Windows 10 KB5011487
Third Patch Tuesday

Windows 10 update KB5011487 outs for versions 21H2, 21H1, 20H2

Windows 10 receives the third quality update of 2022, and here's all you need to know.

  • Windows 10 gets update KB5011487 for versions 21H2, 21H1, 20H2.
  • Update KB5011493 fixes the file deletion problem using the recovery tools.
  • It also ships with all the non-security fixes and improvements available with the update KB5010415.
  • Windows 10 versions 1909, 1809, 1607, and 1507 are also getting updates.

In the third Patch Tuesday update of 2022, Microsoft is releasing the update KB5011487 for devices running Windows 10 21H2, 21H1, and 20H2 with several fixes and improvements.

The KB5011487 update bumps the version number to build 19042.1586 (20H2), 19043.1586 (21H1), and 19044.1586 (21H2), and according to the changelogs, it fixes a problem that happens when attempting to reset a computer and the apps have folders that contain reparse data, such as OneDrive or OneDrive for Business. When you select the “Remove everything” option, files that have been downloaded or synced locally from OneDrive might not be removed.

Also, this update includes the non-security fixes available previously available with the update KB5010415 which was released on February 15, 2022.

In addition, the software giant is also making available updates for older versions of Windows 10, including for versions 1909, 1809, 1607, and 1507.

Update KB5011487 fixes and changes

Here’s the complete list of fixes and improvements rolling out with the update KB5011487:

  • Provides the ability to share cookies between Microsoft Edge Internet Explorer mode and Microsoft Edge.
  • Adds support for hot adding and the removal of non-volatile memory (NVMe) namespaces.
  • Addresses an issue that occurs when Windows Server 2016 runs as a terminal server using certain cloud computing virtual desktop infrastructure (VDI). As result, the servers randomly stop responding after running for a period of time. This also addresses a regression that proactively checks to ensure that the CSharedLock in rpcss.exe is set correctly to avoid a deadlock.
  • Addresses an issue that affects the Windows search service and occurs when you query using the proximity operator.
  • Addresses a memory leak in the wmipicmp.dll module that causes a lot of false alarms in the System Center Operations Manager (SCOM) data center monitoring system.
  • Addresses an issue that causes the Remote Desktop Service (RDS) server to become unstable when the number of signed-in users exceeds 100. This prevents you from accessing published applications using RDS on Windows Server 2019.
  • Addresses an issue that returns an error message when you browse for a domain or organizational unit (OU). This issue occurs because of improper zeroing out of memory.
  • Addresses an issue that causes the Group Policy Management Console to stop working after you close it. The system logs Application Error Event ID 1000 and the error, 0xc0000005 (STATUS_ACCESS_VIOLATION); the failing module is GPOAdmin.dll.
  • Addresses an issue that fails to show the Startup impact values in Task Manager.
  • Addresses an issue that affects OpenGL and GPU reparenting in indirect display scenarios.
  • Addresses an issue that prevents ShellWindows() from returning the InternetExplorer object when iexplore.exe runs in the Microsoft Edge Internet Explorer mode context.
  • Addresses an issue that affects dialog boxes in Microsoft Edge Internet Explorer mode.
  • Addresses an issue that causes Microsoft Edge Internet Explorer mode to stop working when you press the F1 key.
  • Addresses an issue that causes the improper cleanup of Dynamic Data Exchange (DDE) objects. This prevents session teardown and causes a session to stop responding.
  • Addresses an issue that might cause a device to stop working when you use more than 50 window trees.
  • Addresses an issue that prevents printing from operating properly for some low integrity process apps.
  • Addresses an issue that causes certificate enrollment to fail with the error message,” 0x800700a0 (ERROR _BAD_ARGUMENTS)”.
  • Addresses an issue that affects applications that are written to only integrate with Azure Active Directory (AAD). These applications will not work on machines that are joined to Active Directory Federation Services (ADFS).
  • Introduces support for Windows Hello for Business Cloud Trust. This is a new deployment model for hybrid deployments of Windows Hello for Business. It uses the same technology and deployment steps that support on-premises single sign-on (SSO) for Fast IDentity Online (FIDO) security keys. Cloud Trust removes the public-key infrastructure (PKI) requirements for deploying Windows and simplifies the Windows Hello for Business deployment experience.
  • Addresses an issue that might cause BitLocker to damage virtual machine (VM) system files if you expand the BitLocker partition while the VM is offline.
  • Addresses a remaining issue that might cause the Get-TPM PowerShell command to fail when it attempts to report Trusted Platform Module (TPM) information. The command fails with the error, “0x80090011 Microsoft.Tpm.Commands.TpmWmiException,Microsoft.Tpm.Commands.GetTpmCommand”.
  • Addresses an issue that prevents you from unloading and reloading drivers when the drivers are protected Hypervisor-protected Code Integrity (HVCI).
  • Addresses a reliability issue that affects the use of the Remote Desktop app to mount a client’s local drive to a terminal server session.
  • Addresses an issue that causes a mismatch between a Remote Desktop session’s keyboard and the Remote Desktop Protocol (RDP) client when signing in.
  • Addresses an issue that sometimes causes the Chinese Simplified Input Method Editor (IME) to become completely unusable.
  • Addresses an issue that causes screen readers to describe a back button as “button” rather than “back button”.
  • Addresses an issue that occurs when you try to write a service principal name (SPN) alias (such as www/FOO) and HOST/FOO already exists on another object. If the RIGHT_DS_WRITE_PROPERTY is on the SPN attribute of the colliding object, you receive an “Access Denied” error.
  • Addresses an issue that prevents administrators and content owners from opening expired Active Directory Rights Management Services (AD RMS) content.
  • Addresses an issue that disconnects Offline Files on the network drive after you restart the OS and sign in. This issue occurs if the Distributed File System (DFS) path is mapped to the network drive.
  • Addresses an issue that causes VM Live Migration to fail because vhdmp.sys receives different file control block (FCB) object pointers for the same file.
  • Addresses an issue that displays the authentication dialog twice when you mount a network drive.
  • Addresses a memory leak in the Redirected Drive Buffering Subsystem (RDBSS) and the mrxsmb.sys drivers.
  • Addresses an issue that causes a deadlock in the WebDav redirector. This issue occurs when you attempt to read a file from the local TfsStore, which causes the system to stop responding.
  • Addresses an issue that prevents Work Folder sync from recovering from the error code 0x80c80003, “Server is currently busy” on the client. This issue occurs even when the HTTP request queue on the server does not indicate a load.
  • Addresses an issue that calls a context function in a page fault path, which causes a 7F error.

