Microsoft has released KB5016690 to those who run LTSC 2019 versions of Windows 10, both server and consumer editions. The patch raises the OS version to build 17763.3346, and comes with a huge list of fixes.
The main highlight in this release is the fixed issue for the error 0x1E that appears when the user shut down or restart the operating system. Other changes include a fix for virtualized App-V Microsoft Office applications that couldn't start, and several domain controller related fixes. Finally, this build adds Enhances Microsoft Defender for Endpoint’s ability to identify and intercept ransomware and advanced attacks.
The full change log looks as follows.
- New! Enhances Microsoft Defender for Endpoint’s ability to identify and intercept ransomware and advanced attacks.
- Addresses an issue that causes ServerAssignedConfigurations to be null in a few full configuration scenarios.
- Addresses an issue that might generate error 0x1E when you shut down or restart a device.
- Addresses an issue that prevents virtualized App-V Microsoft Office applications from opening or causes them to stop working.
- Addresses an issue that leads to a false negative when you run scripts while Windows Defender Application Control (WDAC) is turned on. This might cause AppLocker events 8029, 8028, or 8037 to appear in the log when they should not.
- Addresses an issue that causes the Resultant Set of Policy tool (Rsop.msc) to stop working when it processes 1,000 or more “File System” security settings.
- Addresses an issue that causes the Settings app to stop working on server domain controllers (DCs) when accessing the Privacy > Activity history page.
- Addresses a race condition that causes the Local Security Authority Subsystem Service (LSASS) to stop working on Active Directory domain controllers. This issue occurs when LSASS processes simultaneous Lightweight Directory Access Protocol (LDAP) over Transport Layer Security (TLS) requests that fail to decrypt. The exception code is 0xc0000409 (STATUS_STACK_BUFFER_OVERRUN).
- Addresses an issue that affects a lookup for a nonexistent security ID (SID) from the local domain using read-only domain controller (RODC). The lookup unexpectedly returns the STATUS_TRUSTED_DOMAIN_FAILURE error instead of STATUS_NONE_MAPPED or STATUS_SOME_MAPPED.
- Addresses an issue that prevents a private virtual LAN (PVLAN) from providing tenant and virtual machine (VM) isolation.
- Addresses an issue that delays a client’s acquisition of the Internet Protocol version 6 (IPv6) address for extended periods in an IPv6 environment.
- Addresses an issue that might cause Remote Desktop Session licensing to display a 60-minute disconnection warning after reconnecting.
- Addresses an issue that causes a RODC to unexpectedly restart. In the event log, you’ll find the following:
- Event 1074 with the message, “The system process 'C:\Windows\system32\lsass.exe' terminated unexpectedly with status code -1073740286. The system will now shut down and restart.”
- Event 1015 with the message, “A critical system process, C:\Windows\system32\lsass.exe, failed with status code c0000602. The machine must now be restarted.”
- Event 1000 with the message, “Faulting application name: lsass.exe, Faulting module name: ESENT.dll, Exception code: 0xc0000602.”
- Addresses an issue that might cause cldflt.sys to reference invalid memory in race conditions.
It is worth mentioning that there is a couple of known issues for this update. For some PCs with Asian language packs installed the OS may bring up the 0x800f0982 error. Microsoft recommends uninstalling those language packs, then check for updates and install April 2019 Cumulative Update.
If you face an issue that the Cluster Service fails to start because a Cluster Network Driver is not found, it should disappear on its own after 20 minutes. See this link for more information.
KB5016690, Build 17763.3346 is available on Windows Update and in the Microsoft Update Catalog here.
Since Preview updates are optional, you will have to install it manually. For that, open Settings (Win+i)> Update & Security > Windows Update. In the Optional updates available area, click the link to download and install the update.
The official announcement is here.
Winaero greatly relies on your support. You can help the site keep bringing you interesting and useful content and software by using these options:
If you like this article, please share it using the buttons below. It won't take a lot from you, but it will help us grow. Thanks for your support!