微软宣布将于北京时间10月10日清晨发布7个安全补丁,修复Microsoft Word、Windows、Microsoft Office和SQL Server中的20个安全漏洞。补丁覆盖了从XP到Windows 7的多个操作系统版本,以及Office、SharePoint、SQL Server等软件。
大家好,我是 Richard Chen。
在此提前通知各位:微软计划于北京时间10月10日清晨发布7个安全补丁,共修复 Microsoft Word, Windows, Microsoft Office 和 SQL Server 中的20个安全漏洞。7个补丁的最高严重等级详见下图:
| Bulletin ID | Maximum Severity Rating and Vulnerability Impact | Restart Requirement | Affected Software |
|---|---|---|---|
| Bulletin 1 | Critical Remote Code Execution | May require restart | Microsoft Office, Microsoft Server Software |
| Bulletin 2 | Important Remote Code Execution | May require restart | Microsoft Office |
| Bulletin 3 | Important Elevation of Privilege | May require restart | Microsoft Office, Microsoft Server Software, Microsoft Lync |
| Bulletin 4 | Important Remote Code Execution | May require restart | Microsoft Office, Microsoft Server Software |
| Bulletin 5 | Important Elevation of Privilege | Requires restart | Microsoft Windows |
| Bulletin 6 | Important Denial of Service | Requires restart | Microsoft Windows |
| Bulletin 7 | Important Elevation of Privilege | May require restart | Microsoft SQL Server |
按照受影响的操作系统分类如下:
| Windows XP | ||
|---|---|---|
| Bulletin Identifier | Bulletin 5 | Bulletin 6 |
| Aggregate Severity Rating | Important | None |
| Windows XP Service Pack 3 | Windows XP Service Pack 3 (Important) | Not applicable |
| Windows XP Professional x64 Edition Service Pack 2 | Windows XP Professional x64 Edition Service Pack 2 (Important) | Not applicable |
| Windows Server 2003 | ||
| Bulletin Identifier | Bulletin 5 | Bulletin 6 |
| Aggregate Severity Rating | Important | None |
| Windows Server 2003 Service Pack 2 | Windows Server 2003 Service Pack 2 (Important) | Not applicable |
| Windows Server 2003 x64 Edition Service Pack 2 | Windows Server 2003 x64 Edition Service Pack 2 (Important) | Not applicable |
| Windows Server 2003 with SP2 for Itanium-based Systems | Windows Server 2003 with SP2 for Itanium-based Systems (Important) | Not applicable |
| Windows Vista | ||
| Bulletin Identifier | Bulletin 5 | Bulletin 6 |
| Aggregate Severity Rating | Important | None |
| Windows Vista Service Pack 2 | Windows Vista Service Pack 2 (Important) | Not applicable |
| Windows Vista x64 Edition Service Pack 2 | Windows Vista x64 Edition Service Pack 2 (Important) | Not applicable |
| Windows Server 2008 | ||
| Bulletin Identifier | Bulletin 5 | Bulletin 6 |
| Aggregate Severity Rating | Important | None |
| Windows Server 2008 for 32-bit Systems Service Pack 2 | Windows Server 2008 for 32-bit Systems Service Pack 2 (Important) | Not applicable |
| Windows Server 2008 for x64-based Systems Service Pack 2 | Windows Server 2008 for x64-based Systems Service Pack 2 (Important) | Not applicable |
| Windows Server 2008 for Itanium-based Systems Service Pack 2 | Windows Server 2008 for Itanium-based Systems Service Pack 2 (Important) | Not applicable |
| Windows 7 | ||
| Bulletin Identifier | Bulletin 5 | Bulletin 6 |
| Aggregate Severity Rating | Important | Important |
| Windows 7 for 32-bit Systems | Windows 7 for 32-bit Systems (Important) | Windows 7 for 32-bit Systems (Important) |
| Windows 7 for 32-bit Systems Service Pack 1 | Windows 7 for 32-bit Systems Service Pack 1 (Important) | Windows 7 for 32-bit Systems Service Pack 1 (Important) |
| Windows 7 for x64-based Systems | Windows 7 for x64-based Systems (Important) | Windows 7 for x64-based Systems (Important) |
