Microsoft released an emergency patch for the app crash caused by the KB5005565 update

Specifically, according to Microsoft's announcement, some users have encountered crashes and app freezes after installing updates KB5005101 and KB5005565. This issue only affects users who use the Microsoft Exploit Protection Export Address Filtering (EAF) feature. This feature is used to detect malicious activities of malicious code or exploit modules.

"When you encounter this problem, you will not be able to open applications, cannot open files, or see a white screen when trying to sign in," Microsoft said.

Microsoft has released a fix for this issue using the Known Issue Rollback (KIR) feature. The update process may take 24 hours, you can reboot the machine to make the update install faster.

Microsoft released an emergency patch for the app crash caused by the KB5005565 update Picture 1

For businesses or users who want to receive updates quickly, they can install additional Group Policies policies or add Registry keys.

Microsoft has also released the following Group Policies for users to install to immediately update the fix. It is important that you install the correct modifier for the version of Windows you are using.

Click the link below to download and install the Group Policies appropriate for your operating system:

1. Windows Server 2022
2. Windows 10, version 2004; Windows 10, version 20H2 and Windows 10, version 21H1
3. Windows 10, version 1909
4. Windows 10, version 1809 and Windows Server 2019

Windows users can also install the fix right away by running one of the following commands from a command prompt with Administrator privileges. Like Group Policies, you only run commands that match the version of Windows you're using.

1. Windows Server 2022

reg add HKEY_LOCAL_MACHINESYSTEMCurrentControlSetPoliciesMicrosoftFeatureManagementOverrides /v 2801335948 /t REG_DWORD /d 0 /f

1. Windows 10, version 2004; Windows 10, version 20H2 and Windws 10, version 21H1

reg add HKEY_LOCAL_MACHINESYSTEMCurrentControlSetPoliciesMicrosoftFeatureManagementOverrides /v 2767781516 /t REG_DWORD /d 0 /f

1. Windows 10, version 1909

reg add HKEY_LOCAL_MACHINESYSTEMCurrentControlSetPoliciesMicrosoftFeatureManagementOverrides /v 928713355 /t REG_DWORD /d 0 /f

1. Windows 10, version 1809 and Windows Server 2019

reg add HKEY_LOCAL_MACHINESYSTEMCurrentControlSetPoliciesMicrosoftFeatureManagementOverrides /v 2371422858 /t REG_DWORD /d 0 /f

Wish you successfully fix this annoying problem of Windows!

Jessica Tanner

Update 27 September 2021