MC637454 – Take action: July 11, 2023 starts the Second Deployment Phase to address CVE-2023-24932 for devices using Secure Boot (archived)

cloudscout.one Icon

check before: 2023-07-25

Product:

Office 365 general

Platform:

World tenant, Windows Desktop, Online

Status:

Change type:

Admin impact

Links:

Details:

The release of the July 11, 2023 security updates for Windows starts the Second Deployment Phase in KB5025885: How to manage the Windows Boot Manager revocations for Secure Boot changes associated with CVE-2023-24932. KB5025885 contains the manual steps to verify your environment is ready for the changes and steps to enable the security hardening changes to protect against vulnerabilities tracked by CVE-2023-24932 that can bypass the Secure Boot security feature using the BlackLotus UEFI bootkit.


The Second Deployment Phase in updates for Windows released July 11, 2023 and later add the following:
Allow easier, automated deployment of the revocation files (Code Integrity Boot policy and Secure Boot disallow list (DBX)).
New Event Log events will be available to report whether revocation deployment was successful or not.
SafeOS dynamic update package for Window Recovery Environment (WinRE).

When will this happen:
Updates released July 11, 2023 and later start the Second Deployment Phase, containing the additional Event Log events to aid in getting your environment ready to enable protections required to address CVE-2023-24932. The security hardening for CVE-2023-24932 will be done in phases, as steps must be taken to prevent issues on your organization's devices when the revocations are applied/enabled. The security hardening changes to protect against vulnerabilities tracked by CVE-2023-24932 have been in updates released May 9, 2023 and later.

Change Category:
XXXXXXX ...

Scope:
XXXXXXX ...

Release Phase:

Created:
2023-07-12

updated:
2023-07-15

Task Type

XXXXXXX ...

Docu to Check

XXXXXXX ...

MS Preperations

XXXXXXX ...

MS Urgency

XXXXXXX ...

MS workload name

XXXXXXX ...

** AI generated content. This information is not reliable.

the free basic plan is required to see all details. Sign up here


change history

DatePropertyoldnew
2023-07-15MC MessagesThe release of the July 11, 2023 security updates for Windows starts the Second Deployment Phase in KB5025885: How to manage the Windows Boot Manager revocations for Secure Boot changes associated with CVE-2023-24932. KB5025885 contains the manual steps to verify your environment is ready for the changes and steps to enable the security hardening changes to protect against vulnerabilities tracked by CVE-2023-24932 that can bypass the Secure Boot security feature using the BlackLotus UEFI bootkit.


The Second Deployment Phase in updates for Windows released July 11, 2023 and later add the following:
Allow easier, automated deployment of the revocation files (Code Integrity Boot policy and Secure Boot disallow list (DBX)).
New Event Log events will be available to report whether revocation deployment was successful or not.
SafeOS dynamic update package for Window Recovery Environment (WinRE).

When will this happen:
Updates released July 11, 2023 and later start the Second Deployment Phase, containing the additional Event Log events to aid in getting your environment ready to enable protections required to address CVE-2023-24932. The security hardening for CVE-2023-24932 will be done in phases, as steps must be taken to prevent issues on your organization's devices when the revocations are applied/enabled. The security hardening changes to protect against vulnerabilities tracked by CVE-2023-24932 have been in updates released May 9, 2023 and later.
The release of the July 11, 2023 security updates for Windows starts the Second Deployment Phase in KB5025885: How to manage the Windows Boot Manager revocations for Secure Boot changes associated with CVE-2023-24932. KB5025885 contains the manual steps to verify your environment is ready for the changes and steps to enable the security hardening changes to protect against vulnerabilities tracked by CVE-2023-24932 that can bypass the Secure Boot security feature using the BlackLotus UEFI bootkit.
2023-07-15MC How Affecthat you need to do to prepare:
For information on how to enable the revocations and what is required before you should enable the revocations, see KB5025885: How to manage the Windows Boot Manager revocations for Secure Boot changes associated with CVE-2023-24932.
2023-07-15MC prepareFor information on how to enable the revocations and what is required before you should enable the revocations, see KB5025885: How to manage the Windows Boot Manager revocations for Secure Boot changes associated with CVE-2023-24932.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24932
https://support.microsoft.com/help/5025885
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24932
https://support.microsoft.com/help/5025885

Last updated 1 month ago

Share to MS Teams

Login to your account

Welcome Back, We Missed You!