Hello, welcome to the Friday, January 14th, 2020 edition of the Sansonet Storms anders Stormcast.

My name is Johannes Ulrich.

And I'm recording from Jacksonville, Florida.

Well, no news is good news when it comes to the HTTP.SSys vulnerability CVE 2020, 21907.

Shortly after recording yesterday's podcast, someone on Twitter pointed to a well

supposed exploit for the vulnerability on GitHub, but all that's there is what claims to be an encrypted version of

the exploit. Yes, a video demo, but of course that doesn't really tell you if there's anything

real here. So at this point, nothing publicly available and this one particular exploit, I would not really take all that serious at this point.

Sadly, there are some issues with this latest set of updates, in particular with Windows 8.1

and Server 202012R2, and Microsoft now confirmed these problems. The symptom here is a boot loop. One of our

readers actually described as a slow boot loop because it takes a while for the reboot then to happen.

And according to Microsoft, there are issues with virtual machines in HyperV if the device

you're running them on is using UEFI.

Also some issues around the Windows Resilient File System or REFS, where volumes are no longer

accessible or are seen as unformatted after you install the updates.

Now, sadly, the only fix here, of course, is to uninstall

the update, and this does affect the cumulative updates, so this will basically remove all

the patches that were released, including the HTTP.syspatch. Well, once you're done patching Windows, there's also a security advisory for Jenkins that you

should pay attention to if you are using Jenkins for your DevOps pipeline.

If I counted right, it's about 22 different security issues that are being addressed with

this update, but some of these updates

only affect specific plugins or features within Jenkins, so they may not necessarily affect

...