MS16-120: Security update for Microsoft graphics component: October 11, 2016

Summary

This update resolves vulnerabilities in Microsoft Windows, Microsoft Office, Skype for Business, Silverlight, Microsoft Lync, and the Microsoft .NET Framework. The vulnerabilities could allow remote code execution if a user either visits a specially crafted website or opens a specially crafted document. This update addresses the vulnerabilities by correcting how the Windows font library handles embedded fonts. To learn more about the vulnerability, see Microsoft Security Bulletin MS16-120.

More Information

Important
  • All future security and nonsecurity updates for Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 require update 2919355 to be installed. We recommend that you install update 2919355 on your Windows RT 8.1-based, Windows 8.1-based, or Windows Server 2012 R2-based computer so that you receive future updates.
  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

Additional information about this security update


The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information.
  • 3189040 MS16-120: Description of the security update for the .NET Framework 4.6 for Windows Vista Service Pack 2 and Windows Server 2008 Service Pack 2: October 11, 2016: October 11, 2016
  • 3189039 MS16-120: Description of the security update for the .NET Framework 4.5.2 for Windows Vista Service Pack 2 and Windows Server 2008 Service Pack 2: October 11, 2016
  • 3188730 MS16-120: Description of the security update for the .NET Framework 3.5.1 for Windows 7 and Windows Server 2008 R2 Service Pack 1: October 11, 2016
  • 3188731 MS16-120: Description of the security update for the .NET Framework 3.5 for Windows Server 2012: October 11, 2016
  • 3188732 MS16-120: Description of the security update for the .NET Framework 3.5 for Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2: October 11, 2016
  • 3188726 MS16-120: Description of the security update for the .NET Framework 3.0 Service Pack 2 for Windows Vista Service Pack 2 and Windows Server 2008 Service Pack 2: October 11, 2016
  • 3188735 MS16-120: Description of the security update for the .NET Framework 3.0 Service Pack 2 for Windows Vista Service Pack 2 and Windows Server 2008 Service Pack 2: October 11, 2016
  • 3189052 MS16-120: Description of the Security and Quality Rollup for the .NET Framework 4.6 for Windows Vista Service Pack 2 and Windows Server 2008 Service Pack 2: October 11, 2016
  • 3189051 MS16-120: Description of the Security and Quality Rollup for the .NET Framework 4.5.2 for Windows Vista Service Pack 2 and Windows Server 2008 Service Pack 2: October 11, 2016
  • 3188740 MS16-120: Description of the Security and Quality Rollup for the .NET Framework 3.5.1 for Windows 7 Service Pack 1 and Windows Server 2008 R2 Service Pack 1: October 11, 2016
  • 3188741 MS16-120: Description of the Security and Quality Rollup for the .NET Framework 3.5 for Windows Server 2012: October 11, 2016
  • 3188743 MS16-120: Description of the Security and Quality Rollup for the .NET Framework 3.5 for Windows 8.1 and Windows Server 2012 R2: October 11, 2016
  • 3193713 MS16-120: Security update for Silverlight: October 11, 2016
  • 3188744 MS16-120: Description of the Security and Quality Rollup for the .NET Framework 3.0 Service Pack 2, 4.5.2, and 4.6 for Windows Vista and Windows Server 2008: October 11, 2016
  • 3118301 MS16-120: Description of the security update for 2007 Microsoft Office Suite: October 11, 2016
  • 3118317 MS16-120: Description of the security update for Office 2010: October 11, 2016
  • 3118394 MS16-120: Description of the security update for Word Viewer: October 11, 2016
  • 3118327 MS16-120: Description of the security update for Skype for Business 2016: October 11, 2016
  • 3118348 MS16-120: Description of the security update for Lync 2013 (Skype for Business): October 11, 2016
  • 3188397 MS16-120: Description of the security update for Lync 2010: October 11, 2016
  • 3188399 MS16-120: Description of the security update for Lync 2010 Attendee (user level install): October 11, 2016
  • 3188400 MS16-120: Description of the security update for Lync 2010 Attendee (admin level install): October 11, 2016
  • 3189647 MS16-120: Description of the security update for Live Meeting Console: October 11, 2016
  • 3189648 MS16-120: Description of the OCS Conferencing Addin for Outlook: October 11, 2016
  • 3188736 MS16-120: Description of the Security and Quality Rollup .NET Framework 3.0 Service Pack 2, 4.5.2, and 4.6 updates for Windows Vista Service Pack 2 and Windows Server 2008 Service Pack 2: October 11, 2016
  • 3191203 MS16-120 and MS16-123: Description of the security update for kernel-mode drivers: October 11, 2016
  • 3192392 October 2016 security only quality update for Windows 8.1 and Windows Server 2012 R2
  • 3185331 October 2016 security monthly quality rollup for Windows 8.1 and Windows Server 2012 R2
  • 3192393 October 2016 security only quality update for Windows Server 2012
  • 3185332 October 2016 security monthly quality rollup for Windows Server 2012
  • 3192391 October 2016 security only quality update for Windows 7 SP1 and Windows Server 2008 R2 SP1
  • 3185330 October 2016 security monthly quality rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1
  • 3192440 Cumulative update for Windows 10: October 11, 2016
  • 3194798 Cumulative update for Windows 10 Version 1607 and Windows Server 2016: October 11, 2016
  • 3192441 Cumulative update for Windows 10 Version 1511: October 11, 2016
Security update deployment information
How to obtain help and support for this security update
Properties

Article ID: 3192884 - Last Review: Oct 14, 2016 - Revision: 1

Feedback