Microsoft has announced their plans for the September 2011 edition of Patch Tuesday.  Microsoft is planning to release 5 new security bulletins.  Although this is Microsoft's 'light' Patch Tuesday, we are seeing quite a few Microsoft products being patched this month.

Security Bulletin Breakdown:

  • 2 bulletins affect Microsoft operating systems
  • 3 bulletins affect Microsoft Office and server-based products
  • 5 bulletins are rated as Important
  • 3 vulnerabilities fixed could lead to Remote Code Execution
  • 2 vulnerabilities fixed could lead to Elevation of Privilege

Affected Products:

  • All supported Microsoft operating systems
  • Office 2003, 2007, 2010 (Excel)
  • Groove Server 2007
  • SharePoint Workspace 2010
  • Excel Viewer
  • Office Compatibility Pack 2007
  • SharePoint Server 2007, 2010
  • Office Forms Server 2007
  • Groove Server (Data Bridge Server) 2007, 2010
  • Office Web Apps 2010 (Excel)
  • SharePoint Services 2.0, 3.0
  • SharePoint Foundation 2010

With this 'light' patch Tuesday, you will also want to take a look at the new Microsoft Security Advisory released yesterday.  Microsoft Security Advisory 2607712 addresses a high profile issue with DigiNotar digital certificates.  Microsoft has released an update to move all DigiNotar certificates into the Untrusted Certficiate Store to prevent fraudulent certificates from being accepted by your machines.

Mozilla has followed suit with this issue by releasing updates to their programs Firefox, Thunderbird and SeaMonkey.

I will be going through each bulletin thoroughly next Wednesday, September 14th at 11:00am CDT in part of our monthly Patch Tuesday webinar.  Click here to register for the webinar.

- Jason Miller