Microsoft released 12 security updates that fix 71 vulnerabilities during its last Patch Tuesday of 2015. The updates fix two actively attacked zero-day leaks. This month the updates patch issues with Windows, Internet Explorer, Microsoft's Edge browser, Office, .NET Framework, Skype for Business, Microsoft Lync and Silverlight.
Eight Security Bulletins have been marked critical which means that attackers could use the leaks to take full control over the computer without too much interaction of the user.
The two zero-day leaks were discovered in Office and Windows and actively attacked before they were patched. While the Office vulnerability was not disclosed, the Windows vulnerability saw its details published before.
As usual, Windows users can download the updates through Windows Update.
Microsoft released 135 updates this year, a big increase over the 85 patches released in 2014.
