UPDATED 9/27: As part of the September batch of updates, Microsoft is now rolling out update KB4458469 for the Windows 10 April 2018 Update with a slew of fixes.
KB4458469 bumps the version number to build 17134.319 (17134.320), and according to the software giant, addresses problems with Windows 10 search, Microsoft Edge, spell checker in a multi-monitor setup, mouse and keyboard, login, Task Scheduler, and a lot more.
In addition, earlier versions of Windows 10, including version 1709, version 1703, and version 1607 are also receiving updates with similar changes.
Windows 10 build 17134.319 (17134.320)
Microsoft has announced KB4458469 in the Windows support site, and it’s referred as “September 20, 2018—KB4458469 (OS Build 17134.319)”. If you’re already running the Windows 10 version 1803 on your PC, this update will address these problems:
- Addresses an issue that fails to maintain the tile layout after upgrading to Windows 10, version 1803 from Windows 10, versions 1703 and 1607.
- Fixes a problem that causes downloads to WebDAV locations to fail.
- Addresses an issue with the file previewer for .html, .mht, and email (MIME) attachments in Microsoft Outlook.
- Fixes a problem that returns temporary values for the new Japanese Calendar Era.
- Addresses an issue in which Background Apps settings the user configured are lost when the device restarts because of incorrect registry ACLs.
- Fixes a problem that prevents Microsoft Centennial apps and some OS apps from displaying toast notifications.
- Addresses an issue that causes Internet Explorer security and certificate dialogs to display prompts in the background instead of the foreground in certain circumstances.
- Fixes a problem that may cause the system to become unresponsive when applications call the EnableEUDC API.
- Addresses an issue that causes the prompt “You’ll need a new app to open” to appear. This occurs when reloading a website on a non-standard port by pressing Enter.
- Fixes a problem that causes downloads to fail because Mark of the Web (MOTW) isn’t supported at the download location.
- Addresses an issue that prevents the DefaultSearchProvider policy from working when the FirstRunPage policy is in use.
- Addresses issue that causes the address bar to lose focus when a new tab is opened and the Allow web content on New Tab page policy is off.
- Fixes a problem that prevents the Microsoft Edge Configure Password Manager policy from suppressing the Save password prompt when the policy is disabled.
- Addresses an issue in multi-monitor scenarios that causes a spell checker context menu to appear on the wrong monitor. This issue occurs when the customer right-clicks a misspelled word in Internet Explorer.
- Fixes a problem that occurs when entering Japanese characters in a remote desktop session (mstsc.exe).
- Addresses an issue that occurs when using low-level mouse hooks with high integrity-level processes.
- Fixes a problem that prevents custom keyboard layouts from working correctly.
- Makes the visibility policy for the Settings Page available under User Configuration. The GPO is at the following path: User Configuration/Administrative Template/Control Panel/Settings Page Visibility
- Addresses an issue with evaluating the compatibility status of the Windows ecosystem to help ensure application and device compatibility for all updates to Windows.
- Fixes a problem with the diagnostic pipeline for devices enrolled in Windows Analytics when the CommercialID registry key, “HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\DataCollection” is present.
- Addresses an issue that prevents the App-V client’s scheduled task from syncing if the Device Guard lockdown policy is enabled.
- Fixes a problem that may cause the Local Security Authority Subsystem Service (LSASS) process to stop working when attempting to process a malformed security identifier (SID).
- Addresses an issue that causes a delay in unlocking or signing in to a computer that was moved to a different network. For example, a delay occurs when moving from a corporate LAN or WLAN to a home LAN where domain controllers can’t be reached.
- Fixes a problem on some laptops that prevents sign-out from completing. The issue occurs when a customer signs out and immediately closes the laptop. As a result, when the laptop is reopened, the device must be restarted.
- Addresses an issue that occurs when enabling BitLocker from a local administrator account.
- Fixes a problem that prevents some Bluetooth devices from pairing with Windows.
