Patchday Windows 10 Updates (June 11, 2019)

[German]On June 11, 2019 (second Tuesday of the month, Patchday at Microsoft), several cumulative updates were released for the supported Windows 10 builds. Here are some details about each update.


Advertising


A list of the updates can be found on this Microsoft Web page. I’ve pulled out the details below. The update installation requires an existing current Servicing Stack Updates (SSUs). Microsoft now publishes an overview of current Servicing Stack Updates (SSUs) under ADV990001.

According to the following tweet, some reported 0-day vulnerabilities in various Windows versions are also addressed with the following updates (even if Microsoft does not explicitly mention this).

Updates for Windows 10 Version 1903

The following updates are available for Windows 10 May 2019 Update (Version 1903).

Update KB4503293 for Windows 10 Version 1903

Cumulative Update KB4503293 raises the OS build to 18362.175 and is available for Windows 10 Version 1903 and Windows Server Version 1903. It includes quality improvements but no new operating system features. Here is the list of fixes:


Advertising

  • Addresses a security vulnerability by intentionally preventing connections between Windows and Bluetooth devices that are not secure and use well-known keys to encrypt connections, including security fobs. If BTHUSB Event 22 in the Event Viewer states, “Your Bluetooth device attempted to establish a debug connection….”, then your system is affected. Contact your Bluetooth device manufacturer to determine if a device update exists. For more information, see CVE-2019-2102 and KB4507623.
  • Security updates to Windows Virtualization, Microsoft Scripting Engine, Internet Explorer, Windows App Platform and Frameworks, Windows Input and Composition, Windows Media, Windows Shell, Windows Server, Windows Authentication, Windows Cryptography, Windows Storage and Filesystems, Windows SQL Components, the Microsoft JET Database Engine, and Internet Information Services.

There is an attempt to fix a problem with event entries for the Bluetooth area and the Microsoft JET Database Engine.

Microsoft has also released an update directly for the Windows Update Client to improve its reliability. This will be rolled out outside of Windows Update if the machine is compatible and not a LTSC variant and updates have not been blocked by GPO.

This update is automatically downloaded and installed by Windows Update. This update is also available in the Microsoft Update Catalog. Microsoft strongly recommends that you install the latest Service Stack Update (SSU) for your operating system before installing the latest Cumulative Update (LCU).

The update doesn’t fix the “ERROR_FILE_NOT_FOUND (0x80070002)” error in the sandbox (see Windows 10 V1903: Update KB4497936 breaks Sandbox).

Updates for Windows 10 Version 1809

The following updates are available for Windows 10 October 2018 Update (version 1809) and Windows Server 2019.

Update KB4503327 for Windows 10 Version 1809

Cumulative Update KB4503327 raises the OS build to 17763.557 and includes quality improvements but no new operating system features. Here is the list of fixes:

  • Addresses an issue that may prevent the Windows Mixed Reality keyboard from rendering correctly in some applications.
  • Addresses a security vulnerability by intentionally preventing connections between Windows and Bluetooth devices that are not secure and use well-known keys to encrypt connections, including security fobs. If BTHUSB Event 22 in the Event Viewer states, “Your Bluetooth device attempted to establish a debug connection….”, then your system is affected. Contact your Bluetooth device manufacturer to determine if a device update exists. For more information, see CVE-2019-2102 and KB4507623.
  • Addresses an issue that may prevent the Preboot Execution Environment (PXE) from starting a device from a Windows Deployment Services (WDS) server configured to use Variable Window Extension. This may cause the connection to the WDS server to terminate prematurely while downloading the image. This issue does not affect clients or devices that are not using Variable Window Extension.
  • Adds updated Broadcom Wi-Fi firmware to Microsoft HoloLens. For more information, see Advisory 190016.
  • Addresses an issue that may prevent Internet Explorer 11 from opening if the Default Search Provider is not set or is malformed.
  • Security updates to Microsoft Scripting Engine, Internet Explorer, Microsoft Edge, Windows App Platform and Frameworks, Windows Input and Composition, Windows Media, Windows Shell, Windows Server, Windows Authentication, Windows Cryptography, Windows Datacenter Networking, Windows Storage and Filesystems, Windows SQL components, the Microsoft JET Database Engine, Windows Virtualization, Windows Kernel, and Internet Information Services.

There is also an attempt here to fix a problem with event entries for the Bluetooth area and the Microsoft JET Database Engine.

Microsoft has also released an update directly for the Windows Update Client to improve its reliability. This will be rolled out outside of Windows Update if the machine is compatible and not a LTSC variant and updates have not been blocked by GPO.

