Microsoft has released a PowerShell script to automate updating the Windows Recovery Environment partition in order to fix CVE-2024-20666, a vulnerability that allowed for BitLocker encryption bypass.
This security issue was resolved in the KB5034441 security update released earlier this week during this month's Patch Tuesday.
The PowerShell script addresses a known issue causing KB5034441 install failures on Windows 10 systems, which leaves the devices vulnerable to the BitLocker encryption bypass flaw that allows access to encrypted data.
To address the issue, Microsoft advised users to create a larger WinRE partition to have enough room for KB5034441 to install.
While you can do this manually using detailed-and quite complex-instructions, the company now also provides a dedicated PowerShell script to help you automate updating the WinRE partition and patching the CVE-2024-20666 BitLocker vulnerability.
When running the script on your system, it mounts the WinRE image, applies an architecture-specific Safe OS Dynamic Update you have to download from the Windows Update Catalog before running the script, unmounts the image, and then reconfigures WinRE for BitLocker service if the BitLocker TPM protector is present.
From BleepingComputer's tests, you may also have to use Microsoft's Show or Hide Tool to hide the KB5034441 update after running the script, so Windows Update won't keep trying to install the buggy update and display an error.
If you choose to manually resize the WinRE partition, it's also strongly advised to back up your data since there's always the risk of your system's partitions getting damaged when adjusted.
Windows 10 KB5034441 security update fails with 0x80070643 errors.
Windows 10 KB5034122 update released with fix for shut down bug.
Microsoft fixes Windows printer issues with new troubleshooter.
This PowerShell Certification course bundle is just $20..
This Cyber News was published on www.bleepingcomputer.com. Publication date: Thu, 11 Jan 2024 18:35:11 +0000