A critical fix for Microsoft Office is on the calendar, as is a separate patch for Windows.
Microsoft on Thursday said it would release just two security patches next week, five fewer than last month.
A fix for Microsoft Office, the Redmond, Wash.-based company's business productivity suite, is on the calendar, as is a separate patch for Windows. The former will be labeled "critical," Microsoft's most serious warning, while the latter will be tagged as "important."
As is its practice, Microsoft gave no additional details. Its advance notifications are meant only to "help customers plan for the deployment of these security updates more effectively," the company said in the alert.
Although the warning didn't offer clues on the problems to be patched, eEye Digital Security knows about one unfixed critical vulnerability in Windows, while Danish vulnerability tracker Secunia lists several unpatched Office problems. Because the latter, however, hark back to 2003 and 2004, it's likely the Office issue has either not yet been disclosed or has been kept quiet by its discoverer(s).
A single non-security, high-priority update will also be released via Microsoft Update, said the alert, and the Windows Malicious Software Removal Tool will, as usual, be refreshed.
5 Top Federal Initiatives For 2015As InformationWeek Government readers were busy firming up their fiscal year 2015 budgets, we asked them to rate more than 30 IT initiatives in terms of importance and current leadership focus. No surprise, among more than 30 options, security is No. 1. After that, things get less predictable.