Windows 10 Windows 10 cumulative update history

Status
Not open for further replies.
A little late (due to illness): Windows updated with build number 14393.479 across mobile and PCs.

Cumulative Update for Windows 10 Version 1607 and Windows Server 2016: December 9, 2016

Summary
This update includes quality improvements for Windows 10 Version 1607 and Windows Server 2016. No new operating system features are being introduced in this update. Key changes include:
  • Improved the reliability of mobile device management (MDM) disenrollment, Distributed Component Object Model (DCOM), Peripheral Component Interface and PowerShell.
  • Addressed issue that causes excessive battery drain if you have a Chinese Input Method Editor installed and use Windows Hello to log in.
  • Addressed issue with OLE drag and drop that prevents users from downloading a SharePoint document library as a file.
  • Addressed issue with Super Floppy-formatted fixed media devices that are not recognized by Windows 10 Anniversary Update or accessible in Windows Explorer.
  • Addressed issue that causes the System Center Configuration Manager (SCCM) client to fail installation when a device is re-imaged using the SCCM task sequence.
  • Addressed issue that causes the loss of optional component (OC) state information, including all Hyper-V virtual machines, after upgrade.
  • Addressed issue that causes Windows Explorer to display information that’s inconsistent with what’s stored on the Floppy disk.
  • Addressed issue that, after connecting a shared CD/DVD-hosted drive with no media inserted, causes some of the commands, like DIR and NET USE, to hang.
  • Addressed issue where customers cannot use directory cache sizes greater than 64 KB.
  • Addressed issue where Windows Explorer sometimes does not prompt for credentials when a user logs on using a Microsoft account.
  • Addressed additional issues with application compatibility and Internet Explorer
Reference:
https://support.microsoft.com/en-us/kb/3201845
 
December 13, 2016—KB3206632 (OS Build 14393.576)

Improvements and fixes

This security update includes these additional improvements and fixes.

No new operating system features are being introduced in this update.

Key changes include:
  • Improved reliability of Security Support Provider Interface.
  • Addressed a service crash in CDPSVC that in some situations could lead to the machine not being able to acquire an IP address.
  • Addressed issue where a Catalog-signed module installation does not work on Nano Server.
  • Addressed issue with Devices left with Hello on for an excessive amount of time will not go into power savings mode.
  • Addressed issue with gl_pointSize to not work properly when used with drawElements method in Internet Explorer 11.
  • Addressed issue where Azure Active Directory-joined machines after upgrading to Windows 10 Version 1607 cannot sync with Exchange.
  • Addressed additional issues with app compatibility, updated time zone information, Internet Explorer.
  • Security updates to Microsoft Edge, Internet Explorer, Microsoft Uniscribe, Common Log File System Driver.
For more information about the security fixes included in this update, please refer to the Security Updates Guide. If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.

Ref:
https://support.microsoft.com/en-us/help/4004227
 
January 10, 2017—KB3213986 (OS Build 14393.693)

Improvements and fixes
This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:
  • Improved the reliability of Groove Music playback in the background, App-V, video playback and Remote Desktop.
  • Addressed issue where after successful fingerprint authentication on a device with the screen off, the screen does not turn back on.
  • Addressed issue where only one input device works when you connect two similar input devices to the same machine.
  • Addressed issue in the App-V Connection Group that allows users to have access to pieces of functionality that they were not designated to for access.
  • Addressed issue that prevents users from selecting multiple certificates simultaneously through the UI.
  • Addressed issue where the Request Control function does not work with Remote Assistance if the user being assisted is on Windows Server 2008 R2 or Windows Server 2012.
  • Addressed issue that prevents a smart card module from pairing with a contactless smart card reader.
  • Addressed issue with license conversion of Server Core from evaluation version to a retail version.
  • Addressed issue that prevents users from opening Internet shortcut (.URL) files with Internet Explorer when Enhanced Protected Mode is enabled.
  • Addressed issue that prevents users from logging on if a device has been away from the corporate network over a period of time.
  • Addressed additional issues with Microsoft Edge, clustering, Internet Explorer, Windows Update, input devices, facial recognition, Logon, Hyper-V, PCI bus drivers and Windows Kernel.
If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.
Known issues in this update

Symptom/Workaround
The Cluster Service may not start automatically on the first reboot after applying the update. Workaround is to either start the Cluster Service with the Start-ClusterNode PowerShell cmdlet or to reboot the node.

Users may experience delayed or clipped screens while running 3D rendering apps (such as games) on systems with more than one monitor. To work around this issue please consider the following options:
  • Running the application in Windows mode (not full screen)
  • Starting the application with only one monitor connected
How to get this update
This update will be downloaded and installed automatically from Windows Update. To get the stand-alone package for this update, go to the Microsoft Update Catalog website.
  • Update replacement information
    This update replaces the previously released update KB3206632.
  • File information
    For a list of the files that are provided in this update, download the file information for cumulative update KB3213986. If you're installing a Windows 10 update for the first time, the package size for the X86 version is 527 MB and the package size for the x64 version is 973 MB.

