Patch Tuesday: Déjà Vu, Take Two, Do Over, Rinse and Repeat, Etc.
I really should have saved what I wrote last month about Patch Tuesday, used cut and paste to write today's preview, and my work would be done. That's because this month's patch batch is nearly identical to the last.
Like in May, we have three critical fixes, and the same number of important ones (four). And just like all the Patch Tuesdays in recent memory, remote code execution flaw fixes lead the charge, with elevation of privilege trailing just behind.
What is different is the software targeted this time around. Beside Office, a patch stalwart, Visual Basic for Applications gets a fix. Now there's a blast from the past. (Do you use VBA? If so, what for and how do you like it? Let me know at firstname.lastname@example.org.)
One security expert advises fixing the RCE flaws first and only then going after the elevation of privilege problems. Makes sense to me.
Posted by Doug Barney on 06/11/2012 at 1:19 PM