Description of the security update for Skype for Business 2016: July 9, 2019

Applies to: Skype for Business 2016

Summary


This security update resolves an information disclosure vulnerability that exists if Microsoft Exchange allows entities to be created even though they have Display Names that contain non-printable characters. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2019-1084.
 
Note To apply this security update, you must have the release version of Skype for Business 2016 installed on the computer.
 

Be aware that the update in the Microsoft Download Center applies to the Microsoft Installer (.msi)-based edition of Office 2016. It doesn't apply to the Office 2016 Click-to-Run editions, such as Microsoft Office 365 Home (see What version of Office am I using?).

How to get and install the update


Method 1: Microsoft Update
 
This update is available from Microsoft Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to get security updates automatically, see Windows Update: FAQ.
 
Method 2: Microsoft Update Catalog
 
To get the standalone package for this update, go to the Microsoft Update Catalog website.
 
Method 3: Microsoft Download Center
 
You can get the standalone update package through the Microsoft Download Center. Follow the installation instructions on the download page to install the update.

More information


Prerequisites

To apply this update, you must have October 2, 2018, update for Office 2016 (KB4011669) installed.

Security update deployment information

For deployment information about this update, see security update deployment information: July 9, 2019.


Security update replacement information


This security update replaces previously released security update 4461473.

File hash information

File name SHA1 hash SHA256 hash
lync2016-kb4475545-fullfile-x86-glb.exe A1B8868334E6D6B0628544DBF9A8447E9615EE34 B866F45638C14207B7EC51698631185B8A3A1DFF0CA5444064D9E738B0C5A4BA
lync2016-kb4475545-fullfile-x64-glb.exe DECE6432E04391128A783ABA0D196EB756AC9130 217419FAEB28BFCF079C433934A2FC8180EA6DB27D7692876298731D7F841771


File information

The English (United States) version of this software update installs files that have the attributes that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time together with your current daylight saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.

How to get help and support for this security update


Help for installing updates: Protect yourself online

Help for protecting your Windows-based computer from viruses and malware: Microsoft Security

Local support according to your country: International Support