Patchday: Windows 10 Updates (October 13, 2020)

[German]On October 13, 2020 (second Tuesday of the month, Patchday at Microsoft) several cumulative updates for the supported Windows 10 builds were released. Here are some details about the respective updates.


Advertising

A list of the updates can be found on this Microsoft website. I have pulled out the details below. The update installation requires an existing current Servicing Stack Updates (SSUs). Meanwhile, Microsoft publishes an overview of current Servicing Stack Updates (SSUs) under ADV990001 (if it is not up to date, please check the Microsoft Update Catalog for Servicing Stack Updates).

Important: From July 2020 all Windows updates disable the RemoteFX vGPU feature due to the CVE-2020-1036 vulnerability (see also KB4570006). After installing this update, attempts to start virtual machines (VM) with RemoteFX vGPU enabled will fail. More information can be found here.

Updates for Windows 10 Version 2004

For the Windows 10 version 2004 released in May 2020, Microsoft provides the following update packages.

Update KB4579311 for Windows 10 Version 2004

Cumulative Update KB4579311 raises the OS build to 19041.572. The update is available for Windows 10 version 2004 and for Windows Server version 2004. It contains quality improvements but no new operating system features. Here is the list of improvements, called highlights by Microsoft:

  • Updates to improve security when using Microsoft Office products.
  • Updates for verifying usernames and passwords.
  • Updates to improve security when Windows performs basic operations.

The following fixes and improvements are added:

  • Addresses an issue with a possible elevation of privilege in win32k.
  • Addresses an issue with the Group Policy service that might recursively delete critical files in alphabetic order from %systemroot%\system32. This issue occurs when a policy has been configured to delete cached profiles. These file deletions might cause stop error “0x5A (CRITICAL_SERVICE_FAILED)” boot failures.
  • Addresses an issue with creating null ports using the user interface.
  • Security updates to Windows App Platform and Frameworks, Microsoft Graphics Component, Windows Media, Windows Fundamentals, Windows Authentication, Windows Virtualization, and Windows Kernel.

This update is automatically downloaded and installed by Windows Update. This update is also available in the Microsoft Update Catalog und  and via WSUS. Microsoft strongly recommends that you install the latest service stack update (SSU) KB4577266 for your operating system before you install the latest cumulative update (LCU). Actually, the SSU should already be integrated in the cumulative update – either the KB articles have not yet been updated in this respect, or the integration has not yet been done.


Advertising

For the update, Microsoft states that users of the Microsoft Input Method Editor (IME) for Chinese and Japanese may receive an error, or the application may stop responding or close when it tries to drag with the mouse. For details, see KB4564002.

Second problem: When you install a third-party driver, you may receive the error message “Windows cannot verify the publisher of this driver software”. When you try to view the signature properties using Windows Explorer, you may also receive the error “There was no signature in subject”.

This problem occurs if Windows validation identifies an incorrectly formatted catalog file. Starting with this release, Windows will require the validity of DER-encoded PKCS#7 content in catalog files. Catalog files must be signed according to Section 11.6 of the description of DER encoding for SET OF members in X.690. In this case you should contact the driver manufacturer or device manufacturer (OEM) and ask them for an updated driver to resolve the problem.

Note: This update is also available for the Insider Preview of Windows 10 20H2, as this version shares updates with version 2004.

Microsoft has also released an update directly to the Windows Update Client to improve its reliability. This is rolled out outside of Windows Update if the machine is compatible and not an LTSC variant and updates have not been blocked by GPO.

Updates for Windows 10 Version 190x

Microsoft provides the same update packages for the Windows 10 builds 1903 and 1909. The following updates are available for the Windows 10 May 2019 Update (Version 1903) and the Windows 10 November 2019 Update (Version 1909).

Update KB4577671 for Windows 10 Version 190x

Cumulative Update KB4577671 raises the OS build to 18362.1139 (Windows 10 V1903) or 18363.1139 (Windows 10 V1909). The update is available for Windows 10 version 1903, for Windows 10 version 1909 and for Windows Server version 1903 and Windows Server version 1909. It contains quality improvements but no new operating system features. Here is the list of improvements, called highlights by Microsoft:

  • Updates to improve security when using Microsoft Office products.
  • Updates for verifying usernames and passwords.
  • Updates to improve security when Windows performs basic operations.
  • Updates for storing and managing files.

Added the following fixes and improvements to Windows 10 version 1909, which are identical to version 1903 (update is also available for the Hololens)

  • Addresses an issue with a possible elevation of privilege in win32k.
  • Addresses an issue with the Group Policy service that might recursively delete critical files in alphabetic order from %systemroot%\system32. This issue occurs when a policy has been configured to delete cached profiles. These file deletions might cause stop error “0x5A (CRITICAL_SERVICE_FAILED)” boot failures.
  • Addresses an issue with creating null ports using the user interface.
  • Security updates to Windows App Platform and Frameworks, Microsoft Graphics Component, Windows Media, Windows Shell, Windows Cloud Infrastructure, Windows Fundamentals, Windows Authentication, Windows Virtualization, Windows Kernel, and Windows Storage and Filesystems.

This update is automatically downloaded and installed by Windows Update. This update is also available in theMicrosoft Update Catalog and via WSUS. Microsoft strongly recommends that you install the latest service stack update (SSU) for your operating system before you install the latest cumulative update (LCU). For this update, Microsoft reports two known issues that are documented in KB4577671.

Additionally, Microsoft has released an update directly to the Windows Update Client to improve its reliability. This is rolled out outside of Windows Update if the machine is compatible and not an LTSC variant and updates have not been blocked by GPO.

Updates for Windows 10 Version 1809

The following updates are available for Windows 10 October 2018 Update (Version 1809) and Windows Server 2019.

Update KB4577668 for Windows 10 Version 1809

Cumulative Update KB4577668 raises the OS build (according to MS) to 17763.1518 and includes quality improvements but no new operating system features. Here is the list of improvements, called highlights by Microsoft:

  • Updates to improve security when using Microsoft Office products.
  • Updates for verifying usernames and passwords.
  • Updates to improve security when Windows performs basic operations.
  • Updates for storing and managing files.

Added are the following fixes and improvements to the Windows version:

  • Addresses an issue with a possible elevation of privilege in win32k.
  • Addresses an issue that causes apps that use Dynamic Data Exchange (DDE) to stop responding when you attempt to close the app.
  • Addresses an issue with the Group Policy service that might recursively delete critical files in alphabetic order from %systemroot%\system32. This issue occurs when a policy has been configured to delete cached profiles. These file deletions might cause stop error “0x5A (CRITICAL_SERVICE_FAILED)” boot failures.
  • Addresses an issue with creating null ports using the user interface.
  • Security updates to Windows App Platform and Frameworks, Microsoft Graphics Component, Windows Media, Windows Shell, Windows Cloud Infrastructure, Windows Fundamentals, Windows Authentication, Windows Virtualization, Windows Kernel, and Windows Storage and Filesystems.

This update is automatically downloaded and installed by Windows Update, but is also available in the Microsoft Update Catalog. Microsoft strongly recommends that you install the latest service stack update (SSU) for your operating system before you install the latest cumulative update (LCU). Microsoft lists the known issue that the update causes. When you install the update, you may receive the error 0x800f0982 – PSFX_E_MATCHING_COMPONENT_NOT_FOUND Also the Edge Browser may crash. There is also the driver problem mentioned for Windows 10 2004. Details can be found in the KB article.

Microsoft has also released an update directly for the Windows Update Client to improve its reliability. This is rolled out outside of Windows Update if the machine is compatible and not an LTSC variant and updates were not blocked by GPO.

Updates for Windows 10 Version 1507 till 1803

For Windows 10 RTM up to version 1803, various updates are available for the LTSC versions and, if necessary, the Enterprise versions. The Home and Pro versions on the other hand have been dropped from support. These updates are automatically downloaded and installed by Windows Update, but are available for download in the Microsoft Update Catalog (search for the KB number). Before manual installation, the latest Servicing Stack Update (SSU) must be installed. Details can be found in the respective KB article.

  • Windows 10 Version 1803: Update KB4580330 is only available for Enterprise and Education. The update raises the OS build to 17134.1792.
  • Windows 10 Version 1709: Update KB4580328 is only available for Enterprise and Education. The update raises the OS build to 16299.2166.
  • Windows 10 Version 1703: Update KB4580370 is only available for the Surface Hub. The update raises the OS build to 16299.2525.
  • Windows 10 Version 1607: Update KB4580346  is only available for Enterprise LTSC. The update raises the OS build to 14393.3986.
  • Windows 10 Version 1507: Update KB4580327 is available for the RTM version (LTSC) The update raises the OS build to 10240.18725.

There was no update for Windows 10 V1511 and V1703, because these versions were dropped from support. Details about the above updates can be found in the respective Microsoft KB articles in case of doubt.

Similar articles:
Microsoft Office Patchday (October 6, 2020)
Microsoft Security Update Summary (October 13, 2020)
Patchday: Windows 10 Updates (October 13, 2020)
Patchday: Windows 8.1/Server 2012 Updates (Oct. 13, 2020)
Patchday: Updates for Windows 7/Server 2008 R2 (Oct. 13, 2020)
Patchday Microsoft Office Updates (October 13, 2020)


Cookies helps to fund this blog: Cookie settings
Advertising


This entry was posted in Security, Update, Windows and tagged , , , . Bookmark the permalink.

2 Responses to Patchday: Windows 10 Updates (October 13, 2020)

  1. Chris Pugson says:

    A major point of cumulative updates is that responsibility for the completeness of content is Microsoft’s. Windows 10 users, many of whom are not deeply knowledgeable of Windows 10 because they are using what to them is a consumer product, should not be expected to be alert for possible exclusions, like service stack updates, from cumulative updates.

    Microsoft seems generally unsympathetic about the understandable lack of expertise of many of its home Windows 10 users.

    This month’s cumulative updates for Windows 10 versions 1909 (KB4577671) and 2004 (KB4579311) must be very large ones because download and installation times are a lot longer than usual, especially for 2004. I guess that this also applies to earlier feature updates.

  2. Tomasz says:

    What happened to “Feature update to Windows 10 (business edition), version 1909”.
    It has expired? why?
    I see that MS updated (as of sept 2020) ISO images for Win10 b1909 and b2004…

    where is the NEW updated “Feature update to Windows 10 (business edition), version 1909”

Leave a Reply

Your email address will not be published. Required fields are marked *