Microsoft has released an out-of-band update, KB5061906 (OS Build 20348.3695), for Windows Server 2022, specifically addressing security vulnerabilities related to the Hyper-V Platform, with an emphasis on Azure confidential VMs. This update not only fixes critical security issues but also enhances the servicing stack, which is responsible for the installation of Windows updates. This improvement aims to streamline the deployment of servicing stack updates for on-premises environments, ensuring increased reliability and service availability.
The update, dated May 23, 2025, is categorized as a non-security update that includes several quality enhancements. One significant fix addresses a problem in the direct send path for guest physical addresses (GPA), which could cause confidential virtual machines running on Hyper-V to intermittently halt or restart unexpectedly. This issue particularly impacted Azure confidential VMs, necessitating manual intervention to restore service.
Additionally, the servicing stack update (KB5058531), tagged as build 20348.3691, further improves the components that facilitate the installation of Windows updates, reinforcing the system's ability to receive and apply updates effectively.
In summary, KB5061906 is crucial for maintaining the security and performance of Windows Server 2022 environments leveraging Hyper-V, especially for Azure confidential workloads, while the servicing stack update ensures a dependable framework for future updates. Looking ahead, organizations utilizing Windows Server 2022 should prioritize applying these updates to safeguard their virtual infrastructure and ensure operational continuity
The update, dated May 23, 2025, is categorized as a non-security update that includes several quality enhancements. One significant fix addresses a problem in the direct send path for guest physical addresses (GPA), which could cause confidential virtual machines running on Hyper-V to intermittently halt or restart unexpectedly. This issue particularly impacted Azure confidential VMs, necessitating manual intervention to restore service.
Additionally, the servicing stack update (KB5058531), tagged as build 20348.3691, further improves the components that facilitate the installation of Windows updates, reinforcing the system's ability to receive and apply updates effectively.
In summary, KB5061906 is crucial for maintaining the security and performance of Windows Server 2022 environments leveraging Hyper-V, especially for Azure confidential workloads, while the servicing stack update ensures a dependable framework for future updates. Looking ahead, organizations utilizing Windows Server 2022 should prioritize applying these updates to safeguard their virtual infrastructure and ensure operational continuity
Windows Server 2022 KB5061906 (OS Build 20348.3695) Out-of-band update released
Microsoft has released KB5061906 for Windows Server 2022, which resolves security vulnerabilities within the Hyper-V Platform, with a particular focus on Azure confidential VMs. Microsoft has enhanced the servicing stack to provide a robust and reliable component for Windows update installation. The update streamlines the on-premises deployment of servicing stack updates, guaranteeing dependable service availability.
Windows Server 2022 KB5061906 (OS Build 20348.3695) Out-of-band update released @ NT Compatible
