On July 14, 2015, Microsoft released a security vulnerability for SQL Server. This is classified as MS15-058, and was released along with other patches for Microsoft products.
This issue could allow remote code execution with a query. This is documented in KB article 3065718. There are patches for these SQL Server versions:
- SQL Server 2008
- SQL Server 2008 R2
- SQL Server 2012
- SQL Server 2014
The KB article contains the specific version that will apply for your Service Pack and GDR or QFE branch.
There are also a few non-security related fixed in this patch.