Windows 10 V1809/190x: Preview Updates (20. August 2020)

[English]Am 20. August 2020 hat Microsoft verschiedene kumulative Updates als Previews für  Windows 10 Version 1809, 1903 und 1909 freigegeben. Wurde im englischsprachigen Blog bereits als Hinweis gegeben. Hier einige Details zu den jeweiligen Updates.

Eine Liste der Updates lässt sich auf dieser Microsoft-Webseite abrufen. Ich habe nachfolgend die Details herausgezogen. Die Update-Installation setzt ein vorhandenes aktuelles Servicing Stack Update (SSUs) voraus. Microsoft veröffentlicht inzwischen eine Übersicht aktueller Servicing Stack Updates (SSUs) unter ADV990001 (falls die nicht aktuell ist, im Microsoft Update Catalog nach Servicing Stack Updates suchen lassen).

Wichtig: Ab Juli 2020 deaktivieren alle Windows Updates die RemoteFX vGPU-Funktion aufgrund der Sicherheitslücke CVE-2020-1036 (siehe auch KB4570006). Nach der Installation dieses Updates schlagen Versuche, virtuelle Maschinen (VM) zu starten, bei denen RemoteFX vGPU aktiviert ist, fehl. Mehr Informationen finden sich hier.

Update KB4566116 für Windows 10 Version 190x

Das Preview-Update KB4566116 ist kumulativ und steht für die Windows 10 Versionen 1903 und 1909 sowie für Windows Server Version 1903 und Windows Server Version 1909 bereit zur Verfügung. Es hebt die OS-Build auf 18362.1049 (Windows 10 V1903) bzw. auf 18363.1049 (Windows 10 V1909). Es beinhaltet Qualitätsverbesserungen aber keine neuen Betriebssystemfunktionen. Hier die Liste der Verbesserungen, von Microsoft als Highlights bezeichnet:

• Updates an issue that causes the hard drive to fill up in certain error situations.
• Updates an issue that prevents Microsoft Gaming Services from starting because of error 15612.
• Updates time zone information for the Yukon, Canada.
• Updates a visual offset issue on a touchscreen. Edits you make with a pen or finger appear in a different region than expected if the device is connected to an external monitor.
• Updates an issue that causes the Settings page to close unexpectedly, which prevents default applications from being set up properly.
• Updates an issue that prevents you from unlocking a device if you typed a space before the username when you first signed in to the device.
• Updates an issue that causes applications to take a long time to open.

Hinzukommen folgende Fixes und Verbesserungen an der Windows 10 Version 1909, die aber identisch mit der Version 1903 (Update steht auch für die Hololens bereit) sind:

