Two Windows Security Bulletins Coming Next Week

Microsoft plans to post two security bulletins for Windows next Tuesday, and at least one of them addresses a critical vulnerability.

The Microsoft Security Response Center alerted IT departments on Thursday about its patching plans for the month of December as part of the Microsoft Security Bulletin Advance Notification program.

Although the predictions in the notification are usually on target, the company sometimes releases a different number of security bulletins on a Patch Tuesday than it had expected to the previous week.

According to Microsoft's advance notification, both security updates will require reboots.

Patch Tuesday will also bring:

  • An update to the Windows Malicious Software Removal Tool
  • Two non-security high-priority updates on Windows Update and Software Update Services
  • Three non-security high-priority updates on Microsoft Update and Windows Server Update Services

    Microsoft did not provide additional detail about the security or non-security updates.

  • About the Author

    Scott Bekker is editor in chief of Redmond Channel Partner magazine.


    • Microsoft Adds Privileged Identity Management Delegation to Azure Lighthouse

      The commercial release of Privileged Identity Management (PIM)-enabled Azure Lighthouse delegations is now available, Microsoft on Monday announced.

    • Microsoft Commercially Releases Entra Workload Identities

      Microsoft announced on Monday that its Entra Workload Identities service is now available as a commercial product offering, having reached the "general availability" stage.

    • The 2022 Microsoft Product Roadmap

      Microsoft has a lot in the docket for 2022, including new products like SQL Server 2022, Exchange Subscription Edition and Visual Studio 2022 for Mac.

    • OpenSSF Adopts Microsoft Open Source Software Security Guidelines

      The Open Source Security Foundation (OpenSSF) announced on Wednesday that it has adopted the Secure Supply Chain Consumption Framework (S2C2F) for ensuring the secure use of open source software (OSS) by developers.