Symantec, usually no fan of Microsoft, recently released their 11th Internet Security Threat Report, in which they found, "Windows had the fewest number of patches and the shortest average patch development time of the five operating systems it monitored in the last six months of 2006."

It took Microsoft an average of 21 days to roll out a patches for 39 security holes in Windows (a more than 100% increase in vulnerabilities over the same period in 2006), beating #2 ranked Red Hat Linux which required an average of 58 days to fix 208 security issues. Of course, of those 208 holes in Red Hat, only 2 were high-severity and 76 were considered low-risk.

Apple, for it's part, needed an average of 66 days to fix 43 vulnerabilities. (I guess the Cupertino kids were busy working on that iPhone hotness).