Ref:
https://support.microsoft.com/en-us/help/4009938
 
A new cumulative update released by Microsoft: March 14, 2017—KB4013429 (OS Build 14393.953)
March 14, 2017—KB4013429 (OS Build 14393.953)
  • Microsoft Update Catalog website.
    • Update replacement information
      This update replaces the previously released update KB4010672.
This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:

  • Addressed known issue called out in KB3213986. Users may experience delays while running 3D rendering apps with multiple monitors.
  • Addressed issue in KB3213986 where the Cluster Service may not start automatically on the first reboot after applying the update.
  • Addressed issue where the Active Directory Administrative Center (ADAC) crashes when attempting to modify any attribute of any user account in Active Directory.
  • Addressed issue where the Japanese Input Method Editor is leaking graphics device interface resources, which causes windows to disappear or only partially render after typing approximately 100 sentences.
  • Addressed an issue which improves the reliability of Enable-ClusterS2D PowerShell cmdlet.
  • Addressed an issue where the Virtual Machine Management Service (Vmms.exe) may crash during a live migration of virtual machines.
  • Improved the bandwidth of SSD/NVMe drives available to application workloads during S2D rebuild operations.
  • Addressed issue where Work Folders clients get duplicate files (sync conflict files) when Work Folders is configured using Group Policy.
  • Addressed an issue where Remote Desktop Servers crash with a Stop 0x27 in RxSelectAndSwitchPagingFileObject when RDP clients connect and utilize redirected drives, printers, or removable USB drives.
  • Addressed issue where adjusting the Windows Server Update Services settings using the Group Policy feature causes downloads to fail.
  • Addressed issue to hard code Microsoft's first-party provider registry key values.
  • Addressed issue that causes the System Preparation (Sysprep) tool to fail.
  • Addressed issue that causes Office 2016 profile corruption when used with User Experience Virtualization (UE-V) roaming.
  • Addressed issue that causes the Local Security Authority Subsystem Service to become unresponsive after upgrading the OS.
  • Addressed issue that causes the Local Security Authority Subsystem Service to fail when a SAP® application uses Transport Layer Security authentication.
  • Addressed issue where sequencing large registries using the Application Virtualization 5.1 Sequencer results in missing registry keys in the final package.
  • Addressed issue that fails to retain the sort order of names in a contact list after a device restarts when using the Japanese language.
  • Addressed issue that causes transactions to fail because of a memory shortage.
  • Addressed issue that allows files that are forbidden by the security zone setting to be opened in Internet Explorer.
  • Addressed issue that causes Internet Explorer 11 to fail after installing KB3175443.
  • Addressed issue that causes applications that use the VBScript engine to fail after applying KB3185319.
  • Addressed issue that occurs in Internet Explorer when the CSS float style is set to "center" in a webpage.
  • Addressed issue that occurs whenever the multipath IO attempts to log I/O statistics with no paths present.
  • Addressed issue that causes a 32-bit static route added by a VPN solution to fail, which prevents users from establishing a connection through the VPN.
  • Addressed issue that may decrease performance by up to 50% when Ethernet adapters that support receive side scaling (RSS) fail to re-enable RSS after a fault or system upgrade.
  • Addressed issue to allow wildcards in the Allowed list field for the Point and Print Restrictions Group Policy.
  • Addressed issue with multipath I/O failure that can lead to data corruption or application failures.
  • Addressed issue that can lead to system failure when removing a multipath IO ID_ENTRY.
  • Addressed issue that occurs when a Network Driver Interface Specification function NdisMFreeSharedMemory() is not called at the correct Interrupt Request Level.
  • Addressed issue to utilize the proper service vault for Azure Backup integration.
  • Addressed issue where SQL server takes 30 minutes to shut down on machines with a lot of RAM (>2TB).
  • Addressed additional issues with updated time zone information, Internet Explorer, file server and clustering, wireless networking, Map apps, mobile upgrades for IoT, display rendering, USB 2.0 safe removal, multimedia, Direct3D, Microsoft Edge, enterprise security, Windows Server Update Services, storage networking, Remote Desktop, clustering, Windows Hyper-V, and Credential Guard.
  • Security updates to Microsoft Edge, Internet Explorer, Microsoft Graphics Component, Internet Information Services, Windows SMB Server, Microsoft Windows PDF Library, Windows kernel-mode drivers, Microsoft Uniscribe, the Windows kernel, DirectShow, the Windows OS, and Windows Hyper-V.
If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.

Known issues in this update
0" style="box-sizing: border-box; outline: none; margin-right: auto; margin-left: auto; max-width: 1600px; width: 573.891px;">
Microsoft is not currently aware of any issues with this update.

How to get this update
0" style="box-sizing: border-box; outline: none; margin-right: auto; margin-left: auto; max-width: 1600px; width: 573.891px;">
This update will be downloaded and installed automatically from Windows Update. To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

  • Update replacement information
    This update replaces the previously released update KB4010672.
  • File information
    For a list of the files that are provided in this update, download the file information for cumulative update KB4013429. If you're installing a Windows 10 update for the first time, the package size for the X86 version is 579 MB and the package size for the x64 version is 1,105 MB.
 
A new cumulative update released by Microsoft: March 20, 2017—KB4015438 (OS Build 14393.969)

March 20, 2017—KB4015438 (OS Build 14393.969)

Improvements and fixes

This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:
  • Addressed a known issue with KB4013429 that caused Windows DVD Player (and 3rd party apps that use Microsoft MPEG-2 handling libraries) to crash.
  • Addressed a known issue with KB4013429, that some customers using Windows Server 2016 and Windows 10 1607 Client with Switch Embedded Teaming (SET) enabled might experience a deadlock or when changing the physical adapter’s link speed property. This issue is most commonly seen as a DPC_WATCHDOG_VIOLATION or when verifier is enabled a VRF_STACKPTR_ERROR is seen in the Memory dump.

If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.



Known issues in this update

Microsoft is not currently aware of any issues with this update.
 
A new cumulative update KB4015583 for the Creators build is released by Microsoft:
April 11, 2017—KB4015583 (OS Build 15063.138)

Improvements and fixes

This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:

  • Addressed issues with updated time zone information.
  • Security updates to Scripting Engine, libjpeg image-processing library, Hyper-V, Windows kernel-mode drivers, Adobe Type Manager Font Driver, Internet Explorer, Graphics Component, Active Directory Federation Services, .NET Framework, Lightweight Directory Access Protocol, Microsoft Edge and Windows OLE.
If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.

Known issues in this update
Microsoft is not currently aware of any issues with this update.

How to get this update
This update will be downloaded and installed automatically from Windows Update. To get the stand-alone package for this update, go to the Microsoft Update Catalog website.
  • Update replacement information
    This update replaces the previously released update KB4016251.
  • File information
    For a list of the files that are provided in this update, download the file information for cumulative update 4015583. If you're installing a Windows 10 update for the first time, the package size for the X86 version is 51 MB and the package size for the x64 version is 114 MB.
 
Microsoft release a cumulative update KB4015219 for Windows 10 version 1511:

April 11, 2017—KB4015219 (OS Build 10586.873)

Improvements and fixes
This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:

  • Addressed issue that was preventing the Camera application from saving a captured image when "Show recently opened items in Jump Lists on Start or the taskbar" settings is enabled.
  • Addressed an issue where CredentialGuard-enabled computers joined to Active Directory domains submit two bad logon attempts each time a bad password is provided during a Kerberos-based logon. Logons to Active Directory domains with arbitrarily low account lockout thresholds may be subject to unexpected account lockouts. For example, 2 logons with a bad password could result in an account being locked out if the account lockout threshold is set to 3 or 4.
  • Addressed issue that might sometimes lead to updates not getting installed on machines due to file corruption.
  • Addressed issue with devices using certificate-based WLAN authentication to not automatically renew their certificates when the devices are in sleep mode.
  • Addressed issue that prevents users from accessing data stored in remote encrypted shares even when offline caching is not enabled.
  • Addressed issue where a memory leak occurs in Internet Explorer when hosting pages containing nested framesets that load cross domain content.
  • Addressed additional issues with updated time zone information and updates to the Access Point Name database and Internet Explorer.

  • Security updates to Scripting Engine, libjpeg image-processing library, Hyper-V, Win32k, Adobe Type Manager Font Driver, Internet Explorer, Microsoft Edge, Graphics component, .NET Framework, Lightweight Directory Access Protocol, Windows Kernel mode drivers and Windows OLE.
If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.

Known issues in this update
Microsoft is not currently aware of any issues with this update.
 
Last edited:
Microsoft release a cumulative update KB4015217 for the Anniversary Build:
April 11, 2017—KB4015217 (OS Build 14393.1066 and 14393.1083)

Improvements and fixes
This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:

  • Addressed issue that was preventing the Camera application from saving a captured image when "Show recently opened items in Jump Lists on Start or the taskbar" settings is enabled.
  • Improved the Host Network Service (HNS) to support an overlay network driver for use on Windows Server 2016 to connect containers across hosts using Docker Engine in Swarm Mode.
  • Addressed issue that was not allowing users to access online help content when clicking the help icon in various Windows applications, such as File Explorer.
  • Addressed issue where displays turn off unexpectedly even when Turn off display and Screen saver are disabled in the power profile.
  • Addressed an issue where CredentialGuard-enabled computers joined to Active Directory domains submit two bad logon attempts each time a bad password is provided during a Kerberos-based logon. Logons to Active Directory domains with arbitrarily low account lockout thresholds may be subject to unexpected account lockouts. For example, 2 logons with a bad password could result in an account being locked out if the account lockout threshold is set to 3 or 4.
  • Addressed issue that increases CPU usage when IP forwarding or weak host is enabled.
  • Addressed issue where some of the VPN drivers do not get migrated when upgrading the OS to Windows 10, version 1607.
  • Addressed issue that causes virtual machines to fail during high I/O scenarios where the user may log in multiple times.
  • Addressed issue that was causing connections (after the 1st connection request) from a Remote Desktop Client to a Remote Desktop session to fail after upgrading from Windows 10, version 1511, to Windows 10, version 1607.
  • Addressed issue that was causing the Command prompt to be not displayed properly through the serial console on headless systems.
  • Addressed issue that was causing MDM enrollment failtures on devices using Kerberos authentication.
  • Addressed issue with rendering when a webpage contains a DIV element that has the contenteditable attribute.
  • Addressed issue that causes text to disappear when you resize an Internet Explorer window when the encoding is Hebrew and any text ends with an underscore character.
  • Addressed issue that was causing headless machines to not go into S3 sleep mode sometimes.
  • Enabled warning message in Group Policy Management Console (GPMC) to alert administrators of a design change that may prevent the processing of a User Group after installing security update MS16-072 (KB3163622).
  • Addressed an issue that was causing Windows Explorer to perform an endless, rapid refresh of a network drive that is mapped to a share, preventing users from performing tasks such as rename object.
  • Addressed a memory leak in Internet Explorer when hosting a page that contains nested framesets, which load cross-domain content.
  • Addressed an issue that was causing the print spooler service to hang instead of showing a timeout error when a connection between a bluetooth printer and the machine is lost during printing.
  • Addressed an issue that was preventing installation of a new printer driver that uses v3 printer drivers.
  • Improved the reliability of Load Balancing/Failover (LBFO) whenever there is a resource rebalance, a device failure, or a surprise removal of a device.
  • Addressed additional issues with updated time zone information, Internet Explorer, and Microsoft Edge.
  • Security updates to Scripting Engine, libjpeg image-processing library, Hyper-V, Win32k, Adobe Type Manager Font Driver, Internet Explorer, Microsoft Edge, Graphics component, Active Directory Federation Services, .NET Framework, Active Directory, Lightweight Directory Access Protocol, Windows Kernel model drivers and Windows OLE.
If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.
 
