Apparently we’re on v3 of the Exchange updates:

This update rollup is being rereleased to address additional
vulnerabilities that were identified in the previous fix for the issue
that is described in Microsoft Security Bulletin MS12-058 – Critical
<http://technet.microsoft.com/en-us/security/Bulletin/MS12-058>
(http://technet.microsoft.com/en-us/security/Bulletin/MS12-058)
.Description of Update Rollup 7 Version 3 for Exchange Server 2010
Service Pack 1:
http://support.microsoft.com/default.aspx?scid=kb;en-us;2778158&wa=wsignin1.0
===============

Description of Update Rollup 7 Version 3 for Exchange Server 2010
Service Pack 1:
http://support.microsoft.com/default.aspx?scid=kb;en-us;2778158&wa=wsignin1.0
This update rollup is being rereleased to address additional
vulnerabilities that were identified in the previous fix for the issue
that is described in Microsoft Security Bulletin MS12-058 – Critical
<http://technet.microsoft.com/en-us/security/Bulletin/MS12-058>
(http://technet.microsoft.com/en-us/security/Bulletin/MS12-058)
.

Say what again?
And why can’t I find this rerelease info anywhere on a MS security page
about these rereleases?
And it appears that there may be issues with these rereleases?
https://twitter.com/schnoll

Two PR disasters for the Exchange team in a week. Not good – Tony Redmond’s Exchange Unwashed Blog:
http://www.windowsitpro.com/blog/tony-redmonds-exchange-unwashed-50/exchange-server/two-pr-disasters-exchange-team-144821

I think he’s missing one PR snafu.. one where the re-release a v3 of a security update with the description that “it’s fixing vulnerabilities found in the original release” and don’t tell anyone.  And then they are only on the download site on the MU or WSUS.

 

 

Comments are closed.