[BESAdmin-Announcements] [Patches for Windows (English)] Content Modification Announcement - MS09-059, MS09-062, KB925336

[Announcements for BES Administrators]

BigFix has modified three sets of content in the Patches for Windows (English) / Enterprise Security site.


1. The following Fixlets have been modified to check for the extended protection for authentication module. This is not a prerequisite for installing the patch, but it more closely mirrors Microsoft behavior:

ID: 905901	MS09-059: Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service - Windows XP SP2/SP3     
ID: 905902	MS09-059: Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service - Windows XP SP2/SP3 - CORRUPT PATCH               
ID: 905903	MS09-059: Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service - Windows XP SP2 (x64)   
ID: 905904	MS09-059: Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service - Windows XP SP2 (x64) - CORRUPT PATCH             
ID: 905905	MS09-059: Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service - Windows Server 2003 SP2            
ID: 905906	MS09-059: Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service - Windows Server 2003 SP2 - CORRUPT PATCH      
ID: 905907	MS09-059: Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service - Windows Server 2003  SP2 (x64)               
ID: 905908	MS09-059: Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service - Windows Server 2003  SP2 (x64) - CORRUPT PATCH          


2. The following Fixlets have been modified to account for standalone SQL Server 2005 Reporting Server installs:

ID: 906297	MS09-062: Vulnerabilities in GDI+ Could Allow Remote Code Execution - SQL Server 2005 SP2 - GDR Branch                
ID: 906299	MS09-062: Vulnerabilities in GDI+ Could Allow Remote Code Execution - SQL Server 2005 SP3 - GDR Branch                
ID: 9062103	MS09-062: Vulnerabilities in GDI+ Could Allow Remote Code Execution - SQL Server 2005 SP2 - QFE Branch                
ID: 9062128	MS09-062: Vulnerabilities in GDI+ Could Allow Remote Code Execution - SQL Server 2005 SP3 - QFE Branch                
ID: 906295	MS09-062: Vulnerabilities in GDI+ Could Allow Remote Code Execution - SQL Server 2005 SP2 - GDR Branch (x64)      
ID: 906298	MS09-062: Vulnerabilities in GDI+ Could Allow Remote Code Execution - SQL Server 2005 SP3 - GDR Branch (x64)      
ID: 9062105	MS09-062: Vulnerabilities in GDI+ Could Allow Remote Code Execution - SQL Server 2005 SP2 - QFE Branch (x64)      
ID: 9062127	MS09-062: Vulnerabilities in GDI+ Could Allow Remote Code Execution - SQL Server 2005 SP3 - QFE Branch (x64)      


3. The following Fixlet messages have a note added to the description to warn customers about the applicability of the patch. Customers should only apply the following Fixlet messages if they run into specific errors with large Microsoft installers:
 
ID: 92533601	925336: Update for Windows Installer - Windows Server 2003 SP1/SP2  
ID: 92533602	925336: Update for Windows Installer - Windows Server 2003 SP1/SP2 - CORRUPT PATCH            
ID: 92533603	925336: Update for Windows Installer - Windows Server 2003 SP2 (x64)                
ID: 92533604	925336: Update for Windows Installer - Windows Server 2003 SP2 (x64) - CORRUPT PATCH          


Patches for Windows (English) / Enterprise Security published version: 1293

BES administrators are encouraged to verify open actions and synchronize baselines that contain the modified content.  Instructions for synchronizing baselines can be found here: http://support.bigfix.com/cgi-bin/kbdirect.pl?id=401.  Please contact BigFix Technical Support if you have any questions regarding this change.

-- 
BigFix Application Engineering Team