Summary. This update addresses a known issue that affects the Local Security Authority Subsystem Service (LSASS). It might leak memory on domain controllers (DCs). This issue occurs after you install KB5035885 (March 12, 2024).

Lsass.exe crashes and system shuts down automatically on a Windows Server 2012 R2-based server - Microsoft Support. Windows Server 2012 R2 Datacenter Windows Server 2012 R2 Standard More... Symptoms. Windows Server 2012 R2-based server restarts unexpectedly, and you may find the following events in Event Viewer: Event ID 1015:

Symptoms. On a domain controller that is running Microsoft Windows Server 2003, the Local Security Authentication Server (Lsass.exe) process may stop responding if the following conditions are true: You have many external trusts and many simultaneous logon requests. These logon requests do not specify the domain name.

When you use the Centralized Certificate Store feature, a memory leak occurs in the Local Security Authority Subsystem Service (Lsass.exe) during a high Secure Sockets Layer (SSL) workload in Windows Server 2012 R2 or Windows Server 2012. Resolution. To resolve this issue, we have released a hotfix.

After you enable Basic Authentication mode for Microsoft SQL Server 2016 or 2017 Reporting Services (SSRS), you find that memory usage keeps growing, and this finally causes a memory spike in the LSASS.EXE process. Resolution. This issue is fixed in the following cumulative updates for SQL Server: Cumulative Update 1 for SQL Server 2017

File Information. File hash information. File information. Resolves a vulnerability in Windows that could allow denial of service attacks by changing the way that LSASS handles specially crafted authentication requests.

This issue occurs because the computer does not handle the incoming LDAP requests correctly in certain situations under heavy LDAP traffic. This causes the failure in the NTDSATQ.dll module that crashes the Lsass.exe process. Resolution Hotfix information. A supported hotfix is available from Microsoft.

Memory leak occurs in the Lsass.exe process on a domain controller that is running Windows Server 2008 R2 - Microsoft Support. Windows Server 2008 R2 Enterprise Windows Server 2008 R2 Datacenter More... Symptoms. Consider the following scenario:

In this scenario, the Lsass.exe process that is running on the helper domain controller crashes occasionally. Resolution. To resolve this issue in Windows 2012 R2, install update rollup 2975719. For more information, click the following article number to view the article in the Microsoft Knowledge Base:

Domain controllers restart unexpectedly and the Lsass.exe process crashes in Windows Server 2012 R2 - Microsoft Support. Windows Server 2012 R2 Datacenter Windows Server 2012 R2 Standard More... This article describes an issue in which Windows Server 2012 R2-based domain controllers restart unexpectedly. A hotfix is available to resolve this issue.