news

한어Русский языкEnglishFrançaisIndonesianSanskrit日本語DeutschPortuguêsΕλληνικάespañolItalianoSuomalainenLatina

IT Home reported on August 24 that Microsoft admitted that the cumulative updates released on the August Patch Tuesday caused Windows and Linux dual-boot devices to be unable to enter the Linux distribution normally. The official has now released a temporary solution.

Cause

Microsoft released the cumulative update KB5041585 on August 13. After Windows 11 users installed it, the version number was upgraded to Build 22621.4037.

IT Home Note: This issue mainly affects Windows and Linux dual-boot devices, causing users to be unable to enter the Linux distribution normally, and the "Verifying shim SBAT data failed" error will pop up.

Microsoft officials said the problem was mainly because the detection mechanism failed to identify certain systems, causing the update to mistakenly apply the Secure Boot advanced target settings to the wrong system and corrupt the Linux installation.

Temporary solution

For users who have not yet deployed the August Windows Update

The user runs the following command to add the registry option.

reg add HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSecureBootSBAT /v OptOut /d 1 /t REG_DWORD

For users who have deployed the August Windows Update

For users who have already deployed and caused the Linux distribution to fail to run, Microsoft provides a temporary solution:

1. Disable Secure Boot

2. Remove SBAT Update

Boot Linux

Open a terminal and run the following command:

sudo mokutil --set-sbat-policy delete

If prompted, enter your root password.

Boot Linux again.

3. Verify SBAT revocation

Run the following command in the terminal:

mokutil --list-sbat-revocations

4. Restart Secure Boot

5. Prevent future updates of SBAT in Windows:

Boot into Windows

Open a command prompt as administrator and run:

reg add HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSecureBootSBAT /v OptOut /d 1 /t REG_DWORD