May 8, 2018—KB4103723 (OS Build 14393.2248)
Applies To
Windows 10, version 1607, all editions Windows Server 2016, all editionsRelease Date:
08/05/2018
Version:
OS Build 14393.2248
Windows 10, version 1607, reached end of service on April 10, 2018. Devices running Windows 10 Home or Pro editions will no longer receive monthly security and quality updates that contain protection from the latest security threats. To continue receiving security and quality updates, Microsoft recommends updating to the latest version of Windows 10.
IMPORTANT: Windows 10 Enterprise and Windows 10 Education editions will receive six months of additional servicing at no cost. Devices on the Long-Term Servicing Channels (LTSC) will continue to receive updates until October 2026 per the Lifecycle Policy page. Windows 10 Anniversary Update (v. 1607) devices running the Intel “Clovertrail” chipset will continue to receive updates until January 2023 per the Microsoft Community blog.
Improvements and fixes
This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:
-
Addresses an issue that prevents the deployment of previously released feature updates using ConfigMgr (current branch) and Windows 10 servicing plans.
-
Provides support to control usage of Indirect Branch Prediction Barrier (IBPB) within some AMD processors (CPUs) for mitigating CVE-2017-5715, Spectre Variant 2 when switching from user context to kernel context (See AMD Architecture Guidelines around Indirect Branch Control and AMD Security Updates for more details). Follow instructions outlined in KB4073119 for Windows Client (IT Pro) guidance and KB4072698 for Windows Server guidance to enable usage of IBPB within some AMD processors (CPUs) for mitigating Spectre Variant 2 when switching from user context to kernel context.
-
Addresses an issue in Internet Explorer that might cause communication between web workers to fail in certain asynchronous scenarios that involve multiple visits to a web page.
-
Updates Internet Explorer and Microsoft Edge to respect the video preload flag in certain scenarios.
-
Addresses an issue that occurs when multiple processes are limited by rate using job objects. This can cause various symptoms including, but not limited to, system process CPU spikes, interrupt time CPU spikes, high privileged time on some CPUs, and increased system or processor queue lengths.
-
Addresses an issue with the April 2018 Windows Servicing update that causes App-V Scripts (User Scripts) to stop working.
-
Addresses an issue that causes the Drain Manager Cluster service to sometimes be stuck in the draining state.
-
Addresses a transient error that may cause a disk to go to the NoRedundancy state in a Storage Spaces Direct configuration.
-
Improves resiliency in handling network issues that may cause highly available VMs to be turned off because of I/O timeouts or Cluster Shared Volumes dismounted messages.
-
Addresses an issue that prevents customers from typing Hangul correctly with Microsoft's Korean IME in Microsoft Word Online.
-
Addresses an issue that prevents customers from selecting a Microsoft add-in on a second monitor.
-
Addresses an issue that may cause an error when connecting to a Remote Desktop server. For more information, see CredSSP updates for CVE-2018-0886.
-
Security updates to Microsoft Edge, Internet Explorer, Microsoft scripting engine, Windows app platform and frameworks, Device Guard, Windows kernel, Microsoft Graphics Component, Windows Hyper-V, HTML help, and Windows Server.
Note This update isn't available with express installation files for Windows Server 2016.
If you installed earlier updates, only the new fixes in this package will be downloaded and installed on your device.
For more information about the resolved security vulnerabilities, see the Security Update Guide.
Windows Update Improvements
Microsoft has released an update directly to the Windows Update client to improve reliability. Any device running Windows 10 configured to receive updates automatically from Windows Update, including Enterprise and Pro editions, will be offered the latest Windows 10 Feature Update based on device compatibility and Windows Update for Business deferral policy. This does not apply to long-term servicing editions.
Known issues in this update
Symptom |
Workaround |
Reliability issues have been observed during the creation of shielded VMs and the required artifacts for their deployment. There are also reliability issues for the Shielding File Wizard with or without the SCVMM interface. Note: Existing shielded VMs and HGSs are not affected. |
This issue is resolved in KB4284880. |
How to get this update
This update will be downloaded and installed automatically from Windows Update. To get the standalone package for this update, go to the Microsoft Update Catalog website.
File information
For a list of the files that are provided in this update, download the file information for cumulative update 4103723.