Microsoft releases Windows 10 builds 17763.316, 17134.590 - here's what's new

The second Tuesday of the month is here, which means that it is patch Tuesday, the day when all supported version of Windows receive cumulative updates. That makes it Windows 7, Windows 8.1, their corresponding Windows Server version and all Windows 10 versions other than version 1511. However, if you’re not running Windows 10 version 1607 or 1703 for Enterprise or Education, then you will not be receiving patches for those versions as support for their Home, Pro, and Pro for Workstation SKUs ended in 2018.

First in line is the latest Windows 10 October 2018 Update, also known as version 1809, which is receiving KB4487044 that brings up the build number to 17763.316. The update should begin downloading through Windows Update. However, you can also manually download the update from here. Here is the changelog for this update:

Addresses an issue that fails to set the LmCompatibilityLevel value correctly. LmCompatibilityLevel specifies the authentication mode and session security.

Addresses an issue that may prevent applications that use a Microsoft Jet database with the Microsoft Access 97 file format from opening. This issue occurs if the database has column names greater than 32 characters. The database fails to open with the error, “Unrecognized Database Format”.

Addresses an issue that causes the Windows Hello for Business Hybrid Key Trust deployment sign-in to fail if Windows 2019 Server domain controllers (DC) are used for authentication. The error is, "That option is temporarily unavailable. For now, please use a different method to sign in”. If Active Directory (AD) activity tracing is enabled, a Local Security Authority Subsystem Service (LSASS) exception may occur in the Windows 2019 DC when processing a user’s sign in.

Note

The AD Data Collector Set and Microsoft Azure Advanced Threat Protection (AATP) enable Active Directory activity tracing by default.

Addresses an issue in Microsoft HoloLens that allows users to bypass the lock screen sign in process in some work flows.

Security updates to Microsoft Scripting Engine, Microsoft Edge, Windows Server, the Microsoft JET Database Engine, Internet Explorer, Windows Wireless Networking, Windows Storage and Filesystems, Windows Input and Composition, Windows Graphics, and Windows App Platform and Frameworks.

There is, however, one known issue for Microsoft Edge that Microsoft will fix through a future update:

Symptom	Workaround
After installing KB4480116, some users report that they cannot load a webpage in Microsoft Edge using a local IP address. Browsing fails or the webpage may become unresponsive.	Open the Control Panel and select Internet Options. On the Security tab, select the Trusted Sites icon. Select the Sites button. Clear the check box for Require server verification (https:) for all sites in this zone. In the Add this website to the zone: box, type the local IP address that failed to load, such as https://192.168.0.1. Select the Add button. Select the Require server verification (https:) for all sites in this zonecheck box. Select the Close button. Select the OK button. Restart Microsoft Edge. Microsoft is working on a resolution and will provide an update in an upcoming release.

Symptom

Workaround

After installing KB4480116, some users report that they cannot load a webpage in Microsoft Edge using a local IP address. Browsing fails or the webpage may become unresponsive.

Open the Control Panel and select Internet Options.
On the Security tab, select the Trusted Sites icon.
Select the Sites button.
Clear the check box for Require server verification (https:) for all sites in this zone.
In the Add this website to the zone: box, type the local IP address that failed to load, such as https://192.168.0.1.
Select the Add button.
Select the Require server verification (https:) for all sites in this zonecheck box.
Select the Close button.
Select the OK button.
Restart Microsoft Edge.

Microsoft is working on a resolution and will provide an update in an upcoming release.

For users running Windows 10 April 2018 Update, also known as version 1803, update KB4487017 is rolling out bringing the build number to 17134.590. The update can be downloaded from here. The improvements include:

Addresses an issue that fails to set the LmCompatibilityLevel value correctly. LmCompatibilityLevel specifies the authentication mode and session security.

Addresses an issue that may prevent applications that use a Microsoft Jet database with the Microsoft Access 97 file format from opening. This issue occurs if the database has column names greater than 32 characters. The database fails to open with the error, “Unrecognized Database Format”.

Adds top-level domain support to HTTP Strict Transport Security (HSTS) Preload for Microsoft Edge and Internet Explorer 11.

Addresses an issue that prevents Microsoft Edge from connecting using an IP address.

Security updates to Microsoft Scripting Engine, Internet Explorer, Windows App Platform and Frameworks, Windows Graphics, Windows Input and Composition, Microsoft Edge, Microsoft Scripting Engine, Windows Storage and Filesystems, Windows Server, and the Microsoft JET Database Engine.

