Microsoft warns: This Home windows 10 workaround to treatment Lenovo ThinkPad BSODs hits safety


Microsoft has lastly revealed a help doc detailing its workaround for the August 2020 Patch Tuesday replace for Home windows 10 model 2004 that brought on blue screens of deaths (BSODs) on newer Lenovo ThinkPads and broke Home windows Whats up biometric login. 

Customers began reporting points after the cumulative August replace KB566782 for Home windows 10 model 2004 and affected Lenovo ThinkPads made in 2019 and 2020. Nevertheless, Microsoft notes that the difficulty really appeared within the July 31, 2020 KB4568831 (OS Construct 19041.423) Preview.   

Lenovo supplied a workaround that concerned disabling the Enhanced Home windows Biometric Safety setting in BIOS Setup within the safety and virtualization settings part. 

SEE: Home windows 10 Begin menu hacks (TechRepublic Premium)

The problem occurred when Lenovo’s Vantage app for updating {hardware} drivers tried to make use of the Intel Administration Engine to interface with firmware, which bought blocked by the BIOS setting within the safety replace. 

Microsoft has now revealed an in depth rundown of the bug, its signs, trigger and its workaround. It is the identical as Lenovo’s earlier workaround however comes with a stern safety warning from Microsoft. Microsoft additionally explains how Lenovo Vantage violates Microsoft’s safety controls in Home windows. 

Customers may bypass the BSOD display, however they’re endangering their computer systems by implementing the workaround, in response to Microsoft.  

The workaround additionally impacts a few of Microsoft’s newest safety features for Home windows 10, equivalent to Hypervisor Code Integrity for shielding the OS from malicious drivers, in addition to Home windows Defender Credential Guard.

“This workaround might make a pc or a community extra susceptible to assault by malicious customers or by malicious software program equivalent to viruses. We don’t advocate this workaround however are offering this data so to implement this workaround at your personal discretion. Use this workaround at your personal danger,” Microsoft states. 

Microsoft explains that units with the July 31, 2020 KB4568831 (OS Construct 19041.423) Preview or later updates “limit how processes can entry peripheral part interconnect (PCI) machine configuration house if a Safe Gadgets (SDEV) ACPI desk is current and Virtualization-based Safety (VBS) is operating”. 

“Processes that must entry PCI machine configuration house should use formally supported mechanisms,” it provides. 

In keeping with Microsoft, the brand new restrictions intention to stop malicious processes from modifying the configuration house of safe units, equivalent to peripherals. Home windows restricts machine drivers from altering the configuration house of those units to its personal bus interfaces. 

“If a course of tries to entry PCI configuration house in an unsupported method (equivalent to by parsing MCFG desk and mapping configuration house to digital reminiscence), Home windows denies entry to the method and generates a Cease error,” Microsoft explains. 

SEE: Seven Home windows 10 annoyances (and the way to repair them)

It provides: “When Lenovo Vantage software program runs, some variations might attempt to entry PCI machine configuration house in an unsupported method. This motion causes a Cease error.” 

The excellent news for affected ThinkPad customers is that Microsoft and Lenovo are working collectively on a repair. Nevertheless, Microsoft hasn’t stated when that can be out there. 

The error codes affected customers would see embrace: ‘SYSTEM_THREAD_EXCEPTION_NOT_HANDLED’ within the Cease error message display, and ‘0xc0000005 Entry Denied’ in reminiscence dumps information and different logs. The related course of is ldiagio.sys. 


Supply hyperlink