Skip to Content

Microsoft fixes drivers blocklist

Updated on 2022-10-28: Microsoft fixes drivers blocklist

After a report that the company failed to update a list meant to block the installation of malicious and vulnerable drivers, Microsoft updated its drivers blocklist earlier this week to fix the issue and even rolled it out to more Windows 11 users as well. Read more:

Overview: Microsoft Will Fix Vulnerable Driver Blocklist Issue Next Month

Microsoft acknowledged that its hypervisor-protected code integrity (HVCI) feature has not been kept up to date. HVCI is touted as being able to prevent known vulnerable drivers from running on Windows machines. However, the list of vulnerable drivers has not been kept current in some pre-Windows 11 OSes. A non-security preview of Microsoft’s November 2022 Patch Tuesday release includes a fix for the problem.

Note

  • The driver blocklist was introduced as an optional feature in Windows 10, version 1809 and is enabled on systems which enable HVCI or run in S mode. As of Windows 11, version 22H2, it is enabled by default. This can be managed with the Windows Security app, but the version which manages this setting hasn’t been released yet. Part of the fix was that Microsoft was supposed to be providing updates to the on-device database of flawed drivers; these updates are now working. While not every flawed driver will be detected, it adds one more layer to our defenses at the endpoint. That said, use caution enabling the blocklist as it can result in a blue screen (aka hard stop) or inability to (re)install needed drivers.

Read more in

    Ads Blocker Image Powered by Code Help Pro

    Ads Blocker Detected!!!

    This site depends on revenue from ad impressions to survive. If you find this site valuable, please consider disabling your ad blocker.