MS16-039: Description of the security update for Skype for Business 2016: April 12, 2016

Summary

This security update resolves vulnerabilities in Skype for Business 2016 that could allow remote code execution if a user opens a specially crafted document or visits a webpage that contains specially crafted embedded fonts. To learn more about these vulnerabilities, see Microsoft Security Bulletin MS16-039.

For a complete list of affected software, see Microsoft Knowledge Base article 3148522.

Improvements and fixes

Security-related fixes and improvements that are included in this security update

This security update contains fixes for the following security issue:
  • 3153360 Buffer may overrun when you use Skype for Business 2016

Nonsecurity-related fixes and improvements that are included in this security update

This security update also contains fixes for the following nonsecurity issue: 
  • 3153361 Black screen or slow screen updating during desktop sharing in Skype for Business 2016

How to get and install the update

Method 1: Microsoft Update

This update is available from Microsoft Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to get security updates automatically, see the "Turn on automatic updating in Control Panel" section of this Safety & Security Center article.

Method 2: Microsoft Download Center

You can get the stand-alone update package through the Microsoft Download Center. Follow the installation instructions on the download page to install the update.

More Information

Security update deployment information

For deployment information about this update, see Microsoft Knowledge Base article 3148522.

Security update replacement information

This security update replaces previously released update KB3114372.

File hash information
File information
How to get help and support for this security update
Properties

Article ID: 3114960 - Last Review: Jan 22, 2017 - Revision: 2

Skype for Business 2016

Feedback