Silent patches in IE?
Posted: Sun Jul 19, 2009 4:40 pm
If I recall correctly, Microsoft has a history of including silent patches in some of its software updates, i.e. occasionally some patched vulnerabilities that are discovered internally or reported privately aren't detailed in the release notes. Hence, in another forum I said:
Microsoft criticized for silent patches
Skeletons in Microsoft's Patch Day closet
Can anyone recommend better source material, possibly including something IE specific?
I've pretty much decided not to derail the thread in the other forum with an off-topic debate, or pointlessly aggravate the IE defender, so I guess my request might be only of academic interest. Then again, with sufficient ammunition, I might...
A subsequent poster replied:Alan wrote:New vulnerabilities are being discovered all the time. Most of them are kept secret until they're fixed, but some of the browsers don't report their vulnerabilities even after they're fixed. Except for Firefox: in its release notes it reports all of the vulnerabilities that are fixed in each release.
And then another poster, who has a history of being an IE defender, replied:Fx Lover wrote:At any rate, I LOVE FF as it reports anything it fixed!
Now I don't want to start another browser flame war. I think IE is a pretty good browser and doesn't need to be defended. I just prefer Firefox. But I don't think I'm mistaken about Microsoft's silent updates.IE User wrote:So does Chrome, IE, Opera and Safari.
Microsoft criticized for silent patches
Skeletons in Microsoft's Patch Day closet
Can anyone recommend better source material, possibly including something IE specific?
I've pretty much decided not to derail the thread in the other forum with an off-topic debate, or pointlessly aggravate the IE defender, so I guess my request might be only of academic interest. Then again, with sufficient ammunition, I might...