Applies ToWindows 11 version 24H2, all editions

Release Date:

10/24/2024

Version:

OS Build 26100.2161

For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows 11, version 24H2, see its update history page.    

Note Follow @WindowsUpdate to find out when new content is published to the Windows release health dashboard.         

Highlights

Note: Below is a summary of the key issues that this update addresses when you install this KB. If there are new features, it lists them as well. The bold text within the brackets indicates the item or area of the change we are documenting.

Gradual rollout

These might not be available to all users because they will roll out gradually.​​​​​

  • [Notifications] New! You can now stop the suggestions to turn off notifications from certain apps. Select the ellipses (…) in the notification and turn it off. You can also go to Settings > System > Notifications and turn it off from there. Look for “Notification Suggestions” in the senders list. An entry will only appear in the list after you receive a notification. 

  • [Wi-Fi password dialog] New! The dialog now has the Windows 11 visual design. Go to Settings > Network & internet.​​​​​​​

  • [Narrator]

    • New! This update adds a new Narrator shortcut. Press the Narrator key + Ctrl + X to copy what Narrator last spoke to the clipboard. This shortcut is useful when you want to quickly copy some content, like codes or numbers for use.

    • New! It will now auto read the contents of an email message in the new Outlook. This is like the behavior in Outlook classic.

  • ​​​​​​​[Start menu] New! “All apps” has the new name, “All.”​​​​​​​​​​​​​​

  • [ALT + Tab] Fixed: The screen goes black on some PCs for a few seconds when you switch between certain windows.

  • ​​​​​​​[Scanning apps] Fixed: They don't detect certain scanners although they are connected.

Normal rollout

  • [Web sign-in] Fixed: You cannot sign in to your account from the web because the screen stops responding.

  • [Copilot key settings] New! You can configure the Copilot key on the keyboard. On new devices, the key opens the Copilot app. If you sign in to your account using a Microsoft Entra ID, the key opens the Microsoft 365 app. You can make the key open a different app or open Search. To do this, go to Settings > Personalization > Text input. To make the key open a different app, the app must be in a signed MSIX package. This ensures that the app meets security and privacy standards to keep you safe. If your PC’s keyboard does not have a Copilot key, changing this setting will do nothing.

  • [WindowsDisk Cleanup app] Fixed: This update addresses some of the causes for the wrong free space estimates and improves its accuracy.

Improvements

This non-security update includes quality improvements. Below is a summary of the key issues that this update addresses when you install this KB. If there are new features, it lists them as well. The bold text within the brackets indicates the item or area of the change we are documenting.

  • [Virtual hard disk (VHD/VHDx)] New! This update adds a detach virtual hard disk button to Settings. In the properties for your VHD or VHDx, go to Settings > System > Storage > Disks & Volumes. This might not be available to all users because it will roll out gradually.​​​​​

  • [Networking] New! If you use the netsh wlan show networks command, it can now read SSIDs that are encoded using UTF-8. This means that Wi-Fi SSIDs that have Unicode characters (like emoji) will display properly in netsh output. This might not be available to all users because it will roll out gradually.​​​​​

  • [Windows Sandbox Client Preview] New! This update adds the Windows Sandbox Client Preview. It includes:

    • Runtime clipboard redirection

    • Audio and video input control

    • The sharing of folders with the host at runtime

      To access these, select the ellipses (…) at the upper right on the app. This preview also includes a version of command-line support. (The commands might change over time). To learn more, use the wsb.exe–help command. You can find new updates for this app in the Microsoft Store. This might not be available to all users because it will roll out gradually.​​​​​

  • [User interface (UI)] Fixed: You cannot view some parts of the UI when you run certain apps.

  • ​​​​​​​[Live kernel debug files (dumps)] Fixed: win32kbase.sys creates live kernel debug files when it should not.

  • [Winlogon] Fixed: A stop error occurs during shutdown.

  • ​​​​​​​[Windows Kernel Vulnerable Driver Blocklist file (DriverSiPolicy.p7b)] This update adds to the list of drivers that are at risk for Bring Your Own Vulnerable Driver (BYOVD) attacks.

  • [sfc /scannow command] Fixed: You get errors every time you run the command. 

  • [Service for User to Self (S4U2self)] Fixed: Your device might have issues using S4U2self to authenticate. This occurs if Credential Guard is off, and the device joins an Active Directory domain that does not allow the RC4 cipher.

  • [DirectAccess (known issue)] Fixed: After a clean install or an in-place upgrade to Windows 11, version 24H2, you might face issues using DirectAccess. The connection might not complete and stays in a ‘connecting’ state.

If you installed earlier updates, only the new updates contained in this package will be downloaded and installed on your device.

Windows 11 servicing stack update (KB5046908) - 26100.2160

This update makes quality improvements to the servicing stack, which is the component that installs Windows updates. Servicing stack updates (SSU) ensure that you have a robust and reliable servicing stack so that your devices can receive and install Microsoft updates. 

Known issues in this update

Applies to

Symptom

Workaround

All users

We’re aware of an issue where players on Arm devices are unable to download and play Roblox via the Microsoft Store on Windows.

Players on Arm devices can play Roblox by downloading the title directly from www.Roblox.com.

