cumulative updates Archives

Winsage

June 16, 2025

Microsoft: June Windows Server security updates cause DHCP issues

Microsoft has identified an issue with the June 2025 security updates that causes the Dynamic Host Configuration Protocol (DHCP) service to freeze on certain Windows Server systems. This affects the service's ability to apply renewals of unicast IP addresses, impacting network operations. Microsoft has acknowledged that the DHCP Server service may intermittently stop responding after the update and is working on a resolution. Additionally, other issues affecting Windows Server systems have been addressed, including application failures and authentication problems on domain controllers. Out-of-band updates were previously issued to fix bugs causing Hyper-V virtual machines to restart or freeze, and emergency updates were released for issues with Windows containers on certain Windows Server versions.

Winsage

June 11, 2025

Microsoft creates separate Windows 11 24H2 update for incompatible PCs

Microsoft announced a revised security update for Windows 11 24H2 systems to address compatibility issues with the initial update released during this month's Patch Tuesday. The revised update is being gradually deployed and includes all June 2025 security enhancements. Microsoft confirmed that the June 2025 security update is available for all other supported versions of Windows. The specific hardware or software configurations affected by the compatibility issue have not been detailed. On the same day, Microsoft rolled out security updates (KB5060842 and KB5060999) addressing 66 vulnerabilities across Windows 11 24H2 and 23H2, including a zero-day vulnerability (CVE-2025-33053) and a Windows SMB privilege escalation flaw. The updates mitigated ten critical vulnerabilities, resolved a Windows Hello sign-in issue, and extended system restore points to 60 days on Windows 11 24H2 devices. Additionally, KB5060999 addressed graphics support issues affecting Remote Desktop connections. Microsoft also released the KB5060533 cumulative update for Windows 10 22H2, restoring seconds to the Calendar flyout and resolving Hyper-V virtual machine issues.

Winsage

June 11, 2025

Microsoft fixes Windows Server auth issues caused by April updates

Microsoft has resolved an authentication issue that arose after the April 2025 security updates on Windows Server domain controllers, primarily affecting Windows Server 2016, 2019, 2022, and 2025. The problem, acknowledged in early May, involved difficulties with Kerberos logons or delegations reliant on certificate-based credentials due to the April monthly security update (KB5055523). This issue could lead to authentication failures in environments using Windows Hello for Business Key Trust or Device Public Key Authentication, impacting various software solutions. Microsoft released cumulative updates to fix these issues and recommended installing the latest security updates. For those still facing problems, a temporary registry adjustment was advised. The authentication issues were linked to security enhancements addressing a high-severity vulnerability (CVE-2025-26647) that could allow privilege escalation through an input validation flaw in Windows Kerberos. Microsoft had previously addressed related authentication issues in April and issued emergency updates in November 2022 for Kerberos sign-in failures affecting Windows domain controllers.

Winsage

June 11, 2025

Microsoft June 2025 Patch Tuesday fixes exploited zero-day, 66 flaws

On June 2025 Patch Tuesday, Microsoft released security updates for 66 vulnerabilities, including one actively exploited and one publicly disclosed zero-day vulnerability. The updates addressed ten "Critical" vulnerabilities, with eight being remote code execution vulnerabilities and two related to elevation of privileges. The breakdown of vulnerabilities includes 13 Elevation of Privilege, 3 Security Feature Bypass, 25 Remote Code Execution, 17 Information Disclosure, 6 Denial of Service, and 2 Spoofing vulnerabilities. The actively exploited zero-day vulnerability is CVE-2025-33053, a WebDAV Remote Code Execution vulnerability, while the publicly disclosed zero-day is CVE-2025-33073, a Windows SMB Client Elevation of Privilege vulnerability. Other companies also released updates in June 2025, including Adobe, Cisco, Fortinet, Google, HPE, Ivanti, Qualcomm, Roundcube, and SAP, addressing various vulnerabilities across their products.

Winsage

May 6, 2025

Announcing Windows 11 Insider Preview Build 26120.3950 (Beta Channel)

Windows 11 Insider Preview Build 26120.3950 (KB5055653) has been released to the Beta Channel for Windows 11, version 24H2. Insiders on version 23H2 can opt to upgrade to version 24H2 with this build. Key changes include the introduction of energy saver management in Microsoft Intune, allowing IT administrators to manage energy settings on Windows 11 PCs. Other updates involve UI experiments in Recall, taskbar enhancements, and graphics improvements for HDR capabilities. Fixes include resolving keyboard focus issues in the taskbar, startup sound playback issues, and scaling problems after sleep/resume. Known issues involve bugs with Xbox Controllers and live captions crashing. Insiders are reminded to keep their devices updated for optimal performance and access to features.

