the first security update for windows 7 beta

hbailla, Wednesday, March 11, 2009

after the big discussion about the security of windows 7 , microsoft release the the first security update for windows 7 beta .




While Microsoft excluded Windows 7 from the security patching ceremony in January and in February, things went a little differently on this month's Patch Tuesday. Microsoft fixed three vulnerabilities yesterday: two were spoofing-related and were marked Important, while the other was marked Critical as it had a Remote Code Execution impact. According to the security bulletin for the last one, Microsoft said that the patch was meant "for all supported editions of Microsoft Windows 2000, Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008." So I was surprised to see it in my Windows Update queue today (pictured above) on Windows 7 build 7000.

Microsoft disclosed that the security update resolves several privately reported vulnerabilities in the Windows kernel, the most serious of which could allow remote code execution if a user viewed a specially crafted EMF or WMF image file from an affected system. The vulnerabilities are fixed by "validating input passed from user mode through the kernel component of GDI, correcting the way that the kernel validates handles, and changing the way that the Windows kernel handles specially crafted invalid pointer."

The update has also been available for a few days from the Microsoft Download Center for both Windows 7 beta 32-bit (1.2 MB) and 64-bit (1.6 MB). Microsoft describes the update as follows: "A security issue has been identified that could allow an unauthenticated remote attacker to compromise your system and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your system. This update is provided to you and licensed under the Windows 7 Prerelease License Terms."

Microsoft is widely expected to give out the Windows 7 Release Candidate build to the public in April, though it may arrive earlier through other channels. Until then, Microsoft apparently wants to keep its public testers safe—from certain security flaws, anyway.

Bookmark and Share
at 12:58 PM
Labels:

Comments :

0 comments to “the first security update for windows 7 beta”

Post a Comment

Subscribe to: Post Comments (Atom)
 

Privacy Policy

Privacy Policy by hbailla Privacy Policy for My Blog. The privacy of our visitors to my blog is important to us. At my blog, we recognize that privacy of your personal information is important. Here is information on what types of personal information we receive and collect when you use and visit my blog, and how we safeguard your information. We never sell your personal information to third parties. We use third party advertisements on my blog to support our site. Some of these advertisers may use technology such as cookies and web beacons when they advertise on our site, which will also send these advertisers (such as Google through the Google AdSense program) information including your IP address, your ISP , the browser you used to visit our site, and in some cases, whether you have Flash installed. This is generally used for geotargeting purposes (showing New York real estate ads to someone in New York, for example) or showing certain ads based on specific sites visited (such as showing cooking ads to someone who frequents cooking sites).
scout national du maroc