Oops! No results for your search.
workaround
Jun 12, 2024
KB5039266
2024-06 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5039266)
"After installing this update and restarting your device, you might receive the error, “Failure to configure Windows updates. Reverting Changes. Do not turn off your computer”, and the update might show as Failed in Update History."
This is expected in the following circumstances: If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, see the Obtaining Extended Security Updates for eligible Windows devices blog post. For information on the prerequisites, see the How to get this update section of this article.
workaround
Jun 12, 2024
KB5039245
2024-06 Security Monthly Quality Rollup for Windows Server 2008 for x64-based Systems (KB5039245)
"After installing this update and restarting your device, you might receive the error, “Failure to configure Windows updates. Reverting Changes. Do not turn off your computer”, and the update might show as Failed in Update History."
This is expected in the following circumstances: If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, see the Obtaining Extended Security Updates for eligible Windows devices blog post. For information on the prerequisites, see the "How to get this update" section of this article.
workaround
Jun 12, 2024
KB5039213
2024-06 Cumulative Update for Windows 11 for ARM64-based Systems (KB5039213)
"After installing this update, you might be unable to change your user account profile picture."
After installing this update, you might be unable to change your user account profile picture. When attempting to change a profile picture by selecting the button Start> Settings> Accounts > Your info, and then selecting Choose a file, you might receive an error message with error code 0x80070520.We are working on a resolution and will provide an update in an upcoming release.
workaround
Jun 12, 2024
KB5039211
2024-06 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5039211)
"Windows devices using more than one (1) monitor might experience issues with desktop icons moving unexpectedly between monitors or other icon alignment issues when attempting to use Copilot in Windows (in preview)."
To prevent users from encountering this issue, Copilot in Windows (in preview) might not be available on devices that have been used or are currently being used in a multimonitor configuration. We are working on a resolution and will provide an update in an upcoming release.
workaround
Jun 12, 2024
KB5039211
2024-06 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5039211)
"Copilot in Windows (in preview) is not currently supported when your taskbar is located vertically on the right or left of your screen."
To access Copilot in Windows, make sure your taskbar is positioned horizontally on the top or bottom of your screen. We are working on a resolution and will provide an update in an upcoming release.
workaround
Jun 12, 2024
KB5039211
2024-06 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5039211)
"After you install KB5034203 (dated 01/23/2024) or later updates, some Windows devices that use the DHCP Option 235 to discover Microsoft Connected Cache (MCC) nodes in their network might be unable to use those nodes. Instead, these Windows devices will download updates and apps from the public internet. IT administrators also see increased download traffic on their internet routes. Those of you who use the Home edition of Windows are not likely to experience this i"
Option 1: Configure Microsoft Connected Cache endpoint in DOCacheHost policy as indicated in Cache hostname. Additionally, DOCacheHostSourcehas to be set to 1or removed as indicated in Cache hostname source. By default, the DOCacheHost and DOCacheHostSource policies have no value. Option 2: You can mitigate this issue using Group Policies available through our support channel. Organizations can request help at Support for business. We are working on a resolution and will provide an update in an upcoming release.
workaround
Jun 12, 2024
KB5039211
2024-06 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5039211)
"After installing this update, you might be unable to change your user account profile picture. When attempting to change a profile picture by selecting the button Start> Settings > Account > Your info and, under Create your picture, clicking on Browse for one, you might receive an error message with error code 0x80070520. "
We are working on a resolution and will provide an update in an upcoming release.
workaround
Jun 12, 2024
KB5039227
2024-06 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5039227)
"After installing this update, you might be unable to change your user account profile picture. When attempting to change a profile picture by selecting the button Start> Settings > Account > Your info and, under Create your picture, clicking on Browse for one, you might receive an error message with error code 0x80070520. "
We are working on a resolution and will provide an update in an upcoming release.
workaround
Jun 12, 2024
KB5037853
2024-05 Cumulative Update Preview for Windows 11 Version 22H2 for arm64-based Systems (KB5037853)
"After installing this update, you might face issues using the taskbar. You might notice the taskbar temporarily glitching, not responding, disappearing, and reappearing automatically. Additionally, this issue might be reflected in the Event Viewer with Application Error ‘Event ID 1000’ under Windows Logs, listing 'Explorer.EXE' as the 'Faulting application name' and 'Taskbar.View.dll' as the 'Faulting module name'. "
This issue is addressed in KB5039212.
workaround
Jun 12, 2024
KB5037853
2024-05 Cumulative Update Preview for Windows 11 Version 22H2 for arm64-based Systems (KB5037853)
"After installing this update, you might face issues during the install process. This issue is mainly observed on Windows virtual machine (Parallels Desktop) running on Arm based Mac devices. After installing this update, you might encounter an error during the system restart and the device might roll back to the previous update installed."
This issue is addressed in KB5039212.
workaround
Jun 12, 2024
KB5037849
2024-05 Cumulative Update Preview for Windows 10 Version 22H2 for x64-based Systems (KB5037849)
"Windows devices using more than one (1) monitor might experience issues with desktop icons moving unexpectedly between monitors or other icon alignment issues when attempting to use Copilot in Windows (in preview)."
To prevent users from encountering this issue, Copilot in Windows (in preview) might not be available on devices that have been used or are currently being used in a multimonitor configuration. We are working on a resolution and will provide an update in an upcoming release.
workaround
Jun 12, 2024
KB5037849
2024-05 Cumulative Update Preview for Windows 10 Version 22H2 for x64-based Systems (KB5037849)
"Copilot in Windows (in preview) is not currently supported when your taskbar is located vertically on the right or left of your screen."
To access Copilot in Windows, make sure your taskbar is positioned horizontally on the top or bottom of your screen. We are working on a resolution and will provide an update in an upcoming release.
workaround
Jun 12, 2024
KB5037849
2024-05 Cumulative Update Preview for Windows 10 Version 22H2 for x64-based Systems (KB5037849)
"After you install KB5034203 (dated 01/23/2024) or later updates, some Windows devices that use the DHCP Option 235 to discover Microsoft Connected Cache (MCC) nodes in their network might be unable to use those nodes. Instead, these Windows devices will download updates and apps from the public internet. IT administrators also see increased download traffic on their internet routes. Those of you who use the Home edition of Windows are not likely to experience this i"
Option 1: Configure Microsoft Connected Cache endpoint in DOCacheHost policy as indicated in Cache hostname. Additionally, DOCacheHostSourcehas to be set to 1or removed as indicated in Cache hostname source. By default, the DOCacheHost and DOCacheHostSource policies have no value. Option 2: You can mitigate this issue using Group Policies available through our support channel. Organizations can request help at Support for business. We are working on a resolution and will provide an update in an upcoming release.
workaround
Jun 12, 2024
KB5037849
2024-05 Cumulative Update Preview for Windows 10 Version 22H2 for x64-based Systems (KB5037849)
"After installing this update, you might be unable to change your user account profile picture. When attempting to change a profile picture by selecting the button Start> Settings > Account > Your info and, under Create your picture, clicking on Browse for one, you might receive an error message with error code 0x80070520. "
We are working on a resolution and will provide an update in an upcoming release.
workaround
Jun 12, 2024
KB5037765
2024-05 Cumulative Update for Windows 10 Version 1809 for x64-based Systems (KB5037765) (CVE-2024-30040) (CVE-2024-30051)
"Windows devices attempting to install this update, might face issues during the installation process. The installation might fail with an error code 0x800f0982. This issue is more likely to affect devices that do not have the English (United States) language pack. We have also received reports that devices are failing to install this update with the error code 0x80004005. This error can occur even if the English (United States) language pack is installed"
This issue is addressed in KB5039705.
r">Known issues in Microsoft Patches:
Microsoft often releases patches to address security and reliability issues. Sometimes, patches itself will introduce unprecedented issues after installing them. Here's the updated list of all the known issues in Microsoft patches and possible workaround for them.
Oops! No results for your search.
workaround
May 15, 2024
KB5037836
2024-05 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5037836)
"After installing this update and restarting your device, you might receive the error, “Failure to configure Windows updates. Reverting Changes. Do not turn off your computer”, and the update might show as Failed in Update History."
This is expected in the following circumstances: If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, see the Obtaining Extended Security Updates for eligible Windows devices blog post. For information on the prerequisites, see the How to get this update section of this article.
workaround
May 15, 2024
KB5037800
2024-05 Security Monthly Quality Rollup for Windows Server 2008 for x64-based Systems (KB5037800)
"After installing this update and restarting your device, you might receive the error, “Failure to configure Windows updates. Reverting Changes. Do not turn off your computer”, and the update might show as Failed in Update History."
This is expected in the following circumstances: If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, see the Obtaining Extended Security Updates for eligible Windows devices blog post. For information on the prerequisites, see the "How to get this update" section of this article.
workaround
May 15, 2024
KB5037771
2024-05 Cumulative Update for Windows 11 Version 22H2 for arm64-based Systems (KB5037771)
"After installing this update, you might be unable to change your user account profile picture. When attempting to change a profile picture by selecting the button Start> Settings> Accounts > Your info, and then selecting Choose a file, you might receive an error message with error code 0x80070520."
We are working on a resolution and will provide an update in an upcoming release.
workaround
May 15, 2024
KB5037770
2024-05 Cumulative Update for Windows 11 for ARM64-based Systems (KB5037770)
"After installing this update, you might be unable to change your user account profile picture. When attempting to change a profile picture by selecting the button Start> Settings> Accounts > Your info, and then selecting Choose a file, you might receive an error message with error code 0x80070520."
We are working on a resolution and will provide an update in an upcoming release.
workaround
May 15, 2024
KB5037768
2024-05 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5037768)
"Windows devices using more than one (1) monitor might experience issues with desktop icons moving unexpectedly between monitors or other icon alignment issues when attempting to use Copilot in Windows (in preview)."
To prevent users from encountering this issue, Copilot in Windows (in preview) might not be available on devices that have been used or are currently being used in a multimonitor configuration. We are working on a resolution and will provide an update in an upcoming release.
workaround
May 15, 2024
KB5037768
2024-05 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5037768)
"Copilot in Windows (in preview) is not currently supported when your taskbar is located vertically on the right or left of your screen."
To access Copilot in Windows, make sure your taskbar is positioned horizontally on the top or bottom of your screen. We are working on a resolution and will provide an update in an upcoming release.
workaround
May 15, 2024
KB5037768
2024-05 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5037768)
"After you install KB5034203 (dated 01/23/2024) or later updates, some Windows devices that use the DHCP Option 235 to discover Microsoft Connected Cache (MCC) nodes in their network might be unable to use those nodes. Instead, these Windows devices will download updates and apps from the public internet. IT administrators also see increased download traffic on their internet routes. Those of you who use the Home edition of Windows are not likely to experience this i"
Option 1: Configure Microsoft Connected Cache endpoint in DOCacheHost policy as indicated in Cache hostname. Additionally, DOCacheHostSourcehas to be set to 1or removed as indicated in Cache hostname source. By default, the DOCacheHost and DOCacheHostSource policies have no value. Option 2: You can mitigate this issue using Group Policies available through our support channel. Organizations can request help at Support for business. We are working on a resolution and will provide an update in an upcoming release.
workaround
May 15, 2024
KB5037768
2024-05 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5037768)
"After installing this update, you might be unable to change your user account profile picture. When attempting to change a profile picture by selecting the button Start> Settings > Account > Your info and, under Create your picture, clicking on Browse for one, you might receive an error message with error code 0x80070520. "
We are working on a resolution and will provide an update in an upcoming release.
workaround
May 15, 2024
KB5037782
2024-05 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5037782)
"After installing this update, you might be unable to change your user account profile picture. When attempting to change a profile picture by selecting the button Start> Settings > Account > Your info and, under Create your picture, clicking on Browse for one, you might receive an error message with error code 0x80070520. "
We are working on a resolution and will provide an update in an upcoming release.
workaround
May 15, 2024
KB5036922
2024-04 Security Only Quality Update for Windows Server 2008 R2 for x64-based Systems (KB5036922) (ESU) (CVE-2024-26234)
"After installing this update on domain controllers (DCs), you might notice a significant increase in NTLM authentication traffic. This issue is likely to affect organizations that have a very small percentage of primary domain controllers in their environment and high NTLM traffic."
This issue is resolved in the Windows update (KB5037803) released on or after May 14, 2024.
workaround
May 15, 2024
KB5036922
2024-04 Security Only Quality Update for Windows Server 2008 R2 for x64-based Systems (KB5036922) (ESU) (CVE-2024-26234)
"After installing this update, Windows devices might encounter VPN connection failures."
This issue is resolved in the Windows update (KB5037803) released on or after May 14, 2024.
workaround
May 15, 2024
KB5036950
2024-04 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5036950) (ESU) (CVE-2024-26234)
"After installing this update on domain controllers (DCs), you might notice a significant increase in NTLM authentication traffic. This issue is likely to affect organizations that have a very small percentage of primary domain controllers in their environment and high NTLM traffic."
This issue is resolved in the Windows update (KB5037836) released on or after May 14, 2024.
workaround
May 15, 2024
KB5036950
2024-04 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5036950) (ESU) (CVE-2024-26234)
"After installing this update, Windows devices might encounter VPN connection failures."
This issue is resolved in the Windows update (KB5037836) released on or after May 14, 2024.
workaround
May 15, 2024
KB5036960
2024-04 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems (KB5036960) (ESU) (CVE-2024-26234)
"After installing this update on domain controllers (DCs), you might notice a significant increase in NTLM authentication traffic. This issue is likely to affect organizations that have a very small percentage of primary domain controllers in their environment and high NTLM traffic."
This issue is resolved in the Windows update (KB5037823) released on or after May 14, 2024.
workaround
May 15, 2024
KB5036960
2024-04 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems (KB5036960) (ESU) (CVE-2024-26234)
"After installing this update, Windows devices might encounter VPN connection failures."
This issue is resolved in the Windows update (KB5037823) released on or after May 14, 2024.
workaround
May 15, 2024
KB5036969
2024-04 Security Monthly Quality Rollup for Windows Server 2012 for x64-based Systems (KB5036969) (ESU) (CVE-2024-26234)
"After installing this update on domain controllers (DCs), you might notice a significant increase in NTLM authentication traffic. This issue is likely to affect organizations that have a very small percentage of primary domain controllers in their environment and high NTLM traffic."
This issue is resolved in the Windows update (KB5037778) released on or after May 14, 2024.
workaround
May 15, 2024
KB5036969
2024-04 Security Monthly Quality Rollup for Windows Server 2012 for x64-based Systems (KB5036969) (ESU) (CVE-2024-26234)
"After installing this update, Windows devices might encounter VPN connection failures."
This issue is resolved in the Windows update (KB5037778) released on or after May 14, 2024.
workaround
May 15, 2024
KB5036967
2024-04 Security Monthly Quality Rollup for Windows Server 2008 R2 for x64-based Systems (KB5036967) (ESU) (CVE-2024-26234)
"After installing this update on domain controllers (DCs), you might notice a significant increase in NTLM authentication traffic. This issue is likely to affect organizations that have a very small percentage of primary domain controllers in their environment and high NTLM traffic."
This issue is resolved in the Windows update (KB5037780) released on or after May 14, 2024.
workaround
May 15, 2024
KB5036967
2024-04 Security Monthly Quality Rollup for Windows Server 2008 R2 for x64-based Systems (KB5036967) (ESU) (CVE-2024-26234)
"After installing this update, Windows devices might encounter VPN connection failures."
This issue is resolved in the Windows update (KB5037780) released on or after May 14, 2024.
workaround
May 15, 2024
KB5036932
2024-04 Security Monthly Quality Rollup for Windows Server 2008 for x64-based Systems (KB5036932) (ESU) (CVE-2024-26234)
"After installing this update on domain controllers (DCs), you might notice a significant increase in NTLM authentication traffic. This issue is likely to affect organizations that have a very small percentage of primary domain controllers in their environment and high NTLM traffic."
This issue is resolved in the Windows update (KB5037800) released on or after May 14, 2024.
workaround
May 15, 2024
KB5036932
2024-04 Security Monthly Quality Rollup for Windows Server 2008 for x64-based Systems (KB5036932) (ESU) (CVE-2024-26234)
"After installing this update, Windows devices might encounter VPN connection failures."
This issue is resolved in the Windows update (KB5037800) released on or after May 14, 2024.
KB5036893
workaround
May 15, 2024
KB5036980
2024-04 Cumulative Update Preview for Windows 11 Version 22H2 for arm64-based Systems (KB5036980)
"Windows devices might face VPN connection failures after installing the update dated April 9, 2024, or later."
This issue is addressed in KB5037771.
workaround
May 15, 2024
KB5036979
2024-04 Cumulative Update Preview for Windows 10 Version 22H2 for x64-based Systems (KB5036979)
"Windows devices using more than one (1) monitor might experience issues with desktop icons moving unexpectedly between monitors or other icon alignment issues when attempting to use Copilot in Windows (in preview)."
To prevent users from encountering this issue, Copilot in Windows (in preview) might not be available on devices that have been used or are currently being used in a multimonitor configuration. We are working on a resolution and will provide an update in an upcoming release.
workaround
May 15, 2024
KB5036979
2024-04 Cumulative Update Preview for Windows 10 Version 22H2 for x64-based Systems (KB5036979)
"Copilot in Windows (in preview) is not currently supported when your taskbar is located vertically on the right or left of your screen."
To access Copilot in Windows, make sure your taskbar is positioned horizontally on the top or bottom of your screen. We are working on a resolution and will provide an update in an upcoming release.
workaround
May 15, 2024
KB5036979
2024-04 Cumulative Update Preview for Windows 10 Version 22H2 for x64-based Systems (KB5036979)
"After you install KB5034203 (dated 01/23/2024) or later updates, some Windows devices that use the DHCP Option 235 to discover Microsoft Connected Cache (MCC) nodes in their network might be unable to use those nodes. Instead, these Windows devices will download updates and apps from the public internet. IT administrators also see increased download traffic on their internet routes. Those of you who use the Home edition of Windows are not likely to experience this i"
Option 1: Configure Microsoft Connected Cache endpoint in DOCacheHost policy as indicated in Cache hostname. Additionally, DOCacheHostSourcehas to be set to 1or removed as indicated in Cache hostname source. By default, the DOCacheHost and DOCacheHostSource policies have no value. Option 2: You can mitigate this issue using Group Policies available through our support channel. Organizations can request help at Support for business. We are working on a resolution and will provide an update in an upcoming release.
workaround
May 15, 2024
KB5036979
2024-04 Cumulative Update Preview for Windows 10 Version 22H2 for x64-based Systems (KB5036979)
"After installing this update, you might be unable to change your user account profile picture. When attempting to change a profile picture by selecting the button Start> Settings > Account > Your info and, under Create your picture, clicking on Browse for one, you might receive an error message with error code 0x80070520. "
We are working on a resolution and will provide an update in an upcoming release.
workaround
May 15, 2024
KB5036979
2024-04 Cumulative Update Preview for Windows 10 Version 22H2 for x64-based Systems (KB5036979)
"Windows devices might face VPN connection failures after installing the update dated April 9, 2024, or later."
This issue is addressed in KB5037768.
workaround
May 15, 2024
KB5036893
2024-04 Cumulative Update for Windows 11 Version 22H2 for arm64-based Systems (KB5036893) (CVE-2024-29988) (CVE-2024-26234)
"Windows devices might face VPN connection failures after installing the update dated April 9, 2024, or later."
This issue is addressed in KB5037771.
workaround
May 15, 2024
KB5036894
2024-04 Cumulative Update for Windows 11 for ARM64-based Systems (KB5036894) (CVE-2024-29988) (CVE-2024-26234)
"Windows devices might face VPN connection failures after installing the update dated April 9, 2024, or later."
This issue is addressed in KB5037770.
workaround
May 15, 2024
KB5036892
2024-04 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5036892) (CVE-2024-29988) (CVE-2024-26234)
"After you install KB5034203 (dated 01/23/2024) or later updates, some Windows devices that use the DHCP Option 235 to discover Microsoft Connected Cache (MCC) nodes in their network might be unable to use those nodes. Instead, these Windows devices will download updates and apps from the public internet. IT administrators also see increased download traffic on their internet routes. Those of you who use the Home edition of Windows are not likely to experience this i"
Option 1: Configure Microsoft Connected Cache endpoint in DOCacheHost policy as indicated in Cache hostname. Additionally, DOCacheHostSourcehas to be set to 1or removed as indicated in Cache hostname source. By default, the DOCacheHost and DOCacheHostSource policies have no value. Option 2: You can mitigate this issue using Group Policies available through our support channel. Organizations can request help at Support for business. We are working on a resolution and will provide an update in an upcoming release.
workaround
May 15, 2024
KB5036892
2024-04 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5036892) (CVE-2024-29988) (CVE-2024-26234)
"After installing this update, you might be unable to change your user account profile picture. When attempting to change a profile picture by selecting the button Start> Settings > Account > Your info and, under Create your picture, clicking on Browse for one, you might receive an error message with error code 0x80070520. "
We are working on a resolution and will provide an update in an upcoming release.
workaround
May 15, 2024
KB5036892
2024-04 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5036892) (CVE-2024-29988) (CVE-2024-26234)
"Windows devices might face VPN connection failures after installing the update dated April 9, 2024, or later."
This issue is addressed in KB5037768.
workaround
May 15, 2024
KB5036896
2024-04 Cumulative Update for Windows 10 Version 1809 for x64-based Systems (KB5036896) (CVE-2024-29988) (CVE-2024-26234)
"Windows devices might face VPN connection failures after installing the update dated April 9, 2024, or later."
This issue is addressed in KB5037765.
workaround
May 15, 2024
KB5036896
2024-04 Cumulative Update for Windows 10 Version 1809 for x64-based Systems (KB5036896) (CVE-2024-29988) (CVE-2024-26234)
"After installing the April 9, 2024 security update on domain controllers (DCs), you might notice a significant increase in NTLM authentication traffic. This issue is likely to affect organizations that have a very small percentage of primary domain controllers in their environment and high NTLM traffic."
