Feeds

Vista joins MS patch treadmill

Brace of flaws in beta code

Choosing a cloud hosting partner with confidence

Microsoft has released a couple of patches for Windows Vista after realising that the pre-release OS is vulnerable to some of the security bugs addressed in its last (mammoth) Patch Tuesday update cycle.

Of the seven critical Windows updates released in August, two (MS06-042 and MS06-051) also affect Windows Vista Beta 2 or later, prompting the release of additional patches.

The most threatening of the Windows flaws addressed on 8 August (MS06-040) - the subject of active malware exploitation over recent days - leaves Vista untouched.

The two necessary fixes for Vista have been released through Windows Update. Microsoft may issue additional patches for Vista, in response to future security threats, but there'll be a hiatus in patches between the end of the beta testing period and the final shipment of the OS, due early next year.

"Windows Vista is the first major Microsoft product release that will be serviced with security updates throughout the beta process. We are committed to release Windows Vista updates for all MSRC critical class issues that may arise during the beta testing period. We strive to release any Windows Vista updates as soon as possible, but our priority will be to release the updates for Windows products that have been released to manufacturing," explained Alex Heaton of the Windows Vista Security team in a blog posting.

In other Patch Tuesday-related news, Microsoft said it would release an Internet Explorer patch (MS06-042) next week after reported problems with the update for some IE users. Internet Explorer 6 Service Pack One systems were the focus of this glitch and the target of the forthcoming update, which leaves Vista Beta users in the clear...at least for now. ®

Beginner's guide to SSL certificates

More from The Register

next story
Download alert: Nearly ALL top 100 Android, iOS paid apps hacked
Attack of the Clones? Yeah, but much, much scarier – report
NSA SOURCE CODE LEAK: Information slurp tools to appear online
Now you can run your own intelligence agency
Whistling Google: PLEASE! Brussels can only hurt Europe, not us
And Commish is VERY pro-Google. Why should we worry?
Microsoft: Your Linux Docker containers are now OURS to command
New tool lets admins wrangle Linux apps from Windows
Soz, web devs: Google snatches its Wallet off the table
Killing off web service in 3 months... but app-happy bonkers are fine
First in line to order a Nexus 6? AT&T has a BRICK for you
Black Screen of Death plagues early Google-mobe batch
prev story

Whitepapers

Designing and building an open ITOA architecture
Learn about a new IT data taxonomy defined by the four data sources of IT visibility: wire, machine, agent, and synthetic data sets.
5 critical considerations for enterprise cloud backup
Key considerations when evaluating cloud backup solutions to ensure adequate protection security and availability of enterprise data.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Protecting against web application threats using SSL
SSL encryption can protect server‐to‐server communications, client devices, cloud resources, and other endpoints in order to help prevent the risk of data loss and losing customer trust.