All Protect customers, Patch 2 has been released for Protect v9.0 and v9.1. The updates include a fix for an upcoming syntax change to CVE-ID. Without this patch you will not be able to update content after the CVE syntax change occurs. For more details on how to download and apply the update for your version of Shavlik Protect please refer to this article: https://community.shavlik.com/docs/DOC-23639.

XML 2.0.0.9910 Last Modified 12/9/2014

Security

– Added MS14-075(Q3009712): Vulnerabilities in Microsoft Exchange Server Could Allow Elevation of Privilege (3009712)

– Added MS14-080(Q3008923): Cumulative Security Update for Internet Explorer (3008923)

– Added MS14-081(Q3017301): Vulnerabilities in Microsoft Word and Microsoft Office Web Apps Could Allow Remote Code Execution (3017301)

– Added MS14-082(Q3017349): Vulnerability in Microsoft Office Could Allow Remote Code Execution (3017349)

– Added MS14-083(Q3017347): Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (3017347)

– Added MS14-084(Q3016711): Vulnerability in VBScript Scripting Engine Could Allow Remote Code Execution (3016711)

– Added MS14-085(Q3013126): Vulnerability in Microsoft Graphics Component Could Allow Information Disclosure (3013126)

– Added APSB14-27(QAF1600235): Security updates available for Adobe Flash Player

– Added APSB14-28(QAR11010): Security updates available for Adobe Reader and Acrobat

– Added CHROME-119(QGC390217195): Chrome 39.0.2171.95

– Added MSAF-034(Q3008925): Microsoft security advisory: Update for vulnerabilities in Adobe Flash Player in Internet Explorer: December 9, 2014

– Added SW12-15155(QSW1215155): Adobe Shockwave 12.1.5.155

Revision

– Updated MS14-066(Q2992611): Bulletin revised to announce the reoffering of the 2992611 update to systems running Windows Vista and Windows Server 2008.