Don’t forget! Microsoft security patches will be issued later today

Graham Cluley

January 14Later today, Tuesday 14 January, Microsoft will be releasing its first bunch of scheduled security patches for 2014.

And the good news is that it’s – by normal standards – not too monstrous, making life that little bit less arduous for IT teams and system administrators around the world.

As a blog post by Microsoft’s Dustin Childs reveals, there will only be four security bulletins issued by Microsoft today, addressing vulnerabilities in Microsoft Windows, Office and Dynamics AX.

And, in further good news, none of them have been rated as any higher than “important” by Microsoft rather than the more stressful classification of “critical”.

Amongst the fixes is one for a Windows XP and Windows Server 2003 exploit that allows an “evalation of privilege”. First reported in November 2013, the in-the-wild zero-day attack was seen being used in PDF-based attacks, utilising a vulnerability in unpatched versions of Adobe Reader.

As ever, it’s a reminder for all computer users to keep their software patched, and in particular for home users and companies still relying upon Windows XP to upgrade to a newer operating system as soon as possible – as support and security patches will cease in April.

As usual full details of the patches won’t be apparent until Microsoft releases its fixes later today, but we do know that all of the updates will require a reboot.

Furthermore, don’t think that your IT staff are going to have it entirely their own way because Microsoft is issuing less security patches than normal.

Today’s Patch Tuesday from Microsoft coincides with security updates from both Adobe and Oracle (the makers of Java).

Learn more about Microsoft’s security bulletins for January 2014 via its website.

Graham Cluley Graham Cluley is a veteran of the anti-virus industry having worked for a number of security companies since the early 1990s when he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows. Now an independent security analyst, he regularly makes media appearances and is an international public speaker on the topic of computer security, hackers, and online privacy. Follow him on Twitter at @gcluley, or drop him an email.
Never miss a thing. Sign up for the free GCHQ newsletter from Graham Cluley.
GET EMAIL UPDATES