[German]On February 8, 2022 (second Tuesday of the month, Microsoft Patchday), Microsoft released several security-related updates for still-supported Microsoft Office versions and other products. RCE vulnerabilities are closed again. Here you can find an overview of the available updates.
General information
The updates apply to the installable MSI version of Office (the click-to-run packages obtain the updates through other channels). An overview of the updates can be found on this web page (and here for February). Details are documented in the linked KB articles. Office 2019 does not appear in the list because it is distributed via click-to-run packages and receives security updates via the Office Update feature.
Office 2016
The following security updates have been released for Office 2016.
- Excel 2016: Description of the security update for Excel 2016: February 8, 2022 (KB5002137); This security update resolves an information disclosure vulnerability in Microsoft Excel. For more information about this vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2022-22716.
- Office 2016: Description of the security update for Office 2016: February 8, 2022 (KB3118335); This security update resolves an information disclosure vulnerability in Microsoft Excel. For more information about this vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2022-23252.
- Office 2016: Description of the security update for Office 2016: February 8, 2022 (KB5002140); This security update resolves a remote code execution vulnerability in Microsoft Office graphics. For more information about this vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2022-22003.
For details on the Office updates, see the linked KB articles.
Office 2013
Office 2013 requires Service Pack 1 for Microsoft Office 2013 to be installed. The following security updates have been released. They address the same security vulnerabilities as Microsoft Office 2016.
- Excel 2013: Description of the security update for Excel 2013: February 8, 2022 (KB5002156); This security update resolves an information disclosure vulnerability in Microsoft Excel. For more information about this vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2022-22716.
- Office 2013: Description of the security update for Office 2013: February 8, 2022 (KB3172514); This security update resolves an information disclosure vulnerability in Microsoft Excel. For more information about this vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2022-23252.
- Office 2013: Description of the security update for Office 2013: February 8, 2022 (KB5002146); This security update resolves a remote code execution vulnerability in Microsoft Office graphics. For more information about this vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2022-22003.
For details on the Office updates, see the linked KB articles.
Further updates for Office/SharePoint Server
Microsoft has also released security updates for several versions of Microsoft SharePoint Server.
SharePoint Server Subscription Edition
- SharePoint Server Subscription Edition: Description of the security update for SharePoint Server Subscription Edition: February 8, 2022 (KB5002145)
SharePoint Server 2019
- Office Online Server: Description of the security update for Office Online Server: February 8, 2022 (KB5002133)
- SharePoint Server 2019: Description of the security update for SharePoint Server 2019: February 8, 2022 (KB5002135)
- SharePoint Server 2019 Language Pack: February 8, 2022, update for SharePoint Server 2019 Language Pack (KB5002134)
Microsoft SharePoint Server 2016
- SharePoint Enterprise Server 2016: Description of the security update for SharePoint Enterprise Server 2016: February 8, 2022 (KB5002136)
Microsoft SharePoint Server 2013
- Office Web Apps Server: Description of the security update for Office Web Apps Server 2013: February 8, 2022 (KB5002149)
- Project Server 2013: February 8, 2022, cumulative update for Project Server 2013 (KB5002152)
- SharePoint Enterprise Server 2013: Description of the security update for SharePoint Enterprise Server 2013: February 8, 2022 (KB5002120)
- SharePoint Enterprise Server 2013: Description of the security update for SharePoint Enterprise Server 2013: February 8, 2022 (KB5002147)
- SharePoint Enterprise Server 2013: February 8, 2022, cumulative update for SharePoint Enterprise Server 2013 (KB5002154)
- SharePoint Foundation 2013: Description of the security update for SharePoint Foundation 2013: February 8, 2022 (KB5002155)
- SharePoint Foundation 2013: February 8, 2022, cumulative update for SharePoint Foundation 2013 (KB5002150)
Similar articles:
Microsoft Office Updates (February 1, 2022) fixes Access issues
Microsoft Security Update Summary (February 8, 2022)
Patchday: Windows 10 Updates (February 8, 2022)
Patchday: Windows 11/Server 2022 Updates (February 8, 2022)
Patchday: Microsoft Office Updates (February 8, 2022)