MS17-014: Security Update for Microsoft Office: March 14, 2017

This security update resolves a vulnerability in Microsoft Office. To learn more about the vulnerability, see Microsoft Security Bulletin MS17-014.

• KB3178683 MS17-014: Description of the security update for Word 2007: March 14, 2017
• KB3178682 MS17-014: Description of the security update for Microsoft Office Compatibility Pack Service Pack 3: March 14, 2017
• KB3178680 MS17-014: Description of the security update for Excel Viewer 2007: March 14, 2017
• KB3178678 MS17-014: Description of the security update for Excel Services on Microsoft SharePoint Server 2007: March 14, 2017
• KB3178677 MS17-014: Description of the security update for Microsoft Office Compatibility Pack Service Pack 3: March 14, 2017
• KB3178676 MS17-014: Description of the security update for Excel 2007: March 14, 2017
• KB3178690 MS17-014: Description of the security update for Excel 2010: March 14, 2017
  
• KB3178689 MS17-014: Description of the security update for SharePoint Server 2010 Office Web Apps: March 14, 2017
• KB3178687 MS17-014: Description of the security update for Word 2010: March 14, 2017
• KB3178686 MS17-014: Description of the security update for Office 2010: March 14, 2017
• KB3178685 MS17-014: Description of the security update for Excel Services on SharePoint Server 2010: March 14, 2017
• KB3178684 MS17-014: Description of the security update for Word Automation Services on SharePoint Server 2010: March 14, 2017
  
• KB3172431 MS17-014: Description of the security update for Excel Services on SharePoint Server 2013: March 14, 2017
• KB3172542 MS17-014: Description of the security update for Excel 2013: March 14, 2017
• KB3172457 MS17-014: Description of the security update for Office Web Apps Server 2013: March 14, 2017
  
• KB3172540 MS17-014: Description of the security update for SharePoint Foundation 2013: March 14, 2017
• KB3172464 MS17-014: Description of the security update for Word 2013: March 14, 2017
• KB3178673 MS17-014: Description of the security update for Excel 2016: March 14, 2017
• KB3178694 MS17-014: Description of the security update for Word Viewer: March 14, 2017
  
• KB3178674 MS17-014: Description of the security update for Word 2016: March 14, 2017
• KB3198809 MS17-014: Description of the security update for Office for Mac 2011 14.7.2: March 14, 2017
• KB4012487 MS17-014: Description of the security update for Lync for Mac 2011: March 14, 2017

• Improves memory consumption for Microsoft Word 2013.
• Improves the translation for the VLOOKUP function and an incorrect caption when you delete a sheet in Microsoft Excel 2016.
• Adds an option to disable automatic grouping of date and time columns in PivotTables in Microsoft Excel 2016.
• Improves memory consumption for Word 2016.
• Contains fixes for the following nonsecurity issues:
  • When you use the Allow Users to Edit Ranges function to add a user to a range of data in Excel 2007, 2010, 2013, or 2016, Excel may crash.
  • When you save a workbook that has future metadata in cells with Boolean or error values in Excel 2010, Excel may crash. Alternatively, the future metadata in cells with Boolean or error values may be corrupted.
  • When you copy and paste a range of data that includes external links cross workbooks in Excel 2010, Excel 2010 may crash.
  • When you save a file that has certain future content created in later versions of Excel in Excel 2013 or 2010, Excel may crash.
  • Running VBA macros that involve hidden workbooks may be slow in Excel 2013.
  • When you enable macros in Excel 2013 on a touch-enabled device, Excel may crash.
  • When you try to open a document that has a Lotus Notes link (such as notes://xxx) in Office Web Apps, you receive one of the following error messages depending on whether the document should be viewed or edited, and the document can't be opened.
    
    This page can't be displayed.
    
