KB4559004, KB4559003 Windows 10 1909, 1903, 1809 Non security update

KB4559004, KB4559003 Windows 10 1909 18363.997, 1903 18362.997, 1809 17763.1369 Non security update changes and improvements.

KB4559004, KB4559003 Windows 10 1909, 1903, 1809 Non security update

Microsoft pushed non security cumulative patches for Windows 1909/1903, and 1809 with a collection of improvements. The updates are KB4559004 and KB4559003 that increase the versions to 18363.997, 18362.997,  and 17763.1369 respectively. Note that these releases will disable the RemoteFX vGPU feature due to a security vulnerability so when you will open virtual machines after receiving the patches the feature will be not available. To know more detail of the vulnerability, read the information in CVE-2020-1036. If you want re enable RemoteFX vGPU then follow the steps in KB4570006.

You can download Windows updates KB4559003 and KB4559004 and install them automatically. Links in the bottom part of this article will take you to the Microsoft update catalog for the manual installation of the patches. See the compilation here – Windows 10 Cumulative Updates List.

KB4559004, KB4559003 for Windows 10 1909, 1903, 1809

KB4559004 mainly updates the problems with Magnifier in Microsoft Excel in certain scenarios, File Explorer,  Windows Hello face camera, WWAN LTE modem.  family safety features, and more. Additionally, the patch addresses Microsoft Office, Microsoft Edge, UWP, SharePoint, Start menu apps and tiles, .msi apps, Outlook, File Explorer, WinRM, IoT devices. The full changelog is as follow –

KB4559004 Windows 10 1903

  • This build includes all the improvements from Windows 10, version 1903.
  • No additional issues were documented for this release.

KB4559004 Windows 10 1909

  • Addresses an issue that prevents you from using sharing functionality in Microsoft Office. This occurs when Conditional Access is enabled.
  • Addresses an issue in Microsoft Edge IE mode that occurs when you open multiple documents from a SharePoint site.
  • Addresses an issue in Microsoft Edge IE mode that occurs when you browse using anchor links.
  • Addresses an issue that causes provisioning for the Universal Windows Platform (UWP) to fail in certain scenarios when using Deployment Image Servicing and Management (DISM).
  • Addresses an issue that prevents you from opening documents in SharePoint in certain scenarios.
  • Addresses an issue that might cause the Magnifier to stop working in Microsoft Excel in certain scenarios. As a result, Microsoft Excel might also stop working.
  • Addresses an issue with Start menu apps and tiles in virtual desktop infrastructure (VDI) environments. The occurs after you sign in a second time and are using a Remote Desktop User profile Disk in a non-persistent virtual desktop pool.
  • Addresses an issue that prevents you from installing some .msi apps. This occurs when a device is managed by a Group Policy that redirects the AppData folder to a network folder.
  • Addresses an issue that might cause apps that use the custom text wrapping function to stop working in certain scenarios.
  • Addresses an issue that might increase the number of handles when using Microsoft Outlook.
  • Addresses an issue that causes new child windows to flicker and appear as white squares on server devices that are configured for stark visual contrast.
  • Addresses an issue that incorrectly calculates long path addresses that have Unicode characters outside of the current system.
  • Updates File Explorer to allow you to delete previous terms from the search box.
  • Addresses an issue that causes File Explorer to stop working when you browse directories of raw images and other file types.
  • Addresses an issue that prevents the migration of the Windows Remote Management (WinRM) service startup type.
  • Addresses an issue that prevents internet of things (IoT) devices from activating after installing an earlier cumulative update.
  • Addresses an issue that prevents family safety features, such as time limits and activity reporting, from working on ARM64 devices.
  • Addresses an issue that continues to display the previous username hint in the smart card sign in box after a different user has used the machine with domain credentials.
  • Addresses an issue that causes an upgrade from Windows 10, version 1903 or Windows 10, version 1909 to fail. This occurs when a system is joined to Azure Active Directory and BitLocker is configured for a PIN protector.
  • Addresses an issue that causes exe to stop working on a terminal server when you enable Remote Credential Guard. The exception code is 0xc0000374.
  • Addresses an issue that prevents the system from recognizing the Windows Hello face camera.
  • Addresses an issue that prevents Microsoft Defender Advanced Threat Protection (ATP) from applying file exclusions in some cases, which leads to application compatibility issues.
  • Addresses an issue that causes automatic investigations to fail in Microsoft Defender ATP.
  • Improves Microsoft Defender ATP’s ability to identify malicious code injection activities.
  • Addresses an issue that displays strange characters before the day, month, and year fields in the output from console commands.
  • Updates exe to remove the “Network access: Restrict clients allowed to make remote calls to SAM” policy from member servers when they are promoted to domain controllers. This allows clients to make Security Accounts Manager (SAM) connections to these domain controllers.
  • Addresses an issue that might cause Windows 10 devices that enable Credential Guard to fail authentication requests when they use the machine certificate.
  • Addresses an issue that incorrectly reports Lightweight Directory Access Protocol (LDAP) sessions as unsecure sessions in Event ID 2889. This occurs when the LDAP session is authenticated and sealed with a Simple Authentication and Security Layer (SASL) method.
  • Addresses an issue that might cause stop error 7E in syson servers running the Network File System (NFS) service.
  • Addresses an issue that causes built-in modern applications to stop working on devices configured to use mandatory or roaming user profiles. The error is 802b000a (E_XAMLPARSEFAILED).
  • Addresses an issue that logs a Distributed Component Object Model (DCOM) error in the System event log when the Distributed File System (DFS) Replication service is started.
  • Addresses an issue that might prevent a Windows 10 device from reaching the internet when using a wireless wide area network (WWAN) LTE modem. However, the Network Connectivity Status Indicator (NCSI) in the notification area might still indicate that you are connected to the internet.
  • Addresses an issue that might cause the Microsoft Remote Assistance process (exe) to stop working when a user is receiving assistance during a computer session. The error is 0xc0000005 or 0xc0000409.
  • Addresses an issue that causes Server Message Block (SMB) to incorrectly use the original, cached non-Continuous Available handle to a file, which becomes invalid after a network error or storage failover. As a result, applications to fail with errors such as STATUS_UNEXPECTED_NETWORK_ERROR.

