
Microsoft has rolled out the KB5049981 cumulative update for Windows 10 versions 22H2 and 21H2, introducing crucial security enhancements and system improvements. This mandatory January 2025 Patch Tuesday update primarily focuses on strengthening system security through an updated Kernel driver blocklist.
Key Updates and Changes:
– Build numbers updated to 19045.5371 (22H2) and 19044.5371 (21H2)
– Enhanced Windows Kernel Vulnerable Driver Blocklist
– Protection against Bring Your Own Vulnerable Driver (BYOVD) attacks
Installation Methods:
– Automatic installation through Windows Update
– Manual download from Microsoft Update Catalog
– Scheduled restart option available for convenience
Known Issues:
1. OpenSSH service startup problems affecting SSH connections
2. Installation conflicts with certain Citrix components, particularly with Citrix Session Recording Agent version 2411
Important Notes:
– No preview updates scheduled for December due to holidays
– Updates will resume in January 2025
– The update is mandatory and contains essential security patches
The enhanced driver blocklist specifically targets vulnerable kernel drivers that could be exploited for privilege escalation, protecting against rootkits and preventing unauthorized interference with security software.