Microsoft has now released Windows 10 September Update KB5017308 (Builds 19042.2006, 19043.2006, and 19044.2006) for Windows 11 versions 21H2, 21H1, 20H2. IT administrators.
The new security feature improves Microsoft Defender for Endpoint’s ability to identify and intercept ransomware and advanced attacks. The new IT admin feature provides the ability to add languages and language-related features remotely.
There are many improvements and fixes for Windows 10 issues, including fixes for shutdown/restart, subscription activation failure, and many other issues. Here is the complete changelog of update KB5017308 in terms of new features, fixes and improvements.
This non-security update includes quality improvements. The main changes include:
- New! Gives IT admins the ability to add languages and language-related features remotely. Additionally, they can now manage language scenarios across multiple terminal managers.
- New! Improves Microsoft Defender for Endpoint’s ability to identify and intercept ransomware and advanced attacks.
- Fixes an issue that causes ServerAssignedConfigurations be null in a few full configuration scenarios.
- Addresses a known issue that causes Microsoft Edge to become unresponsive when using IE mode. This issue also prevents you from interacting with a dialog box.
- Addresses an issue that affects transparency in layered windows when in Locally Embedded High Definition Remote Applications (RAIL) mode.
- Addresses an issue that may generate error 0x1E when you shut down or restart a device.
- Addresses an issue that causes a subscription activation to fail under certain conditions.
- Addressed an issue that could cause some game installations to fail due to a licensing issue.
- Addresses an issue that prevents Microsoft Office App-V virtualized applications from opening or not working.
- Addresses an issue that may cause Windows Hello for Business certificate deployment to fail under certain circumstances after a device reset.
- Addresses an issue that degrades BitLocker performance.
- Addresses an issue that causes the Resultant Set of Strategy tool (Rsop.msc) to stop working when processing 1000 or more “File System” security settings.
- Addresses an issue that continues to trust a revoked Attestation Identity Key (AIK) certificate and fails to generate a new certificate.
- Fixes an issue that causes the Take a Test app to remove all policies related to the lock app when you close the app.
- Addresses an issue that affects the colors of the Jump List icon in the Search application.
- Addresses an issue that affects Focus Assist functionality for applications that run in full screen.
- Addresses an issue that prevents devices from receiving an offer from Windows Update for the same extension driver when that extension driver is already installed without the base driver.
- Addresses a race condition that prevents the Local Security Authority Subsystem (LSASS) service from functioning on Active Directory domain controllers. This issue occurs when LSASS concurrently processes Lightweight Directory Access Protocol (LDAP) requests over Transport Layer Security (TLS) that fail to decrypt. The exception code is 0xc0000409 (STATUS_STACK_BUFFER_OVERRUN).
- Addresses an issue that affects finding a non-existent security ID (SID) from the local domain using a read-only domain controller (RODC). Search unexpectedly returns error STATUS_TRUSTED_DOMAIN_FAILURE instead of STATUS_NONE_MAPPED or STATUS_SOME_MAPPED.
- Fixes an issue that could cause cldflt.sys to reference invalid memory under race conditions.
- Addresses an issue that affects input and output in the Storport driver and may cause your system to become unresponsive.
If you have installed previous updates, only the new updates contained in this package will be downloaded and installed on your device.
You can manually download and install Windows 10 KB5017308 update by clicking here. If you need help understanding how to install these updates manually on your PC, you can refer to our noob-friendly step-by-step tutorial.