Windows 10 users have experienced KB5034441 update installation failures that make the devices vulnerable to the availability of data encrypted by BitLocker. It bypasses the BitLocker encryption due to a flaw and gives access to the encrypted data. Microsoft has shared a PowerShell script to fix the vulnerability and to automate updating the Windows Recovery Environment (WinRE) partition.
Script to fix BitLocker issues to update Windows 10 WinRE
When installing security update KB5034441 on Windows 10, users saw 0x80070643 – ERROR_INSTALL_FAILURE error message. Users also saw
“There were some problems installing updates, but we’ll try again later. If you keep seeing this and want to search the web or contact support for information, this may help: (0x80070643).
According to Microsoft, this error occurs when the WinRE partition does not have enough disk space for the security update. Instead of showing the error CBS_E_INSUFFICIENT_DISK_SPACE error, users see the 0x80070643 error.
Microsoft has advised creating a WinRE partition with sufficient free space to install updates. The KB5034441 update needs a space of 250 MB. Since manually resizing the partition is a long process, Microsoft has provided a dedicated PowerShell script to help users update the WinRE partition, that does not involve resizing the partition and patching the CVE-2024-20666 BitLocker vulnerability.
There are two scripts available for the users. You need to use the script that suits your Windows. The scripts are developed and released by the Microsoft product team. Users have to run it with the Administrator credentials on the devices with the error.
