Welcome to the overview of Microsoft's January 2014 patch Tuesday. Microsoft has released a total of four bulletins on the first patch day of the year 2014, all of which have received the maximum severity rating of important.
A severity rating of important is the second-highest possible rating after critical. It means that at least one Microsoft product has received the severity rating, while others may have received the same rating, a lower rating, or none at all if they are not affected by the vulnerability.
The information below provide you with everything there is to know about the security patches and non-security patches that Microsoft has released this month, or after the last patch day.
We list the operating system and Office distribution so that you can easily look up the products that matter to you, provide you with a deployment guide, link to all security and non-security updates on the Microsoft website, and describe the various ways they can be downloaded and installed.
Operating System Distribution
Only two bulletins address issues in Microsoft server or client operating systems. Several operating systems, Windows Vista and all Windows 8 versions on the client side, and Windows Server 2008, Windows Server 2012 and Windows Server 2012 R2 on the server side are not affected at all this month.
All remaining operating systems, Windows XP and Windows 7 on the client side, and Windows Server 2003 and Windows Server 2008 R2 on the server side are affected by one of the bulletins only.
One of the remaining two bulletins impacts all Microsoft Office versions. It is interesting to note that it affects them all in the same way.
Each Office version has received the same severity rating of important.
Microsoft releases a deployment guide each month that system administrators can use as a guideline for deployment.
The top priority this month is the MS14-002 vulnerability in Windows Kernel that could allow an elevation or privileges.
The company suggests the following deployment priority for this month's bulletins.
Other security-related information
Non-security related updates
How to download and install the January 2014 security updates
All security-related updates are available via Microsoft's Windows Update service which means that the updates will be delivered automatically to most home users.
Users who have blocked the automatic update feature can download the latest security updates and regular updates from Microsoft's Download Center website instead.
A DVD image containing all security updates of the month will also be made available soon.
It may make sense to download updates from Microsoft if they need to be deployed on multiple systems as it will save bandwidth in the progress.
It is alternatively possible to use third-party download tools to download all patches for Windows and other Microsoft products.
Advertising revenue is falling fast across the Internet, and independently-run sites like Ghacks are hit hardest by it. The advertising model in its current form is coming to an end, and we have to find other ways to continue operating this site.
We are committed to keeping our content free and independent, which means no paywalls, no sponsored posts, no annoying ad formats or subscription fees.
If you like our content, and would like to help, please consider making a contribution:
Ghacks is a technology news blog that was founded in 2005 by Martin Brinkmann. It has since then become one of the most popular tech news sites on the Internet with five authors and regular contributions from freelance writers.