Microsoft Updates for November 2022


This month, Microsoft released 64 new patches addressing CVEs in Microsoft Windows and Windows Components.

This is in addition to five other CVEs from third parties being integrated into Microsoft products bringing the total number of fixes to 69.

Of the 64 new patches released today:
11 are rated Critical
53 are rated Important

There is a full list of CVEs released by Microsoft for November 2022 included in the detailed blog here:
https://www.zerodayinitiative.com/blog/2022/11/8/the-november-2022-security-update-review

The list at Microsoft is here: https://msrc.microsoft.com/update-guide

 

Microsoft Security Updates for October 2022

 

Microsoft has released 85 new patches for October.
 15 are rated Critical
 69 are rated Important
  1 is rated Moderate in severity

There is a full list of CVEs released by Microsoft for October 2022 included in the blog here:
https://www.zerodayinitiative.com/blog/2022/10/11/the-october-2022-security-update-review

The list at Microsoft is here: https://msrc.microsoft.com/update-guide

Microsoft Security Updates July 2022

Microsoft has released 84 new patches addressing CVEs in Microsoft Windows and Windows Components; Windows Azure components; Microsoft Defender for Endpoint; Microsoft Edge (Chromium-based); Office and Office Components; Windows BitLocker; Windows Hyper-V; Skype for Business and Microsoft Lync; Open-Source Software; and Xbox. 

Of the 84 new CVEs released today:
4 are rated Critical
80 are rated Important in severity

For more information and review please see:
https://msrc.microsoft.com/update-guide/

https://www.zerodayinitiative.com/blog/2022/7/12/the-july-2022-security-update-review

Microsoft Updates, June 2022

Microsoft June 2022 security updates have been released and consist of 55 CVEs. 

Severity:
3 critical
51 important
1 moderate 

* Internet Explorer 11 desktop application will be retired and will no longer receive support as of June 15, 2022. See steps at Microsoft Support to enable IE Mod on your Windows 10 or Windows 11 device.
https://support.microsoft.com/en-us/office/internet-explorer-mode-in-microsoft-edge-6604162f-e38a-48b2-acd2-682dbac6f0de

* Windows 10 Versions 1909 and 20H2 have reached the end of service and will no longer receive updates. The most current version of Windows 10 is 21H2.

Additional Reading: Dustin Childs review and analysis in Zero Day Initiative — The June 2022 Security Update Review.
https://www.zerodayinitiative.com/blog/2022/6/14/the-june-2022-security-update-review

Microsoft Security Updates, May 2022

The Microsoft May 2022 security updates have been released and consist of 74 CVEs. 

 7 are rated critical
 65 rated important 
 1 low in severity
Currently one is listed as publicly known and under active exploit. Two additional CVE’s are publicly known.

More information:

https://msrc.microsoft.com/update-guide/releaseNote/2022-May
https://www.zerodayinitiative.com/blog/2022/5/10/the-may-2022-security-update-review

Microsoft Security Updates, March 2022

The Microsoft March 2022 security updates have been released and consist of 71 CVEs

3 are rated Important
68 Moderate in severity

Currently, three are listed as publicly known but none are listed as under active exploit. Please refer to this page for more information:
https://msrc.microsoft.com/update-guide/releaseNote/2022-Mar
For an analysis/review see: https://www.zerodayinitiative.com/blog/2022/3/8/the-march-2022-security-update-review

 

Review: Lenovo Yoga 7i

The other day while I was scrolling through Lenovo Community, the doorbell rang. When I opened the door there stood a UPS delivery person. He handed me a Lenovo box and said, “I have a surprise for you.” He certainly did.  The first thing that came into my mind was to say, “That was quick!” He looked puzzled, but it was as if a Yoga jumped off the website and into the hands of the UPS driver standing in front of me. Obviously, I was not expecting it; however I am always excited to review products that are sent to Lenovo Insiders and Lenovo Advocates.  This device was sent as part of the Lenovo Insiders program and did not provide additional compensation. All opinions are my own.

Trying to be neat in opening a box that makes us feel like a kid on Christmas Morning is always a challenge.  Fortunately, I managed to open and unpack this one pretty well so that I could get a photo of it.

My first impression was that this unit, introduced by Lenovo in October 2021, was designed for ease of mobility and with style in mind. Its Slate Gray metal case is light, sleek, and comfortable to handle.  Considering that it is a Yoga it features a 360-degree hinge allowing laptop/tent/tablet modes.

