Microsoft has set a known issue to prevent Linux from booting on double boot systems with competent boot enabled after installing August 2024 Windows security updates.
The list of affected systems includes the Running Client (Windows 10 and Windows 11) and the server (Windows Server 2012 and after) the OS version.
This problem is triggered by a safe boot advanced targeting (SBAT) update that blocks Uefi shim bootloaders Weak for targeted exploits Cve-2022-2601 Grub2 safe boot bypass.
While Microsoft said in the CVE-2022-2601 advisor that this SBAT update would not be provided to devices where dual booting is detected, it was also accepted that some optimized methods of dual-booting failed to detect dual-boot and applied updates anyway.
as revealed by many Linux Users (Running a wide range of distributs, in which Ubuntu, Zorin OS, Linux Mint, and Puppy Linux are not limited), their System slap down Booting After installing the August 2024 Windows update, and the SBAT update was incorrectly implemented.
Microsoft confirmed the known issue after comprehensive reports, stating that the affected users saw “something seriously wrong: Sbat self-checked failed: security policy violations” errors on the system “errors on the system were uncontrolled.
Fixed after nine months
This week, nine months after confirming the issue, Microsoft announced that May 2025 Patch Tuesday security updates should fix boot problems for all affected users.
“This problem was solved by 13 May, 2025 (..), and later released by Windows updates,” Redmond noted Release health updates in a windows. “We recommend you install the latest updates for your device because it includes significant improvements and resolutions, including it.”
After sharing a temporary workaround at the end of August by the company, the first user report comes out, it comes to the fix, so that the double-boot system can help affect the system, allowing them to remove SBAT updates and ensure that the future SBAT updates will no longer be installed.
On September 19, also Proceeded Sbat stops implementing updates For firmware automatically, advising those who want to stop the future SBAT updates in Windows to run the following command:
reg add HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecureBoot\SBAT /v OptOut /d 1 /t REG_DWORD
“This known issue occurs only with the establishment of August 2024 security and preview updates. September 2024 security updates and later updates do not have this problem,” Microsoft said.
Based on the analysis of 14M malicious tasks, search for the top 10 MITERAT & CK techniques behind the 93% attacks and how to defend them against them.
