Patch Tuesday was just one week ago, but Microsoft has been facing some issues with recent cumulative updates for Windows 10, so it has released a handful of new fixes. Today's cumulative updates target Windows 10 versions from 1607 to 1809, excluding the now-unsupported version 1703.
Starting with users on Windows 10 version 1809, or the October 2018 Update, you'll be getting KB4520062, which can be downloaded manually here. It brings the build number up to 17763.832, and includes the following fixes:
- Prevents the appearance of blank tiles in the Start menu when you upgrade to Windows 10, version 1809 from any previous version of Windows 10. These blank tiles have names such as “ms-resource:AppName” or "ms-resource:appDisplayName". However, if you have already upgraded to Windows 10, version 1809, installing this update will not remove existing blank tiles.
- Addresses an issue that causes the power consumption for a device in Connected Standby mode to be high.
- Addresses an issue that prevents users from reconnecting or signing in to Windows Virtual Desktops because of orphaned database handles from a previous user session.
- Updates time zone information for Norfolk Island, Australia.
- Updates time zone information for the Fiji Islands.
- Addresses an issue that fails to index Microsoft Outlook items properly, which causes incomplete results in the search query on Windows Virtual Desktops.
- Addresses an issue that causes Windows Machine Learning (WinML) to throw an unhandled exception when a graphics driver times out.
- Addresses an issue that might prevent a scroll bar from being selected when an ActiveX control implements the CScrollView class. This occurs if you move the Internet Explorer window, which then moves the scroll bar to the left.
- Improves an access control list (ACL) check for Known Folders to prevent a black screen that appears the first time a user signs in after installing a feature or quality update.
- Addresses an issue that causes Microsoft SharePoint file names to appear incorrectly in the Quick access and Recent items folders.
- Addresses an issue with Bluetooth that occurs when using certain audio profiles for extended periods.
- Addresses an issue that causes a query request of the Win32_LogonSession class for the StartTime to display the value of the epoch (for example, 1-1-1601 1:00:00) instead of the actual logon time.
- Addresses an issue with diagnostic data processing when a device has the Diagnostic data setting enabled and set to Basic.
- Addresses an issue with evaluating the compatibility status of the Windows ecosystem to help ensure application and device compatibility for all updates to Windows.
- Addresses an issue that prevents netdom.exe from displaying the new ticket-granting ticket (TGT) delegation bit for the display or query mode.
- Addresses an issue in which Microsoft AppLocker might prevent an application from running or log a false positive error instead of running the application.
- Addresses an issue that causes the Windows Defender Application Control (WDAC) policy to become too restrictive when you enable the WDAC Group Policy setting for Script Enforcement or Constrained Language Mode.
- Addresses an issue that fails to include the full file hash as part of the Event Log entry during auditing events for WDAC.
- Addresses an issue that may cause high CPU usage when many windows are open and Background Application Manager runs a periodic background scan. Additionally, the desktop may become unresponsive. To turn off this scan, set the following registry key:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\BamThrottling
Name: DisableWindowHinting
Type: REG_DWORD
Value: 1- Addresses an issue that causes applications that utilize change notifications on named pipes to have a kernel mode memory leak of input and output (I/O) Request Packet (IRP) objects.
- Addresses an issue that prevents users from opening the print dialog in Internet Explorer to print a webpage.
- Adds support to allow removable drives and assigned access restrictions.
- Addresses an issue that causes printing from 32-bit applications to fail with an “Access is denied” error when you select Run as different user for the application.
- Addresses an issue that might cause error 0x1E, 0xA, or 0x50 to occur during a block cloning operation on an Resilient File System (ReFS) volume because of a race condition.
- Addresses an Offline Files Shell graphical user interface (GUI) issue about online and offline indicators.
- Addresses an issue that causes the Settings app to stop working when you change a Theme.
- Addresses a reliability issue in Windows Server 2019 Hyper-V Host Clusters that are managed using System Center Virtual Machine Manager (SCVMM).
- Addresses an issue with Lightweight Directory Access Protocol (LDAP) queries that have a “memberof” expression in the filter. The queries fail with the error, “000020E6: SvcErr: DSID-0314072D, problem 5012 (DIR_ERROR), data 8996”.
- Addresses an issue that causes all Transmission Control Protocol (TCP) dynamic ports to be consumed. As a result, network communications will fail for any protocol or operation using dynamic ports.
- Addresses an issue with applications and scripts that call the NetQueryDisplayInformation API or the WinNT provider equivalent. They may fail to return results after the first page of data, often 50 or 100 entries. When requesting additional pages, you may receive the error, “1359: an internal error occurred.”
- Addresses an issue that prevents Computer objects from being added to local groups using the Group Policy Preference “Local Users and Groups”. The Group Policy Editor returns the error message, “The object selected does not match the type of destination source. Select again.”
- Addresses an issue with a race condition between the volume mount process (within fileinfo.sys) and the deregistration of filter notifications that causes the operating system to stop working on certain virtual machines. The error code is “0x7E.”