This update is automatically downloaded and installed by Windows Update. This update is also available in the Microsoft Update Catalog. Microsoft strongly recommends that you install the latest Service Stack Update (SSU) for your operating system before installing the latest Cumulative Update (LCU). Microsoft lists several known issues that the update causes in the KB article.

Updates for Windows 10 Version 1803

The following updates are available for Windows 10 April Update (version 1803).

Update KB4503286 for Windows 10 Version 1803

Cumulative Update KB4503286 contains quality improvements but no new operating system functions and raises the OS build to 17134.829. Here is the list of fixes: :

  • Addresses a security vulnerability by intentionally preventing connections between Windows and Bluetooth devices that are not secure and use well-known keys to encrypt connections, including security fobs. If BTHUSB Event 22 in the Event Viewer states, “Your Bluetooth device attempted to establish a debug connection….”, then your system is affected. Contact your Bluetooth device manufacturer to determine if a device update exists. For more information, see CVE-2019-2102 and KB4507623.
  • Addresses an issue that may prevent the Preboot Execution Environment (PXE) from starting a device from a Windows Deployment Services (WDS) server configured to use Variable Window Extension. This may cause the connection to the WDS server to terminate prematurely while downloading the image. This issue does not affect clients or devices that are not using Variable Window Extension.
  • Addresses an issue that may prevent Internet Explorer 11 from opening if the Default Search Provider is not set or is malformed.
  • Security updates to Microsoft Scripting Engine, Internet Explorer, Microsoft Edge, Windows App Platform and Frameworks, Windows App Platform and Frameworks, Windows Input and Composition, Windows Media, Windows Shell, Windows Server, Windows Authentication, Windows Cryptography, Windows Storage and Filesystems, Windows Virtualization, Internet Information Services Windows SQL components, and the Microsoft JET Database Engine.

This update is automatically downloaded and installed by Windows Update. This update is also available in the Microsoft Update Catalog. Microsoft strongly recommends that you install the latest Service Stack Update (SSU) for your operating system before installing the latest Cumulative Update (LCU). Microsoft lists a known issue with file operations on cluster shared volumes that the update causes in the KB article. This error has been persisting through the updates for months.

Updates for Windows 10 Version 1507 till 1709

For Windows 10 RTM up to version 1709 different updates are available for the LTSC versions and Enterprise versions. Here is a short overview

  • Windows 10 Version 1709: Update KB4503284 is only available for Enterprise and Education. The update raises the OS build to 16299.1217. The fixes mentioned in the KB article are included. This update is automatically downloaded and installed by Windows Update, but can be downloaded from the Microsoft Update Catalog. The latest Servicing Stack Update (SSU) must be installed prior to manual installation. Details, including known issues, can be found in the KB article.
  • Windows 10 Version 1703: Update KB4503279 is only available for Enterprise and Education. The update raises the OS build to 15063.1868. The fixes mentioned in the KB article are included. This update is automatically downloaded and installed by Windows Update, but can be downloaded from the Microsoft Update Catalog. The latest Servicing Stack Update (SSU) must be installed prior to manual installation. Details, including known issues, can be found in the KB article.
  • Windows 10 Version 1607: Update KB4503267 is only available for Enterprise and Education and Windows Server 2016. The update raises the OS build to 14393.3025 and includes the fixes mentioned in the KB article. This update is automatically downloaded and installed by Windows Update, but can be downloaded from the Microsoft Update Catalog. The latest Servicing Stack Update (SSU) must be installed prior to manual installation. Details, including known issues, can be found in the KB article.
  • Windows 10 Version 1507: Update KB4503291 is available for the RTM version (LTSC). The update lifts the OS build to 10240.18244 and includes the fixes mentioned in the KB article. This update is automatically downloaded and installed by Windows Update, but can be downloaded from the Microsoft Update Catalog. The latest Servicing Stack Update (SSU) must be installed before manual installation. Details, also on known problems, can be found in the KB article. Details can be found in the KB article.

There was no update for Windows 10 V1511, because this version was dropped from support. Details about the above updates can be found in the respective Microsoft KB articles in case of doubt.

Similar articles:
Adobe security updates for Flash, ColdFusion, Campaign
Microsoft Office Patchday (June 4, 2019)
Microsoft Security Update Summary (June 11, 2019)
Patchday: Updates for Windows 7/8.1/Server (June 11, 2019)
Patchday Windows 10 Updates (June 11, 2019)
Patchday Microsoft Office Updates (June 11, 2019)


Advertising


This entry was posted in Security, Update, Windows and tagged , , , , , , , , , . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *