Feeds

MS tweaks Vista with minor updates

Incremental fixes

Protecting users from Firesheep and other Sidejacking attacks with SSL

Microsoft pushed out a series of five patches for Vista early this week.

The updates - two of which were rated important, two are recommended and one optional - took security observers by surprise because they were released outside Microsoft's normal Patch Tuesday update cycle.

The "important" updates, released on Tuesday, address Daylight Saving Time changes that come into effect in the US this year and flaws in Vista's Background Intelligent Transfer Service (BITS), a windows component that manages file transfer using idle network bandwidth. A brace of updates released on Thursday and last Saturday address various performance and reliability issues in Windows Vista. Finally, Microsoft is distributing an "optional" patch from AMD that deals with vulnerability in the Catalyst installer component.

None of the updates is on the critical list so we are a bit puzzled why they couldn't have waited until Patch Tuesday. Microsoft's monthly patch schedule was created, after all, to give customers a better idea of when Microsoft was likely to publish updates. Quizzed on the point, Microsoft provided us with a statement which does not address the timing issues, but clarifies that the updates involve "incremental fixes" that are narrow in scope., which sounds very much like patches by another name.

Microsoft's statement said: "On Tuesday, Microsoft released new reliability/compatibility hotfixes (KB938194 and KB938979) via Windows Update. The updates are a collection of fixes made to address a small set of reliability and performance issues. These updates provide incremental improvements (or fixes) to the most common issues—but in general, these improvements or fixes are very narrow in scope. For more information, please go to the Windows Update home page."

The next edition of Microsoft's Patch incremental fixes Tuesday falls on 11 September. ®

Protecting users from Firesheep and other Sidejacking attacks with SSL

More from The Register

next story
'Windows 9' LEAK: Microsoft's playing catchup with Linux
Multiple desktops and live tiles in restored Start button star in new vids
Not appy with your Chromebook? Well now it can run Android apps
Google offers beta of tricky OS-inside-OS tech
New 'Cosmos' browser surfs the net by TXT alone
No data plan? No WiFi? No worries ... except sluggish download speed
iOS 8 release: WebGL now runs everywhere. Hurrah for 3D graphics!
HTML 5's pretty neat ... when your browser supports it
Greater dev access to iOS 8 will put us AT RISK from HACKERS
Knocking holes in Apple's walled garden could backfire, says securo-chap
NHS grows a NoSQL backbone and rips out its Oracle Spine
Open source? In the government? Ha ha! What, wait ...?
Google extends app refund window to two hours
You now have 120 minutes to finish that game instead of 15
Intel: Hey, enterprises, drop everything and DO HADOOP
Big Data analytics projected to run on more servers than any other app
SUSE Linux owner Attachmate gobbled by Micro Focus for $2.3bn
Merger will lead to mainframe and COBOL powerhouse
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Security and trust: The backbone of doing business over the internet
Explores the current state of website security and the contributions Symantec is making to help organizations protect critical data and build trust with customers.