Today we published our advance notification for the May security bulletin release letting customers know that next Tuesday, May 11, we will release two Critical bulletins addressing two vulnerabilities – one in Windows and one in Office. Windows 7 and Windows Server 2008 R2 customers will be offered the Windows related update but they are not vulnerable in their default configurations. More information on this will be provided on Tuesday.
Concerning the recent Security Advisory for SharePoint, 983438, we will not be releasing an update for that with the May bulletins. Our teams are still working on an update for that issue. In the meantime, we recommend customers review the advisory and apply the workarounds.
On a side note, I want to also continue reminding customers of Windows 2000 and Windows XP SP2 that all support for these platforms will end after July 13, 2010. Customers should upgrade to either a supported operating system or the latest service pack in order to keep receiving security updates.
We recommend that customers prepare for the testing and deployment of both bulletins as soon as possible. Finally, please join Adrian Stone and me for a public webcast next week where we will go in to details about the bulletins and answer questions live on the air. Here’s how to register:
Date: Wednesday May 12
Time: 11:00 a.m. PDT (UTC –8)
Group Manager, Response Communications
Follow us on Twitter: @MSFTSecResponse
*This posting is provided “AS IS” with no warranties, and confers no rights*