September 10, 2019—KB4512578 (OS Build 17763.737)

NoteFollow @WindowsUpdate to find out when new content is published to the release information dashboard.

Starting with update KB4497934, we are introducing functionality that allows you to decide when to install a feature update. You control when you get a feature update while simultaneously keeping your devices up to date. Feature updates that are available for eligible devices will appear in a separate module on the Windows Update page (Settings> Update & Security >Windows Update). If you would like to get an available update right away, selectDownload and install now. To find out more about this feature, please go to this blog. When Windows 10 devices are at, or within several months of reaching, end of service, Windows Update will begin to automatically initiate a feature update. This keeps those devices supported and receiving the monthly updates that are critical to device security and ecosystem health.

NoteThis release also contains updates for Microsoft HoloLens (OS Build 17763.737) released September 10, 2019. Microsoft will release an update directly to the Windows Update Client to improve Windows Update reliability on Microsoft HoloLens that have not updated to this most recent OS Build.

For more information about the various types of Windows updates, such as critical, security, driver, service packs, and so on. please see the following article.

Highlights

• Updates to improve security when using Internet Explorer, Microsoft Edge, and input devices such as a mouse, keyboard, or stylus.
• Updates for verifying user names and passwords.

Improvements and fixes

This security update includes quality improvements. Key changes include:

• Provides protections against a new subclass of speculative execution side-channel vulnerabilities, known as Microarchitectural Data Sampling, for 32-Bit (x86) versions of Windows.
  For more information, see Security Advisory 190013. This advisory includes CVE-2019-11091,CVE-2018-12126, CVE-2018-12127, and CVE-2018-12130. Use the registry settings as described in the Windows Client and Windows Server articles_. _(These registry settings are enabled by default for Windows Client OS editions and Windows Server OS editions.)
• Security updates to Microsoft Edge, Internet Explorer, Microsoft Scripting Engine, Windows App Platform and Frameworks, Windows Input and Composition, Windows Fundamentals, Windows Authentication, Windows Cryptography, the Microsoft JET Database Engine, Windows Kernel, Windows Virtualization, and Windows Server.
  If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.For more information about the resolved security vulnerabilities, please refer to the Security Update Guide.

Windows Update ImprovementsMicrosoft has released an update directly to the Windows Update client to improve reliability. Any device running Windows 10 configured to receive updates automatically from Windows Update, including Enterprise and Pro editions, will be offered the latest Windows 10 feature update based on device compatibility and Windows Update for Business deferral policy. This doesn’t apply to long-term servicing editions.

Known issues in this update

• Perform the operation from a process that has administrator privilege.
• Perform the operation from a node that doesn’t have CSV ownership.
  Microsoft is working on a resolution and will provide an update in an upcoming release.
  After installing KB 4493509, devices with some Asian language packs installed may receive the error, “0x800f0982 - PSFX_E_MATCHING_COMPONENT_NOT_FOUND.”| This issue is addressed by updates released June 11, 2019 and later. We recommend you install the latest security updates for your device. Customers installing Windows Server 2019 using media should install the latest Servicing Stack Update (SSU) before installing the language pack or other optional components. If using the Volume Licensing Service Center (VLSC), acquire the latest Windows Server 2019 media available. The proper order of installation is as follows:

1. Install the latest prerequisite SSU, currently KB5005112

2. Install optional components or language packs

3. Install latest cumulative update
   Note Updating your device will prevent this issue, but will have no effect on devices already affected by this issue. If this issue is present in your device, you will need to use the workaround steps to repair it.Workaround:

4. Uninstall and reinstall any recently added language packs. For instructions, see Manage the input and display language settings in Windows 10.

5. Click Check for Updatesand install the April 2019 Cumulative Update or later. For instructions, see Update Windows 10.
   NoteIf reinstalling the language pack does not mitigate the issue, use the In-Place-Upgrade feature. For guidance, see How to do an in-place upgrade on Windows, and Perform an in-place upgrade of Windows Server.
   We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates.| This issue is resolved in KB4520062.
   Applications and scripts that call the NetQueryDisplayInformation API or the WinNT provider equivalent may fail to return results after the first page of data, often 50 or 100 entries. When requesting additional pages you may receive the error, “1359: an internal error occurred.” This issue occurs in this update and in all the updates before June 18, 2019.| This issue is resolved in KB4516077.
   After installing this update, Windows Mixed Reality Portal users may intermittently receive a “15-5” error code. In some cases, Windows Mixed Reality Portal may report that the headset is sleeping and pressing “Wake up” may appear to produce no action.| This issue is resolved in KB4520062.
   Some Input Method Editor (IME) may become unresponsive or may have high CPU usage. Affected IMEs include Chinese Simplified (ChsIME.EXE) and Chinese Traditional (ChtIME.EXE) with Changjie/Quick keyboard.| Due to security related changes in this update, this issue may occur when the Touch Keyboard and Handwriting Panel Service is not configured to its default startup type of Manual. To resolve the issue, perform the following steps:

6. Select the Startbutton and type “services”.

7. Open the Services app and locate Touch Keyboard and Handwriting Panel Service. 3. Double-clickTouch Keyboard and Handwriting Panel Service and selectProperties.

8. Locate Startup type: and change it toManual.

9. Select OK.
   The TabletInputService service is now in the default configuration and IME should work as expected.
   When setting up a new Windows device during the Out of Box Experience (OOBE), you might be unable to create a local user when using Input Method Editor (IME). This issue might affect you if you are using the IME for Chinese, Japanese, or Korean languages.Note This issue does not affect using a Microsoft Account during OOBE.| This issue is resolved in KB4534321.

How to get this update