KB4093120 and KB4093117 cumulative Windows 10 updates released
Microsoft released the cumulative updates KB4093120 for Windows 10 version 1703 and KB4093117 for Windows 10 version 1607 yesterday.
The two non-security updates fix various issues in Windows 10. Windows users and administrators can install them using Windows Update, by downloading the updates from Microsoft's Update Catalog website, and through other updating mechanisms that Microsoft operates.
KB4093120 for Windows 10 version 1607
KB4093120 increases the build number of Windows 10 version 1607 and Windows Server 2016 to 14393.2214.
Microsoft lists key changes on the official support page only which suggests that the update may include other changes as well.
You can download the cumulative update for Windows 10 version 1607 and Windows Server 2016 from the Microsoft Update Catalog website.
- Increased the minimum Group Policy password length to 20.
- Fixed an AppLocker publisher rules issue with MSI files.
- Fixed an issue with apps when using Japanese IME.
- Fixed password prompts being shown repeatedly when using Microsoft accounts or Azure Active Directory accounts.
- Fixed a key generation issue in Windows Hello caused by TPM firmware issues.
- Addressed name-constraint information displayed in hexadecimal format in certificate properties.
- Fixed a blocking instead of logging issue for failed NTLM authentications if audit mode is turned on.
- Fixed certificate validation error 0x800B0109 (CERT_E_UNTRUSTEDROOT) from http.sys.
- Fixed ReFS partition expanding issue if the volume was formatted using ReFS v1.
- Fixed a "stop working" issue when starting hosted VM.
- Addressed a kernel deadlock issue.
- Fixed a Windows Update issue that prevented VMs from being saved correctly.
- Fixed a "stop responding" issue in DTC during an XA recovery.
- Fixed the error "Error 0x207D An attempt was made to modify an object to include an attribute that is not legal for its class".
- Fixed the error "Microsoft.IdentityServer.Web.Protocols.OAuth.Exceptions.OAuthInvalidRefreshTokenException: MSIS9312: Received invalid OAuth refresh token. The refresh token was received earlier than the permitted time in the token"
- Addressed the cause of the error "Cannot connect to any domain. Refresh or try again when connection is available"
- Fixed an issue that caused the failover of an NFS server cluster resource to take a long time.
- Fixed cause for the warning "The storage pool does not have the minimum recommended reserve capacity. This may limit your ability to restore data resiliency in the event of drive failure(s)."
- Addressed an issue that caused files to be skipped or the creation of duplicate files during full enumeration sync sessions.
- Fixed the Windows Multipoint Server 2016 error "The MultiPoint service is not responding on this machine. To fix the issue try restarting the machine."
- Fixed an issue that caused user profile disks from loading.
- Fixed high contrast themes being applied incorrectly during RDP sessions.
- Fixed a pairing issue for low-energy Bluetooth devices.
- Addressed a reliability issue in Microsoft Outlook.
- Fixed a reliability issue when using Microsoft Office applications hosted in ActiveX containers and pressing the Alt-key.
Known issues:
After installing the March 13, 2018 or later Cumulative Update for Windows 10 version 1607, only the latest Windows 10 feature update is returned as applicable. This prevents the deployment of previously released feature updates using ConfigMgr (current branch) and Windows 10 servicing plans.
Microsoft's workaround:
Decline all feature updates on the WSUS Server(s) except for the one that you want to deploy using ConfigMgr. Run another software update scan cycle from the ConfigMgr control panel (or wait until the client devices perform their next scan).
KB4093117 for Windows 10 version 1703
KB4093117 increases the build number of Windows 10 version 1703 to 15063.1058. The update shares some fixes with KB4093120.
The update is available via Windows Update but can also be downloaded from Microsoft's Update Catalog website.
- Microsoft Edge stopped working on systems with software restriction policy enabled.
- Fixed an AppLocker publisher rules issue with MSI files.
- Fixed password prompts being shown repeatedly when using Microsoft accounts or Azure Active Directory accounts.
- Fixed a key generation issue in Windows Hello caused by TPM firmware issues.
- Fixed an issue that prevented users from unlocking their sessions which happened when multiple users logged in to a system from different domains, used the UPN format for domain credentials, and used Fast User switching.
- Fixed a smart card related issue that caused a 30-second wait time if the user entered the PIN incorrectly or if biometric authentication failed.
- Fixed an issue in the Chrome Office extension that prompted for authentication multiple times.
- Increased the minimum Group Policy password length to 20.
- Addressed name-constraint information displayed in hexadecimal format in certificate properties.
- Fixed a blocking instead of logging issue for failed NTLM authentications if audit mode is turned on.
- Fixed certificate validation error 0x800B0109 (CERT_E_UNTRUSTEDROOT) from http.sys.
- The option to encrypt or decrypt files in Windows Explorer was missing.
- Addresses a Bitlocker and Device Encryption suspending issue during device unenrollment.
- Fixed an issue in Centennial apps that blocked the ability to set user-level quotas for NTFS.
- Fixed connection bar missing in VMConnect in full-screen mode on multiple monitors.
- Fixed GPO login script to map a network drive failed if the user disconnects from the network and restarts.
- Addressed an issue that caused files to be skipped or the creation of duplicate files during full enumeration sync sessions.