This issue is addressed in KB5037765.
workaround
May 15, 2024
KB5036899
2024-04 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB5036899) (CVE-2024-26234)
"Windows devices might face VPN connection failures after installing the update dated April 9, 2024, or later."
This issue is addressed in KB5037763.
workaround
May 15, 2024
KB5036899
2024-04 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB5036899) (CVE-2024-26234)
"After installing the April 9, 2024 security update on domain controllers (DCs), you might notice a significant increase in NTLM authentication traffic. This issue is likely to affect organizations that have a very small percentage of primary domain controllers in their environment and high NTLM traffic."
This issue is addressed in KB5037763.
workaround
May 15, 2024
KB5036909
2024-04 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5036909) (CVE-2024-29988) (CVE-2024-26234)
"After installing this update, you might be unable to change your user account profile picture. When attempting to change a profile picture by selecting the button Start> Settings > Account > Your info and, under Create your picture, clicking on Browse for one, you might receive an error message with error code 0x80070520. "
We are working on a resolution and will provide an update in an upcoming release.
workaround
May 15, 2024
KB5036909
2024-04 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5036909) (CVE-2024-29988) (CVE-2024-26234)
"Windows devices might face VPN connection failures after installing the update dated April 9, 2024, or later."
This issue is addressed in KB5037782.
workaround
May 15, 2024
KB5036909
2024-04 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5036909) (CVE-2024-29988) (CVE-2024-26234)
"After installing the April 9, 2024 security update on domain controllers (DCs), you might notice a significant increase in NTLM authentication traffic. This issue is likely to affect organizations that have a very small percentage of primary domain controllers in their environment and high NTLM traffic."
This issue is addressed in KB5037782.
workaround
Apr 10, 2024
KB5035885
2024-03 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems (KB5035885) (ESU)
"Following installation of the March 2024 security update, released March 12, 2024 (KB5035885), Local Security Authority Subsystem Service (LSASS) may experience a memory leak on domain controllers (DCs). This is observed when on-premises and cloud-based Active Directory Domain Controllers service Kerberos authentication requests. Excessive memory leaks may cause LSASS to crash, which triggers an unscheduled reboot of underlying domain controllers (DCs). Note This is"
This issue is resolved in update KB5037426.
workaround
Apr 10, 2024
KB5035941
2024-03 Cumulative Update Preview for Windows 10 Version 22H2 for x64-based Systems (KB5035941)
"Windows devices using more than one (1) monitor might experience issues with desktop icons moving unexpectedly between monitors or other icon alignment issues when attempting to use Copilot in Windows (in preview)."
To prevent users from encountering this issue, Copilot in Windows (in preview) might not be available on devices that have been used or are currently being used in a multimonitor configuration. We are working on a resolution and will provide an update in an upcoming release.
workaround
Apr 10, 2024
KB5035941
2024-03 Cumulative Update Preview for Windows 10 Version 22H2 for x64-based Systems (KB5035941)
"Copilot in Windows (in preview) is not currently supported when your taskbar is located vertically on the right or left of your screen."
To access Copilot in Windows, make sure your taskbar is positioned horizontally on the top or bottom of your screen. We are working on a resolution and will provide an update in an upcoming release.
workaround
Apr 10, 2024
KB5035849
2024-03 Cumulative Update for Windows 10 Version 1809 for x64-based Systems (KB5035849)
"Following installation of this update, Local Security Authority Subsystem Service (LSASS) may experience a memory leak on domain controllers (DCs). This is observed when on-premises and cloud-based Active Directory Domain Controllers service Kerberos authentication requests. Extreme memory leaks may cause LSASS to crash, which triggers an unscheduled reboot of underlying domain controllers (DCs)."
This issue is addressed in KB5037425.
workaround
Apr 10, 2024
KB5035855
2024-03 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB5035855)
"Following installation of this update, Local Security Authority Subsystem Service (LSASS) may experience a memory leak on domain controllers (DCs). This is observed when on-premises and cloud-based Active Directory Domain Controllers service Kerberos authentication requests. Extreme memory leaks may cause LSASS to crash, which triggers an unscheduled reboot of underlying domain controllers (DCs)."
This issue is addressed in KB5037423.
workaround
Apr 10, 2024
KB5035857
2024-03 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5035857)
"Following installation of this update, Local Security Authority Subsystem Service (LSASS) may experience a memory leak on domain controllers (DCs). This is observed when on-premises and cloud-based Active Directory Domain Controllers service Kerberos authentication requests. Extreme memory leaks may cause LSASS to crash, which triggers an unscheduled reboot of underlying domain controllers (DCs)."
This issue is addressed in KB5037422.
workaround
Mar 12, 2024
KB5035933
2024-03 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5035933)
"After installing this update and restarting your device, you might receive the error, "Failure to configure Windows updates. Reverting Changes. Do not turn off your computer", and the update might show as Failed in Update History."
This is expected in the following circumstances: If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, see the Obtaining Extended Security Updates for eligible Windows devices blog post. For information on the prerequisites, see the How to get this update section of this article.
workaround
Mar 12, 2024
KB5035920
2024-03 Security Monthly Quality Rollup for Windows Server 2008 for x64-based Systems (KB5035920)
"After installing this update and restarting your device, you might receive the error, "Failure to configure Windows updates. Reverting Changes. Do not turn off your computer", and the update might show as Failed in Update History."
This is expected in the following circumstances: If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, see the Obtaining Extended Security Updates for eligible Windows devices blog post. For information on the prerequisites, see the "How to get this update" section of this article.
workaround
Mar 12, 2024
KB5035845
2024-03 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5035845)
"Windows devices using more than one (1) monitor might experience issues with desktop icons moving unexpectedly between monitors or other icon alignment issues when attempting to use Copilot in Windows (in preview)."
To prevent users from encountering this issue, Copilot in Windows (in preview) might not be available on devices that have been used or are currently being used in a multimonitor configuration. We are working on a resolution and will provide an update in an upcoming release.
workaround
Mar 12, 2024
KB5035845
2024-03 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5035845)
"Copilot in Windows (in preview) is not currently supported when your taskbar is located vertically on the right or left of your screen."
To access Copilot in Windows, make sure your taskbar is positioned horizontally on the top or bottom of your screen. We are working on a resolution and will provide an update in an upcoming release.
workaround
Mar 12, 2024
KB5034848
2024-02 Cumulative Update Preview for Windows 11 Version 22H2 for arm64-based Systems (KB5034848)
Windows 11 devices attempting to install the February 2024 non-security update, released February 29, 2024, might face issues during the update process. The installation might fail when the update's download reaches 96% of completion, and the device might roll back to the previous update installed. Resulting from this error, the following message might be displayed: “Something didn’t go as planned. No need to worry – undoing changes. Please keep your computer on”. This issue might be reflected in the Windows Event Viewer with error code 0x800F0922.
This issue is addressed in KB5035853.
workaround
Mar 12, 2024
KB5034843
2024-02 Cumulative Update Preview for Windows 10 Version 22H2 for x64-based Systems (KB5034843)
"Windows devices using more than one (1) monitor might experience issues with desktop icons moving unexpectedly between monitors or other icon alignment issues when attempting to use Copilot in Windows (in preview)."
To prevent users from encountering this issue, Copilot in Windows (in preview) might not be available on devices that have been used or are currently being used in a multimonitor configuration. We are working on a resolution and will provide an update in an upcoming release.
workaround
Mar 12, 2024
KB5034843
2024-02 Cumulative Update Preview for Windows 10 Version 22H2 for x64-based Systems (KB5034843)
"Copilot in Windows (in preview) is not currently supported when your taskbar is located vertically on the right or left of your screen."
