search
HomeCommon ProblemKB5012170: Take a closer look at this cumulative update

KB5012170: Take a closer look at this cumulative update

As you may already know, Microsoft rolled out its monthly Patch Tuesday updates just a few days ago, and you can find the full coverage here.

All operating systems are patched this month, including Windows 11, Windows 10, Windows 7, and Windows 8.1.

However, one of the most important releases this month is an extremely important fix related to Secure Boot DBX and its KB5012170 update.

Microsoft finally fixes critical Secure Boot GRUB vulnerability

In case you haven’t realized yet, Secure Boot disables signature database or DBX is actually a blacklist for UEFI executables Blocklist these executable files that are found to be bad.

The KB5012170 update mentioned above adds signatures for known vulnerable UEFI modules to DBX, meaning they will no longer be able to run after this update.

This time, the signatures are related to the GRand Unified Boot Loader (GRUB) vulnerability, also known as BootHole.

KB5012170: Take a closer look at this cumulative update

As we said, and as confirmed by Microsoft, this security update provides improvements to Secure Boot DBX for the supported Windows versions listed in the section.

The Redmond tech giant mentioned that these key changes include the following:

  • Windows devices with Unified Extensible Firmware Interface (UEFI)-based firmware can Run with Secure Boot enabled. The Secure Boot Disable Signature Database (DBX) prevents UEFI modules from loading. This update adds modules to DBX.

You should also be aware that a security feature bypass vulnerability exists in Secure Boot. As a result, an attacker who successfully exploited this vulnerability could bypass Secure Boot and load untrusted software.

That being said, KB5012170 successfully addresses the vulnerability by adding signatures of known vulnerable UEFI modules to DBX.

What Windows versions does this update apply to?

The tech company also included in the official release notes that this update will resolve the issue for all versions.

So without further ado, we will say that KB5012170 addresses the following issues:

  • Windows Server 2012
  • Windows 8.1 and Windows Server 2012 R2
  • Windows 10 Version 1507
  • Windows 10 Version 1607 and Windows Server 2016
  • Windows 10 Version 1809 and Windows Server 2019
  • Windows 10, Version 20H2
  • Windows 10, Version 21H1
  • Windows 10, Version 21H2
  • Windows Server 2022
  • Windows 11, Version 21H2 (original version)
  • Azure Stack HCI , Version 1809
  • Azure Stack Data Frame, Version 1809 (ASDB)

Of course, this cumulative update can be downloaded as part of the Patch Tuesday package through Windows Update, but you can also download it from Get standalone updates from the Microsoft Update Catalog website.

What should I do if the installation of KB5012170 fails?

    1. Press Win I to access Settings.
    2. Select the System category and click Troubleshoot. KB5012170: Take a closer look at this cumulative update
    3. Press the Other Troubleshooting button. KB5012170: Take a closer look at this cumulative update
    4. Press the Run button next to Windows Update. KB5012170: Take a closer look at this cumulative update

The above is the detailed content of KB5012170: Take a closer look at this cumulative update. For more information, please follow other related articles on the PHP Chinese website!

Statement
This article is reproduced at:云东方. If there is any infringement, please contact admin@php.cn delete

Hot AI Tools

Undresser.AI Undress

Undresser.AI Undress

AI-powered app for creating realistic nude photos

AI Clothes Remover

AI Clothes Remover

Online AI tool for removing clothes from photos.

Undress AI Tool

Undress AI Tool

Undress images for free

Clothoff.io

Clothoff.io

AI clothes remover

Video Face Swap

Video Face Swap

Swap faces in any video effortlessly with our completely free AI face swap tool!

Hot Tools

Atom editor mac version download

Atom editor mac version download

The most popular open source editor

SecLists

SecLists

SecLists is the ultimate security tester's companion. It is a collection of various types of lists that are frequently used during security assessments, all in one place. SecLists helps make security testing more efficient and productive by conveniently providing all the lists a security tester might need. List types include usernames, passwords, URLs, fuzzing payloads, sensitive data patterns, web shells, and more. The tester can simply pull this repository onto a new test machine and he will have access to every type of list he needs.

Dreamweaver CS6

Dreamweaver CS6

Visual web development tools

SublimeText3 Chinese version

SublimeText3 Chinese version

Chinese version, very easy to use

DVWA

DVWA

Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is very vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, to help web developers better understand the process of securing web applications, and to help teachers/students teach/learn in a classroom environment Web application security. The goal of DVWA is to practice some of the most common web vulnerabilities through a simple and straightforward interface, with varying degrees of difficulty. Please note that this software