大家好,我是 Richard Chen

在此提前通知各位:微软计划于北京时间1114日清晨发布6个安全补丁。其中,4个严重等级补丁共修复 Microsoft Windows, Internet Explorer the .NET Framework 中的19个安全漏洞;1个重要等级补丁修复 Microsoft Office 中的4个漏洞;1个中等级别补丁修复 Microsoft Windows 中的2个漏洞。

补丁的最高严重等级详见下图:

Bulletin ID

Maximum Severity Rating and Vulnerability Impact

Restart Requirement

Affected Software

Bulletin 1

Critical
Remote Code Execution

Restart required

Microsoft Windows,
Internet Explorer

Bulletin 2

Critical
Remote Code Execution

Restart required

Microsoft Windows

Bulletin 4

Critical
Remote Code Execution

May require restart

Microsoft Windows,
Microsoft .NET Framework

Bulletin 5

Critical
Remote Code Execution

Restart required

Microsoft Windows

Bulletin 6

Important
Remote Code Execution

May require restart

Microsoft Office

Bulletin 3

Moderate
Information Disclosure

May require restart

Microsoft Windows

按照受影响的操作系统分类如下:

Windows XP

Bulletin Identifier

Bulletin 1

Bulletin 2

Bulletin 4

Bulletin 5

Bulletin 3

Aggregate Severity Rating

None

Critical

Critical

Critical

None

Windows XP Service Pack 3

Not applicable

Windows XP Service Pack 3
(Critical)

Windows XP Service Pack 3
(Critical)

Windows XP Service Pack 3
(Critical)

Not applicable

Windows XP Professional x64 Edition Service Pack 2

Not applicable

Windows XP Professional x64 Edition Service Pack 2
(Critical)

Windows XP Professional x64 Edition Service Pack 2
(Critical)

Windows XP Professional x64 Edition Service Pack 2
(Critical)

Not applicable

Windows Server 2003

Bulletin Identifier

Bulletin 1

Bulletin 2

Bulletin 4

Bulletin 5

Bulletin 3

Aggregate Severity Rating

None

Critical

Critical

Critical

None

Windows Server 2003 Service Pack 2

Not applicable

Windows Server 2003 Service Pack 2
(Critical)

Windows Server 2003 Service Pack 2
(Critical)

Windows Server 2003 Service Pack 2
(Critical)

Not applicable

Windows Server 2003 x64 Edition Service Pack 2

Not applicable

Windows Server 2003 x64 Edition Service Pack 2
(Critical)

Windows Server 2003 x64 Edition Service Pack 2
(Critical)

Windows Server 2003 x64 Edition Service Pack 2
(Critical)

Not applicable

Windows Server 2003 with SP2 for Itanium-based Systems

Not applicable

Windows Server 2003 with SP2 for Itanium-based Systems
(Critical)

Windows Server 2003 with SP2 for Itanium-based Systems
(Critical)

Windows Server 2003 with SP2 for Itanium-based Systems
(Critical)

Not applicable

Windows Vista

Bulletin Identifier

Bulletin 1

Bulletin 2

Bulletin 4

Bulletin 5

Bulletin 3

Aggregate Severity Rating

Critical

Critical

Critical

Critical

Moderate

Windows Vista Service Pack 2

Internet Explorer 9
(Critical)

Windows Vista Service Pack 2
(Critical)

Windows Vista Service Pack 2
(Critical)

Windows Vista Service Pack 2
(Critical)

Windows Vista Service Pack 2
(Moderate)

Windows Vista x64 Edition Service Pack 2

Internet Explorer 9
(Critical)

Windows Vista x64 Edition Service Pack 2
(Critical)

Windows Vista x64 Edition Service Pack 2
(Critical)

Windows Vista x64 Edition Service Pack 2
(Critical)

Windows Vista x64 Edition Service Pack 2
(Moderate)

Windows Server 2008

Bulletin Identifier

Bulletin 1

Bulletin 2

Bulletin 4

Bulletin 5

Bulletin 3

Aggregate Severity Rating

Moderate

Critical

Critical

Critical

Moderate

Windows Server 2008 for 32-bit Systems Service Pack 2

Internet Explorer 9
(Moderate)

