According to the most recent Security Bulletin Advance Notification for July, things are a little less hectic this month (6 bulletins, 3 for Windows, 3 for other products) than they were last month (11 bulletins total). What we see this time around is a bit less threatening and potentially dangerous overall, which is not to say that you can simply skip this month’s go-round: all three of the Windows bulletins earn Critical ratings for remote code execution and should therefore be handled immediately. Two affect most Windows operating systems, and the third affects all DirectX versions from 7.0 to 9.0c for most Windows operating systems.
The other three bulletins are rated important. One affects MS Virtual PC versions 2004 and 2007, plus Virtual Server 2005 R2. Another affects ISA 2006 versions, and the third affects Microsoft Publisher from the Office 2007 Suite. The first two involve elevation of privilege, while the third involves remote code execution.
Other items for the upcoming patch release include a new version of the MS Windows Malicious Software Removal Tool, and other items may appear in the official release bulletin when it’s published on Tuesday, July 14.