MS planning Patch Tuesday whopper: 16 bulletins, 49 vulnerabilities

MS planning Patch Tuesday whopper: 16 bulletins, 49 vulnerabilities

Summary: The 49 vulnerabilities will mark the largest ever batch of patches issued by Microsoft. The previous record was 34 vulnerabilities patched in August this year.

SHARE:
TOPICS: Microsoft, Security
114

This month's batch of security patches from Microsoft will be a record-breaking one:  16 bulletins addressing a whopping 49 security vulnerabilities.

According to the company's advance notice, four of the 16 bulletins will be rated "critical," Microsoft's highest severity rating.   Microsoft rates a critical vulnerability as one that could be exploited to propagate an Internet worm without user action.

follow Ryan Naraine on twitter

The 49 vulnerabilities will mark the largest ever batch of patches issued by Microsoft.  The previous record was 34 vulnerabilities patched in August this year.

The October patch batch will include fixes for security flaws in the Windows operating system, the Internet Explorer browser, Microsoft Office and the .NET Framework.

It is very likely that Microsoft will include patches for a pair of elevation of privilege vulnerabilities that were exploited during the mysterious Stuxnet worm attack.

The flaws in this month's release affect all version of Windows, including the newest Windows 7 and Windows Server 2008.

Topics: Microsoft, Security

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

114 comments
Log in or register to join the discussion
  • Why it's so big...

    Don't forget Son of Stuxnet!
    dogbreath1
  • RE: MS planning Patch Tuesday whopper: 16 bulletins, 49 vulnerabilities

    My pre Loverock post, LOL

    MS is taking security serious.

    The flaws in this month?s release affect all versions of Windows, including the newest Windows 7 and Windows Server 2008.

    Hooay!
    daikon
  • RE: MS planning Patch Tuesday whopper: 16 bulletins, 49 vulnerabilities

    Considering how many products these patches are spread over the potential vulnerability count really isn't bad. And of all these, only 2 were exploitable. The rest won't be until after the patches are released. All the security training is really paying off for Microsoft.

    At least we are getting a heads up and can plan accordingly. Those home users already have automatic updates set up so they will be fully patched and up to date. The network admins were expecting this and can deploy it to their network on Wednesday. Its good to have a schedule instead of booting up and seeing 10 new patches a day like in other operating systems.
    Loverock Davidson
    • OK, I gotta ask...

      @Loverock Davidson ... what operating system gets 10 patches a day? I know I shouldn't ask, but I just gotta.
      levinson
      • RE: MS planning Patch Tuesday whopper: 16 bulletins, 49 vulnerabilities

        @levinson

        Linux
        honeymonster
      • RE: MS planning Patch Tuesday whopper: 16 bulletins, 49 vulnerabilities

        @levinson

        linux
        Loverock Davidson
      • RE: MS planning Patch Tuesday whopper: 16 bulletins, 49 vulnerabilities

        @levinson: Linux
        ye
      • RE: MS planning Patch Tuesday whopper: 16 bulletins, 49 vulnerabilities

        @levinson

        Linux
        NonZealot
      • RE: MS planning Patch Tuesday whopper: 16 bulletins, 49 vulnerabilities

        @levinson
        LR won't answer you because it is off topic. This is about Windows.

        Whoops! I forgot, it only applies when he wants to apply it.
        Viva la crank dodo
      • RE: MS planning Patch Tuesday whopper: 16 bulletins, 49 vulnerabilities

        @levinson As everyone else has said: Linux.

        @Viva la crank dodo Did you not see the post by Loverock prior to your own? What is the deal with trolls and their reading comprehension these days?
        athynz
      • RE: MS planning Patch Tuesday whopper: 16 bulletins, 49 vulnerabilities

        @athynz<br>Quite the observant guy aren't you. I must wonder how you felt it necessary to respond to levinson with the exact answers you saw several times before you unless you were making some sort of point. If so, is it beyond your comprehension that there may be a similar reason behind my comment?<br><br>As for being a troll, if you must group me in with the rest of those in this thread, be my guest. True, they may not be trolling in this specific thread, but I encourage you to look at some of their previous posts if you are unfamiliar with them. By the definition of Troll, your response to me is no less trolling. I am interested in seeing how you would define Troll. Many here like to define it in such a way that they and those they agree with are outside the definition. Will you do the same?
        Viva la crank dodo
    • RE: MS planning Patch Tuesday whopper: 16 bulletins, 49 vulnerabilities

      @Loverock Davidson

      There are 16 Bulletins, 4 marked critical

      MS definition of Critical: A vulnerability whose exploitation could allow the propagation of an Internet worm without user action.

      I just ran update on a Linux Fedora box: Result no packages marked for update

      Have not had any updates today...

      Hooay!
      daikon
      • RE: MS planning Patch Tuesday whopper: 16 bulletins, 49 vulnerabilities

        @Linux Rocks - I typically see updates on Ubuntu about once every two weeks (that's when I usually run the update manager).
        PollyProteus
      • RE: MS planning Patch Tuesday whopper: 16 bulletins, 49 vulnerabilities

        @Linux Rocks sounds false to me. I see security updates every few days on an Ubuntu - often 5-10 executables. There seems to be a new kernel every 2 weeks or so. <br><br>As far as I can see, Linux lives on the same borrowed time as any other.
        Narr vi
      • Of course you see new kernels regularly

        @Narr vi

        <i>There seems to be a new kernel every 2 weeks or so.</i>

        You can hardly infer anything from that. There will <i>always</i> be new kernels so long as there is traffic on the Linux kernel development mailing list.
        Zogg
      • RE: MS planning Patch Tuesday whopper: 16 bulletins, 49 vulnerabilities

        @Linux Rocks

        Linux is constantly under development, and update doesn't mean a security patch. Some are, but most aren't.

        Different development model.
        Tsingi
      • RE: MS planning Patch Tuesday whopper: 16 bulletins, 49 vulnerabilities

        @Linux Rocks

        Why put out security updates bug fixes if there a new version release at least once a year?? HAHAHAHAH
        Stan57
    • deploy on Wednesday???

      @Loverock Davidson

      no testing? You're a braver man than I.
      SonofaSailor
      • RE: MS planning Patch Tuesday whopper: 16 bulletins, 49 vulnerabilities

        @SonofaSailor
        They can test on Tuesday when its released.
        Loverock Davidson
    • RE: MS planning Patch Tuesday whopper: 16 bulletins, 49 vulnerabilities

      @Loverock Davidson When are you all going to learn..Loverock doesn't know anything about Windows..I doubt he has his certs or any experience other than what he spews in here.
      cyberslammer