Security News > 2022 > November > Windows Server domain controllers may stop, restart after recent updates
Updates to Windows Server released as part of this month's Patch Tuesday onslaught might cause some domain controllers to stop working or automatically restart, according to Microsoft.
The enterprise software behemoth said organizations installing KB5019966 or later updates on domain controllers could see a memory leak with the Local Security Authority Subsystem Service.
"Depending on the workload of your DCs and the amount of time since the last restart of the server, LSASS might continually increase memory usage with the up time of your server and the server might become unresponsive or automatically restart," Microsoft wrote in its Windows Health Dashboard.
The out-of-band updates for domain controllers released November 17 and 18 also might be affected by the issue.
The company added that more information about the registry key can be found in the Windows Health Dashboard note, which is related to issues coming out of the November Patch Tuesday update that impacted the Kerberos network authentication protocol on Windows Server with the domain controller roles of managing network and identity security requests.
Microsoft a couple of weeks ago issued the emergency OOB updates that users could install in all domain controllers to fix the problems.
News URL
https://go.theregister.com/feed/www.theregister.com/2022/11/28/microsoft_windows_server_lsass/
Related news
- Microsoft fixes Remote Desktop issues caused by Windows Server update (source)
- Microsoft deprecates PPTP and L2TP VPN protocols in Windows Server (source)
- Exploit released for new Windows Server "WinReg" NTLM Relay attack (source)
- Microsoft confirms Windows Server 2025 blue screen, install issues (source)
- Windows Server 2025 released—here are the new features (source)
- Microsoft blames Windows Server 2025 automatic upgrades on 3rd-party tools (source)
- Microsoft fixes bugs causing Windows Server 2025 blue screens, install issues (source)