| Windows 7 for x64-based Systems Service Pack 1 | Windows 7 for x64-based Systems Service Pack 1 (Important) | Windows 7 for x64-based Systems Service Pack 1 (Important) |
| Windows Server 2008 R2 | ||
| Bulletin Identifier | Bulletin 5 | Bulletin 6 |
| Aggregate Severity Rating | Important | Important |
| Windows Server 2008 R2 for x64-based Systems | Windows Server 2008 R2 for x64-based Systems (Important) | Windows Server 2008 R2 for x64-based Systems (Important) |
| Windows Server 2008 R2 for x64-based Systems Service Pack 1 | Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Important) | Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Important) |
| Windows Server 2008 R2 for Itanium-based Systems | Windows Server 2008 R2 for Itanium-based Systems (Important) | Windows Server 2008 R2 for Itanium-based Systems (Important) |
| Windows Server 2008 R2 for Itanium-based Systems Service Pack 1 | Windows Server 2008 R2 for Itanium-based Systems Service Pack 1 (Important) | Windows Server 2008 R2 for Itanium-based Systems Service Pack 1 (Important) |
| Server Core installation option | ||
| Bulletin Identifier | Bulletin 5 | Bulletin 6 |
| Aggregate Severity Rating | Important | Important |
| Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) | Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) (Important) | Not applicable |
| Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) | Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) (Important) | Not applicable |
| Windows Server 2008 R2 for x64-based Systems (Server Core installation) | Windows Server 2008 R2 for x64-based Systems (Server Core installation) (Important) | Windows Server 2008 R2 for x64-based Systems (Server Core installation) (Important) |
| Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) | Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) (Important) | Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) (Important) |
微软 Office 补丁相关信息:
| Microsoft Office Suites and Components | |||
|---|---|---|---|
| Bulletin Identifier | Bulletin 1 | Bulletin 2 | Bulletin 3 |
| Aggregate Severity Rating | Critical | None | None |
| Microsoft Office 2003 Service Pack 3 | Microsoft Word 2003 Service Pack 3 (Important) | Not applicable | Not applicable |
| Microsoft Office 2007 Service Pack 2 | Microsoft Word 2007 Service Pack 2 (Critical) | Not applicable | Not applicable |
| Microsoft Office 2007 Service Pack 3 | Microsoft Word 2007 Service Pack 3 (Critical) | Not applicable | Not applicable |
| Microsoft Office 2010 Service Pack 1 (32-bit editions) | Microsoft Word 2010 Service Pack 1 (32-bit editions) (Critical) | Not applicable | Not applicable |
| Microsoft Office 2010 Service Pack 1 (64-bit editions) | Microsoft Word 2010 Service Pack 1 (64-bit editions) (Critical) | Not applicable | Not applicable |
| Other Microsoft Office Software | |||
| Bulletin Identifier | Bulletin 1 | Bulletin 2 | Bulletin 3 |
| Aggregate Severity Rating | Important | Important | Important |
| Microsoft Word Viewer | Microsoft Word Viewer (Important) | Not applicable | Not applicable |
| Microsoft Office Compatibility Pack Service Pack 2 | Microsoft Office Compatibility Pack Service Pack 2 (Important) | Not applicable | Not applicable |
| Microsoft Office Compatibility Pack Service Pack 3 | Microsoft Office Compatibility Pack Service Pack 3 (Important) | Not applicable | Not applicable |
| Microsoft InfoPath 2007 Service Pack 2 | Not applicable | Not applicable | Microsoft InfoPath 2007 Service Pack 2 (Important) |
