patches Archives

Winsage

May 6, 2026

Security updates Windows no longer require frequent reboots

Since early May 2026, a U.S. company has introduced Hotpatching technology for compatible devices, allowing security updates to be applied without a full system reboot. This technology replaces code fragments directly in the RAM of running processes, reducing the size of downloaded packages and enabling quicker implementation of critical patches. The update mechanism operates on a hybrid schedule with four base months requiring mandatory reboots for cumulative changes and eight hotpatching months focusing on in-memory security fixes. If extensive architectural changes are needed or if the software environment does not meet standards, the system defaults to a standard installation algorithm that requires a reboot. The technology is designed for corporate infrastructures with high operational demands and requires Windows 11 version 24H2 or later, specific editions, and enabled VBS virtualization protection.

Winsage

May 6, 2026

Why are 25%+ gamers still using Windows 10 despite its EOL status?

A significant portion of gamers, over 25%, continues to use Windows 10 despite its end-of-life status declared on October 14, 2025. Reasons for this preference include: 1. Windows 10 has reached peak stability after years of updates, providing reliable performance. 2. It is compatible with older PCs, allowing gamers to use existing hardware without costly upgrades. 3. Windows 10 has fewer AI features, offering a streamlined experience preferred by many gamers. 4. Basic applications launch more swiftly in Windows 10 compared to Windows 11, enhancing performance. 5. Windows 10 has fewer ads and bloatware, resulting in a cleaner user interface. 6. Users can create a local account during setup in Windows 10, unlike the mandatory Microsoft account requirement in Windows 11. However, Windows 10 is no longer receiving security updates, which poses a risk as vulnerabilities may arise without patches.

Tech Optimizer

May 5, 2026

AI finds 20-year-old bugs in PostgreSQL and MariaDB

Patches have been released for all identified vulnerabilities in PostgreSQL and MariaDB, with strong recommendations for users to upgrade to the latest fixed versions. A zero-day flaw in PostgreSQL, classified as CVE-2026-2005, is a heap-based buffer overflow issue in the "pgcrypto" extension. This vulnerability allows attackers to exploit specially crafted input, leading to out-of-bounds writes and potential remote code execution on the database server. It affects all supported versions of PostgreSQL and has been addressed in updates v18.2, v17.8, v16.12, v15.16, and v14.21. The flaw has a high-severity rating of CVSS 8.8 out of 10 and has existed since 2005.

Winsage

May 5, 2026

Defender yanks root certs as Windows updates blocks backups

Microsoft's Defender anti-malware tool update version 1.449.425.0 removed two DigiCert root digital certificates, leading to false positives that flagged them as severe malware (Trojan:Win32/Cerdigent.A!dha). This incident was later identified as a false positive, and updating to version 1.449.430.0 or later reinstates the certificates. The issue may be linked to a DigiCert employee encountering disguised malware. Additionally, Windows updates from April 14 caused third-party backup applications to malfunction due to the addition of vulnerable psmounterex.sys kernel driver versions to a blocklist. Users experienced difficulties with mounting backup image files, and Microsoft referenced a vulnerability rated 9.3 out of 10 in the driver. Other affected software includes Acronis Cyber Protect Cloud and UrBackup server. Microsoft has not explained the delay in adding the vulnerable driver to the blocklist, and other recent update-related issues have also been reported.

AppWizard

May 5, 2026

“If people are saying ‘dead game,’ that means our game is alive:” how Apex Legends is winning back players

Apex Legends has achieved its highest player count in a year and a half, particularly following the launch of Season 28, which saw a 50% increase in player counts on Steam. This resurgence is attributed to years of collaboration with the community and changes in internal processes at Respawn Entertainment. The upcoming Season 29 will introduce Axle, the first new Legend in over a year, aimed at attracting new players. Additionally, changes to the ranked mode for solo players will be implemented, placing them in slightly easier lobbies based on skill level to create a more balanced competitive environment. Apex Legends aims to reclaim its peak player count of over 620,000 from 2023 by continuing to innovate and engage its player base.

