Today is Patch Tuesday, the second Tuesday of the month, when Microsoft releases new cumulative updates for all supported versions of Windows 10. That includes all versions except for the first feature update, version 1511.
If you're on the Windows 10 May 2019 Update, or version 1903, you'll get KB4507453, bringing the build number to 18362.239. You can manually download it here. This month's changelog is broken down into highlights and fixes. Here are the highlights:
Updates an issue with a tilted world some Mixed Reality users may see after connecting their headsets.
Updates the visual quality issues some users may have when using Windows Mixed Reality (WMR) headsets with SteamVR content.
Updates an issue with BitLocker encryption recovery mode.
Updates to improve security when using Internet Explorer, Microsoft Edge, wireless technologies, and Microsoft Office products.
Here's what got fixed:
- Addresses an issue that may cause BitLocker to go into recovery mode if BitLocker is being provisioned at the same time as updates are being installed.
Addresses an issue that may cause Mixed Reality users to see a tilted world after connecting their headsets.
Addresses visual quality issues some users may have seen with Windows Mixed Reality (WMR) headsets and Steam®VR content.
Security updates to Windows Wireless Networking, Microsoft Scripting Engine, Windows Server, Windows Storage and Filesystems, Windows Kernel, Microsoft HoloLens, Internet Explorer, Windows Input and Composition, Windows Virtualization, Windows App Platform and Frameworks, Microsoft Graphics Component, Microsoft Edge, and Windows Cryptography.
Also, there are a few known issues to be aware of:
| Symptom | Workaround |
|---|---|
| Windows Sandbox may fail to start with "ERROR_FILE_NOT_FOUND (0x80070002)" on devices in which the operating system language is changed during the update process when installing Windows 10, version 1903. | Microsoft is working on a resolution and will provide an update in an upcoming release. |
|
The Remote Access Connection Manager (RASMAN) service may stop working and you may receive the error “0xc0000005” on devices where the diagnostic data level is manually configured to the non-default setting of 0. You may also receive an error in the Application section of Windows Logs in Event Viewer with Event ID 1000 referencing “svchost.exe_RasMan” and “rasman.dll”. This issue only occurs when a VPN profile is configured as an Always On VPN (AOVPN) connection with or without device tunnel. This does not affect manual only VPN profiles or connections. |
To mitigate this issue, use one of the steps below, either the group policy step or the registry step, to configure one of the default telemetry settings. Set the value for the following group policy settings:
Or set the following registry value: SubKey: HKEY_LOCAL_MACHINE\SOFTWARE\ Policies\Microsoft\Windows\DataCollection Setting: AllowTelemetry Type: REG_DWORD Value: 1, 2 or 3 Note If the Remote Access Connection Manager service is not running after setting the Group Policy or registry key, you will need to manually start the service or restart the device. We are working on a resolution and estimate a solution will be available in late July. |
|
After installing this update, opening or using the Window-Eyes screen reader app may result in an error and some features may not function as expected. Note Users who have already migrated from Window-Eyes to Freedom Scientific's other screen reader, JAWS, should not be affected by this issue. |
We are working on a resolution and will provide an update in an upcoming release. |
If you're still on the Windows 10 October 2018 Update, or version 1809, you'll get KB4507469, bringing the build number to 17763.615. You can manually download it here, and these are the highlights:
Updates an issue with BitLocker encryption recovery mode.
Updates an issue that may cause the system to become unresponsive when an application uses the CameraCaptureUI API.
Updates to improve security when using Internet Explorer, Microsoft Edge, wireless technologies, and Microsoft Office products.
Here's what got fixed:
- Addresses an issue that may cause the system to become unresponsive when an application uses the CameraCaptureUI API.
Addresses an issue that may cause BitLocker to go into recovery mode if BitLocker is being provisioned at the same time as updates are being installed.
Security updates to Windows Server, Microsoft Scripting Engine, Microsoft Graphics Component, Internet Explorer, Windows Input and Composition, Windows Virtualization, Windows App Platform and Frameworks, Windows Kernel, Microsoft Edge, Windows Cryptography, and Windows Fundamentals.
