View products that this article applies to.

INTRODUCTION

Microsoft has released security bulletin MS14-059. To learn more about this security bulletin:

Download information

The following files are available for download from the Microsoft Download Center.

For all supported versions of Microsoft ASP.NET

Download Download the package now.

Release Date: October 14, 2014

For more information about how to download Microsoft support files, click the following article number to view the article in the Microsoft Knowledge Base:

119591 How to obtain Microsoft support files from online servicesMicrosoft scanned this file for viruses. Microsoft used the most current virus-detection software that was available on the date that the file was posted. The file is stored on security-enhanced servers that help prevent any unauthorized changes to the file.

How to obtain help and support for this security update

Help installing updates:
Support for Microsoft Update

Security solutions for IT professionals:
TechNet Security Troubleshooting and Support

Help protect your Windows-based computer from viruses and malware:
Virus Solution and Security Center

Local support according to your country:
International Support

More Information

  • For more information about deployment options to address this security vulnerability, see the MS14-059 security bulletin. This update will be offered through Microsoft Update, the Microsoft Download Center, and updated NuGet packages. The security bulletin will provide correct guidance about which deployment option is required to help make sure that your computer and applications are secure.

  • Also, see the "Update FAQ" section of MS14-059 to better understand how Microsoft security updates for .NET NuGet Libraries are supported, how to determine which version of ASP.NET Model-View-Controller (MVC) is installed on your computer, which computers are offered the update through Microsoft Update, and other important information.

Known issues with this security update

  • Symptom
    After you install this security update, all Azure Pack PowerShell commands return the following exemption:





    Method not found: 'Void Newtonsoft.Json.Serialization.DefaultContractResolver.set_IgnoreSerializableAttribute(Boolean)


    Resolution
    To resolve this issue, install Update Rollup 4 for Windows Azure Pack. For more information, click the following article number to view the article in the Microsoft Knowledge Base:

    2992027 Update Rollup 4 for Windows Azure Pack

Applies to

This article applies to the following:

  • ASP.NET MVC 4.0

FILE INFORMATION

The English (United States) version of this software update installs files that have the attributes that are listed in the following tables. The dates and times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time and with your current daylight saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.

File name

File version

File size

Date

Time

Eula.rtf

Not applicable

152,085

18-Jul-2014

21:38

Policy.4.0.system.web.mvc.dll

4.0.0.0

10,400

19-Aug-2014

00:28

System.net.http.dll

1.0.0.0

180,832

10-Jul-2012

19:07

System.net.http.formatting.dll

4.0.21112.0

168,520

07-May-2013

20:09

System.net.http.webrequest.dll

1.0.0.0

16,480

10-Jul-2012

19:07

System.web.http.dll

4.0.20710.0

323,168

07-May-2013

20:09

System.web.http.selfhost.dll

4.0.20918.0

105,584

20-May-2013

15:04

System.web.http.webhost.dll

4.0.20710.0

73,312

07-May-2013

20:09

System.web.mvc.dll.config

Not applicable

530

19-Aug-2014

00:27

System.web.mvc.dll

4.0.40804.0

505,504

19-Aug-2014

00:28

Thirdpartynotices.rtf

Not applicable

144,925

18-Jul-2014

21:38

Need more help?

Expand your skills
Explore Training
Get new features first
Join Microsoft Insiders

Was this information helpful?

What affected your experience?

Thank you for your feedback!

×