KB5031356
詳細情報
KB番号 | KB5031356 |
---|---|
リリース日 | 2023/10/10 |
Windowsバージョン | Windows 10 22H2 / Windows 10 21H2 |
ビルド番号 | 19045.3570 / 19044.3570 |
URL(英語) | https://support.microsoft.com/en-us/help/5031356 |
URL(日本語) | https://support.microsoft.com/ja-jp/help/5031356 |
ダウンロード | Microsoft Update Catalog |
ハイライト
This update addresses security issues for your Windows operating system.
改良点
To protect against CVE-2023-44487, you should install the latest Windows update. Based on your use case, you can also set the limit of the RST_STREAMS per minute using the new registry keys in this update.
You can create the DWORD registry values in the table below under the following registry key: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\HTTP\Parameters
These keys are not present by default when you install this KB. You can create them as required to set new values for your environment.
既知の不具合
Symptom | Workaround |
---|---|
Using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings in the BitLocker configuration service provider (CSP) node in mobile device management (MDM) apps might incorrectly show a 65000 error in the "Require Device Encryption" setting for some devices in your environment. Affected environments are those with the “Enforce drive encryption type on operating system drives” or "Enforce drive encryption on fixed drives" policies set to enabled and selecting either "full encryption" or "used space only". Microsoft Intune is affected by this issue but third-party MDMs might also pe affected. Important This issue is a reporting issue only and does not affect drive encryption or the reporting of other issues on the device, including other BitLocker issues. | This issue is addressed in KB5034203. |
This update might not be installed successfully. Devices might initially display progress, but then not finish the installation. A common error code encountered with this issue is Error 8007000D (ERROR_INVALID_DATA). This error can be found in Update History. To view your update history, select Start > Settings > Windows Update > Update history. | This issue is resolved by using Known Issue Rollback (KIR). Please realize that it might require up to 48 hours for the resolution to propagate automatically to consumer devices and unmanaged business devices. If necessary, use the following steps to resolve this issue:
For enterprise-managed devices that have installed an affected update and encountered this issue, it can be resolved by installing and configuring a special Group Policy. The special Group Policy can be found in Computer Configuration > Administrative Templates > <Group Policy name listed below>. For information on deploying and configuring these special Group Policy, please see How to use Group Policy to deploy a Known Issue Rollback. Group Policy downloads with Group Policy name:
|