A Security Update has been released for Outlook 2016. It resolves the vulnerability mentioned in CVE-2018-8244, which could allow remote code execution via a specially crafted Office file. This update also contains additional fixes for 12 non-security issues.
Most notable fixes in this update;
- When you open and edit a document that is stored in a folder in Outlook 2016, the changes are not saved.
- After the primary email address of a user profile is changed, Outlook 2016 still shows the old SMTP address for the user profile.
- If the “PR_EMSMDB_CRED_USERNAME” property is not present in user profiles, some users may experience too many calls to the user principal name (UPN) lookup. To fix this issue, follow the instructions in KB4022165.
- Some cloud attachments that have certain file names are invisible in email messages.
Office 365 subscribers also got the following new features;
- Hands free typing
Use your voice to create emails by simply dictating. No need to type. - View 3 time zones
Need to schedule a meeting across time zones? Add multiple time zones to your calendar to easily see everyone’s availability and pick a time that works for all. - Calendar sharing made easy
Sharing your calendars is simpler and calendars shared from Outlook Desktop are now also available in Outlook Mobile. Learn more
View: Download information for KB4022160
Note: This update can be installed via Microsoft Update or the Update Now button when you are using Office 365 and updates Outlook to version 16.0.4705.1000 (msi-based installation) or version 1805 build 9330.2118 (Office 365 based installation) or version 1708 build 8431.2270 (Office 365 Semi-Annual release).
