{"id":206975,"date":"2018-07-25T00:39:00","date_gmt":"2018-07-24T22:39:00","guid":{"rendered":"https:\/\/www.borncity.com\/blog\/?p=206975"},"modified":"2021-01-26T17:35:37","modified_gmt":"2021-01-26T16:35:37","slug":"windows-10-kumulative-updates-25-7-2018","status":"publish","type":"post","link":"https:\/\/borncity.com\/blog\/2018\/07\/25\/windows-10-kumulative-updates-25-7-2018\/","title":{"rendered":"Windows 10: Kumulative Updates 25.7.2018"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline;\" src=\"https:\/\/borncity.com\/blog\/wp-content\/uploads\/2015\/01\/win102.jpg\" width=\"58\" height=\"58\" align=\"left\" \/>[<a href=\"https:\/\/borncity.com\/win\/2018\/07\/25\/windows-10-cumulative-updates-july-25-2018\/\" target=\"_blank\" rel=\"noopener noreferrer\">English<\/a>]Microsoft hat f\u00fcr die Windows 10 Versionen 1607, 1703, 1709 und 1803 kumulative Updates freigegeben. Hier einige Informationen, was die einzelnen Updates bewirken.<\/p>\n<p><!--more--><\/p>\n<h2>Update KB4340917 f\u00fcr Windows 10 V1803<\/h2>\n<p>Das kumulative Update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4340917\" target=\"_blank\" rel=\"noopener noreferrer\">KB4340917<\/a> vom 24. Juli 2018 ist f\u00fcr Windows 10, Version 1803 verf\u00fcgbar und hebt die OS-Build auf 17134.191. Das Update enth\u00e4lt folgende Verbesserungen an Windows:<\/p>\n<ul>\n<li>Addresses an issue that causes devices within Active Directory or Hybrid AADJ++ domains to unexpectedly unenroll from Microsoft Intune or third-party MDM services after installing provisioning package updates (PPKG). This issue occurs on devices that are subject to the Auto MDM Enrollment with AAD Token Group Policy. If you ran thescript Disable-AutoEnrollMDMCSE.PS1 as a workaround for this issue, run Enable-AutoEnrollMDMCSE.PS1 from a PowerShell window in Administrator mode after installing this update.<\/li>\n<li>Addresses additional issues with updated time zone information.<\/li>\n<li>Improves the ability of the Universal CRT Ctype family of functions to handle EOF as valid input.<\/li>\n<li>Addresses an issue with registration in the \"Push to Install\" service.<\/li>\n<li>Addresses an issue with Roaming User Profiles where the AppData\\Local and AppData\\Locallow folders are incorrectly synchronized at user logon and logoff. For more information, see <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4340390\">KB4340390<\/a>.<\/li>\n<li>Addresses issues related to peripherals that use Quality of Service (QoS) parameters for Bluetooth connections.<\/li>\n<li>Addresses an issue that causes SQL Server memory usage to grow over time when encrypting data using a symmetric key that has a certificate. Then, you execute queries that open and close the symmetric key in a recursive loop.<\/li>\n<li>Addresses an issue where using an invalid password in a wireless PEAP environment that has SSO enabled submits two authentication requests with the invalid password. The excess authentication request may cause premature account lockouts in environments with low account lockout thresholds. To enable the changes, add the new registry key DisableAuthRetry (Dword) on <strong>HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\RasMan\\<br \/>\nPPP\\EAP\\26<\/strong> using regedit, and set it to 1.<\/li>\n<li>Addresses an issue that prevents OpenType fonts from printing in Win32 applications.<\/li>\n<li>Addresses an issue with DNS Response Rate Limiting that causes a memory leak when enabled with LogOnly mode.<\/li>\n<li>Addresses an issue in a RemoteApp session that may result in a black screen when maximizing an app window on a secondary monitor.<\/li>\n<li>Addresses an issue in IME that causes unexpected finalization of strings during Japanese input in applications such as Microsoft Outlook.<\/li>\n<\/ul>\n<p>Das Update wird \u00fcber Windows Update angeboten, wenn man (so Microsoft) \u00fcber die Einstellungen-Seite nach Updates suchen l\u00e4sst. Zudem ist ein Download per the <a href=\"http:\/\/catalog.update.microsoft.com\/v7\/site\/Search.aspx?q=KB4340917\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a> m\u00f6glich. Das Update hat ein bekanntes Problem: Nach der Installation des <a href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2018-8356\" target=\"_blank\" rel=\"noopener noreferrer\">.NET Framework-Sicherheitsupdates vom Juli 2018<\/a> kann eine COM-Komponente nicht geladen werden, da die Fehler \"access denied\", \"class not registered\" oder \"internal failure occurred for unknown reasons\" aufgetreten sind. Die