First Microsoft Patch Tuesday of 2012
Address Eight Flaws (January 5, 2012) On Tuesday, January 10, 2012, Microsoft plans to issue seven security bulletins that address a total of eight flaws. The vulnerabilities affect Microsoft Windows and Microsoft Developer Tools and Software. Just one of the bulletins carries a maximum severity rating of critical; the other six have severity ratings of important. All currently supported versions of Windows are affected by flaws fixed in the January 2012 update. One of the vulnerability impacts is listed as “secure feature bypass,” a term that has not been used before in this context. Microsoft declined to say whether it will be issuing a fix for the SSL/TLS vulnerability; the company had planned to fix that flaw in December 2011, but pulled the patch at the last minute due to compatibility issues with SAP.
Read More: http://tinyurl.com/7-Patches
- Why Microsoft pulled the BEAST exploit patch at the last minute (thenextweb.com)
- BEAST SSL fix in supersized Patch Tuesday (go.theregister.com)
- Patch Tuesday heads-up: Windows security holes (zdnet.com)
This entry was posted on January 6, 2012 by NetSecurityIT. It was filed under Enterprise, General, General Security, Hacking, Home User, Network Security, Networking, Patching, Policies, Security and was tagged with January 5 2012, Microsoft, microsoft developer tools, microsoft patch, Microsoft Windows, Patch Tuesday, security bulletins, security holes, severity rating, severity ratings, Transport Layer Security, Vulnerability (computing), Windows.