection Manager | CVE-2022-21985 | Windows Remote Access Connection Manager Information Disclosure Vulnerability | Important |
| Windows Remote Access Connection Manager | CVE-2022-22001 | Windows Remote Access Connection Manager Elevation of Privilege Vulnerability | Important |
| Windows Remote Procedure Call Runtime | CVE-2022-21971 | Windows Runtime Remote Code Execution Vulnerability | Important |
| Windows User Account Profile | CVE-2022-22002 | Windows User Account Profile Picture Denial of Service Vulnerability | Important |
| Windows Win32K | CVE-2022-21996 | Win32k Elevation of Privilege Vulnerability | Important |
Asobo Studio Will Add DLSS to Microsoft Flight Simulator - 01/31/2022 09:54 AM
According to developer Asobo Studio, the PC edition of Microsoft Flight Simulator will have support for Nvidia DLSS later this year. ...
Disputed Activision CEO Bobby Kotick might earn $375 million as a result of the Microsoft deal - 01/20/2022 10:25 AM
Bobby Kotick, CEO of Activision Blizzard, quite possibly receives a $375 million bonus if the company's sale to Microsoft is completed. The game publisher is best known for the Call of Duty series, b...
Microsoft to acquire Activision Blizzard for a whopping $68.7 billion all-cash deal - 01/18/2022 03:44 PM
Microsoft said Tuesday that it would acquire Activision Blizzard for $68.7 billion. Activision, which is best known for famous games like "Call of Duty" and "Tony Hawk's Pro Skater...
Microsoft acknowledges slow NVMe SSD write speeds in Windows 11 - working on a fix. - 12/11/2021 12:33 PM
Windows 11 has had a bug for a long time that slows down the write speed of hard drives and SSDs. Microsoft is releasing a fix for the problem under patch KB5007262. ...
Microsoft adds H265 and H264 video encoders to the DirectX12 API for graphics cards. - 12/09/2021 02:27 PM
Microsoft has announced new DirectX12 API compatibility for Windows which will offer a new way for apps to efficiently encode video using the GPU....
Chrysalis
Senior Member
Posts: 292
Joined: 2001-08-15
Senior Member
Posts: 292
Joined: 2001-08-15
#5991689 Posted on: 02/10/2022 02:11 PM
What happened to 11 been a security miracle?
What happened to 11 been a security miracle?
GSDragoon
Senior Member
Posts: 395
Joined: 2006-11-29
Senior Member
Posts: 395
Joined: 2006-11-29
#5991742 Posted on: 02/10/2022 04:08 PM
Sush. Just do what we say and enable TPM.
What happened to 11 been a security miracle?
Sush. Just do what we say and enable TPM.
EspHack
Senior Member
Posts: 2762
Joined: 2010-01-03
Senior Member
Posts: 2762
Joined: 2010-01-03
#5991838 Posted on: 02/10/2022 11:15 PM
they are yet to patch this one, almost 10 years now
9607
they are yet to patch this one, almost 10 years now
9607
Alessio1989
Senior Member
Posts: 2557
Joined: 2015-06-11
Senior Member
Posts: 2557
Joined: 2015-06-11
#5991887 Posted on: 02/11/2022 02:42 AM
lmao tpm fixes nothing. it's fine if you wanna encrypt your drivers, but not a lot more.
lmao tpm fixes nothing. it's fine if you wanna encrypt your drivers, but not a lot more.
Click here to post a comment for this news story on the message forum.
Senior Member
Posts: 14984
Joined: 2018-03-21
the codec issues were patched in updates pushed through windows store within the last week.