Microsoft has released an update for Windows 10 Creators Update
https://support.microsoft.com/en-gb/help/4018124
Windows 10 update history
https://support.microsoft.com/en-gb/help/4016240


Updates for Windows 10 Version 1703

Windows 10 is a service, which means it gets better through periodic software updates.

The great news is you usually don’t have to do anything–updates automatically download and install whenever they’re available.
On the left side of this page, there is a reference to all of the updates that were released for this version of Windows. Installing the most recent update ensures that you also get any previous updates you might have missed, including any important security fixes.
 
Microsoft release an update revision for the 1511 Build.
Windows 10 Version 1511
KB4015219 (OS Build 10586.873)
Improvements and fixes

This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:

  • Addressed issue that was preventing the Camera application from saving a captured image when "Show recently opened items in Jump Lists on Start or the taskbar" settings is enabled.
  • Addressed an issue where CredentialGuard-enabled computers joined to Active Directory domains submit two bad logon attempts each time a bad password is provided during a Kerberos-based logon. Logons to Active Directory domains with arbitrarily low account lockout thresholds may be subject to unexpected account lockouts. For example, 2 logons with a bad password could result in an account being locked out if the account lockout threshold is set to 3 or 4.
  • Addressed issue that might sometimes lead to updates not getting installed on machines due to file corruption.
  • Addressed issue with devices using certificate-based WLAN authentication to not automatically renew their certificates when the devices are in sleep mode.
  • Addressed issue that prevents users from accessing data stored in remote encrypted shares even when offline caching is not enabled.
  • Addressed issue where a memory leak occurs in Internet Explorer when hosting pages containing nested framesets that load cross domain content.
  • Addressed additional issues with updated time zone information and updates to the Access Point Name database and Internet Explorer.

  • Security updates to Scripting Engine, libjpeg image-processing library, Hyper-V, Win32k, Adobe Type Manager Font Driver, Internet Explorer, Microsoft Edge, Graphics component, .NET Framework, Lightweight Directory Access Protocol, Windows Kernel mode drivers and Windows OLE.
If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.

Known issues in this update
Microsoft is not currently aware of any issues with this update.

How to get this update
This update will be downloaded and installed automatically from Windows Update. To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

  • Update replacement information
    This update replaces the previously released update KB4016636.
  • File information
    For a list of the files that are provided in this update, download the file information for cumulative update 4015219. If you're installing a Windows 10 update for the first time, the package size for the X86 version is 570 MB and the package size for the x64 version is 1,134 MB.
 
Microsoft released KB4020102 cumulative update Windows 10 1703 Build 15063.332.
May 25, 2017—KB4020102 (OS Build 15063.332)

Improvements and fixes
This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:

  • Addressed issue where NTLM fails to generate a challenge response when CredGuard is enabled, NTLMv2 is used, and no target information is provided by the server.

  • Addressed issue where Internet Explorer does not respect the “Send all sites not included in the Enterprise Mode Site List to Microsoft Edge” policy when opening favorites.
  • Addressed issue in Internet Explorer 11 where a non-administrator user is not able to install an ActiveX control.

  • Addressed issue where, after starting Split View, some apps (Microsoft Edge, Hub, Cortana, etc.) no longer receive input when multiple displays are in use.

  • Addressed issue with an unnecessary scrollbar in the logon credential provider dialog, which may block use of other fields when the dialog has multiple fields.

  • Addressed issue where, during a VM reset, the VM goes into Second Level Paging (SLP) even if there is enough balancer available memory on the host.

  • Addressed issue where some non-Unicode fonts (Courier, MS Sans Serif, etc.) do not render characters correctly on non-Latin, single-byte system locales (Greek, Hebrew, Arabic, etc.). Black bars or other artifacts appear instead.

  • Addressed issue with an SMS/messaging app that stops working when attempting to delete messages.

  • Addressed issue where, after installing the Creators Update, audio output through external decoders no longer works.

  • Addressed issue where the IoT shell fails to keep monitored background applications running.

  • Addressed issue with high latency when using the Universal Windows Platform (UWP) MIDI API.

  • Addressed issue where network printers may fail to install when using the printer vendor’s setup software on machines with less than 4GB of RAM. These printers will install if you install from the Settings app or from Devices and Printer in Control Panel.

  • Addressed issue where PrintBRM fails to restore the Print Queue Configurations when printer names are identical and a port is set to FILE:.

  • Addressed issue with per user proxy settings not migrating to machine proxy settings.
If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.

Known issues in this update
Microsoft is not currently aware of any issues with this update.

