Master Patch List for January 11, 2024

I’ve updated the Master Patch list for the January updates.  I’ll be updating the page for any known issues or issues that we are tracking.  Right now the biggest issue we are tracking is the failures on Windows 10 and KB5034441 which fails to install with error code 0x80070643.

Mind you at this time I still have not given the go ahead and strongly recommend that you do not install updates at this time. But I know some of you are testing updates at this time.

As always, thank you all for supporting the cause! Remember we use the “name your price” model where you can choose how much you will pay for  a membership . Plus membership gives you access and if you donate $50 or more you’ll get a special code to enable text messages sent to your phone each time the Master Patch List gets updated and when I change the MS-DEFCON level.  More details in Monday’s newsletter.  You are missing out if you don’t sign up. All content is human made with our own blood, sweat, tears, fingers and brain power and 100% AI free.  Therefore, if I’ve fat fingered any KB numbers or if you have any questions, as always post in the forums and I’ll follow up!

MS-DEFCON 1: Partition size blocks update

By Susan Bradley

KB5034441 fails to install with error code 0x80070643.

This failure is very unusual, so much so that I feel compelled to raise the MS-DEFCON level to 1. Do not install the update for KB5034441 unless you have BitLocker and are vulnerable to the risk of direct physical attack. If you have a system that doesn’t have the enough space in the recovery partition, the update will fail.

I don’t want you to attempt to install it until you are confident it will have no effect on your system or until you have addressed the underlying problem.

Anyone can read the full MS-DEFCON Alert (21.02.1, 2024-01-10).

0x80070643 – ERROR_INSTALL_FAILURE with KB5034441

(Sneak peak of the information that will be in the upcoming Plus newsletter): If you have an older Windows 10 machine, those early machines often were set up by the OEM manufacturer with non-optimal partition sizes. I also have a home built Windows 10 that has hit this issue as well. This month’s security updates include a specific patch for prevent attackers from “This update addresses a security vulnerability that could allow attackers to bypass BitLocker encryption by using Windows Recovery Environment (WinRE)”. In a consumer setting where you do not have Bitlocker and have complete physical control of your computer this vulnerability is of extremely low risk to you. WHEN I give the approval to install updates, IF KB5034441 fails to install with error code 0x80070643, my advice to you is to use one of the tools noted at www.blockapatch.com to prevent the installation of this update.  To get this update to successfully install, you will need to manually adjust partition sizes in your C drive to allow the patch to install.

If you are in a situation where you do want to patch this, that is you have Bitlocker or you just decide you want to do it. Microsoft has provided guidance:

Some computers might not have a recovery partition that is large enough to complete this update. Because of this, the update for WinRE might fail. In this case, you will receive the following error message:

• Windows Recovery Environment servicing failed.
  (CBS_E_INSUFFICIENT_DISK_SPACE)

To help you recover from this failure, please follow Instructions to manually resize your partition to install the WinRE update.

Known issue Because of an issue in the error code handling routine, you might receive the following error message instead of the expected error message when there is insufficient disk space:

• 0x80070643 – ERROR_INSTALL_FAILURE

Source: https://support.microsoft.com/en-us/topic/kb5034441-windows-recovery-environment-update-for-windows-10-version-21h2-and-22h2-january-9-2024-62c04204-aaa5-4fee-a02a-2fdea17075a8

Even with these steps I am still seeing people having issues getting this update installed (see answers forum).

Remember at this time I DO NOT recommend installing updates.  Specifically with this patch, if you are not running Bitlocker, I would hide the update.  If you DO want to install this update, I will be doing a video of the necessary steps, and documenting what you need to do. But I recommend that you only attempt to fix the issue if you are using Bitlocker, or you are a geeky enough person that you just want to do it (you know who you are).

Please note this issue is not as a result of untested patches – rather it’s a known issue and Microsoft expects us to deal with it.

Ready for the new patching year?

