KB5034765: A Closer Look

1. Security Enhancements

• Vulnerabilities Addressed: This update tackles a total of 73 vulnerabilities. Among these, five are critical and require immediate attention. Let’s break down their impact:
  • Denial of Service (DoS) Attacks: These vulnerabilities could allow malicious actors to disrupt services or crash systems.
  • Remote Code Execution (RCE): An attacker could execute arbitrary code remotely, potentially compromising the system.
  • Sensitive Information Disclosure: Certain vulnerabilities might expose confidential data.
  • Privilege Escalation: An attacker could gain elevated privileges, bypassing security controls.

2. Servicing Stack Update (SSU)

• The SSU is a fundamental component responsible for installing Windows updates. It ensures that the update process is smooth and reliable.
• By enhancing the SSU, Microsoft aims to streamline the installation of future updates.

Known Issues and Resolution

1. Installation Failures

• Symptom: Some Windows 11 devices attempting to install the February 2024 security update (KB5034765) might face installation failures, causing the system to stop responding at 96%.
• Error Code: This issue might be reflected in the Windows Event Viewer with error code ‘0x800F0922’.
• Workaround:
  1. Delete Hidden Folder: Navigate to C:\\$WinREAgent and delete it.
  2. Restart: After deleting the folder, restart your PC.
  3. Reinstall the Update: Following these steps should allow you to successfully install the February 2024 security update1.

2. Taskbar and Start Menu Issues

• Some users have reported issues with the taskbar, Start menu, and performance after installing KB5034765.
• Temporary Solution: Use Task Manager to kill the explorer.exe process. However, this may only be a temporary fix.
• Better Option: Consider uninstalling the KB5034765 update if the issues persist.

3. Other Improvements

• Apart from addressing the above issues, this update also:
  • Resolves slow Narrator announcements with Natural Voices.
  • Fixes explorer.exe becoming unresponsive upon restarting or shutting down a PC with a connected controller accessory.
  • Enhances the security of device metadata downloads from Windows Metadata and Internet Services over HTTPS3.

https://support.microsoft.com/en-us/topic/february-13-2024-kb5034765-os-builds-22621-3155-and-22631-3155-023d9141-a5b0-470a-b0f5-2ee3b48f48ce

If you encounter any issues like these, feel free to reach out to us at PSISec Limited. Helping with such matters is our specialty.

Other issues : 

Installation Failures:

• These occur when Windows updates fail to install correctly. Common error codes include:
  • 0x8007000D: Indicates a data mismatch or corruption during installation.
  • 0x800F0988, 0x800F0831: Relate to component store corruption.
  • 0x80073701: Indicates a transactional conflict.
  • 0x80070002: Refers to missing files or directories.
• Troubleshooting involves checking system files, running the Windows Update troubleshooter, and ensuring sufficient disk space.

Domain Controller Boot Loops:

• After patch installation, some domain controllers may get stuck in a boot loop.
• This issue can disrupt network services and requires careful investigation and recovery steps.

Broken IPSec VPN Connections:

• Certain patches can interfere with existing IPSec virtual private network (VPN) connections.
• Users may experience connectivity issues, and reconfiguring VPN settings may be necessary.

Hyper-V Issues:

• Hyper-V, Microsoft’s virtualization platform, can become “bricked” after specific updates.
• This can impact virtual machines and host systems, requiring advanced troubleshooting.

Resilient File System (ReFS) Removal:

• Updates may inadvertently remove the Resilient File System (ReFS) feature.
• Admins need to verify its presence and re-enable it if necessary.

ClickOnce App Installation Prompts:

• Apps deployed via ClickOnce may prompt for installation even if they are already installed.
• This can confuse users and lead to unnecessary installations.

Start Menu and UWP App Problems:

• Some users encounter issues opening the Start menu, using Windows Search, or launching Universal Windows Platform (UWP) apps.
• Troubleshooting involves checking for corrupted system files and resetting app-related components.

Apphelp.dll Errors:

• Errors related to apphelp.dll can occur, especially for apps using DirectX.
• These errors may impact application compatibility and require investigation.

Secure Boot DBX Update Failures:

• The KB5012170 security update for Secure Boot DBX may fail to install.
• Admins should verify the update status and apply any necessary fixes.

Outlook Link Errors:

• Users may encounter errors when opening links in emails within Microsoft Outlook.
• This can disrupt productivity and requires investigation into Outlook settings and configurations.