News, tips, advice, support for Windows, Office, PCs & more. Tech help. No bull. We're community supported by donations from our Plus Members, and proud of it
Home icon Home icon Home icon Email icon RSS icon
  • To patch or not to patch – Microsoft's new 'Security Servicing' policy draft

    Home Forums Code Red – Security/Privacy advisories To patch or not to patch – Microsoft's new 'Security Servicing' policy draft


    This topic contains 0 replies, has 1 voice, and was last updated by

     LTL 11 months, 2 weeks ago.

    • Author
    • #197593 Reply

      AskWoody Plus

      Microsoft has published a new ‘Security Servicing’ policy draft:

      Microsoft’s commitment to protecting customers from vulnerabilities in our products, services, and devices includes providing security updates that address these vulnerabilities when they are discovered. We understand that researchers have wanted better clarity around the security features, boundaries and mitigations which exist in Windows and the servicing commitments which come with them. We have drafted a document which better describes the criteria Microsoft Security Response Center (MSRC) uses when determining whether a reported vulnerability will be addressed through servicing, or in the next version of a product. We are sharing the draft copy with the research community and would like feedback before we make the final copy available online. We are primarily interested in feedback around our servicing policies and whether our criteria makes sense to you, the researcher.
      Draft of Microsoft Security Servicing Commitments for Windows

      Microsoft Security Servicing Commitments.pdf

      7 users thanked author for this post.

    Please follow the -Lounge Rules- no personal attacks, no swearing, and politics/religion are relegated to the Rants forum.

    Reply To: To patch or not to patch – Microsoft's new 'Security Servicing' policy draft

    You can use BBCodes to format your content.
    Your account can't use Advanced BBCodes, they will be stripped before saving.