August 17, 2006 4:34 PM PDT

Patch Tuesday comes for Vista, too

While Microsoft has touted Windows Vista as its most secure client operating system yet, the unfinished product is already getting regular security fixes.

Vista, slated to be broadly available in January, is the first major Microsoft product to get security updates while it is still in beta, Microsoft employee Alex Heaton wrote on a corporate blog Tuesday.

"We are committed to release Windows Vista updates for all MSRC (Microsoft Security Response Center) critical class issues that may arise during the beta-testing period," wrote Heaton, who works on Vista security. The goal is to release the fixes as soon as possible, he said--but versions of Windows that have been commercially released, such as Windows XP, get priority.

Two of the seven "critical" Windows updates that Microsoft delivered on Aug. 8 affect Vista, Heaton wrote. These are MS06-042, for Internet Explorer, and MS06-051, which addresses a flaw in the Windows kernel.

Vista is not affected by the Windows flaw that is getting most of the attention among the Patch Tuesday bulletins. That flaw, MS06-040, affects file and printer sharing and has already been exploited in low-risk worm attacks.

Updates for the security issues that affect Vista have been sent out to Windows Update and are available in the Microsoft Download Center, according to the software maker.

These are not the first security fixes for Vista. In January, Microsoft released a security update to address the same image-rendering vulnerability found in earlier versions of the operating system. The patch fixed a flaw in the way the operating system's Graphics Rendering Engine processes Windows Meta File images. The WMF handling bug was being exploited in cyberattacks.

See more CNET content tagged:
flaw, Microsoft Windows Vista, security, Microsoft Windows Update, Microsoft Corp.


Join the conversation!
Add your comment
What th'...?
And I thought MS was touting Vista for its security. So 2 out of the last 12 patches also apply to Vista, that's better but it's still not secure, especially when you consider it isn't in wide spread circulation and hasn't attracted the full focus of security researchers and bad guys yet.
Posted by MadKiwi (153 comments )
Reply Link Flag
Lay off...
Give them a break, The product isnt finished yet.

MAC and Linux got updates out the wazoo to before they were "Officially" Released.
Posted by G.Nuisance (10 comments )
Link Flag's still a beta version
Oh no! A beta version keeps getting updates! WHAT WILL WE EVER DO!!!!
Posted by next2heaven (2 comments )
Reply Link Flag
And this is news?
A beta product was updated. This is news? It's a beta, as in not finished, of course it's going to get an update. Whether it happens on patch tuesday or when beta 3 comes out, does it matter?
Posted by thedreaming (573 comments )
Reply Link Flag
Good grief, how can this be? My faith in...
Microsoft has been dented. Could it be that someone is attempting to sabotage the most secure OS in computing history?
Posted by wtortorici (102 comments )
Reply Link Flag

Join the conversation

Add your comment

The posting of advertisements, profanity, or personal attacks is prohibited. Click here to review our Terms of Use.

What's Hot



RSS Feeds

Add headlines from CNET News to your homepage or feedreader.