To access Copilot in Windows, make sure your taskbar is positioned horizontally on the top or bottom of your screen. We are working on a resolution and will provide an update in an upcoming release.
workaround
Mar 12, 2024
KB5034765
2024-02 Cumulative Update for Windows 11 Version 22H2 for arm64-based Systems (KB5034765) (CVE-2024-21351) (CVE-2024-21412)
Windows 11 devices attempting to install the February 2024 security update, released February 13, 2024 (KB5034765), might face issues during the update process. The installation might fail when the update's download reaches 96% of completion, and the device might roll back to the previous update installed. Resulting from this error, the following message might be displayed: “Something didn’t go as planned. No need to worry – undoing changes. Please keep your computer on”. This issue might be reflected in the Windows Event Viewer with error code 0x800F0922.
This issue is addressed in KB5035853.
workaround
Feb 14, 2024
KB5034833
2024-02 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5034833)
"After installing this update and restarting your device, you might receive the error, “Failure to configure Windows updates. Reverting Changes. Do not turn off your computer”, and the update might show as Failed in Update History."
This is expected in the following circumstances: If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, see the Obtaining Extended Security Updates for eligible Windows devices blog post. For information on the prerequisites, see the How to get this update section of this article.
workaround
Feb 14, 2024
KB5034795
2024-02 Security Monthly Quality Rollup for Windows Server 2008 for x64-based Systems (KB5034795)
"After installing this update and restarting your device, you might receive the error, “Failure to configure Windows updates. Reverting Changes. Do not turn off your computer”, and the update might show as Failed in Update History."
This is expected in the following circumstances: If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, see the Obtaining Extended Security Updates for eligible Windows devices blog post. For information on the prerequisites, see the "How to get this update" section of this article.
workaround
Feb 14, 2024
KB5034763
2024-02 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5034763)
"Windows devices using more than one (1) monitor might experience issues with desktop icons moving unexpectedly between monitors or other icon alignment issues when attempting to use Copilot in Windows (in preview)."
To prevent users from encountering this issue, Copilot in Windows (in preview) might not be available on devices that have been used or are currently being used in a multimonitor configuration. We are working on a resolution and will provide an update in an upcoming release.
workaround
Feb 14, 2024
KB5034763
2024-02 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5034763)
"Copilot in Windows (in preview) is not currently supported when your taskbar is located vertically on the right or left of your screen."
To access Copilot in Windows, make sure your taskbar is positioned horizontally on the top or bottom of your screen. We are working on a resolution and will provide an update in an upcoming release.
workaround
Feb 14, 2024
KB5034770
2024-02 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5034770)
"After you install KB5034129, chromium-based internet browsers, such as Microsoft Edge, might not open correctly. Browsers affected by this issue might display a white screen and become unresponsive when you open them. Devices that have browser specific Image File Execution Options (IFEO) might be affected by this issue. When an entry for Microsoft Edge (msedge.exe) or other chromium-based browsers is found in the Windows registry, the issue might occur. A registry "
You can prevent this issue by removing certain keys related to Image File Execution Options in the Windows registry. Important This article contains information about how to modify the registry. Make sure that you back up the registry before you modify it. Make sure that you know how to restore the registry if a problem occurs. For more information about how to back up, restore, and modify the registry, see How to back up and restore the registry in Windows. Modify the Windows registry using the steps below. Open the Windows Registry Editor. Open the Windows start menu and type regedit. Select Registry Editor from the results. Go to the registry location ComputerHKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionImage File Execution Options. Type this location in the path field that is below the File menu or use the left-side panel of the editor to find that path. Expand this path in the editor. At that location, find the registry key related to the browser that is in use (denoted with a folder icon). Examples of the key name include msedge.exe for Microsoft Edge or chrome.exe. Click the key. Examine the right-side panel that contains values associated with the key. If the right-side panel only includes a value titled “(Default)”, it should be safe to remove the registry key. Right-click the key in the left-side panel of the editor and select Delete. After this, restart the device. This should address the issue, and the browser should open as expected. If the right-side panel contains several values in addition to the one titled “(Default)”, it is still possible to address the issue by removing the registry key for this browser and restarting the device. However, note that doing so might remove configurations associated with the opening or starting process of the browser. We are workingc on a resolution and will provide an update in an upcoming release.
workaround
Feb 14, 2024
KB5034204
2024-01 Cumulative Update Preview for Windows 11 Version 22H2 for arm64-based Systems (KB5034204)
"Windows devices using more than one (1) monitor might experience issues with desktop icons moving unexpectedly between monitors or other icon alignment issues when attempting to use Copilot in Windows (in preview)."
This issue is addressed on the service-side for Windows 11, versions 22H2 and 23H2 on devices with updates released January 9, 2024, or later. Note Managed devices in your environment that have been used or are currently being used in a multimonitor configuration will not yet have Copilot for Windows available.
workaround
Feb 14, 2024
KB5034203
2024-01 Cumulative Update Preview for Windows 10 Version 22H2 for x64-based Systems (KB5034203)
"Windows devices using more than one (1) monitor might experience issues with desktop icons moving unexpectedly between monitors or other icon alignment issues when attempting to use Copilot in Windows (in preview)."
To prevent users from encountering this issue, Copilot in Windows (in preview) might not be available on devices that have been used or are currently being used in a multimonitor configuration. We are working on a resolution and will provide an update in an upcoming release.
workaround
Feb 14, 2024
KB5034203
2024-01 Cumulative Update Preview for Windows 10 Version 22H2 for x64-based Systems (KB5034203)
"Copilot in Windows (in preview) is not currently supported when your taskbar is located vertically on the right or left of your screen."
To access Copilot in Windows, make sure your taskbar is positioned horizontally on the top or bottom of your screen. We are working on a resolution and will provide an update in an upcoming release.
workaround
Feb 14, 2024
KB5034203
2024-01 Cumulative Update Preview for Windows 10 Version 22H2 for x64-based Systems (KB5034203)
"Some eligible Windows 10 might receive a 0xd0000034 error when attempting to upgrade to Windows 11 from Windows Update. Note This issue should not affect the ability to continue to use Windows devices with Windows 10."
This issue is addressed in KB5034763.
workaround
Feb 14, 2024
KB5034129
2024-01 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5034129)
"After you install KB5034129, chromium-based internet browsers, such as Microsoft Edge, might not open correctly. Browsers affected by this issue might display a white screen and become unresponsive when you open them. Devices that have browser specific Image File Execution Options (IFEO) might be affected by this issue. When an entry for Microsoft Edge (msedge.exe) or other chromium-based browsers is found in the Windows registry, the issue might occur. A registry "
You can prevent this issue by removing certain keys related to Image File Execution Options in the Windows registry. Important This article contains information about how to modify the registry. Make sure that you back up the registry before you modify it. Make sure that you know how to restore the registry if a problem occurs. For more information about how to back up, restore, and modify the registry, see How to back up and restore the registry in Windows. Modify the Windows registry using the steps below. Open the Windows Registry Editor. Open the Windows start menu and type regedit. Select Registry Editor from the results. Go to the registry location ComputerHKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionImage File Execution Options. Type this location in the path field that is below the File menu or use the left-side panel of the editor to find that path. Expand this path in the editor. At that location, find the registry key related to the browser that is in use (denoted with a folder icon). Examples of the key name include msedge.exe for Microsoft Edge or chrome.exe. Click the key. Examine the right-side panel that contains values associated with the key. If the right-side panel only includes a value titled “(Default)”, it should be safe to remove the registry key. Right-click the key in the left-side panel of the editor and select Delete. After this, restart the device. This should address the issue, and the browser should open as expected. If the right-side panel contains several values in addition to the one titled “(Default)”, it is still possible to address the issue by removing the registry key for this browser and restarting the device. However, note that doing so might remove configurations associated with the opening or starting process of the browser. We are working on a resolution and will provide an update in an upcoming release.
workaround
Jan 10, 2024
KB5034167
2024-01 Security Only Quality Update for Windows Server 2008 R2 for x64-based Systems (KB5034167) (ESU)
"After installing this update and restarting your device, you might receive the error, “Failure to configure Windows updates. Reverting Changes. Do not turn off your computer,” and the update might show as Failed in Update History."
