HowTo-Outlook

A Security Update has been released for Outlook 2016. It resolves the vulnerability mentioned in CVE-2018-0791, which could allow remote code execution via a specially crafted Office file.

Additional fixes in this update;

• When you select multiple attachments and try to cancel one of the attachments, all the other attachments are cancelled.
• Some attachments are not removed when you forward mails that contain inline images and you check the “Read all mails as Plain Text” check box.

View: Download information for KB4011626

Note: This update can be installed via Microsoft Update or the Update Now button when you are using Office 365 and updates Outlook to version 16.0.4639.1000 (msi-based installation) or 16.0.8730.2175 (Office 365 based installation) or 16.0.8431.2153 (Office 365 Semi-Annual Channel installation) or 16.0.8201.2217 (Deferred Channel).

A Security Update has been released for Outlook 2013. It resolves the vulnerability mentioned in CVE-2018-0791, which could allow remote code execution via a specially crafted Office file.

Additional fixes in this update;

• 3rd-party MAPI providers may be blocked despite being in the Outlook profile.
• When you send an email message from Outlook.com to a recipient outside of Office 365, the recipient always gets a winmail.dat attachment in the message.

View: Download information for KB4011637

Note: This update can be installed via Microsoft Update or the Update Now button when you are using Office 365 and updates Outlook to version 15.0.4989.1000.

A Security Update has been released for Outlook 2010. It resolves the vulnerability mentioned in CVE-2018-0791, which could allow remote code execution via a specially crafted Office file.

Additionally, this update fixes an issue where 3rd-party MAPI providers may be blocked despite being in the Outlook profile.

View: Download information for KB4011273

Note: This update can be installed via Microsoft Update and updates Outlook to version 14.0.7192.5000.

Cumulative Update 8 for Exchange 2016 is now available for direct download. It contains 6 documented new fixes or improvements, and all previously released fixes and security updates for Exchange 2016.

• .NET Framework 4.7.1 is now supported.
• KB4056329 Can’t access EWS from Outlook/OWA add-ins via makeEwsRequestAsync in Exchange Server 2016 and Exchange Server 2013
• KB4054516 “Your request can’t” error when accessing an archive mailbox via OWA in Exchange Server 2016
• KB4055953 The recipient scope setting doesn’t work for sibling domains in Exchange Server 2016
• KB4055435 No MAPI network interface is found after you install Exchange Server 2016 CU7
• KB4056609 Event ID 4999 and mailbox transport delivery service does not start after you install Exchange Server 2016 CU7
• KB4045655 Description of the security update for Microsoft Exchange: December 12, 2017
• KB4057248 Many Watson reports for StoragePermanentException in Exchange Server 2016

This release includes no new updates to the Active Directory Schema.

Download: Cumulative Update 8 for Exchange Server 2016 (KB4035145)
Download: Exchange Server 2016 CU8 UM Language Packs
View: Description of Cumulative Update 8 for Exchange Server 2016
View: Blog post of the Exchange Team about CU8 for Exchange Server 2016

Cumulative Update 19 for Exchange 2013 is now available for direct download. It contains 6 documented new fixes or improvements, and all previously released fixes and security updates for Exchange 2013.

• .NET Framework 4.7.1 is now supported.
• KB4046316 MAPI over HTTP can’t remove client sessions timely if using OAuth and the resource has a master account in Exchange Server 2013
• KB4046205 W3wp high CPU usage in Exchange Server 2013
• KB4046182 Event ID 4999 or 1007 if diagnostics service crashes repeatedly in Exchange Server 2013
• KB4056329 Can’t access EWS from Outlook/OWA add-ins via makeEwsRequestAsync in Exchange Server 2016 and Exchange Server 2013
• KB4045655 Description of the security update for Microsoft Exchange: December 12, 2017

This release includes no new updates to the Active Directory Schema.

Download: Cumulative Update 18 for Exchange Server 2013 (KB4022631)
Download: Exchange Server 2013 CU19 UM Language Packs
View: Description of Cumulative Update 19 for Exchange Server 2013
View: Blog post of the Exchange Team about CU19 for Exchange Server 2013

Update Rollup 19 for Exchange 2010 Service Pack 3 is now available for direct download. It contains 1 documented new fix and all previously released fixes and security updates for Exchange 2010 SP3. Note that mainstream support for Exchange 2010 has already ended.

• KB4054456 EWS connections proxied from Exchange Server 2016 to 2010 can access all the Exchange 2010 mailboxes

View: Description of Update Rollup 19 for Exchange Server 2010
Download: Update Rollup 19 For Exchange 2010 SP3 (KB4035162)

A Rollup Update has been released for Outlook 2016. This is a non-security update which contains 10 documented improvements and fixes.

Most notable fixes are:

• An issue that causes Outlook to crash when you read an email in the preview pane.
• The number of unread messages is displayed incorrectly and not updated expectedly in Outlook 2016.
• Some appointments are saved incorrectly when you save an Outlook calendar as an iCalendar (.ics) file.
• Third-party MAPI providers may be blocked despite they are in the Outlook profile.

View: Download information for KB4011570

Note: This update can be installed via Microsoft Update or the Update Now button when you are using Office 365 and updates Outlook to version 16.0.4627.1000 (msi-based installation) or 16.0.8625.2139 (Office 365 based installation).

A Rollup Update has been released for Outlook 2013. This is a non-security update which contains 6 documented improvements and fixes.

Most notable fixes are:

• Third-party MAPI providers may be blocked despite being in the Outlook profile.
• You may experience Outlook crashes unexpectedly when you connect to Exchange Server in an online mode. 
• This update addresses an issue that causes Outlook to crash when you read an email in the preview pane. 
• This update adds support for the in-client store if you have a Black Forest deployment.

View: Download information for KB4011282

Note: This update can be installed via Microsoft Update or the Update Now button when you are using Office 365 and updates Outlook to version 15.0.4989.1000.