April’s “Patch Tuesday” Will Be a Big One!
Lot’s o’ fixes! Critical security updates, pretty much what we have come to expect with Windows! 17 separate patches for 64 security issues… ouch!
Microsoft Preparing ‘Ugly’ Security Patch on Tuesday
“Windows security experts had been expecting a large April security update after last month’s thin offering, and Microsoft’s advance notice appears to meet those expectations — and then some.
Microsoft announced today that it plans to roll out 17 patches on Tuesday in its monthly security update, with nine fixes deemed “critical” and eight considered ‘important.’ Remote code execution (RCE) attack risks dominate April’s slate, as 15 of the 17 security bulletins address those considerations. Two security bulletins point to information disclosure and elevation-of-privilege threats.
‘No matter how you look at it, it’s ugly,’ said Paul Henry, forensic and security analyst at Lumension. ‘We’re well into a new year and things have not improved. In fact, they’ve gotten worse.’
The first critical security bulletin appears to be the long-awaited cumulative fix for Internet Explorer. It will address every supported Windows operating system and covers IE 6, 7 and 8 browsers.
The remaining eight critical security bulletins are all Windows OS-level fixes with RCE exploit risks. Critical security bulletin No. 6 also includes a fix for Microsoft Office.”