CPU security technology can block various malware attacks, but sometimes it can also accidentally harm regular programs, especially Intel’s Control Flow Execution Technology (CET), which prevents Windows 10 users from launching the Microsoft Store applications.
To address this, Microsoft has updated the new KB5015020 hotfix to address a known issue that could prevent certain services from authenticating computer accounts on clients or servers (issues that occurred after the May 10 update). Additionally, the new version addresses an issue that could prevent users from installing Microsoft Store apps.
Since Intel released the 11th-generation Core TigerLake series, its processors have begun to integrate CET features, and of course, some of AMD’s latest processors also support it. CET is designed to prevent hijacking attacks through control flow.
According to reports, the technology needs to be supported by software to be used normally, and developers have two methods to prevent control-flow hijacking attacks: indirect branch tracking (to prevent jump/call-oriented programming attacks) and shadow stack (to prevent return-oriented programming attacks) Program an ROP attack).
There is user feedback that after installing the most recent Windows 10 update, the system suddenly started using CET against legitimate apps from the Microsoft Store. BleepingComputer pointed out that Windows 10 users must download and install the latest KB5015020 cumulative update to resolve the issue.
“Users may experience error code: 0xC002001B when installing from the Microsoft Store after installing the KB5011831 or later update,” Microsoft said, adding that some Microsoft Store apps may also fail to open. Affected Windows devices use processors (CPUs) that support Control-Flow Enforcement Technology (CET), such as 11th generation and later Intel Core processors or later and some AMD processors. ”
The following is the official Microsoft update announcement:
This non-security update includes quality improvements. Major changes include:
- Addresses an issue that may cause authentication to fail for some services on the server or client after installing the May 10, 2022 update on a domain controller. These services include Network Policy Server (NPS), Routing and Remote Access Service (RRAS), Radius, Extensible Authentication Protocol (EAP), and Protected Extensible Authentication Protocol (PEAP). The issue affects how domain controllers manage the mapping of certificates to computer accounts. This issue only affects servers that are used as domain controllers; it does not affect client Windows devices.
- Addresses an issue that could prevent Microsoft Store apps from installing when control flow enforcement is enabled.
