[German]Microsoft has released two updates for the currently supported Windows 10 versions on March 21, 2023. Once there is the optional Windows 10 preview update KB5023773 (C-Week). In addition, Microsoft has released an OOBE update KB5025801 for Windows 10. Below I summarize the relevant information.
OOBE Update KB5025801
As of March 21, 2023, Microsoft has released update KB5025801: Out of Box Experience update for Windows 10, version 20H2, 21H2, and 22H2: March 21, 2023 (via ). The update is available for Windows 10 20H2 to 22H2, and Microsoft writes about the purpose of the update:
This update adds a Shim to prevent the CoCreateInstance function from creating unsupported objects. This update applies only to the Windows 10 OOBE process and is available only when OOBE updates are installed.
In other words: This update adds a "compatibility extension" (Shim) to prevent the CoCreateInstance function from creating objects that are not supported. The KB5025801 update is only optionally offered for installation during the so-called Out of Box Experience (OOBE) phase when Windows 10 is newly installed.
Preview Update KB5023773
Microsoft has also released a preview update KB5023773 (thanks to the German reader for the tip) for Windows 10. The update information can be found in the Windows 10 update history page. It should be noted that these updates are so-called preview or preview updates.
Note: After March 2023, there will be no optional, non-security preview updates for supported editions of Windows 10, version 20H2 and Windows 10, version 21H2. Only cumulative monthly security updates (known as a "B" or Update Tuesday release) will continue for these versions. Windows 10, version 22H2 will continue to receive security and optional releases.
Cumulative preview update KB5023773 is available for Windows 10 Enterprise version 20H2, Windows 10 Education, Windows 10 IoT Enterprise version 20H2 as well as for Windows 10 Version 21H1 to 22H2. It raises the build to 1904x.2788. As a highlight, Microsoft states that the update fixes a problem with USB printers. The system classifies them as multimedia devices, even though they are not. Additionally, this optional preview update corrects the bugs listed below or introduces quality improvements:
- This update affects the ms-appinstaller URI. It now works with the DesktopAppInstaller policy.
- The update addresses an issue that affects the Remote Procedure Call Service (rpcss.exe). The issue might cause a race condition between the Distributed Component Object Model (DCOM) and the Microsoft Remote Procedure Call (RPC) endpoint mapper.
- This update addresses an issue that affects the Microsoft HTML Application Host (HTA). This issue blocks code execution that uses Microsoft HTA. This occurs when you turn on Windows Defender Application Control (WDAC) User Mode Code Integrity (UMCI) enforced mode.
- This update addresses an issue that affects Desired State Configuration. It loses its previously configured options. This occurs if metaconfig.mof is missing.
- This update addresses compatibility issues that affect some printers. These printers use Windows Graphical Device Interface (GDI) printer drivers. These drivers do not completely adhere to GDI specifications.
- This update addresses an issue that affects the Simple Certificate Enrollment Protocol (SCEP) certificate. The system reports some SCEP certificate installations as failed. Instead, the system should report them as pending.
- This update addresses an issue that affects the Fast Identity Online 2.0 (FIDO2) PIN credential icon. It does not appear on the credentials screen of an external monitor. This occurs when that monitor is attached to a closed laptop.
- This update affects applications that use the Windows UI Library in the Windows App SDK (WinUI 3). It makes printing for them possible on Windows 10 devices.
- This update addresses an issue that affects the SharedPC account manager. It cannot delete multiple accounts during cleanup.
- This update addresses an issue that might affect lsass.exe. It might stop responding. This occurs when it sends a Lightweight Directory Access Protocol (LDAP) query to a domain controller that has a very large LDAP filter.
The update is optional and is only offered via Windows Update when the user explicitly checks for updates in the settings page and then selects the optional update to download and install. The update can also be downloaded and installed from the Microsoft Update Catalog. The latest Servicing Stack Update (SSU) is included.
Microsoft lists known issues with this update in the support article. Further details, including the prerequisites for an installation, can be found in the support article in case of doubt.
Microsoft Security Update Summary (March 14, 2023)
Patchday: Windows 10-Updates (March 14, 2023)
Patchday: Windows 11/Server 2022-Updates (March 14, 2023)
Windows 7/Server 2008 R2; Server 2012 R2: Updates (March 14, 2023)
Windows 11 OOBE Updates and Windows 10 Dynamic Update (21.3.2023)
Cookies helps to fund this blog: Cookie settings