The March security sabbatical has come to an end for Microsoft. The Redmond Company has now published the monthly Security Bulletin Advance Notification delivering a preview of the updates
that will be made available as a part of the monthly patch cycle. Although on April 3 Microsoft has released an out of band security update addressing a total of seven vulnerabilities, including the Windows Animated Cursor Handling flaw, users should expect additional updates on April 10.
"I noted on Tuesday when discussing the release of MS07-017 that our out of band release was not canceling our regularly scheduled April 2007 release. In that vein, as part of our regular release process, this being the Thursday before the second Tuesday, we've posted our Advance Notification like we always do," informed Christopher Budd security program manager with MSRC.
On April 10, Microsoft plans a total of five security bulletins. According to the advance notification, five of them will address Windows vulnerabilities. The maximum severity rating for the four Windows updates is Critical. The remaining security bulletin will target Microsoft Content Management Server. This patch also features a Critical severity rating.
The Microsoft Windows Malicious Software Removal Tool will also be updated and served via Windows Update, Microsoft Update, Windows Server Update Services and the Download Center. On top of this, Microsoft will offer six non-security high-priority updates.
Together with the Security Bulletin MS07-017 aimed at resolving vulnerabilities in GDI, April will be a busy month for Microsoft, following March when the Redmond Company did not release any security updates.