Microsoft October Patch Tuesday: 8 Security Bulletins To Fix 23 Vulnerabilites
Microsoft is planning to issue eight security bulletins which will fix 23 vulnerabilities in October’s Patch Tuesday. The software giant revealed the information through an advanced notification on Thursday.
The eight security bulletins will fix various problems in Windows operating system, Internet Explorer, Microsoft Silverlight, .NET Framework, and others. Two of the security bulletins are rated critical and will fix vulnerabilities in the .NET framework, Silverlight, Internet Explorer and Windows OS. The critical Internet Explorer flaw affects all supported versions of IE on all supported versions of Windows. The other six bulletins are rated as Important. Six of the bulletins will address Remote Code Execution problem, one fixes Elevation of privilege in Microsoft Windows and the other one fixes a Denial of Service problem in Microsoft Host Integration Server. Almost all the patches requires a system restart.
The following table summarizes the security bulletins for this month in order of severity.
Bulletin ID Maximum Severity Rating and Vulnerability Impact Restart Requirement Affected Software Bulletin 1 Critical
Remote Code ExecutionMay require restart Microsoft .NET Framework,
Microsoft SilverlightBulletin 2 Critical
Remote Code ExecutionRequires restart Microsoft Windows,
Internet ExplorerBulletin 3 Important
Remote Code ExecutionRequires restart Microsoft Windows Bulletin 4 Important
Remote Code ExecutionMay require restart Microsoft Windows Bulletin 5 Important
Remote Code ExecutionRequires restart Microsoft Windows Bulletin 6 Important
Remote Code ExecutionMay require restart Microsoft Forefront Unified Access Gateway Bulletin 7 Important
Elevation of PrivilegeRequires restart Microsoft Windows Bulletin 8 Important
Denial of ServiceMay require restart Microsoft Host Integration Server
Microsoft’s October Patch Tuesday will start on October 11 at 10:00 AM PST. As usual, Microsoft will host a webcast to address customer questions on the security bulletins on October 12, 2011, at 11:00 AM Pacific Time (US & Canada).
Windows users will be able to update their computer systems through Windows Update when the patches are released. Server administrators should plan the installation of patches since all of them requires a system restart.