-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ******************************************************************** Title: Microsoft Security Update Releases Issued: September 14, 2017 ******************************************************************** Summary ======= The following CVE has undergone a major revision increment. * CVE-2017-11767 CVE Revision Information: ===================== CVE-2017-11767 - Title: CVE-2017-11767 | Scripting Engine Memory Corruption Vulnerability - https://portal.msrc.microsoft.com/en-us/security-guidance - Reason for Revision: CVE-2017-11767 has been added to the September 2017 Security Release in conjunction with the publication of the 17-09 ChakraCore servicing release. See https://github.com/Microsoft/ChakraCore/commit/ ee46fc449c5e7aa6753622720177b56dc4cc3abd for more information. - Originally posted: August 14, 2017 - Updated: N/A - CVE Severity Rating: Critical - Version: 1.0 Other Information ================= Recognize and avoid fraudulent email to Microsoft customers: ============================================================= If you receive an email message that claims to be distributing a Microsoft security update, it is a hoax that may contain malware or pointers to malicious websites. Microsoft does not distribute security updates via email. The Microsoft Security Response Center (MSRC) uses PGP to digitally sign all security notifications. However, PGP is not required for reading security notifications, reading security bulletins, or installing security updates. You can obtain the MSRC public PGP key at . ******************************************************************** THE INFORMATION PROVIDED IN THIS MICROSOFT COMMUNICATION IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY. ******************************************************************** Microsoft respects your privacy. Please read our online Privacy Statement at . If you would prefer not to receive future technical security notification alerts by email from Microsoft and its family of companies please visit the following website to unsubscribe: . These settings will not affect any newsletters youave requested or any mandatory service communications that are considered part of certain Microsoft services. For legal Information, see: . This newsletter was sent by: Microsoft Corporation 1 Microsoft Way Redmond, Washington, USA 98052 -----BEGIN PGP SIGNATURE----- Version: PGP Desktop 10.2.0 (Build 1950) - not licensed for commercial use: www.pgp.com Charset: utf-8 wsFVAwUBWbwEz/sCXwi14Wq8AQjq/g/8DFN9WCI0ZHrE9rxOQ+gpSFzg7NzouFBQ DiMBe6MmCA3nRYakTCmCXL+ea0sSnA2KI38BNwGGc0ELfvnKvheQW2ZUfFpL13o9 kMROPe+6Q/9F9H7VhoY7tqS/G+SkuVPdQXH4jHBln5k7CdU5a9ydAJElLuI6DME9 lAxnpRmuDXJQTLKiVhbGf5sKlKq1okcbyKeM+PGwt14Q2StzG6MRsNJAzfVHTZcR uuQRHH0cj0TAOdupEEnxDJ5/4i7FmNMps0O2+WYdFEw+evrYetub4yDhVhzXnxIn vJ+2BYLQoU58Uw1XQDJwiMEOx1gln4msxJxciCdF+ilWTBSeQLx7lTsOxB/agkyl 9I3vevJoOJ7tIUUAoyayFk3fMySZzRiReOwHD+iaKX106iw7buraJqgTbDCqpVdl 3bUzFWdmDnN+yQBUEarl2XsHOQuqN1T+40H5jeuiCO3SQSkpviw78nyqdeBDfpph 2chf91inFD4FHgZwM1PskWhPU7nYc2gLU2ddwzMl1XwgpKtudFRxGjL7Ar+gRDfj 6aybHCnKsua+gmBet/IrE+rnUs3kHMYkAb0IuYPGQ9OcXCH6WWnHRC9wsYYJKwVn zQi4Vj5StI/NdvoB2CsWYsoRbx4WgByYPQpol0Rj/EQNqV18YlS2R0B3mz2QLYEQ Bu+2YkG2uSQ= =2Fqj -----END PGP SIGNATURE-----