-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
**************************************************************************************
Title: Microsoft Security Update Releases
Issued: April 13, 2021
**************************************************************************************
Summary
=======
The following CVE has undergone a major revision increment:
- CVE-2020-17049 | Kerberos KDC Security Feature Bypass Vulnerability
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2020-17049
- Version 5.0
- Reason for Revision: Microsoft is releasing security updates for the second
deployment phase for this vulnerability. These updates remove the
PerformTicketSignature setting 0. Setting PerformTicketSignature to 0 after this
update is installed will have the same effect as setting PerformTicketSignature
to 1. The Domain Controllers (DC)s will be in Deployment mode. See the FAQ section
of this CVE and [KB4598347](https://support.microsoft.com/help/4598347) for more
information.
- Originally posted: November 10, 2020
- Updated: April 13, 2021
- Aggregate CVE Severity Rating: Important
**************************************************************************************
Other Information
=================
Recognize and avoid fraudulent email to Microsoft customers:
======================================================================================
If you receive an email message that claims to be distributing a Microsoft security update, it is a hoax that may contain malware or pointers to malicious websites.
Microsoft does not distribute security updates via email.
