NetworkWorld: Next week’s Patch Tuesday will be particularly light, with Microsoft releasing just six security bulletins, only one of them critical. The critical patch addresses a remote code execution vulnerability in Windows. Three of the other bulletins also fix bugs in Windows, one affects Visual Studio and one impacts Expression Design.
Despite the light month, the number of bulletins Microsoft has released this year is up from last year. However, security expert Paul Henry says that doesn’t mean Microsoft is doing a bad job with security. “I think they’re doing a better job. They’ve got the processes in place to better manage their software development in line with security,” Henry said. “Microsoft, having cleared a large number of critical issues, is now focusing a lot of its attention on moderate and important issues and is just trying to clean things up,” Henry added. “So the number of bulletins won’t actually go down, but the critical bulletins absolutely will.”