News Security patch breaks Wi-Fi on Windows 11 PCs with Qualcomm 802.11r Wi-Fi module

Status
Not open for further replies.
Yet another example of why you should always use the Pro edition of Windows, and delay quality updates for 30 days and feature updates for at least 60 days. It's the best $15 you'll ever spend.
This is the reason you don't outsource. All Microsoft cares about is paying slave labor salaries to individuals living in less-than-ideal conditions given that their bottom line is all that matters.

They've fallen off a cliff in recent years.
 
Remember, folks. This is not a bug, but a feature. The future is set, and SaaS will be the way. Microsoft and the rest are drooling at the thought of perennial subscription fees for every little thing they can imagine.

You think it's bad now, but wait until you're forced to pay for service outages caused by their ineptitude with zero recourse because who else are you going to use?

I'm thinking they'll even go so far as to lobby for law to enforce their subscriptions and make anything else illegal to use. Unregulated capitalism is great, isn't it?
 
  • Like
Reactions: Sleepy_Hollowed
You do know that you can pause in Win 11 Home, right?

Pause for up to 5 weeks.
Pausing Windows Update is not the same as delaying quality and feature updates. Delaying updates allows Windows Update to function as normal, but quality and feature updates do not show as available to download for the time period you choose, which gives Microsoft a chance to pull the broken ones. Pausing Windows Update just pauses Windows Update, after which time it will mandatorily check for and download any updates available, which may be a day of release quality update depending on when you paused it.
 
Pausing Windows Update is not the same as delaying quality and feature updates. Delaying updates allows Windows Update to function as normal, but quality and feature updates do not show as available to download for the time period you choose, which gives Microsoft a chance to pull the broken ones. Pausing Windows Update just pauses Windows Update, after which time it will mandatorily check for and download any updates available, which may be a day of release quality update depending on when you paused it.
During this "Pause", the only updates it gets are Security updates.
Quality and Feature updates are indeed paused.

https://support.microsoft.com/en-us/windows/windows-update-faq-8a903416-6f45-0718-f5c7-375e92dddeb2
"What is the difference between a feature and quality update?"
"Feature updates are typically released twice per year and include new functionality and capabilities as well as potential fixes and security updates. Quality updates are more frequent and mainly include small fixes and security updates. Windows is designed to deliver both kinds of updates to devices through Windows Update."


"Note that after the pause limit is reached, you'll need to install the latest updates before you can pause updates again."


I have both Win 11 Pro and Home right next to me, and that Pause does the same thing on both.

Unless, of course, you have some documentation from MS on this that states otherwise.
 
During this "Pause", the only updates it gets are Security updates.
Quality and Feature updates are indeed paused.

https://support.microsoft.com/en-us/windows/windows-update-faq-8a903416-6f45-0718-f5c7-375e92dddeb2
"What is the difference between a feature and quality update?"
"Feature updates are typically released twice per year and include new functionality and capabilities as well as potential fixes and security updates. Quality updates are more frequent and mainly include small fixes and security updates. Windows is designed to deliver both kinds of updates to devices through Windows Update."


"Note that after the pause limit is reached, you'll need to install the latest updates before you can pause updates again."


I have both Win 11 Pro and Home right next to me, and that Pause does the same thing on both.

Unless, of course, you have some documentation from MS on this that states otherwise.

Yes, feature updates are like 22H2 and other named "feature updates", whereas "quality updates" are the monthly security updates which cause issues. If you are saying "pause update" only allows it to get security updates, then it is not solving the problem, delaying them does.
 
Yes, feature updates are like 22H2 and other named "feature updates", whereas "quality updates" are the monthly security updates which cause issues. If you are saying "pause update" only allows it to get security updates, then it is not solving the problem, delaying them does.
There are 3 different classifications.
Quality, Feature, Security.

Quality is not the same as security.

Pause lets Security updates through.

But please inform us of the difference, preferably documentation from MS, between "delay" and "pause".

And how to invoke each.
 
There are 3 different classifications.
Quality, Feature, Security.

Quality is not the same as security.

Pause lets Security updates through.

But please inform us of the difference, preferably documentation from MS, between "delay" and "pause".

And how to invoke each.


https://learn.microsoft.com/en-us/windows/deployment/update/get-started-updates-channels-tools



Types of updates​

We include information here about many different update types you hear about, but the two overarching types that you have the most direct control over are feature updates and quality updates.

