Windows 10 KB4598291 update fixes device deactivation, responsiveness issues

[Karlston]

Windows 10 KB4598291 update fixes device deactivation, responsiveness issues

 

Microsoft has released the KB4598291 release preview cumulative update for all editions of Windows 10 and Windows Server versions 2004 and 20H2, with fixes for device deactivation issues and unresponsiveness while playing games in full-screen.

 

After installing the KB4598291 non-security update you may experience issues with system and user certificates getting lost when updating from Windows 10 1809 or later versions utilizing outdated update media.

 

More details on the types of updates Microsoft releases every month can be found in the Windows 10 update servicing cadence primer.

KB4598291 update highlights

With the KB4598291 monthly "C" release preview update, Microsoft addresses an issue that would incorrectly deactivate some Windows 10 Education devices following an upgrade to Windows 10, version 2004.

 

The update also fixes a bug causing Windows 10 devices to stop responding when playing games in tablet mode or in full-screen.

 

Other highlights included in this update:

• Updates an issue with using Ctrl+Caps Lock and Alt+Caps Lock to switch to Hiragana or Katakana mode respectively after upgrading to Windows 10, version 2004.

• Updates an issue that prevents you from opening a document that is on the Windows desktop.

• Updates an issue that creates duplicate cloud provider folders in the File Explorer navigation pane.

• Updates an issue with some special key combinations used in DaYi, Yi, and Array IMEs that might cause an application to stop working.

• Updates an issue that displays a blank lock screen after a device wakes up from Hibernate.

• Corrects historical daylight savings time (DST) information for the Palestinian Authority.

• Updates an issue that might cause the Alt+Tab order to change unexpectedly and cause you to switch to the wrong window.

• Updates an issue that fails to show Extract all on the shortcut menu when you right-click an online-only ZIP file.

What's changed in KB4598291

Given KB4598291 is a preview update, it is considered optional, and it will not be installed automatically by Windows 10.

 

To install it manually, you have to open Windows Update and 'Check for updates.' You’ll then find the link to download and install the update by going to the 'Optional updates available' area.

 

The update can also be downloaded manually from the Microsoft Catalog. After installing this update, Windows 10, version 2004 will be updated to build 19041.789 and Windows 10, version 20H2 to build 19042.789.

 

Microsoft recommends installing the latest servicing stack update (SSU) installed before this cumulative update is deployed to minimize issues with this update. If you are using Windows Update, the latest servicing stack update will be installed for you automatically.

 

Here is the full list of key quality improvements and fixes delivered by this update:

• Updates the default values for the following Internet Explorer registry keys (in addition, these values will no longer be updated automatically):

  • svcKBFWLink = “ ” (empty string)

  • svcKBNumber = “ ” (empty string)

  • svcUpdateVersion = 11.0.1000.

• Enables administrators to disable standalone Internet Explorer using a Group Policy while continuing to use Microsoft Edge's IE Mode.

• Enables you to configure certain policies that support Microsoft Edge IE Mode using mobile device management (MDM).

• Addresses an issue in the Universal C Run-time Library (UCRT) that causes printf() to incorrectly round floating point values.

• Addresses an issue that displays a User Account Control (UAC) dialog box unexpectedly when you turn on speech recognition.

• Addresses an issue that fails to notify the target application when you select the Copy link command on the Share menu.

• Addresses an issue that causes the 64-bit fmod() and remainder() functions to damage the Floating Point Unit (FPU) stack.

• Addresses an issue that causes a stop error or causes a device to stop responding when you play a game in full-screen or tablet mode.

• Addresses an issue with using Ctrl+Caps Lock and Alt+Caps Lock to switch to Hiragana or Katakana mode respectively after upgrading to Windows 10, version 2004.

• Addresses an issue that prevents you from opening a document that is on the Windows desktop and generates the error, “The directory name is invalid.” This issue occurs after changing the desktop location in the Location tab of the Desktop Properties dialog box (File Explorer > This PC > Desktop).

• Addresses an issue that creates duplicate cloud provider folders in the File Explorer navigation pane.

• Addresses an issue that occurs when the Mandatory Profile check box is selected when you copy a user profile.

• Addresses an issue that prevents ImmGetCompositionString() from returning the white space for furigana when using the Japanese Input Method Editor (IME).

• Addresses an issue with some special key combinations used in DaYi, Yi, and Array IMEs that might cause an application to stop working.

• Addresses an issue that displays a blank lock screen after a device wakes up from Hibernate.

• Corrects historical daylight savings time (DST) information for the Palestinian Authority.

• Adds support for serial number control using the registry.

• Addresses an issue that incorrectly deactivates some Windows 10 Education devices after upgrading to Windows 10, version 2004.

• Addresses an issue that causes the upload of diagnostic logs to a management service, such as Microsoft Intune, to fail. The failure occurs because of a network time-out on a slow network.

• Displays a notification to a user when an administrator signs in to an MDM service, such as Microsoft Intune, to find the location of a managed device.

• Addresses an issue that prevents users from using their smart card credentials when the user hint is the domain credential name (domain\username).

• Addresses an issue in which using local Service for User (S4U) affects Data Protection API (DPAPI) credential keys and causes users to sign out unexpectedly.

• Addresses an issue that causes the silent mode deployment of BitLocker to fail with the error 0x80310001. This issue occurs when deploying BitLocker encryption to Hybrid Azure Active Directory (Azure AD) joined devices.

• Addresses an issue that might cause a black screen to appear or delay signing in to Hybrid Azure Active Directory joined machines. Additionally, there is no access to login.microsoftonline.com.

• Addresses an issue that might cause systems that use BitLocker to stop working with the error 0x120 (BITLOCKER_FATAL_ERROR).

• Addresses an issue that causes a device to stop working when deploying Microsoft Endpoint Configuration Manager if AppLocker is enabled on the device.

• Addresses an issue that cause the LSASS.exe process to leak memory on a server that is under a heavy authentication load when Kerberos Armoring (Flexible Authentication Secure Tunneling (FAST)) is enabled.

• Addresses an issue that causes LSASS.exe to stop working because of a race condition that results in a double free error in Schannel. The exception code is c0000374, and the Event Log displays Schannel event 36888, fatal error code 20, and error state 960. This issue occurs after installing Windows updates from September 2020 and later.

• Addresses a memory leak issue that occurs when you authenticate a client certificate on servers that are configured as domain controllers.

• Addresses an issue with Virtual Interrupt Notification Assert (VINA) interrupts.

• Addresses an issue with HTTP caching that interferes with kiosk mode that targets Azure AD groups.

• Addresses an issue that occurs when a Volume Shadow Copy Service (VSS) snapshot triggers on virtual machines (VM) that contain Resilient File System (ReFS) volumes. The triggered VSS snapshot fails with a time-out and prevents access to the ReFS volume for 30 minutes.

• Addresses an issue that incorrectly logs Extensible Storage Engine Technology (ESENT) event 642 in the Application Event Log.

• Addresses an issue with Administrative Template settings you configure using a Group Policy Object (GPO). When you change the value of the policy settings to NOT CONFIGURED, the system fails to remove the previous settings. This issue is most noticeable with roaming user profiles.

• Addresses an issue that might cause a deadlock in Windows Virtual Desktop when a user disconnects before a driver fully loads.

• Addresses an issue that fails to show Extract all on the shortcut menu when you right-click an online-only ZIP file.

• Updates the process for enrolling in online speech recognition. If you are already enrolled, you will see a message that asks you to review the new settings. If you choose not to contribute your speech data for human review, you can still use online speech recognition. The new settings contain one button to turn on online speech recognition and another button that turns on the collection of your voice clips. If you turn on the collection of your voice clips, you can turn it off at any time using the same button in the new settings page.

• Addresses an issue that prevents the Start menu, Cortana, and tiles pinned to the Taskbar from opening. This issue occurs when an administrator copies an existing profile that has the Mandatory Profile check box selected. 

 

 

Windows 10 KB4598291 update fixes device deactivation, responsiveness issues

[Karlston]

Microsoft fixes issue causing Windows 10 apps to forget passwords

 

Microsoft has addressed a known issue impacting multiple Windows 10 apps and causing them to forget users' passwords after upgrading devices to certain Windows 10, version 2004 builds.

 

The issue was resolved in the KB4598291 release preview cumulative update for all editions of Windows 10 and Windows Server versions 2004 and 20H2.