We start the new year off with – what else – vulnerabilities and some fixes.  Windows 11 and 10 get releases today.  Looks like 11 won’t get too many new things given that we didn’t have a preview release last month. The video “tips” are all about existing items, not new stuff.  KB5034123 is fixing the issue where “This update addresses a known issue that might affect some Wi-Fi adapters. They might not connect to some networks. This might occur after you install KB5032288 or KB5033375. This issue is more likely to occur if the Wi-Fi networks use 802.1x to authenticate. It is not likely that home networks will have this issue.” Also remember that “After February 2024, there are no more optional, non-security preview releases for Windows 11, version 22H2”

Windows 10 22H2 gets KB 5034122 which includes some fixes for smart cards.

.NET 8.0.1, 7.0.15 and 6.0.26 have been released along with older .NETs (see some of the listings here).  I’ll have the full spreadsheet of patches updated tomorrow.

Part of the updates include a fix for Bitlocker and if you do not have bitlocker or device disabled this will be a non issue. IF you have bitlocker enabled or device encryption enabled I’ll want you to take some extra precautions. More on this in the upcoming newsletter, stay tuned.

Just a kind reminder that this is ‘testing time’ and I’ll be updating the Master patch list for issues I spot.  Also remember that not every user of technology sees issues. Just because someone reports an issue doesn’t mean that everyone will be impacted.

Microsoft removes Win10 File Explorer features without notice

PUBLIC DEFENDER

By Brian Livingston

Microsoft’s updates for Windows 10 in November and December 2023 made significant changes to the File Explorer interface and its search functionality. But the Redmond software giant has posted no written information about the differences or how users can configure them.

Some of the modifications revert File Explorer to the configuration it had in Windows 10 19H2, the version that existed way back in November 2019.

Ironically, you may find that you actually prefer the old behaviors to the new ones.

But that isn’t the point. The point is that changes of this magnitude cry out for written explanations from Microsoft.

Read the full story in our Plus Newsletter (21.02.0, 2024-01-08).
This story also appears in our public Newsletter.

Software updater or no software updater? That is the question.

BEN’S WORKSHOP

By Ben Myers

Let’s see how to get the most out of a software updater, and whether it is worthwhile to use one.

My New Year’s article Let your PC start the new year right! created activity in the AskWoody forum because the original article cited SUMo Software Updater, which had been withdrawn from the market in October 2023.

Today, we updated the New Year’s article to reflect the market withdrawal and remove my praise. We are grateful for the many Plus members who caught this oversight and swiftly let us know.

Read the full story in our Plus Newsletter (21.02.0, 2024-01-08).

A new patching year

PATCH WATCH

By Susan Bradley

Tomorrow, as usual, Microsoft will release the January patches.

Today, as usual, I’m recommending that you not install the patches right away. If you’ve been dealing with and following patching as long as I have, you’ll know that it takes about a week or so for problems to bubble up.

Side effects are somewhat sporadic — some see them, some don’t. Those who see none sometimes move along to the next vulnerability. Lately, however, Microsoft has been taking a long-term look at vulnerabilities thus and taking several months to implement changes. 2024 looks to be no different, with many long-term issues needing resolution.

This week’s edition of Patch Watch focuses specifically on business patching and what we may see in the coming months. For consumers, you probably will not have the same side effects or concerns as business patchers.

Read the full story in our Plus Newsletter (21.02.0, 2024-01-08).

Before you start work on a misbehaving thing

Today I was fighting a vintage-lit Christmas tree that I finally gave up and will tackle trying to fix it next year when I take it out from storage. Either it will get a string replaced or if I’m really adventurous I’ll change the string to LEDs. I had all the necessary parts: Replacement light bulbs. A bulb tester. But what finally made me give up for the year was a part of a string – mind you not the entire string – that when I changed the fuse bulb to make it turn on, the portion of the string was much brighter than the rest of the tree. Clearly there is some other problem that I haven’t gotten to the root of yet. If I leave the fuse bulb in, that portion of the string will blow, burning out all of the bulbs in that section. Needless to say my patience for the project was over. Enough for the day, I marked the offending string, put it in the tree bag and went on to other projects, like putting the rest of the boxes away and baking a Galette des rois.

