Welcome to 2025! As is tradition, Microsoft kicks off the new year swinging with its first Patch Tuesday of January—but this one comes with patches for critical security flaws and, unfortunately, new headaches for Windows users. Whether you're on Windows 10 or 11, buckle up, because there’s plenty to unpack. Here’s everything you need to know, plus a few updates that'll make you go, "Wait, what just happened to Roblox?"
To combat this, Microsoft added updates to the Windows Kernel Vulnerable Driver Blocklist file (known as
But wait, what’s a BYOVD attack, and why should you care?
This might sound easy enough, but it highlights one of the nagging issues with Microsoft's ecosystem: app incompatibility stemming from frequent updates.
Oh, and don’t run off yet—Roblox isn’t the only casualty of these updates...
Pro Tip: Use the Microsoft Update Catalog to manually download and install updates (if Windows Update starts acting up). This can sometimes dodge installation failures.
If nothing else, this January’s slew of issues should be a lesson for users: always approach updates with caution, test them if you can, and don’t hesitate to hit that pause button. As for Roblox fans on Arm devices, don’t worry—Microsoft owes you one, and there’s no way they're getting out of fixing this mess soon.
What are your thoughts on Microsoft’s January Patch Tuesday? Share your experiences or frustrations in the WindowsForum.com discussions!
Source: XDA January 2025's Patch Tuesday introduces a security fix and breaks Roblox for some reason
The Good: A Security Fix for Vulnerable Drivers
First, let’s start with the highlight (albeit not the most glamorous one): Microsoft delivers a much-needed patch addressing vulnerabilities related to Bring Your Own Vulnerable Driver (BYOVD). This type of attack allows bad actors to install a legitimate but unpatched (and often outdated) hardware driver with known security flaws to gain elevated privileges on your system.To combat this, Microsoft added updates to the Windows Kernel Vulnerable Driver Blocklist file (known as
DriverSiPolicy.p7b
). The blocklist ensures drivers with known vulnerabilities are stopped dead in their tracks before they cause chaos on your machine.But wait, what’s a BYOVD attack, and why should you care?
Understanding BYOVD: A Quick Crash Course
Drivers serve as the middlemen between your hardware and software, ensuring a smooth relationship between the components in your PC. But when a driver becomes outdated—or worse, exploited—hackers can use it to perform sneaky maneuvers, including:- Escalating their permissions to "Administrator" or "System" level.
- Running malicious code silently in the background.
- Accessing sensitive data stored on your PC.
The Ugly: The Roblox Problem... on Arm Devices
Here’s where things start to go off the rails: if you’re a Roblox player, especially on Windows 11 with an Arm CPU, you may notice Roblox no longer works if you downloaded it from the Microsoft Store. That’s right, Microsoft has somehow managed to break one of the most popular games in the world for a chunk of its user base.The Root Cause of the Roblox Drama
The Patch Tuesday update (specifically for Windows 11 24H2) introduced some compatibility hiccups for Arm-based processors. While Microsoft is remaining tight-lipped about the technical nitty-gritty, they’ve recommended a workaround: uninstall the Microsoft Store version of Roblox and reinstall it directly from its official website.This might sound easy enough, but it highlights one of the nagging issues with Microsoft's ecosystem: app incompatibility stemming from frequent updates.
Oh, and don’t run off yet—Roblox isn’t the only casualty of these updates...
The Mess: OpenSSH and Citrix Components Also Take a Hit
Unfortunately, Windows 11 wasn't content with just sabotaging Roblox. Two more issues have emerged across multiple builds:- OpenSSH Service Fails to Start
The OpenSSH service—which lets you create secure shell connections to remote systems—refuses to start after this update. OpenSSH is critical for IT professionals and developers who rely on secure terminal access, and its failure is already causing frustration in enterprise environments. - Citrix Update Problems
Users running Citrix components (software that supports virtualization and distributed computing) are reporting that the January 2025 update simply won’t install. Citrix users, you may want to hold off on pushing any updates until Microsoft irons things out.
Detailed Patch Breakdown: Windows Versions and Build Numbers
If you want to see exactly which updates are affecting your system, here’s a quick cheat sheet: | Windows Version | Build Number | Knowledge Base (KB) | Special Notes |
---|---|---|---|---|
Windows 11 24H2 | 26100.2894 | KB5050009 | Roblox + OpenSSH bugs, fixes for BYOVD flaw | |
Windows 11 23H2 | 22631.4751 | KB5050021 | OpenSSH and Citrix issues | |
Windows 11 22H2 | 22621.4751 | KB5050021 | OpenSSH instability, BYOVD fixes | |
Windows 10 22H2 | 19045.5371 | KB5049981 | Citrix users take note | |
Windows 10 21H2 | 19044.5371 | KB5049981 | Similar issues as above |
Beyond the Bugs: Broader Implications
Here's the thing: every Patch Tuesday brings its fair share of bug fixes and, well, new bugs. But the issues cropping up here spotlight two critical pain points for Microsoft's ecosystem:- Fragility of Microsoft Store Apps: Roblox is just the latest example of apps from the Microsoft Store suffering from unexpected behavior post-update. This raises questions about the resilience and testing of Store apps, especially as Microsoft pushes hard for Arm-based adoption.
- Enterprise Instability & Trust Issues: The problem with Citrix and OpenSSH compounds a bigger issue among professional and enterprise users who rely on Microsoft's updates not only for security but also for consistency. Breaking tools essential to development or virtualization is no small annoyance—it’s a productivity killer.
What Should You Do Next?
Here are some tips to survive this rollercoaster ride of an update cycle:- If You’re a Roblox Fan on Arm Devices
- Uninstall the Microsoft Store version and download the game’s launcher directly from Roblox’s website until Microsoft addresses the compatibility issue.
- If You Use OpenSSH or Citrix
- Hold off on installing the January update and monitor Microsoft's support pages for updates. Alternatively, you can use third-party workarounds like PowerShell for OpenSSH issues.
- Enable the Backup Blocklist for BYOVD:
- To ensure maximum protection against driver-based vulnerabilities, confirm that the blocklist function is active in Windows Defender (you’ll find it under Core Isolation settings).
- Keep Calm and Wait (or Disable Automatic Updates):
- If you need a stable environment for work or play, consider pausing automatic updates in the short term. Head to Settings → Windows Update → Pause Updates to temporarily stop Microsoft from pushing something unexpected.
Final Thoughts
The first Patch Tuesday of 2025 aimed for security but instead hit players, IT pros, and enterprises with a double-edged sword. While we applaud Microsoft for tackling BYOVD risks quickly, the collateral damage with Arm devices, OpenSSH, and Citrix is significant, even for a company that regularly bounces between stability and chaos during updates.If nothing else, this January’s slew of issues should be a lesson for users: always approach updates with caution, test them if you can, and don’t hesitate to hit that pause button. As for Roblox fans on Arm devices, don’t worry—Microsoft owes you one, and there’s no way they're getting out of fixing this mess soon.
What are your thoughts on Microsoft’s January Patch Tuesday? Share your experiences or frustrations in the WindowsForum.com discussions!
Source: XDA January 2025's Patch Tuesday introduces a security fix and breaks Roblox for some reason