Microsoft releases KB 3213643, 2956078, 4011078, 4011052 to fix June Outlook security bugs

Six weeks after rolling out four botched security patches for Outlook, Microsoft claims it’s fixed the bugs — and tackled three new exposures to boot

Microsoft releases patches to fix June Outlook security bugs
Derek Walter

A week ago, I lamented the lack of a fix for the bad June Office security patches. On June 13, those of you with Automatic Update turned on were treated to seven different, documented bugs that persisted until today.

I expected to see these patches on Tuesday, in normal cadence. For reasons that are only known to Microsoft, they waited until Thursday to release the files.

The patches are rolling out now through Windows Update. It’s still much too early to tell if they’re going to cause more problems than they solve.

Here are the patches to look for:

In addition to fixing the well-documented June bugs, these four patches are all supposed to plug these security holes:

CVE-2017-8571: Microsoft Office Outlook Security Feature Bypass Vulnerability

CVE-2017-8572: Microsoft Office Outlook Information Disclosure Vulnerability

CVE-2017-8663: Microsoft Office Outlook Memory Corruption Vulnerability

Hey, it only took six and a half weeks.

Have a problem? Drop by the AskWoody Lounge.

Computerworld's IT Salary Survey 2017 results
Shop Tech Products at Amazon