Patch Tuesday comes with critical updates for Windows and firmware for Surface

Ladies and gentlemen another Patch Tuesday is upon us and for the security conscious or the glutton for punishment type, that means another round of time consuming updates that get applied to your Windows devices. While some might see Patch Tuesday as a mild annoyance it’s a still a service that should be greatly appreciated by all.

Today’s Patch Tuesday comes with some very important and critical updates, many of which address remote code execution. There are updates to the security of Internet Explorer, Adobe Font Driver, VBScript, vulnerabilities in Office, the Kernel Mode Driver, PNG processing, photo decoder and others for PC devices:

MS15-018

Cumulative Security Update for Internet Explorer (3032359) 
This security update resolves vulnerabilities in Internet Explorer.           

MS15-019

Vulnerability in VBScript Scripting Engine Could Allow Remote Code Execution (3040297) 
This security update resolves a vulnerability in the VBScript scripting engine in Microsoft Windows.

MS15-020

Vulnerabilities in Microsoft Windows Could Allow Remote Code Execution (3041836) 
This security update resolves vulnerabilities in Microsoft Windows. 

MS15-021

Vulnerabilities in Adobe Font Driver Could Allow Remote Code Execution (3032323) 
This security update resolves vulnerabilities in Microsoft Windows. 

MS15-022

Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3038999) 
This security update resolves vulnerabilities in Microsoft Office.

MS15-023

Vulnerabilities in Kernel-Mode Driver Could Allow Elevation of Privilege (3034344) 
This security update resolves vulnerabilities in Microsoft Windows. 

MS15-024

Vulnerability in PNG Processing Could Allow Information Disclosure (3035132) 
This security update resolves a vulnerability in Microsoft Windows.

MS15-025

Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (3038680) 
This security update resolves vulnerabilities in Microsoft Windows.

MS15-026

Vulnerabilities in Microsoft Exchange Server Could Allow Elevation of Privilege (3040856) 
This security update resolves vulnerabilities in Microsoft Exchange Server.

MS15-027

Vulnerability in NETLOGON Could Allow Spoofing (3002657)
This security update resolves a vulnerability in Microsoft Windows.

MS15-028

Vulnerability in Windows Task Scheduler Could Allow Security Feature Bypass (3030377) 
This security update resolves a vulnerability in Microsoft Windows.

MS15-029

Vulnerability in Windows Photo Decoder Component Could Allow Information Disclosure (3035126) 
This security update resolves a vulnerability in Microsoft Windows.

MS15-030

Vulnerability in Remote Desktop Protocol Could Allow Denial of Service (3039976) 
This security update resolves a vulnerability in Microsoft Windows.

MS15-031

Vulnerability in Schannel Could Allow Security Feature Bypass (3046049) 
This security update resolves a vulnerability in Microsoft Windows that facilitates exploitation of the publicly disclosed FREAK technique, an industry-wide issue that is not specific to Windows operating systems.

Other Microsoft devices are receiving a truckload of updates and patches, for security, Office, and general updates, as well as some firmware updates for the Surface Pro 3 and the original Surface RT.

The Surface Pro 3 is receiving a Surface Pen settings driver update (as wells a name change to the Surface Hub: Surface app) and after a long hiatus, the original RT devices are getting a firmware update to address audio and displays.