update services Archives

Winsage

April 9, 2025

Microsoft extends support for key Windows tool – but probably not the one you’d expect

Microsoft will continue to support driver update synchronization for Windows Server Update Services (WSUS) servers, postponing the planned deprecation initially set for April 18 due to customer feedback. Paul Reed, Azure Compliance Senior Program Manager, noted the importance of this feature for organizations, particularly in regulated environments. A revised timeline for the future of WSUS driver synchronization will be developed, and Microsoft is open to ongoing customer feedback.

Winsage

April 8, 2025

Microsoft fixes actively exploited Windows CLFS zero-day (CVE-2025-29824)

April 2025 Patch Tuesday introduced fixes for over 120 vulnerabilities, including a critical zero-day vulnerability (CVE-2025-29824) that is actively exploited. CVE-2025-29824 is a user-after-free vulnerability in the Windows Common Log File System (CLFS), allowing privilege escalation to SYSTEM on compromised Windows machines. Microsoft has patched 32 CLFS vulnerabilities since 2022, with six exploited in the wild. Updates for Windows 10 are not yet available. Other notable vulnerabilities include CVE-2025-26663 and CVE-2025-26670, both unauthenticated user-after-free vulnerabilities in Windows LDAP, and CVE-2025-27480 and CVE-2025-27482 in Windows Remote Desktop Services. None of these vulnerabilities have been patched for Windows 10 systems, but updates are forthcoming. Microsoft reversed its decision to discontinue driver update synchronization to WSUS servers, confirming that WSUS will continue to synchronize driver updates.

Winsage

April 8, 2025

Windows Server Update Services live to patch another day

Microsoft has announced an extension of support for Windows Server Update Services (WSUS), postponing the planned end of support originally set for April 2025, in response to user feedback. The decision comes shortly before the scheduled cutoff and addresses challenges associated with disconnected device scenarios. Initially, Microsoft planned to make drivers available only through the Microsoft Update Catalog, but user feedback prompted a change. While some IT administrators may welcome the decision, others argue that WSUS is outdated and lacks essential capabilities for modern security. Gene Moody, field CTO at Action1, noted that WSUS is ill-equipped to meet contemporary demands and highlighted its limitations in enforcing updates and providing real-time visibility. Moody suggested that the extension of support is influenced by specific scenarios where WSUS remains necessary, such as environments with legal obligations or air-gapped networks. He cautioned that this decision should not be seen as a shift away from Microsoft's goal of phasing out WSUS in favor of cloud-based solutions.

Winsage

April 8, 2025

Microsoft listens to users and revises its WSUS driver synchronization deprecation plans

Microsoft has decided to postpone the removal of Windows Server Update Services (WSUS) driver synchronization, which was initially scheduled for April 18, 2025, due to user feedback. WSUS will continue to synchronize driver updates from the Windows Update service and import them from the Microsoft Update Catalog. Microsoft is encouraging administrators to consider alternative technologies such as Windows Autopatch, Microsoft Intune, and Azure Update Manager.

Winsage

April 8, 2025

WSUS Driver Synchronization: Microsoft postpones end

Microsoft has postponed the discontinuation of driver distribution via Windows Server Update Services (WSUS), originally set for April 18, due to substantial user feedback. WSUS Driver Synchronization, initially marked as “deprecated,” will continue to be supported and operational, although it will not receive active development. Microsoft acknowledged the needs of users in disconnected environments and will maintain the service for synchronizing driver updates from the Windows Update Service and importing updates from the Microsoft Update Catalog. The company is also developing a new roadmap to streamline services and promote alternative technologies like Microsoft Intune and Windows Autopatch for Windows 11 devices.

Winsage

April 7, 2025

Microsoft delays WSUS driver sync deprecation indefinitely

Microsoft has indefinitely postponed the removal of driver synchronization within Windows Server Update Services (WSUS) in response to customer feedback. The planned removal, originally set for April 18, 2025, has been put on hold as the company works on a revised timeline. This decision marks a shift from previous communications that indicated the deprecation of WSUS driver synchronization. Microsoft had initially announced the intention to phase out this feature in June 2024 and had encouraged IT administrators to adopt cloud-based solutions. Despite the earlier deprecation announcement, Microsoft will continue to support existing WSUS capabilities and publish updates.