Windows Server 2008 for 32-bit Systems Service Pack 2
(Critical)

Windows Server 2008 for 32-bit Systems Service Pack 2
(Critical)

Windows Server 2008 for 32-bit Systems Service Pack 2
(Critical)

Windows Server 2008 for 32-bit Systems Service Pack 2
(Moderate)

Windows Server 2008 for x64-based Systems Service Pack 2

Internet Explorer 9
(Moderate)

Windows Server 2008 for x64-based Systems Service Pack 2
(Critical)

Windows Server 2008 for x64-based Systems Service Pack 2
(Critical)

Windows Server 2008 for x64-based Systems Service Pack 2
(Critical)

Windows Server 2008 for x64-based Systems Service Pack 2
(Moderate)

Windows Server 2008 for Itanium-based Systems Service Pack 2

Not applicable

Not applicable

Windows Server 2008 for Itanium-based Systems Service Pack 2
(Critical)

Windows Server 2008 for Itanium-based Systems Service Pack 2
(Critical)

Not applicable

Windows 7

Bulletin Identifier

Bulletin 1

Bulletin 2

Bulletin 4

Bulletin 5

Bulletin 3

Aggregate Severity Rating

Critical

Critical

Critical

Critical

Moderate

Windows 7 for 32-bit Systems

Internet Explorer 9
(Critical)

Windows 7 for 32-bit Systems
(Critical)

Windows 7 for 32-bit Systems
(Critical)

Windows 7 for 32-bit Systems
(Critical)

Windows 7 for 32-bit Systems
(Moderate)

Windows 7 for 32-bit Systems Service Pack 1

Internet Explorer 9
(Critical)

Windows 7 for 32-bit Systems Service Pack 1
(Critical)

Windows 7 for 32-bit Systems Service Pack 1
(Critical)

Windows 7 for 32-bit Systems Service Pack 1
(Critical)

Windows 7 for 32-bit Systems Service Pack 1
(Moderate)

Windows 7 for x64-based Systems

Internet Explorer 9
(Critical)

Windows 7 for x64-based Systems
(Critical)

Windows 7 for x64-based Systems
(Critical)

Windows 7 for x64-based Systems
(Critical)

Windows 7 for x64-based Systems
(Moderate)

Windows 7 for x64-based Systems Service Pack 1

Internet Explorer 9
(Critical)

Windows 7 for x64-based Systems Service Pack 1
(Critical)

Windows 7 for x64-based Systems Service Pack 1
(Critical)

Windows 7 for x64-based Systems Service Pack 1
(Critical)

Windows 7 for x64-based Systems Service Pack 1
(Moderate)

Windows Server 2008 R2

Bulletin Identifier

Bulletin 1

Bulletin 2

Bulletin 4

Bulletin 5

Bulletin 3

Aggregate Severity Rating

Moderate

Critical

Critical

Critical

Moderate

Windows Server 2008 R2 for x64-based Systems

Internet Explorer 9
(Moderate)

Windows Server 2008 R2 for x64-based Systems
(Critical)

Windows Server 2008 R2 for x64-based Systems
(Critical)

Windows Server 2008 R2 for x64-based Systems
(Critical)

Windows Server 2008 R2 for x64-based Systems
(Moderate)

Windows Server 2008 R2 for x64-based Systems Service Pack 1

Internet Explorer 9
(Moderate)

Windows Server 2008 R2 for x64-based Systems Service Pack 1
(Critical)

Windows Server 2008 R2 for x64-based Systems Service Pack 1
(Critical)

Windows Server 2008 R2 for x64-based Systems Service Pack 1
(Critical)

Windows Server 2008 R2 for x64-based Systems Service Pack 1
(Moderate)

Windows Server 2008 R2 for Itanium-based Systems

Not applicable

Not applicable

Windows Server 2008 R2 for Itanium-based Systems
(Critical)

Windows Server 2008 R2 for Itanium-based Systems
(Critical)

Windows Server 2008 R2 for Itanium-based Systems
(Moderate)

Windows Server 2008 R2 for Itanium-based Systems Service Pack 1

Not applicable

Not applicable

Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
(Critical)

Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
(Critical)

Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
(Moderate)

