Security Patches For Windows Xp
Tue, 13 Oct 2009 11:43:39 +0000
Microsoft to release 13 new security patches, on the forthcoming Tuesday (October 13th), as per the announcement made, last Thursday, on The Microsoft Security Response Center (MSRC). Eight of the patches, out of thirteen, are rated “Critical” whereas other five are acknowledged as “Important”. At least six of the 13 patches will require a restart.
These patches are ought to address 34 vulnerabilities that affect: Windows, Internet Explorer, Office, Silverlight, Forefront, Developer Tools, and SQL Server.
Microsoft releasing security bulletins, on a monthly basis, is nothing new. However, the catch this time is that this month’s security bulletins include five Windows 7 security fixes, out of which one is rated “Critical” while the others are rated as ”Important”.
Jerry Bryant, its security program manager, stated:
Usually we do not go into this level of detail in the advance notification but we felt that it is important guidance so customers can plan accordingly and deploy these updates as soon as possible.
Windows 7’s predecessors, Windows Xp and Vista, will also be on receiving end as the former will receive nine
updates (out of which six will be critical) and the latter will get eight (out of which five will be critical).
Live Webcast will also be held by Redmond Company, on October 14 at 11:00am PST, to address customer questions about the bulletin.
Ars Technica has provided the exact breakdown of the bulletins:
* Bulletin 1: Critical (Remote Code Execution), Windows
* Bulletin 2: Critical (Remote Code Execution), Windows
* Bulletin 3: Critical (Remote Code Execution), Windows
* Bulletin 4: Critical (Remote Code Execution), Windows
* Bulletin 5: Critical (Remote Code Execution), Windows, Internet Explorer
* Bulletin 6: Critical (Remote Code Execution), Windows
* Bulletin 7: Important (Spoofing), Windows
* Bulletin 8: Important (Remote Code Execution), Windows
* Bulletin 9: Important (Elevation of Privilege), Windows
* Bulletin 10: Important (Denial of Service), Windows
* Bulletin 11: Critical (Remote Code Execution), Office
* Bulletin 12: Critical (Remote Code Execution), Windows, Silverlight
* Bulletin 13: Critical (Remote Code Execution), Windows, Office, SQL Server, Developer Tools, Forefront
[via] Arstechnica
Redmond, Washington based Microsoft Corporation (NasdaqGS: MSFT) has issued the company’s familiar Patch Tuesday notification, slated for deployment via Windows Update on October 13, 2009. This package set comprises thirteen updates for a wide range of issues, including patches for Windows 7 RTM. A snippet of the advisory appears after the jump, as well as other news stories related to this post.
From HeiseSecurity: “13 security updates on the forthcoming Microsoft Patch Tuesday”
Microsoft has announced 13 bulletins for the forthcoming Patch Tuesday on the 13th of October. Eight of the bulletins describe critical holes in Windows, Office, Silverlight, Forefront, SQL Server and Microsoft’s Developer Tools. Five of the holes affect Windows 7, which means that the first security updates will have been released before Windows 7 officially goes on sale, although the operating system has been available to download via MSDN for several weeks and is already in production use with a number of customers….”
Microsoft Security Bulletin Advance Notification for October 2009
Microsoft Security Bulletin Advance Notification issued: October 8, 2009
Microsoft Security Bulletins to be issued: October 13, 2009
This is an advance notification of security bulletins that Microsoft is intending to release on October 13, 2009.
This bulletin advance notification will be replaced with the October bulletin summary on October 13, 2009. For more information about the bulletin advance notification service, see Microsoft Security Bulletin Advance Notification.
To receive automatic notifications whenever Microsoft Security Bulletins are issued, subscribe to Microsoft Technical Security Notifications.
Microsoft will host a webcast to address customer questions on these bulletins on October 14, 2009, at 11:00 AM Pacific Time (US & Canada). Register now for the October security bulletin webcast. After this date, this webcast is available on-demand. For more information, see Microsoft Security Bulletin Summaries and Webcasts.
Microsoft also provides information to help customers prioritize monthly security updates with any non-security, high-priority updates that are being released on the same day as the monthly security updates. Please see the section, Other Information.
Bulletin Information