For December 2019 Patch Tuesday, Microsoft and Adobe have released the final scheduled security updates for this year.
Microsoft’s fixes
Microsoft’s security releases are for Windows, Internet Explorer, SQL Server, Visual Studio, Hyper-V Server, Office and Office Services and Web App.
All in all, the company fixed just 36 CVE-numbered flaws. Of these, seven are critical, 28 important and one of moderate severity.
Only one (CVE-2019-1458) is being actively exploited by attackers. Since it’s been flagged by Kaspersky, Trend Micro’s Zero Day Initiative’s Dustin Childs posits that it might be used in conjunction with a recently revealed Chrome use-after-free bug to achieve a sandbox escape.
Support the originator by clicking the read the rest link below.
