Servicing stack update for Windows Server, version 1803 and Windows 10, version 1803: November 13, 2018

Applies to: Windows Server version 1803Windows 10, version 1803

Summary


A security feature bypass vulnerability exists when Windows improperly suspends BitLocker Device Encryption. An attacker with physical access to a powered off system could exploit this vulnerability to gain access to encrypted data.

To exploit the vulnerability, an attacker must gain physical access to the target system prior to the next system reboot.

The security update fixes the vulnerability by ensuring Windows resumes BitLocker Device Encryption.

To learn more about the vulnerability, go to CVE-2018-8566.

Known issues in this security update


Issue

After you install this Servicing Stack Update (SSU), some Windows cumulative updates (CU) might not install.

This issue may occur if either of the following conditions is true:

  • You have not installed a cumulative update since August 2018.
  • You install a new operating system, you install this SSU, and then you try to install any Windows CU that is dated September 2018 or later.

This issue affects only ARM64-based systems.

To recover from this issue, reinstall Windows, install the latest Windows CU, and then install this SSU.

Status

Microsoft is researching this problem and will post more information in this article when the information becomes available.

How to get this update


Method 1: Windows Update

This update will be downloaded and installed automatically.

Note This update is also available through Windows Server Update Services (WSUS).

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

Deployment information


Microsoft strongly recommends you install the latest servicing stack update (SSU) for your operating system before installing the latest cumulative update (LCU). SSUs improve the reliability of the update process to mitigate potential issues while installing the LCU and applying Microsoft security fixes. For more information, see Servicing stack updates.

For deployment details for this security update, see the following article in the Microsoft Knowledge Base:

Security update deployment information: November 13, 2018

More information


Prerequisites

There are no prerequisites for installing this update.

Restart information

You do not have to restart the computer after you apply this update.

Update replacement information

This update replaces Servicing stack update for Windows 10, version 1803: September 11, 2018 (4456655).

References


Learn about the terminology that Microsoft uses to describe software updates.

File Information



File information
The English (United States) version of this software update installs files that have the attributes that are listed in the following tables. The dates and the times for these files are listed in Coordinated Universal Time (UTC). The dates and the times for these files on your local computer are displayed in your local time together with your current daylight saving time (DST) bias. Additionally, the dates and the times may change when you perform certain operations on the files.

Windows 10 file information