- Addresses an issue in the Universal CRT that returns the expected output or a null character when calling _getch().
- Fixes a problem in the Universal CRT that returns unexpected characters when calling the _findfirst() or _findnext() functions.
- Addresses an issue in the Universal CRT that prevents some functions from accepting narrow input or producing proper output with certain ANSI Code Pages. This issue affects setargv.obj when using wildcard parsing and calls to get the current module name for debug windows.
- Fixes a problem that causes a Direct Access connection to fail when the client authentication certificate is stored in the TPM device.
- Addresses an issue that causes the system to log negative events for drivers that are valid and should be trusted. The issue occurs when running Windows Defender Application Control (Device Guard) in audit mode.
- Fixes a problem that causes a third-party VPN provider’s user interface to stop working after dynamically unloading Cryptui.dll.
- Addresses an issue that causes logging on to a Remote Desktop Session Host Server to occasionally stop responding.
- Fixes a problem that causes printing to an open or existing file to fail without displaying an error. This issue occurs when using Microsoft Print to PDF or XPS Document Writer.
- Addresses an issue where a daily, repetitive task starts unexpectedly when the task is first created or starts when the task is updated.
- Fixes a problem that prevents running subsequent actions when you create multiple actions in a task using Task Scheduler and the task is scheduled under the Stop the existing instance rule.
- Addresses an issue with a task that has a repetition setting. The task fails to be scheduled and doesn’t start after disabling and re-enabling the task. The Next Run Time in Task Scheduler displays the correct time, but the task doesn’t start at that time.
- Fixes a problem on devices with fingerprint sensors that were upgraded from Windows 10, version 1709. After the upgrade, users can’t use the fingerprint sensor to log in.
- Addresses an issue that causes some systems to take as much as 60 seconds longer to start. This occurs on systems that don’t have a smart card reader installed.
- Fixes a problem that prevents customers from logging in to a Windows 10S device with a PIN after upgrading to Windows 10, version 1803. Customers see the error “Your PIN is no longer available due to a change to the security settings on this device.”
- Addresses an issue that prevents the debugging of minimized UWP applications.
- Fixes a problem with Visual Studio UWP Deployments that displays the error “The operation could not be completed because an unexpected host ID was encountered”.
- Addresses an issue that prevents the Microsoft Help Viewer from rendering HTML content inside a Windows Help .chm file when the .chm file is stored on a network location.
- Fixes a problem in which the lock screen shows a solid color instead of an image specified by a policy before a customer signs in for the first time.
- Addresses an issue that causes Microsoft Edge to stop working when printing a PDF in a size 0 window.
- Fixes a problem that causes Microsoft Edge to stop working and to close associated webpage tabs. This occurs when certain PDF documents have timing issues when loading.
- Addresses an issue with a scheduled task that has an indefinite duration. The task starts immediately after it is created instead of starting at the time specified in the Triggers tab.
- Fixes a problem where GetSystemTime() may sometimes return an invalid value after using SetSystemTime() immediately before.
- Addresses an issue that occurs when using the “X509HintsNeeded” group policy to prepopulate the Username hint field. The Username hint field is unexpectedly empty when unlocking a machine after a successful logon. Username hint caching is expected to only work for lock and unlock scenarios and is not designed for logoff and logon scenarios.
- Fixes a problem that ignores the MM_DONT_ZERO_ALLOCATION flag. This issue leads to degraded performance, and, occasionally, error 0x139 appears.
- Addresses an issue that causes NTLTEST, DCLOCATOR, or joining an Active Directory and SAMBA domain to fail when using the NetBIOS domain name. The error is “An Active Directory Domain Controller (AD DC) for the domain %domain% could not be contacted”.
- Fixes a problem that occurs when using encrypted email. If the customer selects Cancel when first asked for a PIN, multiple PIN prompts appear before the prompt finally goes away.