 

This update also comes with fixes for device deactivation issues and freezing problems while playing games full-screen.

Password amnesia issue fixed in KB4598291

According to Microsoft, KB4598291 also "addresses an issue in which using local Service for User (S4U) affects Data Protection API (DPAPI) credential keys and causes users to sign out unexpectedly."

 

The reason behind this issue was discovered by Google vulnerability researcher Tavis Ormandy after discovering that scheduled tasks created with the Task Scheduler's S4U (Services For User) option are to be blamed.

 

Due to a bug in the RPC UBPM (Unified Background Process Manager), Windows 10 would forget passwords by removing saved credentials in the Local Security Authority Subsystem Service (LSASS).

 

This causes the affected apps to either lose login state or sign out users out of their accounts after every system restart.

 

Microsoft first acknowledged the issue causing Outlook and other apps to forget user passwords in a document published on its support website in November 2020.

Workaround also available

Redmond also provided a workaround for the issue found by Ormandy which requires impacted users to delete scheduled tasks created using S4U.

 

This can be helpful to temporarily mitigate the issue on systems where installing the fix bundled with KB4598291 is not immediately possible.

 

"This issue occurs when some Windows 10 Task Scheduler Tasks are configured in a certain way," Microsoft said. "Until a fix is available a workaround is to disable these tasks using Task Scheduler."

 

The workaround requires you to follow this procedure:

1. Open the Quick Link menu by right-clicking the Start Button and then selecting Windows PowerShell (Admin).
2. Execute this command by hitting Enter: Get-ScheduledTask | foreach { If (([xml](Export-ScheduledTask -TaskName $_.TaskName -TaskPath $_.TaskPath)).GetElementsByTagName("LogonType").'#text' -eq "S4U") { $_.TaskName } }
3. Jot down any scheduled tasks that get listed as output to the command and disable them using the Windows Task Scheduler by following these steps:

• In the Windows 10 Search box, type Task Scheduler, and then open the Task Scheduler app.
• Locate the task in the Window (HP Customer participation) and the other tasks from the Windows PowerShell output.
• Right-click the task and choose Disable.
• After you disable the task, restart Windows.

As Microsoft also notes, you may also have to re-enter passwords in affected apps one more time before they are saved correctly again.

 

 

Microsoft fixes issue causing Windows 10 apps to forget passwords

[aum]

Preview update is optional, but could well be worth grabbing for those hit by these various glitches

 

(Image credit: Shutterstock)

 

Windows 10 has a new optional update which delivers some valuable fixes, most notably one that will be a huge relief to the minority of gamers who have been affected by crashing issues.

 

Microsoft has just pushed out patch KB4598291 for Windows 10 May 2020 Update and October 2020 Update, which is a ‘C’ release preview currently, meaning it’s optional – so you’ll have to search for it (in Windows Update) to grab the fixes.

 

That glitch affecting gamers is a nasty gremlin indeed, in that it causes your PC to crash or lock up when gaming full-screen (or in tablet mode for that matter). This is seemingly not a bug affecting many users, as Windows Latest, which spotted the patch, points out, but obviously if you are among those hit by the problem, it will doubtless be seriously frustrating.

 

KB4598291 also incorporates another important fix for Windows 10 users who are affected by the bugbear which means they’re signed out of apps and websites after restarting their system – meaning they are being forced to repeatedly sign in over and over, again a pretty annoying glitch.

 

While not in the official release notes from Microsoft, that problem is reportedly fixed in KB4598291 going by this Chromium commit (and comment from Eric Law of Microsoft), as highlighted by Windows Latest.

Other fixes

There are also solutions provided for issues with Alt-Tabbing (where the order of tabbed apps unexpectedly changes), and a problem where a device would wake from hibernate and just show a blank lock screen. Some folks have also run into issues preventing them from opening a document on the desktop, and that has been cured as well.

 

There are a bunch of other minor fixes, so overall, this preview update could be worth getting hold of for a number of Windows 10 users.

 

Naturally, if you aren’t experiencing any of the above problems, you may as well hold off on this one. There’s no point installing updates you don’t need, because as we all know, these patches can sometimes have unintended consequences as well as fixes (particularly in preview).

 

Source

[Karlston]

Similar topic merged.