Patchday: Windows 10 Updates (September 10, 2019)

[German]On September 10, 2019 (the second Tuesday of the month, Patchday at Microsoft), several cumulative updates were released for the supported Windows 10 builds. For example, an update fixes the Cortana/Search bug in Windows 10 V1903. Here are some details about each update.

For a list of updates, visit this Microsoft Web page. I have extracted the details below. The update installation requires an existing current Servicing Stack Updates (SSUs). Microsoft now publishes an overview of current Servicing Stack Updates (SSUs) under ADV990001.

Updates for Windows 10 Version 1903

The following updates are available for Windows 10 May 2019 Update (Version 1903).

Update KB4515384 for Windows 10 Version 1903

Cumulative Update KB4515384 raises the OS build to 18362.356 and is available for Windows 10 Version 1903 and Windows Server Version 1903 (and Hololens). It includes quality improvements but no new operating system features. Here is the list of improvements, this time called highlights by Microsoft:

• Updates to improve security when using Internet Explorer, Microsoft Edge, networking technologies, and input devices such as a mouse, keyboard, or stylus.
• Updates for verifying user names and passwords.
• Updates for storing and managing files.

The following fixes and improvements have been added to the Windows version

• Provides protections against a new subclass of speculative execution side-channel vulnerabilities, known as Microarchitectural Data Sampling, for 32-Bit (x86) versions of Windows (CVE-2019-11091,CVE-2018-12126, CVE-2018-12127, CVE-2018-12130). Use the registry settings as described in the Windows Client and Windows Server articles. (These registry settings are enabled by default for Windows Client OS editions and Windows Server OS editions.)
• Addresses an issue that causes high CPU usage from SearchUI.exe for a small number of users. This issue only occurs on devices that have disabled searching the web using Windows Desktop Search.
• Security updates to Microsoft Edge, Internet Explorer, Microsoft Scripting Engine, Windows App Platform and Frameworks, Windows Input and Composition, Windows Media, Windows Fundamentals, Windows Authentication, Windows Cryptography, Windows Datacenter Networking, Windows Storage and Filesystems, Windows Wireless Networking, the Microsoft JET Database Engine, Windows Kernel, Windows Virtualization, and Windows Server.

In addition to the many unnamed vulnerabilities, the update once again addresses vulnerabilities caused by speculative side-channel attacks. The update also contains the fix for the bug in the Windows 10 V1903 search which causes a high CPU load by Cortana (see also my old article Windows 10 V1903: Search and Cortana bug in Update KB4512941 confirmed (09/05/2019) where a fix was promised). But I got already a feedback from a German reader, that the broken Bing search hasn't been fixed on all machines. If you are experiencing this, open an administrative prompt by Run as administrator and run the command sfc /scannow. Is the broken search then fixed?

In addition, Microsoft has released an update directly for the Windows Update Client to improve its reliability. This will be rolled out outside of Windows Update if the machine is compatible and not a LTSC variant and updates have not been blocked by GPO.

This update is automatically downloaded and installed by Windows Update. This update is also available from Microsoft Update Catalog and via WSUS. Microsoft strongly recommends that you install the latest Service Stack Update (SSU) for your operating system before installing the latest Cumulative Update (LCU). Microsoft does not specify any known issues for the update.

Updates for Windows 10 Version 1809

The following updates are available for Windows 10 October 2018 Update (version 1809) and Windows Server 2019.

Update KB4512578 for Windows 10 Version 1809

Cumulative Update KB4512578 raises the OS build to 17763.737 and includes quality improvements but no new operating system features. Here is the list of improvements, this time called highlights by Microsoft:

• Updates to improve security when using Internet Explorer, Microsoft Edge, and input devices such as a mouse, keyboard, or stylus.
• Updates for verifying user names and passwords.

The following fixes and improvements have been added to the Windows version:

• Provides protections against a new subclass of speculative execution side-channel vulnerabilities, known as Microarchitectural Data Sampling, for 32-Bit (x86) versions of Windows (CVE-2019-11091,CVE-2018-12126, CVE-2018-12127, CVE-2018-12130). Use the registry settings as described in the Windows Client and Windows Server articles. (These registry settings are enabled by default for Windows Client OS editions and Windows Server OS editions.)
• Security updates to Microsoft Edge, Internet Explorer, Microsoft Scripting Engine, Windows App Platform and Frameworks, Windows Input and Composition, Windows Fundamentals, Windows Authentication, Windows Cryptography, the Microsoft JET Database Engine, Windows Kernel, Windows Virtualization, and Windows Server.

Again, the update addresses vulnerabilities caused by speculative side-channel attacks. This update is automatically downloaded and installed by Windows Update. This update is also available in the Microsoft Update Catalog. Microsoft strongly recommends that you install the latest Service Stack Update (SSU) for your operating system before installing the latest Cumulative Update (LCU). Microsoft lists several known issues that the update causes. See the KB article for details.

Updates for Windows 10 Version 1803

The following updates are available for Windows 10 April Update (version 1803).

Update KB4516058 for Windows 10 Version 1803

Cumulative Update KB4516058 contains quality improvements but no new operating system functions and raises the OS build to 17134.1006. Here is the list of improvements, called highlights by Microsoft:

• Updates to improve security when using Internet Explorer, Microsoft Edge, and input devices such as a mouse, keyboard, or stylus.
• Updates for verifying user names and passwords.
• Updates for storing and managing files.

And here is the list of additional fixes and changes:

• Provides protections against a new subclass of speculative execution side-channel vulnerabilities, known as Microarchitectural Data Sampling, for 32-Bit (x86) versions of Windows (CVE-2019-11091,CVE-2018-12126, CVE-2018-12127, CVE-2018-12130). Use the registry settings as described in the Windows Client and Windows Server articles. (These registry settings are enabled by default for Windows Client OS editions and Windows Server OS editions.)
• Security updates to Internet Explorer, Microsoft Scripting Engine, Windows App Platform and Frameworks, Windows Input and Composition, Windows Media, Windows Fundamentals, Windows Authentication, Windows Cryptography, Windows Datacenter Networking, Windows Storage and Filesystems, the Microsoft JET Database Engine, Windows Kernel, Windows Virtualization, Windows Server, and Microsoft Edge.

This update is automatically downloaded and installed by Windows Update. This update is also available from Microsoft Update Catalog. Microsoft strongly recommends that you install the latest Service Stack Update (SSU) for your operating system before installing the latest Cumulative Update (LCU). Microsoft lists two known issues that the update causes in the KB article.

Updates for Windows 10 Version 1507 till 1709

For Windows 10 RTM up to version 1709 different updates are available for the LTSC versions and Enterprise versions. Here is a short overview.

• Windows 10 Version 1709: Update KB4516066 is only available for Enterprise and Education. The update raises the OS build to 16299.1387. The fixes mentioned in the KB article are included. This update is automatically downloaded and installed by Windows Update, but can be downloaded from the Microsoft Update Catalog. The latest Servicing Stack Update (SSU) must be installed prior to manual installation. Details, including known issues, can be found in the KB article.
• Windows 10 Version 1703: Update KB4516068 is only available for Enterprise and Education. The update raises the OS build to 15063.1988. The fixes mentioned in the KB article are included. This update is automatically downloaded and installed by Windows Update, but can be downloaded from the Microsoft Update Catalog. The latest Servicing Stack Update (SSU) must be installed prior to manual installation. Details, including known issues, can be found in the KB article.
• Windows 10 Version 1607: Update KB4516044 is only available for Enterprise and Education and Windows Server 2016. The update raises the OS build to14393.3204. The fixes mentioned in the KB article are included. This update is automatically downloaded and installed by Windows Update, but can be downloaded from the Microsoft Update Catalog. The latest Servicing Stack Update (SSU) must be installed prior to manual installation. Details, including known issues, can be found in the KB article.
• Windows 10 Version 1507: Update KB4516070 is available for the RTM version (LTSC). The update raises the OS build to 10240.18333. The fixes mentioned in the KB article are included. This update is automatically downloaded and installed by Windows Update, but can be downloaded from the Microsoft Update Catalog. The latest Servicing Stack Update (SSU) must be installed prior to manual installation. Details, also on known problems, can be found in the KB article. Details can be found in the KB article.

There was no update for Windows 10 V1511, because this version was dropped from support. Details about the above updates can be found in the respective Microsoft KB articles in case of doubt.

Similar articles:
Microsoft Office Patchday (September 3, 2019)
Adobe Flash Player 32.0.0.255
Microsoft Security Update Summary (September 10, 2019)
Patchday: Updates for Windows 7/8.1/Server (Sept. 10, 2019)
Patchday: Windows 10 Updates (September 10, 2019)
Patchday Microsoft Office Updates (September 10, 2019)