Problem with KB4592449 and KB4592438

wajhikhwaja · 2020-12-11T14:56:58.000Z

Microsoft just released following security patches and also released an article related to both KBs

KB4592438 , KB4592449

December 8, 2020—KB4592449 (OS Builds 18362.1256 and 18363.1256) (microsoft.com)

December 8, 2020—KB4592438 (OS Builds 19041.685 and 19042.685) (microsoft.com)

System and user certificates might be lost when updating a device from Windows 10, version 1809 or later to a later version of Windows 10. Devices will only be impacted if they have already installed any Latest cumulative update (LCU) released September 16, 2020 or later and then proceed to update to a later version of Windows 10 from media or an installation source which does not have an LCU released October 13, 2020 or later integrated. This primarily happens when managed devices are updated using outdated bundles or media through an update management tool such as Windows Server Update Services (WSUS) or Microsoft Endpoint Configuration Manager. This might also happen when using outdated physical media or ISO images that do not have the latest updates integrated.

I need to know are these security patches still good to approve in an environment where computers are being patched by WSUS . ???. Looks having these KB installed computers will have problem when they upgrade to the latest OS if they miss any latest cumulative update (LCU)

overdrive · 2020-12-11T15:08:29.000Z

Microsoft recently superseded a bunch of upgrades re-releasing them due to the Certificates bug - Windows 10, version 20H2 | Microsoft Learn

As long as you use these new installations, you won’t have these issues.

kevinhughes2 · 2020-12-11T15:48:19.000Z

Ahhh, THAT explains the 2 H2 upgrades in WSUS that were about 2 weeks apart.