Microsoft updates Nov '22 - KB5021654

Hey,
Microsoft release patch Tuesday at 8/11. - KB5019964
there is a bug/security issue and Microsoft last week release another patch KB5021654 to solve the problem.

My question is:
Why BigFix offer the patch for all windows server 2016?

In the article they mention:
"It addresses a known issue that affects Windows Servers that have the Domain Controller (DC) role. They might have Kerberos authentication issues… "
In addition here:

And even when I’m trying to “check for updates” Microsoft not offer me the patch.

Is there something I’m missing, or is it a bug in BigFix?

Thanks in advance, and sorry about my english… :slight_smile:

Every month’s patch releases have bugs and cause issues. Every Single One.

Often those issues are not wide-spread, but every patch release has a potential to cause problems.

Even with the Kerberos issue, we did have many customers wishing to deploy, or at least test, the updates in their environments.

2 Likes

Even the cumulative patches released to fix the Kerberos issues did not fix it for all applications and we are still dealing with this today.

2 Likes

Please note that MS announced another memory leak bug in the original and oob update

  • there is a reg key to mitigate the issue.
1 Like

Yep. Pick your poison - their registry fix for the memory leak is to disable the Kerberos security settings they said were absolutely critical a couple of months ago.

2 Likes

Thanks you all!
helped me :slight_smile: