Today is Patch Tuesday, the second Tuesday of the month when Microsoft releases new updates for all supported versions of Windows 10. To be clear, that includes every version of the OS with the exception of version 1511.
If you're on the Windows 10 May 2019 Update, or version 1903, you'll get KB4515384, which brings the build number to 18362.356. You can manually download it here, and these are the highlights:
- Updates to improve security when using Internet Explorer, Microsoft Edge, networking technologies, and input devices such as a mouse, keyboard, or stylus.
- Updates for verifying user names and passwords.
- Updates for storing and managing files.
Here's the full list of fixes:
- Provides protections against a new subclass of speculative execution side-channel vulnerabilities, known as Microarchitectural Data Sampling, for 32-Bit (x86) versions of Windows (CVE-2019-11091, CVE-2018-12126, CVE-2018-12127, CVE-2018-12130). Use the registry settings as described in the Windows Client and Windows Server articles. (These registry settings are enabled by default for Windows Client OS editions and Windows Server OS editions.)
- Addresses an issue that causes high CPU usage from SearchUI.exe for a small number of users. This issue only occurs on devices that have disabled searching the web using Windows Desktop Search.
- Security updates to Microsoft Edge, Internet Explorer, Microsoft Scripting Engine, Windows App Platform and Frameworks, Windows Input and Composition, Windows Media, Windows Fundamentals, Windows Authentication, Windows Cryptography, Windows Datacenter Networking, Windows Storage and Filesystems, Windows Wireless Networking, the Microsoft JET Database Engine, Windows Kernel, Windows Virtualization, and Windows Server.
For those on the Windows 10 October 2018 Update, or version 1809, you'll get KB4512578, which brings the build number to 17763.737. You can manually download it here, and these are the highlights:
- Updates to improve security when using Internet Explorer, Microsoft Edge, and input devices such as a mouse, keyboard, or stylus.
- Updates for verifying user names and passwords.
Here's the full list of fixes:
- Provides protections against a new subclass of speculative execution side-channel vulnerabilities, known as Microarchitectural Data Sampling, for 32-Bit (x86) versions of Windows (CVE-2019-11091, CVE-2018-12126, CVE-2018-12127, CVE-2018-12130). Use the registry settings as described in the Windows Client and Windows Server articles. (These registry settings are enabled by default for Windows Client OS editions and Windows Server OS editions.)
- Security updates to Microsoft Edge, Internet Explorer, Microsoft Scripting Engine, Windows App Platform and Frameworks, Windows Input and Composition, Windows Fundamentals, Windows Authentication, Windows Cryptography, the Microsoft JET Database Engine, Windows Kernel, Windows Virtualization, and Windows Server.
This update also has a series of known issues to be aware of:
| Symptom | Workaround |
|---|---|
| Certain operations, such as rename, that you perform on files or folders that are on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”. This occurs when you perform the operation on a CSV owner node from a process that doesn’t have administrator privilege. |
Do one of the following:
|
| After installing KB4493509, devices with some Asian language packs installed may receive the error, "0x800f0982 - PSFX_E_MATCHING_ COMPONENT_NOT_FOUND." |
Note If reinstalling the language pack does not mitigate the issue, reset your PC as follows:
Microsoft is working on a resolution and will provide an update in an upcoming release. |
| We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates. |
To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally. We are working on a resolution and will provide an update in an upcoming release. |
| Applications and scripts that call the NetQueryDisplayInformation API or the WinNT provider equivalent may fail to return results after the first page of data, often 50 or 100 entries. When requesting additional pages you may receive the error, “1359: an internal error occurred.” This issue occurs in this update and in all the updates before June 18, 2019. | We are working on a resolution and will provide an update in an upcoming release. |
For those still on the Windows 10 April 2018 Update, or version 1803, you'll get KB4516058, bringing the build number to 17134.1006. You can manually download it here, and these are the highlights:
- Updates to improve security when using Internet Explorer, Microsoft Edge, and input devices such as a mouse, keyboard, or stylus.
- Updates for verifying user names and passwords.
- Updates for storing and managing files.
Here's the full list of fixes:
- Provides protections against a new subclass of speculative execution side-channel vulnerabilities, known as Microarchitectural Data Sampling, for 32-Bit (x86) versions of Windows (CVE-2019-11091, CVE-2018-12126, CVE-2018-12127, CVE-2018-12130). Use the registry settings as described in the Windows Client and Windows Server articles. (These registry settings are enabled by default for Windows Client OS editions and Windows Server OS editions.)
