Microsoft has released updates to address multiple vulnerabilities in Microsoft software. Microsoft has fixed 97 vulnerabilities with Microsoft's January 2022 Patch Tuesday, with nine classified as Critical and 88 as Important.

Of the fixed vulnerabilities: 41 are Elevation of Privilege vulnerabilities, 9 are Security Feature Bypass vulnerabilities, 29 are Remote Code Execution vulnerabilities, 6 are Information Disclosure vulnerabilities, 9 are Denial of Service vulnerabilities, 3 are Spoofing vulnerabilities.

This month's Patch Tuesday also includes fixes for six zero-day vulnerabilities:

• CVE-2021-22947 - Open Source Curl Remote Code Execution Vulnerability
• CVE-2021-36976 - Libarchive Remote Code Execution Vulnerability
• CVE-2022-21919 - Windows User Profile Service Elevation of Privilege Vulnerability
• CVE-2022-21836 - Windows Certificate Spoofing Vulnerability
• CVE-2022-21839 - Windows Event Tracing Discretionary Access Control List Denial of Service Vulnerability
• CVE-2022-21874 - Windows Security Center API Remote Code Execution Vulnerability

More information on vulnerabilities and updates is available in the Microsoft’s January 2022 Security Updates page – microsoft.com.

Source: bleepingcomputer.com