Patch Tuesday Archives

Winsage

June 17, 2025

Microsoft Quietly Disabled Windows Hello Facial Recognition in the Dark

Microsoft has made an adjustment to Windows Hello Facial Recognition that affects its functionality in dimly lit environments due to a security vulnerability. This change, introduced in the April 2025 Patch Tuesday updates for Windows 11 and Windows 10, requires color cameras to detect a visible face for sign-in. The update addresses a Windows Hello Spoofing vulnerability that was being exploited. Previously, the feature could identify users in low-light conditions using near-infrared imaging technology. Users have reported a workaround by disabling the webcam in Device Manager, allowing IR sensors to authenticate in low light.

Winsage

June 16, 2025

Update Windows Now — Microsoft Confirms System Takeover Danger

CVE-2025-33073 is a Windows authentication relay attack vulnerability with a CVSS score of 8.8, indicating high severity. It allows attackers to gain SYSTEM privileges on affected systems. Currently, there is no evidence of active exploitation, but the public disclosure raises concerns. Exploitation involves executing a malicious script that makes the victim's machine connect to the attacker's system using SMB. Security researchers have described it as an authenticated remote command execution on machines that do not enforce SMB signing. Microsoft has released a fix as part of the June Patch Tuesday security updates to address this vulnerability.

Winsage

June 16, 2025

Microsoft: June Windows Server security updates cause DHCP issues

Microsoft has identified an issue with the June 2025 security updates that causes the Dynamic Host Configuration Protocol (DHCP) service to freeze on certain Windows Server systems. This affects the service's ability to apply renewals of unicast IP addresses, impacting network operations. Microsoft has acknowledged that the DHCP Server service may intermittently stop responding after the update and is working on a resolution. Additionally, other issues affecting Windows Server systems have been addressed, including application failures and authentication problems on domain controllers. Out-of-band updates were previously issued to fix bugs causing Hyper-V virtual machines to restart or freeze, and emergency updates were released for issues with Windows containers on certain Windows Server versions.

Winsage

June 16, 2025

Microsoft Weekly: redesigned Windows 11 Start menu, Xbox handheld is here, and more

Microsoft has released Patch Tuesday updates for June 2025, with Windows 10 receiving KB5060533 and Windows 11 receiving KB5060842 and KB5060999. The Windows Insider Program has unveiled several new builds, including a redesigned Start menu in build 26200.5641 and various enhancements in other builds. Microsoft has introduced Copilot Vision with Highlights for Windows, currently available in the U.S. for two applications. A quirky bug in the latest builds causes Windows 11 to play the Windows Vista startup sound. Microsoft Edge received an update in the Dev Channel, while Firefox rolled out version 139.0.4. Microsoft announced enhancements to Outlook and OneDrive for Mac. New Xbox handhelds, the ROG Xbox Ally and ROG Xbox Ally X, were unveiled, optimized for gaming. Steam's Next Fest allows free trials of hundreds of games until June 16, 2025, and the Epic Games Store is offering Two Point Hospital for free.

Winsage

June 15, 2025

Windows 10 KB5060534, KB5060532, KB5060530, KB5060529 recovery updates released

Microsoft released its Patch Tuesday updates for June 2025, targeting Windows 10 and Windows 11 systems. The updates for Windows 10 include KB5060533, KB5060531, KB5061010, and KB5060998, while Windows 11 has updates KB5060842 and KB5060999. This release did not include dynamic updates for Windows 11. The dynamic updates focus on enhancing the Windows Recovery Environment (WinRE) and include improvements to Setup binaries. They are designed to be integrated into Windows images before deployment and help preserve Language Pack (LP) and Features on Demand (FODs) content during upgrades. The specific dynamic updates released are: - KB5060534: Safe OS Dynamic Update for Windows 10 (version 1507) - KB5060532: Safe OS Dynamic Update for Windows 10 (versions 21H2 and 22H2) - KB5060530: Safe OS Dynamic Update for Windows 10 (version 1809) and Windows Server 2019 - KB5060529: Safe OS Dynamic Update for Windows 10 (version 1607) and Windows Server 2016 These updates will be automatically downloaded and installed through the Windows Update channel, and they are also available on Microsoft's Update Catalog website.

