August Patch Tuesday: 7 critical patches promised
August will be a big month for Microsoft security patches, as the company said it plans to release 12 updates, seven of them critical, on Patch Tuesday next week.
The critical patches affect Windows, Internet Explorer, Access, Windows Media Player and Microsoft Office. Updates for Office, which has kept Microsoft busy with security updates lately, include individual patches for PowerPoint and Excel.
Microsoft also will release five patches rated important, four of which affect Windows and one of which affects Office. Two of the Windows patches also affect other software -- one is for Outlook Express and Windows Mail, and the other affects Windows Messenger.
Older versions of Windows are mainly affected by the critical patches, including Windows 2000, Windows XP and Windows Server 2003. Microsoft tends to rate patches for older versions of its software more critical than newer versions.
The latest version of the Windows client OS, Windows Vista, will get two important patches; however, Internet Explorer 7 and Windows Media Player 11, which run on Vista, will get one critical patch each.
Patch Tuesday, the second Tuesday of every month when Microsoft releases its security updates, has had a light load for the past couple of months, with Microsoft releasing five critical patches in July and three in June.
More information about Tuesday's updates can be found on Microsoft's Web site.
Microsoft has been giving users and security researchers a glimpse of security updates each Thursday before the Tuesday monthly patch releases. In October, it will begin giving security vendors even earlier access to technical details of monthly security patches before the software updates are released.
The company's goal with the new initiative, called the Microsoft Active Protections Program (MAPP), is to give the companies that write attack-blocking code a cushion as they write and test their security software, Microsoft said this week.
To qualify for the program, companies must sell commercial Windows security products and have a large customer base. Sellers of attack-based penetration testing tools are not invited to join the program, Microsoft said.
IDG News Service
Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world
On Twitter now
Microsoft
Powered by Twitter
Esther Schindler
If the comments are ugly, the code is ugly
claird
SVG a graphics format for 21st century
pasmith
Take Chrome OS for a test spin
Sandra Henry-Stocker
Solaris Tip: Have Your Files Changed Since Installation?
jfruh
Android fragments vs. the iPhone monolith
mikelgan
What Gizmodo missed about the Pro WX Wireless USB disk drive
Sidekick: The Good News & the Bad News
Either way you look at it Microsoft Data Center management did not follow standards or best practices in this failure. In which case it makes me wonder more about the outsourcing of corporate data much less personal data.
- mburton325
Join the conversation here
Quick, practical advice for IT pros. Made fresh daily.
Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.
