August 17, 2019—KB4512534 (OS Build 17763.720)

Applies to: Windows 10, version 1809Windows Server version 1809Windows Server 2019, all versions

Highlights


  • Updates an issue that prevents Windows Hello face recognition from working after you restart a device.
  • Allows Microsoft Edge to print PDF documents that contain landscape and portrait-oriented pages together correctly. 
  • Allows Microsoft Edge to open PDFs that are configured to be opened only once correctly. 
  • Updates an issue with downloading copyrighted digital media (music, TV shows, movies, and so on) from certain websites using Microsoft Edge and Internet Explorer.

Improvements and fixes


This non-security update includes quality improvements. Key changes include:

  • Improves the reliability of push notifications about app deployments to Microsoft HoloLens 1 devices.
  • Addresses an issue that prevents Windows Hello Face Authentication from working after a restart.
  • Addresses an issue with downloading digital rights management (DRM) files from certain websites using Microsoft Edge and Internet Explorer.
  • Addresses an issue that prevents the Universal C Runtime Library from returning the proper value for time zone global variables in certain conditions.
  • Addresses an issue that causes Deployment Image Servicing and Management (DISM) to intermittently stop responding while deprovisioning some preinstalled apps using the Microsoft System Center Configuration Manager (SCCM).
  • Addresses an issue in which the default keyboard for the English (Cyprus) (en-CY) locale was not set properly.
  • Addresses an issue to enable Microsoft Edge to print PDF documents that contain landscape and portrait-oriented pages correctly.
  • Addresses an issue with PDFs that are configured to be opened only once in Microsoft Edge.
  • Addresses performance issues for the Win32 subsystem and Desktop Window Manager (DWM).
  • Addresses an issue with the input and display of special characters that occurs when an app uses imm32.dll.
  • Addresses a composition handle leak in Universal Windows Platform (UWP) apps.
  • Addresses a memory leak in dwm.exe that may lead to a loss of functionality and cause a device to stop working.
  • Addresses an issue that fails to bypass automatic sign in (Autologon) when you press and hold the Shift key during startup.
  • Addresses an issue that causes the Windows Management Instrumentation (WMI) class Win32_PhysicalMemory to report that 32 GB memory chips have a missing Capacity value.
  • Addresses an issue that prevents an App-V application from opening and displays a network failure error. This issue occurs under certain circumstances, such as when a system's battery is low or there is an unexpected power failure.
  • Addresses an issue with User Experience Virtualization (UE-V) that may sometimes prevent exclusion paths from working.
  • Addresses a rare issue that causes Windows Defender Advanced Threat Protection (ATP) to temporarily prevent other processes from accessing files.
  • Addresses an issue that causes a workstation to stop working when you sign in using an updated user principal name (UPN) (for example, changing UserN@contoso.com to User.Name@contoso.com).
  • Addresses an issue in which Windows Defender Application Control will not allow third-party binaries to be loaded from a Universal Windows Platform application. CodeIntegrity event error 3033 appears as, “Code Integrity determined that a process (<process name>) attempted to load <binary name> that did not meet the Store signing level requirements.”
  • Addresses an issue that prevents some Trusted Platform Module (TPM) devices from being used for Next Generation Credentials.
  • Addresses an issue that causes applications on a container host to intermittently lose connectivity because of a port conflict with applications running on a container.
  • Addresses an issue that prevents some users from receiving a TTL value when they are added as members of Shadow Principals. This occurs for users who have distinguished names (DN) that contain an escape character. The TTL value is now added as expected.
  • Addresses an issue with the disabled attribute of the input element, which doesn’t allow a scope to be passed to the authorization endpoint.
  • Addresses an issue with leaks in Windows notification sockets that causes Windows to run out of ports.
  • Addresses an issue that prevents server editions from activating with a Multiple Activation Key (MAK) in the graphical user interface (GUI). The error is, “0x80070490”.
  • Addresses an issue that may break the domain trust when the Recycle Bin is configured on the domain that carries the trust.
  • Increases the number of supported interrupts per device to 512 on systems that have x2APIC enabled.
  • Addresses an issue that may prevent devices from starting when they start up using Preboot Execution Environment (PXE) images from Windows Deployment Services (WDS) or System Center Configuration Manager (SCCM). The error is, "Status: 0xc0000001, Info: A required device isn't connected or can't be accessed."
  • Addresses an issue that may cause the following to stop responding:
    • Applications that were made using Visual Basic 6 (VB6).
    • Macros that use Visual Basic for Applications (VBA).
    • Scripts or apps that use Visual Basic Scripting Edition (VBScript).

