Microsoft security advisory: Inadvertently disclosed digital certificates could allow spoofing: October 13, 2015

Summary

Microsoft has released a Microsoft security advisory about this issue for IT professionals. The security advisory contains additional security-related information. To learn more about the vulnerability, see
https://technet.microsoft.com/security/advisory/3097966

More Information

Important
  • All future security and nonsecurity updates for Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 require update 2919355 to be installed. We recommend that you install update 2919355 on your Windows RT 8.1-based, Windows 8.1-based, or Windows Server 2012 R2-based computer so that you receive future updates.
  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

Known issues in this security update

  • Microsoft is aware of legitimate kernel drivers for D-Link products (including network adapters) that were signed by the affected D-Link certificates. These drivers include the Windows 7 drivers on the installation CD for the DUB-E100 USB network adapter. After you install this security update, these kernel drivers will no longer load, and the hardware will stop functioning. Updated drivers that aren't affected by this issue are available on Windows Update.
The third-party products that this article discusses are manufactured by companies that are independent of Microsoft. Microsoft makes no warranty, implied or otherwise, about the performance or reliability of these products.

How to obtain and install the update

Method 1: Windows Update

This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see
Get security updates automatically.

Note For Windows RT and Windows RT 8.1, this update is available through Windows Update only.

More Information

Security update deployment information
File hash information
File information ERROR: PhantomJS timeout occurred