Windows 8

Bulletin Identifier

Bulletin 1

Bulletin 2

Bulletin 4

Bulletin 5

Bulletin 3

Aggregate Severity Rating

None

Critical

Critical

Critical

None

Windows 8 for 32-bit Systems

Not applicable

Windows 8 for 32-bit Systems
(Critical)

Windows 8 for 32-bit Systems
(Critical)

Windows 8 for 32-bit Systems
(Critical)

Not applicable

Windows 8 for 64-bit Systems

Not applicable

Windows 8 for 64-bit Systems
(Critical)

Windows 8 for 64-bit Systems
(Critical)

Windows 8 for 64-bit Systems
(Critical)

Not applicable

Windows Server 2012

Bulletin Identifier

Bulletin 1

Bulletin 2

Bulletin 4

Bulletin 5

Bulletin 3

Aggregate Severity Rating

None

Critical

Critical

Critical

None

Windows Server 2012

Not applicable

Windows Server 2012
(Critical)

Windows Server 2012
(Critical)

Windows Server 2012
(Critical)

Not applicable

Windows RT

Bulletin Identifier

Bulletin 1

Bulletin 2

Bulletin 4

Bulletin 5

Bulletin 3

Aggregate Severity Rating

None

None

Important

Critical

None

Windows RT

Not applicable

Not applicable

Windows RT
(Important)

Windows RT
(Critical)

Not applicable

Server Core installation option

Bulletin Identifier

Bulletin 1

Bulletin 2

Bulletin 4

Bulletin 5

Bulletin 3

Aggregate Severity Rating

None

None

Critical

Critical

Moderate

Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)

Not applicable

Not applicable

Not applicable

Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
(Critical)

Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
(Moderate)

Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)

Not applicable

Not applicable

Not applicable

Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
(Critical)

Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
(Moderate)

Windows Server 2008 R2 for x64-based Systems (Server Core installation)

Not applicable

Not applicable

Windows Server 2008 R2 for x64-based Systems (Server Core installation)
(Critical)

Windows Server 2008 R2 for x64-based Systems (Server Core installation)
(Critical)

Windows Server 2008 R2 for x64-based Systems (Server Core installation)
(Moderate)

Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)

Not applicable

Not applicable

Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
(Critical)

Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
(Critical)

Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
(Moderate)

Windows Server 2012 (Server Core installation)

Not applicable

Not applicable

Windows Server 2012 (Server Core installation)
(Critical)

Windows Server 2012 (Server Core installation)
(Critical)

Not applicable

微软 Office 补丁相关信息:

Microsoft Office Suites and Components

Bulletin Identifier

Bulletin 6

Aggregate Severity Rating

Important

Microsoft Office 2003 Service Pack 3

Microsoft Excel 2003 Service Pack 3
(Important)

Microsoft Office 2007 Service Pack 2

Microsoft Excel 2007 Service Pack 2
(Important)

Microsoft Office 2007 Service Pack 3

Microsoft Excel 2007 Service Pack 3
(Important)

Microsoft Office 2010 Service Pack 1 (32-bit editions)

Microsoft Excel 2010 Service Pack 1 (32-bit editions)
(Important)

Microsoft Office 2010 Service Pack 1 (64-bit editions)

Microsoft Excel 2010 Service Pack 1 (64-bit editions)
(Important)

Microsoft Office for Mac

Bulletin Identifier

Bulletin 6

Aggregate Severity Rating

Important

Microsoft Office 2008 for Mac

Microsoft Office 2008 for Mac
(Important)

Microsoft Office for Mac 2011

Microsoft Office for Mac 2011
(Important)

Other Microsoft Office Software

Bulletin Identifier

Bulletin 6

Aggregate Severity Rating

Important

Microsoft Office Excel Viewer

Microsoft Excel Viewer
(Important)

Microsoft Office Compatibility Pack Service Pack 2

Microsoft Office Compatibility Pack Service Pack 2
(Important)

Microsoft Office Compatibility Pack Service Pack 3

Microsoft Office Compatibility Pack Service Pack 3
(Important)

 

以下为提前通知的文章全文(英文),请各位先行评估了解受影响的系统。

Microsoft Security Bulletin Advance Notification for Nov 2012:

http://technet.microsoft.com/en-us/security/bulletin/ms12-nov

Richard Chen

大中华区软件安全项目经理