Out-of-band updates for serious Windows Codecs Library vulnerabilities available via the Microsoft Store

Microsoft has released two off-schedule patches for serious vulnerabilities in the Windows Codecs Library affecting Windows 10 and Windows Server. With the updates, which have been released through the Microsoft Store, the company is addressing the "critical" CVE-2020-1425 and the "serious" CVE-2020-1457. Both are Remote Code Execution vulnerabilities, and both have been addressed with little fanfare from Microsoft. See also: The KB4559309 update for Windows 10 could be slowing down your computer Microsoft Edge caught importing data from other browsers without permission Get back deleted data with Microsoft's new Windows File Recovery tool In a vulnerability notice about one of… [Continue Reading]