h\u00e4ufigste Fehlersignatur ist:<\/p>\n<blockquote><p>Ausnahmetyp: System.unautorisierterZugriffAusnahme<\/p>\n<p>Nachricht: Der Zugang wird verweigert. (Ausnahme von HRESULT: 0x80070005 (E_ACCESSDENIED))<\/p><\/blockquote>\n<h2>Update KB4338817 f\u00fcr Windows 10 V1709<\/h2>\n<p><img loading=\"lazy\" decoding=\"async\" src=\" https:\/\/ssl-vg03.met.vgwort.de\/na\/8e153536ea3e42df91e36afac8a0ed80\" alt=\"\" width=\"1\" height=\"1\" \/>Das kumulative Update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4338817\" target=\"_blank\" rel=\"noopener noreferrer\">KB4338817<\/a> vom 24. Juli 2018 ist f\u00fcr Windows 10, Version 1709 verf\u00fcgbar und hebt die OS-Build auf 16299.579 . Das Update enth\u00e4lt folgende Verbesserungen an Windows:<\/p>\n<ul>\n<li>Addresses an issue that causes devices within Active Directory or Hybrid AADJ++ domains to unexpectedly unenroll from Microsoft Intune or third-party MDM services after installing provisioning package updates (PPKG). This issue occurs on devices that are subject to the \"Auto MDM Enrollment with AAD Token\" Group Policy. If you ran the script \"Disable-AutoEnrollMDMCSE.PS1<strong>\"<\/strong> as a workaround for this issue, run \"Enable-AutoEnrollMDMCSE.PS1<strong>\"<\/strong> from a PowerShell window running in Administrator mode after installing this update.<\/li>\n<li>Inserts a CR before LF if there was none.<\/li>\n<li>Enables debugging of WebView content in UWP apps using the Microsoft Edge DevTools Preview app available in the Microsoft App Store.<\/li>\n<li>Addresses an issue in which Microsoft Edge DevTools becomes unresponsive when the console is flooded with messages.<\/li>\n<li>Addresses an issue that causes a black screen to appear for several minutes after installing Windows updates before going to the desktop.<\/li>\n<li>Addresses additional issues with updated time zone information.<\/li>\n<li>Improves the PDF file experience in Microsoft Edge by addressing PDF file open, print, and reliability issues.<\/li>\n<li>Addresses an issue in which moving a Microsoft Foundation Class (MFC) application window might leave behind a dithered pattern on the desktop.<\/li>\n<li>Addresses an issue that causes power options to appear on the Windows security screen even when the per-user Group Policy to hide power options is set.<\/li>\n<li>Addresses an issue in which the correct lock screen image won't show when all of the following are true:\n<ul>\n<li>GPO policy \"Computer Configuration\\Administrative Templates\\Control Panel\\Personalization\\Force a specific default lock screen and logon image\" is enabled.<\/li>\n<li>GPO policy \"Computer Configuration\\Administrative Templates\\Control Panel\\Personalization\\Prevent changing lock screen and logon image\" is enabled<\/li>\n<li>Registry key <strong>HKEY_LOCAL_MACHINE\\SOFTWARE\\Policies\\Microsoft\\Windows\\<br \/>\nSystem\\DisableLogonBackgroundImage<\/strong> is set to 1.<\/li>\n<\/ul>\n<\/li>\n<li>Addresses an issue in which a warning appears stating that the application is from an \"unknown publisher\" when running an application as an elevated user (Administrator).<\/li>\n<li>Addresses an issue that causes sporadic authentication issues when using Web Account Manager.<\/li>\n<li>Addresses an issue that sometimes causes the single-sign-on scenario to fail and presents the the logon tile when connecting to a Remote Desktop server.<\/li>\n<li>Addresses an issue in which the memory usage of LSASS continues to grow until it is necessary to restart the system.<\/li>\n<li>Addresses an issue in which the default domain for an Azure Active Directory-joined machine is not set on the logon screen automatically.<\/li>\n<li>Addresses an issue that causes SQL Server memory usage to grow over time when encrypting data using a symmetric key that has a certificate. Then, you execute queries that open and close the symmetric key in a recursive loop.<\/li>\n<li>Addresses an issue in which using an invalid password in a wireless PEAP environment that has SSO enabled causes the submission of two authentication requests with the invalid password. The excess authentication request may cause premature account lockouts in environments with low account lockout thresholds. To enable the changes, add the new registry key, \"DisableAuthRetry\" (Dword) on <strong>HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\RasMan\\<br \/>\nPPP\\EAP\\26<\/strong> using regedit, and set it to 1.<\/li>\n<li>Addresses an issue that may cause the BITS service to become unresponsive when the service cannot connect to Internet resources.