CVE-2021-34470 check improved#648
Merged
Merged
Conversation
dpaulson45
reviewed
Jul 27, 2021
lusassl-msft
force-pushed
the
lusassl-June21SUWordingFix
branch
from
bb1b416 to
bc82375
Compare
lusassl-msft
force-pushed
the
lusassl-June21SUWordingFix
branch
from
c926edd to
ce8769f
Compare
Using build number to check for patchlevel Some more adjustments We only check the build for E15 now.
lusassl-msft
force-pushed
the
lusassl-June21SUWordingFix
branch
from
ce8769f to
fc66bf4
Compare
dpaulson45
approved these changes
Jul 28, 2021
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Issue:
CVE-2021-34470 check improved to address #646.
Reason:
It drives confusion if we show that the system is vulnerable to CVE-2021-34470 even if the SU has been installed.
Fix:
We now check if
KB5004778orKB5004779orKB5004780are in place. If that's the case, we perform testing against the schema and check for the required schema change. If the schema change has not been performed, we highlight that/PrepareSchemais required to finalize the July 2021 SU installation to become fully protected against CVE-2021-34470.Validation:
Lab