Patch Tuesday and Windows Kernel Issues (10-11)

It was the second Tuesday of the month and so Microsoft released Patch Tuesday on Windows 10 (KB5027215, and others) and Windows 11 (KB5027231).

The update fixed some security issues, among other bugs, and as is often the case, caused some additional issues as well.

windows patch

On Windows 11, for example after the update Malwarebytes got confused and started blocking Google Chrome. As far as Windows 10 is concerned, many users have reported installation problems.

So far Microsoft has not yet confirmed any of these bugs, but it has indicated that a kernel patch released to all versions of Windows (10-11) may break the operating system. This issue is tracked with the identifier “CVE-2023-32019”. The notes of the updated version they said:

This update addresses an issue that affects the Windows kernel. This issue is related to CVE-2023-32019.

Here's a summary of the vulnerability as provided by Microsoft:

An authenticated user (attacker) could cause information disclosure in the Windows kernel. This vulnerability does not require administrator rights or other elevated privileges.

An attacker who successfully exploited this vulnerability could view heap memory from a privileged process running on the server.

Successful exploitation of this vulnerability requires an attacker to coordinate the attack with some other privileged process running by another user on the system.

You can find the support document on the Microsoft website with the ID  KB5028407. The Best Technology Site in Greecefgns

Subscribe to Blog by Email

Subscribe to this blog and receive notifications of new posts by email.

Patch Tuesday

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).