On today's patch day, Microsoft has released seven security bulletins fixing a total of 32 different vulnerabilities in Microsoft Windows, the Internet Explorer browser, the Microsoft .Net Framework, Silverlight, GDI+ and Windows Defender.
I have compiled all the information that you need to deploy the updates on your own home PC or in a computer network. Included here are the deployment guide as recommended by Microsoft, links to all security and non-security patches that Microsoft has released in the last 30 days, and information on how to download the patches to a local system.
The company has furthermore released a new security policy regarding Store Apps for Windows Store, Windows Phone Store, Office Store and Azure Marketplace.
When vulnerabilities are discovered in apps available in one of the stores, developers have a maximum of 180 days to update the app with a fix. This is however only the case if the security vulnerability is not actively exploited in the wild and has a security rating of critical or important.
Microsoft expects developers to deliver patches much faster than the 180 days. The company notes that no application has come close to the deadline to this date.
Operating System Distribution
Each month, I'm looking at how each operating system is affected by the updates that were released this month.
A total of seven bulletins have been released by Microsoft this month. This month, all client versions of the Windows operating system were affected in the same way with the exception of Windows RT, if you want to count it here, which was affected by only five of the six critically rated bulletins.
On the server side of things, all server operating systems were also affected equally, with each being affected by 5 critically and 1 moderately rated bulletin.
Microsoft posts deployment recommendations that system administrators and end users can follow. It is usually more a guideline for computer networks, considering that most desktop users make use of automated updates that install one after the other in a matter of minutes.
Microsoft recommends the following deployment priority for the July 2013 updates:
Consult the Bulletin Summary page for additional information about the update.
Non-security related updates
Microsoft releases non-security updates in addition to security updates. The following list contains all non-security related updates that Microsoft released in the last 30 days.
How to download and install the July 2013 security updates
Most end users who run a computer with Windows will receive the updates via the operating system's automatic update feature. You may however want to check for updates manually using the Windows Update tool so that they get picked up right away as the update checker is only checking for updates in intervals and not constantly.
All Windows users from Vista forward can do so with a tap on the Windows key, typing Windows Update, and the selection of the first search result from the list.
If you have disabled automatic updates, run a computer without Internet connection, or want to deploy the updates on multiple systems, you may want to download them once individually so that you can deploy them on one or multiple machines.
This is also ideal to test the updates before you apply them on work related machines in productive environments.
You can download all updates individually from Microsoft's Download Center. There you also find the monthly ISO release that includes all security updates of the month. You can alternatively use third party programs that download Windows Updates for you.Advertisement
Ghacks is a technology news blog that was founded in 2005 by Martin Brinkmann. It has since then become one of the most popular tech news sites on the Internet with five authors and regular contributions from freelance writers.