 

Patch KB4559003 for v1809 updates an issue that might cause the Magnifier to stop working in Microsoft Excel in certain scenarios. As a consequence, the application might also stop working. In addition, there are 32 issues the update has addresses such as the problems with Microsoft Edge, SharePoint, dxgkrnl.sys, Outlook, Teams,  Event Viewer, lsass.exe Microsoft Defender ATP, Wired AutoConfig service, and others.

The complete changelog is as follow –

KB4559003 Windows 10 1809

  • Addresses an issue in Microsoft Edge IE mode that occurs when you open multiple documents from a SharePoint site.
  • Addresses an issue in Microsoft Edge IE mode that occurs when you browse using anchor links.
  • Addresses an issue that might cause the Magnifier to stop working in Microsoft Excel in certain scenarios. As a result, Microsoft Excel might also stop working.
  • Addresses an issue that might cause apps that use the custom text wrapping function to stop working in certain scenarios.
  • Addresses an issue that prevents you from opening documents in SharePoint in certain scenarios.
  • Addresses a reliability issue in systhat might cause stop error 0x50 PAGE_FAULT_IN_NONPAGED_AREA.
  • Addresses an issue that might increase the number of handles when using Microsoft Outlook.
  • Addresses an issue that causes an application to flicker or stop responding when sharing the application using Microsoft Teams.
  • Addresses an issue that incorrectly calculates long path addresses that have Unicode characters outside of the current system.
  • Addresses an issue that prevents Windows 8.1 apps from projecting to a secondary display when those apps use the StartProjectingAsync API.
  • Addresses an issue that prevents Event Viewer from saving a full set of filtered events when you filter by the date.
  • Addresses an issue that continues to display the previous username hint in the smart card sign in box after a different user has used the machine with domain credentials.
  • Addresses an issue that causes exe to stop working on a terminal server when you enable Remote Credential Guard. The exception code is 0xc0000374.
  • Addresses an issue that prevents Microsoft Defender Advanced Threat Protection (ATP) from applying file exclusions in some cases, which leads to application compatibility issues.
  • Addresses an issue that causes automatic investigations to fail in Microsoft Defender ATP.
  • Improves Microsoft Defender ATP’s ability to identify malicious code injection activities.
  • Addresses an issue that causes the network controller (NC) host agent to incorrectly report that a virtual machine (VM) has moved.
  • Addresses an issue that might cause a deadlock in the Wired AutoConfig (dot3svc) service.
  • Addresses an issue that might prevent applications from running as expected on Active Directory Federation Services 2019 (AD FS 2019) clients. This occurs when applications use an iFrame during non-interactive authentication requests and receive X-Frame-Options set to DENY.
  • Addresses an issue that incorrectly reports Lightweight Directory Access Protocol (LDAP) sessions as unsecure sessions in Event ID 2889. This occurs when the LDAP session is authenticated and sealed with a Simple Authentication and Security Layer (SASL) method.
  • Updates the message users receive that tells them to check their phone for notifications from the Microsoft Authenticator application. This message only appears when authentication is done using the AD FS Azure Multi-Factor Authentication (MFA) adapter.
