Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Patch Tuesday heads-up:17 bulletins, 64 vulnerabilities


08 Apr 2011   #1

Win 7 32 Home Premium, Win 7 64 Pro, Win 8.1 Pro
 
 
Patch Tuesday heads-up:17 bulletins, 64 vulnerabilities

Quote:
Microsoft is planning a monster Patch Tuesday next week: 17 bulletins with fixes for 64 documented vulnerabilities across Microsoft Windows, Microsoft Office, Internet Explorer, Visual Studio, .NET Framework and GDI+.

According to Microsoft’s advance notice, 9 of the 17 bulletins will be rated “critical,” the company’s highest severity rating.

This month’s batch of patches, due at 1:00 pm Eastern on Tuesday April 12, will include an Internet Explorer browser update that fixes a pair of publicly known security problems:

This month we’ll be closing some issues that Microsoft has already previously spoken to, including the SMB Browser (Critical) issue publicly disclosed Feb. 15. Microsoft assessed the situation and reported that although the vulnerability could theoretically allow Remote Code Execution, that was extremely unlikely. To this day, we have seen no evidence of attacks.

We are also planning a fix for the MHTML vulnerability in Windows, rated Important. We alerted people to this issue with Security Advisory 2501696 (including a Fix-It that fully protected customers once downloaded) back in late January. In March, we updated the advisory to let people know we were aware of limited, targeted attacks.

There is no word on whether this IE update will include a fix for the multiple bugs used in the winning CanSecWest Pwn2Own exploit.

All versions of Windows are affected by this batch of updates, including the newest Windows 7.
Article:

Patch Tuesday heads-up: 17 bulletins, 64 vulnerabilities | ZDNet

My System SpecsSystem Spec
.

12 Apr 2011   #2

Windows 7 Ultimate x64 SP1
 
 

16 updates for me.
My System SpecsSystem Spec
12 Apr 2011   #3

Windows 7 Ultimate x64
 
 

Argghh....just ran WSUS and synchronized and I have 99 updates to review for the company this morning. Jeez it takes me like a solid week to get through all of these updates and then I have to do it all again 3 weeks later.
My System SpecsSystem Spec
.


12 Apr 2011   #4
Microsoft MVP

 
 

Microsoft Security Bulletin Summary for April 12 2011
Microsoft Security Bulletin Summary for April 12 2011
Published: April 12 2011

Note: There may be latency issues due to replication, if the page does not display keep refreshing

Note: Security Center - Bulletins Advisories Tools Guidance Resources and Microsoft Safety & Security Center are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the Microsoft.com download center or Windows Update. See the individual bulletins for details.
Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

Today Microsoft released the following Security Bulletin(s).

Bulletin Summary:

Microsoft Security Bulletin Summary for April 2011
Critical (9)
Microsoft Security Bulletin MS11-018
Cumulative Security Update for Internet Explorer (2497640)
Microsoft Security Bulletin MS11-018 - Critical: Cumulative Security Update for Internet Explorer (2497640)
Microsoft Security Bulletin MS11-019
Vulnerabilities in SMB Client Could Allow Remote Code Execution (2511455)
Microsoft Security Bulletin MS11-019 - Critical: Vulnerabilities in SMB Client Could Allow Remote Code Execution (2511455)
Microsoft Security Bulletin MS11-020
Vulnerability in SMB Server Could Allow Remote Code Execution (2508429)
Microsoft Security Bulletin MS11-020 - Critical: Vulnerability in SMB Server Could Allow Remote Code Execution (2508429)
Microsoft Security Bulletin MS11-027
Cumulative Security Update of ActiveX Kill Bits (2508272)
Microsoft Security Bulletin MS11-027 - Critical: Cumulative Security Update of ActiveX Kill Bits (2508272)
Microsoft Security Bulletin MS11-028
Vulnerability in .NET Framework Could Allow Remote Code Execution (2484015)
Microsoft Security Bulletin MS11-028 - Critical: Vulnerability in .NET Framework Could Allow Remote Code Execution (2484015)
Microsoft Security Bulletin MS11-029
Vulnerability in GDI+ Could Allow Remote Code Execution (2489979)
Microsoft Security Bulletin MS11-029 - Critical: Vulnerability in GDI+ Could Allow Remote Code Execution (2489979)
Microsoft Security Bulletin MS11-030
Vulnerability in DNS Resolution Could Allow Remote Code Execution (2509553)
Microsoft Security Bulletin MS11-030 - Critical: Vulnerability in DNS Resolution Could Allow Remote Code Execution (2509553)
Microsoft Security Bulletin MS11-031
Vulnerability in JScript and VBScript Scripting Engines Could Allow Remote Code Execution (2514666)
Microsoft Security Bulletin MS11-031 - Critical: Vulnerability in JScript and VBScript Scripting Engines Could Allow Remote Code Execution (2514666)
Microsoft Security Bulletin MS11-032
Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Remote Code Execution (2507618)
Microsoft Security Bulletin MS11-032 - Critical: Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Remote Code Execution (2507618)
Important (8)
Microsoft Security Bulletin MS11-021
Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2489279)
Microsoft Security Bulletin MS11-021 - Important: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2489279)
Microsoft Security Bulletin MS11-022
Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (2489283)
Microsoft Security Bulletin MS11-022 - Important: Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (2489283)
Microsoft Security Bulletin MS11-023
Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2489293)
Microsoft Security Bulletin MS11-023 - Important: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2489293)
Microsoft Security Bulletin MS11-024
Vulnerability in Windows Fax Cover Page Editor Could Allow Remote Code Execution (2527308)
Microsoft Security Bulletin MS11-024 - Important: Vulnerability in Windows Fax Cover Page Editor Could Allow Remote Code Execution (2527308)
Microsoft Security Bulletin MS11-025
Vulnerability in Microsoft Foundation Class (MFC) Library Could Allow Remote Code Execution (2500212)
Microsoft Security Bulletin MS11-025 - Important: Vulnerability in Microsoft Foundation Class (MFC) Library Could Allow Remote Code Execution (2500212)
Microsoft Security Bulletin MS11-026
Vulnerability in MHTML Could Allow Information Disclosure (2503658)
Microsoft Security Bulletin MS11-026 - Important: Vulnerability in MHTML Could Allow Information Disclosure (2503658)
Microsoft Security Bulletin MS11-033
Vulnerability in WordPad Text Converters Could Allow Remote Code Execution (2485663)
Microsoft Security Bulletin MS11-033 - Important: Vulnerability in WordPad Text Converters Could Allow Remote Code Execution (2485663)
Microsoft Security Bulletin MS11-034
Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2506223)
Microsoft Security Bulletin MS11-034 - Important: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2506223)





Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.
If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary.
As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.
Security Tool
Find out if you are missing important Microsoft product updates by using MBSA.
My System SpecsSystem Spec
12 Apr 2011   #5

Windows 7 Home Premium 64bit
 
 

All 17 updates downloaded and installed without any noticeable problems
My System SpecsSystem Spec
12 Apr 2011   #6

Windows 8.1 Pro
 
 

21 here, plus two unchecked

This includes 3 C++ updates - 2005, 2008, 2010
My System SpecsSystem Spec
12 Apr 2011   #7

Microsoft Community Contributor Award Recipient

Windows 7 SP1, Home Premium, 64-bit
 
 

Hmmmm.................it offered me nothing at all.
My System SpecsSystem Spec
12 Apr 2011   #8

Windows 7 Professional 64 Bit SP1
 
 

13, unlucky for some.
My System SpecsSystem Spec
12 Apr 2011   #9

windows 7 ultimate
 
 

Quote   Quote: Originally Posted by ignatzatsonic View Post
Hmmmm.................it offered me nothing at all.
This usually means you have been chosen for the "V.I.P. special client service". Batten down the hatches! Prepare to be bombarded!
My System SpecsSystem Spec
12 Apr 2011   #10

Windows 8.1 Pro
 
 

Quote   Quote: Originally Posted by ignatzatsonic View Post
Hmmmm.................it offered me nothing at all.
Yeah I don't know how you didn't get offered anyting. That is kind of weird

Anyway I just installed 23 updates.
My System SpecsSystem Spec
Reply

 Patch Tuesday heads-up:17 bulletins, 64 vulnerabilities




Thread Tools




Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 05:15 AM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33