Sign Up
All SecurityCyber-crimePatchesResearchCSO
All Off-PremEdge + IoTChannelPaaS + IaaSSaaS
All On-PremSystemsStorageNetworksHPCPersonal TechCxOPublic Sector
All SoftwareAI + MLApplicationsDatabasesDevOpsOSesVirtualization
All OffbeatDebatesColumnistsScienceGeek's GuideBOFHLegalBootnotesSite NewsAbout Us

Security

Patches

Windows Patch Tuesday hits snag with Citrix software, workarounds published

Microsoft starts 2025 as it hopefully doesn't mean to go on

Richard Speed Wed 15 Jan 2025  //  17:15 UTC

Devices that have Citrix's Session Recording software installed are having problems completing this month's Microsoft Patch Tuesday update, which includes important fixes.

Microsoft noted the problem in the list of known issues with the update, which arrived on January 14. According to the Windows vendor, affected devices will download and apply the update, but, after restarting to complete the installation, will show an error along the lines of "Something didn't go as planned. No need to worry – undoing changes" and the devices then roll back.

There are some rather important fixes in the security update, not least to plug under-attack privilege escalation holes in Hyper-V, so for the update to revert due to a problem with Citrix's Session Recording Agent (SRA) is less than ideal.

The issue occurs with 2411 SRA, which Microsoft noted was a new version. The tech giant estimated that a limited number of organizations would be affected.

Totally Problematic Message

The Citrix issue is more likely to be a problem for managed enterprise devices, but Microsoft also warned of another issue affecting home users who use BitLocker. The vendor said the message, "For your security, some settings are managed by your administrator," might pop up unexpectedly on unmanaged devices, adding it could also crop up on hardware using the Trusted Platform Module (TPM).

The problem appears to be simply the message itself, which might generate occasional consumer support calls but is otherwise just an annoyance. It arrives after BitLocker is enabled and can appear in the BitLocker control pane or "some other places in Windows," according to Microsoft.

The Windows behemoth said: "We are working on a resolution and will provide more information when it is available."

Citrix, which said it was investigating the issue, published a workaround on its support site. In a nutshell, it requires the user or admin to disable the Session Recording Monitor Service before installing the update. The service can then be restarted. The same procedure applies if a user needs to uninstall Microsoft's January 2025 security update.

Home users are unlikely to be affected by the issue, but enterprises running Citrix components could be. Session Recording records, catalogs, and archives sessions for retrieval and playback. It's either a handy tool for support or a way of monitoring user activity, raising potential privacy concerns, although Citrix noted: "Session Recording isn't designed for the evidence collection for legal proceedings."

The 2411 version was also not designed for Microsoft's updates, by the looks of things.

Microsoft is looking into the problem too, and while the workaround will be a headache for affected users, it is at least relatively straightforward. ®
Send us news
8 Comments

Microsoft declutters Windows 11 File Explorer in the name of Euro privacy

Also hammers another nail into Cortana's coffin with the end of Location History

Under Trump 2.0, Europe's dependence on US clouds back under the spotlight

Technologist Bert Hubert tells The Reg Microsoft Outlook is a huge source of geopolitical risk

Windows 11 24H2 goes back to the drawing board over AutoCAD 2022 glitch

Safeguard hold applied after designer darling borked by problematic update

Microsoft trims more CPUs from Windows 11 compatibility list

OEMs blowing dust from the processor stock cupboard, beware

February's Patch Tuesday sees Microsoft offer just 63 fixes

Don't relax just yet: Redmond has made some certificate-handling changes that could trip unprepared admins

Microsoft's updated Windows battery indicator rollout runs out of juice

How hard can it be to add colors and percentages?

Microsoft quietly erases Windows 11 TPM 2.0 bypass workaround from help page

You'll upgrade that aging piece of kit and you'll like it

Microsoft names alleged credential-snatching 'Azure Abuse Enterprise' operators

Crew helped lowlifes generate X-rated celeb deepfakes using Redmond's OpenAI-powered cloud – claim

Microsoft shows off novel quantum chip that can scale to 'a million qubits'. So far: Eight

Not just a matter of time but a matter of Majorana fermions, too

Ad-supported Microsoft Office bobs to the surface

Only a test at the moment, but a sign of things to come?

Microsoft's drawback on datacenter investment may signal AI demand concerns

Investment bank claims software giant ditched 'at least' 5 land parcels due to potential 'oversupply'

Microsoft expands Copilot bug bounty targets, adds payouts for even moderate messes

Said bugs 'can have significant implications' – glad to hear that from Redmond