- Addresses an issue in which an Active Directory Federation Services (AD FS) certificate is renewed and published by default each year. However, the client does not use them, which results in an authentication error.
- Addresses an issue in which files that are stored in a Cluster Shared Volume (CSV) with an alternate data stream are still present after you try to delete them. You may also receive an "access is denied" message on the next try to access or delete the files.
- Addresses an issue that may cause error 0x50 to occur when a backup operation is being performed.
Despite the long list of fixes, this release still has a handful of known issues. Here's what you need to be aware of:
Symptom | Workaround |
---|---|
Certain operations, such as rename, that you perform on files or folders that are on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”. This occurs when you perform the operation on a CSV owner node from a process that doesn’t have administrator privilege. |
Do one of the following:
|
After installing KB4493509, devices with some Asian language packs installed may receive the error, "0x800f0982 - PSFX_E_MATCHING_COMPONENT_NOT_FOUND." |
Note If reinstalling the language pack does not mitigate the issue, reset your PC as follows:
Microsoft is working on a resolution and will provide an update in an upcoming release. |
After installing this update, Windows Mixed Reality Portal users may intermittently receive a “15-5” error code. In some cases, Windows Mixed Reality Portal may report that the headset is sleeping and pressing “Wake up” may appear to produce no action. |
To mitigate the issue, use the following steps:
We are working on a resolution and will provide an update in an upcoming release. |
For users still running Windows 10 version 1803, you'll get KB4519978, which can be manually downloaded here. That brings the build number up to 17134.1099 and it includes the following fixes:
- Addresses an issue that causes a device to repeatedly go into the Windows Out Of Box Experience (OOBE) restart loop in certain situations.
- Updates time zone information for Norfolk Island, Australia.
- Updates time zone information for the Fiji Islands.
- Addresses an issue that may prevent a scroll bar from being selected when an ActiveX control implements the CScrollView class. This occurs if you move the Internet Explorer window, which then moves the scroll bar to the left.
- Addresses an issue with MSCTF.dll that causes an application to stop working.
- Improves an access control list (ACL) check for Known Folders to prevent a black screen that appears the first time a user signs in after installing a feature or quality update.
- Addresses an issue with Bluetooth when using certain audio profiles for extended periods.
- Addresses an issue that fails to include the full file hash as part of the Event Log entry during auditing events for Windows Defender Application Control (WDAC).
- Addresses an issue in which Microsoft AppLocker may prevent an application from running or log a false positive error instead of running the application.
- Addresses an issue that causes a system to stop working during the Windows upgrade process. The Stop error “SYSTEM_THREAD_EXCEPTION_NOT_HANDLED (7e)” appears in the Transmission Control Protocol/Internet Protocol (TCPIP).
- Addresses an issue that causes the WDAC policy to become too restrictive when you enable the WDAC Group Policy setting for Script Enforcement or Constrained Language Mode.
- Addresses an issue that prevents netdom.exe from displaying the new ticket-granting ticket (TGT) delegation bit for the display or query mode.
- Addresses an issue that may cause high CPU usage when many windows are open and Background Application Manager runs a periodic background scan. Additionally, the desktop may become unresponsive. To turn off this scan, set the following registry key:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\BamThrottling
Name: DisableWindowHinting
Type: REG_DWORD
Value: 1- Addresses an issue that causes printing from 32-bit applications to fail with an “Access is denied” error when you select Run as different user for the application.
- Addresses an issue that sometimes causes the Resilient File System (ReFS) to stop working.
- Addresses an issue with evaluating the compatibility status of the Windows ecosystem to help ensure application and device compatibility for all updates to Windows.
- Addresses an issue with a race condition between the volume mount process (within fileinfo.sys) and the deregistration of filter notifications that causes the operating system to stop working on certain virtual machines. The error code is “0x7E.”
The known issues in this release are the same as the update above, minus the one affecting Asian language packs.
For users on Windows 10 version 1709, the update is KB4520006, and it can be downloaded manually here. It brings the build number up to 16299.1481 and includes the following fixes:
- Updates time zone information for Norfolk Island, Australia.
- Updates time zone information for the Fiji Islands.
- Addresses an issue that causes a query request of the Win32_LogonSession class for the StartTime to display the value of the epoch (for example, 1-1-1601 1:00:00) instead of the actual logon time.
- Addresses an issue that causes a system to stop working during the Windows upgrade process. The Stop error “SYSTEM_THREAD_EXCEPTION_NOT_HANDLED (7e)” appears in the Transmission Control Protocol/Internet Protocol (TCPIP).
- Addresses an issue that prevents the BitLocker recovery key from being successfully backed up to Azure Active Directory.
- Addresses an issue that fails to include the full file hash as part of the Event Log entry during auditing events for Windows Defender Application Control (WDAC).
- Addresses an issue in which Microsoft AppLocker may prevent an application from running or log a false positive error instead of running the application.
- Addresses an issue that causes the WDAC policy to become too restrictive when you enable the WDAC Group Policy setting for Script Enforcement or Constrained Language Mode.
