• Skip to main content
  • Skip to primary sidebar

DallasDBAs.com

Explaining SQL Server in plain english

  • Services
    • SQL Server Health Check
  • Pocket DBA®
  • Blog
    • Speaking
  • Testimonials
  • Contact
  • About

Security Update January 2021

January 14, 2021 by Kevin3NF Leave a Comment

SQL Server Security Update: January 12, 2021

Microsoft has issued an important security update that affects all installations of SQL Server 2012-2019. This security update addresses an elevation of privilege vulnerability which can allow data to be sent over a network to an affected SQL Server instance that might cause code to run against the SQL Server process if a certain extended event is enabled. (https://support.microsoft.com/en-us/help/4583468/kb4583468-microsoft-sql-server-elevation-of-privilege-vulnerability)

The ”certain Extended Event” has not been disclosed at this time.

You can read the MSRC Security Update Guide document CVE-2021-1636 for more detailed information, and to learn which specific versions of SQL Server are affected by this vulnerability. NOTE: If you are running an instance of SQL Server 2012 or higher and do not find your version number listed, then your SQL Server version is no longer supported and needs an update to the latest Service Pack and/or Cumulative Update.

We recommend all SQL Server users apply this security update during the next available maintenance window to patch this vulnerability.

Share this:

  • Click to share on Twitter (Opens in new window)
  • Click to share on LinkedIn (Opens in new window)
  • Click to share on Facebook (Opens in new window)
  • Click to email a link to a friend (Opens in new window)
  • Click to print (Opens in new window)

Related

Filed Under: Uncategorized

About Kevin3NF

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Primary Sidebar

Search

Sign up for blogs, DBA availability and more!


Categories

  • Accidental DBA
  • Apprentice
  • Azure
  • backup
  • backup
  • Beginner
  • Career
  • Configuration
  • Cycling
  • Dallas DBAs
  • Deployment
  • Emergency
  • Encryption
  • EntryLevel
  • Fries
  • Goals
  • HADR
  • HealthCheck
  • Index
  • Install
  • IRL
  • Management
  • Migration
  • MySQL
  • Oracle
  • PASS
  • Performance
  • Personal
  • Pluralsight
  • Podcast
  • PowerShell
  • red gate
  • Restore
  • Security
  • Speaking
  • SQL
  • sql 2005 log shipping suspect
  • sql injection
  • SQLSaturday
  • SSIS
  • SSMS
  • Summit
  • TIL
  • Tools
  • Training
  • Troubleshooting
  • TSQL
  • TSQL2sday
  • Uncategorized
  • Upgrade
  • vendor code modify
  • video
  • vNext

Copyright © 2023 · Genesis Sample on Genesis Framework · WordPress · Log in

Privacy Policy