Unscheduled fixes released for critical flaw in optional Windows codec
Microsoft has published unscheduled fixes for two critical vulnerabilities that make it possible for attackers to execute malicious code on computers running any version of Windows 10.
Unlike the vast majority of Windows patches, the ones released on Tuesday were delivered through the Microsoft Store. The normal channel for operating System security fixes is Windows Update. Advisories here and here said users need not take any action to automatically receive and install the fixes.
Also at:
Microsoft issues critical fixes for booby-trapped images – update now!
(Score: 2, Insightful) by Anonymous Coward on Thursday July 02 2020, @02:03PM (2 children)
I've completely disabled the Windows Store on my computer by a hostile takeover of the permissions of the folder it installs the MS Store Apps to and disallowed anything other than myself to write there and I removed the mandatory crapware that's is installed and set up on every new user account from the store.
...and now MS is releasing PATCHES through the store???
The MS Store is absolutely, bar-none the WORST implementation of a digital store I have EVER seen. It's end-user hostile, and it is being used as the channel to feed ads on products I specifically pay for (Yea, I payed for Win 10 Pro). The only way to "manage" it is to completely break it so as to render it 100% useless.
Release patches in the proper channels MS - because we will NOT install updates from the MS Store.
(Score: -1, Troll) by Anonymous Coward on Thursday July 02 2020, @05:55PM
Just be glad they're not sending any of their H1B Indians to shit on your front lawn.
(Score: 3, Informative) by Cliron on Thursday July 02 2020, @06:26PM
The reason this was released in the store is to patch the codex from the store.
If you did not install it from the store, you do not need the patch.
Similar to, if you did not install FoxIT reader, then you do not need the security update for FoxIT reader.