- Addresses an issue that prevents netdom.exe from displaying the new ticket-granting ticket (TGT) delegation bit for the display or query mode.
- Addresses an issue that may cause high CPU usage when many windows are open and Background Application Manager runs a periodic background scan. Additionally, the desktop may become unresponsive. To turn off this scan, set the following registry key:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\BamThrottling
Name: DisableWindowHinting
Type: REG_DWORD
Value: 1- Addresses an issue that sometimes causes the Resilient File System (ReFS) to stop working.
- Addresses an issue with evaluating the compatibility status of the Windows ecosystem to help ensure application and device compatibility for all updates to Windows.
- Addresses an issue with a race condition between the volume mount process (within fileinfo.sys) and the deregistration of filter notifications that causes the operating system to stop working on certain virtual machines. The error code is “0x7E.”
For this version, the only known issue is the first one mentioned for the two updates above.
Finally, users still running the Windows 10 Anniversary Update, or version 1607, in the Long-Term Servicing Channel will get KB4519979, which can be manually downloaded here. It brings the build number up to 14393.3300 and it includes the following fixes:
- Updates time zone information for Norfolk Island, Australia.
- Updates time zone information for the Fiji Islands.
- Addresses an issue that may cause a tablet’s screen to rotate unexpectedly.
- Addresses an issue that may cause an application window to flicker when running the application using RemoteApp. Additionally, DWM.exe may stop working on the session host.
- Addresses an issue that prevents Computer objects from being added to local groups using the Group Policy Preference “Local Users and Groups”. The Group Policy Editor returns the error message, “The object selected does not match the type of destination source. Select again.”
- Addresses an issue that causes a query request of the Win32_LogonSession class for the StartTime to display the value of the epoch (for example, 1-1-1601 1:00:00) instead of the actual logon time.
- Addresses an issue that prevents an App-V application from opening and displays a network failure error. This issue occurs under certain circumstances, such as when a system's battery is low or there is an unexpected power failure.
- Addresses an issue in which Microsoft AppLocker may prevent an application from running or log a false positive error instead of running the application.
- Addresses an issue that fails to include the full file hash as part of the Event Log entry during auditing events for Windows Defender Application Control (WDAC).
- Addresses an issue that causes a system to stop working during the Windows upgrade process. The Stop error “SYSTEM_THREAD_EXCEPTION_NOT_HANDLED (7e)” appears in the Transmission Control Protocol/Internet Protocol (TCPIP).
- Addresses an issue that prevents netdom.exe from displaying the new ticket-granting ticket (TGT) delegation bit for the display or query mode.
- Addresses an issue that causes high CPU usage when retrieving session objects.
- Addresses an issue that causes applications that utilize change notifications on named pipes to have a kernel mode memory leak of input and output (I/O) Request Packet (IRP) objects.
- Addresses an issue that causes Windows to become unresponsive when software attempts to interact with the mount manager while the mount manager is performing certain operations.
- Addresses an issue that might cause error 0x1E, 0xA, or 0x50 to occur during a block cloning operation on an Resilient File System (ReFS) volume because of a race condition.
- Addresses an intermittent issue in Active Directory Federation Services (AD FS) that fails to authenticate users. Additionally, AD FS redirects the browser back to the Microsoft Exchange Client Access services (CAS) with the wrong Audience uniform resource identifier (URI). Specifically, AD FS appends a slash to the Audience URI. Users see an error page and cannot access the Outlook Web App (OWA).
- Addresses an issue with Lightweight Directory Access Protocol (LDAP) queries that have a “memberof” expression in the filter. The queries fail with the error, “000020E6: SvcErr: DSID-0314072D, problem 5012 (DIR_ERROR), data 8996”.
- Addresses an issue with evaluating the compatibility status of the Windows ecosystem to help ensure application and device compatibility for all updates to Windows.
- Addresses an issue that prevents users from reducing the size of a window in some cases.
- Addresses an issue with a race condition between the volume mount process (within fileinfo.sys) and the deregistration of filter notifications that causes the operating system to stop working on certain virtual machines. The error code is “0x7E.”
- Addresses an issue in which files that are stored in a Cluster Shared Volume (CSV) with an alternate data stream are still present after you try to delete them. You may also receive an "access is denied" message on the next try to access or delete the files.
This update also has a couple of known issues, one of which is the same problem mentioned for all the updates above. Here's the other one:
Symptom | Workaround |
---|---|
After installing KB4467684, the cluster service may fail to start with the error “2245 (NERR_PasswordTooShort)” if the group policy “Minimum Password Length” is configured with greater than 14 characters. |
Set the domain default "Minimum Password Length" policy to less than or equal to 14 characters. Microsoft is working on a resolution and will provide an update in an upcoming release |
These updates won't be automatically installed on your device, but the included fixes will be rolled up into another cumulative update on the next Patch Tuesday. You can get still get them from the links above, or check for updates manually to have them install.
5 Comments - Add comment