These are the known issues:
| Symptom | Workaround |
|---|---|
| Certain operations, such as rename, that you perform on files or folders that are on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”. This occurs when you perform the operation on a CSV owner node from a process that doesn’t have administrator privilege. |
Do one of the following:
|
| After installing KB4493509, devices with some Asian language packs installed may receive the error, "0x800f0982 - PSFX_E_MATCHING_COMPONENT_NOT_FOUND." |
Note If reinstalling the language pack does not mitigate the issue, reset your PC as follows:
Microsoft is working on a resolution and will provide an update in an upcoming release. |
| We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates. |
To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally. We are working on a resolution and will provide an update in an upcoming release. |
|
After installing this update, opening or using the Window-Eyes screen reader app may result in an error and some features may not function as expected. Note Users who have already migrated from Window-Eyes to Freedom Scientific's other screen reader, JAWS, should not be affected by this issue. |
We are working on a resolution and will provide an update in an upcoming release. |
For those on the Windows 10 April 2018 Update, or version 1803, you'll get KB4507435, bringing the build number to 17134.885. You can manually download it here, and these are the highlights:
Updates an issue with BitLocker encryption recovery mode.
Updates to improve security when using Internet Explorer, Microsoft Edge, wireless technologies, and Microsoft Office products.
Here's what got fixed:
- Addresses an issue that may cause BitLocker to go into recovery mode if BitLocker is being provisioned at the same time as updates are being installed.
Security updates to Windows Wireless Networking, Windows Server, Microsoft Scripting Engine, Windows Storage and Filesystems, Microsoft Graphics Component, Windows Kernel, Internet Explorer, Windows Input and Composition, Windows Virtualization, Windows App Platform and Frameworks, Microsoft Edge, Windows Cryptography, and Windows Fundamentals.
These are the known issues:
| Symptom | Workaround |
|---|---|
| Certain operations, such as rename, that you perform on files or folders that are on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”. This occurs when you perform the operation on a CSV owner node from a process that doesn’t have administrator privilege. |
Do one of the following:
|
| We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates. |
To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally. We are working on a resolution and will provide an update in an upcoming release. |
|
To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally. We are working on a resolution and will provide an update in an upcoming release. |
We are working on a resolution and will provide an update in an upcoming release. |
If you're still on the Windows 10 Fall Creators Update, or version 1709, you'll get KB4507455, bringing the build number to 16299.1268. You can manually download it here. This version is only supported by Enterprise and Education SKUs. Here are the highlights:
Updates an issue with BitLocker encryption recovery mode.
Updates to improve security when using Internet Explorer, Microsoft Edge, wireless technologies, and Microsoft Office products.
Here's what got fixed:
- Addresses an issue that may cause BitLocker to go into recovery mode if BitLocker is being provisioned at the same time as updates are being installed.
Security updates to Windows Wireless Networking, Windows Server, Microsoft Scripting Engine, Windows Storage and Filesystems, Microsoft Graphics Component, Internet Explorer, Windows Input and Composition, Windows Virtualization, Windows App Platform and Frameworks, Windows Fundamentals, Windows Kernel, Microsoft Edge, and Windows Cryptography.
These are the known issues:
| Symptom | Workaround |
|---|---|
| Certain operations, such as rename, that you perform on files or folders that are on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”. This occurs when you perform the operation on a CSV owner node from a process that doesn’t have administrator privilege. |
Do one of the following:
|
|
After installing this update, opening or using the Window-Eyes screen reader app may result in an error and some features may not function as expected. Note Users who have already migrated from Window-Eyes to Freedom Scientific's other screen reader, JAWS, should not be affected by this issue. |
We are working on a resolution and will provide an update in an upcoming release. |
Those on the Windows 10 Creators Update, or version 1703, will get KB4507450, bringing the build number to 15063.1928. You can manually download it here, and these are the highlights:
Updates an issue with BitLocker encryption recovery mode.
Updates to improve security when using Internet Explorer, Microsoft Edge, wireless technologies, and Microsoft Office products.
These are the fixes:
- Addresses an issue that may cause BitLocker to go into recovery mode if BitLocker is being provisioned at the same time as updates are being installed.
Addresses an issue that may cause some devices with Hyper-V enabled to enter BitLocker recovery mode and receive the error, "0xC0210000".