How to get this update
This update will be downloaded and installed automatically from Windows Update. To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

 
Microsoft release the latest cumulative update for Windows 10 for build 1703, KB4022725:
June 13, 2017—KB4022725 (OS Build 15063.413 and 15063.414)
This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:

  • Addressed issue where the user may need to press the space bar to dismiss the lock screen on a Windows 10 machine to log in, even after the logon is authenticated using a companion device.
  • Addressed issue with slow firewall operations that sometimes results in timeouts of Surface Hub's cleanup operation.
  • Addressed issue with a race condition that prevents Cortana cross-device notification reply from working; users will not be able to use the remote toast activation feature set.
  • Addressed issue where the Privacy Separator feature of a Wireless Access Point does not block communication between wireless devices on local subnets.
  • Addressed issue on the Surface Hub device where using ink may cause a break in the touch trace that could result in a break in inks from the pen.
  • Addressed issue where Internet Explorer 11 may ignore the “Send all sites not included in the Enterprise Mode Site List to Microsoft Edge” policy when opening a Favorites link.
  • Addressed additional issues with time-zone information and Internet Explorer.
  • Security updates to Windows kernel, Microsoft Windows PDF, Windows kernel-mode drivers, Microsoft Uniscribe, Device Guard, Internet Explorer, Windows Shell, and Microsoft Edge. For more information about the security vulnerabilities resolved, please refer to the Security Update Guide.

Known issues in this update

Microsoft is not currently aware of any issues with this update.

How to get this update

This update will be downloaded and installed automatically from Windows Update. To get the stand-alone package for this update, go to the Microsoft Update Catalog website. After this update is installed, the build number will be either 15063.413 (for all Windows 10 devices except Mobile and IoT) or 15063.414 (for Mobile and IoT).

 
Microsoft release the latest cumulative update for Windows 10 for build 1703, KB4025342
July 11, 2017—KB4025342 (OS Build 15063.483)
  • KB4022716 where Internet Explorer 11 may close unexpectedly when you visit some websites.
  • Addressed issue to improve MediaCreationTool.exe support for Setup Tourniquet scenarios.
  • Addressed issue with CoreMessaging.dll that may cause 32-bit apps to crash on the 64-bit version of the Windows OS.
  • Addressed an issue where Visual Studio or a WPF application may terminate unexpectedly (stops responding, followed by a crash) when running on a pen and/or touch enabled machine with Windows 10 Creators Update.

  • Addressed issue that causes the system to crash when certain USB devices are unplugged while the system is asleep.

  • Addressed issues with screen orientation that stops working after lid close and lid open transitions.
  • Addressed issue that causes .jpx and .jbig2 images to stop rendering in PDF files.
  • Addressed issue where users could not elevate to Administrator through the User Account Control (UAC) dialog when using a smart card.
  • Addressed issue where input using the Korean handwriting feature dropped the last character of a word or moved it to the next line incorrectly.
  • Addressed issue with a race condition between the App-V Catalog Manager and the Profile Roaming Service. A new registry key is available to control the waiting period for App-V Catalog Manager, which allows any third-party Profile Roaming Service to complete.
  • Addressed issue where controls in Win32 applications intermittently fail to render correctly when started from a logoff script using the "run shutdown scripts visible" policy described in https://msdn.microsoft.com/en-us/library/ms811629.aspx.
  • Security updates to Internet Explorer 11, Microsoft Edge, Windows Search, Windows kernel, Windows shell, Microsoft Scripting Engine, Windows Virtualization, Datacenter Networking, Windows Server, Windows Storage and File Systems, Microsoft Graphics Component, Windows kernel-mode drivers, ASP.NET, Microsoft PowerShell, and the .NET Framework.
If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.

More Information

Important

  • After installing the security updates for CVE-2017-8563, administrators need to set registry key LdapEnforceChannelBinding to enable the fix for the CVE. For more information about setting the registry key, see Microsoft Knowledge Base article 4034879.
Known issues in this update

Symptom

Workaround/Mitigation

If you have not installed the latest version of Comodo Internet Security Suite, you will not have this Windows Update offered to your device automatically.

Comodo is aware of incompatibility issues with earlier versions of the Comodo Internet Security Suite. For additional information, please see hereor contact Comodo.



Note: We do not recommend that you uninstall Windows security updates.

The third-party products that this article discusses are manufactured by companies that are independent of Microsoft. Microsoft makes no warranty, implied or otherwise, about the performance or reliability of these products.

How to get this update

This update will be downloaded and installed automatically from Windows Update. To get the standalone package for this update, go to the Microsoft Update Catalog website.
 
Microsoft has released a Cumulative Update for Windows 10, available via Windows Updates.
July 31, 2017—KB4032188 (OS Build 15063.502)

Improvements and fixes


This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:

