Windows 10: Critical Updates (01/03/2018)

Posted on 2018-01-04 by guenni

[German]Microsoft released several cumulative updates for various Windows 10 builds on January 3, 2018. This addresses the Intel CPU bug and mitigates vulnerabilities in Edge and Internet Explorer. Here is an overview of what you should know.

Advertising

First: Wait until these updates are offered via Windows Update. Do not try to download those updates from the Microsoft Update Catalog. Currently, Microsoft seems to be distributing the updates only on certain machines (where telemetry signals that this is okay). If you install an update manually, it could kill the system or software (e. g. virus scanners from third-party vendors). A list of updates is available on this Microsoft web site.

Update KB4056892 f0r Windows 10 Version 1709

The cumulative update KB4056892 for Windows 10 Version 1709 (Case Creators Update) from January 3, 2018 increases the build number to 16299.192. It contains quality improvements and the following fixes:

  • Addresses issue where event logs stop receiving events when a maximum file size policy is applied to the channel.
  • Addresses issue where printing an Office Online document in Microsoft Edge fails.
  • Addresses issue where the touch keyboard doesn't support the standard layout for 109 keyboards.
  • Addresses video playback issues in applications such as Microsoft Edge that affect some devices when playing back video on a monitor and a secondary, duplicated display.
  • Addresses issue where Microsoft Edge stops responding for up to 3 seconds while displaying content from a software rendering path.
  • Addresses issue where only 4 TB of memory is shown as available in Task Manager in Windows Server version 1709 when more memory is actually installed, configured, and available.
  • Security updates to Windows SMB Server, the Windows Subsystem for Linux, Windows Kernel, Windows Datacenter Networking, Windows Graphics, Microsoft Edge, Internet Explorer, and the Microsoft Scripting Engine.

Note that the update has serious known issues. Here are the issues mentioned by Microsoft so far:

  • The update installation can stop at 99% and indicate an increased CPU or hard disk usage if a device has been reset using the "Reset this PC" function after the update has been installed. Microsoft specifies in the linked KB article a workaround how to install the update (manually)..
  • In the Windows update history, the update is listed as failed with error code 0x80070643.
  • When CoInitializeSecurity is called, the call fails if RPC_C_IMP_LEVEL_NONE is passed under certain conditions.

Some hints about the installation abort at 99% including fix and the missing entry in the update history can also be found in my older blog entry Windows 10 V1709: Issues with Update KB4054517 from December 2018.

Attention: Due to a problem with some versions of anti-virus software, this fix is only applied to computers where the anti-virus ISV has updated ALLOW REGKEY.

Update KB4056891 for Windows 10 Version 1703

Cumulative update KB4056891 for Windows 10 Version 1703 (Creators Update) from January 3, 2018 increases the build number to 15063.850. It contains quality improvements and fixes.

Security updates to Internet Explorer, Microsoft Scripting Engine, Microsoft Edge, Windows Graphics, Windows Kernel, Windows Subsystem for Linux, and the Windows SMB Server.

The update has the following known issues:

Advertising
  • When calling CoInitializeSecurity, the call will fail if passing RPC_C_IMP_LEVEL_NONE under certain conditions. Microsoft is working on a resolution and will provide an update in an upcoming release.
  • Due to an issue with some versions of Anti-Virus software, this fix is only being made applicable to the machines where the Anti virus ISV has updated the ALLOW REGKEY. Details are provided within KB4056891 article.

On the last item, the recommendation is to contact the vendor of the antivirus software and make sure that the software is compatible. Then the following settings must be made (from AV software) within the registry:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\
CurrentVersion\QualityCompat\cadca5fe-87d3-4b96-b7fb-a231484277cc

The DWORD (32-bit) value Data must be set to 0x0000000000000000.

Update KB4056890 for Windows 10 Version 1607

Cumulative update KB4056890 is available for Windows 10 version 1607 (Anniversary Update) and Windows Server 2016. The update from January 3, 2018 increases the build number to 14393.2007. It contains quality improvements and fixes.

  • Security updates to Microsoft Edge, Internet Explorer, Windows Graphics, Windows Kernel, Windows Datacenter Networking, and Windows SMB Server.
  • Microsoft will release an update directly to the Windows Update Client to improve Windows Update reliability. It will only be offered to devices that have't installed the most recent updates.

The update has the known issues listed in Update KB4056891 for Windows 10 Version 1703.

Update KB4056888 for Windows 10 Version 1511

Cumulative update KB4056888 is available for Windows 10 Version 1511 from January 3, 2018, and raising the build number to 10586.1356. It contains the same quality improvements and fixes as the cumulative update KB4056890 (see above).

Update KB4056893 fü8r Windows 10 Version 1507

Cumulative update KB4056893 is available for Windows 10 Version 1507 (RTM-Version) from January 3, 2018 and raising the build number to 10240.17738. It is provided for Windows 10 Enterprise only and includes the following quality enhancements and fixes:

  • Addresses issue where using smart cards on a Windows Terminal Server system may cause excessive memory usage.
  • Security updates to Internet Explorer, Microsoft Scripting Engine, Microsoft Edge, Windows Graphics, Windows Kernel, Windows Datacenter Networking, and Windows SMB Server.

In addition, a separate update is rolled out for these Windows builds to update the Windows Update Client. The update is intended to improve the reliability of Windows Update, but is only offered if the system has not received this update from a previous patch. It It contains the same quality improvements and fixes as the cumulative update KB4056890 (see above).

KB4058702 Windows 10 1709 Servicing Stack Update

For Windows 10 Fall Creators Update Microsoft has additionally released the Servicing Stack Update KB4058702. This is currently only described in the Microsoft Update Catalog.

Similar articles:
Design flaw in Intel CPUs set operating systems at risk
Microsoft releases Windows 10 Patch to fix Intel Bug
Critical Updates for Windows and Browser (01/03/2018)
Windows 10: Critical Updates (01/03/2018)
Critical Security Updates for Windows 7/8.1/Server (01/03/2018)

Windows 10 V1709: Issues with Update KB4054517

Cookies helps to fund this blog: Cookie settings
Advertising

This entry was posted in Security, Update, Windows and tagged , , . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *