Today is the second Tuesday of the month, and that can only mean one thing: it"s Patch Tuesday, or the day where Microsoft releases updates for all supported versions of Windows. In a blog post today, the company noted that it"s broadening the range of devices that will receive Spectre and Meltdown mitigations, as it"s removing the anti-virus compatibility check.
The Windows 10 cumulative updates that are available today are only for PCs, which is a bit out of character for Patch Tuesday. Usually, phones get some love too; however, last month, Microsoft waited an extra day, so we may see those updates tomorrow.
If you"re on the Windows 10 Fall Creators Update, or version 1709, you"ll see KB4088776, or build 16299.309. That can be manually downloaded here, and it contains the following fixes:
Addresses issue where Internet Explorer stops working when using F12-based developer tools.
Addresses issue with printing XML documents with Internet Explorer and Microsoft Edge.
Updates legacy Document Mode cell visibility in Internet Explorer.
Addresses issue with pinch and zoom gestures on some hardware in Internet Explorer.
Addresses issue where Internet Explorer is unresponsive in certain scenarios when a Browser Helper Object is installed.
Addresses issue to prevent media and other applications from becoming unresponsive or failing when upgrading graphics drivers.
Addresses issue where customers receive "Check your account, you don"t own this content” errors when attempting to play or install owned content. This issue can also result in customers getting kicked out of a game in the middle of play.
Addresses issue where, after installing KB4056892,KB4073291, KB4058258, KB4077675, or KB4074588 on a server, you may not be able to access SMB shared files in directory junction points or volume mount points hosted on that server. The error is "ERROR_INVALID_REPARSE_DATA”. As a result, editing some group policies using GPMC or AGPM 4.0 may fail with the error "The data present in the reparse point buffer is invalid. (Exception from HRESULT: 0x80071128)".
Addresses issue where an AD FS server issue causes the WID AD FS database to become unusable after a restart. This might prevent the AD FS service from starting.
Addresses issue where, after installing KB4090913, the Mixed Reality Portal may fail to initialize. This results in an “SXXXXXXX-X” error or a “We couldn’t download the Windows Mixed Reality Software” message may appear after the software is successfully downloaded.
Lifts the Anti-Virus (AV) compatibility check to expand the number of Windows 10 devices that are offered cumulative Windows security updates. This includes cumulative Spectre and Meltdown protections for 32-Bit (x86) and 64-Bit (x64) versions of Windows, except the KB4078130 update that was offered to disable mitigation against Spectre Variant 2.
Addresses issue that only affects some versions of antivirus software and only applies to computers on which the antivirus ISV updated the ALLOW REGKEY.
Security updates to Internet Explorer, Microsoft Edge, Microsoft Scripting Engine, Windows Desktop Bridge, Windows Kernel, Windows Shell, Windows MSXML, Device Guard, Windows Hyper-V, Windows Installer, and the Microsoft Scripting Engine.
There"s also a known issue to be aware of:
Symptom | Workaround |
---|---|
Windows Update History reports that KB4054517 failed to install because of error 0x80070643. | Even though the update was successfully installed, Windows Update incorrectly reports that the update failed to install. Select Check for Updates to confirm that there are no additional updates available. You can also type About your PC in the search box on the taskbar to confirm that your device is using the expected OS build. Microsoft is working on a resolution and will provide an update in an upcoming release. |
If you"re still on Windows 10 version 1703, or the Creators Update, you"ll see KB4088782, which puts the build number at 15063.966, and can be manually downloaded here. Here"s what"s fixed:
Addresses issue with printing XML documents in Internet Explorer and Microsoft Edge.
Addresses issue where Internet Explorer stops working when using F12-based developer tools.
Updates legacy Document Mode cell visibility in Internet Explorer.
Addresses issue where Internet Explorer is unresponsive in certain scenarios when a Browser Helper Object is installed.
Addresses issue that causes online video playback to stop responding.
Addresses issue where, after installing KB4056891, KB4057144, or KB4074592 on a server, you may not be able to access SMB shared files in directory junction points or volume mount points hosted on that server. The error is "ERROR_INVALID_REPARSE_DATA”. As a result, editing some group policies using GPMC or AGPM 4.0 may fail with the error "The data present in the reparse point buffer is invalid. (Exception from HRESULT: 0x80071128)".
Lifts the Anti-Virus (AV) compatibility check to expand the number of Windows 10 devices that are offered cumulative Windows security updates. This includes cumulative Spectre and Meltdown protections for 32-Bit (x86) and 64-Bit (x64) versions of Windows, except the KB4078130 update that was offered to disable mitigation against Spectre Variant 2.