Winsage

March 27, 2025

How to optimize Windows Update for Business policies

The transition to cloud-native endpoint management is changing Windows device management, particularly regarding Windows Update. IT administrators are increasingly relying on Windows Update services for security patches and features. Microsoft has introduced Windows Update for Business to give IT administrators better control over update policies through Group Policy or Mobile Device Management (MDM). Effective management requires understanding which policies to implement for specific desktops. The best approach for managing monthly updates is through servicing rings, which group Windows devices and assign specific update cadences and policies. This method allows controlled rollouts of updates, enabling administrators to prioritize stability and minimize disruption by testing updates on pilot groups before wider deployment. Windows Update for Business manages three update channels: the General Availability Channel for immediate feature updates, the Long-Term Servicing Channel (LTSC) for stability-focused devices, and the Windows Insider Program for testing updates. Administrators can control these channels using specific Group Policy Object (GPO) settings. Two primary update release types are managed: quality updates, which are released monthly and can be deferred for up to 30 days, and feature updates, which are annual and can be deferred for up to 365 days. Administrators can pause the deployment of updates temporarily for up to 35 days. Driver updates are also managed through Windows Update, with options to include or exclude them in monthly quality updates. Optional updates, available monthly, can be controlled using specific GPO and MDM settings.

Winsage

March 18, 2025

Learn how the Windows Server 2025 editions differ

Microsoft is set to release Windows Server 2025 in November 2024, featuring several editions: Essentials, Standard, Datacenter, and Datacenter Azure. Windows Server Essentials is limited to servers with a single CPU and fewer than 10 cores and can only be obtained through hardware OEMs. The Standard edition allows Hyper-V licensing for up to two virtual machines, while the Datacenter edition has no such limits and offers more flexibility with disaster recovery features. The Datacenter Azure edition is optimized for the cloud and receives annual updates. The hardware requirements for Windows Server 2025 include a minimum 64-bit CPU at 1.4 GHz, support for various instructions, and the ability to accommodate up to 2,048 logical processors. The minimum memory requirement is 512 MB, with 2 GB recommended for optimal performance. Storage requirements suggest at least 64 GB for better performance, especially with Desktop Experience, and a Gigabit Ethernet adapter is necessary for networking. Several features have been deprecated in Windows Server 2025, including Computer Browser, Failover Clustering Cluster Sets, and NTLM, among others. Completely removed features include IIS 6 Management Console, NTLMv1, and Windows PowerShell 2.0 Engine. Organizations planning to migrate to Windows Server 2025 must ensure their hardware meets the minimum requirements and can perform an in-place upgrade if currently using Windows Server 2012 R2 or newer. Testing in a lab environment and backing up servers before migration are recommended steps.

Winsage

February 26, 2025

One Windows 10 PC Will Not Install Feb 2025 Cumulative Update

A user is experiencing difficulties updating their 32-bit Windows 10 system, which is fully updated as of January 2025 and configured to use Windows Server Update Services (WSUS). The February update fails to install, presenting the error code 0x8007000d. The user has performed various troubleshooting steps, including running chkdsk, DISM, sfc, the Windows Update Troubleshooter, renaming the SoftwareDistribution folder, executing a Windows Update reset script, and attempting manual installations. Despite these efforts, the CBS log indicates errors related to file decompression, and the user has re-downloaded the update files multiple times without success. The computer remains stable and functions well, complicating the troubleshooting process.

Winsage

February 19, 2025

Deprecation approaches for WSUS driver synchronization

Microsoft has announced the deprecation of driver synchronization through Windows Server Update Services (WSUS), effective April 18, 2025. After this date, drivers will still be available through the Microsoft Update Catalog for on-premises environments, but importing them directly into WSUS will no longer be possible. A 2024 survey indicated that 34 percent of respondents were using WSUS for driver synchronization, with 8 percent expressing concerns about the deprecation. Alternatives to WSUS include Device Driver Packages, Microsoft Intune, and Windows Autopatch. WSUS has been included in the deprecation list since September 2024, and while it remains operational, Microsoft has stopped active development on it.