|
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it. |
#PatchTuesday As the wind blows in California where I live, we’re trying to batten down the hatches (as the trite saying goes). So batten down the ha
[See the full post at: Batten down the hatches for January updates]
Susan Bradley Patch Lady/Prudent patcher
AKB 2000003 has been updated for Group B Win7 (ESU) and Win8.1 on Jan 10, 2023.
There is a Security-only Update for those with Win7 ESU subscriptions.
There is no January IE11 CU for Win7 ESU subscriptions.
January Rollup KB5022338 Download 32-bit or 64-bit for those with Win7 ESU subscriptions.
****** Note changes to SSU requirements:
You must have at least the September 2022 Servicing Stack KB5017397 previously installed to receive these updates – Download 32-bit or 64-bit for those with Win7 ESU subscriptions.
There were no .NET Framework updates listed for Win7.
****** NOTE: ********
Microsoft has released a new ESU Licensing Preparation Package KB5016892 for the extension of Win7/Windows Server 2008 R2 SP1 ESU on Aug 25, 2022. Requires SHA-2 KB4474419 (9/23/2019 or later) and SSU KB4490628 (3/12/2019).
Dustin Childs ZDI blog is now out. Zero Day Initiative — The January 2023 Security Update Review
Hardened Windows user:
KB5022303 Cumulative Update for Windows 11 Version 22H2 for x64-based Systems
KB890830 Windows Malicious Software Removal Tool x64 – v5.109
No hiccups. Now running Windows 11 Pro 22H2 (OS Build 22621.1105).
The only issue I have is the continuing Device Management Enterprise Error, which I have continued to ignore.
Hi CAS:
I just posted an update at post # 2525008 of Zaphyrus’ Side effect of November update: DevicemanagemententerpriseDiagnosticProvider to let them know I’m still seeing these DeviceManagement-Enterprise-Diagnostics-Provider errors (Event ID 2545) logged in my Event Viewer at Applications and Services Logs | Microsoft | Windows | DeviceManagement-Enterprise-Diagnostics-Provider | Admin.
I still haven’t noticed any adverse effect from these errors so I’m also continuing to ignore them.
———–
Dell Inspiron 5584 * 64-bit Win 10 Pro v22H2 build 19045.2486 * Firefox v109.0.0 * Microsoft Defender v4.18.2211.5-1.1.19900.2 * Malwarebytes Premium v4.5.20.230-1.0.1868 * Macrium Reflect Free v8.0.7279
FYI
1) Stable Channel Update for Desktop
“The Chrome team is delighted to announce the promotion of Chrome 109 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks.”
“Chrome 109.0.5414.74 (linux),109.0.5414.74/.75( Windows) and 109.0.5414.87(Mac) contains a number of fixes and improvements”
Security Fixes and Rewards
————————-
“This update includes 17 security fixes.”
2) .NET January 2023 Updates – .NET 7.0.2, .NET 6.0.13
Today, we are releasing the .NET January 2023 Updates. These updates contain security and non-security improvements
Security
————-
CVE-2023-21538 – .NET Denial of Service Vulnerability
Microsoft is releasing this security advisory to provide information about a vulnerability in.NET 6.0.. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability.
A denial of service vulnerability exists in .NET 6.0 where a malicious client could cause a stack overflow which may result in a denial of service attack when an attacker sends an invalid request to an exposed endpoint.
3)BleepingComputer Microsoft fixes issue causing 0xc000021a blue screen crashes
“Microsoft has addressed a known issue causing Blue Screen of Death (BSOD) crashes with 0xc000021a errors after installing the Windows 10 KB5021233 cumulative update released during the December Patch Tuesday. The issue was fixed in the KB5022282 update issued today for all Windows 10 versions currently under support.”
Windows Release Health – Windows 10, version 22H2
————————————————
You might receive an error (0xc000021a) with a blue screen
HTH.
FWIW I have a couple of Windows Server 2012R2 servers and I cannot get the January update to install on either of them. It gets to 95% downloaded and then the “Windows Update” service begins consuming tons of CPU and it never advances. I’ve had one machine chewing on it for over an hour. I may download the update direct from the Microsoft Update catalog and try that.
EDIT: downloading the MSU directly from Microsoft Update Catalog works fine.
