Windows 10 V1903: Update KB4497936 for Insider Preview (19H1)

[English]Microsoft released cumulative update KB4497936 for Windows 10 version 1903 (Insider Preview Build 18362, 19H1 branch) in the Fast Ring, Slow Ring and Release Preview Ring on May 14, 2019.


Advertising

Update KB4497936 for Windows 10 V1903

Cumulative Update KB4497936 for Windows 10 V1903 was released immediately for all rings (Fast, Slow, Release Preview) and raises the build number to 18362.113. This update is offered on devices that have been updated to build 18356.30 or later. This update also includes updates that are part of the normal monthly release cycle. Some of the most important changes are:

  • Provides protections against a new subclass of speculative execution side-channel vulnerabilities, known as Microarchitectural Data Sampling, for 64-Bit (x64) versions of Windows (CVE-2019-11091, CVE-2018-12126, CVE-2018-12127, CVE-2018-12130). Use the registry settings as described in the Windows Client and Windows Server articles. (These registry settings are enabled by default for Windows Client OS editions and Windows Server OS editions).
  • Addresses an issue that decreases Internet Explorer’s performance when you use roaming profiles or you don’t use the Microsoft Compatibility List.
  • Addresses an issue that may cause the text, layout, or cell size to become narrower or wider than expected in Microsoft Excel when using the MS UI Gothic or MS PGothic fonts.

So once again an update is rolled out against a side channel attack. After installing this update you may get the error “0x800705b4” when starting Windows Defender Application Guard or Windows Sandbox. As workaround Microsoft specifies to start the registry editor under a local administrator account and navigate to the following key::

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Containers\CmService\Policy]

Set the two following values there:

“DisableClone”=dword:0000000001


Advertising

“DisableSnapshot”=dword:0000000001

on the host operating system. Then restart Windows 10 on the host. The error should then no longer occur.

To receive this update, you must be a Windows Insider (Slow, Fast, or Release Preview Ring) AND run Insider Build 18356.30 or later to download the update and install it automatically from Windows Update. Windows Insiders can also download the standalone package for this update. To do this, visit the Microsoft Update Catalog.

Microsoft strongly recommends that you install the latest Service Stack Update (SSU) for the Windows 10 version before you update. Only then should you install the latest Cumulative Update (LCU). SSUs improve the reliability of the update process, and are designed to minimize potential problems when you install the LCU and apply Microsoft security fixes.


Advertising
This entry was posted in Update, Windows and tagged , . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *