Security Update Validation Program (SUVP) に関するよくあるお問い合わせ
SUVP に参加することで、動作検証や互換性テストを目的に、公開される約 3 週間前にセキュリティ更新プログラムを入手して自社環境にてテストすることができます。本記事では、SUVP をより深く理解していただくために、よくあるお問い合わせをご紹介します。
Month: July 2021
Introducing Bounty Awards for Teams Mobile Applications Security Research
We are pleased to announce the addition of Microsoft Teams mobile applications to the Microsoft Applications Bounty Program. Through the expanded program we welcome researchers from across the globe to seek out and disclose any high impact security vulnerabilities they may find in Teams mobile applications to help secure customers. Rewards up to $30,000 USD …
Introducing Bounty Awards for Teams Mobile Applications Security Research Read More »
Announcing the Top MSRC 2021 Q2 Security Researchers – Congratulations!
We’re excited to announce the top contributing researchers for the 2021 Second Quarter (Q2)! Congratulations to all the researchers recognized in this quarter’s leaderboard and thank you to everyone who continues to help secure our customers and the ecosystem. The top three researchers of the 2021 Q2 Security Researcher Leaderboard are: Yuki Chen (765 points), …
Announcing the Top MSRC 2021 Q2 Security Researchers – Congratulations! Read More »
Windows Print Spooler の脆弱性情報 (CVE-2021-34527) に関するお客様向けガイダンス
2021 年 7 月 7 日 (日本時間) に、マイクロソフトは Windows Print Spooler の脆弱性情報 CVE-2021-34527 を公開し、7 月 7 日と 8 日 (日本時間) に、この脆弱性を解決するために、すべてのサポート対象のバージョンの Windows 向けにセキュリティ更新プログラムをリリースしました。できるだけ早くセキュリティ更新プログラムを適用することをお勧めします。
Clarified Guidance for CVE-2021-34527 Windows Print Spooler Vulnerability
On Tuesday July 6, 2021, Microsoft issued CVE-2021-34527 regarding a Windows Print Spooler vulnerability. Updates were released on July 6 and 7 which addressed the vulnerability for all supported Windows versions. We encourage customers to update as soon as possible. CVE-2021-34527 – Windows Print Spooler Remote Code Execution Vulnerability. Following the out of band release …
Clarified Guidance for CVE-2021-34527 Windows Print Spooler Vulnerability Read More »
Microsoft Bug Bounty Programs Year in Review: $13.6M in Rewards
Partnering with the security research community is an important part of Microsoft’s holistic approach to defending against security threats. Bug bounty programs are one part of this partnership. By discovering and reporting vulnerabilities to Microsoft through Coordinated Vulnerability Disclosure (CVD), researchers continue to help us secure millions of customers. Over the past 12 months, Microsoft …
Microsoft Bug Bounty Programs Year in Review: $13.6M in Rewards Read More »
Windows Print Spooler の脆弱性情報 (CVE-2021-34527) に対するセキュリティ更新プログラムの定例外での公開
2021 年 7 月 7 日 (日本時間)、マイクロソフトは以下のソフトウェアのセキュリティ更新プログラムを定例外で公開しました。
Out-of-Band (OOB) Security Update available for CVE-2021-34527
Today Microsoft released an Out-of-Band (OOB) security update for CVE-2021-34527, which is being discussed externally as PrintNightmare. This is a cumulative update release, so it contains all previous security fixes and should be applied immediately to fully protect your systems. The fix that we released today fully addresses the public vulnerability, and it also includes a new feature that allows customers to implement stronger protections. See: KB5005010: …
Out-of-Band (OOB) Security Update available for CVE-2021-34527 Read More »