Hello and welcome to the Wednesday, July 13th, 2000, 22 edition of the Sands and its Storm Center's Stormcast. My name is Johannes Ulrich.

And today I'm recording from Sands Fire here in Washington, D.C.

First of all, thanks to everybody who showed up to the keynote today.

If you missed it or if you missed the live stream,

the recording should be available shortly.

And, well, I'll link to the recording,

but you probably can get to it via the link that I posted for the live webcast.

But of course, top of the news today is Microsoft's Patch Tuesday

and Microsoft released patches for 86 vulnerabilities,

four of which are rated critical.

None has previously been disclosed,

and there is one vulnerability that has already been exploited.

This already exploited vulnerability is a privilege escalation vulnerability

affecting the client server runtime subsystem in Windows.

I believe we have had several similar vulnerabilities in CSRSS before. Not terribly exciting,

in my opinion, something you definitely do want to patch, but nothing you should really panic about.

There are other approach escalation vulnerabilities that are being addressed here. one other one also in CSRSS that is also rated as important as typically Microsoft rates these approach escalation vulnerabilities.

One interesting feature of this month patch Tuesday is a large number of

approach escalation vulnerabilities

being fixed in Azure

site recovery. This is a service

that Microsoft offers in order to make it easy

...