• Donate
    TheWindowsForum.com needs donations to stay online!
    Love TheWindowsForum.com? Then help keep it alive by sending a donation!

Microsoft enables Windows Kernel CVE-2023-32019 fix for everyone

WELCOME TO THEWINDOWSFORUM COMMUNITY!

Our community has more than 63,000 registered members, and we'd love to have you as a member. Join us and take part in our unbiased discussions among people of all different backgrounds about Windows OS, Software, Hardware and more.

Register Log in
AFFASocial

AFFASocial

Ultimate Donator
VIP
Jun 26, 2021
759
496
  • August 14, 2023
  • 02:13 PM
  • 0

Windows Defender logo

Microsoft has enabled a fix for a Kernel information disclosure vulnerability by default for everyone after previously disabling it out of concerns it could introduce breaking changes to Windows.
The vulnerability is tracked as CVE-2023-32019 and has a medium severity range 4.7/10, with Microsoft rating the flaw as 'important' severity.
The bug was discovered by Google Project Zero security researcher Mateusz Jurczyk, and it allows an authenticated attacker to access the memory of a privileged process to extract information.
While it is not believed to have been exploited in the wild, Microsoft initially released the security update with the fix disabled, warning that it could cause breaking changes in the operating system.
"The resolution described in this article introduces a potential breaking change. Therefore, we are releasing the change disabled by default with the option to enable it," explained Microsoft.
Instead, Windows users had to enable the update manually by adding the following registry values under the HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Policies\Microsoft\FeatureManagement\Overrides key:
  • Windows 10 20H2, 21H2, 22H2: Add a new DWORD registry value named 4103588492 with a value data of 1
  • Windows 11 21H2: Add a new DWORD registry value named 4204251788 with a value data of 1
  • Windows 11 22H2: Add a new DWORD registry value named 4237806220 with a value data of 1
  • Windows Server 2022: Add a new DWORD registry value named 4137142924 with a value data of 1
However, Microsoft would not share what conflicts could arise from enabling the update, simply telling BleepingComputer at the time that it would be enabled by default in the future.
This uncertainty led to many Windows admins not deploying the fix out of fear it would cause problems in their Windows installations.
As first spotted by Neowin, Microsoft has now enabled the fix for CVE-2023-32019 by default in the August 2023 Patch Tuesday updates.
"The resolution described in this article has been released enabled by default. To apply the enabled by default resolution, install the Windows update that is dated on or after August 8, 2023." explains Microsoft in an update to its support bulletin.
"No further user action is required."
BleepingComputer has spoken to numerous Windows admins about this update, and none have reported issues with this change enabled.
 
You must log in or register to reply here.

Similar threads

TWF Bot
  • Article
Why can't I uninstall the Your Phone app? - Microsoft Support
Replies
0
Views
154
TWF Bot
TWF Bot
TWF Bot
  • Article
April 23, 2024—KB5036979 (OS Build 19045.4355) Preview - Microsoft Support
Replies
0
Views
297
TWF Bot
TWF Bot
TWF Bot
  • Article
Older versions of BattlEye software may not be compatible with Windows 10, version 1903 - Microsoft Support
Replies
0
Views
171
TWF Bot
TWF Bot
TWF Bot
Windows Photos adds new Microsoft Designer integration
Replies
0
Views
152
TWF Bot
TWF Bot
TWF Bot
AMD’s commercial AI PC portfolio integrates Microsoft Pluton, includes Microsoft Copilot
Replies
0
Views
115
TWF Bot
TWF Bot

Latest posts

Back