Next week we will see security related updates delivered to Windows devices in a process known as Patch Tuesday which is entering its 11th year of existence.
This regularly scheduled cycle of updates occurs on the second Tuesday of each month like clockwork.
The updates are usually available around 10:00 AM Pacific Time and then full details are released about the bulletins and issues being addressed.
In next week’s cycle of updates there will be just four bulletins addressed that impact Microsoft Office, Server, Windows and Dynamics AX systems.
All four bulletins are labeled Important and one of them, Security Advisory 2914486, will address an vulnerability used in conjunction with a PDF exploit in targeted attacks and not on its own. According to Microsoft this only impacts users on Windows XP or Server 2003. More recent versions of Windows are not affected.
The following Microsoft software will be updated with these patches:
Windows Client
- Windows XP with SP3 (x86)
- Windows XP Professional with SP2 (x64)
- Windows Vista with SP2 (x86/x64)
- Windows 7 with SP1 (x86/x64)
- Windows 8 and 8.1 (x86/x64)
- Windows RT (8/8.1)
Windows Server
- Windows Server 2003 with SP2 (x86/x64/Itanium)
- Windows Server 2008 with SP2 (x86/x64/Itanium)
- Windows Server 2008 R2 with SP1 (x64/Itanium)
- Windows Server 2012 and 2012 R2
Microsoft Office
- Office 2003 with SP3
- Office 2007 with SP3
- Office 2010 with SP1 and SP2 (x86/x64)
- Office 2013 (x86/x64/RT)
Server Software
- SharePoint Server 2010 with SP1/SP2
- SharePoint Server 2013
- Office Web Apps 2010 with SP1/SP2
- Office Web Apps 2013
Enterprise Resource Planning
- Dynamics AX 4.0 with SP2
- Dynamics AX 2009 with SP1
- Dynamics AX 2012 and Dynamics AX 2012 R2
As is standard practice, Microsoft will address all of these updates in a webcast the day after Patch Tuesday:
Microsoft will host a webcast to address customer questions on the security bulletins on January 15, 2014, at 11:00 AM Pacific Time (US & Canada). Register now for the January Security Bulletin Webcast.
Source: Advance Notification Service for the January 2014 Security Bulletin Release