- Security updates to Internet Explorer, Microsoft Scripting Engine, Windows App Platform and Frameworks, Windows Input and Composition, Windows Media, Windows Fundamentals, Windows Authentication, Windows Cryptography, Windows Datacenter Networking, Windows Storage and Filesystems, the Microsoft JET Database Engine, Windows Kernel, Windows Virtualization, Windows Server, and Microsoft Edge.
This update only has two known issues:
| Symptom | Workaround |
|---|---|
| Certain operations, such as rename, that you perform on files or folders that are on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”. This occurs when you perform the operation on a CSV owner node from a process that doesn’t have administrator privilege. |
Do one of the following:
|
| We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates. |
To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally. We are working on a resolution and will provide an update in an upcoming release. |
The Windows 10 Fall Creators Update, or version 1709, is only supported for Windows 10 Enterprise and Education users. Those PCs will get KB4516066, bringing the build number to 16299.1387. You can manually download it here, and these are the highlights:
- Updates to improve security when using Internet Explorer, networking technologies, and input devices such as a mouse, keyboard, or stylus.
- Updates for verifying user names and passwords.
- Updates for storing and managing files.
Here's thew full list of fixes:
- Provides protections against a new subclass of speculative execution side-channel vulnerabilities, known as Microarchitectural Data Sampling, for 32-Bit (x86) versions of Windows (CVE-2019-11091, CVE-2018-12126, CVE-2018-12127, CVE-2018-12130). Use the registry settings as described in the Windows Client article. (These registry settings are enabled by default for Windows Client OS editions.)
- Security updates to Internet Explorer, Microsoft Scripting Engine, Windows App Platform and Frameworks, Windows Input and Composition, Windows Media, Windows Fundamentals, Windows Authentication, Windows Datacenter Networking, Windows Storage and Filesystems, the Microsoft JET Database Engine, Windows Kernel, Windows Virtualization, and Windows Server.
This one only has one known issue:
| Symptom | Workaround |
|---|---|
| Certain operations, such as rename, that you perform on files or folders that are on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”. This occurs when you perform the operation on a CSV owner node from a process that doesn’t have administrator privilege. |
Do one of the following:
|
The Windows 10 Creators Update, or version 1703, has the same support status as version 1709. Those PCs will get KB4516068, bringing the build number to 15063.2045. You can manually download it here, and it has the exact same changelog as KB4516066.
The Windows 10 Anniversary Update, or version 1607, is only supported for Windows Server 2016 users and LTSC customers. Those users will get KB4516044, bringing the build number to 14393.3204. You can manually download it here, and these are the highlights:
- Updates to improve security when using Internet Explorer, networking technologies, and input devices such as a mouse, keyboard, or stylus.
- Updates for verifying user names and passwords.
- Updates for storing and managing files.
Here's the full list of fixes:
- Provides protections against a new subclass of speculative execution side-channel vulnerabilities, known as Microarchitectural Data Sampling, for 32-Bit (x86) versions of Windows (CVE-2019-11091, CVE-2018-12126, CVE-2018-12127, CVE-2018-12130). Use the registry settings as described in the Windows Client and Windows Server articles. (These registry settings are enabled by default for Windows Client OS editions and Windows Server OS editions.)
- Addresses an issue with applications and scripts that call the NetQueryDisplayInformation API or the WinNT provider equivalent. They may fail to return results after the first page of data, often 50 or 100 entries. When requesting additional pages, you may receive the error, “1359: an internal error occurred.”
- Security updates to the Microsoft Scripting Engine, Internet Explorer, Windows App Platform and Frameworks, Windows Input and Composition, Windows Media, Windows Fundamentals, Windows Authentication, Windows Datacenter Networking, Windows Virtualization, Windows Storage and Filesystems, Windows Wireless Networking, the Microsoft JET Database Engine, Windows Kernel, and Windows Server .
This update has two known issues to be aware of:
| Symptom | Workaround |
|---|---|
| After installing KB4467684, the cluster service may fail to start with the error “2245 (NERR_PasswordTooShort)” if the group policy “Minimum Password Length” is configured with greater than 14 characters. |
Set the domain default "Minimum Password Length" policy to less than or equal to 14 characters. Microsoft is working on a resolution and will provide an update in an upcoming release. |
| Certain operations, such as rename, that you perform on files or folders that are on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”. This occurs when you perform the operation on a CSV owner node from a process that doesn’t have administrator privilege. |
Do one of the following:
|
Finally, those on the original version of Windows 10 are only supported on the LTSC. Those users will get KB4516070, bringing the build number to 10240.18333. You can manually download it here, and it has the exact same changelog as the updates for versions 1703 and 1709.
_small.jpg)
_small.jpg)
8 Comments - Add comment