Patchday Windows 10-Updates (October 8, 2019)

[German]On October 8, 2019 (second Tuesday of the month, patchday at Microsoft), several cumulative updates were released for the supported Windows 10 builds. Here are some details about each update.


Advertising

For a list of updates, visit this Microsoft Web page. I have extracted the details below. The update installation requires an existing current Servicing Stack Updates (SSUs). Microsoft now publishes an overview of current Servicing Stack Updates (SSUs) under ADV990001.

Updates for Windows 10 Version 1903

The following updates are available for Windows 10 May 2019 Update (Version 1903).

Update KB4517389 for Windows 10 Version 1903

Cumulative Update KB4517389 raises the OS build to 18362.418 and is available for Windows 10 Version 1903 and Windows Server Version 1903 (as well as the Hololens). It contains quality improvements but no new operating system functions. Here is the list of improvements, called highlights by Microsoft:

  • Updates to improve security when using Internet Explorer and Microsoft Edge.
  • Updates for verifying user names and passwords.
  • Updates for storing and managing files.

The following fixes and improvements have been added to the Windows version:

  • Addresses an issue in security bulletin CVE-2019-1318 that may cause client or server computers that don’t support Extended Master Secret (EMS) RFC 7627 to have increased connection latency and CPU utilization. This issue occurs while performing full Transport Layer Security (TLS) handshakes from devices that don’t support EMS, especially on servers. EMS support has been available for all the supported versions of Windows since calendar year 2015 and is being incrementally enforced by the installation of the October 8, 2019 and later monthly updates.
  • Addresses an issue with applications and printer drivers that utilize the Windows JavaScript engine (jscript.dll) for processing print jobs.
  • Security updates to Windows Shell, Internet Explorer, Microsoft Edge, Windows App Platform and Frameworks, Windows Cryptography, Windows Authentication, Windows Storage and Filesystems, Windows Kernel, Microsoft Scripting Engine, and Windows Server.

The update is intended to fix the printer bug that has been known since September 2019. However, I already have a German comment that a Windows update causes printer issues (the printer isn’t detected no more – addendum: it was the firewall, that has blocked the Wi-Fi printer).


Advertising

In addition, Microsoft has released an update directly for the Windows Update Client to improve its reliability. This will be rolled out outside of Windows Update if the machine is compatible and not a LTSC variant and updates have not been blocked by GPO.

This update is automatically downloaded and installed by Windows Update. This update is also available in the Microsoft Update Catalog and via WSUS. Microsoft strongly recommends that you install the latest Service Stack Update (SSU) for your operating system before installing the latest Cumulative Update (LCU). Microsoft does not specify any known issues for the update.

Updates for Windows 10 Version 1809

The following updates are available for Windows 10 October 2018 Update (version 1809) and Windows Server 2019.

Update KB4519338 for Windows 10 Version 1809

Cumulative Update KB4519338 raises the OS build (according to Microsoft’s kb article) to 17763.806 (readers are reporting sub build .805) and includes quality improvements but no new operating system features. Here is the list of improvements, called highlights by Microsoft:

  • Updates to improve security when using Internet Explorer and Microsoft Edge.
  • Updates for verifying user names and passwords.

The following fixes and improvements have been added to the Windows version:

  • Addresses an issue in the Keyboard Lockdown Subsystem that may not filter key input correctly.
  • Addresses an issue in security bulletin CVE-2019-1318 that may cause client or server computers that don’t support Extended Master Secret (EMS) RFC 7627 to have increased connection latency and CPU utilization. This issue occurs while performing full Transport Layer Security (TLS) handshakes from devices that don’t support EMS, especially on servers. EMS support has been available for all the supported versions of Windows since calendar year 2015 and is being incrementally enforced by the installation of the October 8, 2019 and later monthly updates.
  • Addresses an issue with applications and printer drivers that utilize the Windows JavaScript engine (jscript.dll) for processing print jobs.
  • Security updates to Windows Shell, Internet Explorer, Microsoft Scripting Engine, Microsoft Edge, Windows App Platform and Frameworks, Windows Cryptography, Windows Authentication, Windows Kernel, and Windows Server.

In addition, Microsoft has released an update directly for the Windows Update Client to improve its reliability. This will be rolled out outside of Windows Update if the machine is compatible and not a LTSC variant and updates have not been blocked by GPO.

This update is automatically downloaded and installed by Windows Update. This update is also available in the Microsoft Update Catalog. . Microsoft strongly recommends that you install the latest Service Stack Update (SSU) for your operating system before installing the latest Cumulative Update (LCU). Microsoft lists several known issues that the update causes. See the KB article for details.

Updates for Windows 10 Version 1803

The following updates are available for Windows 10 April Update (version 1803), which expires on November 12, 2019 for Home and Pro.

Update KB4520008 for Windows 10 Version 1803

Cumulative Update KB4520008 contains quality improvements but no new operating system features and raises the OS build to 17134.1069. Here is the list of improvements, this time called highlights by Microsoft:

  • Updates to improve security when using Internet Explorer and Microsoft Edge.
  • Updates for verifying user names and passwords.
  • Updates for storing and managing files.

And here is the list of fixes and changes:

  • Addresses an issue in the Keyboard Lockdown Subsystem that may not filter key input correctly.
  • Addresses an issue with the Bluetooth hardening updates, released August 13, 2019, that may cause a “0x133 DPC_WATCHDOG_VIOLATION” error.
  • Addresses an issue in security bulletin CVE-2019-1318 that may cause client or server computers that don’t support Extended Master Secret (EMS) RFC 7627 to have increased connection latency and CPU utilization. This issue occurs while performing full Transport Layer Security (TLS) handshakes from devices that don’t support EMS, especially on servers. EMS support has been available for all the supported versions of Windows since calendar year 2015 and is being incrementally enforced by the installation of the October 8, 2019 and later monthly updates.
  • Addresses an issue with applications and printer drivers that utilize the Windows JavaScript engine (jscript.dll) for processing print jobs.
  • Security updates to Windows Shell, Internet Explorer, Microsoft Edge, Windows App Platform and Frameworks, Windows Cryptography, Windows Authentication, Windows Datacenter Networking , Windows Storage and Filesystems, Windows Kernel, Microsoft Scripting Engine, and Windows Server.

This update is automatically downloaded and installed by Windows Update. This update is also available in the Microsoft Update Catalog. Microsoft strongly recommends that you install the latest Service Stack Update (SSU) for your operating system before installing the latest Cumulative Update (LCU). Microsoft lists several known issues that the update causes in the KB article.

Updates for Windows 10 Version 1507 till 1709

For Windows 10 RTM up to version 1709 different updates are available for the LTSC versions and Enterprise versions. Here is a short overview.

  • Windows 10 Version 1709: Update KB4520004 is only available for Enterprise and Education. The update raises the OS build to 16299.1451. The fixes mentioned in the KB article are included. This update is automatically downloaded and installed by Windows Update, but can be downloaded from the Microsoft Update Catalog. The latest Servicing Stack Update (SSU) must be installed prior to manual installation. Details, including known issues, can be found in the KB article.
  • Windows 10 Version 1703: Update KB4520010 is only available for Enterprise and Education. The update raises the OS build to 15063.2108. The fixes mentioned in the KB article are included. This update is automatically downloaded and installed by Windows Update, but can be downloaded from the Microsoft Update Catalog. The latest Servicing Stack Update (SSU) must be installed prior to manual installation. Details, including known issues, can be found in the KB article.
  • Windows 10 Version 1607: Update KB4519998 is only available for Enterprise and Education and Windows Server 2016. The update raises the OS build to 14393.3274 and includes the fixes mentioned in the KB article. This update is automatically downloaded and installed by Windows Update, but can be downloaded from the Microsoft Update Catalog. The latest Servicing Stack Update (SSU) must be installed before manual installation. Details, including known issues, can be found in the KB article.
  • Windows 10 Version 1507: Update KB4520011 is available for the RTM version (LTSC). The update raises the OS build to 10240.18368. The fixes mentioned in the KB article are included. This update is automatically downloaded and installed by Windows Update, but can be downloaded from the Microsoft Update Catalog. The latest Servicing Stack Update (SSU) must be installed prior to manual installation. Details, also on known problems, can be found in the KB article. Details can be found in the KB article.

There was no update for Windows 10 V1511, because this version was dropped from support. Details about the above updates can be found in the respective Microsoft KB articles in case of doubt.

Similar articles:
Microsoft Office Patchday (1. Oktober 2019)
Microsoft Security Update Summary (October 8, 2019)
Patchday: Updates for Windows 7/8.1/Server (Oct. 8, 2019)
Patchday Windows 10-Updates (October 8, 2019)
Patchday Microsoft Office Updates (October 8, 2019)


Advertising
This entry was posted in Security, Update, Windows and tagged , , , , , , , , , . Bookmark the permalink.

3 Responses to Patchday Windows 10-Updates (October 8, 2019)

  1. EP says:

    actually guenni the KB4519998 cumulative update for Win10 v1607 is for LTSB 2016 and Server 2016 editions only and will not install or fail with error message “we couldn’t complete the updates, undoing changes” on enterprise & education editions of 1607 as those editions went out of support on April 2019.

    • guenni says:

      But what’s with the Cherry Trail stuff? MS promised to support that platform until 2023.

      • EP says:

        MS provides support for 32bit Win10 v1607 on Intel “Clover Trail” or CloverView devices until Jan. 2023, guenni. remember that Clovertrail CPUs can only run 32bit/x86 OSes and not the most common 64bit/x64 OSes as these processors have only 32bit instruction set in them.

        also MS has released a bunch of optional non-security updates for Win10 versions 1607 to 1809 (except 1507, 1903 and the newly EOLed 1703 release which had its last update at KB4520010) on Tuesday Oct. 15.

Leave a Reply

Your email address will not be published. Required fields are marked *