  • Addressed issue that causes a Microsoft Installer (MSI) application to fail for standard (non-admin) users when installed on a per user basis.
  • Addressed issue to enable support in the DevDetail Configuration Service Provider (CSP) to return the UBR number in the D part of the SwV node.
  • Addressed issue where NTFS sparse files were unexpectedly truncated (NTFS sparse files are used by Data Deduplication—deduplicated files may be unexpectedly corrupted as a result). Also updated chkdsk to detect which files are corrupted.
  • Addressed issue where the IME pad was not launching correctly in the Microsoft Edge browser for certain markets.
  • Addressed issue to allow Win32 applications to work with various Bluetooth LE devices including head tracking devices.
  • Addressed issue in the Mobile Device Manager Enterprise feature to allow headsets to work correctly.
  • Addressed issue where device drivers are not loading.
  • Addressed a reliability issue when playing specific types of spatial sound content.
  • Addressed issue with a dropped key on Microsoft Surface Keyboard and Microsoft Surface Ergo Keyboard, and addressed Wacom active pen connection failures.
  • Addressed issue to improve stability for USB type C during device arrival and removal during system power changes.
  • Addressed USB host controller issue where the host controller no longer responds to the attached peripherals.
  • Addressed MP4 compatibility issue while playing content from a social media site in Microsoft Edge.
  • Addressed issue with audio headsets connected to a PC through Xbox 360 controllers.
  • Addressed a reliability issue with launching a Settings app while another application is using the camera device concurrently.
  • Addressed issue with notifications (SMS, Calendar) for an activity tracker.
  • Addressed issue with video playback artifacts during transitions from portrait to landscape on mobile devices.
  • Addressed issue with Skype calls becoming unresponsive after about 20 minutes when using Bluetooth headsets with Hands-Free Profile (HFP) connections with negotiated mSBC codec (Wideband Speech).
  • Addressed issue where a service using a Managed Service Account (MSA) fails to connect to the domain after an automatic password update.
  • Addressed issue where, in some cases, a drive that utilizes on-drive hardware encryption would not automatically unlock at system startup.
  • Addressed issue where “cipher.exe /u” fails on client machines that are deployed with InTune, Windows Information Protection (WIP), and an updated Data Recovery Agent (DRA) certificate. Cipher.exe will fail with one of the following errors: “The request is not supported" or "The system cannot find the file specified”.
  • Addressed issue where a memory leak occurs in a nonpaged pool with the “NDnd” memory tag when you have a network bridge set up.
  • Addressed issue where you cannot add Work and School accounts in Windows Store, and you may get an error that reads, “We encountered an error; please try signing in again later.”
  • Addressed issue issue where if a Surface Hub enters Sleep mode and then resumes, it may require the user to sign in to Skype again.
  • Addressed issue where some Windows Forms (WinForms) applications that use DataGridView, Menu controls, or call a constructor for a Screen object experienced performance regressions in .NET 4.7. This was caused by additional Garbage Collections. In some cases, there was an empty UI because of a lack of GDI+ handles.

  • Addressed issue where Magnifier Lens users cannot click on buttons or select web content in Microsoft Edge or Cortana results.

  • Addressed issue introduced in the June updates where some applications may not launch when a device resumes from Connected Standby mode.
If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.

Known issues in this update
Microsoft is not currently aware of any issues with this update.

How to get this update
This update will be downloaded and installed automatically from Windows Update. To get the standalone package for this update, go to the Microsoft Update Catalog website.

File information

For a list of the files that are provided in this update, download the file information for cumulative update 4032188.
 
Microsoft has released a Windows 10 Cumulative Update.
August 8, 2017—KB4034674 (OS Build 15063.540)
Improvements and fixes

This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:

  • Addressed issue where the policies provisioned using Mobile Device Management (MDM) should take precedence over policies set by provisioning packages.
  • Addressed issue where the Site to Zone Assignment List group policy (GPO) was not set on machines when it was enabled.
  • Addressed issue where the AppLocker rules wizard crashes when selecting accounts.
  • Addressed issue where the primary computer relationship is not determined when you have a disjoint NetBIOS domain name for your DNS Name. This prevents folder redirection and roaming profiles from successfully blocking your profile or redirects folders to a non-primary computer.
  • Addressed issue where an access violation in the Mobile Device Manager Enterprise feature causes stop errors.
  • Security updates to Microsoft Edge, Microsoft Windows Search Component, Microsoft Scripting Engine, Microsoft Windows PDF Library, Windows Hyper-V, Windows Server, Windows kernel-mode drivers, Windows Subsystem for Linux, Windows shell, Common Log File System Driver, Internet Explorer, and the Microsoft JET Database Engine.
If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.

For more information about the resolved security vulnerabilities, please see the Security Update Guide.


 
A Cumulative update for the Anniversary Update (1607) OS Build 14393.1670 has been released by Microsoft.
August 28, 2017—KB4039396 (OS Build 14393.1670)
Improvements and fixes

This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:

  • Addressed issue where Update History and hidden updates are lost and a full scan for updates happens after installing OS Updates 14393.1532 through 14393.1613, including KB4034658. Installing this update will not restore past update history or hidden updates for users who have already installed the listed updates. However, this current update will address this issue for users who have not yet installed them.

  • Addressed issue with WSUS update metadata processing that can cause some clients to time out with a 0x8024401c error.
If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.

For more information about the resolved security vulnerabilities, please see the Security Update Guide.



Known issues in this update

 
Microsoft has released a Windows 10 Cumulative Update. This is for the 1703 branch and changlog is below:
September 12, 2017—KB4038788 (OS Build 15063.608)
Improvements and fixes
This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:

  • Addressed issue where the color profiles do not revert to the user-specified settings after playing a full-screen game.
  • Updated HDR feature to be turned off by default in the OS.
  • Addressed issue where you can't open the Start menu when you add a third-party IME.
  • Addressed issue with scanners that rely on inbox driver support.
  • Addressed issue in a Mobile Device Manager Enterprise feature to allow headsets to work correctly.
  • Addressed issue where some machines fail to load wireless WAN devices when they resume from Sleep.
  • Addressed issue where Windows Error Reporting doesn't clean up temporary files when there is a redirection on a folder.
  • Addressed issue where revoking a certificate associated with a disabled user account in the CA management console fails. The error is "The user name or password is incorrect. 0x8007052e (WIN32: 1326 ERROR_LOGON_FAILURE)”.
  • Addressed issue where LSASS is leaking large amounts of memory.
  • Addressed issue where enabling encryption using syskey.exe renders the system unbootable.
  • Updated the BitLocker.psm1 PowerShell script to not log passwords when logging is enabled.
  • Addressed issue where saving a credential with an empty password to Credential Manager causes the system to crash when attempting to use that credential.
  • Updates to Internet Explorer 11’s navigation bar with search box.
  • Addressed issue in Internet Explorer where undo is broken if character conversion is canceled using IME.
  • Addressed issue with the EMIE where Microsoft Edge and Internet Explorer repeatedly switched between each other.
  • Addressed issue where a device may stop responding for several minutes and then stop working with error 0x9F (SYSTEM_POWER_STATE_FAILURE) when a USB network adapter is attached.
  • Addressed issue where some apps cannot be opened because the IPHlpSvc service stops responding during the Windows boot procedure.
  • Addressed issue where spoolsv.exe stops working.
  • Addressed issue where the Get-AuthenticodeSignature cmdlet does not list TimeStamperCertificate even though the file is time stamped.
  • Addressed issue where, after upgrading to Windows 10, users may experience long delays when running applications hosted on Windows Server 2008 SP2.
  • Addressed RemoteApp display issues that occur when you minimize and restore a RemoteApp to full-screen mode.
  • Addressed issue that sometimes causes Windows File Explorer to stop responding and causes the system to stop working.
  • Addressed issue that causes the Export-StartLayout cmdlet to fail when exporting the layout of tiles at startup.
  • Addressed issue where the option to join Azure AAD is sometimes unavailable during the out-of-box experience.
  • Addressed issue where clicking the buttons on Windows Action Center notifications results in no action being taken.
  • Re-release of MS16-087- Security update for Windows print spooler components.
  • Security updates to Microsoft Graphics Component, Windows kernel-mode drivers, Windows shell, Microsoft Uniscribe, Microsoft Edge, Device Guard, Windows TPM, Internet Explorer, Microsoft Scripting Engine, Windows Hyper-V, Windows kernel, and Windows Virtualization.
If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.

For more information about the resolved security vulnerabilities, please refer to the Security Update Guide.

Known issues in this update
Symptom
Installing KB4034674 may change Czech and Arabic languages to English for Microsoft Edge and other applications.
Workaround
Microsoft is working on a resolution and will provide an update in an upcoming release.


How to get this update
This update will be downloaded and installed automatically from Windows Update. To get the standalone package for this update, go to the Microsoft Update Catalog website.



File information

For a list of the files that are provided in this update, download the file information for cumulative update 4038788.
 
Microsoft has released a Cumulative Update for Windows 10 Creators Update
September 25, 2017—KB4040724 (OS Build 15063.632)

Improvements and fixes
This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:

  • Reliability improvements and fixes for cellular connectivity.
  • Addressed issue in Microsoft Edge where on first launch after installing KB4038788, or periodically thereafter, users may observe performance issues or unresponsiveness until the next launch of the browser.
If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.

For more information about the resolved security vulnerabilities, please refer to the Security Update Guide.


Known issues in this update
Installing KB4034674 may change Czech and Arabic languages to English for Microsoft Edge and other applications. Microsoft is working on a resolution and will provide an update in an upcoming release.
 
A new cumulative update for Creators Win 10:
October 10, 2017—KB4041676 (OS Build 15063.63.674

This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:

  • Addressed issue where some UWP and Centennial apps show a gray icon and display the error message "This app can't open" on launch.
  • Addressed reliability issue that causes the AppReadiness service to stop working.
  • Addressed issue where applications that use the Silverlight map stack stop working.
  • Addressed issue where VSync prevents devices from entering Panel Self Refresh mode, which can lead to reduced battery life.
  • Addressed issue where user customizations (like pinned tiles) made to an enforced partial Start layout are lost when upgrading to Windows 10 1703.
  • Addressed issue where the Universal CRT caused the linker (link.exe) to stop working for large projects.
  • Addressed issue that prevents Windows Error Reporting from saving error reports in a temporary folder that is recreated with incorrect permissions. Instead, the temporary folder is inadvertently deleted.
  • Addressed issue where the MSMQ performance counter (MSMQ Queue) may not populate queue instances when the server hosts a clustered MSMQ role.
  • Addressed issue with the token broker where it was leaking a token that caused sessions to remain allocated after logoff.
  • Addressed issue where Personal Identity Verification (PIV) smart card PINs are not cached on a per-application basis. This caused users to see the PIN prompt multiple times in a short time period; normally, the PIN prompt only displays once.
  • Addressed issue where using the Cipher.exe /u tool to update Data Recovery Agent (DRA) encryption keys fails unless user certification encryption already exists on the machine.
  • Addressed issue where using AppLocker to block a Modern app fails. This issue occurs only with Modern apps that come pre-installed with Windows.
  • Addressed issue with form submissions in Internet Explorer.
  • Addressed issue with the rendering of a graphics element in Internet Explorer.
  • Addressed issue that prevents an element from receiving focus in Internet Explorer.
  • Addressed issue with the docking and undocking of Internet Explorer windows.
  • Addressed issue caused by a pop-up window in Internet Explorer.
  • Addressed issue where a Vendor API deleted data unexpectedly.
  • Addressed issue where using the Robocopy utility to copy a SharePoint document library, which is mounted as a drive letter, fails to copy files. However, in this scenario, Robocopy will copy folders successfully.
  • Addressed issue where MDM USB restrictions did not disable the USB port as expected.
  • Addressed issue where creating an iSCSI session on a new OS installation may result in the "Initiator instance does not exist" error when attempting to connect to a target.
  • Addressed issue where connecting to RDS applications published using Azure App Proxy fails. The error message is, “Your computer can’t connect to the Remote Desktop Gateway server. Contact your network administrator for assistance”. The error can occur when the RDP cookie size limit is exceeded. This update increased the size of the RDP cookie limit.
  • Addressed issue where USBHUB.SYS randomly causes memory corruption that results in random system crashes that are extremely difficult to diagnose.
  • Addressed issue that affects the download of some games from the Windows Store during the pre-order phase. Download fails with the error code 0x80070005, and the device attempts to restart the download from the beginning.
  • Addressed issue where the ServerSecurityDescriptor registry value does not migrate when you upgrade to Windows 10 1703. As a result, users might not be able to add a printer using the Citrix Print Manager service. Additionally, they might not be able to print to a client redirected printer, a Citrix universal print driver, or a network printer driver using the Citrix universal print driver.
  • Security updates to Microsoft Windows Search Component, Windows kernel-mode drivers, Microsoft Graphics Component, Internet Explorer, Windows kernel, Microsoft Edge, Windows Authentication, Windows TPM, Device Guard, Windows Wireless Networking, Windows Storage and Filesystems, Microsoft Windows DNS, Microsoft Scripting Engine, Windows Server, Windows Subsystem for Linux, Microsoft JET Database Engine, and the Windows SMB Server.
If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.

