Advertisement

As Microsoft regularly releases security updates for company products on the second Tuesday of each month. And today As a part of August 2018 patch Tuesday update Microsoft released a new set of updates for all supported versions of Windows as following: Windows 10 cumulative update KB4343909 for April 2018 Update version 1803,  KB4343897 for Fall Creators Update version 1709, KB4343885 for Creators Update version 1703, KB4343887 for Anniversary Update version 1607, and KB4343892 for original Windows 10 RTM version. Note: Windows 10 version 1511 isn’t getting any new updates.

These updates include a number of fixes for Internet Explorer and Microsoft Edge browsers, Windows apps, the Windows kernel, and Windows graphics. As for the non-security refinements in these updates, each of them comes with bugfixes aimed at the Windows 10 version they are supposed to be installed on. As per company these updates didn’t include new features but brings security improvements and addresses several problems with Microsoft Edge, Internet Explorer, HoloLens, and Device Guard. Such an issue that causes high CPU usage that results in performance degradation on some systems with Family 15h and 16h AMD processors and more.

Download Windows 10 (KB4343909, KB4343897, KB4343885) update

These cumulative updates (KB4343909, KB4343897, KB4343885) include both security and non-security improvements, and it’s essential for users to install them as soon as possible. Compatible devices connected to Microsoft server will automatically get downloaded these updates. Or you can manually check and install Windows 10 cumulative updates from settings -> update & security -> windows update and check for updates. Also, you can download the standalone package from Microsoft update catalog website.




Download Microsoft Patch Tuesday August 2018 updates
Download Microsoft Patch Tuesday August 2018 updates

Windows 10 version 1803 update KB4343909 (OS Build 17134.228)

For those devices running latest windows 10 April 2018 update Microsoft released a new cumulative update KB4343909 and installing this update bump OS build number to 17134.228. The update titled “2018-07 Cumulative Update for Windows 10 Version 1803 (KB4343909)” comes with both security and non-security improvements. Most of the changes included in today’s patch for Windows 10 are aimed at enterprises and IT admins.

Note: This release also contains updates for Microsoft HoloLens (OS Build 17134.228) released August 14, 2018.

As per Microsoft KB4343909 mitigates the L1 Terminal Fault (L1TF) vulnerability found in some Intel processors, and it addresses high CPU usage in some AMD processors.

Also, the update improves battery life after upgrading to Windows 10 version 1803 and fixes several problems with Microsoft Edge, Internet Explorer, HoloLens, and Device Guard.

Addresses an issue that prevents apps from receiving mesh updates after resuming. This issue occurs for apps that use Spatial Mapping mesh data and participate in the Sleep or Resume cycle.

Ensures that Internet Explorer and Microsoft Edge support the preload=”none” tag.
Addresses an issue that prevents some applications running on HoloLens, such as Remote Assistance, from authenticating after upgrading from Windows 10, version 1607, to Windows 10, version 1803.

Addresses an issue that significantly reduced battery life after upgrading to Windows 10, version 1803.

Addresses an issue that causes Device Guard to block some ieframe.dll class IDs after installing the May 2018 Cumulative Update.

Windows 10 version 1709 update KB4343897 (OS Build 16299.611)

If you’re still running the Fall Creators Update version 1709, there’s a similarly short list of fixes rolling out as KB4343897 (OS Build 16299.611).

As per Microsoft’s the KB4343897 update addresses the newly discovered execution side-channel vulnerability called as L1 Terminal Fault (L1TF) that affects Intel processors.

Addressed an issue that causes high CPU usage and it could result in performance degradation on some system.

Internet Explorer and Microsoft Edge are also getting support for the preload=”none” tag.

Fixes an issue where content that has been copied from Internet Explorer to other applications is given extra space.

The company also adding support for the draft version of the Token Binding protocol v0.16.

Fixes an issue that causes Device Guard to block some ieframe.dll class IDs after installing the May 2018 cumulative update.

This update does come with known issues but it would not affect the overall experience of the normal consumers.

  1. Some non-English platforms may display the following string in English instead of the localized language: ”Reading scheduled jobs from file is not supported in this language mode.” This error appears when you try to read the scheduled jobs you’ve created and Device Guard is enabled”
  2. When Device Guard is enabled, some non-English platforms may display the following strings in English instead of the localized language:



    • “Cannot use ‘&’ or ‘.’ operators to invoke a module scope command across language boundaries.”
    • “‘Script’ resource from ‘PSDesiredStateConfiguration’ module is not supported when Device Guard is enabled. Please use ‘Script’ resource published by PSDscResources module from PowerShell Gallery.”

