Overview
KB5035849, released on March 12, 2024, is a cumulative update for Windows 10 and Windows Server 2019, specifically targeting OS Build 17763.5576. This update addresses several issues, including a problem with the touch keyboard that sometimes fails to open. It also includes improvements related to Active Directory domains that host mobile device management (MDM) providers, allowing them to transition to a stronger certificate mapping enforcement mode. This update is crucial for maintaining system security and functionality, especially for enterprise environments that rely on Active Directory services.
General Purpose
The primary purpose of KB5035849 is to enhance the security and functionality of Windows 10 and Windows Server 2019. It addresses a specific issue with the touch keyboard, ensuring that users can access this feature without interruption. Additionally, the update improves the interaction between Active Directory and mobile device management providers, facilitating a transition to a more secure certificate mapping mode. This is particularly important for organizations that manage a large number of devices and require robust security measures. The update also includes a servicing stack update, which is essential for the reliable installation of future updates.
General Sentiment
The general sentiment surrounding KB5035849 appears to be mixed. While the update addresses important security and functionality issues, there are significant concerns regarding a known issue that affects the Local Security Authority Subsystem Service (LSASS) on domain controllers. Users have reported experiencing memory leaks that can lead to crashes and unscheduled reboots. This has raised alarms among IT professionals, particularly those managing domain controllers. However, the existence of a workaround and the recommendation to install an additional update (KB5037425) to mitigate these issues provide some reassurance. Overall, while the update is necessary, caution is advised due to the potential for disruptive issues.
Known Issues
- Following installation, LSASS may experience a memory leak on domain controllers (DCs), particularly affecting Kerberos authentication requests.
- Extreme memory leaks can lead to LSASS crashes, resulting in unscheduled reboots of domain controllers.
- This issue is addressed in a subsequent update, KB5037425, which is recommended for users operating domain controllers.
Disclaimer: We take measures to ensure that AI-generated content is of the highest possible quality, but we cannot guarantee its accuracy and recommend that users do their own independent research. Generated on 2024-12-22 03:38 AM