out-of-band patch Archives

Winsage

March 6, 2026

Microsoft finally gets around to fixing Windows 10 Recovery Environment after breaking it in October

Microsoft addressed an issue in the Windows Recovery Environment (WinRE) that arose after the final update for Windows 10 on October 14, 2025, which disrupted WinRE functionality on some devices. The same update also caused accessibility issues for USB devices in Windows 11's recovery environment. Microsoft released an out-of-band patch, but some Windows 10 users continued to experience WinRE problems. The fix, KB5068164, targets Windows 10 versions 21H2 and 22H2 and aims to resolve the issue preventing WinRE from starting after the October 14 update. Concerns about Microsoft's quality control have been raised due to the timing of the failure and the delay in providing a solution. Users of Windows 10 can rely on Microsoft's Extended Security Updates program, although the situation has caused doubts about the reliability of Microsoft's updates.

Winsage

January 18, 2026

Windows 11 KB5074109 issues: black screen, freezes Outlook POP, breaks Azure Virtual Desktop, LocalizedResourceName (desktop.ini)

Windows 11 KB5074109 has caused several issues for users, particularly those with Nvidia GPUs, including black screens, Outlook freezing with POP accounts, and problems with File Explorer's desktop.ini settings. Users have reported random black screens and desktop freezes after installing the update, with some finding temporary relief by changing their monitor's DisplayPort mode. Outlook Classic has been problematic, remaining active in the background and freezing shortly after opening, prompting users to terminate the process in Task Manager or uninstall the update. Additionally, the update disrupts Azure Virtual Desktop functionality, leading to sign-in failures and connection issues. Microsoft has acknowledged these problems and is investigating solutions, including a Known Issue Rollback for AVD. The update also breaks the LocalizedResourceName directive in File Explorer, preventing folder name customization. Users can uninstall the update through Settings, but this may expose them to security vulnerabilities.

Winsage

November 17, 2025

First Windows 10 ESU Patch Tuesday release fails for some

Microsoft is facing installation issues with the first Extended Security Update (ESU) for commercial Windows 10 customers, specifically update KB5068781, which fails to install on devices activated through the Microsoft 365 admin center, resulting in the 0x800f0922 error. Microsoft has acknowledged the issue and is investigating it, but no fix or workaround is currently available. This incident follows another ESU failure that occurred just days prior, prompting Microsoft to release an out-of-band patch. The latest update was intended to fix a previous glitch that incorrectly indicated a user's version of Windows had reached the end of support.

Winsage

October 31, 2025

Windows Server Update Service exploitation ensnares at least 50 victims

Over 50 organizations in the United States have been targeted in attacks exploiting a vulnerability in the Windows Server Update Service (WSUS), identified as CVE-2025-59287, related to the deserialization of untrusted data. Despite a security update from Microsoft in mid-October, an emergency out-of-band update was issued due to its inadequacy. Sophos recorded six incidents linked to this exploitation, with indications of broader impacts. The affected sectors include technology, education, manufacturing, and healthcare. The hacker group UNC6512 has been connected to these activities, conducting reconnaissance and exfiltrating sensitive data. Sophos detected malicious activity on October 24, following the release of the out-of-band patch. The Cybersecurity and Infrastructure Security Agency (CISA) has added this vulnerability to its Known Exploited Vulnerabilities catalog and urged security teams to apply necessary patches and check for signs of compromise.

Winsage

October 24, 2025

Microsoft issues out-of-band patch for critical WSUS flaw

Microsoft has released an urgent out-of-band update to address a critical vulnerability (CVE-2025-59287) in Windows Server Update Services (WSUS), affecting Windows Server versions from 2012 to 2025. This remote code execution flaw allows unauthenticated attackers to execute arbitrary code due to insecure deserialization of untrusted data. Only servers with the WSUS role enabled are at risk. Administrators unable to apply the patch should consider disabling the WSUS role or blocking inbound traffic to ports 8530 and 8531. The update is cumulative and requires a system reboot after installation. WSUS is deprecated but remains supported, with Microsoft advising a transition to alternatives like its cloud-based Intune service.

Winsage

August 20, 2025

Microsoft cleans up latest Windows Update mess

Microsoft released out-of-band patches for Windows 10 and Windows 11 to address issues caused by the August 2025 Security Update, which disrupted reset and recovery functionalities for many users. The problem was acknowledged on August 18 and affected various supported Windows versions, while Windows 11 24H2 and Windows Server were not impacted. The patch is optional for users not experiencing issues. Complications included difficulties with installation via Windows Server Update Services and reported storage issues under heavy load. Users must balance the risks of unpatched vulnerabilities against potential complications from the updates.