Cumulative updates KB4284819 and KB4284874 released for version 1709 and 1703

Microsoft on the Patch Tuesday has released cumulative updates to all of their products and versions of Windows. For Windows 10 1709 and 1703, Cumulative update KB4284819 and KB4284874 are released that bring a number of changes to both the versions of Windows 10.

Windows 10 version 1709

Version 1709 of Windows has got KB4284819 which jumps the build number to 16299.492. The changes with this release are as under:

• Provides protections from an additional subclass of speculative execution side channel vulnerability known as Speculative Store Bypass (CVE-2018-3639). These protections aren’t enabled by default. For Windows client (IT pro) guidance, follow the instructions in KB4073119. For Windows Server guidance, follow the instructions in KB4072698. Use this guidance document to enable mitigations for Speculative Store Bypass (CVE-2018-3639) in addition to the mitigations that have already been released for Spectre Variant 2 (CVE-2017-5715) and Meltdown (CVE-2017-5754).Includes additional performance improvements.

• Addresses an issue in Microsoft Edge that causes incorrect responses to XML requests.

• Adds support for the SameSite cookie web standard to Microsoft Edge and Internet Explorer.

• Addresses an issue with Internet Explorer that prevents it from using an updated version of location services.

• Addresses an issue where firmware updates cause devices to go into BitLocker recovery mode when BitLocker is enabled, but Secure Boot is disabled or not present. This update prevents firmware installation on devices in this state. Administrators can install firmware updates by:

  • Temporarily suspending BitLocker.
  • Immediately installing firmware updates before the next OS startup.
  • Immediately restarting the device so that BitLocker doesn’t remain in the suspended state.

• Security updates to Internet Explorer, Microsoft Edge, Microsoft scripting engine, Windows Desktop Bridge, Windows apps, Windows shell, Windows storage and filesystems, Windows app platform and frameworks, Windows virtualization and kernel, Windows wireless networking, and Windows Server.

Support Page:

https://support.microsoft.com/en-us/help/4284819/windows-10-update-kb4284819

Known issues

The known issues with this Cumulative update are:

• Some non-English platforms may display the following string in English instead of the localized language: ”Reading scheduled jobs from file is not supported in this language mode.” This error appears when you try to read the scheduled jobs you’ve created and Device Guard is enabled.
• When Device Guard is enabled, some non-English platforms may display the following strings in English instead of the localized language:
  • “Cannot use ‘&’ or ‘.’ operators to invoke a module scope command across language boundaries.”
  • “‘Script’ resource from ‘PSDesiredStateConfiguration’ module is not supported when Device Guard is enabled. Please use ‘Script’ resource published by PSDscResources module from PowerShell Gallery.”

Download

To download KB4284819 use the links below:

32 bit download

64 bit download

Windows 10 version 1703

Version 1709 of Windows has got cumulative update KB4284874 which jumps the build number to 15063.1155. The changes with this release are as under:

• Provides protections from an additional subclass of speculative execution side channel vulnerability known as Speculative Store Bypass (CVE-2018-3639). These protections aren’t enabled by default. For Windows client (IT pro) guidance, follow the instructions in KB4073119. For Windows Server guidance, follow the instructions in KB4072698. Use this guidance document to enable mitigations for Speculative Store Bypass (CVE-2018-3639) in addition to the mitigations that have already been released for Spectre Variant 2 (CVE-2017-5715) and Meltdown (CVE-2017-5754).Includes additional performance improvements.

• Addresses an issue where booting with Unified Write Filter (UWF) turned on may lead to stop error 0xE1 in embedded devices, particularly when using a USB hub.

• Increased the Internet Explorer cookie limit from 50 to better align with industry standards.

• Security updates to Internet Explorer, Microsoft Edge, Microsoft scripting engine, Windows Desktop Bridge, Windows apps, Windows Server, Windows wireless networking, Windows storage and filesystems, Windows app platform and frameworks, and Windows virtualization and kernel.

• Provides protections from an additional subclass of speculative execution side channel vulnerability known as Speculative Store Bypass (CVE-2018-3639). These protections aren’t enabled by default. For Windows client (IT pro) guidance, follow the instructions in KB4073119. Use this guidance document to enable mitigations for Speculative Store Bypass (CVE-2018-3639) in addition to the mitigations that have already been released for Spectre Variant 2 (CVE-2017-5715) and Meltdown (CVE-2017-5754).Includes additional performance improvements.Addresses a mobile-only issue where enterprise files could be saved as personal files even though the Windows Information Protection policy is enabled on the device.

Support Page:

https://support.microsoft.com/en-us/help/4284874

Known issues

There are no known issues with this cumulative update.

Download

To download KB4284874 use the links below:

32 bit download

64 bit download

That is all for now.  Please see the following article if Windows updates do not properly load:

Reset Windows update in Windows 10 and earlier versions of Windows