hotpatch Archives

Winsage

March 20, 2026

Microsoft: March Windows updates break Teams, OneDrive sign-ins

Microsoft has acknowledged that the March update for Windows 11 (KB5079473) has caused sign-in complications with Microsoft accounts in various applications, including Teams, OneDrive, Microsoft Edge, Excel, Word, and Microsoft 365 Copilot. Users may receive error messages indicating a lack of Internet connection during sign-in attempts, despite being online. This issue affects Microsoft account sign-ins but does not impact businesses using Entra ID for app authentication. Microsoft is working on a fix and suggests users restart their PCs while connected to the Internet as a temporary workaround. If restarted without an Internet connection, the sign-in problem may persist. Additionally, Microsoft has released two emergency out-of-band updates for Bluetooth visibility issues and security vulnerabilities in the Routing and Remote Access Service. Guidance has also been provided to resolve access issues related to the C: drive and app failures on certain Samsung Windows 11 laptops due to a problematic version of the Samsung Galaxy Connect app.

Winsage

March 15, 2026

Microsoft Releases Emergency Windows 11 Hotpatch to Fix Remote Code Execution Flaw

Microsoft has released an out-of-band hotpatch update, KB5084597, to address three critical remote code execution vulnerabilities (CVE-2026-25172, CVE-2026-25173, CVE-2026-26111) in the Windows Routing and Remote Access Service (RRAS) management tool. This update is specifically for Windows 11 Enterprise devices in the hotpatch program that did not receive fixes during the March 2026 Patch Tuesday. The vulnerabilities can be exploited by an authenticated attacker within the domain, potentially leading to remote code execution. Hotpatch updates apply fixes through in-memory patching without requiring a device reboot, making them suitable for mission-critical devices. The update is applicable to Windows 11 versions 24H2, 25H2, and Windows 11 Enterprise LTSC 2024, and will be automatically installed on enrolled devices without a restart. Non-enrolled devices received the fix via the standard March 10 Patch Tuesday update.

Winsage

March 11, 2026

Hotpatching goes default in Windows Autopatch whether you like it or not

Microsoft will enable hotpatch security updates by default starting with the May 2026 Windows security update. Hotpatch updates allow security enhancements to be applied without system restarts, while quarterly baseline updates will still require a restart. Windows Autopatch will manage updates using "testing rings" to progressively roll out updates and address any issues. Devices must run Windows 11 24H2 or later and have the April 2026 security update installed to receive hotpatch updates automatically. Existing update policies will remain intact, and administrators can opt out of hotpatch updates at the tenant or group policy level.

Winsage

March 11, 2026

Microsoft to enable Windows hotpatch security updates by default

Microsoft will enable hotpatch security updates by default for eligible Windows devices managed through Microsoft Intune and the Microsoft Graph API starting with the May 2026 Windows security update. This change aims to enhance security and reduce the time to achieve 90% patch compliance by half. The updates will be managed through Windows Autopatch, which allows organizations to apply updates without manual intervention. Administrators can manage hotpatch updates at the tenant level and can opt-out starting April 1, 2026. A Hotpatch quality updates report will be available in Intune to ensure devices are ready for the updates. Windows Autopatch became generally available in July 2022 and is currently operational on over 10 million production devices.

Winsage

March 11, 2026

Microsoft flips Windows Autopatch to default hotpatch security updates

Microsoft will automatically enable hotpatch security updates for Windows devices managed through Microsoft Intune or the Microsoft Graph API starting with the May 2026 Windows security update. This feature allows security fixes to be applied without requiring a device restart, improving compliance efficiency. Devices that install the April 2026 baseline security update will begin receiving hotpatch updates in May 2026, but this will only apply to devices not already assigned to a quality update policy. Organizations can opt out of hotpatch updates for specific device groups or their entire tenant starting April 1, 2026.

Winsage

February 11, 2026

Microsoft rolls out Windows 11 26H1, but you can’t have it

Microsoft has released Windows 11 26H1, which is specifically designed for devices with Qualcomm Snapdragon X2 hardware and is not intended for most users. This version will not be available as an in-place update, will not have a successor (26H2), and will not support hotpatch updates. IT administrators are advised to use Windows 11 versions 24H2 and 25H2 for enterprise deployment. The release marks the retirement of the .NET Framework 3.5 as a Windows Feature on Demand optional component, effective with Windows 11 version 26H1. Support for .NET Framework 3.5 will end on January 9, 2029, prompting developers to prioritize migration efforts. Only devices with Snapdragon X2 hardware running Windows 11 26H1 will be affected by this change.

Winsage

February 11, 2026

Microsoft releases Windows 11 26H1, but it’s not for existing PCs. Windows 11 26H2 is coming for all PCs

Microsoft has confirmed the existence of Windows 11 26H1, which will roll out exclusively on new PCs equipped with Snapdragon X2 chips starting in early 2026. This version is tailored for ARM-based devices and will not be available for download or installation on current PCs. Windows 11 26H1 does not introduce new features but focuses on performance and battery life improvements. It may also be optimized for Nvidia N1X chips, which are expected to release in Q1 2026. Windows 11 26H2 is set to roll out for existing hardware in October 2026 as a normal yearly update. It will be based on the same core platform as previous versions 24H2 and 25H2, while 26H1 operates on a different core, meaning there is no upgrade path from 26H1 to 26H2. Both versions will unify under Windows 27H2 in 2027.

Winsage

December 11, 2025

Windows Defender Firewall Service Vulnerability Let Attackers Disclose Sensitive Data

A vulnerability in the Windows Defender Firewall Service, designated as CVE-2025-62468, was disclosed on December 9, 2025, and has an Important severity rating. It results from an out-of-bounds read condition, allowing an authorized attacker with elevated privileges to access sensitive heap memory without user interaction. The vulnerability has a CVSS v3.1 base score of 4.4, indicating moderate severity, and is characterized by a local attack vector, low attack complexity, high privileges required, and no user interaction needed. Microsoft assessed the likelihood of exploitation as unlikely and has released security updates for affected products, including Windows Server 2025 and various versions of Windows 11. The vulnerability primarily affects organizations with strict access controls and monitoring protocols. Security researchers from Kunlun Lab are credited with responsibly disclosing this vulnerability.

Winsage

November 30, 2025

Windows 11 bug “hides” your password sign-in button and Microsoft’s fix is… hover and click the right spot

Microsoft has acknowledged a bug in Windows 11 that obscures the “password” icon, preventing users from accessing the password field when logging in. This issue affects all PCs that have installed specific updates released between August 29 and November 11, 2023. Users who wish to log in using a password instead of a PIN are primarily impacted. Although the password button remains functional when hovering over the area where the icon should be, Microsoft has humorously suggested clicking randomly on the lock screen as a workaround.

Winsage

November 22, 2025

Microsoft: Out-of-band update fixes Windows 11 hotpatch install loop

Microsoft has released the KB5072753 out-of-band cumulative update to fix a recurring issue with the November 2025 KB5068966 hotpatch update on Windows 11 systems, where the hotpatch was being reinstalled repeatedly. The update is being distributed to all Windows 11 25H2 devices and resolves the bug while also including improvements and security fixes from the earlier KB5068966 update. Users do not need to install prior updates before applying KB5072753, as it supersedes all previous updates. Additionally, Microsoft issued an emergency update for Windows 10 to address installation issues related to the November 2025 extended security updates, and resolved incorrect end-of-support warnings for Windows 10 users after the October 2025 updates.