Bulletins

November 2012 Bulletin Release

Security UpdatesToday we released six security bulletins to help protect our customers – four Critical, one Important, and one Moderate – addressing 19 vulnerabilities in Microsoft Windows Shell, Windows Kernel, Internet Explorer, Internet Information Services (IIS), .NET Framework, and Excel. For those who need to prioritize deployment, we recommend focusing on these two Critical updates …

November 2012 Bulletin Release Read More »

Advance Notification Service for November 2012 Security Bulletin Release

Today, we’re providing advance notification for six bulletins to help protect customers against 19 CVEs. The four Critical-rated updates will address 13 vulnerabilities in Microsoft Windows, Internet Explorer and the .NET Framework. One bulletin rated Important will address four vulnerabilities in Microsoft Office and finally, one Moderate update will address two issues in Microsoft Windows. …

Advance Notification Service for November 2012 Security Bulletin Release Read More »

Welcome to the 1024-bit world and the October security updates

As previously mentioned in the Advance Notification blog on Thursday, today we’re releasing seven bulletins, one Critical-class and six Important-class bulletins. Before we discuss those releases, let’s take a closer look at the Security Advisories we also released today. Security Advisory 2661254 We began discussing this issue in June, and originally released this advisory in …

Welcome to the 1024-bit world and the October security updates Read More »

August 2012 Bulletin Release

Security Advisory 2661254 – Update For Minimum Certificate Key LengthBefore we get into the details of this month’s bulletin release, let’s take a look at an important change on how Windows deals with certificates that have RSA keys of less than 1024 bits in length. We’ve been talking about this subject since June, and today …

August 2012 Bulletin Release Read More »

Microsoft security updates and the Common Vulnerability Reporting Framework

As a part of the Industry Consortium for Advancement of Security on the Internet (ICASI), Microsoft is pleased to present an initial set of monthly security updates – originally released on May 8 – in the consortium’s newly established Common Vulnerability Reporting Framework (CVRF) format, for your examination and feedback. Today, ICASI released version 1.1 …

Microsoft security updates and the Common Vulnerability Reporting Framework Read More »

May 2012 Security Bulletin Webcast, Slide Deck, and Q&A

Hello, Today we published the May Security Bulletin Webcast Questions & Answers page, and the May 2012 Security Bulletin Release Webcast slide deck. During the webcast, we fielded 8 questions on various topics, including bulletins released, deployment tools, and update detection tools. We invite our customers to join us for the next public webcast on …

May 2012 Security Bulletin Webcast, Slide Deck, and Q&A Read More »

December 2011 Bulletin Release Q&A and Slide Deck

Hello, Today we published the December Security Bulletin Webcast Questions & Answers page. We fielded six questions on various topics during the webcast, including bulletins released, deployment tools, and update detection tools. For more details on this month’s bulletins, click here to view the slide deck used in the webcast. See below to view the …

December 2011 Bulletin Release Q&A and Slide Deck Read More »

December 2011 Security Bulletin Webcast Q&A

Hosts:             Jonathan Ness, Security Development Manager, MSRC                        Jerry Bryant, Group Manager, Trustworthy Computing Communications Website:         TechNet/Security Chat Topic:     December 2011 Security Bulletin Release Date:               Wednesday, December 14, 2011  Q: Some of my users had issues with text being deleted from Word documents. Is this an issue with the Office security bulletin? A: We are not aware …

December 2011 Security Bulletin Webcast Q&A Read More »