微软安全更新发布-2018年7月

北京时间上周三微软发布了2018年7月的安全更新。这次安全更新发布涉及的产品有Windows, 浏览器（Internet Explorer和Microsoft Edge）, Office产品（包括SharePoint, Skype for Business）, .Net Framework 和Visual Studio， Open Source 模块的ASP.Net 和Power Shell Editor Service。请大家参考我们的安全更新指南（https://aka.ms/SUG）、知识库文章中的已知问题和部署信息，在部署更新之前做好测试，从而稳定安全地运行您的系统。

在安全更新发布日当天，我们还修改了之前发布CPU漏洞相关安全通告ADV180002、ADV180012和ADV180016，以及涉及CVE-2016-7279的安全更新，为更多相关操作系统浏览器提供软件防护。

北京时间8月15日（太平洋时间8月14日），8月发布的操作系统安全更新和.Net framework安全更新已经解决了7月安全更新已知问题。

 7月操作系统安全更新的已知问题

After installing this update, some devices running network monitoring workloads may receive the 0xD1 Stop error because of a race condition.

Restarting the SQL Server service may fail occasionally with the error, “Tcp port is already in use”.

When an administrator tries to stop the World Wide Web Publishing Service (W3SVC), the W3SVC remains in a "stopping" state, but cannot fully stop or be restarted.

 7月.Net framework安全更新的已知问题 

After you install any of the July 2018 .NET Framework Security Updates, a COM component fails to load because of “access denied,” “class not registered,” or “internal failure occurred for unknown reasons” errors. The most common failure signature is the following:
Exception type: System.UnauthorizedAccessException
Message: Access is denied. (Exception from HRESULT: 0x80070005 (E_ACCESSDENIED))

参考链接 https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2018-8308 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8202 https://support.microsoft.com/en-us/help/4345913/ https://blogs.msdn.microsoft.com/dotnet/2018/07/30/net-framework-july-2018-update/