For more information about the resolved security vulnerabilities, please refer to the Security Update Guide.


  • Known issues in this update
    Installing KB4034674 may change Czech and Arabic languages to English for Microsoft Edge and other applications. Microsoft is working on a resolution and will provide an update in an upcoming release.
    Systems with support enabled for USB Type-C Connector System Software Interface (UCSI) may experience a blue screen or stop responding with a black screen when a system shutdown is initiated.
    If available, disable UCSI in the computer system’s BIOS. This will also disable UCSI features in the Windows operating system.

    Microsoft is working on a resolution and will provide an update in an upcoming release.



    How to get this update
    This update will be downloaded and installed automatically from Windows Update. To get the standalone package for this update, go to the Microsoft Update Catalog website.

    File information

    For a list of the files that are provided in this update, download the file information for cumulative update 4041676.
 
A new cumulative update for the Fall Creators build of Win 10 KB4048955:

November 14, 2017—KB4048955 (OS Build 16299.64)
Improvements and fixes
This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:

  • Addressed issue that causes the Mixed Reality Portal to stop responding on launch.
  • Addressed issue that causes a black screen to appear when you switch between windowed and full-screen modes when playing some Microsoft DirectX games.
  • Addressed a compatibility issue that occurs when you play back a Game DVR PC recording using Android or iOS devices.
  • Addressed issue where the functional keys stop working on Microsoft Designer Keyboards.
  • Addressed issue to ensure that certain USB devices and head-mounted displays (HMD) are enumerated properly after the system wakes up from Connected Standby.
  • Addressed issue where the virtual smart card doesn't assess the Trusted Platform Module (TPM) vulnerability correctly.
  • Addressed issue where Get-StorageJob returns nothing when there are storage jobs running on the machine.
  • Addressed issue where applications based on the Microsoft JET Database Engine (Microsoft Access 2007 and older or non-Microsoft applications) fail when creating or opening Microsoft Excel .xls files. The error message is: “Unexpected error from external database driver (1). (Microsoft JET Database Engine)".
  • Addressed issue where application tiles are missing from the Start menu. Additionally, applications that the Store app show as installed don't appear on the application list of the Start menu. Computers that have Internet connectivity and upgrade on or after November 14, 2017 will receive this preventative solution and avoid this issue. Machines that lack network connectivity or have already encountered this issue should follow the steps in the Microsoft Answers thread “Missing apps after installing Windows 10 Fall Creators Update”. Microsoft will release and document an additional solution in a future release.
  • Addressed issue where Microsoft Edge cannot create a WARP support processand appears to stop responding for up to 3 seconds during a wait timeout. During the timeout period, users cannot navigate or interact with the requested page.
  • Security updates to Microsoft Scripting Engine, Microsoft Edge, Microsoft Graphics Component, Windows kernel, Internet Explorer, and Windows Media Player.
If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.

For more information about the resolved security vulnerabilities, see the Security Update Guide.

Known issues in this update
Symptom Workaround
Universal Windows Platform (UWP) applications that use JavaScript and asm.js may stop working after installing KB4048955.
Uninstall the application. Once this is complete, reinstall it.

Microsoft is working on a resolution and will provide an update in an upcoming release.
After installing this KB, Internet Explorer 11 users who use SQL Server Reporting Services (SSRS) may not be able to scroll through a drop-down menu using the scroll bar.
Using the scroll wheel on a mouse works as expected. This issue only applies to document mode 11, so attempting to load the page with document mode 10 may work around the issue.

To change the document mode in Internet Explorer 11:

  1. Select F12.

  2. Select the Emulation tab.

  3. On the Document mode menu, select 10. The page will reload in the new document mode.
Microsoft is working on a resolution and will provide an update in an upcoming release.
 
Status
Not open for further replies.
Back
Top