Fixing KB5034441 Error 0x80070643: WinRE Partition Resize

LIMEHAWK - Managed IT

KB5034441 Error 0x80070643 Fix — automation

date	Jan 15, 2024
status	RESOLVED
affected	312 of 347 endpoints (90%)

Incident

January 2024 Patch Tuesday. RMM dashboard lit up: 312 of 347 managed endpoints showing KB5034441 installation failure with error 0x80070643. Critical WinRE security fix - couldn't ignore it. Microsoft's official solution: 15-step manual diskpart process. Needed something that scaled.

Problem

CBS log revealed: "WinRE servicing failed, Not enough space."

affected	312 of 347 endpoints (90%)
error code	0x80070643 (generic failure)
real cause	WinRE partition too small
pattern	Dell/HP shipped 2020-2022

OEMs created 500MB recovery partitions for years. WinRE image grew to ~450MB. No room to stage the new image.

Microsoft's "Solution"

KB5028997 with manual remediation: 15-step diskpart process.

open elevated cmd

reagentc /disable

diskpart, select disk, list partitions...

delete recovery, shrink OS by 250MB...

create new partition, format, GPT attributes...

reagentc /enable

verify, pray, repeat 311 more times...

at 15 min/machine

78 hours of manual work

one wrong diskpart command = rebuild OS

Solution

Automated the entire partition resize process. Queries disk layout, backs up existing WinRE, shrinks OS partition by 250MB, extends recovery, re-enables WinRE.

How It Works

1. pre-flight checks	WinRE enabled, GPT/MBR, locate
2. space check	if 250MB+ free, exits cleanly
3. backup	copy WinRE to C:\winre_backup
4. disable WinRE	release locks for modification
5. resize	shrink C: by 250MB, extend recovery
6. re-enable	reagentc /enable

Safety: Won't proceed if WinRE already disabled (existing corruption) or if less than 250MB free on C:.

Outcome

remediated	297 / 312 (95% success)
time saved	~74 hours vs manual
compliance restored	97% within 48 hours

15 failures were edge cases: 8 WinRE already disabled, 4 MBR disks, 3 full C: drives. Those handled manually.

MS "manual remediation" guides don't scale

OEM partitions from 2020-2022 are undersized

pre-scan for WinRE partition size catches this early

we now run this proactively on new client onboarding

Get Help

Dealing with fleet-wide update failures? We automate complex Windows remediation.