Starting with update KB4497934, we are introducing functionality that allows you to decide when to install a feature update. You control when you get a feature update while simultaneously keeping your devices up to date. Feature updates that are available for eligible devices will appear in a separate module on the Windows Update page (Settings > Update & Security > Windows Update). If you would like to get an available update right away, select Download and install now. To find out more about this feature, please go to this blog.
When Windows 10 devices are at, or within several months of reaching, end of service, Windows Update will begin to automatically initiate a feature update. This keeps those devices supported and receiving the monthly updates that are critical to device security and ecosystem health.
- Updates an issue that prevents Windows Hello face recognition from working after you restart a device.
- Allows Microsoft Edge to print PDF documents that contain landscape and portrait-oriented pages together correctly.
- Allows Microsoft Edge to open PDFs that are configured to be opened only once correctly.
- Updates an issue with downloading copyrighted digital media (music, TV shows, movies, and so on) from certain websites using Microsoft Edge and Internet Explorer.
Improvements and fixes
This non-security update includes quality improvements. Key changes include:
- Improves the reliability of push notifications about app deployments to Microsoft HoloLens 1 devices.
- Addresses an issue that prevents Windows Hello Face Authentication from working after a restart.
- Addresses an issue with downloading digital rights management (DRM) files from certain websites using Microsoft Edge and Internet Explorer.
- Addresses an issue that prevents the Universal C Runtime Library from returning the proper value for time zone global variables in certain conditions.
- Addresses an issue that causes Deployment Image Servicing and Management (DISM) to intermittently stop responding while deprovisioning some preinstalled apps using the Microsoft System Center Configuration Manager (SCCM).
- Addresses an issue in which the default keyboard for the English (Cyprus) (en-CY) locale was not set properly.
- Addresses an issue to enable Microsoft Edge to print PDF documents that contain landscape and portrait-oriented pages correctly.
- Addresses an issue with PDFs that are configured to be opened only once in Microsoft Edge.
- Addresses performance issues for the Win32 subsystem and Desktop Window Manager (DWM).
- Addresses an issue with the input and display of special characters that occurs when an app uses imm32.dll.
- Addresses a composition handle leak in Universal Windows Platform (UWP) apps.
- Addresses a memory leak in dwm.exe that may lead to a loss of functionality and cause a device to stop working.
- Addresses an issue that fails to bypass automatic sign in (Autologon) when you press and hold the Shift key during startup.
- Addresses an issue that causes the Windows Management Instrumentation (WMI) class Win32_PhysicalMemory to report that 32 GB memory chips have a missing Capacity value.
- Addresses an issue that prevents an App-V application from opening and displays a network failure error. This issue occurs under certain circumstances, such as when a system's battery is low or there is an unexpected power failure.
- Addresses an issue with User Experience Virtualization (UE-V) that may sometimes prevent exclusion paths from working.
- Addresses a rare issue that causes Windows Defender Advanced Threat Protection (ATP) to temporarily prevent other processes from accessing files.
- Addresses an issue that causes a workstation to stop working when you sign in using an updated user principal name (UPN) (for example, changing UserN@contoso.com to User.Name@contoso.com).
- Addresses an issue in which Windows Defender Application Control will not allow third-party binaries to be loaded from a Universal Windows Platform application. CodeIntegrity event error 3033 appears as, “Code Integrity determined that a process (<process name>) attempted to load <binary name> that did not meet the Store signing level requirements.”
- Addresses an issue that prevents some Trusted Platform Module (TPM) devices from being used for Next Generation Credentials.
- Addresses an issue that causes applications on a container host to intermittently lose connectivity because of a port conflict with applications running on a container.
- Addresses an issue that prevents some users from receiving a TTL value when they are added as members of Shadow Principals. This occurs for users who have distinguished names (DN) that contain an escape character. The TTL value is now added as expected.
- Addresses an issue with the disabled attribute of the input element, which doesn’t allow a scope to be passed to the authorization endpoint.
- Addresses an issue with leaks in Windows notification sockets that causes Windows to run out of ports.
- Addresses an issue that prevents server editions from activating with a Multiple Activation Key (MAK) in the graphical user interface (GUI). The error is, “0x80070490”.
- Addresses an issue that may break the domain trust when the Recycle Bin is configured on the domain that carries the trust.
- Increases the number of supported interrupts per device to 512 on systems that have x2APIC enabled.
- Addresses an issue that may prevent devices from starting when they start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM). The error is, "Status: 0xc0000001, Info: A required device isn't connected or can't be accessed."
- Addresses an issue that may cause the following to stop responding:
- Applications that were made using Visual Basic 6 (VB6).
- Macros that use Visual Basic for Applications (VBA).
- Scripts or apps that use Visual Basic Scripting Edition (VBScript).
You may also receive an "Invalid procedure call” error.
- Improves the Storage Migration Service to support the migration of Windows Server failover clusters, Samba Linux computers, and local users and groups.
- Adds support for migrations between on-premises networks and Azure networks.
- Addresses an issue that causes an error if you open Microsoft OneDrive files on demand when User Experience Virtualization (UE-V) is enabled. To apply this solution, set the following DWORD to 1: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\UEV\Agent\Configuration\ApplyExplorerCompatFix
If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.
Windows Update Improvements
Microsoft has released an update directly to the Windows Update client to improve reliability. Any device running Windows 10 configured to receive updates automatically from Windows Update, including Enterprise and Pro editions, will be offered the latest Windows 10 feature update based on device compatibility and Windows Update for Business deferral policy. This doesn't apply to long-term servicing editions.
Known issues in this update
|Certain operations, such as rename, that you perform on files or folders that are on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”. This occurs when you perform the operation on a CSV owner node from a process that doesn’t have administrator privilege.|| |
Do one of the following:
|After installing KB4493509, devices with some Asian language packs installed may receive the error, "0x800f0982 - PSFX_E_MATCHING_COMPONENT_NOT_FOUND."|| |
Note If reinstalling the language pack does not mitigate the issue, reset your PC as follows:
Microsoft is working on a resolution and will provide an update in an upcoming release.
|We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates.|| |
This issue is resolved in KB4520062.
|Applications and scripts that call the NetQueryDisplayInformation API or the WinNT provider equivalent may fail to return results after the first page of data, often 50 or 100 entries. When requesting additional pages you may receive the error, “1359: an internal error occurred.” This issue occurs in this update and in all the updates before June 18, 2019.||This issue is resolved in KB4516077.|
|After installing this update, Windows Mixed Reality Portal users may intermittently receive a “15-5” error code. In some cases, Windows Mixed Reality Portal may report that the headset is sleeping and pressing “Wake up” may appear to produce no action.|| |
This issue is resolved in KB4520062.
How to get this update
Before installing this update
Microsoft strongly recommends you install the latest servicing stack update (SSU) for your operating system before installing the latest cumulative update (LCU). SSUs improve the reliability of the update process to mitigate potential issues while installing the LCU and applying Microsoft security fixes. For more information, see Servicing stack updates.
Install this update
|Release Channel||Available||Next Step|
|Windows Update or Microsoft Update||Yes||Go to Settings > Update & Security > Windows Update and select Check for updates.|
|Microsoft Update Catalog||Yes||To get the standalone package for this update, go to the Microsoft Update Catalog.|
|Windows Server Update Services (WSUS)||Yes|| |
This update will automatically synchronize with WSUS if you configure Products and Classifications as follows:
Product: Windows 10
For a list of the files that are provided in this update, download the file information for cumulative update 4512534.