Patchday: Windows 10 updates June 12, 2018

[German]Microsoft released several cumulative updates for the supported Windows 10 builds on June 12, 2018. Here are some details about these updates.


Advertising


A list of updates can be found on this Microsoft website. I have pulled out the details below. Some of these updates for Windows 10 versions 1607 to 1709 are also available as delta updates  for the WSUS.

Updates for Windows 10 Version 1803

The following updates are available for Windows 10 April Update (version 1803).

Update KB4284835 for Windows 10 Version 1803

Cumulative update KB4284835 contains quality improvements but no new operating system functions and raises the OS build to 17134.112. The most important changes are the following Specte patch and some other fixes:

  • Provides protections from an additional subclass of speculative execution side channel vulnerability known as Speculative Store Bypass (CVE-2018-3639). These protections aren’t enabled by default. For Windows client (IT pro) guidance, follow the instructions in KB4073119. For Windows Server guidance, follow the instructions in KB4072698. Use this guidance document to enable mitigations for Speculative Store Bypass (CVE-2018-3639) in addition to the mitigations that have already been released for Spectre Variant 2 (CVE-2017-5715) and Meltdown (CVE-2017-5754).
  • Addresses an issue in which the 2017 and 2018 versions of Intuit QuickBooks can’t run in multi-user mode on Windows 10 1803 devices. Users will now be offered Windows 10, version 1803.
  • Adds support for the SameSite cookie web standard to Microsoft Edge and Internet Explorer.
  • Addresses an issue with Internet Explorer that prevents it from using an updated version of location services.
  • Addresses an issue that causes certain games to fail to show dialogs when connected to monitors that support interlaced display formats.
  • Addresses an issue with the brightness controls on some laptops after updating to the Windows 10 April 2018 Update.
  • Addresses a reliability issue in which the GameBar may fail to launch.
  • Addresses an issue where firmware updates cause devices to go into BitLocker recovery mode when BitLocker is enabled, but Secure Boot is disabled or not present. This update prevents firmware installation on devices in this state. Administrators can install firmware updates by:
    1. Temporarily suspending BitLocker.
    2. Immediately installing firmware updates before the next OS startup.
    3. Immediately restarting the device so that BitLocker doesn’t remain in the suspended state.
  • Addresses an issue that caused the system to start up to a black screen. This issue occurs because previous updates to the Spring Creators Update were incompatible with specific versions of PC tune-up utilities after installation.
  • Addresses an issue in which customers with a combination of specific Windows display languages and user preferred language list (UPLL) entries receive an extraneous UPLL entry and input language selector entry. This issue occurs after upgrading to Windows 10 version 1803 and, as a result, customers cannot remove this language entry or its keyboard.
  • Security updates to Internet Explorer, Microsoft Edge, Microsoft scripting engine, Windows Desktop Bridge, Windows apps, Windows shell, Windows kernel, Windows Server, Windows storage and filesystems, Windows wireless networking, remote code execution, and Windows virtualization and kernel.

Interesting is the fix of the black screen bug that has been available since the Spring Creators update (Windows 10 V1703) and is caused by Tune-Up. The update is distributed via Windows Update, but should also be available via WSUS or may be downloaded from Microsoft Update Catalog.

Unfortunately, Microsoft has not fixed the SMBv1 issue I discussed in the blog post Microsoft plans a Windows 10 V1803 SMBv1 fix on June 2018. The issue that SMBv1 protocol is causing connection errors is described as a Known Issue.


Advertising

German blog reader Johann H. notified me via e-mail (thanks for that) about a curiosity. He wrote: If you load the update package windows10.0-kb4284835 from the “Microsoft Update Catalog” you will get the OS Build 17134.111. If you do it with the Windows 10 “Update and Security” you will get the OSBuild 17134.112.

Microsoft confessed later a 2nd issue: Microsoft Edge may stop working when it initializes the download of a font from a malformed (not RFC compliant) URL. Microsoft is working on a solution. And there are install issues with this update (Windows 10 V1803: Install issues with update KB4284835).

Update KB4293701 for Windows 10 Version 1803

Update KB4293701 (Critical compatibility update for upgrading to Windows 10 Version 1803: June 12, 2018) improves the upgrade experience to Windows and will be installed automatially by Windows Update.

