MS Sec Notification mailing list archives

The following CVE has undergone a major revision increment.

From: "Microsoft" <securitynotifications () e-mail microsoft com>
Date: Tue, 26 Sep 2017 16:24:54 -0600
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

********************************************************************
Title: Microsoft Security Update Releases
Issued: September 26, 2017
********************************************************************

Summary
=======

The following CVE has undergone a major revision increment.

* CVE-2017-8628


CVE Revision Information:
=====================

CVE-2017-8628

 - Title: CVE-2017-8628 | Microsoft Bluetooth Driver Spoofing 
   Vulnerability
 - https://portal.msrc.microsoft.com/en-us/security-guidance
 - Reason for Revision: Information updated to correct package KB 
   numbers for the Security Updates for affected editions of Windows 7
   and Windows 8.1. Microsoft released security updates to address 
   CVE-2017-8628 on July 11, 2017, and because it is one of a group of
   vulnerabilities collectively known as âBlueBorneâ affecting 
   software from multiple vendors, Microsoft published the CVE on 
   September 12, 2017 as part of an industry-wide coordinated 
   disclosure to remediate the vulnerability. Customers running 
   Microsoft Windows need only to install the Windows updates that are
   offered to be protected from this vulnerability. Customers running 
   Windows 7 or Windows 8.1 who have not installed the September 
   Monthly Rollup should install either the July Security Update or 
   the September Monthly Rollup to be protected from this vulnerability. 
   Customers running other affected versions of Windows who have 
   already successfully installed the September Security Updates do 
   not need to take any further action.
 - Originally posted: September 12, 2017  
 - Updated: September 26, 2017 
 - CVE Severity Rating: Important
 - Version: 2.0


Other Information
=================

Recognize and avoid fraudulent email to Microsoft customers:
=============================================================
If you receive an email message that claims to be distributing 
a Microsoft security update, it is a hoax that may contain 
malware or pointers to malicious websites. Microsoft does 
not distribute security updates via email. 

The Microsoft Security Response Center (MSRC) uses PGP to digitally 
sign all security notifications. However, PGP is not required for 
reading security notifications, reading security bulletins, or 
installing security updates. You can obtain the MSRC public PGP key
at <https://technet.microsoft.com/security/dn753714>.

********************************************************************
THE INFORMATION PROVIDED IN THIS MICROSOFT COMMUNICATION IS
PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT
DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING
THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
PURPOSE.
IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE
LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT,
INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL
DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN
ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY
FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING
LIMITATION MAY NOT APPLY.
********************************************************************

Microsoft respects your privacy. Please read our online Privacy
Statement at <http://go.microsoft.com/fwlink/?LinkId=81184>.

If you would prefer not to receive future technical security
notification alerts by email from Microsoft and its family of
companies please visit the following website to unsubscribe:
<https://profile.microsoft.com/RegSysProfileCenter/subscriptionwizar
d.aspx?wizid=5a2a311b-5189-4c9b-9f1a-d5e913a26c2e&%3blcid=1033>.

These settings will not affect any newsletters youâve requested or
any mandatory service communications that are considered part of
certain Microsoft services.

For legal Information, see:
<http://www.microsoft.com/info/legalinfo/default.mspx>.

This newsletter was sent by:
Microsoft Corporation
1 Microsoft Way
Redmond, Washington, USA
98052

-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 10.2.0 (Build 1950)
Charset: utf-8
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=ciLy
-----END PGP SIGNATURE-----
Current thread:

The following CVE has undergone a major revision increment. Microsoft (Aug 14)
- <Possible follow-ups>
- The following CVE has undergone a major revision increment. Microsoft (Aug 14)
- The following CVE has undergone a major revision increment. Microsoft (Sep 26)