December 2024 Patch Tuesday Updates for Windows 11 (KB5048667, KB5048685) Released

December 2024 Patch Tuesday Updates for Windows 11 (KB5048667, KB5048685) Released

Microsoft has unveiled its latest Patch Tuesday updates for Windows 11 versions 24H2, 23H2, and 22H2. The updates are delivered via KB5048667 for 24H2, while 23H2 and 22H2 updates come with KB5048685. After installing these updates, users will be on build version 26100.2605 for 24H2 and 22631.4602 and 22621.4602 for 23H2 and 22H2, respectively.

New Features and Improvements

Windows 11 Version 24H2

Highlights

  • This update resolves critical security vulnerabilities within the Windows operating system.

Improvements

The security update incorporates enhancements that were introduced in KB5046740, which was released on November 21, 2024. The following summary outlines the key updates included with this release, focusing on security enhancements:

  • The update provides various security enhancements to internal operating system functions, with no additional issues reported for this release.

For users who have installed previous updates, only the new items contained in this package will be retrieved and installed.

For further details on security vulnerabilities, please consult the Security Update Guide as well as the December 2024 Security Updates.

Servicing Stack Update (KB5049685) for 24H2 – Build 26100.2592

This update introduces quality improvements to the servicing stack, which is essential for the installation of Windows updates. Ensuring a resilient servicing stack allows for the successful download and installation of Microsoft updates.

Known Issues in this Update

Applies to

Symptom

Workaround

All users

Players on ARM devices are currently unable to download and play Roblox from the Microsoft Store on Windows.

Players can access Roblox directly by downloading it from www.Roblox.com.

Windows 11 Versions 23H2 and 22H2

Highlights

  • This update addresses vital security issues within Windows operating systems.

Improvements

Windows 11 Version 23H2

Note: Utilize EKB KB5027397 to upgrade to Windows 11 version 23H2.

This security update brings quality enhancements, including:

  • All improvements from Windows 11 version 22H2 are included.

  • No new issues are reported for this release.

Windows 11 Version 22H2

This update features security enhancements previously included in KB5046732, released on November 21, 2024. Key highlights include:

  • This update offers miscellaneous security enhancements to internal OS functionalities.

Only new updates will be installed if previous updates are already applied.

For comprehensive details about security vulnerabilities, refer to the Security Update Guide and December 2024 Security Updates.

Servicing Stack Update (KB5046729) for 22H2 – Builds 22621.4539 and 22631.4539

This update enhances the servicing stack, ensuring the system components that manage Windows updates remain robust and reliable.

Known Issues in this Update

Applies to

Symptom

Workaround

All users

Post-installation of the October 2024 security update, some users find that the OpenSSH service fails to start, obstructing SSH connections. There are no detailed logs, and manual restart of the sshd.exe process is necessary.

This issue seems to impact IOT and education customers, with an investigation underway regarding effects on Home or Pro edition users.

To temporarily resolve, update permissions on the directories affected. Steps include:

  1. Open PowerShell as Administrator.

  2. Modify permissions for C:\ProgramData\ssh and C:\ProgramData\ssh\logs to grant full control to SYSTEM and Administrators while allowing read access to Authenticated Users. Use these commands:


    $directoryPath = "C:\ProgramData\ssh"
    $acl = Get-Acl -Path $directoryPath
    $sddlString = "O:BAD:PAI(A;OICI;FA;;;SY)(A;OICI;FA;;;BA)(A;OICI;0x1200a9;;;AU)"
    $securityDescriptor = New-Object System.Security.AccessControl.RawSecurityDescriptor $sddlString
    $acl.SetSecurityDescriptorSddlForm($securityDescriptor.GetSddlForm("All"))
    Set-Acl -Path $directoryPath -AclObject $acl

  3. Repeat for C:\ProgramData\ssh\logs.

Microsoft is pursuing a solution and will inform users as updates become available.

These updates are accessible via Windows Update and should typically install automatically. For offline installation, you can find the updates on the Microsoft Catalog website. For the 24H2 update, visit here (check installation instructions on the Catalog tab). For 23H2 and 22H2 updates, visit here.

Source & Images

Related Articles:

December 2024 Patch Tuesday Updates for Windows 10 (KB5048652 / KB5048661 / KB5048671 / KB5048703) Released
December 2024 Rarity Factory Tycoon Codes: Unlock Exclusive Rewards

Leave a Reply

Your email address will not be published. Required fields are marked *