Microsoft Releases April Updates

Last Updated: 04/15/2020

Security Notice Level

SEVERE

Microsoft has released the April updates to their software. Some of these updates address vulnerabilities that may allow a remote attacker to take control of a system.

Affected Software

The IT Security Office advises owners of the software listed below to update as soon as possible.
 
Note: Microsoft has delayed the end of support for Windows 10 version 1709/1809, Windows Server version 1809, and a variety of other software during the Coronavirus pandemic to help reduce stress for their customers. [1]

Affected Software:

  • Microsoft Windows
  • Microsoft Edge (EdgeHTML-based)
  • Microsoft Edge (Chromium-based)
  • ChakraCore
  • Internet Explorer
  • Microsoft Office and Microsoft Office Services and Web Apps
  • Windows Defender
  • Visual Studio
  • Microsoft Dynamics
  • Microsoft Apps for Android
  • Microsoft Apps for Mac

Security Bulletin Name

Release Notes: April 2020 Security Updates
Lifecycle changes to end of support and servicing dates

Additional Information

Additional information about these vulnerabilities can be viewed at:
https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedet...
[1] https://support.microsoft.com/en-us/help/4557164/lifecycle-changes-to-en...

If you have any questions, please contact the IT Service Center at 303-735-4357 or oithelp@colorado.edu. IT Service Center Hours.

Definitions for this notice:
Urgent: severity represents a broad threat to the entire campus community including remotely exploitable administrator or root type attacks.
Severe: severity includes worms & web or email based exploits. 
Important: severity includes viruses and local exploits for commonly used services