[June Patches] New cumulative updates for Windows 10 now available, Windows XP also patched
Windows 10 v1703
- Addressed issue where the user may need to press the space bar to dismiss the lock screen on a Windows 10 machine to log in, even after the logon is authenticated using a companion device.
- Addressed issue with slow firewall operations that sometimes results in timeouts of Surface Hub’s cleanup operation.
- Addressed issue with a race condition that prevents Cortana cross-device notification reply from working; users will not be able to use the remote toast activation feature set.
- Addressed issue where the Privacy Separator feature of a Wireless Access Point does not block communication between wireless devices on local subnets.
- Addressed issue on the Surface Hub device where using ink may cause a break in the touch trace that could result in a break in inks from the pen.
- Addressed issue where Internet Explorer 11 may ignore the “Send all sites not included in the Enterprise Mode Site List to Microsoft Edge” policy when opening a Favorites link.
- Addressed additional issues with time-zone information and Internet Explorer.
- Security updates to Windows kernel, Microsoft Windows PDF, Windows kernel-mode drivers, Microsoft Uniscribe, Device Guard, Internet Explorer, Windows Shell, and Microsoft Edge. For more information about the security vulnerabilities resolved, please refer to the Security Update Guide.
Windows 10 v1607
- Addressed issue where, after installing KB3164035, users cannot print enhanced metafiles (EMF) or documents containing bitmaps rendered out of bounds using the BitMapSection(DIBSection) function.
- Addressed issue where users may fail to access the Internet using a non-Microsoft proxy device after enabling Credential guard. The failure happens when NTLMv2 is used and the server does not send target information (TargetNameFields is 0) inside the NTLM CHALLENGE MESSAGE.
- Addressed issue where some Windows clients with Windows Information Protection (WIP) enabled cannot access their secured documents, such as protected documents or mail files. This may occur when the client connects to the enterprise network both directly and remotely (such as with a VPN connection).
- Addressed issue where Internet Explorer crashes when the Microsoft Active Accessibility application is running in the background.
- Addressed issue where adding a <select> element to the body of a JavaScript application crashes the application when users click the select box.
- Addressed an issue where certutil.exe could no longer generate an EPF file when attempting to recover a key for a version 1 style certificate.
- Addressed an issue where the network interface description name of a network adapter is not updated in Hyper-V after a device driver update. Management of a NIC Team or vSwitch within Hyper-V Administrator or System Center Virtual Machine Manager may be affected.
- Addressed issue where the Privacy Separator feature of a Wireless Access Point does not block communication between wireless devices on local subnets.
- Addressed issue that was causing devices to crash when hot plugging USB 3.0 Network Adapters
- Addressed an issue where users on Windows 7 SP1 clients connecting to a Windows Server 2016 based domain controller cannot run applications such as Internet Explorer for a period of approximately 10 minutes after logging on. This issue occurs after upgrading the enterprise domain controllers to Windows Server 2016.
- Addressed an issue where Cluster health service fails to report fault event to MAS HM component.
- Addressed an issue that was not allowing users to customize the Application list in their Start menu using the Remove All Programs list from the Start menu setting.
- Updated iDNA table to support resolving latest Unicode emoji characters from Punycode.
- Addressed issue where after installing KB4019472, the end-user-defined characters (EUDCs) is not displayed.
- Addressed additional issues with updated time zone information, storage file system, Windows Update logs, USB, Start menu and taskbar and Windows Shell.
- Security updates to Microsoft Uniscribe, Windows kernel, Windows kernel-mode drivers, Microsoft Graphics Component, Internet Explorer, Windows Shell, Microsoft Windows PDF, Device Guard and Microsoft Edge. For more information about the security vulnerabilities resolved, please refer to the Security Update Guide.
Known issue: If an iSCSI target becomes unavailable, attempts to reconnect will cause a leak. Initiating a new connection to an available target will work as expected.
Workaround:Microsoft is working on a resolution and will provide an update in an upcoming release.
More information can be found in this support page.
Version 1511
- Addressed issue where, after installing KB3164035, users cannot print enhanced metafiles (EMF) or documents containing bitmaps rendered out of bounds using the BitMapSection(DIBSection) function.
- Addressed issue where certutil.exe can no longer generate an export file (.epf) when attempting to recover a key for a version 1 certificate.
- Addressed additional issues with updated time zone information, updates to the Access Point Name (APN) database and Internet Explorer.
- Security updates to Microsoft Scripting Engine, Microsoft Edge, Windows COM, Windows kernel, Windows kernel-mode drivers, Microsoft Uniscribe, Microsoft Graphics Component, Windows Shell, Microsoft Windows PDF and Internet Explorer. For more information about the security vulnerabilities resolved, please refer to the Security Update Guide.
Windows XP also updated
“In reviewing the updates for this month, some vulnerabilities were identified that pose elevated risk of cyberattacks by government organizations, sometimes referred to as nation-state actors, or other copycat organizations… To address this risk, today we are providing additional security updates along with our regular Update Tuesday service. These security updates are being made available to all customers, including those using older versions of Windows.
It is important to note that if you’re running a supported version of Windows, such as Windows 10 or Windows 8.1, and you have Windows Update enabled, you don’t need to take any action. As always, we recommend customers upgrade to the latest platforms. The best protection is to be on a modern, up-to-date system that incorporates the latest innovations. Older systems, even if fully up-to-date, lack the latest security features and advancements.