The March security and rollup update has been made available for all Click-to-Run installations of Outlook 2016, Outlook 2019, Outlook 2021 and Outlook as part of a Microsoft 365 subscription.
It contains 3 security updates for Excel (2), and Outlook (1). The details about the Outlook vulnerability can be found below;
- CVE-2023-23397: Microsoft Outlook Elevation of Privilege Vulnerability
- This vulnerability is currently not publicly disclosed but it is exploited.
- The exploit for this vulnerability can be triggered automatically when it is retrieved and processed by the Outlook client. This could lead to exploitation BEFORE the email is viewed in the Preview Pane.
- The Exploitability Assessment is rated: Exploitation Detected.
Exchange administrators can use this script to analyze whether mailboxes have been targeted by potentially malicious messages.
In addition, it contains 2 documented non-security fixes related to Outlook Current Version 2302, 1 Outlook related new feature in Word and 2 fixes for Monthly Enterprise Version 2301, and 1 fix for Semi-Annual Version 2208.
- Version 2302
- We fixed an issue that caused users in Government Community Cloud tenants to be unable to launch To-Do in Outlook.
- We fixed an issue that caused users to see an inaccurate count of the number of new notifications present when opening the notification pane.
- Version 2301
- Tag your team members with tasks
Create and assign tasks without leaving Word. Simply add a comment, @mention your team member, press Ctrl + Enter, and check Assign. Your comment becomes a task, and your work is done! - We fixed an issue that caused the application to close unexpectedly when clicking on non-HTTP links.
- We fixed an issue that caused users to receive an unclear error message when sending an email to a recipient with a very large certificate.
- Version 2208
- We fixed an issue that caused Outlook to close intermittently.
Version 2302 has now also been released to the Semi-Annual Enterprise Channel (Preview) and contains 1 highlighted new feature and 12 fixes which have been made available already to the Current release channel too. The new feature is;
- Find events on your calendar faster than ever
Improvements to the Calendar search make it faster and easier to find events, such as the next occurrence of a series.
Based on your release channel, you’ll be updated to the following version;
- Microsoft 365 Apps, Outlook 2016 Retail, Outlook 2019 Retail, Outlook 2021 Retail
Version 2302 (Build 16130.20306) - Monthly Enterprise
Version 2301 (Build 16026.20238)
Version 2212 (Build 15928.20298) - Semi-Annual Enterprise (Preview)
Version 2302 (Build 16130.20306) - Semi-Annual Enterprise
Version 2208 (Build 15601.20578)
Version 2202 (Build 14931.20944) - Outlook LTSC 2021
Version 2108 (Build 14332.20481) - Outlook 2019 Volume Licensed
Version 1808 (Build 10396.20023)
Note: Depending on your installation type, this update can be installed via the Update Now button in Outlook itself or the Microsoft Store. This update does not apply to msi-based installations of Office 2016.