You may also receive an "Invalid procedure call” error.

  • Improves the Storage Migration Service to support the migration of Windows Server failover clusters, Samba Linux computers, and local users and groups.
  • Adds support for migrations between on-premises networks and Azure networks.
  • Addresses an issue that causes an error if you open Microsoft OneDrive files on demand when User Experience Virtualization (UE-V) is enabled. To apply this solution, set the following DWORD to 1: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\UEV\Agent\Configuration\ApplyExplorerCompatFix 

If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.

Known issues in this update


Symptom Workaround
Certain operations, such as rename, that you perform on files or folders that are on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”. This occurs when you perform the operation on a CSV owner node from a process that doesn’t have administrator privilege.

Do one of the following:

  • Perform the operation from a process that has administrator privilege.
  • Perform the operation from a node that doesn’t have CSV ownership.
Microsoft is working on a resolution and will provide an update in an upcoming release.
After installing KB4493509, devices with some Asian language packs installed may receive the error, "0x800f0982 - PSFX_E_MATCHING_COMPONENT_NOT_FOUND."
  1. Uninstall and reinstall any recently added language packs. For instructions, see Manage the input and display language settings in Windows 10.
  2. Select Check for Updates and install the April 2019 Cumulative Update. For instructions, see Update Windows 10.

Note If reinstalling the language pack does not mitigate the issue, reset your PC as follows:

  1. Go to the Settings app > Recovery.
  2. Select Get Started under the Reset this PC recovery option.
  3. Select Keep my Files.

Microsoft is working on a resolution and will provide an update in an upcoming release.

We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates.

To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally.

We are working on a resolution and will provide an update in an upcoming release.

Applications and scripts that call the NetQueryDisplayInformation API or the WinNT provider equivalent may fail to return results after the first page of data, often 50 or 100 entries. When requesting additional pages you may receive the error, “1359: an internal error occurred.” This issue occurs in this update and in all the updates before June 18, 2019. We are working on a resolution and will provide an update in an upcoming release.
After installing this update, Windows Mixed Reality Portal users may intermittently receive a “15-5” error code. In some cases, Windows Mixed Reality Portal may report that the headset is sleeping and pressing “Wake up” may appear to produce no action.

To mitigate the issue, use the following steps:

  1. Close the Windows Mixed Reality Portal, if it is running.
  2. Open Task Manager by selecting the Start button and typing “task manager.
  3. In Task Manager, under the Processes tab, right-click Windows Explorer and select Restart.
  4. Open the Windows Mixed Reality Portal.

We are working on a resolution and will provide an update in an upcoming release.

How to get this update


Before installing this update

Microsoft strongly recommends you install the latest servicing stack update (SSU) for your operating system before installing the latest cumulative update (LCU). SSUs improve the reliability of the update process to mitigate potential issues while installing the LCU and applying Microsoft security fixes. For more information, see Servicing stack updates.

If you are using Windows Update, the latest SSU (KB4512937) will be offered to you automatically. To get the standalone package for the latest SSU, search for it in the Microsoft Update Catalog.

Install this update

Release Channel Available Next Step
Windows Update or Microsoft Update Yes Go to Settings > Update & Security > Windows Update and select Check for updates.
Microsoft Update Catalog Yes To get the standalone package for this update, go to the Microsoft Update Catalog.
Windows Server Update Services (WSUS) Yes

This update will automatically synchronize with WSUS if you configure Products and Classifications as follows:

Product: Windows 10

Classification: Update

File information

For a list of the files that are provided in this update, download the file information for cumulative update 4512534