ANS for February 2012, and some notes on SDL

Hello. Today we’re releasing our advance notification for the February security bulletin release, which is scheduled for Tuesday, February 14. This month’s release includes nine bulletins addressing 21 vulnerabilities in Microsoft Windows, Office, Internet Explorer, and .NET/Silverlight. As always, we recommend that customers review the ANS summary page for more information and prepare for the testing and deployment of these bulletins as soon as possible.

We’ll release all nine bulletins on Tuesday, February 14 at approximately 10 a.m. PST. Revisit this blog on Tuesday for our official risk and impact analysis, along with deployment guidance and a video overview of the release.

Here at MSRC we know that over the years, information on Microsoft’s Security Development Lifecycle system has been downloaded over 850,000 times so far. (Happy coding, everyone!) As part of our look back over the first ten years of Trustworthy Computing, our friends in the SDL program caught up with Steve Lipner, our senior director of security engineering strategy, and asked him how his team made that famous Bill Gates memo the law of the land at Microsoft. Of course, the SDL is a living process and continues to change and grow. For information on what’s ahead, including news about our brand-new Security Development Conference, take a look at <>a href=””?Tim Rains’ post on the Security Blog. Perhaps some of us will see you in DC in May?

In the meantime, please join Jonathan Ness and Pete Voss for our regular webcast on Wednesday. They’ll go into detail about the bulletins and answer questions live on the air. See below for registration information.

Date: Wednesday, February 15
Time: 11:00 a.m. PST (UTC -8)
Click Here To Register

Angela Gunn
Trustworthy Computing.