October 2009 Security Bulletins

Earlier today DevDiv released 2 security bulletins as part of the monthly patch Tuesday cycle.

Microsoft Security Bulletin MS09-061 - Critical, Vulnerabilities in the Microsoft .NET Common Language Runtime Could Allow Remote Code Execution (974378)
Affected (DevDiv) products: .NET Framework 1.1 SP1, .NET Framework 2.0 SP1, .NET Framework 2.0 SP2.

More details about the versions affected by this vulnerability can be found in the security bulletin MS09-061. 

Microsoft Security Bulletin MS09-062 - Critical, Vulnerabilities in GDI+ Could Allow Remote Code Execution (957488)
Affected (DevDiv) products: .NET Framework 1.1 SP1, .NET Framework 2.0 SP1, .NET Framework 2.0 SP2, Visual Studio .NET 2003, Visual Studio 2005 SP1, Visual Studio 2008, Visual Studio 2008 SP1, Visual FoxPro 8.0 SP1, Visual FoxPro 8.0 SP1, Microsoft Report Viewer Redistributable 2005 SP1, Microsoft Report Viewer Redistributable 2008, Microsoft Report Viewer Redistributable 2008 SP1.

More details about the versions affected by this vulnerability can be found in the security bulletin MS09-062. 

Please remember that customers in the U.S. and Canada can receive technical support from Security Support or 1-866-PCSAFETY. There is no charge for support calls that are associated with security updates.

Thanks,
Jamshed Damkewala
Lead Program Manager, DevDiv SE Team