out-of-band update Archives

Winsage

May 5, 2026

Defender yanks root certs as Windows updates blocks backups

Microsoft's Defender anti-malware tool update version 1.449.425.0 removed two DigiCert root digital certificates, leading to false positives that flagged them as severe malware (Trojan:Win32/Cerdigent.A!dha). This incident was later identified as a false positive, and updating to version 1.449.430.0 or later reinstates the certificates. The issue may be linked to a DigiCert employee encountering disguised malware. Additionally, Windows updates from April 14 caused third-party backup applications to malfunction due to the addition of vulnerable psmounterex.sys kernel driver versions to a blocklist. Users experienced difficulties with mounting backup image files, and Microsoft referenced a vulnerability rated 9.3 out of 10 in the driver. Other affected software includes Acronis Cyber Protect Cloud and UrBackup server. Microsoft has not explained the delay in adding the vulnerable driver to the blocklist, and other recent update-related issues have also been reported.

Winsage

May 1, 2026

Windows 11 KB5083631 update released with 34 changes and fixes

Microsoft has released the KB5083631 optional cumulative update for Windows 11, featuring 34 enhancements aimed at improving user experience and system performance. Key features include a new Xbox mode for immersive gaming, improved performance for startup applications, enhanced security for batch files and CMD scripts, haptic feedback on supported devices, improvements to Secure Boot, and updates to Kerberos authentication. The update also addresses issues with Windows Security event logging, eliminates a white flash in dark mode, and increases the reliability of explorer.exe processes. Users can install the update via Windows Settings under Windows Update. After installation, Windows 11 devices will be updated to builds 26100.8328 and 26200.8328. Additionally, updated Secure Boot certificates are being rolled out, and some Windows Server 2025 devices may require a BitLocker recovery key after the update.

Winsage

April 24, 2026

Microsoft beefs up Remote Desktop security with … hard-to-read messages

Microsoft has released an update to improve the security of its Remote Desktop feature, which includes a warning for users opening Remote Desktop (.rdp) files. However, this warning is not displaying correctly for some users due to a bug identified in the Known Issues list after the April 14 update. The issue primarily affects users with multiple monitors set to different display scaling, leading to overlapping text or obscured buttons. Microsoft has advised users to synchronize their display scaling settings or use keyboard navigation as a workaround. The company plans to address this issue in a future Windows update but is not issuing an Out-of-Band update specifically for it. Additionally, a serious vulnerability (CVE-2026-40372) was discovered in the .NET framework, affecting versions 10.0.0 to 10.0.6, which requires immediate attention. This vulnerability impacts all Windows versions that received the update, including Windows 11 26H1.

Winsage

April 21, 2026

Microsoft releases Windows Server update fix to fix its April update fixes

Microsoft has released an out-of-band update to fix a restart loop issue affecting certain Windows Server devices after the April 2026 update. The problem arose after installing the April 2026 Windows security update (KB5082063), causing domain controllers in multi-domain environments using Privileged Access Management (PAM) to experience LSASS crashes during startup, leading to repeated restarts and potential domain outages. The update targets Windows Server versions 2016 through 2025 and includes hotpatches for failed installations. Only Windows Servers were affected, while some enterprise devices may need to enter their BitLocker recovery key after the first restart post-installation. Microsoft has issued similar updates recently, raising concerns about the frequency of these occurrences.

Winsage

April 20, 2026

Emergency Update for Windows Server Following Reboot Issues

Microsoft has released emergency updates for various versions of Windows Server due to issues arising from the April 2026 Patch Tuesday security updates. A significant problem was a reboot loop affecting domain controllers caused by crashes of the Local Security Authority Subsystem Service (LSASS), which disrupted authentication services. This issue was especially problematic during the setup of new domain controllers. Additionally, some Windows Server 2025 systems encountered difficulties in installing the security update KB5082063. The out-of-band update (KB5091157) for Windows Server 2025 addresses both the installation failure and the domain controller restart issue. Other updates targeting the domain controller restart problem were released for additional supported Windows Server versions. Microsoft has introduced an out-of-band update for seven versions, including KB5091157 for Windows Server 2025 and KB5091571 for Windows Server, version 23H2. Furthermore, some Windows Server 2025 devices may boot into BitLocker recovery mode after the update, requiring users to enter a BitLocker recovery key.

Winsage

April 15, 2026

Microsoft fixes bug behind Windows Server 2025 automatic upgrades

Microsoft has resolved an issue that caused unexpected upgrades from Windows Server 2019 and 2022 to Windows Server 2025. This problem was first reported in September 2024 when administrators found their servers upgraded without the necessary licenses. Initially, Microsoft attributed the issue to misconfigured third-party update management software, while developers claimed it was due to Microsoft's procedural errors regarding update release speed and classification. Microsoft confirmed the resolution of the issue and re-enabled the upgrade offer through the Windows Update settings. Additionally, Microsoft released an out-of-band update to address complications from a previous non-security preview update and deployed emergency updates to fix sign-in disruptions across various applications. Other updates were issued to resolve Bluetooth visibility issues and security vulnerabilities in the Routing and Remote Access Service management tool.

Winsage

April 3, 2026

New out-of-band Windows 11 update fixes March’s installation errors – how to get it

Microsoft faced backlash due to the March non-security preview update (KB5079391) for Windows 11, which caused installation errors for many users. In response, Microsoft paused the initial update and released an out-of-band update (KB5086672) on March 31, 2026, to address these issues. The new update includes all enhancements from the previous update and fixes the installation problems. Users set to receive preview updates will automatically download KB5086672, while others can manually check for it in the Windows Update settings. Users can also manage their preferences for optional preview updates through the Windows Update screen.

Winsage

April 2, 2026

Microsoft veteran says some ‘broken by update’ PCs were already doomed

Many corporate customers believe that recent Microsoft updates have rendered their systems inoperable, but often the issues are not caused by the updates themselves. Instead, underlying problems, such as prior changes to drivers or group policies, become apparent after a system restart prompted by the update. The act of rebooting can trigger these hidden issues, leading to system failures. Additionally, Microsoft has faced scrutiny regarding the reliability of its updates, as administrators have expressed concerns about their stability.

Winsage

April 1, 2026

Microsoft Issues Emergency Fix for Windows 11 Update Installation Errors

Microsoft retracted its KB5079391 non-security feature update for Windows 11 due to installation errors and has released an out-of-band update, KB5086672, to address these issues. The KB5086672 update consolidates previous packages, including KB5079473, KB5085516, and the pulled KB5079391. It resolves the installation error message "Some update files are missing or have problems. We'll try to download the update again later. Error code: (0x80073712)" and is available through Windows Update for devices with KB5079473 or later. It can also be manually downloaded from the Microsoft Update Catalog. Currently, there are no known issues with KB5086672, and Microsoft will update support documentation if any complications arise.

Winsage

April 1, 2026

New Windows 11 emergency update fixes preview update install issues

Microsoft released an out-of-band update (KB5086672) to address installation issues caused by the March 2026 non-security preview update (KB5079391) for Windows 11 versions 24H2 and 25H2. The initial update led to errors indicating missing or problematic update files, prompting Microsoft to halt its rollout. The new emergency update consolidates previous updates and is available through Windows Update for automatic installations or can be manually accessed via Settings. Additionally, Microsoft has addressed issues from earlier Patch Tuesday security updates affecting sign-ins with Microsoft accounts and has released two other out-of-band updates targeting Bluetooth visibility bugs and security vulnerabilities in the Routing and Remote Access Service. Guidance has also been provided for resolving access issues on C: drives of Samsung Windows 11 laptops linked to specific Samsung applications.