December 2022 Patch Tuesday « Giveaway of the Day Forums

Back to Giveaway of the Day

Giveaway of the Day Forums » Technical notes

December 2022 Patch Tuesday

(2 posts) (1 voice)

Started 1 year ago by mikiem2
Latest reply from mikiem2

mikiem2
Moderator

bleepingcomputer[.]com/news/microsoft/microsoft-december-2022-patch-tuesday-fixes-2-zero-days-49-flaws/

bleepingcomputer[.]com/news/microsoft/windows-10-kb5021233-and-kb5021237-updates-released/

neowin[.]net/news/december-patch-tuesday-update-for-windows-11-22h2-kb5021255-and-21h2-kb5021234-out-now/

Today is Microsoft's December 2022 Patch Tuesday, and with it comes fixes for two zero-day vulnerabilities, including an actively exploited bug, and a total of 49 flaws.

Six of the 49 vulnerabilities fixed in today's update are classified as 'Critical' as they allow remote code execution, one of the most severe types of vulnerabilities.

The number of bugs in each vulnerability category is listed below:

19 Elevation of Privilege Vulnerabilities
2 Security Feature Bypass Vulnerabilities
23 Remote Code Execution Vulnerabilities
3 Information Disclosure Vulnerabilities
3 Denial of Service Vulnerabilities
1 Spoofing Vulnerability

The above counts do not include twenty-five Microsoft Edge vulnerabilities previously fixed on December 5th.

Several copies of Windows also received KB5012170, which adds to the revoked [banned] list of files for Secure Boot. It's worth noting because it gave lots of folks problems when released in the past.

neowin[.]net/news/microsoft-pushes-windows-11-22h2-secure-boot-dbx-update-thats-known-to-be-bug-ridden/

We're also coming up on EOL [End Of Life] for Win10 21H1, along with Win8, and Win7 on Extended support.

Posted 1 year ago #
mikiem2
Moderator

neowin[.]net/news/microsoft-patch-tuesday-kb5021233-causing-hidparse-blue-screen-on-windows-10-22h2-more/

And there's a problem... some systems apparently have 2 copies of the file hidparse.sys that don't match, one in Windows\ System32\ & one in Windows\ System32\ Drivers\ -- if/when that happens you get a Blue Screen of Death (or BSOD) with the error code "0xc000021a". The workaround is to copy the version in the Drivers folder over the one in System32, overwriting it. To accomplish that you need to boot to another OS, e.g., a Win 2 Go drive, a WinPE USB stick, *maybe* the USB stick for your backup software, if it has an option for the command prompt etc. Microsoft says the command to run at the command prompt is: xcopy C:\windows\system32\drivers\hidparse.sys C:\windows\\system32\hidparse.sys

Posted 1 year ago #

RSS feed for this topic

Reply

You must log in to post.