- Addresses an issue in which all Guest Virtual Machines running Unicast dual NIC NLB fail to respond to NLB requests after the Virtual Machines restart.
Windows 10 build 16299.697 (16299.699)
The Fall Creators Update (version 1709) is getting update KB4457136, and the Windows support site referred it as “September 20, 2018—KB4457136 (OS Build 16299.697)”. If you’re already running version 1709 on your PC, this update will address these problems:
- Addresses an issue with the file previewer for .html, .mht, and email (MIME) attachments in Microsoft Outlook.
- Fixes a problem that causes Internet Explorer security and certificate dialogs to display prompts in the background instead of the foreground in certain circumstances.
- Addresses an issue with a task that has a repetition setting. The task fails to be scheduled and doesn’t start after disabling and re-enabling the task. The Next Run Time in Task Scheduler displays the correct time, but the task doesn’t start at that time.
- Fixes a problem that causes downloads to WebDAV locations to fail.
- Addresses an issue that causes downloads to fail because Mark of the Web (MOTW) was not supported at the download location.
- Fixes a problem with the diagnostic pipeline for devices enrolled in Windows Analytics when the CommercialID registry key, “HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\DataCollection” is present.
- Addresses an issue that prevents the App-V client’s scheduled task from synching if the Device Guard lockdown policy is enabled.
- Fixes a problem that causes login to fail when using a smart card to log in to a Remote Desktop Server. The error is “STATUS_LOGON_FAILURE”.
- Addresses an issue that causes a delay in unlocking or signing in to a computer that was moved to a different network. For example, a delay occurs when moving from a corporate LAN or WLAN to a home LAN where domain controllers aren’t reachable.
- Fixes a problem that occurs when using encrypted email. If the customer selects Cancel when first asked for a PIN, multiple PIN prompts appear before the prompt finally goes away.
- Addresses an issue that causes a Direct Access connection to fail when the client authentication certificate is stored in the TPM device.
- Fixes a problem on some laptops that prevents sign-out from completing. The issue occurs when a customer signs out and immediately closes the laptop. As a result, when the laptop is reopened, the device must be restarted.
- Addresses an issue that causes the system to log negative events for drivers that are valid and should be trusted. The issue occurs when running Windows Defender Application Control (Device Guard) in audit mode.
- Fixes a problem that may cause the Local Security Authority Subsystem Service (LSASS) process to stop working when attempting to process a malformed security identifier (SID).
- Addresses an issue that causes logging on to a Remote Desktop Session Host Server to occasionally stop responding.
- Fixes a problem that prevents Microsoft Narrator from accessing the contents of Windows Security dialogs displayed by a low integrity level process.
- Addresses an issue that, in some cases, prevents installing encrypted .appx packages.
- Fixes a problem that may cause the system to become unresponsive when applications call the EnableEUDC API.
- Addresses an issue that occurs when entering Japanese characters in a remote desktop session (mstsc.exe).
- Fixes a problem with evaluating the compatibility status of the Windows ecosystem to help ensure application and device compatibility for all updates to Windows.
- Addresses an issue that causes printing to an open or existing file to fail without displaying an error. This issue occurs when using Microsoft Print to PDF or XPS Document Writer.
- Fixes a problem that may cause Service Control Manager (SCM) and Netlogon to stop working when one or more services are configured to run with domain credentials (service accounts).
- Addresses an issue where a daily, repetitive task starts unexpectedly when the task is first created or starts when the task is updated.
- Fixes a problem in which GetSystemTime() may sometimes return an invalid value after using SetSystemTime() immediately before.
- Addresses an issue that occurs when using the “X509HintsNeeded” group policy to prepopulate the Username hint field. The Username hint field is unexpectedly empty when unlocking a machine after a successful logon. Username hint caching is expected to only work for lock and unlock scenarios and is not designed for logoff and logon scenarios.
- Fixes a problem that fails to maintain the tile layout after upgrading to Windows 10, version 1709 from Windows 10, versions 1703 and 1607.
