Windows 10 emergency updates fix Microsoft Store app issues

Microsoft released out-of-band (OOB) updates on Thursday evening to address a newly acknowledged issue affecting Microsoft Store apps.

On affected systems, customers may experience issues launching or installing Microsoft Store apps, and in some cases also see 0xC002001B errors.

This known issue affects devices running Windows 10 (versions 21H2, 21H1, and 20H2) where users have installed the KB5011831 preview of the optional cumulative update or other updates released since April 25.

“After installing KB5011831 or later updates, you may receive error code: 0xC002001B when trying to install from the Microsoft Store,” Microsoft explained on the Windows Health Dashboard.

“Some Microsoft Store apps may also fail to open. Affected Windows devices use a processor (CPU) that supports Control-flow Enforcement (CET) technology, such as 11th Generation and later Intel Core processors or later and some AMD processors.”

Microsoft released the KB5015020 cumulative update to address this known issue. This emergency Windows OOB update needs to be installed manually after downloading from the Microsoft Update Catalog and cannot be installed automatically via Windows Update.

Administrators can import the update into Windows Server Update Services (WSUS) and Microsoft Endpoint Configuration Manager.

WSUS instructions are available on the WSUS and the catalog site and Configuration Manager instructions on the Import updates from the Microsoft Update Catalog page.

Fixed AD authentication issues on domain controllers

Yesterday, Microsoft also released emergency updates to address Active Directory (AD) authentication issues for certain Windows services triggered by Windows Patch Tuesday May 2022 updates installed on domain controllers.

Redmond engineers have been working on a fix for this known AD authentication issue since May 12, two days after the Patch Tuesday updates were released.

After the known AD authentication issue was discovered, CISA had to remove an actively abused Windows LSA zero-day spoof (CVE-2022-26925) from its catalog of known exploited bugs and warned administrators not to install updates. May 2022 Update on Domain Controllers.

In November 2021, Microsoft released another round of out-of-band updates to address an issue causing Windows Server authentication failures related to Kerberos delegation scenarios affecting domain controllers.

Previous 'Security researchers', i.e. hackers, win $800,000 in prize money exploiting Windows 11 and Teams
Next Ransomware to overthrow the government - have the hackers gone too far?