Microsoft pushes out emergency fix for Windows Server mess

Most patches have been labeled as optional

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

Microsoftis addressing the problems caused by the January 2021 Patch Tuesday updates - with more updates.

The company has issued an emergency out-of-band (OOB) update to address bugs that forced domain controllers to reboot endlessly, broke Hyper-V, and rendered ReFS volumes inaccessible while showing them as RAW file systems.

“This update addresses issues related to VPN connectivity, WindowsServerDomain Controllers restarting, Virtual Machines start failures, and ReFS-formatted removable media failing to mount,” Microsoft explained in the update catalog.

Patches breaking things

All of the patches, issued for different versions of the Windows OS, can be found in theMicrosoft Update Catalog. Some can also be obtained through Windows Update, but being labeled as optional, Windows admins need to manually check for updates if they want to take this route.

The updates listed below, however, can only be obtained through the Update Catalog:

Issuing patches for Windows has been nothing short of a roller coaster recently. Earlier in January 201, a patch issued forWindows 10andWindows 11broke the software’s built-inVPNtool, preventing it from establishing a connection.

The only way to rid the system of the bug is to uninstall the patch altogether, which also meant exposing the systems to known vulnerability issues. One such issue was recently found (and fixed in that same patch) in the HTTP Protocol Stack. The flaw allows a malicious actor to execute arbitrary code, remotely, without much user interaction.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

There’s yet nomalwareabusing this flaw out there, but being extremely dangerous, it’s only a matter of time before one is discovered. To protect vulnerable devices, disabling the HTTP Trailer Support feature will suffice.

Windows admins will need to carefully weigh the benefits and the downsides of installing, as well as uninstalling, these patches, until Microsoft sorts all of the problems that have piled up in recent times.

Via:BleepingComputer

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

7 myths about email security everyone should stop believing

Best Usenet client of 2024

NYT Strands today — hints, answers and spangram for Sunday, November 10 (game #252)