It reminds me of working with computers that are misbehaving. Make sure you have the necessary spare parts before a project even if you are merely investigating something with your computer. Before you start, do you have a backup? Preferably before the issue started occurring. Do you have another “thing” that you can use to search for solutions? This “thing” can be another computer, a tablet, and in a pinch a phone. If you think the issue is related to the hard drive, do you have a spare SSD drive? If worst case scenario occurs, do you have the original cdroms to reinstall your applications, or these days, do you know the usernames and logins to log into a site and download them again?  Can you get to the Internet on an alternative thing to download a copy of Windows, or do you already have it on a flash drive to reinstall should you need to take that action.

Do you have your passwords written down or documented, or in a password manager program so that you can easily log into a site or a place even if you don’t have your main computer working?

Bottom line, plan ahead and have the necessary “tools” to deal with the issue. But don’t forget one more thing  — if you get really frustrated — walk away. Set it aside and come back to again tomorrow. You will have a clearer mind to deal with the frustrations, and might find the exact reason your Computer, or in my case – my Light string – is deciding to misbehave. Often with technology, a good night sleep and a clear head is the best thing you can do for yourself and for the tech you are trying to fix.

MS-DEFCON 2: Preparing for the new year

By Susan Bradley

It’s time to prepare for the upcoming patching month, and that means it’s time for MS-DEFCON level 2.

If you’re groggy from holiday reveling, here are my reminders: back up your system, install all the December updates, and confirm that your system is operating smoothly.

Then defer updates, using whichever method you’re comfortable with — Registry keys, Windows Settings, or BlockAPatch.

Anyone can read the full MS-DEFCON Alert (21.01.1, 2024-01-04).

January 2024 Office non-Security updates have been released

The January 2024 Office non-Security updates have been released Tuesday, January 2, 2024. They are not included in the DEFCON-4 approval for the December 2023 patches. Unless you have a specific need to install them, you should wait until Susan Bradley (Patch Lady) approves them and any problems have been reported.

Remember, Susan’s patching sequence and recommendations are based on a business environment that has IT support and may have time constraints on the updating process. Consumer patching should be more cautious due to limited technical and mechanical resources. The latter is the reason for the AskWoody DEFCON system.

Office 2016
Update for Microsoft OneNote 2016 (KB5002500)

There were no January updates for Office 2013.

On April 10, 2018, Office 2013 reached End of Mainstream Support. Extended Support ended for Office 2013 on April 11, 2023.
Office 2016 also reached  End of Mainstream Support on October 13, 2020. EOS for Office 2016 is October 14, 2025.

Updates are for the .msi version (perpetual). Office 365 and C2R are not included.

Security updates for all supported versions of Microsoft Office are released on the second Tuesday of the month (Patch Tuesday).

Happy New Year!

EDITORIAL

By Will Fastie

To begin 2024, we bring you our best advice about keeping your PC spit-polished and ready for another year of hard work.

The article “Let your PC start the new year right!” has been a staple around here for years. The tradition is now in the capable hands of our resident hardware expert, Ben Myers, after a long run from Fred Langa.

The core of the article will remain the same, with abundant references to the classic and detailed PC-maintenance how-tos originally published in Windows Secrets — and now available in our newsletter archives.

Did we miss anything? Got ideas about what we should include next time around? As always, we listen to the forums carefully.

Speaking of the archives, we know that they have not been as accessible as they should be. During the second half of 2023, we worked on under-the-cover repairs and enhancements to our system, with the goal of improving our on-site search capability. This, as it turns out, was a much bigger project than first anticipated.

I had hoped to offer this as a New Year’s gift to all our members, but as the busy end of the publishing year approached, the project slowed. We will be resuming this work in earnest this month and hope to make a formal announcement of the new capabilities by the end of the first quarter — sooner, if possible.

Our very best wishes for a peaceful, productive, and prosperous 2024.

Read the bonus Plus Newsletter (21.01.0, 2024-01-01).

Let your PC start the new year right!

BEN’S WORKSHOP

By Ben Myers

Taking the time now to service your Windows PC thoroughly can pay off big time in the coming year.

Happy New Year! Whether you’re planning to move to Windows 11 or continue with Windows 10, here is what you can do to make sure that your PC starts the year right.

Read the full story in our Plus Newsletter (21.01.0, 2024-01-01).