OT: 12 critical updates for XP today!

[Keith Wilkinson]

Wonder how many there were for Windows 7 Beta?

[Keith Wilkinson]

Answers my question
http://www.eweek.com/c/a/Security/WWindows-7-Security-Holes-Plugged-in-Massive-Microsoft-Patch-Tuesday-596834/?kc=EWKNLSTE10152009STR1

[Keith Wilkinson]

http://news.cnet.com/8301-27080_3-10374134-245.html?tag=rtcol;pop

[Keith Wilkinson]

http://www.pcmag.com/article2/0,2817,2350227,00.asp
I'm used to clicking on Windows Update
to do Windows OS related updates, then
clicking on Office Update for Office.

But now Office Update "recommends"
that you use Microsoft Update (as
distinct from Windows Update).

It appears that if you don't follow the
recommendation and switch to
Microsoft Update (to get both
Windows Updates & Office Updates)
then you don't get any more of the
zillions of Office security updates :-(

[Wataru Tenga]

Keith, what's your point? Linux doesn't do security updates?

How about these, for SuSE alone?

13 Oct 2009 SUSE Security Summary Report
02 Oct 2009 TCP/IP denial of service issues
15 Sept 2009 SUSE Security Summary Report
08 Sept 2009 SUSE Security Summary Report
28 Aug 2009 Linux kernel security problem
21 Aug 2009 Linux kernel local privilege escalation
14 Aug 2009 subversion remote code execution problem
11 Aug 2009 SUSE Security Summary Report
07 Aug 2009 Sun Java Security update
06 Aug 2009 Mozilla Firefox 3.0.12 security upgrade
05 Aug 2009 flash player remote code execution problems
30 Jul 2009 bind remote denial of service problem
27 Jul 2009 Mozilla Firefox 3.0.12 security update
23 Jul 2009 Linux kernel security update
15 Jul 2009 dhcp-client security problem
03 Jul 2009 SUSE Security Summary Report
02 Jul 2009 IBM Java 6 SR 5 update
01 Jul 2009 Acrobat Reader security problems
16 Jun 2009 Mozilla Firefox 3.0.11
16 Jun 2009 Linux kernel security update
10 Jun 2009 SUSE Security Summary Report
09 Jun 2009 Linux kernel security problems
09 Jun 2009 Linux kernel security problems
08 Jun 2009 Linux kernel security problems
25 May 2009 IBM Java 5 security update
20 May 2009 Linux kernel security update
20 May 2009 Acrobat Reader remote code execution
12 May 2009 SUSE Security Summary Report
04 May 2009 glib2 base64 decoding flaws
22 Apr 2009 udev local privilege escalation (respin)
22 Apr 2009 cups security problems
21 Apr 2009 SUSE Security Summary Report
20 April 2009 Mozilla Firefox 3 security update
20 April 2009 Mozilla Firefox 2 security update
16 Apr 2009 Linux kernel security update
16 Apr 2009 udev local privilege escalation
08 Apr 2009 krb5 security problems
07 Apr 2009 IBM Java security update
06 Apr 2009 SUSE Security Summary Report
03 Apr 2009 Linux kernel security update
03 Apr 2009 Sun Java Security Update
03 Apr 2009 Linux kernel security update
27 Mar 2009 Acrobat Reader remote code execution
24 Mar 2009 SUSE Security Summary Report
18 Mar 2009 dbus-1 insecure profiles problems

[Keith Wilkinson]

> what's your point?

I was wondering how many ordinary users
hadn't noticed that MS has stopped
providing Office security updates
unless they switch from Windows Update
to Microsoft Update*. Because if
people don't (switch and) update, then
their PCs are likely to become part of
large zombie networks, quoting the article
http://www.pcmag.com/article2/0,2817,2350227,00.asp

*I have only just noticed this, although
the Office patches may be one or two
months old.

I've seen few or no Fedora 11 security
updates recently, though there have
been security updates to third-party
applications that are bundled with Fedora.
I wish that Windows notified users of
major third-party security updates (like
Acrobat and Flash/Shockwave).

[Keith Wilkinson]

PS: I don't see a single Open Office update
(much less any critical security updates) in the
SuSE list.

[Keith Wilkinson]

http://www.eweek.com/c/a/Security/Gumblar-Botnet-Resurfaces-to-Target-Windows-Users-ScanSafe-Says-206076/