Overview
In a recent development on June 20, 2024, Microsoft released an out-of-band update labeled
KB5041054 (OS Build 20348.2529) to tackle an issue impacting the
BCryptSignHash API. This issue pertains to the API returning
"STATUS_INVALID_PARAMETER" specifically when using NULL padding input parameters for RSA signatures. This situation is more prevalent in scenarios involving Customer-Managed Key (CMK), such as in Azure Synapse dedicated SQL pools.
Evolution of Updates
The update timeline reveals a series of Windows Server 2022 updates, showcasing a progression in addressing system vulnerabilities and enhancing the user experience. Updates spanning from January 2022 to June 2024 have been instrumental in refining Windows Server capabilities and resilience against potential issues.
Significance of the Out-of-Band Update
The out-of-band update,
KB5041054, assumes crucial importance in rectifying the BCryptSignHash API anomaly, particularly for environments reliant on CMK, like Azure Synapse dedicated SQL pools. By resolving the
"STATUS_INVALID_PARAMETER" issue, Microsoft aims to fortify the system's stability and functionality.
Improvements Brought by the Update
This non-security update primarily emphasizes quality enhancements. Installation of
KB5041054 promises to rectify the BCryptSignHash API inconsistency and optimize system performance, especially for scenarios involving RSA signatures with NULL padding input parameters and CMK utilization. Users can expect an improved experience and a more robust operational environment post-installation.
Servicing Stack Update
Additionally, the Windows Server 2022 servicing stack update (
KB5039343) - version 20348.2522, complements the overall system functionality by refining the servicing stack responsible for installing Windows updates. Servicing stack updates (SSU) are pivotal in ensuring the seamless delivery and installation of Microsoft updates, thereby enhancing device reliability.
Known Issues and Workarounds
Post-update installation, users may encounter difficulties in changing their user account profile picture, with a potential error message featuring error code
0x80070520. Microsoft acknowledges this issue and assures users of an upcoming resolution in subsequent releases.
How to Obtain and Remove the Update
For users seeking to acquire the update, various Windows and Microsoft release channels are available for installation. Furthermore, the update package's standalone version is accessible via the Microsoft Update Catalog website. If needed, instructions for removing the latest cumulative update (LCU) post-installation are detailed to streamline the user experience.
File Information and Additional Resources
Comprehensive file information for the cumulative update
5041054 and the servicing stack update (
KB5039343) - version 20348.2522 can be accessed for reference. Users are encouraged to explore subscription benefits, training opportunities, security insights, and engage with expert communities for enhanced support and guidance.
Conclusion
Microsoft's initiative in deploying out-of-band updates like
KB5041054 showcases a proactive approach towards addressing system vulnerabilities promptly. By focusing on quality improvements and system resilience, Microsoft aims to elevate user experience and bolster system performance across Windows Server environments. Stay tuned for more updates and enhancements to ensure a seamless computing experience with Windows Server 2022 and related products.