All Protect customers, Patch 2 has been released for Protect v9.0 and v9.1. The updates include a fix for an upcoming syntax change to CVE-ID. Without this patch you will not be able to update content after the CVE syntax change occurs. For more details on how to download and apply the update for your version of Shavlik Protect please refer to this article: https://community.shavlik.com/docs/DOC-23639.

XML 2.0.1.406 Last Modified 1/13/2015

Security

– Added MS15-001(Q3023266): Vulnerability in Windows Application Compatibility Cache Could Allow Elevation of Privilege (3023266)

– Added MS15-002(Q3020393): Vulnerability in Windows Telnet Service Could Allow Remote Code Execution (3020393)

– Added MS15-003(Q3021674): Vulnerability in Windows User Profile Service Could Allow Elevation of Privilege (3021674)

– Added MS15-004(Q3023299): Vulnerability in Windows Components Could Allow Elevation of Privilege (3025421)

– Added MS15-005(Q3022777): Vulnerability in Network Location Awareness Service Could Allow Security Feature Bypass (3022777)

– Added MS15-006(Q3004365): Vulnerability in Windows Error Reporting Could Allow Security Feature Bypass (3004365)

– Added MS15-007(Q3014029): Vulnerability in Network Policy Server RADIUS Implementation Could Cause Denial of Service (3014029)

– Added MS15-008(Q3019215): Vulnerability in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (3019215)

– Added APSB15-01(QAF1600257): Security updates available for Adobe Flash Player

– Added CHROME-120(QGC390217199): Chrome 39.0.2171.99

– Added FF15-001(QFF35005486): Firefox 35.0

– Added MSAF-035(Q3024663): Microsoft security advisory: Update for vulnerabilities in Adobe Flash Player in Internet Explorer: January 13, 2015

– Added SW12-16156(QSW1216156): Adobe Shockwave 12.1.6.156

– Added TB15-3140(QTB153140): Thunderbird 31.4.0

Revision

– Updated MS14-080(Q3029449): Added KB3029449 for Windows 8 and Windows Server 2012