E
Eberhard Schefold
On April 13, MS issued a patch addressing the issues described in Security
Bulletin MS04-013, "Cumulative Security Update for Outlook Express
(837009)", the so-called severity rating of which is "Critical".
It's more than four weeks now without a patch for XP Embedded. Our
customers are severely stepping on our feet, and I can't blame them. When
can we expect a patch?
As a whole, I must say the entire patch management for XPE is a desaster
that we are unable to explain to our customers.
Why are the developers forced to develop and test DUA scripts individually?
Wouldn't that be Microsoft's damned job? Why isn't there finally a solution
to be able to apply XP Professional patches to XPE as well? I heard there
was a component once for this, which was withdrawn by Microsoft for
legal/license issues. Sorry, I cannot accept this any longer. Solve the
damn "issues" and finally give us a solution!
If this situation will not improve *fast*, we will have to make a cut. Our
customers have gotten very sensitive towards security issues, and for good
reason. All these security holes are bad enough, but at least we have to
offer them a satisfactory patch strategy. For that, we need acceptable
support from Microsoft. If we don't get this support, we will be forced to
abandon XP Embedded. With this current frequency of patches, this platform
no longer allows us to deliver the quality our customers expect.
Microsoft, we really need help here!
Bulletin MS04-013, "Cumulative Security Update for Outlook Express
(837009)", the so-called severity rating of which is "Critical".
It's more than four weeks now without a patch for XP Embedded. Our
customers are severely stepping on our feet, and I can't blame them. When
can we expect a patch?
As a whole, I must say the entire patch management for XPE is a desaster
that we are unable to explain to our customers.
Why are the developers forced to develop and test DUA scripts individually?
Wouldn't that be Microsoft's damned job? Why isn't there finally a solution
to be able to apply XP Professional patches to XPE as well? I heard there
was a component once for this, which was withdrawn by Microsoft for
legal/license issues. Sorry, I cannot accept this any longer. Solve the
damn "issues" and finally give us a solution!
If this situation will not improve *fast*, we will have to make a cut. Our
customers have gotten very sensitive towards security issues, and for good
reason. All these security holes are bad enough, but at least we have to
offer them a satisfactory patch strategy. For that, we need acceptable
support from Microsoft. If we don't get this support, we will be forced to
abandon XP Embedded. With this current frequency of patches, this platform
no longer allows us to deliver the quality our customers expect.
Microsoft, we really need help here!