Patch Tuesday heads-up:17 bulletins, 64 vulnerabilities

Page 1 of 4 123 ... LastLast

  1. Posts : 7,781
    Win 7 32 Home Premium, Win 7 64 Pro, Win 8.1, Win 10
       #1

    Patch Tuesday heads-up:17 bulletins, 64 vulnerabilities


    Microsoft is planning a monster Patch Tuesday next week: 17 bulletins with fixes for 64 documented vulnerabilities across Microsoft Windows, Microsoft Office, Internet Explorer, Visual Studio, .NET Framework and GDI+.

    According to Microsoft’s advance notice, 9 of the 17 bulletins will be rated “critical,” the company’s highest severity rating.

    This month’s batch of patches, due at 1:00 pm Eastern on Tuesday April 12, will include an Internet Explorer browser update that fixes a pair of publicly known security problems:

    This month we’ll be closing some issues that Microsoft has already previously spoken to, including the SMB Browser (Critical) issue publicly disclosed Feb. 15. Microsoft assessed the situation and reported that although the vulnerability could theoretically allow Remote Code Execution, that was extremely unlikely. To this day, we have seen no evidence of attacks.

    We are also planning a fix for the MHTML vulnerability in Windows, rated Important. We alerted people to this issue with Security Advisory 2501696 (including a Fix-It that fully protected customers once downloaded) back in late January. In March, we updated the advisory to let people know we were aware of limited, targeted attacks.

    There is no word on whether this IE update will include a fix for the multiple bugs used in the winning CanSecWest Pwn2Own exploit.

    All versions of Windows are affected by this batch of updates, including the newest Windows 7.
    Article:

    Patch Tuesday heads-up: 17 bulletins, 64 vulnerabilities | ZDNet
      My Computer


  2. Posts : 18,404
    Windows 7 Ultimate x64 SP1
       #2

    16 updates for me.
      My Computer


  3. Posts : 7,878
    Windows 7 Ultimate x64
       #3

    Argghh....just ran WSUS and synchronized and I have 99 updates to review for the company this morning. Jeez it takes me like a solid week to get through all of these updates and then I have to do it all again 3 weeks later.
      My Computer


  4. Posts : 163
    windows 7
       #4

    Microsoft Security Bulletin Summary for April 12 2011
    Microsoft Security Bulletin Summary for April 12 2011
    Published: April 12 2011

    Note: There may be latency issues due to replication, if the page does not display keep refreshing

    Note: Security Center - Bulletins Advisories Tools Guidance Resources and Microsoft Safety & Security Center are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the Microsoft.com download center or Windows Update. See the individual bulletins for details.
    Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

    Today Microsoft released the following Security Bulletin(s).

    Bulletin Summary:

