Patch Tuesday: Microsoft fixing 27 vulnerabilities

June looks like a busy month for Microsoft, having set out to correct 27 vulnerabilities in total with the majority of the critical updates related to the company's web browser, Internet Explorer. As is the trend these days, Microsoft is patching most of the software due to holes in the software which allow for remote code execution and elevation of privilege by external intruders.

The updates will be available for download later today (Tuesday 12th June 2012) globally, but for most users who have Windows Update on automatic, they need not worry. Obviously those who update their computers or networks manually, we recommend updating as soon as possible.

Below is an overview of the affected software in this month's 'Patch Tuesday':

  • Windows (XP SP3, Vista, 7, Server 2003/2008)
  • Windows Remote Desktop
  • Internet Explorer
  • .NET Framework
  • Windows Lync
  • Microsoft Dynamics AX Enterprise Portal

Several of the updates (which are for both 32-bit and 64-bit systems) will require restarts in order for them to become effective. Microsoft has a page which lists all of the updates they send out each month, users can view specific details here.

Source: Microsoft Security Bulletins

Report a problem with article
Previous Story

E3 2012: Some final thoughts about this year's show

Next Story

"Several thousand" Diablo III cheaters banned [Update]

21 Comments

Commenting is disabled on this article.

These don`t patch the MXML memory corruption vulnerability that`s floating around as far as i`m aware (advisory 2719615). Maybe an out of band will be introduced as it seems to be gathering momentum...!
Still good that security flaws seem to have much greater priority nowadays

remote code execution, remote code execution, remote code execution... is there anything ELSE they update? seriously, for years 90% of the updates mention this. i just don't get it...

Gornot said,
remote code execution, remote code execution, remote code execution... is there anything ELSE they update? seriously, for years 90% of the updates mention this. i just don't get it...

So keeping Windows secure is a bad idea?

Sheesh.

I agree with togermano, I updated my server 03 box yesterday with ONE update, and now it won't let me install any updates AT ALL until I've restarted... So that's 15 minutes of downtime, plus ANOTHER 20 minutes of downtime whilst I ****ing update again! Talk about crock of ****, I really dislike windows at times....

n_K said,
I agree with togermano, I updated my server 03 box yesterday with ONE update, and now it won't let me install any updates AT ALL until I've restarted... So that's 15 minutes of downtime, plus ANOTHER 20 minutes of downtime whilst I ****ing update again! Talk about crock of ****, I really dislike windows at times....

Sounds like you're the one to blame and not Windows. If you had waited and done them all in one go you wouldn't be in this situation. Also, if you'd have used something that's not ancient, like Hyper-V Server 2008 R2, you could have used live migration for zero downtime.

floopydoodle said,

Sounds like you're the one to blame and not Windows. If you had waited and done them all in one go you wouldn't be in this situation. Also, if you'd have used something that's not ancient, like Hyper-V Server 2008 R2, you could have used live migration for zero downtime.

What can I say windows update is a pain.
'Hyper-V Server 2008 R2' Why the hell would I use that? I've got ESXi, what good is a hyperviser on top of a hyperviser (Oh and I can tell you that you should try ESXi out, it's free, you get much better performance from it and you have much less of a huge security whole on your network).
'you could have used live migration for zero downtime'; Specs of the VM I'm using, 2GB RAM, 2 vCPUs, 32 bit windows, runs smooth plus firewall (although dated) works fabulously. If I was to go with 08 R2 (and I've got an 08 R2 VM that I was testing dell software with), I had 1 vCPU and 3GB of RAM, and holy ****, I don't think I've seen anything run so slow in all my life. Half the startup services didn't start unless a user logged into the machine (could be a fault with dell, not sure), it forced excess bloatware in the GUI that quite obviously wasn't and shouldn't be on a server OS _AT ALL_ period, and took up only 11GB more disk space than server 03.

To be honest, that's self inflicted by yourself and only yourself. Patch Tuesday is well known about and you can set your calendar by it. It's ALWAYS the 2nd Tuesday of the Month at 6pm UK Time, 10am PT, 1pm ET. Next time learn to wait and do the job in one go if it's much of a problem to you.

StevenNT said,
To be honest, that's self inflicted by yourself and only yourself. Patch Tuesday is well known about and you can set your calendar by it. It's ALWAYS the 2nd Tuesday of the Month at 6pm UK Time, 10am PT, 1pm ET. Next time learn to wait and do the job in one go if it's much of a problem to you.

ccoltmanm said,
Windows 8 significantly minimizes restarts. Can't go back and change xp though.

They said Vista would significantly minimizes restarts, then 7 would significantly minimizes restarts.

togermano said,
They seriously have to do live updates i am so sick of restarting everytime they have an update

IKR? Restarting your PC once a month is to much to ask.

togermano said,
They seriously have to do live updates i am so sick of restarting everytime they have an update

I think you don't remember the days of Windows 95, Windows 98 and Windows XP

togermano said,
They seriously have to do live updates i am so sick of restarting everytime they have an update

While it's nice to have less reboots, being able to hot-patch critical components of the OS could be a security risk.

warwagon said,

IKR? Restarting your PC once a month is to much to ask.

Restarting once a month? That doesnt sound very green to me

anyway. I always start up my pc at the start of the day.. figuring It needs to shut down when I am away or not use it?

warwagon said,

IKR? Restarting your PC once a month is to much to ask.

yes but think about a fresh install.. for W7 even the SP itself requires about 3 restarts without counting the updates before and after.

UnclePritchard said,
yes but think about a fresh install.. for W7 even the SP itself requires about 3 restarts without counting the updates before and after.

ah, boo freaking hoo?
they made win7 require allot less restarts for updates. but for allot of issues, the system just has to restart for it to not become unstable. want to go back to seeing a nice BSOD forcing you to reboot?

bunch of crying because of the few restarts that take less then 2 minutes usually (or if you do to many updates at once, a big longer )

daniel_rh said,

I think you don't remember the days of Windows 95, Windows 98 and Windows XP


from those days of restart
I try to forget those days, but now you've reminded me. Haven't Windows moved on from those days of restarting after every single installation and updates was a pain in the...? Censored.

warwagon said,

IKR? Restarting your PC once a month is to much to ask.

Rebooting 60 production servers every month in a 24/7 business environment is really annoying. I'm all for live updates!

T.J said,

Rebooting 60 production servers every month in a 24/7 business environment is really annoying. I'm all for live updates!

I reboot mine from my desk....cmd line...easy as pie with a text file..