January 2025 Patch Tuesday for Windows 11 (KB5050009, KB5050021) Released

January 2025 Patch Tuesday for Windows 11 (KB5050009, KB5050021) Released

Microsoft Patch Tuesday Updates for Windows 11: January 2025

This month, Microsoft has rolled out significant Patch Tuesday updates for Windows 11 versions 24H2, 23H2, and 22H2. The updates can be identified as follows: KB5050009 for the 24H2 version and KB5050021 for both 23H2 and 22H2. After installation, users will find themselves on the build versions 26100.2894, 22631.4751, and 22621.4751, respectively.

New Features and Enhancements

24H2 Update Overview

Key Highlights

  • This update addresses critical security vulnerabilities in your Windows operating system.

Noteworthy Improvements

This update integrates security enhancements from the previous update KB5048667, released on December 10, 2024. Here are the primary changes:

  • [Windows Kernel Vulnerable Driver Blocklist file (DriverSiPolicy.p7b)] An expanded list of drivers liable to Bring Your Own Vulnerable Driver (BYOVD) threats has been added.

Note that if you have previously installed updates, only the new components in this package will be downloaded to your system.

For detailed information regarding security vulnerabilities, visit the Security Update Guide and the January 2025 Security Updates.

Servicing Stack Update (KB5050387) – Build 26100.2890

This update enhances the servicing stack, the component responsible for the installation of Windows updates, ensuring a robust and reliable mechanism for future updates.

Known Issues with the Update

Applies to Symptom Workaround
All users Some users with ARM devices are unable to download and run Roblox from the Microsoft Store.

Users on ARM devices can access Roblox directly via www.Roblox.com.
All users Post-installation of the October 2024 security update, the OpenSSH (Secure Shell) service may fail to start, hindering SSH connectivity. This impacts both enterprise and educational users, although the number of affected devices is limited.

To temporarily resolve this, adjust directory permissions (ACLs) as follows:

  1. Launch PowerShell as an Administrator.
  2. Modify permissions for C:\ProgramData\ssh and C:\ProgramData\ssh\logs to provide full control for SYSTEM and Administrators while granting read access to Authenticated Users. Execute the following commands:

    3. $directoryPath = "C:\ProgramData\ssh"$acl = Get-Acl -Path $directoryPath $sddlString = "O:BAD:PAI(A;OICI;FA;;;SY)(A;OICI;FA;;;BA)(A;OICI;0x1200a9;;;AU)"$securityDescriptor = New-Object System.Security.AccessControl.RawSecurityDescriptor $sddlString $acl.SetSecurityDescriptorSddlForm($securityDescriptor.GetSddlForm("All")) Set-Acl -Path $directoryPath -AclObject $acl

  3. Repeat for C:\ProgramData\ssh\logs.

Microsoft is aware of this issue and is working towards a resolution in an upcoming update.
IT administrators Systems with specific Citrix components may encounter an installation failure for the January 2025 Windows security update, particularly affecting systems with Citrix Session Recording Agent version 2411.

Refer to Citrix’s documentation for detailed workarounds before attempting the update. Microsoft is in discussions with Citrix to resolve this issue.

23H2 and 22H2 Updates

Key Highlights

  • This update addresses security vulnerabilities within your Windows operating system.

Improved Features

Windows 11 Version 23H2

Important: Use EKB KB5027397 to upgrade to this version.

Enhancements in this security update include:

  • Incorporation of all improvements from Windows 11, version 22H2.

  • No new issues have been documented.

Windows 11 Version 22H2

This update brings enhancements from KB5048685, also released on December 10, 2024. Key issues addressed include:

  • [Windows Kernel Vulnerable Driver Blocklist file (DriverSiPolicy.p7b)] Expansion of the blocklist for drivers susceptible to BYOVD threats.

As with previous updates, only new components will be downloaded if earlier updates have already been applied.

For extensive details about security updates, consult the Security Update Guide and the specific January 2025 Security Update.

Servicing Stack Update (KB5050113) – Builds 22621.4740 and 22631.4740

This update improves the servicing stack, ensuring smooth installation of Windows updates and maintaining a reliable infrastructure for users.

Issues Encountered with 23H2 and 22H2 Updates

Applies to Symptom Workaround
All users Similar to the 24H2 update, some users experience issues with the OpenSSH service failing to start. Follow the same steps listed previously to adjust directory ACLs.
IT administrators As mentioned earlier, devices installed with specific Citrix components may not successfully install the January 2025 Windows security update.

Consult Citrix’s documentation for guidance on potential workarounds.

These updates are accessible via Windows Update and are set to install automatically for most users. If manual installation is preferred, updates for offline installation can be sourced from the Microsoft Catalog website. The update for 24H2 can be found here (installation instructions can be complicated, so refer here), while updates for 23H2 and 22H2 can be accessed here.

Source & Images

Related Articles:

Invisible Woman from Marvel Rivals Dominates Bot Matches
Latest Honkai: Star Rail Promo Codes Release Free Stellar Jades and Rewards

Leave a Reply

Your email address will not be published. Required fields are marked *