KB5022282 added to win10 22h2. No problems noticed. WuMgr.
https://www.ghacks.net/2023/01/10/microsoft-windows-security-updates-january-2023-overview/
Windows 7 (extended support only): 40 vulnerabilities: 8 critical and 35 important
Windows 8.1: 48 vulnerabilities: 9 critical and 39 important
Windows 10 version 21H2 and 22H2: 63 vulnerabilities, 10 critical and 53 important
Windows 11 and Windows 11 version 22H2: 64 vulnerabilities, 10 critical and 54 important
Windows Server 2008 R2 (extended support only): 39 vulnerabilities: 8 critical and 31 important
Windows Server 2012 R2: 47 vulnerabilities: 9 critical and 38 important
Windows Server 2016: 50 vulnerabilities: 9 critical and 41 important
Windows Server 2019: 56 vulnerabilities: 10 critical and 46 important
Windows Server 2022: 61 vulnerabilities: 10 critical and 51 important
Update to 19045.2486 (KB5022282) went fine but logged “Windows Error Reporting” EventID 1001
INVALID_REQUEST
0
WindowsServicingFailureInfo
not available
0
10.0.19041.2300:1
0x800F0984 0x800F0984 Matching binary: LxssManager.dll missing for component: amd64_microsoft-windows-lxss-manager_31bf3856ad364e35_10.0.19041.2486_none_f31086c4800002aa
楆敬›瑳牯汥祡畯灣⡰㘱㐹*潃灭湯湥却潴敲㨺剃睡瑓牯䱥祡畯㩴䠺摹慲整楆敬獕湡䙧牯慷摁祹
I have updated. Everything went normal. The hideparse.sys file in system32/drivers have been updated to 10.0.19041.2486, I dont have it in system32. I am on W10 21H2 pro.
Win 10 Pro 22H2…. My first CU hiccup, though small. During Re-Start – after 100% Update seen – I saw my Desktop briefly and then black screen. Discovered Ctrl-Alt-Del “ReStart”, and the 2nd ReStart completed the CU Update.
W10 Pro 22H2 / Hm-Stdnt Ofce '16 C2R / Macrium Pd vX / GP=2 + FtrU=Semi-Annual + Feature Defer = 1 + QU = 0
I guess I’m a guinea pig too, because my Windows 10 Pro 21H2 decided to ignore my Windows Update settings this month (magic number 2 in Group Policy — notify before download and install) and just grabbed and installed the updates without notice. I double-checked that setting afterward, and it’s unchanged. This happen to anyone else?
No problems yet, crossing fingers.
I also have a new alert about the 22H2 version being available, but so far it’s still respecting the GP target release version setting. Wondering if I should upgrade anyway lest Windows do that for me also, since my system drive is Veracrypted and my understanding is that a full feature version update on an encrypted drive could be disastrous if the boot sector is overwritten.
Did you by any chance have Pause set and subsequently unpause. That sequence will ignore the “2” (notify download/install) setting and automatically download and install everything pending.
If you have the “2” setting, you should never use Pause.
Installed Server 2019 and 2016 updates this AM. So far no issues.
Now running Windows 11 Pro 22H2 22621.1105
Windows Malicious Software Removal Tool x64 – v5.109 (KB890830)
2023-01 .NET 6.0.13 Security Update for x64 Client (KB5022546)
2023-01 .NET 7.0.2 Update for x64 Client (KB5022545)
2023-01 Cumulative Update for Windows 11 Version 22H2 for x64-based Systems (KB5022303)
All were installed without incident. Running smoothly.
--Joe
Windows 8.1 Pro x64 KB5022352 went in ok, no issues that affect two devices. Nice playthings now that MSFT has abandoned a perfectly working reliable OS with a sense of relief for offline use, sooner rather than later.
Full disk image made with Macrium Reflect, ahead of installing patches later on. For now I’m leaving them be.
Windows 10 Pro 22H2.
Installed Jan updates.
No problems.
Hi Susan:
Windows Update successfully installed the following January 2023 Patch Tuesday updates on my Win 10 Pro v22H2 laptop and I haven’t noticed any negative effects so far:
———-
Dell Inspiron 5584 * 64-bit Win 10 Pro v22H2 build 19045.2486 * Firefox v108.0.2 * Microsoft Defender v4.18.2211.5-1.1.19900.2 * Malwarebytes Premium v4.5.19.229-1.0.1860 * Macrium Reflect Free v8.0.7279
Updated two Windows 10 22H2 systems.
No issues so far.
Disk images created before updating.
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