This is expected in the following circumstances: If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, please see this blog post. For information on the prerequisites, see the How to get this update section of this article.
workaround
Jan 10, 2024
KB5034176
2024-01 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5034176) (ESU)
"After installing this update and restarting your device, you might receive the error, “Failure to configure Windows updates. Reverting Changes. Do not turn off your computer”, and the update might show as Failed in Update History."
This is expected in the following circumstances: If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, see the Obtaining Extended Security Updates for eligible Windows devices blog post. For information on the prerequisites, see the "How to get this update" section of this article.
workaround
Jan 10, 2024
KB5034169
2024-01 Security Monthly Quality Rollup for Windows Server 2008 R2 for x64-based Systems (KB5034169) (ESU)
"After installing this update and restarting your device, you might receive the error, "Failure to configure Windows updates. Reverting Changes. Do not turn off your computer", and the update might show as Failed in Update History."
This is expected in the following circumstances: If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, please see the Obtaining Extended Security Updates for eligible Windows devices b;og post. For information on the prerequisites, see the How to get this update section of this article.
workaround
Jan 10, 2024
KB5034173
2024-01 Security Monthly Quality Rollup for Windows Server 2008 for x64-based Systems (KB5034173) (ESU)
"After installing this update and restarting your device, you might receive the error, “Failure to configure Windows updates. Reverting Changes. Do not turn off your computer”, and the update might show as Failed in Update History."
This is expected in the following circumstances: If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, see the Obtaining Extended Security Updates for eligible Windows devices blog post. For information on the prerequisites, see the "How to get this update" section of this article.
workaround
Jan 10, 2024
KB5034123
2024-01 Cumulative Update for Windows 11 Version 22H2 for arm64-based Systems (KB5034123)
"Using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the "Require Device Encryption" setting for some devices in your environment. Affected environments are those with the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies set to enabled and selecting either "full encryption" or "used space only". Microsoft Intune is affected by this issue but third-party MDMs might also pe affected. Important This issue is a reporting issue only and does not affect drive encryption or the reporting of other issues on the device, including other BitLocker issues."
To mitigate this issue in Microsoft Intune, you can set the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies to not configured. We are working on a resolution and will provide an update in an upcoming release.
workaround
Jan 10, 2024
KB5034123
2024-01 Cumulative Update for Windows 11 Version 22H2 for arm64-based Systems (KB5034123)
"The color font format for COLRv1 does not render properly. This format enables Windows to display emoji with a 3D-like appearance."
We are working on a resolution and will provide an update in an upcoming release.
workaround
Jan 10, 2024
KB5034121
2024-01 Cumulative Update for Windows 11 for ARM64-based Systems (KB5034121)
"Windows devices using more than one (1) monitor might experience issues with desktop icons moving unexpectedly between monitors or other icon alignment issues when attempting to use Copilot in Windows (in preview)."
To prevent users from encountering this issue, Copilot in Windows (in preview) might not be available on devices that have been used or are currently being used in a multimonitor configuration. We are working on a resolution and will provide an update in an upcoming release.
workaround
Jan 10, 2024
KB5034122
2024-01 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5034122)
"Windows devices using more than one (1) monitor might experience issues with desktop icons moving unexpectedly between monitors or other icon alignment issues when attempting to use Copilot in Windows (in preview)."
To prevent users from encountering this issue, Copilot in Windows (in preview) might not be available on devices that have been used or are currently being used in a multimonitor configuration. We are working on a resolution and will provide an update in an upcoming release.
workaround
Jan 10, 2024
KB5034122
2024-01 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5034122)
"Copilot in Windows (in preview) is not currently supported when your taskbar is located vertically on the right or left of your screen."
To access Copilot in Windows, make sure your taskbar is positioned horizontally on the top or bottom of your screen. We are working on a resolution and will provide an update in an upcoming release.
workaround
Jan 10, 2024
KB5034122
2024-01 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5034122)
"Using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the "Require Device Encryption" setting for some devices in your environment. Affected environments are those with the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies set to enabled an"
To mitigate this issue in Microsoft Intune, you can set the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies to not configured. We are working on a resolution and will provide an update in an upcoming release.
workaround
Dec 20, 2023
KB5033375
2023-12 Cumulative Update for Windows 11 Version 22H2 for arm64-based Systems (KB5033375)
"The color font format for COLRv1 does not render properly. This format enables Windows to display emoji with a 3D-like appearance. "
We are working on a resolution and will provide an update in an upcoming release.
workaround
Dec 20, 2023
KB5033375
2023-12 Cumulative Update for Windows 11 Version 22H2 for arm64-based Systems (KB5033375)
"When using physical media or disc images (ISO) to install Windows 11, version 23H2 (also referred to as the Windows 11 2023 Update) on a device, Microsoft Narrator might not start. Narrator is commonly initialized using keyboard commands, such as Ctrl + Windows key + Enter. Although Narrator is present in Windows when the installation process begins, it might open in an unresponsive state when initialized using any method."
We are working on a resolution and updated media which can be used to install Windows 11, version 23H2 without this issue. We will provide an update in an upcoming release.
workaround
Dec 20, 2023
KB5033375
2023-12 Cumulative Update for Windows 11 Version 22H2 for arm64-based Systems (KB5033375)
"Microsoft has received reports of an issue in which some Wi-Fi adapters might not connect to some networks?after installing this update. We have confirmed this issue was caused by this update and KB5033375. As reported, you are more likely to be affected by this issue if you are attempting to connect to an enterprise, education, or public Wi-Fi network using 802.1x authentication. This issue is not likely to occur on home networks."
This issue is addressed using Known Issue Rollback (KIR). Please note that it might take up to 24 hours for the KIR to propagate automatically to consumer devices and non-managed business devices. Restarting your Windows device might help the KIR apply to your device faster. For enterprise-managed devices that have installed an affected update and encountered this issue, it can be addressed by installing and configuring a special Group Policy. The special Group Policy can be found in Computer Configuration > Administrative Templates >
workaround
Dec 13, 2023
KB5033424
2023-12 Security Only Quality Update for Windows Server 2008 R2 for x64-based Systems (KB5033424)
"After installing this update and restarting your device, you might receive the error, “Failure to configure Windows updates. Reverting Changes. Do not turn off your computer,” and the update might show as Failed in Update History."
This is expected in the following circumstances: If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, please see this blog post. For information on the prerequisites, see the How to get this update section of this article.
workaround
Dec 13, 2023
KB5033427
2023-12 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5033427)
"After installing this update and restarting your device, you might receive the error, “Failure to configure Windows updates. Reverting Changes. Do not turn off your computer”, and the update might show as Failed in Update History."
