[DISCUSSION] Hotpatching for Windows Server 2025 (and Windows 11 24H2 - no subscriptions needed!)

Discussion in 'Windows Server' started by kibkalo, Sep 21, 2024.

  1. Aty

    Aty MDL Member

    Oct 18, 2013
    200
    416
    10
    #41 Aty, May 15, 2025
    Last edited: May 15, 2025
    Testing registry values again on VMware.
    Hotpatch should now be available on both Windows 11 24H2 and Windows Server 2025 without the need for a subscription?
     
  2. EPRob

    EPRob MDL Expert

    Jul 23, 2009
    1,528
    752
    60
    registry tweaks worked.

    screenshot_1.png
     
  3. weino1

    weino1 MDL Novice

    Apr 24, 2014
    19
    12
    0
    Unfortunately I'm still getting KB5058411 (which is the non-Hotpatch cumulative update) on 26100.3915 client. Is the Enterprise SKU compulsory for it?
     
  4. EPRob

    EPRob MDL Expert

    Jul 23, 2009
    1,528
    752
    60
    did you reboot after applying the registry tweaks?
     
  5. weino1

    weino1 MDL Novice

    Apr 24, 2014
    19
    12
    0
    Yes. Specifically, I've paused updates, then edited the registry and restarted, then resumed updates. After re-searching, I still get KB5058411. :/
     
  6. Aty

    Aty MDL Member

    Oct 18, 2013
    200
    416
    10
    You must use 26100.3775.
     
  7. Tito

    Tito Admin / Adviser
    Staff Member

    Nov 30, 2009
    19,091
    19,920
    340
  8. abbodi1406

    abbodi1406 MDL KB0000001

    Feb 19, 2011
    18,610
    100,025
    340
    Just in time when no hotpatch this month :D
     
  9. MDLOL

    MDLOL MDL Novice

    Jan 28, 2024
    12
    5
    0
    This is not working for me on WS2025, I already have VBS enabled (and it says it is), is anything else needed? I still get the normal patches :(
     
  10. MDLOL

    MDLOL MDL Novice

    Jan 28, 2024
    12
    5
    0
    It seems this is also needed for WS2025.
    reg add "HKLM\SOFTWARE\Microsoft\PolicyManager\current\device\Update" /v "AllowRebootlessUpdates" /t "REG_DWORD" /d "1" /f
    reg add "HKLM\SOFTWARE\Microsoft\PolicyManager\current\device\Update" /v "AllowRebootlessUpdates_ProviderSet" /t "REG_DWORD" /d "1" /f

    Now I see Enable Hotpatching when available in configured policies as well. Let's check back in two months for the next rebootless update :eek:
     
  11. Aty

    Aty MDL Member

    Oct 18, 2013
    200
    416
    10
    This is not required for the server. Before receiving the hotpatch, please ensure that the baseline update has been installed.

    Image 223.png
     
  12. MDLOL

    MDLOL MDL Novice

    Jan 28, 2024
    12
    5
    0
    Which baseline update do I need to install now then?
     
  13. MDLOL

    MDLOL MDL Novice

    Jan 28, 2024
    12
    5
    0
    2 months later...

    2026-02 Security Update (Hotpatch capable) (KB5075942) (26100.32313)

    Yet I still need to reboot, what would I need to get hotpatching? I have set all these hotpatch registry things.
     
  14. MDLOL

    MDLOL MDL Novice

    Jan 28, 2024
    12
    5
    0
    But not needing reboots is the only advantage of hotpatching. I've given up on it and reverted back to normal patching after april patch failed to install.