• Addresses an issue with pinned Add-ins that cause Microsoft Outlook to become unresponsive.
• Provides the ability to sync the Microsoft Edge IE Mode unidirectional session cookie when an administrator configures the session cookie.
• Addresses an issue that causes the hard drive to fill up in certain error situations.
• Addresses an issue that prevents Microsoft Gaming Services from starting because of error 15612.
• Addresses an issue that prevents Visual Basic 6.0 (VB6) applications from using ListView in MSCOMCTL.OCX after upgrading to Windows 10, version 1903 and later.
• Addresses a runtime error that causes VB6 to stop working when duplicate windows messages are sent to WindowProc().
• Addresses an issue that displays a black screen to Windows Virtual Desktop (WVD) users when they attempt to sign in.
• Updates time zone information for the Yukon, Canada.
• Addresses an issue that prevents the deletion of Notification State registries for certain apps even after the user profile is deleted.
• Addresses an issue that causes an application that uses msctf.dll to stop working, and the 0xc0000005 (Access violation) exception appears.
• Addresses a visual offset issue on a touchscreen. Edits you make with a pen or finger appear in a different area than expected if the device is connected to an external monitor.
• Addresses an issue that prevents Cortana Smart lighting from working as expected if you shut down the machine while Fast Shutdown is enabled.
• Addresses an issue that causes new child windows to flicker and appear as white squares on server devices that are configured for stark visual contrast.
• Addresses an issue that causes the Settings page to close unexpectedly, which prevents default applications from being set up properly.
• Addresses an issue with File Explorer's preview of .msg files when Microsoft Outlook 64-bit is installed.
• Addresses an issue that causes all open Universal Windows Platform (UWP) apps to close unexpectedly. This occurs when their installer calls the Restart Manager to restart File Explorer (explorer.exe).
• Addresses an issue that prevents Windows 8.1 apps from projecting to a secondary display when those apps use the StartProjectingAsync API.
• Addresses an issue that causes user profile folder names to get excessively long, which might lead to MAX_PATH issues.
• Addresses an issue that prevents a delegated user from importing a Group Policy object (GPO) even though the user has the required privilege.
• Addresses an issue that causes the Event Viewer Microsoft Management Console (MMC) to stop working when the secondary monitor is above the primary monitor. An out of bounds exception appears.
• Addresses an issue that sends a high volume of events during a real-time session in a short period of time.
• Addresses an issue with object performance counters.
• Addresses an issue that causes an error if you open Microsoft OneDrive files on demand when User Experience Virtualization (UE-V) is enabled. To apply this solution, set the following DWORD to 1: "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\UEV\Agent\Configuration\ApplyExplorerCompatFix"
• Addresses an issue that causes the promotion of a server to a domain controller to fail. This occurs when the Local Security Authority Subsystem Service (LSASS) process is set as Protected Process Light (PPL).
• Addresses an issue in which AppLocker publisher rules might sometimes prevent applications from loading software modules; this can cause partial application failure.
• Addresses an issue that sometimes prevents AppLocker from running an application whose publisher rule allows it to run.
• Addresses an issue that generates a "Sync stopped, Can't encrypt files" error when users attempt to sync their Work Folder. This issue occurs after you configure encrypted Work Folders on the client.
• Addresses an issue that causes the CryptCATAdminCalcHashFromFileHandle() function to leak memory when it's called. That memory is not reclaimed until the calling application closes.
• Addresses an issue that prevents you from unlocking a device if you typed a space before the username when you first signed in to the device.
• Addresses an issue that causes applications to take a long time to open.
• Addresses an issue that causes a system to stop working and generates a 7E stop code.
• Addresses classification failures caused by the wrong User Principal Name (UPN).
• Addresses an issue with a sleep system call on Glibc-2.31 or later that's running on a Windows Subsystem for Linux 1 (WSL 1) distribution.
• Adds support for WSL 2; for more information, see WSL 2 Support is coming to Windows 10 Versions 1903 and 1909.
• Addresses an issue that might display Processor Frequency as zero (0) for certain processors.
• Addresses an issue that causes delays during shutdown when running the Microsoft Keyboard Filter Service.
• Addresses an issue that prevents a host's virtual private network (VPN) connection from sharing with virtual machines (VM) connected to the Default Switch.
• Addresses an issue with sourcing the root domain directory partition of a global catalog from a child domain controller (DC) when promoting, unhosting, or rehosting the DC. This might cause LSASS to consume all the available memory on the child DC. This issue is specific to Active Directory forests that contain 100 or more domain controllers.
• Addresses an issue that fails to log events 4732 and 4733 for Domain-Local group membership changes in certain scenarios. This occurs when you use the "Permissive Modify" control; for example, the Active Directory (AD) PowerShell modules use this control.
• Addresses an issue that might prevent the cluster service from starting and generates the error "2245 (NERR_PasswordTooShort)". This occurs if you configure the "Minimum Password Length" Group Policy with more than 14 characters. For more information, see KB4557232.
• Addresses an issue that causes the configuration of the "Minimum Password Length" Group Policy with more than 14 characters to have no effect. For more information, see KB4557232.
• Addresses an issue that causes the loss of written data when an application opens a file and writes to the end of the file in a share folder.
• Addresses an issue with Server Message Block (SMB). This issue incorrectly logs the Microsoft-Windows-SMBClient 31013 event in the Microsoft-Windows-SMBClient/Security event log of an SMB client when an SMB server returns STATUS_USER_SESSION_DELETED. This issue occurs when SMB client users or applications open multiple SMB sessions using the same set of Transmission Control Protocol (TCP) connections on the same SMB Server. This issue most likely occurs on Remote Desktop Servers.

Eine Menge Bugs, die da (8 Monate nach dem Feature-Freeze von Windows 10 2004) noch korrigiert werden müssen. Dieses Update wird über Windows Update angeboten und installiert, ist aber auch im Microsoft Update Catalog (nicht jedoch für WSUS) erhältlich. Laut Microsoft ist das Update optional und wird nur bei einer Update-Suche gefunden. Microsoft empfiehlt dringend, dass Sie das neueste Service Stack Update (SSU) für Ihr Betriebssystem installieren, bevor Sie das neueste kumulative Update (LCU) installieren. Microsoft gibt an, keine bekannten Probleme, die das Update verursacht, zu kennen.

