Microsoft updates Nov '22 - KB5021654

ori · November 23, 2022, 7:14am

Hey,
Microsoft release patch Tuesday at 8/11. - KB5019964
there is a bug/security issue and Microsoft last week release another patch KB5021654 to solve the problem.

My question is:
Why BigFix offer the patch for all windows server 2016?

In the article they mention:
"It addresses a known issue that affects Windows Servers that have the Domain Controller (DC) role. They might have Kerberos authentication issues… "
In addition here:

And even when I’m trying to “check for updates” Microsoft not offer me the patch.

Is there something I’m missing, or is it a bug in BigFix?

Thanks in advance, and sorry about my english…

JasonWalker · November 23, 2022, 2:46pm

Every month’s patch releases have bugs and cause issues. Every Single One.

Often those issues are not wide-spread, but every patch release has a potential to cause problems.

Even with the Kerberos issue, we did have many customers wishing to deploy, or at least test, the updates in their environments.

D.Dean · November 28, 2022, 4:28pm

Even the cumulative patches released to fix the Kerberos issues did not fix it for all applications and we are still dealing with this today.

mesee2 · November 28, 2022, 9:44pm

Please note that MS announced another memory leak bug in the original and oob update

there is a reg key to mitigate the issue.

JasonWalker · November 28, 2022, 10:38pm

Yep. Pick your poison - their registry fix for the memory leak is to disable the Kerberos security settings they said were absolutely critical a couple of months ago.

ori · November 30, 2022, 6:39am

Thanks you all!
helped me