lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Date: Sun, 01 Apr 2007 20:24:17 -0700
From: Blue Boar <BlueBoar@...evco.com>
To: Larry Seltzer <Larry@...ryseltzer.com>
Cc: funsec@...uxbox.org, full-disclosure@...ts.grok.org.uk
Subject: Re: [funsec] MS Patch Coming Tuesday

http://blogs.technet.com/msrc/archive/2007/04/01/latest-on-security-update-for-microsoft-security-advisory-935423.aspx

Larry Seltzer wrote:
> http://www.microsoft.com/technet/security/bulletin/advance.mspx
>  
> Microsoft Security Bulletin Advance Notification
> Updated: April 1, 2007
> 
> As part of the monthly security bulletin release cycle, Microsoft
> provides advance notification to our customers on the number of new
> security updates being released, the products affected, the aggregate
> maximum severity and information about detection tools relevant to the
> update. This is intended to help our customers plan for the deployment
> of these security updates more effectively.
> 
> In addition, to help customers prioritize monthly security updates with
> any non-security updates released on Microsoft Update, Windows Update,
> Windows Server Update Services and Software Update Services on the same
> day as the monthly security bulletins, we also provide:
> 
> * Information about the release of updated versions of the Microsoft
> Windows Malicious Software Removal Tool.
>  
> * Information about the release of NON-SECURITY, High Priority updates
> on Microsoft Update (MU), Windows Update (WU), Windows Server Update
> Services (WSUS) and Software Update Services (SUS).
>  
> 
> Note that this information will pertain ONLY to updates on Microsoft
> Update, Windows Update, Windows Server Update Services and Software
> Update Services and only about High Priority, non-security updates being
> released on the same day as security updates. Information will NOT be
> provided about Non-security updates released on other days.
> 
> On Tuesday 3 April 2007 Microsoft is planning to release:
> 
> Security Updates
> 
> * One Microsoft Security Bulletin affecting Microsoft Windows. The
> highest Maximum Severity rating for these is Critical. These updates
> will require a restart. These updates will be detectable using the
> Microsoft Baseline Security Analyzer.
>  
> 
> Microsoft Windows Malicious Software Removal Tool
> 
> * Microsoft will not release an updated version of the Microsoft Windows
> Malicious Software Removal Tool on Windows Update, Microsoft Update,
> Windows Server Update Services and the Download Center on Tuesday 3
> April 2007.
>  
> 
> Non-security High Priority updates on MU, WU, WSUS and SUS
> 
> * Microsoft will not release any NON-SECURITY High-Priority Updates for
> Windows on Windows Update (WU) and Software Update Services (SUS) on
> Tuesday 3 April 2007.
>  
> * Microsoft will not release any NON-SECURITY High-Priority Updates on
> Microsoft Update (MU) and Windows Server Update Services (WSUS) on
> Tuesday 3 April 2007.
>  
> 
> Although we do not anticipate any changes, the number of bulletins,
> products affected, restart information and severities are subject to
> change until released.
> 
> Microsoft will host a webcast next week to address customer questions on
> these bulletins. For more information on this webcast please see below:
> 
> * TechNet Webcast: Information about Microsoft's Security Bulletins
>  
> * Wednesday, 11 April 2007 11:00 AM (GMT-08:00) Pacific Time (US &
> Canada)
>  
> *
> http://msevents.microsoft.com/CUI/WebCastEventDetails.aspx?EventID=10323
> 27017&EventCategory=4&culture=en-US&CountryCode=US 
>  
> 
> At this time no additional information on these bulletins such as
> details regarding severity or details regarding the vulnerability will
> be made available until 3 April 2007.
>  
> 
> _______________________________________________
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.
> 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