LTSC Archives

Winsage

March 15, 2026

Microsoft Releases Emergency Windows 11 Hotpatch to Fix Remote Code Execution Flaw

Microsoft has released an out-of-band hotpatch update, KB5084597, to address three critical remote code execution vulnerabilities (CVE-2026-25172, CVE-2026-25173, CVE-2026-26111) in the Windows Routing and Remote Access Service (RRAS) management tool. This update is specifically for Windows 11 Enterprise devices in the hotpatch program that did not receive fixes during the March 2026 Patch Tuesday. The vulnerabilities can be exploited by an authenticated attacker within the domain, potentially leading to remote code execution. Hotpatch updates apply fixes through in-memory patching without requiring a device reboot, making them suitable for mission-critical devices. The update is applicable to Windows 11 versions 24H2, 25H2, and Windows 11 Enterprise LTSC 2024, and will be automatically installed on enrolled devices without a restart. Non-enrolled devices received the fix via the standard March 10 Patch Tuesday update.

Winsage

March 11, 2026

Microsoft releases Windows 10 KB5078885 extended security update

Microsoft has released the Windows 10 KB5078885 extended security update, which addresses vulnerabilities identified during the March 2026 Patch Tuesday. This update resolves two zero-day vulnerabilities and a critical issue preventing certain devices from shutting down properly. Users of Windows 10 Enterprise LTSC or those in the ESU program can install it via Settings under Windows Update. The update upgrades Windows 10 to build 19045.7058 and Windows 10 Enterprise LTSC 2021 to build 19044.7058. The update focuses on security enhancements and bug fixes, addressing a total of 79 vulnerabilities, including two actively exploited ones. Key fixes include: - A new warning dialog in Windows System Image Manager for confirming trusted catalog files. - Enhancements to File History for backing up files with specific Chinese and Private Use Area characters. - Stability improvements for specific GPU configurations. - Additional high-confidence device targeting data for Secure Boot certificates. - Adjustments to Chinese fonts for compliance with GB18030-2022A standards. - A fix for Secure Launch-capable PCs with Virtual Secure Mode unable to shut down or hibernate after a previous security update. - Resolution of an issue affecting folder renaming with desktop.ini files in File Explorer. The update also addresses a known issue preventing Windows 10 devices from shutting down or hibernating when System Guard Secure Launch is enabled. Microsoft is deploying new Secure Boot certificates to replace those expiring in June 2026, which are crucial for validating boot components and preventing security risks. There are currently no known issues associated with this update.

Winsage

March 5, 2026

I tested Windows 11 LTSC in 2026, and it’s the best version of Windows 11 without Copilot, AI and other bloat

Windows 11 LTSC (Long-Term Servicing Channel) is a specialized edition of Windows 11 designed for organizations that prioritize stability over the latest features. It allows users to defer feature updates for up to ten years, receiving only monthly quality updates and optional feature updates every three years. LTSC includes only Microsoft Edge as a modern app, with classic versions of Calculator, Notepad, and Paint, and lacks Copilot integration, the Microsoft Store, and Widgets. Users can operate LTSC without signing into a Microsoft account. The version was officially announced in April 2023, with Enterprise and IoT editions set to launch in late 2024. It is suitable for large organizations, industrial systems, IT departments, and IoT devices needing long-term support. General users can download a 90-day trial of LTSC, but a clean installation is required for transitioning from Windows 11 Pro or Home. The minimum system requirements include a 1 GHz processor, 4 GB RAM, and 64 GB storage. LTSC offers advantages such as no bloatware, a stable environment, and a lower storage footprint, but it does not receive new Windows features and lacks access to the Microsoft Store by default.

Winsage

March 5, 2026

Windows 10: WinRE Update KB5075039 fixes issue from Oct. 2025

On March 3, 2026, Microsoft re-released update KB5075039 to restore functionality to the Windows Recovery Environment (WinRE) for Windows 10, which officially fell out of support in October 2025. This update followed a bug caused by dynamic security update KB5067039, released in October 2025, which introduced a problematic USBHUB3.SYS driver version that disabled USB keyboards and mice in WinRE. Microsoft acknowledged this issue on October 17, 2025. In mid-January 2026, Microsoft released recovery updates for Windows 10 and Windows 11, including KB5075039 on January 15, 2026, targeting Windows 10 versions 21H2 and 22H2, but it did not resolve the issue. The re-release of update KB5073933 on March 3, 2026, addressed a critical bug preventing WinRE from starting when the previous update KB5068164 was installed. The installation of KB5073933 is recommended for Windows 10 22H2 users with ESU support to ensure a functional recovery environment.

Winsage

March 2, 2026

Windows 11 tops market share as 10 faces extended farewell

Recent data from Statcounter indicates that Windows 11 has a market share of 72.57 percent, while Windows 10 holds 26.45 percent. Microsoft claims that Windows 11 has surpassed one billion users. Statcounter's data is collected from over 1.5 million websites and may be subject to revision. Microsoft will discontinue support for many versions of Windows 10 in October 2025, leading some organizations to consider Extended Security Updates (ESU), which can incur additional costs. Windows Server 2016 has a 20.3 percent share among monitored servers, and Windows 10 2016 LTSB accounts for 0.5 percent of Windows devices, making up 19.8 percent within the LTSC/LTSB category. The higher usage of LTSC/LTSB is attributed to special-purpose devices in consumer and retail sectors, which face stricter upgrade protocols.

