KB5012170: Windows Update error 0x800f0922, UEFI Bios update may fix it

Microsoft released cumulative updates for all supported Windows versions on the August 2022 Patch Day. The company did release a second Windows security update of the day to address issues in Secure Boot DBX.

#Installing the second update may throw error 0x800f0922, so the update cannot be installed.

Microsoft describes the issue on the Known Issues and Notifications support page for supported operating systems such as Windows 11 and Windows 10.

When trying to install KB5012170, it may fail to install and you may receive error 0x800f0922.

This issue is not related to the installation of Windows cumulative updates released by Microsoft on the same day.

Microsoft recommends that administrators can resolve this issue by updating the system's UEFI bios to the latest version before installing KB5012170. Whether this is possible depends on the version of UEFI BIOS installed and whether updates are available.

The company is currently investigating the issue and plans to "provide an update in an upcoming release."

Secure Boot DBX Update

The support page for the Secure Boot DBX update contains more information. This update has been released for multiple supported client and server versions of Windows operating systems, including Windows 8.1, Windows 10, and Windows 11.

This update improves Secure Boot DBX in Windows:

This security update improves Secure Boot DBX for the supported Windows versions listed in the Applies to section .

Secure Boot is supported on Windows devices with UEFI-based firmware. Secure Boot is a security feature that protects the system boot process. Secure Boot Forbidden Signature Database (DBX) database "prevents loading of UEFI module". Microsoft confirms update KB5012170 adds modules to DBX.

This update resolves a security feature bypass vulnerability in Secure Boot by updating DBX with information about the signatures of known vulnerable UEFI modules. An attacker could exploit this issue to bypass Secure Boot and load untrusted software.

An advisory page on the Microsoft website provides more information about this issue. According to Microsoft, the security issue was discovered in the GRUB boot loader commonly used by Linux.

To exploit this vulnerability, an attacker would need administrative privileges or physical access on a system where Secure Boot is configured to trust the Microsoft Unified Extensible Firmware Interface (UEFI) Certificate Authority (CA).

An attacker could install an affected GRUB and run arbitrary boot code on the target device. Successfully exploiting this vulnerability could allow an attacker to disable further code integrity checks, allowing arbitrary executables and drivers to be loaded on the target device.

Judging from the description, most Windows devices are not immediately at risk.

KB5012170 is available through Windows Update, other update management systems, and for direct download on the Microsoft Update Catalog website.

The above is the detailed content of KB5012170: Windows Update error 0x800f0922, UEFI Bios update may fix it. For more information, please follow other related articles on the PHP Chinese website!