MS15-042: Vulnerability in Windows Hyper-V could allow denial of service: April 14, 2015

Applies To
Windows Server 2012 R2 Datacenter Windows Server 2012 R2 Standard Windows Server 2012 R2 Essentials Windows Server 2012 R2 Foundation Windows 8.1 Enterprise Windows 8.1 Pro Windows 8.1

Summary

This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow denial of service if an authenticated attacker runs a specially crafted application in a virtual machine (VM) session. Notice that the denial of service does not allow an attacker to execute code or elevate user rights on other VMs that are running on the Hyper-V host. However, the issue could cause other VMs on the host not to be manageable in Virtual Machine Manager.

Introduction

Microsoft has released security bulletin MS15-042. To learn more about this security bulletin:

How to obtain help and support for this security update

Help installing updates:
Support for Microsoft Update

Security solutions for IT professionals:
TechNet Security Troubleshooting and Support

Help protect your Windows-based computer from viruses and malware:
Virus Solution and Security Center

Local support according to your country:
International Support

More Information

Known issues in this security update

  • After you install this security update, you may find that old file location cleanup operations are affected when you run a storage migration of Cluster Shared Volume (CSV). To resolve this issue, install vmms.exe version 6.3.9600.17787, included in update 3037313. For more information, click the following article number to view the article in the Microsoft Knowledge Base:

    3037313 Old files are not removed after a migration of virtual machine storage in Windows 8.1 or Windows Server 2012 R2

Security update deployment information

Windows 8.1 (all editions)Reference Table

The following table contains the security update information for this software.

Security update file name For all supported x64-based editions of Windows 8.1:
Windows8.1-KB3047234-x64.msu
Installation switches See Microsoft Knowledge Base Article 934307
Restart requirement Yes, you must restart your system after you apply this security update.
Removal information To uninstall an update that is installed by WUSA, use the /Uninstall setup switch. Or, click Control Panel, click System and Security, click Windows Update, and under See also, click Installed updates, and then select from the list of updates.
File information See the file information section.
Registry key verification Note A registry key does not exist to validate the presence of this update.

Windows Server 2012 R2 (all editions)Reference Table

The following table contains the security update information for this software.

Security update file name For all supported editions of Windows Server 2012 R2:
Windows8.1-KB3047234-x64.msu
Installation switches See Microsoft Knowledge Base Article 934307
Restart requirement Yes, you must restart your system after you apply this security update.
Removal information To uninstall an update installed by WUSA, use the /Uninstall setup switch. Or, click Control Panel, click System and Security, click Windows Update, and under See also, click Installed updates, and then select from the list of updates.
File information See the file information section.
Registry key verification Note A registry key does not exist to validate the presence of this update.

      

File information

The English (United States) version of this software update installs files that have the attributes that are listed in the following tables. The dates and times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time and with your current daylight saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.

Windows 8.1 and Windows Server 2012 R2 file information

For all supported x64-based versions of Windows 8.1 and Windows Server 2012 R2

File name File version File size Date Time Platform
Vmms.exe.mui 6.3.9600.17039 861,184 04-Mar-2014 18:07 Not Applicable
Vmms.exe.mui 6.3.9600.17039 851,968 04-Mar-2014 18:06 Not Applicable
Vmms.exe.mui 6.3.9600.17039 980,992 04-Mar-2014 17:59 Not Applicable
Vmms.exe.mui 6.3.9600.17039 997,888 04-Mar-2014 18:06 Not Applicable
Vmms.exe.mui 6.3.9600.17039 784,384 04-Mar-2014 11:29 Not Applicable
Vmms.exe.mui 6.3.9600.17039 937,984 04-Mar-2014 18:02 Not Applicable
Vmms.exe.mui 6.3.9600.17039 815,104 04-Mar-2014 18:06 Not Applicable
Vmms.exe.mui 6.3.9600.17039 953,344 04-Mar-2014 18:07 Not Applicable
Vmms.exe.mui 6.3.9600.17039 884,736 04-Mar-2014 18:06 Not Applicable
Vmms.exe.mui 6.3.9600.17039 921,088 04-Mar-2014 18:06 Not Applicable
Vmms.exe.mui 6.3.9600.17039 482,304 04-Mar-2014 18:06 Not Applicable
Vmms.exe.mui 6.3.9600.17039 485,376 04-Mar-2014 18:04 Not Applicable
Vmms.exe.mui 6.3.9600.17039 834,560 04-Mar-2014 18:02 Not Applicable
Vmms.exe.mui 6.3.9600.17039 894,464 04-Mar-2014 18:03 Not Applicable
Vmms.exe.mui 6.3.9600.17039 922,112 04-Mar-2014 18:02 Not Applicable
Vmms.exe.mui 6.3.9600.17039 871,424 04-Mar-2014 18:02 Not Applicable
Vmms.exe.mui 6.3.9600.17039 896,000 04-Mar-2014 18:02 Not Applicable
Vmms.exe.mui 6.3.9600.17039 865,280 04-Mar-2014 18:03 Not Applicable
Vmms.exe.mui 6.3.9600.17039 855,552 04-Mar-2014 17:58 Not Applicable
Vmms.exe.mui 6.3.9600.17039 794,112 04-Mar-2014 17:58 Not Applicable
Vmms.exe.mui 6.3.9600.17039 344,064 04-Mar-2014 17:59 Not Applicable
Vmms.exe.mui 6.3.9600.17039 360,448 04-Mar-2014 17:59 Not Applicable
Vmms.exe.mui 6.3.9600.17039 360,448 04-Mar-2014 17:59 Not Applicable
Rdvgpuinfo.dll 6.3.9600.17396 61,440 08-Oct-2014 05:58 x64
Vmms.exe 6.3.9600.17729 13,784,064 14-Mar-2015 00:18 x64

      

File hash information
Package Name Package Hash SHA1 Package Hash SHA2
Windows8.1-KB3047234-x64.msu A5F423BBFEFA3E371B7C5F89366D86BC3B58F6C6 3A9166396B13491207C199A204D58D27230034A2EA8466A3F891A174AE6A0059
Windows8.1-KB3047234-x64.msu 25A4C4F35A74FB331416342D757F8D97182345E1 77CE6D303DAF1EFB7EB2F5F2A7EE186F875FC2CD1F258D5AAEF75C468E89034B