There are two known issues for this update that one must be aware of. They include:

Symptom	Workaround
After installing this update, some users cannot pin a web link on the Startmenu or the taskbar.	Microsoft is working on a resolution and will provide an update in an upcoming release.
After installing KB4480966, some users report that they cannot load a webpage in Microsoft Edge using a local IP address. Browsing fails or the webpage may become unresponsive.	Open the Control Panel and select Internet Options. On the Security tab, select the Trusted Sites icon. Select the Sites button. Clear the check box for Require server verification (https:) for all sites in this zone. In the Add this website to the zone: box, type the local IP address that failed to load, such as https://192.168.0.1. Select the Add button. Select the Require server verification (https:) for all sites in this zonecheck box. Select the Close button. Select the OK button. Restart Microsoft Edge. Microsoft is working on a resolution and will provide an update in an upcoming release.

Symptom

Workaround

After installing this update, some users cannot pin a web link on the Startmenu or the taskbar.

Microsoft is working on a resolution and will provide an update in an upcoming release.

After installing KB4480966, some users report that they cannot load a webpage in Microsoft Edge using a local IP address. Browsing fails or the webpage may become unresponsive.

Open the Control Panel and select Internet Options.
On the Security tab, select the Trusted Sites icon.
Select the Sites button.
Clear the check box for Require server verification (https:) for all sites in this zone.
In the Add this website to the zone: box, type the local IP address that failed to load, such as https://192.168.0.1.
Select the Add button.
Select the Require server verification (https:) for all sites in this zonecheck box.
Select the Close button.
Select the OK button.
Restart Microsoft Edge.

Microsoft is working on a resolution and will provide an update in an upcoming release.

And then, heading into the version from 2017, Windows 10 Fall Creators Update, also called version 1709, is receiving KB4486996 that changes the build number to 16299.967. If you're using one of the few supported Windows 10 Mobile devices running 1709, you too will receive this update. The update can be downloaded manually from here. The improvements are listed below:

Addresses an issue that fails to set the LmCompatibilityLevel value correctly. LmCompatibilityLevel specifies the authentication mode and session security.

Addresses an issue that may prevent applications that use a Microsoft Jet database with the Microsoft Access 97 file format from opening. This issue occurs if the database has column names greater than 32 characters. The database fails to open with the error, “Unrecognized Database Format”.

Adds top-level domain support to HTTP Strict Transport Security (HSTS) Preload for Microsoft Edge and Internet Explorer 11.

Addresses an issue that prevents Microsoft Edge from connecting using an IP address.

Security updates to Microsoft Scripting Engine, Internet Explorer, Windows App Platform and Frameworks, Windows Graphics, Windows Input and Composition, Microsoft Edge, Windows Wireless Networking, Windows Server, and the Microsoft JET Database Engine .

The only known issue for this update is the same as the Microsoft Edge issue listed for the newer versions of the OS.

Moving further back, the original Windows 10 Creators Update, version 1703, is receiving KB4487020 that bumps up the build to 15063.1631. Windows 10 Mobile users running version 1703 should also see a cumulative update being pushed to their phones. The update can be manually downloaded from here. The list of fixes and improvements include:

Addresses an issue that fails to set the LmCompatibilityLevel value correctly. LmCompatibilityLevel specifies the authentication mode and session security.

Addresses an issue that may prevent applications that use a Microsoft Jet database with the Microsoft Access 97 file format from opening. This issue occurs if the database has column names greater than 32 characters. The database fails to open with the error, “Unrecognized Database Format”.

Adds top-level domain support to HTTP Strict Transport Security (HSTS) Preload for Microsoft Edge and Internet Explorer 11.

Addresses an issue that prevents Microsoft Edge from connecting using an IP address.

Security updates to Microsoft Scripting Engine, Windows App Platform and Frameworks, Windows Graphics, Windows Kernel, Windows Input and Composition, Microsoft Edge, Windows Wireless Networking, Internet Explorer, Windows Server, and the Microsoft JET Database Engine.

Like with all the other version, the Microsoft Edge issue is also present for this version of Windows 10.

Next up, Windows 10 Anniversary Update, version 1607 is receiving KB4487026 that brings up the build number to 14393.2791. The update will roll out only to Enterprise and Education customers, or if you are a part of the Long-Term Servicing Channel. You can download the update manually from here. Here's what's fixed in this update:

Addresses an issue that causes Microsoft Outlook search to fail with an “Outlook cannot perform the search" error on Windows Server 2016 Terminal Servers. This issue occurs after installing KB4467684, released November 27th, 2018.

Addresses an issue that causes some icons in the taskbar to appear incorrectly after changing file association defaults.

Addresses an issue that fails to set the LmCompatibilityLevel value correctly. LmCompatibilityLevel specifies the authentication mode and session security.

Addresses an issue that may prevent applications that use a Microsoft Jet database with the Microsoft Access 97 file format from opening. This issue occurs if the database has column names greater than 32 characters. The database fails to open with the error, “Unrecognized Database Format”.

Optimizes layout recalculation in Internet Explorer 11 for customer applications on server platforms.

Adds top-level domain support to HTTP Strict Transport Security (HSTS) Preload for Microsoft Edge and Internet Explorer 11.

Addresses an issue that prevents Microsoft Edge from connecting using an IP address.

