security bulletin release

November 2012 Bulletin Release

Security UpdatesToday we released six security bulletins to help protect our customers – four Critical, one Important, and one Moderate – addressing 19 vulnerabilities in Microsoft Windows Shell, Windows Kernel, Internet Explorer, Internet Information Services (IIS), .NET Framework, and Excel. For those who need to prioritize deployment, we recommend focusing on these two Critical updates …

November 2012 Bulletin Release Read More »

October 2012 Security Bulletin Webcast, Q&A, and Slide Deck

Hello, Today we published the October Security Bulletin Webcast Questions & Answers page. During the webcast, we fielded five questions focusing primarily on Security Advisory 2661254 addressing trust certificates with RSA keys less than 1024 bit key lengths. One additional question was answered after the webcast. All questions are included on the Q&A page. We …

October 2012 Security Bulletin Webcast, Q&A, and Slide Deck Read More »

Welcome to the 1024-bit world and the October security updates

As previously mentioned in the Advance Notification blog on Thursday, today we’re releasing seven bulletins, one Critical-class and six Important-class bulletins. Before we discuss those releases, let’s take a closer look at the Security Advisories we also released today. Security Advisory 2661254 We began discussing this issue in June, and originally released this advisory in …

Welcome to the 1024-bit world and the October security updates Read More »

Internet Explorer Fix it available now; Security Update scheduled for Friday

Earlier this week, an issue impacting Internet Explorer affected a small number of customers.  The potential exists, however, that more customers could be affected.  As a result, today we have released a Fix it that is available to address that issue.  This is an easy, one-click solution that will help protect your computer right away.  …

Internet Explorer Fix it available now; Security Update scheduled for Friday Read More »

Update Tuesday overview for September 2012

As I previously mentioned in the Advance Notification blog on Thursday, today we are releasing two security bulletins, both of which are rated Important. These bulletins will increase protection by addressing two unique vulnerabilities in the following Microsoft products: MS12-061 (Visual Studio Team Foundation Server) This security update resolves a privately reported vulnerability in Visual …

Update Tuesday overview for September 2012 Read More »

Advance Notification Service for August 2012 Security Bulletin Release

Today we’re providing advanced notification on the release of nine bulletins, five Critical and four Important, for August 2012. The five Critical security bulletins are addressing ten vulnerabilities in Microsoft Windows, Internet Explorer, Exchange, SQL Server, Server Software, and Developer Tools. The bulletin for Exchange will address the issue first described in Security Advisory 2737111. …

Advance Notification Service for August 2012 Security Bulletin Release Read More »

Gadgets, certificate housekeeping and the July 2012 bulletins

Before we dive into the July security updates, let’s change up the normal order and take a look at the two Security Advisories we are releasing today. One takes an exciting step into the future, while the other prepares us to take an equally important step away from the past. Security Advisory 2719662 Today we’re …

Gadgets, certificate housekeeping and the July 2012 bulletins Read More »

Certificate Trust List update and the June 2012 bulletins

For Update Tuesday we’re releasing seven security bulletins – three Critical-class and four Important – addressing 26 unique CVEs to further improve the security postures of Microsoft Windows, Internet Explorer, Dynamics AX, Microsoft Lync, and the Microsoft .NET Framework. In addition to the security bulletins, we are releasing an automatic updater feature for Windows Vista …

Certificate Trust List update and the June 2012 bulletins Read More »

Microsoft security updates and the Common Vulnerability Reporting Framework

As a part of the Industry Consortium for Advancement of Security on the Internet (ICASI), Microsoft is pleased to present an initial set of monthly security updates – originally released on May 8 – in the consortium’s newly established Common Vulnerability Reporting Framework (CVRF) format, for your examination and feedback. Today, ICASI released version 1.1 …

Microsoft security updates and the Common Vulnerability Reporting Framework Read More »

Strength, flexibility and the March 2012 security bulletins

Hello. Today we’re releasing six security bulletins – one Critical-class, four Important and one Moderate – addressing seven issues in Microsoft Windows, Visual Studio, and Expression Design. We recommend that customers focus on MS12-020, our sole critical-class bulletin, as the March deployment priority. A little about MS12-020: MS12-020 (Windows): This bulletin addresses one Critical-class issue …

Strength, flexibility and the March 2012 security bulletins Read More »