Skip to main content
MSRC

Monthly bulletin release

December 2012 Security Bulletin Webcast, Q&A, and Slide Deck

Monday, December 17, 2012

Hello, Today we’re publishing the December 2012 Security Bulletin Webcast Questions & Answers page. During the webcast, we fielded five questions focusing primarily on Microsoft Word and the Office compatibility pack in MS12-079. All questions are included on the Q&A page. We invite our customers to join us for the next public webcast on Wednesday, January 9th at 11 a.

It’s That Time of Year, For the December 2012 Bulletin Release

Tuesday, December 11, 2012

Happy holidays! I hope everyone is enjoying the festive season. I like to get my holiday shopping done early, and this year was no exception. In the middle of my holiday shopping last week, as I passed my cash from one store to the next, I was reminded of “Pass-the-Hash.” (My mind does tend to wander a bit as I shop.

November 2012 Bulletin Release

Tuesday, November 13, 2012

Security Updates Today we released six security bulletins to help protect our customers - four Critical, one Important, and one Moderate – addressing 19 vulnerabilities in Microsoft Windows Shell, Windows Kernel, Internet Explorer, Internet Information Services (IIS), .NET Framework, and Excel. For those who need to prioritize deployment, we recommend focusing on these two Critical updates first:

Advance Notification Service for November 2012 Security Bulletin Release

Thursday, November 08, 2012

Today, we’re providing advance notification for six bulletins to help protect customers against 19 CVEs. The four Critical-rated updates will address 13 vulnerabilities in Microsoft Windows, Internet Explorer and the .NET Framework. One bulletin rated Important will address four vulnerabilities in Microsoft Office and finally, one Moderate update will address two issues in Microsoft Windows.

Welcome to the 1024-bit world and the October security updates

Tuesday, October 09, 2012

As previously mentioned in the Advance Notification blog on Thursday, today we’re releasing seven bulletins, one Critical-class and six Important-class bulletins. Before we discuss those releases, let’s take a closer look at the Security Advisories we also released today. Security Advisory 2661254 We began discussing this issue in June, and originally released this advisory in August.

August 2012 Security Bulletin Webcast, Q&A, and Slide Deck

Friday, August 17, 2012

Hello. Today we’re publishing the August 2012 Security Bulletin Webcast Questions & Answers page. During the webcast, we fielded twelve questions focusing primarily on MS12-060 covering Windows Common Controls, MS12-052 regarding Internet Explorer, and Security Advisory 2661254 addressing trust certificates with RSA keys less than 1024 bit key lengths. Three additional questions were answered after the webcast.

Advance Notification Service for August 2012 Security Bulletin Release

Thursday, August 09, 2012

Today we’re providing advanced notification on the release of nine bulletins, five Critical and four Important, for August 2012. The five Critical security bulletins are addressing ten vulnerabilities in Microsoft Windows, Internet Explorer, Exchange, SQL Server, Server Software, and Developer Tools. The bulletin for Exchange will address the issue first described in Security Advisory 2737111.

Microsoft security updates and the Common Vulnerability Reporting Framework

Thursday, May 17, 2012

As a part of the Industry Consortium for Advancement of Security on the Internet (ICASI), Microsoft is pleased to present an initial set of monthly security updates – originally released on May 8 – in the consortium’s newly established Common Vulnerability Reporting Framework (CVRF) format, for your examination and feedback. Today, ICASI released version 1.

MSRC looks back at ten years, and the February 2012 bulletins

Tuesday, February 14, 2012

Ever wondered where Update Tuesday bulletins come from, or what it’s like around Microsoft when a serious information-security situation arises? Or wondered who precisely is responsible for getting your monthly bulletin releases out the door? Update Tuesday, which brings us here today, is one of the most prominent results of that famous Bill Gates memo that put security at the center of Microsoft’s development and support efforts – just over 10 years ago.