MS Family March 2024 Routine Security Update Advisory
Overview
Microsoft(https://www.microsoft.com) has released a security update that fixes vulnerabilities in products it has supplied. users of affected products are advised to update to the latest version.
Affected Products
Apps family
Xbox Gaming Services
Browser Family
Microsoft Edge (Chromium-based)
Resolved Vulnerabilities
0 vulnerabilities rated Critical and 1 rated Important were found.
Apps Family
Critical elevation of privilege vulnerability in XBox Crypto Graphic Services (CVE-2024-28916)
Browser family
Memory Reuse After Freeing Vulnerability in the Canvas feature in Microsoft Edge (Chromium-based) (CVE-2024-2627)
Improper Functional Implementation Vulnerability in the Downloads feature in Microsoft Edge (Chromium-based) (CVE-2024-2628)
incorrect security UI in Google Chrome on iOS prior to 123.0.6312.58, which could allow remote attackers to perform UI spoofing via a crafted HTML page (CVE-2024-2629)
an object lifecycle issue in Google Chrome V8 before prior to 123.0.6312.58 allowed remote attackers to potentially exploit object corruption via a crafted HTML page (CVE-2024-2625)
Read out of scope vulnerability in Swiftshader functionality in Microsoft Edge (Chromium-based) (CVE-2024-2626)
Improper Functional Implementation of iOS Features Vulnerability in Microsoft Edge (Chromium-based) (CVE-2024-2630, CVE-2024-2631)
Low-grade security feature bypass vulnerability in Microsoft Edge (Chromium-based) (CVE-2024-26247)
Low-grade spoofing vulnerability in Microsoft Edge (Chromium-based) (CVE-2024-29057)
Vulnerability Patches
The March 22, 2024 Update provided the following product-specific vulnerability patches Please use the Windows Update feature to install automatically or refer to the URLs in the product information below to download and install.
Microsoft Edge (Chromium-based) version
Xbox Gaming Services version