Windows 11 update check
Non-security update

Windows 11 build 22000.652 (KB5012643) out as preview

Microsoft begins testing the next cumulative update for Windows 11, and here's all you need to know.

  • Windows 11 build 22000.652 rolls out as update KB5012643.
  • The update brings improvements to service Secure Boot components and fixes.
  • This non-security update will be released during the next Patch Tuesday rollout.
  • The update was previously available in the Release Preview Channel as build 22000.651.

Microsoft is now making Windows 11 build 22000.652 (formerly build 22000.651 in the Release Preview Channel) available as the optional update KB5012643. The release is a non-security “C” update with a slew of fixes and new features that the company plans to release with the May 2022 servicing update.

According to the official changelogs (Windows Insider Preview link), the update KB5012643 includes changes to service the Secure Boot components, addresses memory leak problems, issues with BitLocker, some networking problems, and more.

Update KB5012643 fixes and changes for Windows 11

These are the fixes and new features available with the latest update preview of Windows 11:

  • Added improvements for servicing the Secure Boot component of Windows.
  • Fixed an issue that causes the AppX Deployment Service (AppXSvc) to stop working after you install certain MSIX apps.
  • Fixed a race condition that occurs early in the startup process that might cause a stop error.
  • Improved the Autopilot client to process updated Trusted Platform Module (TPM) capabilities that support self-deployment and pre-provisioning scenarios.
  • Changed the timeout for Azure Active Directory (Azure AD) registration from 60 minutes to 90 minutes for hybrid Azure AD-joined Autopilot scenarios. This also addresses a race condition that causes an exception at timeout.
  • Fixed an issue that delays OS startup by approximately 40 minutes.
  • Fixed a memory leak issue that affects Windows systems that are in use 24 hours each day of the week.
  • Fixed an issue that affects the Dynamic Host Configuration Protocol (DHCP) option 119 (Domain Search List) by preventing the use of the connection-specific DNS Suffix Search List.
  • Fixed an issue that affects the Title attribute in Microsoft Edge IE mode.
  • Fixed an issue in which mobile device management (MDM) policies were not allowed on Windows Enterprise editions that were upgraded to Enterprise using Azure AD-joined subscription entitlement.
  • Fixed an issue that might cause video subtitles to be partially cut off.
  • Fixed an issue that incorrectly aligns video subtitles.
  • Fixed an issue that causes Kerberos authentication to fail, and the error is “0xc0030009 (RPC_NT_NULL_REF_POINTER)”. This occurs when a client machine attempts to use the Remote Desktop Protocol (RDP) to connect to another machine while Remote Credential Guard is enabled.
  • Fixed an issue that causes Windows to go into BitLocker recovery after a servicing update.
  • Fixed an issue that prevents retrieval of the Endorsement Key (EK) certificate from the TPM device.
  • Fixed an issue that might fail to copy the security portion of a Group Policy to a machine.
  • Fixed an issue that prevents the instantiation of the Microsoft RDP Client Control, version 11 and higher, inside a Microsoft Foundation Class (MFC) dialog.
  • We displayed the temperature on top of the weather icon on the taskbar.
  • Fixed an issue that prevents you from using the minimize, maximize, and close buttons on a maximized app window. This issue occurs because the Notification Center keeps the input focus.
  • Fixed an issue that might occur when you use Netdom.exe or the Active Directory Domains and Trusts snap-in to list or modify name suffixes routing. These procedures might fail. The error message is, “Insufficient system resources exist to complete the requested service.” This issue occurs after installing the January 2022 security update on the primary domain controller emulator (PDCe).
  • Fixed an issue that causes the primary domain controller (PDC) of the root domain to generate warning and error events in the System log. This issue occurs when the PDC incorrectly tries to scan outgoing-only trusts.
  • Fixed an issue that occurs when you map a network drive to a Server Message Block version 1 (SMBv1) share. After restarting the OS, you cannot access that network drive.
  • Fixed an issue that affects an SMB multichannel connection and might generate a 13A or C2 error.
  • Fixed an issue that damages a pool when a Client-Side Caching (CSC) cleanup method fails to delete a resource that was created.
  • Fixed an issue that might cause the server to lock up because the nonpaged pool grows and uses up all memory. After a restart, the same issue occurs again when you try to repair the damage.
  • Reduced the overhead of resource contention in high input/output operations per second (IOPS) scenarios that have many threads contending on a single file.

Install Windows 11 build 22000.652

If you want to download and install the Windows 11 build 22000.652, you will need to open the “Windows Update” settings and click the Check for Updates button.

Update April 25, 2022: The update KB5011563 was originally available in the Release Preview Channel as build 22000.651, but starting on April 25, the same update is available as an optional install as build 22000.651 for Windows 11 in the stable channel.