We are currently having a big bug with our GPOs. When we modify or create a new GPO, the replication is successful instantly. However, when we edit a delegation or simply add a user in the Security Filtering (Scope), the replication stops and gives the following error:

The SysVol Permissions for one or more GPOs on this domain controller are not in sync with the permissions for the GPOs on the Baseline domain controller.

Then, the replication never work. When I call a DCDIAG or REPADMIN, it says:

Error issuing replication: 8453 (0x2105):
    Replication access was denied.

We have only 2 DCs, DC10 and DC100. The DC10 is the baseline.

When we reset the default delegation permissions on a GPO, the replication starts working again. This problem wasn't there before we did the updates of Windows Server 2012.