April 2024 Patch Tuesday « Giveaway of the Day Forums

Back to Giveaway of the Day

Giveaway of the Day Forums » Technical notes

April 2024 Patch Tuesday

(4 posts) (2 voices)

Started 7 months ago by mikiem2
Latest reply from mikiem2

mikiem2
Moderator

bleepingcomputer[.]com/news/microsoft/microsoft-april-2024-patch-tuesday-fixes-150-security-flaws-67-rces/

bleepingcomputer[.]com/news/microsoft/windows-11-kb5036893-update-released-with-29-changes-moment-5-features/

bleepingcomputer[.]com/news/microsoft/windows-10-kb5036892-update-released-with-23-new-fixes-changes/

neowin[.]net/news/windows-11-kb5036893-windows-10-kb5036892-cause-slow-pcs-0x8007000d-0x800705b9-errors/

With this update the Win11 Moment 5 features are generally available. I didn't experience any problems, but Neowin reports several potential issues for Win11, while complaints say the update for Win10 just will not install. Win11 issues reported include not installing, drop in performance, Outlook 365 won't start, Edge won't uninstall in EU, VPNs with TPM backed certificates won't work.

Update 4/9/24: Added information on two zero-day vulnerabilities that Microsoft did not initially mark as exploited.

Today is Microsoft's April 2024 Patch Tuesday, which includes security updates for 150 flaws and sixty-seven remote code execution bugs.

Only three critical vulnerabilities were fixed as part of today's Patch Tuesday, but there are over sixty-seven remote code execution bugs. More than half of the RCE flaws are found within Microsoft SQL drivers, likely sharing a common flaw.

There were also fixes for twenty-six Secure Boot bypasses released this month, including two from Lenovo.

The number of bugs in each vulnerability category is listed below:

31 Elevation of Privilege Vulnerabilities
29 Security Feature Bypass Vulnerabilities
67 Remote Code Execution Vulnerabilities
13 Information Disclosure Vulnerabilities
7 Denial of Service Vulnerabilities
3 Spoofing Vulnerabilities

The total count of 150 flaws does not include 5 Microsoft Edge flaws fixed on April 4th and 2 Mariner flaws. Mariner is an open-source Linux distribution developed by Microsoft for its Microsoft Azure services.

Posted 7 months ago #
marioz
Member

Despite these updates, I continue to experience sudden closures of the explorer.exe process.

Posted 7 months ago #
mikiem2
Moderator

It wouldn't hurt to run an anti-virus scan, just to cross that off the list. While you've kept Windows up to date, you can check to make sure that you have the latest graphics drivers for your GPU. If it's an Intel GPU Intel has an app that will check your system and recommend any updated drivers it finds. If it's Nvidia or AMD you'll want to visit their web site, downloading and installing the latest driver that applies to your hardware. You can right-click the Task Bar and select Task Manager, go to the Startup tab, and try turning off one or more apps, then restarting to see if there's any change -- if it helps that would indicate there's a problem with one of those apps, and if not, you can reverse the changes you made. You can search in Windows for "File explorer options", and on the General tab in the pop-up window try clearing the File Explorer History. On the View tab you can also make sure that "Launch folder windows in a separate process" is checked [turned on]. That View tab has an option to "Always show icons, never thumbnails", and you can try that. If you have search indexing turned on -- if you right-click on a drive in File Explorer and select Properties, the General tab will have a checkbox for indexing -- if you dig into the advanced settings under Settings -> Search, there's an option to rebuild the search index that you can try -- it can take a while.

If none of that helps, reinstalling Windows on top of your current install is often a potent cure-all that doesn't involve that much time or aggravation nowadays -- Ed Bott & others recommend it whenever you're having problems. You generally start with an ISO, which is an optical disc image file -- you can download them from Microsoft [Google for directions], use Microsoft's Media Creation Tool, or sign up for their Insider Program, which gives you access to all sorts of ISO versions. In Windows right-click the ISO and select Mount, then find and run setup.exe.

Posted 7 months ago #
mikiem2
Moderator

learn.microsoft[.]com/en-us/windows/release-health/status-windows-11-23h2

Microsoft just updated their list of known potential problems with Windows. The April update *might* break VPN use *for some people* -- works fine for me, but since there's not much in the way of Windows news, several sites are featuring articles about it. And due to what Microsoft says is a harmless error, you *might* see a Microsoft Copilot app in the list of installed apps.

bleepingcomputer[.]com/news/microsoft/microsoft-wont-fix-windows-0x80070643-errors-manual-fix-required/

Back in January Microsoft tried to fix a vulnerability in BitLocker by patching files on Windows Recovery partition. That was a problem if the Recovery partition didn't exist, was too small, or wasn't working properly, e.g., was not enabled in Windows. If that partition was too small, Microsoft published directions & a script or two to enlarge it, but otherwise was silent on the issue, saying a fix was coming some day. If the update failed in Win11 it did so silently, but Win10 users got an error message, and Windows Update would repeatedly try & try again. You could ignore it, get it to install, e.g., by enlarging the Recovery partition, or hide that update using wushowhide.diagcab from Microsoft, which *usually* works. Microsoft has now officially thrown in the towel -- no further fix is coming. In another couple of weeks when Microsoft releases May's updates I'll know whether they at least stopped Win10's Windows Update from trying to install the buggy fix -- I have one copy of Win10 where hiding the update will not work -- and I'll post the results.

Posted 6 months ago #

RSS feed for this topic

Reply

You must log in to post.