    Microsoft Security Bulletin Summary for April 2011
    Critical (9)
    Microsoft Security Bulletin MS11-018
    Cumulative Security Update for Internet Explorer (2497640)
    Microsoft Security Bulletin MS11-018 - Critical: Cumulative Security Update for Internet Explorer (2497640)
    Microsoft Security Bulletin MS11-019
    Vulnerabilities in SMB Client Could Allow Remote Code Execution (2511455)
    Microsoft Security Bulletin MS11-019 - Critical: Vulnerabilities in SMB Client Could Allow Remote Code Execution (2511455)
    Microsoft Security Bulletin MS11-020
    Vulnerability in SMB Server Could Allow Remote Code Execution (2508429)
    Microsoft Security Bulletin MS11-020 - Critical: Vulnerability in SMB Server Could Allow Remote Code Execution (2508429)
    Microsoft Security Bulletin MS11-027
    Cumulative Security Update of ActiveX Kill Bits (2508272)
    Microsoft Security Bulletin MS11-027 - Critical: Cumulative Security Update of ActiveX Kill Bits (2508272)
    Microsoft Security Bulletin MS11-028
    Vulnerability in .NET Framework Could Allow Remote Code Execution (2484015)
    Microsoft Security Bulletin MS11-028 - Critical: Vulnerability in .NET Framework Could Allow Remote Code Execution (2484015)
    Microsoft Security Bulletin MS11-029
    Vulnerability in GDI+ Could Allow Remote Code Execution (2489979)
    Microsoft Security Bulletin MS11-029 - Critical: Vulnerability in GDI+ Could Allow Remote Code Execution (2489979)
    Microsoft Security Bulletin MS11-030
    Vulnerability in DNS Resolution Could Allow Remote Code Execution (2509553)
    Microsoft Security Bulletin MS11-030 - Critical: Vulnerability in DNS Resolution Could Allow Remote Code Execution (2509553)
    Microsoft Security Bulletin MS11-031
    Vulnerability in JScript and VBScript Scripting Engines Could Allow Remote Code Execution (2514666)
    Microsoft Security Bulletin MS11-031 - Critical: Vulnerability in JScript and VBScript Scripting Engines Could Allow Remote Code Execution (2514666)
    Microsoft Security Bulletin MS11-032
    Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Remote Code Execution (2507618)
    Microsoft Security Bulletin MS11-032 - Critical: Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Remote Code Execution (2507618)
    Important (8)
    Microsoft Security Bulletin MS11-021
    Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2489279)
    Microsoft Security Bulletin MS11-021 - Important: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2489279)
    Microsoft Security Bulletin MS11-022
    Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (2489283)
    Microsoft Security Bulletin MS11-022 - Important: Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (2489283)
    Microsoft Security Bulletin MS11-023
    Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2489293)
    Microsoft Security Bulletin MS11-023 - Important: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2489293)
    Microsoft Security Bulletin MS11-024
    Vulnerability in Windows Fax Cover Page Editor Could Allow Remote Code Execution (2527308)
    Microsoft Security Bulletin MS11-024 - Important: Vulnerability in Windows Fax Cover Page Editor Could Allow Remote Code Execution (2527308)
    Microsoft Security Bulletin MS11-025
    Vulnerability in Microsoft Foundation Class (MFC) Library Could Allow Remote Code Execution (2500212)
    Microsoft Security Bulletin MS11-025 - Important: Vulnerability in Microsoft Foundation Class (MFC) Library Could Allow Remote Code Execution (2500212)
    Microsoft Security Bulletin MS11-026
    Vulnerability in MHTML Could Allow Information Disclosure (2503658)
    Microsoft Security Bulletin MS11-026 - Important: Vulnerability in MHTML Could Allow Information Disclosure (2503658)
    Microsoft Security Bulletin MS11-033
    Vulnerability in WordPad Text Converters Could Allow Remote Code Execution (2485663)
    Microsoft Security Bulletin MS11-033 - Important: Vulnerability in WordPad Text Converters Could Allow Remote Code Execution (2485663)
    Microsoft Security Bulletin MS11-034
    Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2506223)
    Microsoft Security Bulletin MS11-034 - Important: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2506223)





    Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.
    If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary.
    As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.
    Security Tool
    Find out if you are missing important Microsoft product updates by using MBSA.
      My Computer


  5. Posts : 357
    Windows 7 Home Premium 64bit
       #5

    All 17 updates downloaded and installed without any noticeable problems
      My Computer


  6. Posts : 7,683
    Windows 10 Pro
       #6

    21 here, plus two unchecked

    This includes 3 C++ updates - 2005, 2008, 2010
      My Computer


  7. Posts : 12,012
    Windows 7 Home Premium SP1, 64-bit
       #7

    Hmmmm.................it offered me nothing at all.
      My Computer


  8. Posts : 826
    Windows 7 Professional 64 Bit SP1
       #8

    13, unlucky for some.
      My Computer


  9. Posts : 927
    windows 7 ultimate
       #9

    ignatzatsonic said:
    Hmmmm.................it offered me nothing at all.
    This usually means you have been chosen for the "V.I.P. special client service". Batten down the hatches! Prepare to be bombarded!
      My Computer


  10. Posts : 7,683
    Windows 10 Pro
       #10

    ignatzatsonic said:
    Hmmmm.................it offered me nothing at all.
    Yeah I don't know how you didn't get offered anyting. That is kind of weird

    Anyway I just installed 23 updates.
      My Computer


 
Page 1 of 4 123 ... LastLast

  Related Discussions
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 04:51.
Find Us