Microsoft has released Patch Tuesday updates for Windows 11 versions 23H2 and 22H2, which include security and system improvements. Users with version 23H2 will receive update KB5034123, advancing their systems to Build 22631.3007, while those on version 22H2 will be updated to Build 22621.3007. These updates are a part of the same Patch Tuesday that handled 49 security flaws.
Included Improvements and Fixes
The primary focus of the update is to address security vulnerabilities within the Windows operating system. Notable enhancements for version 23H2 encompass all prior improvements from version 22H2, and no additional issues are documented for this release. Users are advised to apply EKB KB5027397 to update to version 23H2.
For version 22H2, the update is cumulative, including remedies from earlier update KB5033375, released on December 12, 2023. Salient fixes resolve issues related to devices shutting down post smart card authentication, display problems with smart card icons, and connectivity challenges affecting certain Wi-Fi adapters, especially post-installation of earlier updates KB5032288 or KB5033375. The Wi-Fi issue predominantly impacts networks using 802.1x for authentication, which is uncommon in home networks.
Servicing Stack and Known Issues
Microsoft emphasizes the inclusion of a servicing stack update (SSU) for both Windows 11 versions 23H2 and 22H2, with the intention of bolstering the service stack's robustness to facilitate the smooth installation of subsequent Windows updates.
Nevertheless, the update introduces known issues for IT administrators utilizing BitLocker configuration service provider policies in MDM applications like Microsoft Intune. Although displaying a 65000 error, this issue is confined to reporting and does not impact the actual encryption capabilities of devices. A resolution is anticipated in an upcoming release, with a temporary workaround involving the configuration of encryption-type policies to ‘not configured' status.
Additional problems have been identified, including desktop icon misplacement in multi-monitor configurations when using Windows Copilot (currently in preview) and subpar rendering of the COLRv1 color font format essential for modern, 3D-like emoji display. Microsoft is actively working on resolutions for these issues and promises updates in forthcoming releases.
Apart from the automatic distribution via Windows Update, the update package is available for download on the Microsoft Update Catalog for manual or offline installations. Users and administrators are encouraged to refer to the Security Update Guide for detailed information on addressed security vulnerabilities.