This is expected in the following circumstances: If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, please see this blog post. For information on the prerequisites, see the "How to get this update" section of this article.
workaround
Dec 13, 2023
KB5033433
2023-12 Security Monthly Quality Rollup for Windows Server 2008 R2 for x64-based Systems (KB5033433)
"After installing this update and restarting your device, you might receive the error, "Failure to configure Windows updates. Reverting Changes. Do not turn off your computer", and the update might show as Failed in Update History."
This is expected in the following circumstances: If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, please see this blog post. For information on the prerequisites, see the How to get this update section of this article.
workaround
Dec 13, 2023
KB5033422
2023-12 Security Monthly Quality Rollup for Windows Server 2008 for x64-based Systems (KB5033422)
"After installing this update and restarting your device, you might receive the error, “Failure to configure Windows updates. Reverting Changes. Do not turn off your computer”, and the update might show as Failed in Update History."
This is expected in the following circumstances: If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, please see this blog post. For information on the prerequisites, see the "How to get this update" section of this article.
workaround
Dec 13, 2023
KB5033375
2023-12 Cumulative Update for Windows 11 Version 22H2 for arm64-based Systems (KB5033375)
"IT admins"
Using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the "Require Device Encryption" setting for some devices in your environment. Affected environments are those with the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies set to enabled and selecting either "full encryption" or "used space only". Microsoft Intune is affected by this issue but third-party MDMs might also pe affected. Important This issue is a reporting issue only and does not affect drive encryption or the reporting of other issues on the device, including other BitLocker issues.
workaround
Dec 13, 2023
KB5033375
2023-12 Cumulative Update for Windows 11 Version 22H2 for arm64-based Systems (KB5033375)
"All users"
When using physical media or disc images (ISO) to install Windows 11, version 23H2 (also referred to as the Windows 11 2023 Update) on a device, Microsoft Narrator might not start. Narrator is commonly initialized using keyboard commands, such as Ctrl + Windows key + Enter. Although Narrator is present in Windows when the installation process begins, it might open in an unresponsive state when initialized using any method. Please note this issue does not occur when Windows 11, version 23H2 is installed using Windows Update on a device which is already running Windows 10 or Windows 11. This issue only occurs when physical media or ISOs are used for this installation and Narrator is only affected while the installation process is taking place. It should continue to work as expected once the installation is completed.
workaround
Dec 13, 2023
KB5033369
2023-12 Cumulative Update for Windows 11 for ARM64-based Systems (KB5033369)
"IT admins"
Using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the "Require Device Encryption" setting for some devices in your environment. Affected environments are those with the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies set to enabled and selecting either "full encryption" or "used space only". Microsoft Intune is affected by this issue but third-party MDMs might also pe affected. Important This issue is a reporting issue only and does not affect drive encryption or the reporting of other issues on the device, including other BitLocker issues.
workaround
Dec 13, 2023
KB5033372
2023-12 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5033372)
"Using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the "Require Device Encryption" setting for some devices in your environment. Affected environments are those with the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies set to enabled an"
To mitigate this issue in Microsoft Intune, you can set the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies to not configured. We are working on a resolution and will provide an update in an upcoming release.
workaround
Dec 13, 2023
KB5033372
2023-12 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5033372)
"Windows devices using more than one (1) monitor might experience issues with desktop icons moving unexpectedly between monitors or other icon alignment issues when attempting to use Copilot in Windows (in preview)."
To prevent users from encountering this issue, Copilot in Windows (in preview) might not be available on devices that have been used or are currently being used in a multimonitor configuration. We are working on a resolution and will provide an update in an upcoming release.
workaround
Dec 13, 2023
KB5033372
2023-12 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5033372)
"Copilot in Windows (in preview) is not currently supported when your taskbar is located vertically on the right or left of your screen."
To access Copilot in Windows, make sure your taskbar is positioned horizontally on the top or bottom of your screen. We are working on a resolution and will provide an update in an upcoming release.
workaround
Dec 13, 2023
KB5033371
2023-12 Cumulative Update for Windows 10 Version 1809 for x64-based Systems (KB5033371)
"Using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the "Require Device Encryption" setting for some devices in your environment. Affected environments are those with the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies set to enabled an"
To mitigate this issue in Microsoft Intune, you can set the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies to not configured. We are working on a resolution and will provide an update in an upcoming release.
workaround
Dec 13, 2023
KB5032288
2023-11 Cumulative Update Preview for Windows 11 Version 22H2 for arm64-based Systems (KB5032288)
"IT admins"
Using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the "Require Device Encryption" setting for some devices in your environment. Affected environments are those with the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies set to enabled and selecting either "full encryption" or "used space only". Microsoft Intune is affected by this issue but third-party MDMs might also pe affected. Important This issue is a reporting issue only and does not affect drive encryption or the reporting of other issues on the device, including other BitLocker issues.
workaround
Dec 13, 2023
KB5032288
2023-11 Cumulative Update Preview for Windows 11 Version 22H2 for arm64-based Systems (KB5032288)
"All users"
When using physical media or disc images (ISO) to install Windows 11, version 23H2 (also referred to as the Windows 11 2023 Update) on a device, Microsoft Narrator might not start. Narrator is commonly initialized using keyboard commands, such as Ctrl + Windows key + Enter. Although Narrator is present in Windows when the installation process begins, it might open in an unresponsive state when initialized using any method. Please note this issue does not occur when Windows 11, version 23H2 is installed using Windows Update on a device which is already running Windows 10 or Windows 11. This issue only occurs when physical media or ISOs are used for this installation and Narrator is only affected while the installation process is taking place. It should continue to work as expected once the installation is completed.
workaround
Dec 13, 2023
KB5032278
2023-11 Cumulative Update Preview for Windows 10 Version 22H2 for x64-based Systems (KB5032278)
"Using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the "Require Device Encryption" setting for some devices in your environment. Affected environments are those with the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies set to enabled an"
To mitigate this issue in Microsoft Intune, you can set the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies to not configured. We are working on a resolution and will provide an update in an upcoming release.
workaround
Dec 13, 2023
KB5032278
2023-11 Cumulative Update Preview for Windows 10 Version 22H2 for x64-based Systems (KB5032278)
"Windows devices using more than one (1) monitor might experience issues with desktop icons moving unexpectedly between monitors or other icon alignment issues when attempting to use Copilot in Windows (in preview)."
To prevent users from encountering this issue, Copilot in Windows (in preview) might not be available on devices that have been used or are currently being used in a multimonitor configuration. We are working on a resolution and will provide an update in an upcoming release.
workaround
Dec 13, 2023
KB5032278
2023-11 Cumulative Update Preview for Windows 10 Version 22H2 for x64-based Systems (KB5032278)
"Copilot in Windows (in preview) is not currently supported when your taskbar is located vertically on the right or left of your screen."
To access Copilot in Windows, make sure your taskbar is positioned horizontally on the top or bottom of your screen. We are working on a resolution and will provide an update in an upcoming release.
workaround
Nov 15, 2023
KB5032250
2023-11 Security Only Quality Update for Windows Server 2008 R2 for x64-based Systems (KB5032250) (ESU)
"After installing this update and restarting your device, you might receive the error, “Failure to configure Windows updates. Reverting Changes. Do not turn off your computer,” and the update might show as Failed in Update History."
This is expected in the following circumstances: If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, please see this blog post. For information on the prerequisites, see the How to get this update section of this article.
workaround
Nov 15, 2023
KB5032248
2023-11 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5032248) (ESU)
"After installing this update and restarting your device, you might receive the error, “Failure to configure Windows updates. Reverting Changes. Do not turn off your computer”, and the update might show as Failed in Update History."