All users

After installing this update, users will encounter an issue where the number of Apps, Background Processes, and Windows Processes in Task Manager display a count of zero, despite having active applications running. This issue appears specifically on the Processes page when the "Group by Type" view is enabled.

Normally, Task Manager displays the count of processes next to each group name (e.g., Apps, Background processes), providing users with a quick view of active processes. However, due to this issue, Task Manager instead shows (0) for each group, regardless of the actual number of running processes.

We are working on a resolution and will provide more information when it is available.

All users

Following the installation of the October 2024 security update, some customers report that the OpenSSH (Open Secure Shell) service fails to start, preventing SSH connections. The service fails with no detailed logging, and manual intervention is required to run the sshd.exe process.

This issue is affecting both enterprise, IOT, and education customers, with a limited number of devices impacted. Microsoft is investigating whether consumer customers using Home or Pro editions of Windows are affected. 

Customers can temporarily resolve the issue by updating permissions (ACLs) on the affected directories. Follow these steps:

  1. Open PowerShell as an Administrator.

  2. Update the permissions for C:\ProgramData\ssh and C:\ProgramData\ssh\logs to allow full control for SYSTEM and the Administrators group, while allowing read access for Authenticated Users. You can restrict read access to specific users or groups by modifying the permissions string if needed.

    Use the following commands to update the permissions:

    $directoryPath = "C:\ProgramData\ssh" $acl = Get-Acl -Path $directoryPath $sddlString = "O:BAD:PAI(A;OICI;FA;;;SY)(A;OICI;FA;;;BA)(A;OICI;0x1200a9;;;AU)" $securityDescriptor = New-Object System.Security.AccessControl.RawSecurityDescriptor $sddlString $acl.SetSecurityDescriptorSddlForm($securityDescriptor.GetSddlForm("All")) Set-Acl -Path $directoryPath -AclObject $acl

  3. Repeat the above steps for C:\ProgramData\ssh\logs.

Microsoft is actively investigating the issue and will provide a resolution in an upcoming Windows update. Further communications will be provided when a resolution or additional workarounds are available.

How to get this update

Before you install this update

Microsoft combines the latest servicing stack update (SSU) for your operating system with the latest cumulative update (LCU). For general information about SSUs, see Servicing stack updates and Servicing Stack Updates (SSU): Frequently Asked Questions.

Install this update

To install this update, use one of the following Windows and Microsoft release channels.

Available

Next Step

Yes

Go to Settings Update & Security > Windows Update. In the Optional updates available area, you will find the link to download and install the update.

Available

Next Step

No

None. These changes will be included in the next security update to Windows Update for Business.

Available

Next Step

Yes

Before you install this update

To get the standalone package(s) for this update, go to the Microsoft Update Catalog website. This KB contains one or more MSU files that must be installed in order.

Install this update

Method 1: Install all MSU files together

Download all MSU files for KB5044384 from Microsoft Update Catalog and place them in the same folder (for example, C:/Packages). Use Deployment Image Servicing and Management (DISM.exe) to install the target update. DISM will use the folder specified in PackagePath to discover and install one or more prerequisite MSU files as needed.

Updating Windows PC

To apply this update to a running Windows PC, run the following command from an elevated Command Prompt:

DISM /Online /Add-Package /PackagePath:c:\packages\Windows11.0-KB5044384​​​​​​​-x64.msu

Or, run the following command from an elevated Windows PowerShell prompt:

Add-WindowsPackage -Online -PackagePath "c:\packages\Windows11.0-KB5044384​​​​​​​-x64.msu"

Updating Windows Installation media

To apply this update to Windows Installation media, see  Update Windows installation media with Dynamic Update.

To add this update to a mounted image, run the following command from an elevated Command Prompt:

DISM /Image:mountdir /Add-Package /PackagePath:Windows11.0-KB5044384​​​​​​​-x64.msu

Or, run the following command from an elevated Windows PowerShell prompt:

Add-WindowsPackage -Path "c:\offline" -PackagePath "Windows11.0-KB5044384​​​​​​​​​​​​​​​​​​​​​-x64.msu" -PreventPending

Method 2: Install each MSU file individually, in order

Download and install each MSU file individually either using DISM or Windows Update Standalone Installer in the following order:

  1. windows11.0-kb5043080-x64_953449672073f8fb99badb4cc6d5d7849b9c83e8.msu

  2. windows11.0-kb5044384-x64_063092dd4e73cb45d18efcb8c0995e1c8447b11a.msu

Available

Next Step

No

You can import this update into Windows Server Update Services (WSUS) manually. See the Microsoft Update Catalog for instructions.

If you want to remove the LCU

To remove the LCU after installing the combined SSU and LCU package, use the DISM/Remove-Package command line option with the LCU package name as the argument. You can find the package name by using this command: DISM /online /get-packages.

Running Windows Update Standalone Installer (wusa.exe) with the /uninstall switch on the combined package will not work because the combined package contains the SSU. You cannot remove the SSU from the system after installation.

File information

For a list of the files that are provided in this update, download the file information for cumulative update 5044384.  

For a list of the files that are provided in the servicing stack update, download the file information for the SSU (KB5046908) - version 26100.2160

Need more help?

Want more options?

Explore subscription benefits, browse training courses, learn how to secure your device, and more.

Communities help you ask and answer questions, give feedback, and hear from experts with rich knowledge.