Microsoft is preparing a hefty security update for next week, unlike last month’s relatively light Patch Tuesday.
Microsoft’s February update will include 12 security bulletins, including three that are rated “Critical.” All totalled, the bulletins will address 22 vulnerabilities spanning Windows, Internet Explorer, Microsoft Office, Visual Studio and IIS.
“As part of this month’s update, we’ll be addressing issues related to two recent Security Advisories, 2490606 (a public vulnerability affecting the Windows Graphics Rendering Engine) and 2488013 (a public vulnerability affecting Internet Explorer),” blogged Angela Gunn, security response communications manager for Microsoft Trustworthy Computing. “Additionally, we will be addressing an issue affecting FTP service in IIS 7.0 and 7.5.”
Microsoft warned users about the Windows Graphics Rendering Engine flaw in January after exploit code for the bug was made public.
The Internet Explorer vulnerability mentioned in advisory 2488013 exists due to the creation of uninitialised memory during a CSS (cascading style sheet) function within Internet Explorer. The company issued the advisory for that flaw in December, and has seen limited, targeted attacks focused on the vulnerability.
In addition to the three critical bulletins are nine others rated as “Important.”
The bulletins are slated to be released Tuesday 8 February.
German foreign minister warns Russia will face consequences for “absolutely intolerable” cyberattack on ruling party,…
Google is reportedly laying off at least 200 staff from its “Core” organisation, including key…
Investor appeasement? Apple unveils huge $110 billion share buyback program, as sales of iPhone decline…
Tesla retreats from pioneering gigacasting manufacturing process, amid cost cutting and challenges at EV giant
No skynet please. After the US, UK and France pledge human only control of nuclear…
Microsoft's AI investments continue in south east Asia, after investments in Japan, Malaysia, Indonesia, as…