| Microsoft InfoPath 2007 Service Pack 3 | Not applicable | Not applicable | Microsoft InfoPath 2007 Service Pack 3 (Important) |
| Microsoft InfoPath 2010 Service Pack 1 (32-bit editions) | Not applicable | Not applicable | Microsoft InfoPath 2010 Service Pack 1 (32-bit editions) (Important) |
| Microsoft InfoPath 2010 Service Pack 1 (64-bit editions) | Not applicable | Not applicable | Microsoft InfoPath 2010 Service Pack 1 (64-bit editions) (Important) |
| Microsoft Works 9 | Not applicable | Microsoft Works 9 (Important) | Not applicable |
Bulletin 1 的注释 : 本补丁影响多类软件。
Bulletin 3 的注释 : 本补丁影响多类软件。
微软服务器软件补丁相关信息:
| Microsoft SharePoint Server | |||
|---|---|---|---|
| Bulletin Identifier | Bulletin 1 | Bulletin 3 | Bulletin 4 |
| Aggregate Severity Rating | Important | Important | None |
| Microsoft SharePoint Server 2007 Service Pack 2 (32-bit editions) | Not applicable | Microsoft SharePoint Server 2007 Service Pack 2 (32-bit editions) (Important) | Not applicable |
| Microsoft SharePoint Server 2007 Service Pack 3 (32-bit editions) | Not applicable | Microsoft SharePoint Server 2007 Service Pack 3 (32-bit editions) (Important) | Not applicable |
| Microsoft SharePoint Server 2007 Service Pack 2 (64-bit editions) | Not applicable | Microsoft SharePoint Server 2007 Service Pack 2 (64-bit editions) (Important) | Not applicable |
| Microsoft SharePoint Server 2007 Service Pack 3 (64-bit editions) | Not applicable | Microsoft SharePoint Server 2007 Service Pack 3 (64-bit editions) (Important) | Not applicable |
| Microsoft SharePoint Server 2010 Service Pack 1 | Microsoft SharePoint Server 2010 Service Pack 1 (Important) | Microsoft SharePoint Server 2010 Service Pack 1 (Important) | Not applicable |
| Microsoft FAST Search Server | |||
| Bulletin Identifier | Bulletin 1 | Bulletin 3 | Bulletin 4 |
| Aggregate Severity Rating | None | None | Important |
| Microsoft FAST Search Server 2010 for SharePoint | Not applicable | Not applicable | Advanced Filter Pack (Important) |
| Microsoft Groove Server | |||
| Bulletin Identifier | Bulletin 1 | Bulletin 3 | Bulletin 4 |
| Aggregate Severity Rating | None | Important | None |
| Microsoft Groove Server 2010 Service Pack 1 | Not applicable | Microsoft Groove Server 2010 Service Pack 1 (Important) | Not applicable |
| Windows SharePoint Services and Microsoft SharePoint Foundation | |||
| Bulletin Identifier | Bulletin 1 | Bulletin 3 | Bulletin 4 |
| Aggregate Severity Rating | None | Important | None |
| Microsoft Windows SharePoint Services 3.0 Service Pack 2 (32-bit version) | Not applicable | Microsoft Windows SharePoint Services 3.0 Service Pack 2 (32-bit version) (Important) | Not applicable |
| Microsoft Windows SharePoint Services 3.0 Service Pack 2 (64-bit version) | Not applicable | Microsoft Windows SharePoint Services 3.0 Service Pack 2 (64-bit version) (Important) | Not applicable |
| Microsoft SharePoint Foundation 2010 Service Pack 1 | Not applicable | Microsoft SharePoint Foundation 2010 Service Pack 1 (Important) | Not applicable |
| Microsoft Office Web Apps | |||
| Bulletin Identifier | Bulletin 1 | Bulletin 3 | Bulletin 4 |
| Aggregate Severity Rating | Important | Important | None |
| Microsoft Office Web Apps 2010 Service Pack 1 | Microsoft Office Web Apps 2010 Service Pack 1 (Important) | Microsoft Office Web Apps 2010 Service Pack 1 (Important) | Not applicable |
Bulletin 1 的注释 : 本补丁影响多类软件。
Bulletin 3 的注释 : 本补丁影响多类软件。
微软通信平台和软件相关信息:
| Microsoft Communicator | |
|---|---|
| Bulletin Identifier | Bulletin 3 |
| Aggregate Severity Rating | Important |
