Software Update: Microsoft Visual Studio 2019 16.7.3

Microsoft has released a third update for version 16.7.0 of Visual Studio 2019. This popular programming development environment has useful options to make programming easier in Visual C++, Visual Basic, C#, F#, Python and R, among others. The complete list of changes in the 2019 edition can be found in the accompanying release notes. Below are the improvements Microsoft has made in this version:

Security Advisory Notice

• CVE-2020-1130 Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability
  An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector improperly handles data operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context.
• CVE-2020-1133 Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability
  An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector improperly handles file operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context.
• CVE-2020-16856 Visual Studio Remote Code Execution Vulnerability
  A remote code execution vulnerability exists in Visual Studio when it improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user.
• CVE-2020-16874 Visual Studio Remote Code Execution Vulnerability
  A remote code execution vulnerability exists in Visual Studio when it improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user.
• CVE-2020-1045 Microsoft ASP.NET Core Security Feature Bypass Vulnerability
  A security feature bypass vulnerability exists in the way Microsoft ASP.NET Core parses encoded cookie names. The ASP.NET Core cookie parser decodes entire cookie strings which could allow a malicious attacker to set a second cookie with the name being percent encoded.

Additional Issues Fixed in this Release

• Fixed a compiler crash for switch statements or switch expressions that use pattern matching.
• Restored the “Stop Debugging(Shift +F5)” workflow for Unit Testing by terminating the test run.
• Prevent VS crash on switching project configuration when WinForms .NET Core designer has unsaved changes.
• Out of support versions of .NET Core will no longer be reinstalled during a repair or upgrade if they were removed outside of VS setup.
• Fixed an issue where External Dependencies weren’t accurately searched in Find in Files.
• Reintroduced the “Commit…” button in the Git submenu in Solution Explorer’s context menu.
• Fixed a bug that caused the TFVC Check-in Notes label to be invisible.
• Fix crash when using WinForm designer in SDK-style csproj with multiple target frameworks.
• Fixed issue where was reporting an invalid markup error.

Top Issues Fixed from Developer Community in Visual Studio 2019 version 16.7.3

• VS 2019 cannot find the commit code function after the modified commit code
• WinForms Designer does not load Forms with visual inheritance. VS CRASH!
• Find in Files–Some *.h files are not included in the search even though they clearly belong to a project
• Regression c++ background intellisense hangs on opensslconf.h fron a unc path in 16.7
• C++ refactoring by change signature forgets header files
• TFVC check in notes not displayed in vs 2019
• WPF XAML Designer – Style Data Context Design Time
• Stop Debugging (Shift+ F5) does not stop the test run VS 2019 update 16.7.2.
• VS2019 won’t open folder with CMake project