Zudem hat Microsoft ein Update direkt für den Windows Update Client veröffentlicht, um dessen Zuverlässigkeit zu verbessern. Das wird außerhalb von Windows Update ausgerollt, wenn die Maschine kompatibel und keine LTSC-Variante ist und Updates nicht per GPO blockiert wurden.

Update KB4571748 für Windows 10 Version 1809

Das kumulative Update KB4571748 hebt die OS-Build (laut MS) auf 17763.1432 und beinhaltet Qualitätsverbesserungen aber keine neuen Betriebssystemfunktionen. Hier die Liste der Verbesserungen, von Microsoft als Highlights bezeichnet:

• Updates time zone information for the Yukon, Canada.
• Updates an intermittent issue that causes a touchscreen to stop working after several sleep and wake cycles.
• Updates an issue that causes the Settings page to close unexpectedly, which prevents default applications from being set up properly.
• Updates an issue that causes applications to take a long time to open.
• Updates an issue that prevents you from unlocking a device if you typed a space before the username when you first signed in to the device.

Hinzukommen folgende Fixes und Verbesserungen an der Windows 10 Version 1909, die aber identisch mit der Version 1903 (Update steht auch für die Hololens bereit) sind:

• Provides the ability to sync the Microsoft Edge IE Mode unidirectional session cookie when an administrator configures the session cookie.
• Addresses an issue that displays a black screen to Windows Virtual Desktop (WVD) users when they attempt to sign in.
• Addresses an issue that, in certain scenarios, causes the GetConsoleWindow function to return an unusable value within a process that started with a CREATE_NO_WINDOW flag.
• Updates time zone information for the Yukon, Canada.
• Addresses an issue with Dynamic Data Exchange (DDE) that causes a memory leak when multiple clients connect to the same server.
• Addresses an intermittent issue that causes a touchscreen to stop working after several sleep and wake cycles.
• Addresses an issue that causes new child windows to flicker and appear as white squares on server devices that are configured for stark visual contrast.
• Addresses an issue with File Explorer's preview of .msg files when Microsoft Outlook 64-bit is installed.
• Addresses an issue that causes all open Universal Windows Platform (UWP) apps to close unexpectedly. This occurs when their installer calls the Restart Manager to restart File Explorer (explorer.exe).
• Addresses an issue that causes the Settings page to close unexpectedly, which prevents default applications from being set up properly.
• Addresses an issue that causes user profile folder names to get excessively long, which might lead to MAX_PATH issues.
• Addresses an issue with unexpected notifications related to changing default applications settings.
• Addresses an issue that creates random line breaks in PowerShell's console error output when the output is redirected.
• Addresses an issue that prevents a delegated user from importing a Group Policy object (GPO) even though the user has the required privilege.
• Addresses an issue with Windows Management Instrumentation (WMI) queries that contain case insensitive names that affect the Patch Management solution for a customer.
• Addresses an issue with object performance counters.
• Addresses an issue that causes an error if you open Microsoft OneDrive files on demand when User Experience Virtualization (UE-V) is enabled. To apply this solution, set the following DWORD to 1: "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\UEV\Agent\Configuration\ApplyExplorerCompatFix"
• Addresses an issue that causes applications to take a long time to open.
• Addresses an issue that sometimes prevents AppLocker from running an application whose publisher rule allows it to run.
• Addresses an issue in which AppLocker publisher rules might sometimes prevent applications from loading software modules; this can cause partial application failure.
• Addresses an issue that causes the CryptCATAdminCalcHashFromFileHandle() function to leak memory when it's called. That memory is not reclaimed until the calling application closes.
• Addresses an issue that might prevent the cluster service from starting and generates the error "2245 (NERR_PasswordTooShort)". This occurs if you configure the "Minimum Password Length" Group Policy with more than 14 characters. For more information, see KB4557232.
• Addresses an issue that causes the configuration of the "Minimum Password Length" Group Policy with more than 14 characters to have no effect. For more information, see KB4557232.