- Addresses an issue in which all Guest Virtual Machines running Unicast dual NIC NLB fail to respond to NLB requests after the Virtual Machines restart.
- Fixes a problem with scheduled tasks that don’t start at the time that they are configured to start on a specific day of the week.
- Addresses an issue with a scheduled task that has an indefinite duration. The task starts immediately after it’s created instead of starting at the time specified in the Triggers tab.
- Fixes a problem that prevents the running of subsequent actions in a task. This issue occurs when you create multiple actions in a task using Task Scheduler and the task is scheduled under the Stop the existing instance rule.
Windows 10 build 15063.1292
The Creators Update (version 1703) is getting update KB4457141, and the Windows support site referred it as “September 20, 2018—KB4457141 (OS Build 15063.1358)”. If you’re already running version 1703 on your PC, this update will address these problems:
- Addresses an issue that causes Internet Explorer security and certificate dialogs to display prompts in the background instead of the foreground in certain circumstances.
- Fixes a problem that causes a Direct Access connection to fail when the client authentication certificate is stored in the TPM device.
- Addresses an issue that causes a third-party VPN provider’s user interface to stop working after dynamically unloading Cryptui.dll.
- Fixes a problem that causes the system to log negative events for drivers that are valid and should be trusted. The issue occurs when running Windows Defender Application Control (Device Guard) in audit mode.
- Addresses an issue that may cause the Local Security Authority Subsystem Service (LSASS) process to stop working when attempting to process a malformed security identifier (SID).
- Addresses an issue that may cause the system to become unresponsive when applications call the EnableEUDC API.
- Fixes a problem that occurs when using encrypted email. If the customer selects Cancel when first prompted for a PIN, multiple PIN prompts appear before the prompt finally goes away.
- Addresses an issue that causes logon to fail when using a smart card to log in to a Remote Desktop Server. The error is “STATUS_LOGON_FAILURE”.
- Fixes a problem that causes logging on to a Remote Desktop Session Host Server to occasionally stop responding.
- Addresses an issue that may cause Service Control Manager (SCM) and Netlogon to stop working when one or more services are configured to run with domain credentials (service accounts).
- Fixes a problem that causes the OS to stop responding during startup under certain circumstances.
- Addresses an issue in which the “EnterpriseAssignedAccess” policy on mobile devices cannot configure some Settings pages, including Language, Region, Keyboard, and Airplane Mode.
- Fixes a problem with the diagnostic pipeline for devices enrolled in Windows Analytics when the CommercialID registry key, “HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\DataCollection” is present.
- Addresses an issue that prevents the App-V client scheduled task from synching if the Device Guard lockdown policy is enabled.
- Fixes a problem that occurs when using the “X509HintsNeeded” group policy to prepopulate the Username hint field. The Username hint field is unexpectedly empty when unlocking a machine after a successful logon. Username hint caching is expected to only work for lock and unlock scenarios and is not designed for logoff and logon scenarios.
- Addresses an issue with evaluating the compatibility status of the Windows ecosystem to help ensure application and device compatibility for all updates to Windows.
- Fixes a problem in which all Guest Virtual Machines running Unicast dual NIC NLB fail to respond to NLB requests after the Virtual Machines restart.
Older versions of Windows 10
Although the Anniversary Update (version 1609) is no longer supported, organizations with Windows 10 Enterprise or Education are getting update KB4457127, which bumps the version to build 14393.2517, and it addresses a number of issues.
Download September 20 update for Windows 10
These updates are available immediately, they’ll download and install automatically, but you can always force the update from Settings > Update & Security > Windows Update and clicking the Check for updates button. You can find more details about the most recent updates in the Windows 10 update history tracker guide.
Update September 27, 2018: Microsoft is re-releasing KB4458469 and KB4457136 as build 17134.320 and build 16299.699 for Windows 10 version 1803 and Windows 10 version 1709 respectively “because of a missing solution.”