On Tuesday, December 10, 2013, Microsoft is planning to release eleven (11) bulletins. Five of the bulletins are identified as Critical with the remaining six bulletins rated Important.
The Critical updates address vulnerabilities in Internet Explorer, Windows, Microsoft Exchange and GDI+. The Important updates will be directed to issues in Microsoft Office, Microsoft Server Software, Microsoft Windows and Microsoft Developer Tools.
The Critical update for GDI+ fully addresses the publicly disclosed issue described in Security Advisory 2896666. Microsoft is still working to develop a security update for Security Advisory 2914486 and will release it when ready.
ReminderUsers of Windows XP are reminded that support ends for Windows XP on April 8, 2014. See Tim Rains article, The Risk of Running Windows XP After Support Ends April 2014.
As happens each month, Microsoft will also release an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center.
- MSRC: Advance Notification Service for December 2013 Security Bulletin Release
- TechNet: Microsoft Security Bulletin Summary for December 2013