Security News > 2022 > May > Microsoft patches the patch that broke Windows authentication
Microsoft has released an out-of-band patch to deal with an authentication issue that was introduced in the May 10 Windows update.
Multiple administrators complained last week that after installing the May 10 patch, they experienced authentication failures across several systems.
An entry then turned up in the lengthy list of known issues for the patch in which Microsoft warned that, after installing the May 10 patch on domain controllers, there might be issues with some services.
As with many updates, the May 10 patch was an important one, and included fixes for "High severity" elevation-of-privilege vulnerabilities that could occur when the Kerberos Distribution Center serviced a certificate-based authentication request.
Backing out of the update apparently resolved the problems but, as one user observed, "This is quite a critical patch but seems to break quite a key role!".
Administrators would be forgiven for feeling that patches to fix patches seem to be becoming a little too common over the years.
News URL
https://go.theregister.com/feed/www.theregister.com/2022/05/20/microsoft_authentication_fix/
Related news
- Microsoft says premature patch could make Windows Recall forget how to work (source)
- Microsoft says having a TPM is "non-negotiable" for Windows 11 (source)
- New Windows zero-day exposes NTLM credentials, gets unofficial patch (source)
- Microsoft December 2024 Patch Tuesday fixes 1 exploited zero-day, 71 flaws (source)
- Microsoft holds last Patch Tuesday of the year with 72 gifts for admins (source)
- Microsoft Fixes 72 Flaws, Including Patch for Actively Exploited CLFS Vulnerability (source)
- Microsoft lifts Windows 11 24H2 block on PCs with USB scanners (source)
- Patch Tuesday: Microsoft Patches One Actively Exploited Vulnerability, Among Others (source)
- Microsoft says Auto HDR causes game freezes on Windows 11 24H2 (source)
- Microsoft adds another problem to the Windows 11 24H2 naughty list (source)