Patch Tuesday, January 2026 Edition

January 2026 Patch Tuesday: Microsoft released fixes for 113 vulnerabilities across Windows and related software, calling out an actively exploited Desktop Window Manager zero-day (CVE-2026-20805), critical Secure Boot bypass (CVE-2026-21265) with certificate expiry implications, Office remote code execution issues, and the removal of legacy modem drivers due to privilege-elevation risks; vendors and researchers urge rapid patching and cautious bootloader/BIOS updates to avoid unbootable systems. Browser updates from Mozilla are also noted, with Chrome/Edge updates expected.