- Addressed Data Modified field is empty in the properties when Volume Shadow Copy is used on a volume that hosts a file share.
- Fixed Microsoft Edge stopped working issue for roaming profile users who access Windows 10 version 1607 and version 1703 machines.
- Fixed reliability issue in Internet Explorer when entering text in RichEditText controls.
- Addressed a "potential" leak when opening and closing web browser controls.
- Addresses an issue that causes the ContentIndexter.AddAsync API to throw an unnecessary exception.
What mental age of reader are you targeting with the first sentence? 10?
Why not write an article on how to *avoid* upgrading from W10 to W11. Analogous to those like me who avoided upgrading from 7 to 10 for as long as possible.
If your paymaster Microsoft permits it, of course.
5. Rufus
6. Ventoy
PS. I hate reading these “SEO optimized” articles.
I used Rufus to create an installer for a 6th gen intel i5 that had MBR. It upgraded using Setup. No issues except for Win 11 always prompting me to replace my local account. Still using Win 10 Pro on all my other PCs to avoid the bullying.
bit pointless to upgrade for the sake of upgrading as you never know when you’ll get locked out because ms might suddenly not provide updates to unsupported systems.
ps…. time travelling?
written. Jan 15, 2023
Updated • Jan 13, 2023
This happens when you schedule a post in WordPress and update it before setting the publication date.
Anyone willing to downgrade to this awful OS must like inflicting themselves with harm.
I have become convinced now that anybody who has no qualms with using Windows 11/10 must fit into one of the following brackets:
1) Too young to remember a time before W10 and W11 (doesn’t know better)
2) Wants to play the latest games on their PC above anything else (or deeply needs some software which already dropped W7 support)
3) Doesn’t know too much about how computers work, worried that they’d be absolutely lost and in trouble without the “”latest security””
4) Microsoft apologist that tries to justify that the latest “features” and “changes” are actually a good thing, that improve Windows
5) Uses their computer to do a bare minimum of like 3 different things, browse web, check emails, etc, so really doesn’t fuss
Obviously that doesn’t cover everyone, there’s also the category that:
6) Actually liked W7 more than 10, and held out as long as possible before switching, begrudgingly uses 10 now
Have I missed any group off this list?
You have missed in this group just about any professional user that uses business software like CAD programs or ERP Programs which are 99% of all professional users from this list.
Linux doesn’t help anyone who is not a linux kid and apple is just a fancy facebook machine.
Microsoft has removed KB5029351 update
only from windows update though
KB5029351 is still available from the ms update catalog site
1. This update is labaled as PREVIEW if it causes issues to unintelligent people, then they shouldn’t have allowed Preview updates ot install.
2. I have installed it in a 11 years old computer, and no problems at all.
3. Making a big drama over a bluescreen for an updated labeled as preview is ridiculous.
This is probably another BS internet drama where people ran programs and scripts that modified the registry until they broke Windows, just for removing stuff that they weren’t even using just for the sake of it.
Maybe people should stop playing geeks and actually either use Windows 10 or Windows 11, but don’t try to modify things just for the sake of it.
Sometimes removing or stopping things (like defender is a perfect example) only need intelligence, not scripts or 3rd party programs that might mess with windows.
Windows 11 was a pointless release, it was just created because some of the Windows team wanted to boost sales with some sort of new and improved Windows 10. Instead, Microsoft cannot support one version well let alone two.
Windows 11 is the worst ugly shame by Microsoft ever. They should release with every new W11 version a complete free version of Starallback inside just to make this sh** OS functionally again.
motherboard maker MSI has recently released a statement regarding the “unsupported processor” blue screen error for their boards using Intel 600/700 series chipsets & to avoid the KB5029351 Win11 update:
https://www.msi.com/news/detail/MSI-On–UNSUPPORTED-PROCESSOR–Error-Message-of-Windows-11-Update-KB5029351-Preview-142215
check out the following recent articles:
Neowin – Microsoft puts little blame on its Windows update after UNSUPPORTED PROCESSOR BSOD bug:
https://www.neowin.net/news/microsoft-puts-little-blame-on-its-windows-update-after-unsupported-processor-bsod-bug/
BleepingComputer – Microsoft blames ‘unsupported processor’ blue screens on OEM vendors:
https://www.bleepingcomputer.com/news/microsoft/microsoft-blames-unsupported-processor-blue-screens-on-oem-vendors/
While there may be changes or updates to the Windows 10 Store for Business and Education in the future, it is premature to conclude that it will be discontinued based solely on rumors.
My advice, I left win 15 years ago. Now I’m a happy linux user (linuxmint) but there is Centos, Fedora, Ubuntu depending on your needs.
motherboard maker MSI has recently released new BIOS/firmware updates for their Intel 600 & 700 series motherboards to fix the “UNSUPPORTED_PROCESSOR” problem (Sept. 6):
https://www.msi.com/news/detail/Updated-BIOS-fixes-Error-Message–UNSUPPORTED-PROCESSOR–caused-BSOD-on-MSI-s-Intel-700-and-600-Series-Motherboards-142277
I try to disable the Diagnostics Tracking Service (Connected Devices Platform User Services) but it wont let me disable it, any help will be greatly appreciated.
Tank you for your help