• Addresses an issue that causes a system to stop working and generates a 7E stop code.
• Addresses an issue that prevents you from unlocking a device if you typed a space before the username when you first signed in to the device.
• Addresses classification failures caused by the wrong User Principal Name (UPN).
• Addresses an issue that causes a stop error on a Hyper-V host when a virtual machine (VM) issues a specific Small Computer Systems Interface (SCSI) command.
• Addresses an issue that might display Processor Frequency as zero (0) for certain processors.
• Addresses an issue with a sleep system call on Glibc-2.31 or later that's running on a Windows Subsystem for Linux 1 (WSL 1) distribution.
• Addresses an issue that causes delays during shutdown when running the Microsoft Keyboard Filter Service.
• Addresses a transient network disconnection issue that may happen when you enable packet capturing using "netsh start trace capture=yes". This issue might also occur when you install third-party Network Driver Interface Specification (NDIS) filter drivers.
• Addresses an issue in Software Load Balancing scenarios that prevents a connection from being responsive to TCP resets.
• Introduces support for Direct Server Return (DSR) configuration for container load balancers that are created by the Host Networking Service (HNS).
• Adds new functionality to the robocopy command.
• Addresses an issue that fails to log events 4732 and 4733 for Domain-Local group membership changes in certain scenarios. This occurs when you use the "Permissive Modify" control; for example, the Active Directory (AD) PowerShell modules use this control.
• Addresses a Security Assertion Markup Language (SAML) Scoping support issue in the Active Directory Federation Service (AD FS) that is related to entityID and IDPList. For more information, see section 3.4.1.2 of the SAML Core specification.
• Addresses an issue that logs incorrect IPs in the audit logs for Windows Transport requests because of missing or outdated data.
• Addresses an issue that prevents Account activity cmdlets from executing when you specify an identity that is not in a UPN format.
• Addresses an issue with Server Message Block (SMB). This issue incorrectly logs the Microsoft-Windows-SMBClient 31013 event in the Microsoft-Windows-SMBClient/Security event log of an SMB client when an SMB server returns STATUS_USER_SESSION_DELETED. This issue occurs when SMB client users or applications open multiple SMB sessions using the same set of Transmission Control Protocol (TCP) connections on the same SMB Server. This issue most likely occurs on Remote Desktop Servers.
• Addresses an issue with the CsvFs driver that prevents the Win32 API from accessing SQL Server Filestream data. This occurs when you store that data on a Cluster Shared Volume in a SQL Server failover cluster instance on Azure VMs.
• Addresses an issue with the Remote Desktop Session Host (RDSH) that fails to open the Start menu for mandatory profile users.
• Addresses an issue that might cause a stop error (0xC00002E3) at startup. This issue occurs after installing certain Windows Updates that were released on or after April 21, 2020.
• Addresses a runtime error that causes Visual Basic 6.0 (VB6) to stop working when duplicate windows messages are sent to WindowProc().

Dieses Update wird optional über Windows Update angeboten, ist aber auch im Microsoft Update Catalog erhältlich. Microsoft empfiehlt dringend, dass Sie das neueste Service Stack Update (SSU) für Ihr Betriebssystem installieren, bevor Sie das neueste kumulative Update (LCU) installieren. Microsoft führt zwei bekannte Probleme auf, die das Update verursacht. Bei der Update-Installation kann der Fehler 0x800f0982 – PSFX_E_MATCHING_COMPONENT_NOT_FOUND auftreten. Weiterhin gibt es Probleme mit dem Edge-Browser, der den Fehler 0x80704006 wirft und nicht auf Seiten zugreifen kann. Details finden sich im KB-Artikel.

Zudem hat Microsoft ein Update direkt für den Windows Update Client veröffentlicht, um dessen Zuverlässigkeit zu verbessern. Das wird außerhalb von Windows Update ausgerollt, wenn die Maschine kompatibel und keine LTSC-Variante ist und Updates nicht per GPO blockiert wurden.

Ähnliche Artikel:
Microsoft Office Patchday (4. August 2020)
Microsoft Security Update Summary (11. August 2020)
Patchday: Windows 10-Updates (11. August 2020)
Patchday: Windows 8.1/Server 2012-Updates (11. August 2020)
Patchday: Updates für Windows 7/Server 2008 R2 (11.8.2020)
Patchday Microsoft Office Updates (11. August 2020)

Probleme: Microsoft August 2020-Patchday-Nachlese