monthly bulletin release

December 2012 Security Bulletin Webcast, Q&A, and Slide Deck

Hello, Today we’re publishing the December 2012 Security Bulletin Webcast Questions & Answers page. During the webcast, we fielded five questions focusing primarily on Microsoft Word and the Office compatibility pack in MS12-079. All questions are included on the Q&A page. We invite our customers to join us for the next public webcast on Wednesday, …

December 2012 Security Bulletin Webcast, Q&A, and Slide Deck Read More »

Advance Notification Service for December 2012 Security Bulletin Release

While it may be the most wonderful time of the year, we know it can also be the busiest time of the year. With that in mind, we’re providing advance notification that next Tuesday, Dec. 11, 2012, we’ll release seven security bulletins; five Critical and two Important, which address 11 vulnerabilities. The Critical bulletins address vulnerabilities …

Advance Notification Service for December 2012 Security Bulletin Release Read More »

November 2012 Bulletin Release

Security UpdatesToday we released six security bulletins to help protect our customers – four Critical, one Important, and one Moderate – addressing 19 vulnerabilities in Microsoft Windows Shell, Windows Kernel, Internet Explorer, Internet Information Services (IIS), .NET Framework, and Excel. For those who need to prioritize deployment, we recommend focusing on these two Critical updates …

November 2012 Bulletin Release Read More »

Advance Notification Service for November 2012 Security Bulletin Release

Today, we’re providing advance notification for six bulletins to help protect customers against 19 CVEs. The four Critical-rated updates will address 13 vulnerabilities in Microsoft Windows, Internet Explorer and the .NET Framework. One bulletin rated Important will address four vulnerabilities in Microsoft Office and finally, one Moderate update will address two issues in Microsoft Windows. …

Advance Notification Service for November 2012 Security Bulletin Release Read More »

Welcome to the 1024-bit world and the October security updates

As previously mentioned in the Advance Notification blog on Thursday, today we’re releasing seven bulletins, one Critical-class and six Important-class bulletins. Before we discuss those releases, let’s take a closer look at the Security Advisories we also released today. Security Advisory 2661254 We began discussing this issue in June, and originally released this advisory in …

Welcome to the 1024-bit world and the October security updates Read More »

August 2012 Security Bulletin Webcast, Q&A, and Slide Deck

Hello. Today we’re publishing the August 2012 Security Bulletin Webcast Questions & Answers page. During the webcast, we fielded twelve questions focusing primarily on MS12-060 covering Windows Common Controls,  MS12-052 regarding Internet Explorer, and Security Advisory 2661254 addressing trust certificates with RSA keys less than 1024 bit key lengths. Three additional questions were answered after …

August 2012 Security Bulletin Webcast, Q&A, and Slide Deck Read More »

Advance Notification Service for August 2012 Security Bulletin Release

Today we’re providing advanced notification on the release of nine bulletins, five Critical and four Important, for August 2012. The five Critical security bulletins are addressing ten vulnerabilities in Microsoft Windows, Internet Explorer, Exchange, SQL Server, Server Software, and Developer Tools. The bulletin for Exchange will address the issue first described in Security Advisory 2737111. …

Advance Notification Service for August 2012 Security Bulletin Release Read More »

Microsoft security updates and the Common Vulnerability Reporting Framework

As a part of the Industry Consortium for Advancement of Security on the Internet (ICASI), Microsoft is pleased to present an initial set of monthly security updates – originally released on May 8 – in the consortium’s newly established Common Vulnerability Reporting Framework (CVRF) format, for your examination and feedback. Today, ICASI released version 1.1 …

Microsoft security updates and the Common Vulnerability Reporting Framework Read More »

MSRC looks back at ten years, and the February 2012 bulletins

Ever wondered where Update Tuesday bulletins come from, or what it’s like around Microsoft when a serious information-security situation arises? Or wondered who precisely is responsible for getting your monthly bulletin releases out the door? Update Tuesday, which brings us here today, is one of the most prominent results of that famous Bill Gates memo …

MSRC looks back at ten years, and the February 2012 bulletins Read More »