Sign in / up

back to article Microsoft closes Windows LSA hole under active attack

Microsoft patched 74 security flaws in its May Patch Tuesday batch of updates. That's seven critical bugs, 66 deemed important, and one ranked low severity. At least one of the vulnerabilities disclosed is under active attack with public exploit code, according to Redmond, while two others are listed as having public exploit …

COMMENTS

Post your comment
House rules Send corrections
Add to 'My topics' unstar *
  1. Bitsminer Silver badge

    CVE-2022-29972

    It's early May and already there are 30,000 vulnerabilities disclosed.

    What a time to be alive!

    /s

    1 0 Reply
    1. Richard 26
      Reply Icon

      Re: CVE-2022-29972

      CVE numbers aren't sequential, starting at 1. Big outfits like Microsoft are authorized to issue their own CVE numbers and have a range allocated to them.

      3 0 Reply
      1. DS999 Silver badge
        Reply Icon

        Re: CVE-2022-29972

        Big outfits like Microsoft are authorized to issue their own CVE numbers and have a range allocated to them

        Presumably a large range, because no one wants to see articles on the Reg, Slashdot, etc. about how Microsoft had so many CVEs one year they used up their entire range and had to request a another.

        13 0 Reply
        1. FlamingDeath Silver badge
          Reply Icon

          Re: CVE-2022-29972

          Microsoft having their own CVE range should be the canary in the coalmine, but still businesses insist on using this junk

          0 1 Reply

  2. This post has been deleted by its author

  3. Anonymous Coward
    Anonymous Coward

    Patch Tuesday

    I think they should rename it 'Turd Polish Tuesday'

    6 0 Reply
  4. FlamingDeath Silver badge

    Pootah Science

    How much do they charge for a pootah science degreen these days?

    Do they charge more for teaching incompetence?

    It's just logic, and if they can't follow the logic, they should do something less harmful, maybe gardening?

    0 2 Reply
  5. FlamingDeath Silver badge

    People who write shoddy exploitable code, are no different than that wankstain oppenheimer, unless of course they intended to write shoddy exploitable code, in which case, they are probably nothing like oppenheimer

    if you're reading this and you do not understand, you are part of the problem

    nobody knew really what oppenheimer intended, only just that he was, how do we say? disappointed with himself?

    0 2 Reply
  6. Anonymous Coward
    Anonymous Coward

    CISA Temporarily Removes c from Known Exploited Vulnerability Catalog

    Issues seen with CVE-2022-26925 on Domain Controllers

    https://www.cisa.gov/uscert/ncas/current-activity/2022/05/13/cisa-temporarily-removes-cve-2022-26925-known-exploited

    0 0 Reply

POST COMMENT House rules

Not a member of The Register? Create a new account here.

Forgotten password ?

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like