Microsoft may have already sent a cumulative update to its latest Windows 10 April 2018 Update earlier this month but that’s not stopping it from sending more patches to the OS. In today’s Patch Tuesday updates, Windows maker has sent cumulative updates to nearly all the Windows 10 versions, including the April 2018 Update, the Fall Creators Update, and the original Creators Update. Windows 10 version 1511 aka the November Update hasn’t yet received this month’s security patches.
Windows 10 isn’t the only Microsoft product getting patches as the company has in total released 50 security patches covering Internet Explorer (IE), Edge, ChakraCore, Hyper-V Server, Windows, and Microsoft Office and Office Services. ZDI security bulletin notes that of these 50 CVEs, 11 are critical and 39 are rated important in severity. More technical details of these security patches are available over here.
Related Checklist: Windows 10 April 2018 Update Is Here But Can Your PC Run It?
Windows 10 April 2018 Update aka Version 1803 – KB4284835 (Build 17134.112)
This is the fourth cumulative build being rolled out to the April 2018 Update that was released at the end of April and is enjoying some record breaking growth rate. Here is the complete changelog of today’s 17134.112 update for Windows 10 April 2018 Update:
- Provides protections from an additional subclass of speculative execution side channel vulnerability known as Speculative Store Bypass (CVE-2018-3639). These protections aren’t enabled by default. For Windows client (IT pro) guidance, follow the instructions in KB4073119. For Windows Server guidance, follow the instructions in KB4072698. Use this guidance document to enable mitigations for Speculative Store Bypass (CVE-2018-3639) in addition to the mitigations that have already been released for Spectre Variant 2 (CVE-2017-5715) and Meltdown (CVE-2017-5754).
- Addresses an issue in which the 2017 and 2018 versions of Intuit QuickBooks can’t run in multi-user mode on Windows 10 1803 devices. Users will now be offered Windows 10, version 1803.
- Adds support for the SameSite cookie web standard to Microsoft Edge and Internet Explorer.
- Addresses an issue with Internet Explorer that prevents it from using an updated version of location services.
- Addresses an issue that causes certain games to fail to show dialogs when connected to monitors that support interlaced display formats.
- Addresses an issue with the brightness controls on some laptops after updating to the Windows 10 April 2018 Update.
- Addresses a reliability issue in which the GameBar may fail to launch.
- Addresses an issue where firmware updates cause devices to go into BitLocker recovery mode when BitLocker is enabled, but Secure Boot is disabled or not present. This update prevents firmware installation on devices in this state. Administrators can install firmware updates by:
- Temporarily suspending BitLocker.
- Immediately installing firmware updates before the next OS startup.
- Immediately restarting the device so that BitLocker doesn’t remain in the suspended state.
- Addresses an issue that caused the system to start up to a black screen. This issue occurs because previous updates to the Spring Creators Update were incompatible with specific versions of PC tune-up utilities after installation.
- Security updates to Internet Explorer, Microsoft Edge, Microsoft scripting engine, Windows Desktop Bridge, Windows apps, Windows shell, Windows kernel, Windows Server, Windows storage and filesystems, Windows wireless networking, remote code execution, and Windows virtualization and kernel.
Windows 10 Fall Creators Update aka Version 1709 – KB4284819 (OS Build 16299.492)
- Provides protections from an additional subclass of speculative execution side channel vulnerability known as Speculative Store Bypass (CVE-2018-3639). These protections aren’t enabled by default. For Windows client (IT pro) guidance, follow the instructions in KB4073119. For Windows Server guidance, follow the instructions in KB4072698. Use this guidance document to enable mitigations for Speculative Store Bypass (CVE-2018-3639) in addition to the mitigations that have already been released for Spectre Variant 2 (CVE-2017-5715) and Meltdown (CVE-2017-5754).
- Includes additional performance improvements.
- Addresses an issue in Microsoft Edge that causes incorrect responses to XML requests.
- Adds support for the SameSite cookie web standard to Microsoft Edge and Internet Explorer.
- Addresses an issue with Internet Explorer that prevents it from using an updated version of location services.
- Addresses an issue where firmware updates cause devices to go into BitLocker recovery mode when BitLocker is enabled, but Secure Boot is disabled or not present. This update prevents firmware installation on devices in this state. Administrators can install firmware updates by:
- Temporarily suspending BitLocker.
- Immediately installing firmware updates before the next OS startup.
- Immediately restarting the device so that BitLocker doesn’t remain in the suspended state.
- Security updates to Internet Explorer, Microsoft Edge, Microsoft scripting engine, Windows Desktop Bridge, Windows apps, Windows shell, Windows storage and filesystems, Windows app platform and frameworks, Windows virtualization and kernel, Windows wireless networking, and Windows Server.
Patches are also available for version 1703, which carries a similar changelog as the above two. More details are available here. Windows 10 Anniversary Update version 1607 and the Original Windows 10 versions have also received updates, but they are only available for Windows 10 Enterprise and Windows 10 Education editions, or those on the Long-Term Servicing Channels (LTSC).
If you have enabled automatic updates, new patches will automatically download and install whenever they’re available. You can manually start the process from Settings Update Security Check for updates.