| Microsoft Communicator 2007 R2 | Microsoft Communicator 2007 R2 (Important) |
| Microsoft Lync | |
| Bulletin Identifier | Bulletin 3 |
| Aggregate Severity Rating | Important |
| Microsoft Lync 2010 (32-bit) | Microsoft Lync 2010 (32-bit) (Important) |
| Microsoft Lync 2010 (64-bit) | Microsoft Lync 2010 (64-bit) (Important) |
| Microsoft Lync 2010 Attendee | Microsoft Lync 2010 Attendee (Important) |
Bulletin 3 的注释 : 本补丁影响多类软件。
微软SQL Server 相关信息:
| SQL Server 2000 | |
|---|---|
| Bulletin Identifier | Bulletin 7 |
| Aggregate Severity Rating | Important |
| Microsoft SQL Server 2000 Reporting Services Service Pack 2 | Microsoft SQL Server 2000 Reporting Services Service Pack 2 (Important) |
| SQL Server 2005 | |
| Bulletin Identifier | Bulletin 7 |
| Aggregate Severity Rating | Important |
| Microsoft SQL Server 2005 Express Edition with Advanced Services Service Pack 4 | Microsoft SQL Server 2005 Express Edition with Advanced Services Service Pack 4 (Important) |
| Microsoft SQL Server 2005 for 32-bit Systems Service Pack 4 | Microsoft SQL Server 2005 for 32-bit Systems Service Pack 4 (Important) |
| Microsoft SQL Server 2005 for x64-based Systems Service Pack 4 | Microsoft SQL Server 2005 for x64-based Systems Service Pack 4 (Important) |
| Microsoft SQL Server 2005 for Itanium-based Systems Service Pack 4 | Microsoft SQL Server 2005 for Itanium-based Systems Service Pack 4 (Important) |
| SQL Server 2008 | |
| Bulletin Identifier | Bulletin 7 |
| Aggregate Severity Rating | Important |
| Microsoft SQL Server 2008 for 32-bit Systems Service Pack 2 | Microsoft SQL Server 2008 for 32-bit Systems Service Pack 2 (Important) |
| Microsoft SQL Server 2008 for 32-bit Systems Service Pack 3 | Microsoft SQL Server 2008 for 32-bit Systems Service Pack 3 (Important) |
| Microsoft SQL Server 2008 for x64-based Systems Service Pack 2 | Microsoft SQL Server 2008 for x64-based Systems Service Pack 2 (Important) |
| Microsoft SQL Server 2008 for x64-based Systems Service Pack 3 | Microsoft SQL Server 2008 for x64-based Systems Service Pack 3 (Important) |
| Microsoft SQL Server 2008 for Itanium-based Systems Service Pack 2 | Microsoft SQL Server 2008 for Itanium-based Systems Service Pack 2 (Important) |
| Microsoft SQL Server 2008 for Itanium-based Systems Service Pack 3 | Microsoft SQL Server 2008 for Itanium-based Systems Service Pack 3 (Important) |
| SQL Server 2008 R2 | |
| Bulletin Identifier | Bulletin 7 |
| Aggregate Severity Rating | Important |
| Microsoft SQL Server 2008 R2 for 32-bit Systems Service Pack 1 | Microsoft SQL Server 2008 R2 for 32-bit Systems Service Pack 1 (Important) |
| Microsoft SQL Server 2008 R2 for x64-based Systems Service Pack 1 | Microsoft SQL Server 2008 R2 for x64-based Systems Service Pack 1 (Important) |
| Microsoft SQL Server 2008 R2 for Itanium-based Systems Service Pack 1 | Microsoft SQL Server 2008 R2 for Itanium-based Systems Service Pack 1 (Important) |
| SQL Server 2012 | |
| Bulletin Identifier | Bulletin 7 |
| Aggregate Severity Rating | Important |
| Microsoft SQL Server 2012 for 32-bit Systems | Microsoft SQL Server 2012 for 32-bit Systems (Important) |
| Microsoft SQL Server 2012 for x64-based Systems | Microsoft SQL Server 2012 for x64-based Systems (Important) |
以下为提前通知的文章全文(英文),请各位先行评估了解受影响的系统。
Microsoft Security Bulletin Advance Notification for Oct 2012:
http://technet.microsoft.com/en-us/security/bulletin/ms12-oct
Richard Chen
大中华区软件安全项目经理
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