The update will download and install automatically, but you can always force it from Settings > Update & Security > Windows Updates and click the Check for Updates button. Alternatively, you can download the update KB5011487 directly from the Microsoft Update Catalog website.

The version 2004 release has reached the end of support on December 14, 2021, as a result, Microsoft is no longer offering updates for that release. If you are still on version 2004, it’s recommended to upgrade to Windows 10 21H2.

Update for older versions of Windows 10

The company is also making available updates for older versions of Windows 10. For example, version 1909 received the update KB5011485 that increases the version number to build 18363.2158 and fixes several issues.

Windows 11 version 1809 gets the update KB5011503 that brings the version number to build 17763.2686 and delivers a few fixes.

In addition, version 1607 received the update KB5011495 (build 14393.5006) addresses several problems with this release. Finally, Windows 10 version 1507 received the update KB5011491 that bumps the version number to build 10240.19235 and delivers some miscellaneous security improvements.

Uninstall update KB5011487

If the system update is causing issues, you can always uninstall it using these steps:

  1. Open Start.

  2. Search for Command Prompt, right-click the top result, and select the Run as administrator option.

  3. Type the following command to view the update history and press Enter:

    wmic qfe list brief /format:table
  4. Check the Windows Update history of your device, and identify the update by its HotFixID and InstalledOn information.

  5. Type the following command to uninstall the update from your computer and press Enter:

    wusa /uninstall /kb:5011487
    Quick note: In the command, replace “5011487” for the KB number corresponding to the update you are trying to uninstall.
  6. Click the Yes button.

  7. Continue with the on-screen directions (if applicable).

Once you complete the steps, the recently installed update will be removed from your installation, fixing any issues resulting from the release.

If your computer doesn’t boot after installing KB5010342, you can remove the update from the Advanced startup environment using these steps.