Addresses issue that only affects some versions of antivirus software and only applies to computers on which the antivirus ISV updated the ALLOW REGKEY.
Security updates to Internet Explorer, Microsoft Edge, Microsoft Scripting Engine, Windows Desktop Bridge, Microsoft Graphics component, Windows Kernel, Windows Shell, Windows MSXML, Windows Installer, and Windows Hyper-V.
There are no known issues with build 15063.966, or with any of the other updates below.
Those still on the Windows 10 Anniversary Update, or version 1607, will get KB4088787, which puts the build number at 14393.2125. That can be manually downloaded here and it contains the following fixes:
Addresses issue with printing XML documents with Internet Explorer and Microsoft Edge.
Addresses issue where Internet Explorer stops working when using F12-based developer tools.
Updates legacy Document Mode cell visibility in Internet Explorer.
Addresses issue where Internet Explorer is unresponsive in certain scenarios when a Browser Helper Object is installed.
Addresses issue that causes online video playback to stop responding.
Addresses issue where an AD FS server issue causes the WID AD FS database to become unusable after a restart. This might prevent the AD FS service from starting.
Lifts the Anti-Virus (AV) compatibility check to expand the number of Windows 10 devices that are offered cumulative Windows security updates. This includes cumulative Spectre and Meltdown protections for 32-Bit (x86) and 64-Bit (x64) versions of Windows, except the KB4078130 update that was offered to disable mitigation against Spectre Variant 2.
Addresses issue that only affects some versions of antivirus software and only applies to computers on which the antivirus ISV updated the ALLOW REGKEY.
Security updates to Internet Explorer, Microsoft Edge, Microsoft Scripting Engine, Microsoft Windows Search component, Windows Desktop Bridge, Microsoft Graphics component, Windows Kernel, Windows Shell, Windows MSXML, Windows Datacenter Networking, Windows Installer, and Windows Hyper-V.
KB4088779 is for PCs that are on Windows 10 version 1511, although if your PC is still on that version, you should certainly be taking steps to upgrade to something newer. The build number is 10586.1478. It can be manually downloaded here, and it contains the following fixes:
Addresses issue where Internet Explorer stops working when using F12-based developer tools.
Lifts the Anti-Virus (AV) compatibility check to expand the number of Windows 10 devices that are offered cumulative Windows security updates. This includes cumulative Spectre and Meltdown protections for 32-Bit (x86) and 64-Bit (x64) versions of Windows, except the KB4078130 update that was offered to disable mitigation against Spectre Variant 2.
Addresses issue that only affects some versions of antivirus software and only applies to computers on which the antivirus ISV updated the ALLOW REGKEY.
Security updates to Internet Explorer, Microsoft Edge, Microsoft Scripting Engine, Microsoft Graphics component, Windows Kernel, Windows Shell, Windows MSXML, Device Guard, Windows Installer, and Windows Hyper-V.
Finally, those on the original version of Windows 10, version 1507, get KB4088786, and that puts the build number at 10240.17797. It can be manually downloaded here, and it includes the following fixes:
Addresses issue with printing XML documents with Internet Explorer and Microsoft Edge.
Addresses issue with Internet Explorer and Microsoft Outlook integration.
Addresses issue where Internet Explorer stops working when using F12-based developer tools.
Updates legacy Document Mode cell visibility in Internet Explorer.
Addresses issue where Internet Explorer is unresponsive in certain scenarios when a Browser Helper Object is installed.
Addresses issue where files protected with the Encrypting File System (EFS) may become corrupted during BitLocker decryption or drive encryption.
Addresses issue where booting with Unified Write Filter (UWF) enabled may lead to stop error 0xE1 on embedded devices, particularly when using a USB hub.
Addresses issue where IoT devices may stop working because of an “unmountable_boot_volume” error when UWF is enabled.
Lifts the Anti-Virus (AV) compatibility check to expand the number of Windows 10 devices that are offered cumulative Windows security updates. This includes cumulative Spectre and Meltdown protections for 32-Bit (x86) and 64-Bit (x64) versions of Windows, except the KB4078130 update that was offered to disable mitigation against Spectre Variant 2.
Addresses issue that only affects some versions of antivirus software and only applies to computers on which the antivirus ISV updated the ALLOW REGKEY.
Security updates to Internet Explorer, Microsoft Edge, Microsoft Scripting Engine, Microsoft Graphics component, Windows Kernel, Windows Shell, Windows MSXML, Windows Installer, Device Guard, and Windows Hyper-V.
As usual, you don"t actually have to manually download and install any of these. If you head over to Settings -> Update & security -> Windows Update -> Check for update, it will automatically download and install the cumulative update that corresponds to your version of Windows 10.