<\/li>\n<li>Addresses an issue that prevents printing on a 64-bit OS when 32-bit applications impersonate other users (typically by calling LogonUser). This issue occurs after installing monthly updates starting with KB4034681, released in August 2017. To resolve the issue for the affected applications, install this update, and then do one of the following:<\/li>\n<\/ul>\n<ul>\n<li>Use Microsoft Application Compatibility Toolkit to globally <a href=\"https:\/\/docs.microsoft.com\/en-us\/previous-versions\/windows\/it-pro\/windows-7\/cc749034%28v=ws.10%29\" target=\"_blank\" rel=\"noopener noreferrer\">enable<\/a> the <strong>Splwow64Compat App Compat Shim<\/strong>.<\/li>\n<li>Use the following registry setting, and then restart the 32-bit application: <strong>HKEY_LOCAL_MACHINE\\System\\CurrentControlSet\\Control\\Print Setting: Splwow64Compat<br \/>\nType: DWORD Value1: 1\u00a0\u00a0\u00a0\u00a0 <\/strong><\/li>\n<li>Addresses an issue with DNS Response Rate Limiting that causes a memory leak when enabled with LogOnly mode.<\/li>\n<li>Addresses an issue that sometime prevents a system from shutting down or being placed in Hibernation. This issue occurs on the first boot after performing disk encryption on an SSD drive.<\/li>\n<li>Addresses an issue that prevents access to SMB shares using IP addresses if SMB hardening is enabled.<\/li>\n<li>Addresses an issue in which using mandatory (read-only) user profiles for RDP might result in the error code, \"Class not registered (0x80040151)\".<\/li>\n<li>Addresses an issue in which not all network printers are connected after a user logs on. The <strong>HKEY_USERS\\User\\Printers\\Connections Key<\/strong> shows the correct network printers for the affected user. However, the list of network printers from this registry key is not populated in any app, including Microsoft Notepad or <strong>Devices and Printers<\/strong>. Printers may disappear or become non-functional.<\/li>\n<li>Addresses an issue that causes in-place upgrades to Windows 10 version 1709 to stop responding at the \"Making sure you're ready to install\" screen. This occurs while performing device inventory on devices that have installed monthly updates since April 2018.<br \/>\n<strong>Note\u00a0 <\/strong>WSUS can also deliver Dynamic Updates (DU) to devices when configured to <a href=\"https:\/\/docs.microsoft.com\/en-us\/sccm\/sum\/get-started\/configure-classifications-and-products\" target=\"_blank\" rel=\"noopener noreferrer\">sync Dynamic Update content<\/a>. Verify that Dynamic Updates haven't been disabled by the <strong>\/DynamicUpdate Disable<\/strong> <a href=\"https:\/\/docs.microsoft.com\/en-us\/windows-hardware\/manufacture\/desktop\/windows-setup-command-line-options\" target=\"_blank\" rel=\"noopener noreferrer\">setup switch<\/a>.<\/li>\n<li>Addresses a rendering issue that occurs while dynamically modifying the classname or ID of elements on a page.<\/li>\n<li>Addresses an issue that prevents Memory Analyzer and Performance Analyzer from working properly in Microsoft Internet Explorer 11 Developer Tools.<\/li>\n<\/ul>\n<p>Das Update wird \u00fcber Windows Update angeboten, wenn man (so Microsoft) \u00fcber die Einstellungen-Seite nach Updates suchen l\u00e4sst. Zudem ist ein Download per the <a href=\"http:\/\/catalog.update.microsoft.com\/v7\/site\/Search.aspx?q=KB4338817\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a> m\u00f6glich. Das Update hat gleich mehrere bekannte Probleme, die im KB-Beitrag beschrieben sind.<\/p>\n<h2>Update KB4338827 f\u00fcr Windows 10 V1703<\/h2>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/ssl-vg03.met.vgwort.de\/na\/35cecb3b1329465180114d2090e23fdc\" alt=\"\" width=\"1\" height=\"1\" \/>Das kumulative Update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4338827\" target=\"_blank\" rel=\"noopener noreferrer\">KB4338827<\/a> vom 24. Juli 2018 ist f\u00fcr Windows 10, Version 1703 verf\u00fcgbar und hebt die OS-Build auf 15063.1235. Das Update enth\u00e4lt folgende Verbesserungen an Windows:<\/p>\n<ul>\n<li>Addresses additional issues with updated time zone information.<\/li>\n<li>Changes the music metadata service provider used by Windows Media Player.<\/li>\n<li>Addresses an issue in which some characters were not rendered correctly using the Meiryo font in vertical writing mode.<\/li>\n<li>Addresses an issue that may cause the operating system to stop responding when transitioning from Sleep to Hibernation.<\/li>\n<li>Addresses an issue in which the memory usage of LSASS continues to grow until it is necessary to restart the system.