All B.S. aside, the facts are that Microsoft has 90% of the market share in regards to computer Operating Systems, period. This is not just a Windows XP thing, this is a Windows thing. This effects Windows systems that have come out since 1991.
Let's think about that for a second...if they release a patch right away, that fixes the issue, and say, breaks something else, that would almost be a bigger problem. There is a "Microsoft approved" workaround for the mean time, and they have acknowledged the flaw. They are internally testing the patch to avoid future issues, which is
BEST PRACTICE. In regards to security response, while it may help you sleep at night, you simply CAN'T compare Windows to any other Operating System, because the market share isn't quite the same. Regardless of which one you like, use, or think is better, you simply can't compare. You are also missing the point that Microsoft doesn't just release patches in English, rather in 23 languages. That is more of an achievement in itself than you would think.
Read this, taken from the MS Security Advisory directly:
Why is it taking Microsoft so long to issue a security update?
Creating security updates that effectively fix vulnerabilities is an extensive process. There are many factors that impact the length of time between the discovery of a vulnerability and the release of a security update. When a potential vulnerability is reported, designated product specific security experts investigate the scope and impact of a threat on the affected product. Once the MSRC knows the extent and the severity of the vulnerability, they work to develop an update for every supported version affected. Once the update is built, it must be tested with the different operating systems and applications it affects, then localized for many markets and languages across the globe.
It takes time, if you don't like it, don't use Windows. If you don't use Windows, don't bi**h about it. The problem has been identified, they have taken it on the chin as one of the biggest security flaws ever known, and it will be fixed. Although it's possible, as of yet there have not been any CONFIRMED reports of major problems, only speculation.
Wow, testing a security patch to make sure it doesn't cause problems with other components of the Operating System and development going forward....what are they thinking?