    You'll need a new app to open this blocked [sic]
  • The installation of Office Web Apps Server fails in Windows Server 2012 R2 with the .NET Framework 4.6.1 installed.
  • When you browse to the action links of a question or answer (such as the Edit or Reply link) in a discussions list, no context of that message appears in the action links. Therefore, screen readers can't detect the context of the message that you focus on. The update adds a simple text string to all action links that are part of the message body.
  • In an announcements list, the email attachment of an email item is lost if the attached .eml file title contains specific characters.
  • After you enter and format a text in a table of a content editor web part in a site in Internet Explorer, Internet Explorer scrolls the page unexpectedly.
  • If your permission isn't enabled on the Manage Permissions page, you don't receive email notification as expected even if you are granted permissions.
  • When you try to apply a filter to a list view, you receive the following error message if it's grouped by a calculated column:
    
    SqlError: 'ORDER BY items must appear in the select list if SELECT DISTINCT is specified.
  • After you migrate from classic-mode to claims-based authentication in SharePoint 2013, you receive an exception when you try to access the SPFileVersion.CreatedBy property of a document.
  • When the subject line of a SharePoint alert email is longer than 75 characters and contains a mix of single-byte and double-byte characters, a carriage return line feed (CLRF) can occur between the two bytes of a double-bite character, causing the string to get corrupted.
  • Headings structure is incorrect in blogs basic view.
  • When you start a crawl for a web application that's migrated from SharePoint Server 2010, the crawl fails, and the content isn't searchable. This issue occurs because the connector retrieves the TenantId property two times.
  • When you open a document in Word Web App, you receive the following error message if there are special characters in the URL of the document:
    
    Sorry, there was a problem and we can't open this document.
  • When you try to restore a site that's backed up in a site collection, you receive the following error message if the site collection lock is set to No Access:
    
    Access to the web site has been blocked. The site isn't accessible and isn't displayed on Central Admin.
  • It's difficult for a screen reader to understand the structure between sections on a discussion board because there's only one heading. This update adds h2 and h3 labels to discussion boards for better screen reading.
  • In SharePoint Server 2013 on-premises, you can't be redirected to SharePoint Online to create sites.
  • When you print a document that is set as final in Word 2013, the date and time value disappears.
  • When you save a file that has certain future content created in later versions of Excel in Excel 2016, Excel 2016 may crash.
  • When you open a password-protected Excel Workbook through a hyperlink, a blank Excel window appears.
  • Adds new Get & Transform features in Excel 2016. See KB3141518 for more information.
  • Keyboard support for Office add-ins in the Backstage is broken.
  • If a document has certain OpenType fonts, the print preview and the printout of the document are different.
  • You can't perform mail merge with a header file by using Office Open XML documents.
  • Plain text content control does not preserve the font in VBA if the Windows language isn't English.
  • When you rest the pointer on a hyperlink, a bubble that contains the actual link is displayed. However, it disappears in a short time, so it's difficult to read the actual link.
  • It takes a long time when you repaginate a document that has a StyleRef field in Word 2016.
  • When you print a document that has markup in balloons in Word 2016, Word may crash.
  • When you delete inline shapes and add a comment in Word 2016, Word may crash.
  • When you open a document that contains text written from right to left (for example, Hebrew or Arabic text) and optional hyphens, Word 2016 may crash in some rare cases.
  • When you print a finalized document that has date and time fields inserted in Word 2016, the date and time is not displayed.
  • Character borders aren't displayed in Word 2016 for characters positioned to the left of the line's origination point (for example, in case of negative indent).
  • When you change the position of a picture font to Raised or Lowered in Word 2016, you experience unexpected scroll up and down.
  • Top and bottom paragraph borders for text inside a table may not be displayed at some zoom levels in Word 2016.

How to get help and support for this security update

Help for installing updates: Windows Update FAQ

Security solutions for IT professionals: TechNet Security Support and Troubleshooting

Help for protecting your Windows-based computer from viruses and malware: Microsoft Secure

Local support according to your country: International Support

Microsoft Office 2007 (all editions) and other software

Reference table

The following table contains the security update information for this software.

Microsoft Office 2010 (all editions)

Reference table

The following table contains the security update information for this software.

Microsoft Office 2013 (all editions)

Reference table

The following table contains the security update information for this software.

Microsoft Office 2013 RT (all editions)

Microsoft Office 2016 (all editions)

Reference table

The following table contains the security update information for this software.

Office for Mac 2011

Prerequisites

• Mac OS X version 10.5.8 or later version on an Intel processor

• Mac OS X user accounts must have administrator privileges to install this security update

Installing the update

Download and install the appropriate language version of the Microsoft Office for Mac 2011 14.7.2 Update from the Microsoft Download Center.

