It's interesting that the issue is the same at the one underlying the SSL vulnerability they fixed, so if there's any other part of the OS's that use entropy/randomness for security we can expect that too to be on the list of needing attention, I wonder if they are working on more fixes for more parts of the world's IT security.
And if I can figure this out I'm guessing russian internet bandits can too.

not just windows...

"1) It’s a bug in many platforms

2) It’s the exact same bug in many platforms (design bugs, they are a pain)

3) After an enormous and secret effort, we’ve got fixes for all major platforms, all out on the same day.

4) This has not happened before. Everything is genuinely under control."

No the problem was multi OS wide...ANYTHING browsing on the interscribble was vulnerable.
The hacks here are just trying to make it sound as if it was a MS problem, because they are Jobs' bitches.

So it is a windows-only problem then?
with the windows DNS client?
That title looks scary, I have to say.
I thought dns servers and software that run tlds where affected ...

The patch KB951748 affects ZoneAlarm products on XP & Vista - you cannot connect to the internet. 

Solution is to lower to medium setting or manually configure ports in Custom/Expert...bit of a headache

MS and ZoneLabs are working on a fix