This is expected in the following circumstances: If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, please see this blog post. For information on the prerequisites, see the "How to get this update" section of this article.
workaround
Nov 15, 2023
KB5032252
2023-11 Security Monthly Quality Rollup for Windows Server 2008 R2 for x64-based Systems (KB5032252) (ESU)
"After installing this update and restarting your device, you might receive the error, "Failure to configure Windows updates. Reverting Changes. Do not turn off your computer", and the update might show as Failed in Update History."
This is expected in the following circumstances: If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, please see this blog post. For information on the prerequisites, see the How to get this update section of this article.
workaround
Nov 15, 2023
KB5032254
2023-11 Security Monthly Quality Rollup for Windows Server 2008 for x64-based Systems (KB5032254) (ESU)
"After installing this update and restarting your device, you might receive the error, “Failure to configure Windows updates. Reverting Changes. Do not turn off your computer”, and the update might show as Failed in Update History."
This is expected in the following circumstances: If you are installing this update on a device that is running an edition that is not supported for ESU. For a complete list of which editions are supported, see KB4497181. If you do not have an ESU MAK add-on key installed and activated. If you have an ESU key and have encountered this issue, please verify you have applied all prerequisites and that your key is activated. For information on activation, please see this blog post. For information on the prerequisites, see the "How to get this update" section of this article.
workaround
Nov 15, 2023
KB5032190
2023-11 Cumulative Update for Windows 11 Version 22H2 for arm64-based Systems (KB5032190)
"All users"
The color font format for COLRv1 does not render properly. This format enables Windows to display emoji with a 3D-like appearance.
workaround
Nov 15, 2023
KB5032190
2023-11 Cumulative Update for Windows 11 Version 22H2 for arm64-based Systems (KB5032190)
"IT admins"
Using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the "Require Device Encryption" setting for some devices in your environment. Affected environments are those with the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies set to enabled and selecting either "full encryption" or "used space only". Microsoft Intune is affected by this issue but third-party MDMs might also pe affected. Important This issue is a reporting issue only and does not affect drive encryption or the reporting of other issues on the device, including other BitLocker issues.
workaround
Nov 15, 2023
KB5032192
2023-11 Cumulative Update for Windows 11 for ARM64-based Systems (KB5032192)
"IT admins"
Using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the "Require Device Encryption" setting for some devices in your environment. Affected environments are those with the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies set to enabled and selecting either "full encryption" or "used space only". Microsoft Intune is affected by this issue but third-party MDMs might also pe affected. Important This issue is a reporting issue only and does not affect drive encryption or the reporting of other issues on the device, including other BitLocker issues.
workaround
Nov 15, 2023
KB5032189
2023-11 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5032189)
"Using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the "Require Device Encryption" setting for some devices in your environment. Affected environments are those with the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies set to enabled an"
To mitigate this issue in Microsoft Intune, you can set the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies to not configured. We are working on a resolution and will provide an update in an upcoming release.
workaround
Nov 15, 2023
KB5032196
2023-11 Cumulative Update for Windows 10 Version 1809 for x64-based Systems (KB5032196)
"Using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the "Require Device Encryption" setting for some devices in your environment. Affected environments are those with the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies set to enabled an"
To mitigate this issue in Microsoft Intune, you can set the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies to not configured. We are working on a resolution and will provide an update in an upcoming release.
workaround
Nov 15, 2023
KB5031455
2023-10 Cumulative Update Preview for Windows 11 Version 22H2 for arm64-based Systems (KB5031455)
"All users"
The color font format for COLRv1 does not render properly. This format enables Windows to display emoji with a 3D-like appearance.
workaround
Nov 15, 2023
KB5031455
2023-10 Cumulative Update Preview for Windows 11 Version 22H2 for arm64-based Systems (KB5031455)
"IT admins"
Using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the "Require Device Encryption" setting for some devices in your environment. Affected environments are those with the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies set to enabled and selecting either "full encryption" or "used space only". Microsoft Intune is affected by this issue but third-party MDMs might also pe affected. Important This issue is a reporting issue only and does not affect drive encryption or the reporting of other issues on the device, including other BitLocker issues.
workaround
Nov 15, 2023
KB5031445
2023-10 Cumulative Update Preview for Windows 10 Version 22H2 for x64-based Systems (KB5031445)
"Using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the "Require Device Encryption" setting for some devices in your environment. Affected environments are those with the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies set to enabled an"
To mitigate this issue in Microsoft Intune, you can set the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies to not configured. We are working on a resolution and will provide an update in an upcoming release.
workaround
Nov 15, 2023
KB5031354
2023-10 Cumulative Update for Windows 11 Version 22H2 for arm64-based Systems (KB5031354) (CVE-2023-36563) (CVE-2023-44487)
"IT admins"
Using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the "Require Device Encryption" setting for some devices in your environment. Affected environments are those with the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies set to enabled and selecting either "full encryption" or "used space only". Microsoft Intune is affected by this issue but third-party MDMs might also pe affected. Important This issue is a reporting issue only and does not affect drive encryption or the reporting of other issues on the device, including other BitLocker issues.
workaround
Nov 15, 2023
KB5031354
2023-10 Cumulative Update for Windows 11 Version 22H2 for arm64-based Systems (KB5031354) (CVE-2023-36563) (CVE-2023-44487)
"All users"
Third-party wallpaper apps might not work as expected when Copilot in Windows (in preview) is opened. You might see the default wallpaper or the wallpaper set in Windows instead of your custom wallpaper set in the third-party wallpaper app.
workaround
Nov 15, 2023
KB5031358
2023-10 Cumulative Update for Windows 11 for ARM64-based Systems (KB5031358) (CVE-2023-36563) (CVE-2023-44487)
"IT admins"
Using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the "Require Device Encryption" setting for some devices in your environment. Affected environments are those with the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies set to enabled and selecting either "full encryption" or "used space only". Microsoft Intune is affected by this issue but third-party MDMs might also pe affected. Important This issue is a reporting issue only and does not affect drive encryption or the reporting of other issues on the device, including other BitLocker issues.
workaround
Nov 15, 2023
KB5031361
2023-10 Cumulative Update for Windows 10 Version 1809 for x64-based Systems (KB5031361) (CVE-2023-36563) (CVE-2023-44487)
"Using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the "Require Device Encryption" setting for some devices in your environment. Affected environments are those with the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies set to enabled an"
To mitigate this issue in Microsoft Intune, you can set the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies to not configured. We are working on a resolution and will provide an update in an upcoming release.
workaround
Nov 15, 2023
KB5031364
2023-10 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5031364) (CVE-2023-36563) (CVE-2023-44487)
"After installing this update on virtual machines (VMs) running on VMware ESXi hosts, Windows 2022 might fail to start up. Affected VMs will receive an error with a blue screen and Stop code : PNP DETECTED FATAL ERROR. This issue only affects guest VMs with the following configuration on VMware ESXi hosts only: AMD Epyc physical processor "Expose IOMMU to guest OS" enabled in VMware settings for the VM. “Enable Virtualization Based Security” enabled in Windows Server"
This issue is addressed in KB5032198.
Disclaimer:This webpage is intended to provide you information about patch announcement for certain specific software products. The information is provided "As Is" without warranty of any kind. The links provided point to pages on the vendors websites. You can get more information by clicking the links to visit the relevant pages on the vendors website.