If you are interested in ordering a Yoga 7i, depending on how you “build” your model. Your specs may be different from this review unit. These specs are what I found on the unit that I received:

* Processor 11th Generation Intel® Core™ i7-1165G7 Processor (2.80 GHz, up to 4.70 GHz with Turbo        Boost, 4 Cores, 8 Threads, 12 MB Cache)

* Operating System   Windows 11 Home 64

* Graphics Integrated Intel® Iris® Xe Graphics

* Memory 16 GB DDR4 3200MHz (Soldered)

* Storage 1 TB PCIe SSD

*  Display 15.6″ FHD (1920 x 1080) IPS, glossy, touchscreen, 300 nits

*  Camera 720p HD

*  Security Fingerprint Reader  and Webcam Shutter

*  WLAN 802.11AX (2 x 2) & Bluetooth® 5.0 

*  Keyboard Backlit – US English

Notes:  *According to Lenovo the battery will produce 15 hrs. of power. Of course, that will depend on your activities. * There is a pen available.  Is not included and must be ordered separately.

Ports and Slots

Usage Impressions

Now that I have installed my favorite everyday apps, I can say that this is a very comfortable device to use. However, I prefer to have at least one USB port on the left where I can use a hub if needed, because occasionally I use an external mouse along with thumb drives for graphics work. On a Yoga, I miss the ThinkPad Trackpoint that I am used to but I try to be flexible for testing purposes. Having the number keypad on the right is a different Yoga experience for me as well. One thing that I really enjoy as an artist is the glossy display and vibrant colors.  Whenever I receive a new computer, one of the first things I do as an administrator is to configure a few settings using Group Policy.  The Home version of Windows 11 does not offer that.  For that reason, at some point I will be upgrading to Windows Pro for extra security and flexibility, but for now the Windows 11 Home version can suffice.

In conclusion I feel that the Yoga 7i is a good machine for anyone on the go. The audio is clear which is evidence of good speakers and the display’s colors are outstanding. I love the glossy screen with its thin bezel. The color, size, and thinness produce a feel of premium quality. The Yoga 7i has run all my applications flawlessly.  From my experience with this unit, I feel that anyone who purchases the 7i will not be disappointed.

Read more: https://www.lenovo.com/us/en/p/laptops/yoga/yoga-2-in-1-series/yoga-7-14itl5/88ygc701456

Bugbatter
Lenovo Advocate/Lenovo Insider

 

 

 

 

Microsoft Security Updates for February 2022

The Microsoft February 2022 security updates have been released and consist of 51 CVEs. 

 50 are rated Important
 1 Moderate in severity

There are details here:
https://msrc.microsoft.com/update-guide/releaseNote/2022-Feb

I find it easier to review them as listed and reviewed at this blog by Dustin Childs:
https://www.zerodayinitiative.com/blog/2022/2/8/the-february-2022-security-update-review

Let Windows update your device automatically, or check via Settings> Windows Update

 

Microsoft Updates for January 2022

The Microsoft January 2022 security updates have been released and consist of 96 CVEs for many products.
Products and KB’s are listed at the link below. Scroll down for individual products’ KB’s.
 https://msrc.microsoft.com/update-guide/releaseNote/2022-Jan 

Additional Information/Review and Details on some of the CVE’s:
https://www.zerodayinitiative.com/blog/2022/1/11/the-january-2022-security-update-review

Gen 1 Helix – Still Alive and Well

The ThinkPad Helix is 9 years old. I received the Helix from the LenovoINsider’s Program in 2013. When Lenovo sent me a newer product to review, Helix was donated to another user who did not own a computer. I have received no compensation for my reviews, other than the enjoyment of taking ThinkPads through their paces and recording my experiences with the hardware and versions of Windows over the years.

One of the wonderful things about ThinkPads is that we can pass them down to multiple users. Today Helix is servicing its third owner who is using it as a component of his ham radio studio. Other than my upgrading it from Windows 8 to the most recent version of Windows 10 there have been no other changes, except for an occasional new app or two in order to keep up with security and Windows over the years.

The nine-year-old Helix won’t qualify for a Windows 11 upgrade. However, when Windows 10 reaches end of support in 2025, Helix can proudly look for some offline projects. I wouldn’t say that ThinkPads never die, but they certainly hang around long enough to handle whatever jobs that they are given. 

Bugbatter

Lenovo INsider / Lenovo Advocate / Windows Insider MVP