Winsage

June 12, 2025

Microsoft Resolves Windows Server 2025 Restart Bug Disrupting Active Directory Connectivity

Microsoft released updates in June 2025 to address critical issues affecting Windows Server 2025 domain controllers, specifically authentication failures and network connectivity problems. The updates, encapsulated in KB5060842, resolved issues stemming from security update KB5055523, which altered certificate validation methods for Kerberos authentication. This change led to logging errors for self-signed certificates and affected Windows Hello for Business Key Trust deployments. Additionally, a separate issue prevented domain controllers from managing network traffic correctly after restarts, causing them to revert to standard firewall profiles. Microsoft provided a temporary workaround for administrators to manually restart network adapters until a permanent fix was implemented. The June updates addressed a total of 66 vulnerabilities, including 10 rated as Critical, and recommended immediate installation. Microsoft advised against setting the AllowNtAuthPolicyBypass registry key to ‘2’ for domain controllers using self-signed certificates until the latest updates were applied.

Winsage

June 12, 2025

Windows 11 24H2 emergency update fixes Easy Anti-Cheat BSOD issue

Microsoft released an emergency update, KB5063060, to address a compatibility issue causing unexpected restarts and blue screen of death (BSOD) errors on Windows 11 systems using Easy Anti-Cheat. This update follows the earlier cumulative update, KB5060842, which led to reports of system reboots linked to IRQLNOTLESSOREQUAL BSODs. The issues were confirmed to affect devices running Easy Anti-Cheat, which is used in popular games like Fortnite and Apex Legends. The update will install automatically for devices with Easy Anti-Cheat, and manual installation options are available for x64 and arm64 systems. Additionally, Microsoft implemented a compatibility hold for Windows 24H2 upgrades on Intel Alder Lake+ and vPro systems due to related blue screen issues. On the same day, Microsoft also released security updates addressing 66 vulnerabilities in Windows 11, including critical flaws in Windows SMB and WebDAV.

Winsage

June 11, 2025

Microsoft fixes unreachable Windows Server domain controllers

Microsoft addressed a significant issue with Windows Server 2025 domain controllers that made some servers unreachable after a restart, affecting applications and services reliant on them. The problem was due to servers loading the standard firewall profile instead of the intended domain firewall profile after a reboot, leading to improper network traffic management. This misconfiguration caused accessibility challenges for services and applications on affected servers. Microsoft released the KB5060842 security update to resolve this issue during the June 2025 Patch Tuesday. A temporary workaround involves manually restarting the network adapter on affected servers using the Restart-NetAdapter * PowerShell command, which must be done after each reboot until the update is installed. Additionally, Microsoft fixed another issue preventing some users from logging into accounts via Windows Hello after the installation of the KB5055523 April 2025 security update.

Winsage

June 11, 2025

Microsoft creates separate Windows 11 24H2 update for incompatible PCs

Microsoft announced a revised security update for Windows 11 24H2 systems to address compatibility issues with the initial update released during this month's Patch Tuesday. The revised update is being gradually deployed and includes all June 2025 security enhancements. Microsoft confirmed that the June 2025 security update is available for all other supported versions of Windows. The specific hardware or software configurations affected by the compatibility issue have not been detailed. On the same day, Microsoft rolled out security updates (KB5060842 and KB5060999) addressing 66 vulnerabilities across Windows 11 24H2 and 23H2, including a zero-day vulnerability (CVE-2025-33053) and a Windows SMB privilege escalation flaw. The updates mitigated ten critical vulnerabilities, resolved a Windows Hello sign-in issue, and extended system restore points to 60 days on Windows 11 24H2 devices. Additionally, KB5060999 addressed graphics support issues affecting Remote Desktop connections. Microsoft also released the KB5060533 cumulative update for Windows 10 22H2, restoring seconds to the Calendar flyout and resolving Hyper-V virtual machine issues.

Winsage

June 11, 2025

A worrying Windows SecureBoot issue could let hackers install malware – here’s what we know, and whether you need to update

Researchers at Binarly have identified a critical vulnerability in a widely trusted BIOS update utility that operates on most modern systems using UEFI firmware. This utility, signed with Microsoft’s UEFI CA 2011 certificate, contains a flaw that could be exploited by malicious actors to disable essential security measures and install bootkit malware on personal computers. Microsoft addressed the issue by including a fix in its June 2025 Patch Tuesday cumulative update. The UEFI Secure Boot process is crucial for maintaining system integrity by verifying the authenticity of bootloaders and operating systems.