Winsage

May 6, 2025

Announcing Windows 11 Insider Preview Build 26200.5581 (Dev Channel)

Windows 11 Insider Preview Build 26200.5581 (KB5055651) has been released to the Dev Channel, introducing new features, improvements, and fixes. Key updates include: - Energy Saver in Microsoft Intune: IT administrators can manage energy saver settings on Windows 11 PCs through group policies and MDM configurations, optimizing battery usage by limiting background activities and reducing screen brightness. - Taskbar Improvements: The needy state pill for apps has been redesigned, and administrators can allow users to unpin specific pinned apps. - Graphics Enhancements: Improved management of HDR capabilities, including refined wording for HDR settings and independent toggling of Dolby Vision mode. - Fixes: Resolved issues with taskbar keyboard focus, startup sound playback, scaling after sleep, and cumulative update errors. - Known Issues: Users may experience discrepancies in build version display after PC resets and issues with Xbox Controllers causing bugchecks. - Recall (Preview): Users can opt to remove Recall at any time, and intelligent text actions are now moderated locally. - Windows Search: For optimal performance, devices should be connected to power during initial search indexing. - Task Manager: Users may see the System Idle Process showing as 0 after the addition of a new CPU Utility column. Windows Insiders in the Dev Channel receive updates based on Windows 11, version 24H2, with features rolled out gradually.

Winsage

April 23, 2025

Microsoft fixes Remote Desktop freezes caused by Windows updates

Microsoft has resolved an issue causing Remote Desktop sessions to freeze on Windows Server 2025 and Windows 11 24H2 devices. The initial fix was provided on February 25 with the KB5052093 optional update for Windows 11, followed by the KB5055523 Patch Tuesday cumulative update for Windows Server on April 8. Users of Windows Server 2025 who installed the February 2025 Security update (KB5051987) experienced freezing issues that rendered mouse and keyboard inputs unresponsive. Microsoft recommended installing the latest updates for improvements and resolutions. Additionally, Microsoft implemented a Known Issue Rollback (KIR) to address Remote Desktop and RDS connection problems stemming from Windows 11 24H2 updates since January 2025, which caused UDP connection interruptions to RDS hosts on Windows Server 2016. A permanent solution has been included in the recent cumulative updates. Microsoft also fixed a bug causing blue screen errors and installation issues on Windows Server 2025 systems with over 256 logical processors, included in updates since the KB5046617 cumulative update. However, users were warned of potential login issues with Windows Hello after the April 2025 security updates and that some Windows Server 2025 domain controllers may become unreachable after a restart.

Winsage

April 22, 2025

Windows 10 KB5055612 preview update fixes a GPU bug in WSL2

Microsoft has released the optional KB5055612 preview cumulative update for Windows 10 22H2, which addresses a GPU paravirtualization issue in the Windows Subsystem for Linux 2 (WSL2). This update is part of Microsoft's initiative for optional non-security preview updates, typically available at the end of each month, allowing administrators to test upcoming fixes and features. The update does not include security updates and can be installed manually through Windows Update or downloaded from the Microsoft Update Catalog. The key changes in the KB5055612 update include security improvements to internal Windows OS functionality, a fix for the case-sensitive GPU paravirtualization check in WSL2, and updates to the Windows Kernel Vulnerable Driver Blocklist to include drivers with known vulnerabilities exploited in BYOVD attacks. Microsoft has noted two known issues: one related to the Citrix Session Recording Agent (SRA) version 2411 causing update failures, with a suggested workaround, and another involving an Event 7023 error in Windows EventViewer regarding SgrmBroker.exe, which is currently non-functional and can be ignored. A fix for this bug is expected in future updates.

Winsage

April 12, 2025

Microsoft: Windows ‘inetpub’ folder created by security fix, don’t delete

Microsoft has acknowledged that the April 2025 Windows security update creates a new, empty "inetpub" folder on user systems, advising against its deletion. This folder is associated with Internet Information Services (IIS) but appears even on systems without IIS installed. The folder is created using the SYSTEM account, and while deleting it does not disrupt Windows functionality, Microsoft emphasizes it should remain untouched. The existence of the C:inetpub directory prior to the update may cause installation failures of the cumulative updates. Microsoft has updated its advisory regarding a security vulnerability (CVE-2025-21204) related to improper link resolution within the Windows Update Stack, warning that exploitation could allow local attackers to escalate permissions. Users can recreate the C:inetpub folder by installing IIS through the Windows Features control panel, and uninstalling IIS will remove the software but leave the folder intact.

Winsage

April 11, 2025

Windows 11 Update Issues and What To Do About Them

Windows 11 version 24H2 has introduced significant issues, including blue screens of death (BSOD) and device bricking associated with update KB5043145. Users have reported problems such as black screens, corrupted boot sectors, and non-functional system restore points. Businesses are facing complications like failed domain join operations, group policy errors, and stalled WSUS updates. Specific issues include Remote Desktop disconnections after update KB5050094, the removal of the Windows Copilot app in March 2025, blocked BIOS updates for Lenovo ThinkPad users, and gaming performance problems for titles like Star Wars Outlaws and Avatar: Frontiers of Pandora. Microsoft is aware of these issues but is slow to provide solutions. Users are advised to use built-in troubleshooters, roll back problematic updates, pause updates, manually update drivers, and back up their systems before major updates.