Microsoft is rolling out an out-of-band update for Windows 11 2022 Update that resolves an SSL/TLS handshake issue caused by this month’s Patch Tuesday update. This known issue caused failures in SSL/TLS handshakes for client and server versions of Windows 11 (22H2).
The update causing the issues was a Windows security update that landed on October 11 alongside the global Patch Tuesday releases. This resulted in affected Windows 11 2022 Update devices seeing the SEC_E_ILLEGAL_MESSAGE error in apps connected to servers.
Microsoft is now shipping Preview Cumulative Update KB5018496 to address the issue:
“We are addressing an issue that could affect certain types of Secure Sockets Layer (SSL) and Transport Layer Security (TLS) connections. These connections can have handshake failures,” Microsoft Reports.
“For developers, affected connections are likely to receive one or more records followed by a partial record less than 5 bytes in size in a single input buffer.”
KB5018496 is a preview and is optional, so you’ll have to enter it manually if you need the fix. To do this, on your Windows 11 device, head to Settings > Windows Update so what “Check for updates”. Choose the optional KB5018496 from the list of available updates.
Updating older versions of Windows
At the same time, Microsoft also releases standalone updates for older versions of Windows. These out-of-band builds fix the same issue in the following Windows versions:
- Cumulative updates:
- Windows 11, version 21H2: KB5020387
- Windows Server 2022: KB5020436
- Windows 10, version 20H2; Windows 10, version 21H1; Windows 10, version 22H1; Windows 10 Enterprise LTSC 2021: KB5020435
- Windows 10 Enterprise LTSC 2019; Windows Server 2019: KB5020438
- Windows 10 2016 LTSB; Windows Server 2016: KB5020439
- Windows 10 2015 LTSB; KB5020440
- Standalone updates:
Tip of the day: Did you know that your data and privacy could be at risk if you run Windows without encryption? A bootable USB stick with a live-linux distribution is often enough to access all your files.
If you want to change this, see our detailed BitLocker guide where we show you how to enable encryption for your system disk or any other drive you might be using on your computer.