Tech Optimizer

May 4, 2026

Wiz ZeroDay.Cloud Event Reveals 20-Year-Old PostgreSQL Vulnerabilities

Cybersecurity researchers at Wiz’s ZeroDay.Cloud event in London exploited two significant vulnerabilities in PostgreSQL, tracked as CVE-2026-2005 and CVE-2026-2006, which were disclosed on May 4, 2026. The vulnerabilities were found in the pgcrypto extension, affecting public-key decryption and symmetric decryption functions. CVE-2026-2005 allows privilege escalation via a buffer overflow during public-key decryption, while CVE-2026-2006 enables attackers to corrupt memory through inadequate checks in symmetric decryption. PostgreSQL has released patches for these vulnerabilities across versions 14.21 to 18.2, and MariaDB addressed a related issue in versions 11.4.10 and 11.8.6. Database administrators are advised to apply updates and audit logs for suspicious activity.

Winsage

May 4, 2026

Microsoft Confirms Critical Windows Update Error Disrupting Global Systems

Microsoft has confirmed a critical bug in its latest cumulative update, affecting millions of Windows 10 and Windows 11 users. The issue leads to a "Restart and Shut Down" loop, preventing users from completing the update and locking them out of their devices. This disruption is particularly severe for corporate IT departments, with reports of entire office networks being paralyzed. The problematic update, identified as KB5037853, was meant to address security vulnerabilities but has caused systems to display an endless "Update and Restart" message. Some users experience a "Blue Screen of Death" (BSOD) and may be forced into "Recovery Mode." Microsoft is working on a "Known Issue Rollback" (KIR) to automatically undo the problematic code for consumer machines, while enterprise users may require manual intervention. The downtime is projected to result in significant financial losses, with large enterprises potentially losing up to ,600 per minute of unplanned downtime. Affected versions include Windows 11 22H2, 23H2, and Windows 10 22H2. Symptoms include failure to shut down, BSOD on boot, and missing Start menu icons. The estimated downtime ranges from 4 to 12 hours, depending on IT response speed. Critics have raised concerns about Microsoft's development process, suggesting it places users in the role of beta testers.

AppWizard

May 4, 2026

Warcraft 3 Legacy is finally back on Battle.net

Warcraft 3: Reforged faced significant criticism due to its shortcomings and the negative impact it had on the original Warcraft 3, as players encountered connection issues and lost access to competitive ladders. Blizzard announced a significant update allowing all players who own Warcraft 3 to access the original 1.29 client through the Battle.net App, which supports offline and LAN play only. This version was the last to allow easy LAN play, making it relevant for players seeking nostalgic gaming experiences. Additionally, a fix for non-functioning cinematics in the Legacy client involves renaming the en-USMovies folder to Movies in the installation directory.

Winsage

May 4, 2026

Microsoft’s turned Windows into a cesspool, but it wants to do better

Microsoft is experiencing a wave of user dissatisfaction due to its push for the Copilot feature, a confusing out-of-box experience, and buggy patches. Industry experts are discussing the company's challenges and whether it has strayed from its core mission. CEO Satya Nadella and Windows chief Pavan Davuluri have promised to address these issues, raising questions about the effectiveness of these commitments and the possibility of regaining user trust.

Winsage

May 3, 2026

You shouldn’t delay your Windows 11 updates, experts reveal

Experts advise against postponing Windows updates, as Microsoft has introduced features allowing users to control when updates occur. Users can pause updates for up to 35 days indefinitely, but delaying updates can lead to security vulnerabilities. Microsoft releases several types of updates: security updates, feature updates, quality updates, driver updates, optional updates, out-of-band updates, and zero-day updates. Zero-day updates are critical and should be installed immediately to avoid exploitation. Recent reports indicate that critical OS patching for Windows 10 and 11 is lagging by an average of 256 days, increasing the risk of cyber incidents.