Microsoft heeft een vierde update voor versie 16.5.0 van Visual Studio 2019 uitgebracht. Deze populaire programmeerontwikkelomgeving beschikt over handige opties om het programmeren in onder andere Visual C++, Visual Basic, C#, F#, Python en R gemakkelijker te maken. De complete lijst met de veranderingen in de 2019-uitgave kun je nalezen in de bijbehorende releasenotes. Hieronder is te vinden welke verbeteringen Microsoft heeft doorgevoerd in deze versie:
Fixed In This Release of Visual Studio 2019 version 16.5.4:Security Advisory Notice
- Modified the find "List View" to work with the VsColorOutput extension.
- Fixed a regression introduced with version 16.5 where use of default indexed properties with value-types caused an internal compiler error.
- Modified find in files to preserve user settings between Visual Studio 2019 sessions.
- Fixed an issue where Goto next/previous entry failed to work in the find results list when "preview selected files in find results" is turned off.
- Fixed an issue with find when doing a regex search a pattern that did not contain regex special characters.
- Fixed the button placement in find in files tool window when its in a docked position. Changed alignments for better experience in docked mode.
- Fixed an issue where the find list view did not navigate to results when enter was hit.
- Fixed an issue where Goto next/previous entry failed to work in the find results list when "preview selected files in find results" is turned off.
- CVE-2020-0899 Microsoft Visual Studio Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when Microsoft Visual Studio updater service improperly handles file permissions. An attacker who successfully exploited this vulnerability could overwrite arbitrary file content in the security context of the local system.- CVE-2020-0900 Visual Studio Extension Installer Service Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when the Visual Studio Extension Installer Service improperly handles file operations. An attacker who successfully exploited the vulnerability could delete files in arbitrary locations with elevated permissions.- CVE-2020-5260 Git for Visual Studio Credential Leak Vulnerability due to insufficient validation on URLs
A credential leak vulnerability exists when specially crafted URLs are parsed and sent to credential helpers. This can lead to credentials being sent to the wrong host.