1. Quit any applications that are running, including virus-protection applications and all Microsoft Office applications, as they could interfere with the installation.

2. Open the Microsoft Office for Mac 2011 14.7.2 update volume on your desktop. This step might have been performed for you.

3. To start the update process, in the Microsoft Office for Mac 2011 14.7.2 update volume window, double-click Microsoft Office for Mac 2011. Update the application, and follow the instructions on the screen.

4. When the installation finishes successfully, you can remove the update installer from your hard disk. To verify that the installation finished successfully, see Verifying Update Installation. To remove the update installer, first drag the Microsoft Office for Mac 2011 14.7.2 update volume to the Trash, and then drag the file that you downloaded to the Trash.

To verify that a security update is installed on an affected system, follow these steps:

1. In Finder, navigate to the Application Folder (Microsoft Office 2011).

2. Select Word, Excel, PowerPoint or Outlook and launch the application.

3. On the application menu, click About Application_Name (where Application_Name is Word, Excel, PowerPoint or Outlook).

Restart requirement

This update does not require you to restart your computer.

Removing the update

This security update cannot be uninstalled.

Additional Information

If you have technical questions or problems downloading or using this update, see Microsoft for Mac Support to learn about the support options that are available to you.

Microsoft SharePoint Server 2007 (all editions)

Reference table

The following table contains the security update information for this software.

Microsoft SharePoint Server 2010 (all editions)

Reference table

The following table contains the security update information for this software.

Microsoft SharePoint Server 2013 (all editions)

Reference table

The following table contains the security update information for this software.

Microsoft Office Web Apps 2010 (all versions)

Reference table

The following table contains the security update information for this software.

Microsoft Office Web Apps 2013 (all versions)

Reference table

The following table contains the security update information for this software.

Lync for Mac 2011

Prerequisites

Before you install the Lync for Mac 2011 14.4.3 update on your computer, you must uninstall any version of Lync for Mac 2011 that's earlier than Lync for Mac 2011 14.0.4. Additionally, you must make sure that the computer is running Mac OS X 10.5 or a later version of the Mac OS X operating system.

To verify that the computer meets the operating system version prerequisite, click About This Mac on the Apple menu.

To determine the version of Lync for Mac 2011 that's installed on your computer, follow these steps:

1. On the Go menu, click Applications.

2. Start Lync for Mac 2011.

3. On the Lync menu, click About Lync.

Installing the update

Download and install the Microsoft Lync for Mac 2011 14.4.3_170308 Update from the Microsoft Download Center.

1. Quit any applications that are running, including all Office applications, Microsoft Messenger, and Office Notifications, because they might interfere with the installation.

2. Make sure that your computer meets the minimum system requirements.

3. Click Download, or click the link for the language version that you want.

4. Follow the instructions on the screen to save the file to your hard disk. If you are using Safari, the downloaded file is saved to the desktop unless you specified a different location in the Preferences dialog box of Safari. To check your preferences, on the Safari menu, click Preferences, and then click General.

5. Double-click the file that you downloaded in stepd 3-4 to place the Microsoft Lync for Mac 2011 Update volume on your desktop, and then double-click the volume to open it. This step might have been performed for you.

6. In the Microsoft Lync for Mac 2011 Update volume window, double-click the Lync for Mac 2011 Update application to start the update process, and then follow the instructions on the screen.

7. If the installation finishes successfully, you can remove the update installer from your hard disk. To remove the update installer, first drag the Microsoft Lync for Mac 2011 update volume to the Trash, and then drag the file that you downloaded to the Trash.

Verifying update installation

To verify that a security update is installed on an affected system, follow these steps:

1. On the Go menu, click Applications.

2. Start Lync for Mac 2011.

3. On the Lync menu, click About Lync.

Restart requirement

After you install the Lync for Mac 2011 14.4.3 update, we recommend that you restart the computer before you sign in to Lync for Mac 2011.

Removing the update

To uninstall the update drag the Lync for Mac 2011 file that you downloaded to the Trash.

Additional information

If you have technical questions or problems downloading or using this update, see Office frequently asked questions.