Security updates to Windows Server, Microsoft Scripting Engine, Windows Storage and Filesystems, Microsoft Graphics Component, Windows Input and Composition, Windows Virtualization, Windows App Platform and Frameworks, Windows Kernel, Internet Explorer, and Microsoft Edge.
It has the same known issues as the update for version 1709.
Next up is the Windows 10 Anniversary Update, or version 1607. This is only supported in the Long-Term Servicing Channel, and for Windows Server 2016 customers. Those users will get KB4507460, bringing the build number to 14393.3085. You can manually download it here, and these are the highlights:
Updates an issue with BitLocker encryption recovery mode.
Updates to improve security when using Internet Explorer, Microsoft Edge, wireless technologies, and Microsoft Office products.
Here's what got fixed:
- Addresses an issue that may cause BitLocker to go into recovery mode if BitLocker is being provisioned at the same time as updates are being installed.
Addresses an issue that may cause some devices with Hyper-V enabled to enter BitLocker recovery mode and receive the error, "0xC0210000".
Security updates to Windows Wireless Networking, Windows Server, Microsoft Scripting Engine, Windows Storage and Filesystems, Microsoft Graphics Component, Internet Explorer, Windows Input and Composition, Windows Virtualization, Windows App Platform and Frameworks, Windows Kernel, Microsoft Edge, and Windows Cryptography.
There are several known issues:
| Symptom | Workaround |
|---|---|
|
For hosts managed by System Center Virtual Machine Manager (SCVMM), SCVMM cannot enumerate and manage logical switches deployed on the host after installing the update. Additionally, if you do not follow the best practices, a stop error may occur in vfpext.sys on the hosts. |
|
| After installing KB4467684, the cluster service may fail to start with the error “2245 (NERR_PasswordTooShort)” if the group policy “Minimum Password Length” is configured with greater than 14 characters. |
Set the domain default "Minimum Password Length" policy to less than or equal to 14 characters. Microsoft is working on a resolution and will provide an update in an upcoming release. |
| Certain operations, such as rename, that you perform on files or folders that are on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”. This occurs when you perform the operation on a CSV owner node from a process that doesn’t have administrator privilege. |
Do one of the following:
|
| Some applications may fail to run as expected on clients of Active Directory Federation Services 2016 (AD FS 2016) after installation of this update on the server. Applications that may exhibit this behavior use an IFRAME during non-interactive authentication requests and receive X-Frame Options set to DENY. |
You can use the Allow-From value of the header if the IFRAME is only accessing pages from a single-origin URL. On the affected server, open a PowerShell window as an administrator and run the following command: set-AdfsResponseHeaders -SetHeaderName X-Frame-Options -SetHeaderValue "allow-from https://example.com" Microsoft is working on a resolution and will provide an update in an upcoming release. |
|
After installing this update, opening or using the Window-Eyes screen reader app may result in an error and some features may not function as expected. Note Users who have already migrated from Window-Eyes to Freedom Scientific's other screen reader, JAWS, should not be affected by this issue. |
We are working on a resolution and will provide an update in an upcoming release. |
Finally, the original version of Windows 10 gets KB4507458, bringing the build number to 10240.18275. This is only supported for LTSC customers, and you can manually download the update here. Here are the highlights:
Updates an issue with BitLocker encryption recovery mode.
Updates to improve security when using Internet Explorer, Microsoft Edge, wireless technologies, and Microsoft Office products.
Here's what got fixed:
- Addresses an issue that may display the error, “MMC has detected an error in a snap-in and will unload it.” when you try to expand, view, or create Custom Views in Event Viewer. Additionally, the application may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs.
Addresses an issue that prevents the Calculator application from following the Gannen setting when it is enabled. For more information, see KB4469068.
Addresses an issue that may cause BitLocker to go into recovery mode if BitLocker is being provisioned at the same time as updates are being installed.
Security updates to Windows Server, Microsoft Scripting Engine, Windows Storage and Filesystems, Microsoft Graphics Component, Internet Explorer, Windows Kernel, Windows App Platform and Frameworks, Windows Input and Composition, and Microsoft Edge.
This one has the same known issues as the updates for versions 1703 and 1709.
As always, you can install these updates manually, you can check for updates through Windows Update, or they'll install automatically.
20 Comments - Add comment