Last Tuesday Microsoft released Patch Tuesday April 2024, with security updates for 150 flaws and sixty-seven remote code execution bugs.
Three of them were critical, but there are over sixty-seven remote code execution errors (RCEs from remote code execution). More than half of RCE flaws are found in Microsoft SQL drivers.
There were also fixes for twenty-six Secure Boot bypasses released this month, including two from Lenovo.
The number of bugs in each vulnerability category is listed below:
- 31 Elevation of Privilege Vulnerabilities
- 29 Security Features Bypass Vulnerabilities
- 67 Remote Code Execution Vulnerabilities
- 13 Information Disclosure Vulnerabilities
- 7 Denial of Service Vulnerabilities
- 3 spoofing Vulnerabilities
The total number of 150 defects does not include 5 Microsoft Edge defects fixed on April 4 and 2 Mariner defects. Mariner is an open source Linux distribution developed by Microsoft for Microsoft Azure services.
To be fair, Microsoft has a more demanding development environment. Windows is installed on a huge range of hardware from different manufacturers, which leads to complex update processes and compatibility challenges.
However, problems from Windows updates are tiresome especially for those who seek stability.
Agreed, Linux is fine. But it has to eventually evolve to the need to use the command line.
When I showed my wife what she needs to do to install a simple and well-known application on her Ubuntu laptop, I ate not just a slipper but the entire shoebox!
And with her right, learned from clicks and next, next, next and ready.... It's definitely not for everyone.