Updates for Windows 10 Version 1709

The following updates are available for Windows 10 Fall Creators Update (version 1709)

Update KB4284819 for Windows 10 Version 1709

Cumulative update KB4284819 for Windows 10 Version 1709 (Fall Creators Update) raises the OS build to 16299.492 and includes quality improvements and the following fixes:

  • Provides protections from an additional subclass of speculative execution side channel vulnerability known as Speculative Store Bypass (CVE-2018-3639). These protections aren’t enabled by default. For Windows client (IT pro) guidance, follow the instructions in KB4073119. For Windows Server guidance, follow the instructions in KB4072698. Use this guidance document to enable mitigations for Speculative Store Bypass (CVE-2018-3639) in addition to the mitigations that have already been released for Spectre Variant 2 (CVE-2017-5715) and Meltdown (CVE-2017-5754).
  • Includes additional performance improvements.
  • Addresses an issue in Microsoft Edge that causes incorrect responses to XML requests.
  • Adds support for the SameSite cookie web standard to Microsoft Edge and Internet Explorer.
  • Addresses an issue with Internet Explorer that prevents it from using an updated version of location services.
  • Addresses an issue where firmware updates cause devices to go into BitLocker recovery mode when BitLocker is enabled, but Secure Boot is disabled or not present. This update prevents firmware installation on devices in this state. Administrators can install firmware updates by:
    1. Temporarily suspending BitLocker.
    2. Immediately installing firmware updates before the next OS startup.
    3. Immediately restarting the device so that BitLocker doesn’t remain in the suspended state.
  • Security updates to Internet Explorer, Microsoft Edge, Microsoft scripting engine, Windows Desktop Bridge, Windows apps, Windows shell, Windows storage and filesystems, Windows app platform and frameworks, Windows virtualization and kernel, Windows wireless networking, and Windows Server.

The update is distributed via Windows Update, but can also be downloaded via Microsoft Update Catalog. The update inherited the known issue from the previous update. Some non-English platforms can display the following string in English instead of the localized language: “Reading scheduled jobs from file is not supported in this language mode.” This error is displayed when Device Guard is enabled and you are trying to read the scheduled jobs you have created. In addition, there are other known bugs with Device Guard activated (e.g. no & or . operator etc., see) Microsoft is working on solving the issues.

Update KB4316692 for Windows 10 Mobile

Cumulative update KB4316692 for Windows 10 Mobile raises the OS build to 15254.489 and includes some improvements listed in the KB article. It is delivered via Windows Update.

Update KB4293700 for Windows 10 Version 1709

Update KB4293700 (Critical compatibility update for upgrading to Windows 10 Version 1709: June 12, 2018) improves the upgrade experience to Windows. It will be installed via Windows Update automatically.

Updates for Windows 10 Version 1507 till 1703

Various updates are available for Windows 10 RTM to Windows 10 Creators Update (version 1703). Here is a short overview.

  • Windows 10 Version 1703: Update KB4284874 is available for Windows Mobile as well as for the desktop. It raises the OS build to 15063.1155 (Mobile 15063.1154) and also contains fixes for the Spectre vulnerabilities. Details can be found in the KB article.
  • Windows 10 Version 1607: Update KB4284880 is only available for Enterprise and Education and Windows Server 2016. Systems with Clovertrail chipset also receive the update. The update raises the OS build to 14393.2312 and also contains fixes for the Spectre vulnerabilities. Details, also to the known problems can be found in the KB article.
  • Windows 10 Version 1507: Update KB428486 is available for the RTM version (LTSC). The update raises the OS build to 10240.17889 and also contains fixes for the Spectre vulnerabilities. Details, also about the known problems can be found in the KB article.

For Windows 10 V1511 there was no update that this version has fallen on the support. Details on the above updates can be found in the respective Microsoft KB articles in case of doubt.

Similar articles:
Adobe Flash Player version 30.0.0.113 available
Flash-Update KB4287903 for Windows released
Flash-Update KB4287903: Install issues with WSUS
Microsoft Office Patchday (June 5, 2018)
Windows 10 V1803: Update KB4338548 released
Microsoft Security Update Summary for June 12, 2018
Windows 10 V1511-1607: Privacy notification update KB4134662, KB4134663 and KB4134659Microsoft Office Patchday (5. Juni 2018)
Patchday: June 2018 Updates for Windows 7/8.1/Server
Patchday: Windows 10 updates June 12, 2018
Microsoft patchday: More updates (June 12, 2018)


Advertising


This entry was posted in Security, Update, Windows and tagged , , , , , , , , . Bookmark the permalink.

2 Responses to Patchday: Windows 10 updates June 12, 2018

  1. Galixte says:

    “If you load the update package windows10.0-kb4284835 from the “Microsoft Update Catalog” you will get the OS Build 17134.111”

    He has to re-download and apply this update.

    17134.111 version comes from the first package released by Microsoft, some minutes after a new one was provided.

    Source: https://forums.mydigitallife.net/threads/windows-10-hotfix-repository.57050/page-302#post-1443775

Leave a Reply

Your email address will not be published. Required fields are marked *