Windows 10 V1809/190x: Preview Updates (September 16, 2020)

[German]On September 16, 2020 Microsoft released several cumulative updates as previews for Windows 10 versions 1809, 1903 and 1909. A first comment mentions these updates has already been given in the blog (thx for that). Here are some details about the respective updates.

A list of the updates can be found on this Microsoft website. I have extracted the details below. The update installation requires an existing current Servicing Stack Update (SSUs). Meanwhile, Microsoft publishes an overview of current Servicing Stack Updates (SSUs) under ADV990001 (if it is not up to date, please check the Microsoft Update Catalog for Servicing Stack Updates). 

Important: From July 2020 all Windows updates disable the RemoteFX vGPU feature due to the CVE-2020-1036 vulnerability (see also KB4570006). After installing this update, attempts to start virtual machines (VM) with RemoteFX vGPU enabled will fail. More information can be found here.

Update KB4577062 for Windows 10 Version 190x

Preview update KB4577062 is cumulative and is available for Windows 10 versions 1903 and 1909 as well as for Windows Server version 1903 and Windows Server version 1909. It raises the OS build to 18362.1110 (Windows 10 V1903) and 18363.1110 (Windows 10 V1909). It includes quality improvements but no new operating system features. Here is the list of improvements, called highlights by Microsoft

• Adds a notification to Internet Explorer 11 that informs users about the end of support for Adobe Flash in December 2020. For more information, see KB4581051.
• Updates an issue that causes certain apps to go into an unwanted repair cycle. As a result, a user cannot use that app during that time.
• Updates an issue that might display 4K high dynamic range (HDR) content darker than expected when you configure certain non-HDR systems for HDR Streaming. 
• Updates an issue to reduce the likelihood of missing fonts. 
• Updates an issue that causes a device to stop responding after you have been using a pen for several hours. 
• Reduces distortions and aberrations in Windows Mixed Reality head-mounted displays (HMD).

Additional the following fixes and improvements to Windows 10 version 1909, which are identical to version 1903 (update is also available for the Hololens) are provided:

• Adds a notification to Internet Explorer 11 that informs users about the end of support for Adobe Flash in December 2020. For more information, see KB4581051.
• Addresses an issue with Microsoft Edge IE Mode that occurs when you enable Configure enhanced hang detection for Internet Explorer mode in Microsoft Edge. 
• Addresses an issue that causes certain apps to go into an unwanted repair cycle. As a result, a user cannot use that app during that time.
• Addresses an issue that, in certain scenarios, causes applications to stop working if they are created using Visual Basic for Applications (VBA). The error is, "Class not registered" error. 
• Addresses an issue that might display an empty black screen when a device is connecting to a Windows Virtual Desktop (WVD) machine. 
• Addresses an issue that might display 4K high dynamic range (HDR) content darker than expected when you configure certain non-HDR systems for HDR Streaming. 
• Addresses an issue that causes a stop error when the initialization of the graphics adapter fails. 
• Addresses an issue to reduce the likelihood of missing fonts. 
• Addresses an issue that causes a device to stop responding after you have been using a pen for several hours. 
• Addresses an issue that fails to recognize the first East Asian language character typed into a Microsoft Foundation Class Library (MFC) DataGrid. 
• Addresses an issue in which selecting I forgot my Pin from Settings>Accounts>Sign-in options fails in a Windows Hello for Business On-Premise deployment. 
• Addresses an issue that causes File Explorer to close unexpectedly when you use a Ribbon shell extension under specific circumstances. 
• Addresses an issue that affects default application associations during certain upgrade scenarios. This might cause numerous toast notifications to appear when you first sign in after the upgrade.
• Addresses an issue that generates a "No features to install" message when you add a feature, even if you provide administrative credentials. 
• Addresses an issue that causes a stop error when using Microsoft Surface Slim Pen on certain editions of Microsoft Surface Pro X or Microsoft Surface Laptop 3. 
• Updates 2021 time zone information for Fiji. 
• Addresses stop error 0xC2 in usbccgp.sys. 
• Addresses an issue that causes random line breaks when you redirect PowerShell console error output. 
• Addresses an issue with creating HTML reports using tracerpt. 
• Allows the DeviceHealthMonitoring Cloud Service Plan (CSP) to run on Windows 10 Business and Windows 10 Pro editions. 
• Addresses an issue that prevents the content under HKLM\Software\Cryptography from being carried over during Windows feature updates. 
• Addresses an issue that displays an error that states that a smart card PIN change was not successful even though the PIN change was successful. 
• Addresses an issue that might create duplicate Foreign Security Principal directory objects for Authenticated and Interactive users in the domain partition. As a result, the original directory objects have "CNF" added to their names and are mangled. This issue occurs when you promote a new domain controller using the CriticalReplicationOnly flag. 
• Addresses an issue that prevents you from enabling BitLocker after installing the Server Core App Compatibility Feature on Demand (FOD). 
• Addresses an issue that causes an access violation in lsass.exe when a process is started using the runas command in some circumstances. 
• Addresses an issue in which Windows Defender Application Control enforces package family name rules that should be audit only. 
• Addresses an issue, which occurs after an update, that causes devices that have the Dynamic Root of Trust for Measurement (DRTM) enabled to unexpectedly reset when hibernating. 
• Updates the configuration of Windows Hello Face recognition to work well with 940nm wavelength cameras. 
• Reduces distortions and aberrations in Windows Mixed Reality head-mounted displays (HMD). 
• Ensures that new Windows Mixed Reality HMDs meet minimum specification requirements and default to a 90Hz refresh rate. 
• Addresses an issue that causes a stop error on a Hyper-V host when a virtual machine (VM) issues a specific Small Computer System Interface (SCSI) command. 
• Addresses an issue that prevents Always On VPN (AOVPN) from automatically reconnecting when resuming from Sleep or Hibernate. 
• Adds an Azure Active Directory (AAD) Device Token that is sent to Windows Update (WU) as part of each WU scan. WU can use this token to query for membership in groups that have an AAD Device ID. 
• Addresses an issue that fails to log events 5136 for group membership changes in certain scenarios. This occurs when you use the "Permissive Modify" control; for example, the Active Directory (AD) PowerShell modules use this control. 
• Addresses an issue with the Microsoft Cluster Shared Volumes File Systems (CSVFS) driver that prevents Win32 API access to SQL Server Filestream data. This occurs when the data is stored on a Cluster Shared Volume in a SQL Server failover cluster instance, which is on an Azure VM. 
• Addresses an issue that causes a deadlock when Offline Files are enabled. As a result, CscEnpDereferenceEntryInternal holds parent and child locks. 
• Addresses an issue that causes deduplication jobs to fail with stop error 0x50 when you call HsmpRecallFreeCachedExtents(). 
• Addresses an issue that causes applications stop working when they use Microsoft's Remote Desktop sharing APIs. The breakpoint exception code is 0x80000003. 
• Removes the HTTP call to www.microsoft.com that the Remote Desktop Client (mstsc.exe) makes at sign out when using a Remote Desktop Gateway. 
• Adds support for certain new Windows Mixed Reality motion controllers. 
• Addresses an issue with evaluating the compatibility status of the Windows ecosystem to help ensure application and device compatibility for all updates to Windows. 

• Addresses an issue with setting the "Restrict delegation of credentials to remote servers" Group Policy with the "Restrict Credential Delegation" mode on the RDP client. As a result, the Terminal Server service tries to use "Require Remote Credential Guard" mode first and will only use "Require Restricted Admin" if the server does not support "Require Remote Credential Guard".

This update is offered and installed via Windows Update, but is also available in the Microsoft Update Catalog (but not for WSUS). According to Microsoft the update is optional and can only be found when searching for an update. Microsoft strongly recommends that you install the latest service stack update (SSU) for your operating system before installing the latest cumulative update (LCU). Microsoft states that it is not aware of any known issues that this update causes. 

In addition, Microsoft has released an update directly to the Windows Update client to improve its reliability. This is rolled out outside of Windows Update if the machine is compatible and not an LTSC variant and updates have not been blocked by GPO.

Update KB4577069 for Windows 10 Version 1809

Cumulative update KB4577069 is optional (preview) and raises the OS build (according to MS) to 17763.1490 and includes quality improvements but no new operating system features. Here is the list of improvements, called highlights by Microsoft :

• Adds a notification to Internet Explorer 11 that informs users about the end of support for Adobe Flash in December 2020. For more information, see KB4581051.
• Updates an issue to reduce the likelihood of missing fonts.
• Updates an issue that causes applications to close unexpectedly when a user inputs East Asian characters after changing the keyboard layout. 
• Updates an issue that causes Microsoft Office applications to close unexpectedly when using a Korean Input Method Editor (IME).

Here is a full list of fixes and improvements to Windows 10 version 1809:

• Adds a notification to Internet Explorer 11 that informs users about the end of support for Adobe Flash in December 2020. For more information, see KB4581051.
• Addresses an issue with using Group Policy Preferences to configure the homepage in Internet Explorer. 
• Addresses an issue with Microsoft Edge IE Mode that occurs when you enable Configure enhanced hang detection for Internet Explorer mode in Microsoft Edge.
• Addresses an issue that might generate the error "0x80704006. Hmmmm…can't reach this page" when using Microsoft Edge Legacy. This issue occurs when you attempt to reach websites on non-standard ports. Any website that uses a port listed in the Fetch Standard specification under bad ports or port blocking might cause this issue.
• Addresses an issue that displays nothing on the screen for 5 minutes or more during the Remote Desktop Protocol (RDP) session. 
• Addresses an issue that, in certain scenarios, causes applications to stop working if they are created using Visual Basic for Applications (VBA). The error is, "Class not registered" error. 
• Addresses an issue that might display an empty black screen when a device is connecting to a Windows Virtual Desktop (WVD) machine. 
• Addresses an issue that causes Cortana to stop working on multiuser devices when you install, uninstall, and reinstall the same update. 
• Addresses an issue that causes a stop error when the initialization of the graphics adapter fails. 
• Addresses an issue to reduce the likelihood of missing fonts.
• Addresses an issue that displays a black screen momentarily when an application calls the Desktop Window Manager (DWM) Thumbnail API. 
• Addresses an issue that fails to recognize the first East Asian language character typed into a Microsoft Foundation Class Library (MFC) DataGrid. 
• Addresses an issue that causes File Explorer to close unexpectedly when you use a Ribbon shell extension under specific circumstances. 
• Addresses an issue that generates a "No features to install" message when you add a feature, even if you provide administrative credentials. 
• Provides the ability to set a Group Policy that displays only the domain and username when you sign in. 
• Addresses an issue that affects default application associations during certain upgrade scenarios. This might cause numerous toast notifications to appear when you first sign in after the upgrade. 
• Addresses an issue that causes applications to close unexpectedly when a user inputs East Asian characters after changing the keyboard layout. 
• Updates 2021 time zone information for Fiji. 
• Addresses an issue that affects the Microsoft's System Centre Operations Manager's (SCOM) ability to monitor a customer's workload. 
• Addresses a performance issue that occurs when PowerShell reads the registry to check if the ScriptBlockLogging registry key is in the registry. 
• Addresses an issue with creating HTML reports using tracerpt. 
• Addresses an issue that causes an access violation in lsass.exe when a process is started using the runas command in some circumstances. 
• Addresses an issue that prevents the content under HKLM\Software\Cryptography from being carried over during Windows feature updates. 
• Addresses an issue that prevents you from enabling BitLocker after installing the Server Core App Compatibility Feature on Demand (FOD). 
• Addresses an issue that might create duplicate Foreign Security Principal directory objects for Authenticated and Interactive users in the domain partition. As a result, the original directory objects have "CNF" added to their names and are mangled. This issue occurs when you promote a new domain controller using the CriticalReplicationOnly flag.  
• Addresses an issue that prevents a call to NCryptGetProperty() from returning the correct pbOutput value when pszProperty is set to "Algorithm Group" and you are using a Trusted Platform Module (TPM) 1.2 device. 
• Addresses an issue in which Windows Defender Application Control enforces package family name rules that should be audit only. 
• Addresses an issue in which the WinHTTP AutoProxy service does not comply with the value set for the maximum Time To Live (TTL) on the Proxy Auto-Configuration (PAC) file. This prevents the cached file from updating dynamically. 
• Addresses an issue that might redirect Software Load Balancing (SLB) traffic to a different host when that traffic goes through a multiplexer. This causes the connection to an application to fail. 
• Adds new functionality to the robocopy command. 
• Adds Secure Sockets Layer (SSL) certificate authentication over HTTP/2. 
• Addresses an issue that prevents Always On VPN (AOVPN) from automatically reconnecting when resuming from Sleep or Hibernate. 
• Addresses an issue that causes Microsoft Office applications to close unexpectedly when using a Korean Input Method Editor (IME). 
• Adds an Azure Active Directory (AAD) Device Token that is sent to Windows Update (WU) as part of each WU scan. WU can use this token to query for membership in groups that have an AAD Device ID. 
• Addresses an issue that fails to log events 5136 for group membership changes in certain scenarios. This occurs when you use the "Permissive Modify" control; for example, the Active Directory (AD) PowerShell modules use this control. 
• Addresses an issue that causes a deadlock when Offline Files are enabled. As a result, CscEnpDereferenceEntryInternal holds parent and child locks. 
• Addresses an issue that causes deduplication jobs to fail with stop error 0x50 when you call HsmpRecallFreeCachedExtents(). 
• Removes the HTTP call to www.microsoft.com that the Remote Desktop Client (mstsc.exe) makes at sign out when using a Remote Desktop Gateway. 
• Addresses an issue with evaluating the compatibility status of the Windows ecosystem to help ensure application and device compatibility for all updates to Windows.

• Addresses an issue with setting the "Restrict delegation of credentials to remote servers" Group Policy with the "Restrict Credential Delegation" mode on the RDP client. As a result, the Terminal Server service tries to use "Require Remote Credential Guard" mode first and will only use "Require Restricted Admin" if the server does not support "Require Remote Credential Guard".

This update is offered optionally via Windows Update, but is also available in the Microsoft Update Catalog. Microsoft strongly recommends that you install the latest service stack update (SSU) for your operating system before you install the latest cumulative update (LCU). Microsoft lists two known issues that the update causes. During update installation, you may receive the error 0x800f0982 – PSFX_E_MATCHING_COMPONENT_NOT_FOUND. Details can be found in the KB article.

Microsoft has also released an update directly for the Windows Update Client to improve its reliability. This is rolled out outside of Windows Update if the machine is compatible and not an LTSC variant and updates have not been blocked by GPO.

Similar articles:
Microsoft Office Patchday (September 1, 2020)
Microsoft Security Update Summary (September 1, 2020)
Patchday: Windows 10-Updates (September 8, 2020)
Patchday: Windows 8.1/Server 2012-Updates (September 8, 2020)
Patchday: Updates für Windows 7/Server 2008 R2 (September 8, 2020)
Patchday Microsoft Office Updates (September 8, 2020)