Security updates to Microsoft Scripting Engine, Internet Explorer, Windows App Platform and Frameworks, Windows Graphics, Microsoft Graphics Component, Windows Input and Composition, Microsoft Edge, Windows Storage and Filesystems, Windows Wireless Networking, Windows Server, and the Microsoft JET Database Engine.

There are currently three known issues in this update. They include:

Symptom	Workaround
For hosts managed by System Center Virtual Machine Manager (SCVMM), SCVMM cannot enumerate and manage logical switches deployed on the host after installing the update. Additionally, if you do not follow the best practices, a stop error may occur in vfpext.sys on the hosts.	Run mofcomp on the following mof files on the affected host: Scvmmswitchportsettings.mof VMMDHCPSvr.mof Follow the best practices while patching to avoid a stop error in vfpext.sys in an SDN v2 environment (NC managed hosts).
After installing KB4467691, Windows may fail to start on certain Lenovo laptops that have less than 8 GB of RAM.	Restart the affected machine using the Unified Extensible Firmware Interface (UEFI). Disable Secure Boot and then restart. If BitLocker is enabled on your machine, you may have to go through BitLocker recovery after Secure Boot has been disabled. Microsoft is working with Lenovo and will provide an update in an upcoming release.
After installing KB4467684, the cluster service may fail to start with the error “2245 (NERR_PasswordTooShort)” if the group policy “Minimum Password Length” is configured with greater than 14 characters.	Set the domain default "Minimum Password Length" policy to less than or equal to 14 characters. Microsoft is working on a resolution and will provide an update in an upcoming release.

Symptom

Workaround

For hosts managed by System Center Virtual Machine Manager (SCVMM), SCVMM cannot enumerate and manage logical switches deployed on the host after installing the update.

Additionally, if you do not follow the best practices, a stop error may occur in vfpext.sys on the hosts.

Run mofcomp on the following mof files on the affected host:

Scvmmswitchportsettings.mof
VMMDHCPSvr.mof
Follow the best practices while patching to avoid a stop error in vfpext.sys in an SDN v2 environment (NC managed hosts).

After installing KB4467691, Windows may fail to start on certain Lenovo laptops that have less than 8 GB of RAM.

Restart the affected machine using the Unified Extensible Firmware Interface (UEFI). Disable Secure Boot and then restart.

If BitLocker is enabled on your machine, you may have to go through BitLocker recovery after Secure Boot has been disabled.

Microsoft is working with Lenovo and will provide an update in an upcoming release.

After installing KB4467684, the cluster service may fail to start with the error “2245 (NERR_PasswordTooShort)” if the group policy “Minimum Password Length” is configured with greater than 14 characters.

Set the domain default "Minimum Password Length" policy to less than or equal to 14 characters.

Microsoft is working on a resolution and will provide an update in an upcoming release.

Finally, the original version of Windows 10 from 2015, version 1507 that is supported only in the Long-Term Servicing Channel is receiving KB4487018 that brings the version number to 10240.18132. That update can be downloaded from here. There is a huge list of fixes and improvements:

Addresses an issue that may prevent some applications from displaying the Help (F1) window correctly.

Addresses an issue that may cause third-party applications to have difficulty authenticating hotspots.

Addresses an issue that may prevent applications that use a Microsoft Jet database with the Microsoft Access 97 file format from opening. This issue occurs if the database has column names greater than 32 characters. The database fails to open with the error, “Unrecognized Database Format”.

Addresses an issue in which Windows 10 clients that authenticate to 802.1x WLAN access points fail to apply group policy permissions, run scripts, or retrieve roaming profiles at user logon. This occurs because Kerberos authentication fails for \\domain\sysvol, \\domain\netlogon, and other DFS paths.

Optimizes layout recalculation in Internet Explorer 11 for customer applications on server platforms.

Updates time zone information for Chile.

Addresses an issue that causes the clock and the calendar flyout to ignore user settings for Japanese Era date and time formats. For more information, see KB4469068.

Enables the 元年 character for the first year in the Japanese Era. For more information, see KB4469068.

Addresses an issue that fails to display the correct Japanese Era name in Microsoft Office Visual Basic for Applications. For more information, see KB4469068.

Addresses an issue that causes the abbreviated Japanese Era names to be incorrect. For more information, see KB4469068.

Adds top-level domain support to HTTP Strict Transport Security (HSTS) Preload for Microsoft Edge and Internet Explorer 11.

Security updates to Microsoft Scripting Engine, Windows Graphics, Microsoft Graphics Component, Windows Kernel, Windows Input and Composition, Windows Wireless Networking, Windows Server, and the Microsoft JET Database Engine.

There are no known issues in today's update for the original version of Windows 10.

As usual, all cumulative updates will be pushed through Windows Update for supported devices, so if you don't see it yet, it should show up with time, or may be held due to hardware incompatibilities.