Content Release: Patches for Windows published 2024-12-04

SJPutman · December 4, 2024, 7:53pm

Content in the Patches for Windows site has been modified

Modified:

Major [ID:201339002] Disable hardening changes for WinVerifyTrust Signature Validation Vulnerability (CVE-2013-3900)
Major [ID:201339001] Enable hardening changes for WinVerifyTrust Signature Validation Vulnerability (CVE-2013-3900)
Major [ID:504674001] 5046740: Cumulative Update Preview for Windows 11 Version 24H2 for ARM64 - Windows 11 Version 24H2 - KB5046740 (arm64)
Major [ID:504674003] 5046740: Cumulative Update Preview for Windows 11 Version 24H2 - Windows 11 Version 24H2 - KB5046740 (x64)

Reason for Update:

Relevance has been modified for WinVerifyTrust Fixlets.
Preview has been added to name of the Windows 11 Version 24H2 fixlets.

Actions to Take:

None

Published site version:
Site Name: Patches for Windows
Version: 4463

Additional links:

Application Engineering Team
HCL BigFix

DerrickD · December 4, 2024, 8:52pm

Not sure exactly what changed, but I believe changes to WinVerifyTrust have completely broken (at least) the disable fixlet.

I know I have ~1500 devices with it enabled, and up until yesterday (which also included WinVerifyTrust changes being pushed by HCL yesterday) I had ~1500 relevant for “disable”. Now, I only have 78 and it’s dropping lower.

DerrickD · December 4, 2024, 9:57pm

Confirmed, relevance #4 is broken.

DerrickD · December 9, 2024, 2:57pm

BUMP for visibility.

Broken fixlet is still present

Dhanraj · December 9, 2024, 4:19pm

Hi @DerrickD ,

Thanks for notifying us about this issue. We will rectify this issue and publish the modified fixlet today.

Regards,
D.Dhanraj

system · January 3, 2025, 7:54pm

This topic was automatically closed after 30 days. New replies are no longer allowed.