Winsage

February 26, 2026

PoC Published for Microsoft Windows Flaw That Allows Low-Privileged Users to Force Irrecoverable BSODs

Security researchers have developed a working Proof of Concept (PoC) exploit for a vulnerability in the Windows kernel, identified as CVE-2026-2636, which allows low-privileged users to induce a Blue Screen of Death (BSoD), resulting in a Denial of Service. This vulnerability is linked to the Windows Common Log File System (CLFS) driver, specifically the CLFS.sys component, and arises from improper handling of invalid or special elements within CLFS (CWE-159). The PoC demonstrates that a non-administrative user can trigger the bug by executing a crafted ReadFile operation on a handle linked to an opened .blf log file without the expected I/O Request Packet (IRP) flags set. This leads to a critical inconsistency in the driver, causing Windows to invoke the kernel routine KeBugCheckEx, which results in a BSoD. The CVE-2026-2636 has a CVSS score of 5.5 (Medium) and poses a high impact on availability, allowing any authenticated user to crash the host reliably. Microsoft addressed this vulnerability in the September 2025 cumulative update, protecting systems running Windows 11 2024 LTSC and Windows Server 2025 by default. However, older or unpatched builds remain vulnerable. Organizations are advised to verify the deployment of the September 2025 updates, prioritize patching multi-user systems, and monitor for unusual spikes in BSoD events.

Winsage

February 25, 2026

Microsoft gives Windows laggards the ‘gift of time’ wrapped in licensing fees

Microsoft is offering up to three years of Extended Security Updates (ESU) for older Windows installations, with the expectation of compensation. Most major versions of Windows 10 will reach end of support by 2025, while Windows 10 Enterprise 2016 LTSB and Windows IoT Enterprise LTSB 2016 will end support on October 13, 2026, and Windows Server 2016 will conclude support on January 12, 2027. Microsoft recommends upgrading to Windows Server 2025 for Windows Server 2016 users. The pricing for ESU for Windows 10 2016 LTSB starts at a specified amount per device for the first year, with expected increases in subsequent years. Customers using Intune or Windows Autopatch may receive a reduced rate. There is no official pricing for Windows Server 2016 ESU, creating uncertainty for administrators. Historically, Microsoft has charged a premium for extended support, with previous ESU costs for Windows Server 2012 being 100 percent of the full license price for the first year. The final cost of ESU will depend on each organization’s licensing agreement.

Winsage

February 24, 2026

Microsoft extends security patching for three Windows products at a price

Support for Windows 10 Enterprise LTSB 2016 and Windows 10 IoT Enterprise 2016 LTSB will end on October 13, 2026, while Windows Server 2016 will reach its end of support on January 12, 2027. Organizations using these products will receive one final monthly security update on the specified dates, after which they will not receive security patches, updates, or technical support. The Extended Security Updates (ESU) program allows organizations to purchase coverage for up to three years beyond the end of support, with pricing starting at a specified amount per device for the first year and doubling for each subsequent year. Windows Server 2016's ESU pricing has not been announced, and Microsoft recommends upgrading to newer Long-Term Servicing Channel releases. In the European Economic Area, Windows 10 users can access ESU until October 14, 2026, without payment or cloud account requirements due to advocacy from Euroconsumers.

Winsage

February 22, 2026

Opinion: Windows 11 isn’t the disaster some claim – and it’s time to say so

Windows 11 has faced challenges, including a comprehensive list of top issues identified in 2025, but it is not uniquely unstable compared to earlier versions like Windows 95, 98, XP, 7, and 10. Recent headlines have highlighted various problems such as printer malfunctions and performance issues, but these are often exaggerated due to increased visibility. Historically, Windows has experienced similar cycles of instability, and the perception of widespread failure today is amplified by rapid documentation of minor issues. User trust in Windows has eroded, with skepticism about performance stemming from cumulative updates and the personal impact of issues on over a billion users. The focus should shift to improving predictability and transparency regarding updates rather than solely counting bugs. Windows 11's frequency of out-of-band updates is comparable to that of Windows 7 and 10, with improved mechanisms for addressing problems quickly. Gamers continue to adopt Windows 11 due to enhanced CPU scheduling, improved GPU performance, and features like Auto HDR and DirectStorage. Microsoft is committed to further improving the gaming experience. The scale of Windows operations, with over a billion users and multiple concurrent releases, contributes to occasional anomalies. Despite criticisms, most Windows 11 systems operate without significant issues, performing adequately for daily tasks and gaming. Microsoft has announced plans for enhancements, including bug fixes, performance improvements, and security upgrades, indicating that Windows 11 remains a solid choice for users.

Winsage

February 16, 2026

Contain your Windows apps inside Linux Windows

WinApps and WinBoat are two solutions for running Windows applications on Linux. WinApps, developed since 2020 by Ben Curtis, allows users to run a genuine copy of Windows in a virtual machine (VM) and export individual applications to the Linux desktop using Microsoft's Remote Desktop Protocol (RDP). It supports various methods, including Docker, Podman, and KVM virtualization, with KVM offering extensive customization but requiring a more complex setup. WinBoat, a newer application at version 0.9.0, simplifies the user experience by automating much of the setup process and requires only Docker and FreeRDP to be installed. WinBoat is designed for ease of use, making it accessible for users less comfortable with technical configurations. Both tools allow users to run Windows software that may not work well under WINE, but running a full Windows OS in a VM involves licensing, maintenance, and resource considerations.