Windows 10 version 1703 update KB4343885 (OS Build 15063.1266)

Microsoft offers KB4343885 update for devices running Windows 10 creators update. Installing this update bumps the OS to Windows 10 build 15063.1266. As per Microsoft, This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:

  • Note  This release also contains updates for Windows 10 Mobile (OS Build 15063.1266) released August 14, 2018.
    • Addresses an issue that causes Internet Explorer to stop working for certain websites.
    • Updates support for the draft version of the Token Binding protocol v0.16.
    • Addresses an issue that causes Device Guard to block some ieframe.dll class IDs after installing the May 2018 Cumulative Update.
    • Ensures that Internet Explorer and Microsoft Edge support the preload=”none” tag.
    • Addresses a vulnerability related to the Export-Module member () function when used with a wildcard (*) and a dot-sourcing script.
    • Addresses an issue that was introduced in the July 2018 .NET Framework update. Applications that rely on COM components were failing to load or run correctly because of “access denied,” “class not registered,” or “internal failure occurred for unknown reasons” errors.

Windows 10 version 1607 update KB4343887 (OS Build 14393.2430)

For users running Windows 10 Anniversary Update version 1607, Microsoft offer KB4343887 which bumps the OS to windows 10 build 14393.2430.

Note: The Anniversary Update is no longer supported, organizations with Windows 10 Enterprise or Education are getting update KB4343887.

  • This patch addresses the newly discovered execution side-channel vulnerability called as L1 Terminal Fault (L1TF) that affects Intel processors.
  • Addresses an issue that causes high CPU usage that results in performance degradation on some systems with Family 15h and 16h AMD processors. This issue occurs after installing the June 2018 or July 2018 Windows updates from Microsoft and the AMD microcode updates that address Spectre Variant 2 (CVE-2017-5715 – Branch Target Injection).
  • Addresses an issue that causes Internet Explorer to stop working for certain websites.
  • Addresses an issue that causes Device Guard to block some ieframe.dll class IDs after installing the May 2018 Cumulative Update.
  • Ensures that Internet Explorer and Microsoft Edge support the preload=”none” tag.
  • Addresses a vulnerability related to the Export-Module member() function when used with a wildcard (*) and a dot-sourcing script. After installing this update, existing modules on devices that have Device Guard enabled will intentionally fail. The exception error is “This module uses the dot-source operator while exporting functions using wildcard characters, and this is disallowed when the system is under application verification enforcement”.

New updates for Windows 7 and 8.1

If you are using Windows 7 SP1 and windows server 2008, you’ll get KB4343899 and KB4343900 which contains the following fixes:

  • Addresses an issue that causes high CPU usage that results in performance degradation on some systems with Family 15h and 16h AMD processors. This issue occurs after installing the June 2018 or July 2018 Windows updates from Microsoft and the AMD microcode updates that address Spectre Variant 2 (CVE-2017-5715 – Branch Target Injection).
  • Provides protection against an additional vulnerability involving side-channel speculative execution known as Lazy Floating Point (FP) State Restore (CVE-2018-3665) for 32-Bit (x86) versions of Windows.
  • This patch addresses the newly discovered execution side-channel vulnerability called as L1 Terminal Fault (L1TF) that affects Intel processors.

For Windows 8.1 and windows server 2012, Microsoft offers KB4343888 and KB4343898 update and it has the following fixes:

KB4343898 and KB4343888 Update for Windows 8.1 and Windows Server 2012 R2 and KB4343901 and KB4343896 for Windows 8 and Windows Server 2012 also fixes the same issues as the KB4343899 & KB4343900 update mentioned above. In addition

KB4343901 and KB4343896

  • Ensures that Internet Explorer and Microsoft Edge support the preload=”none” tag.
  • Addresses an issue that may prevent your device from starting up properly if you install KB3033055 (released September 2015) after installing any Monthly Rollup dated November 2017 or later.

KB4343899 & KB4343900

  • Provides protection against an additional vulnerability involving side-channel speculative execution known as Lazy Floating Point (FP) State Restore (CVE-2018-3665) for 32-Bit (x86) versions of Windows.

Each cumulative update should now be available to download via Windows Update. After installing the update you can check your Windows build number by press windows + R, type winver and ok. This will display as the image below.

Windows 10 build 17134.228
Windows 10 build 17134.228

Also check Windows 10 update KB4343909, KB4343897 and KB4343885 offline download links. And if you Face any difficulty while installing these updates, Windows update stuck checking for updates. Or Cumulative update for windows 10 version 1803 for x64 based system (KB4343909) failed to install with different errors check out this post.

Advertisement