  • Feature updates: Released annually. Feature updates add new features and functionality to Windows 10. Because they're delivered frequently (rather than every 3-5 years), they're easier to manage.
  • Quality updates: Quality updates deliver both security and nonsecurity fixes. Quality updates include security updates, critical updates, servicing stack updates, and driver updates. They're typically released on the second Tuesday of each month, though they can be released at any time. The second-Tuesday releases are the ones that focus on security updates. Quality updates are cumulative, so installing the latest quality update is sufficient to get all the available fixes for a specific feature update, including any out-of-band security fixes and any servicing stack updates that might have been released previously.
  • Servicing stack updates: The "servicing stack" is the code component that actually installs Windows updates. From time to time, the servicing stack itself needs to be updated in order to function smoothly. If you don't install the latest servicing stack update, there's a risk that your device can't be updated with the latest Microsoft security fixes. Servicing stack updates aren't necessarily included in every monthly quality update, and occasionally are released out of band to address a late-breaking issue. Always install the latest available quality update to catch any servicing stack updates that might have been released. The servicing stack also contains the "component-based servicing stack" (CBS), which is a key underlying component for several elements of Windows deployment, such as DISM, SFC, changing Windows features or roles, and repairing components. The CBS is a small component that typically doesn't have updates released every month. You can find a list of servicing stack updates at Latest servicing stack updates. For more detail about servicing stack updates, see Servicing stack updates.
  • Driver updates: These update drivers applicable to your devices. Driver updates are turned off by default in Windows Server Update Services (WSUS), but for cloud-based update methods, you can control whether they're installed or not.
  • Microsoft product updates: These update other Microsoft products, such as Office. You can enable or disable Microsoft updates by using policies controlled by various servicing tools.

As I stated before, security updates are included in the "quality updates" type. Also if you look in Windows Update > Update History, you will see the same categories, with the addition of Definition Updates (if you use Microsoft Defender) and Other Updates (for Microsoft Defender as well as the Malicious Software Removal Tool). There is no tab for "security updates" as, again, they are in the monthly cumulative quality update released on Patch Tuesday.

See also: https://learn.microsoft.com/en-us/mem/intune/protect/windows-update-for-business-configure

Windows 10/11 Pro get Windows Update for Business, which allows you to:

Control which updates to installFeature: Yes
- Defer all feature updates by specified days


Quality: Yes
- Defer all quality updates by specified days

Drivers: Yes
- Allow or Block all Recommended drivers
- No support for Other drivers

Deferring updates prevents them from being shown in Windows Update and, thefore, downloaded and installed until the number of days after you select in the group policy. Driver, definition, and other updates are allowed through as normal. The deferrment date applies to each update individually from its date of publication.
 
6zxdXCC.png


Feature: 23H2, 1 Nov Annual, used to be semi-annual.
Quality: Every 2-3-4 weeks Dec 14 going back to Mar 3
Definition Updates, AKA Security Definitions: Every day or two. Dec 19 going back to Nov 22.

Windows Update for Business is very different than what you stated at the start....Windows Pro.
Yes, Business allows different settings.

If you had stated Business at the start, we probably wouldn't be having this discussion.
Not the same as "Pro".
 
You neglected to include the preceeding requirements for the functionality you want:

---------------------------------------

Policy limitations for Workplace Joined devices​


Microsoft introduced a cloud service as part of the Windows Update for Business product family, Windows Update for Business deployment service (WUfB ds). As a cloud service, WUfB ds supports device update capabilities that require a device to have a Microsoft Entra registration (AADJ devices). These capabilities aren’t supported with Workplace Join (WPJ) devices. Windows update management on WPJ devices remains supported through core Windows Update for Business (WUfB) capabilities and the Intune Update rings for Windows 10 and later policy type.


The following Intune policy types for Windows Updates use WUfB ds, which prevents their support on WPJ devices:


  • Driver Updates for Windows 10 and later
  • Feature Updates for Windows 10 and later
  • Quality Updates for Windows 10 and later

If you support WPJ devices with Intune, the following information can help you understand the differences in capabilities based on policy type, for both WPJ devices and AADJ devices.
--------------------------------------

Sure.
If you're running this through a domain, and managing centrally, many many things are possible.
Much finer grained control over what gets updated.

(but any such organization is not using $15 grey market windows Pro licenses)
 
  • Like
Reactions: Darkbreeze
Status
Not open for further replies.