<\/li>\n<li>Addresses an issue that may cause dual-signed files to report a failure when they should report success. This occurs when running Windows Defender Application Control in audit mode.<\/li>\n<li>Addresses an issue that causes SQL Server memory usage to grow over time when encrypting data using a symmetric key that has a certificate. Then, you execute queries that open and close the symmetric key in a recursive loop.<\/li>\n<li>Addresses an issue that prevents printing on a 64-bit OS when 32-bit applications impersonate other users (typically by calling LogonUser). This issue occurs after installing monthly updates starting with KB4034681, released in August 2017. To resolve the issue for the affected applications, install this update, and then do one of the following:<\/li>\n<\/ul>\n<ul>\n<li>Use Microsoft Application Compatibility Toolkit to globally <a href=\"https:\/\/docs.microsoft.com\/en-us\/previous-versions\/windows\/it-pro\/windows-7\/cc749034%28v=ws.10%29\" target=\"_blank\" rel=\"noopener noreferrer\">enable<\/a> the<strong>Splwow64Compat App Compat Shim<\/strong>.<\/li>\n<li>Use the following registry setting, and then restart the 32-bit application: <strong>HKEY_LOCAL_MACHINE\\System\\CurrentControlSet\\Control\\Print Setting: Splwow64Compat<br \/>\nType: DWORD Value1: 1\u00a0\u00a0\u00a0\u00a0 <\/strong><\/li>\n<li>Addresses an issue in which Wi-Fi credentials must be entered each time a device restarts and tries to reconnect to Wi-Fi using Group Policy-distributed Preferred Network Profiles.<\/li>\n<li>Addresses an issue in which using an invalid password in a wireless PEAP environment that has SSO enabled causes the submission of two authentication requests with the invalid password. The excess authentication request may cause premature account lockouts in environments with low account lockout thresholds. To enable the changes, add the new registry key, \"DisableAuthRetry\" (Dword) on <strong>HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\RasMan\\<br \/>\nPPP\\EAP\\26<\/strong> using regedit, and set it to 1.<\/li>\n<li>Addresses an issue in which Wi-Fi credentials must be entered each time a device restarts and tries to reconnect to Wi-Fi using Group Policy-distributed Preferred Network Profiles.<\/li>\n<li>Addresses an issue in which not all network printers are connected after a user logs on. The <strong>HKEY_USERS\\User\\Printers\\Connections Key<\/strong> shows the correct network printers for the affected user. However, the list of network printers from this registry key is not populated in any app, including Microsoft Notepad or <strong>Devices and Printers<\/strong>. Printers may disappear or become non-functional.<\/li>\n<\/ul>\n<p>Das Update wird \u00fcber Windows Update angeboten, wenn man (so Microsoft) \u00fcber die Einstellungen-Seite nach Updates suchen l\u00e4sst. Zudem ist ein Download per the <a href=\"http:\/\/catalog.update.microsoft.com\/v7\/site\/Search.aspx?q=KB4338827\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a> m\u00f6glich. Das Update hat mehrere bekannte Probleme, die im KB-Artikel beschrieben sind.<\/p>\n<h2>Update KB4338822 f\u00fcr Windows 10 V1607<\/h2>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/ssl-vg03.met.vgwort.de\/na\/35cecb3b1329465180114d2090e23fdc\" alt=\"\" width=\"1\" height=\"1\" \/>Das kumulative Update KB4338822 vom 24. Juli 2018 ist f\u00fcr Windows 10, Version 1607 (nur Enterprise) und Windows Server 2016 verf\u00fcgbar und hebt die OS-Build auf 14393.2395. Details sind dem KB-Artikel zu entnehmen.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>[English]Microsoft hat f\u00fcr die Windows 10 Versionen 1607, 1703, 1709 und 1803 kumulative Updates freigegeben. Hier einige Informationen, was die einzelnen Updates bewirken.<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[185,3694],"tags":[4315,4378],"class_list":["post-206975","post","type-post","status-publish","format-standard","hentry","category-update","category-windows-10","tag-update","tag-windows-10"],"_links":{"self":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/206975","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/comments?post=206975"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/206975\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/media?parent=206975"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/categories?post=206975"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/tags?post=206975"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}