Unscheduled fixes released for critical flaw in optional Windows codec
Microsoft has published unscheduled fixes for two critical vulnerabilities that make it possible for attackers to execute malicious code on computers running any version of Windows 10.
Unlike the vast majority of Windows patches, the ones released on Tuesday were delivered through the Microsoft Store. The normal channel for operating System security fixes is Windows Update. Advisories here and here said users need not take any action to automatically receive and install the fixes.
Also at:
Microsoft issues critical fixes for booby-trapped images – update now!
(Score: 2) by driverless on Thursday July 02 2020, @11:30AM (2 children)
So in other words anyone who's disabled that shit doesn't need to use that shit to fix the holes in that shit. QED.
(Score: 3, Informative) by Freeman on Thursday July 02 2020, @02:22PM (1 child)
No, they released the update via Microsoft Store. As far as I understand it, the exploit isn't limited to Microsoft Store apps.
Joshua 1:9 "Be strong and of a good courage; be not afraid, neither be thou dismayed: for the Lord thy God is with thee"
(Score: 5, Interesting) by driverless on Thursday July 02 2020, @02:31PM
Could be, but the article makes it out to be a Store circular problem:
So you need a Store update to fix a Store problem caused by the Store.