  • Updates exe to remove the “Network access: Restrict clients allowed to make remote calls to SAM” policy on member servers when they are promoted to domain controllers. This allows clients to make Security Accounts Manager (SAM) connections to these domain controllers.
  • Addresses an issue that might cause Windows 10 devices that enable Credential Guard to fail authentication requests when they use the machine certificate.
  • Addresses an issue that might cause stop error 7E in syson servers running the Network File System (NFS) service.
  • Addresses an issue that discards the Remote Desktop Gateway Secure Sockets Layer (SSL) Bridging settings and resets them to the default.
  • Addresses an issue that prevents you from updating the port number for HTTPS or the User Datagram Protocol (UDP) settings in the Remote Desktop Gateway Manager.
  • Addresses an issue that occurs when a standalone Remote Desktop Session Host (RDSH) server allows multiple sessions per user. After disconnecting from a session, if you attempt to reconnect to the original session, the server creates a new session instead.
  • Addresses an issue that causes the Windows Management Instrumentation (WMI) Provider Host(exe) to leak registry key handles when querying Win32_RDCentralPublishedDeploymentSettings.
  • Addresses an issue that logs a Distributed Component Object Model (DCOM) error in the System event log when the Distributed File System (DFS) Replication service is started.
  • Addresses an issue that might cause the Microsoft Remote Assistance process (exe) to stop working when a user is receiving assistance during a computer session. The error is 0xc0000005 or 0xc0000409.
  • Addresses an issue that causes Server Message Block (SMB) to incorrectly use the original, cached non-Continuous Available handle to a file, which becomes invalid after a network error or storage failover. As a result, applications to fail with errors such as STATUS_UNEXPECTED_NETWORK_ERROR.
  • Addresses an issue in SMB that causes Windows Server 2019 to stop working when using 100 GB network interface cards (NIC). This only applies to Storage Spaces Direct (S2D) and SMB Daemon (SMBD) scenarios.

Known issues

There are no known issues in KB4559004, so far as KB4559003 has one.

How to download KB4559004 and KB4559003 and install

As usual, you must install the latest SSU KB4558997 before installing KB4559003 for 1809 and SSU KB4565554 before receiving KB4559004 for 1909 and 1903. Once got follow the 2 ways –

1] Via Windows update

  1. Open Settings (Win+I) and click the category Update & Security from the homepage.
  2. Choose the link reading Check for updates from the right side of the coming page.
  3. Wait for a little until scanning and downloading of the patch is completed and click on Install when asked.

2] Using Microsoft update catalog

  1. While following this manual process; all you need is to visit the link given after a few lines here.
  2. Find the file compatible with your system.
  3. Click on Download from the right column and click the link that appears in a popup page.
  4. Double click on the File having MSU extension from the download location to perform the installation.

Microsoft update catalog link for KB4559004 for Windows 10 1909 and 1903

Microsoft update catalog link for KB4559003 for Windows 10 1809

Release note for KB4559004

Release note for KB4559003

   
 
About Sunita
Avatar for Sunita
Love to play with Windows 10. Suggestion - Going for Registry change or system files edit then remember to take a backup or create a restore point before Starting.

Leave a Reply

Your email address will not be published. Required fields are marked *