KB4517211 updates Windows 10 1903 Build 18362.387 – 26 Sept 2019

Microsoft releases cumulative update KB4517211 for Windows 10 1903 users which takes the existing OS to build 18362.387. This patch introduces an abundance of quality improvements and bug fixes with devices running the Windows 10 May 2019 Update. Other major issues that were fixed in this build are vertical fonts becomes larger while printing, display problems for laptops and so on.

In addition, build 18362.387 arrives with a fix for an inferior audio issue in games. It was launched earlier in the month of September in the Windows 10 19H1 KB4515384 update. Affected users were noticing that the sound becomes very low, muffled, or just strange.

KB4517211

General Fixes and Improvements on KB4517211

Here, we discuss the key changes and improvements that came along with KB4517211 cumulative update-

  • Build 18362.387 works upon vertical font. It becomes larger when printing to a Postscript printer.
  • Microsoft rectifies an issue that causes printing from 32-bit applications to fail with an “Access is denied” error. It happens when you choose Run as different user for the application.
  • Here, they resolve an issue that offers write access to a removable USB disk. It usually occurs when you switch from a privileged user to an unprivileged user.
  • KB4517211 works upon an issue that causes the lsass.exe service to interrupt work. Next, it makes the system shut down. This occurs when migrating Data Protection API (DPAPI) credentials using dpapimig.exe with the –domain option. 
  • The company resolves another issue that provides a Windows Hello for Business user two certificates for authentication during certificate renewal instead of one certificate.
  • Additionally, they address an issue that restricts a web browser from connecting securely to Windows Server. In a general way, this occurs when using a client authentication certificate, such as a SHA512-based certificate, and the web browser does not support a signature algorithm that matches the certificate. 
  • Microsoft team works upon an issue that may cause authentication to fail for certificate-based authentication. It happens when the certificate authentication incorporates a cname as part of the pre-authentication request. 
  • Works upon a critical issue that impedes a Microsoft App-V application from opening and displays a network failure error. It happens when a system’s battery is low or there is an accidental power failure.
  • Tech community resolves an issue that causes a query request of the Win32_LogonSession class for the StartTime to display the value of the epoch instead of the actual logon time. For example, 1-1-1601 1:00:00. This occurs when a user who isn’t an administrator performs the query request. 
  • Works on an issue that makes File Explorer manifest a regular file icon for files marked with FILE_ATTRIBUTE_OFFLINE rather of the anticipated placeholder icon. 
  • Microsoft team fixes an issue with intermittent virtual private network (VPN) interruptions on cellular networks. 
  • Resolves another issue that may cause audio playback and recording to fail. It happens when connecting to a remote virtual machine. 
  • They also seek to fix the issue with MSCTF.dll that causes an application to stop working. 
  • Apart from these fixes, they also work on an issue with the input and display of special characters that occurs when an app uses imm32.dll
  • Tech expert resolves an issue with resizing Windows Presentation Foundation (WPF) applications; they may not respond to being resized using the mouse until you release the mouse button. 
  • Resolves an issue that may obstruct older systems from upgrading to the latest OS. It is because of an error in the display driver of older versions. 
  • Works upon an issue related to display of the laptop. The screen may color to turn white on PCs that have built-in, high-dynamic-range (HDR) screens. 
  • The company resolves an issue with converting an application from 32-bit to 64-bit architecture. 
  • Resolves an issue that precludes you from running the Active Directory Diagnostics Data Collector Set from the Performance Monitor for Domain Controllers. It makes the Data Collector Set name to appear empty. “Running the Active Directory Diagnostics Data Collector Set returns the error, “The system cannot find the file specified.” Event ID 1023 is logged with the source as Perflib and the following messages:”
    • “Windows cannot load the extensible counter DLL “C:\Windows\system32\ntdsperf.dll.”
    • “The specified module could not be found.” 
  • Works upon an issue that causes audio in certain games to have a poor or different sound than expected.
  • Microsoft team works upon an issue that precludes Microsoft App-V from handling a parameter of the CreateProcess API properly, which prevents the virtual process from opening.
  • KB4517211 acts on an issue in which the maximum central processing unit (CPU) performance is not enabled when you select the High-Performance power plan.
  • This update provides you a way to configure the read buffer size. It allows you to rectifies an issue with slow upload times when uploading a file to a Universal Naming Convention (UNC) share using the Internet Information Services (IIS) Web Distributed Authoring and Versioning (WebDAV) feature.
  • They solve another issue that causes a device to discontinue working when opening files from a network drive that has client-side caching enabled. This problem may get appeared when the device has certain third-party antivirus products installed. Also, the drive is backed by a server that is not a Microsoft Server Message Block (SMB) server. Here, the error code is, “0x27 RDR_FILE_SYSTEM.”
  • The tech expert helps with the configuration of devices that are managed by mobile device management (MDM) settings, which are created by ADMX ingestion. Besides, you can update an earlier ingested ADMX file with a newer version. Also, there is no need to delete the previous ADMX file. Furthermore, you can apply this resolution to all applications that use ADMX ingestion.

Known Issue

Symptom Workaround

In this patch KB4517211, some Input Method Editor (IME) starts absorbing high CPU usage or even becomes unresponsive at times. 

Some of the affected IMEs might include-

  • Chinese Simplified (ChsIME.EXE)
  • Chinese Traditional (ChtIME.EXE) with Changjie/Quick keyboard.

This problem may appear again, if you don’t configure the Handwriting Panel Service, as well as Touch Keyboard, to use default settings manually. To fix this issue, one should follow these easy steps-

  1. Click on the Start button and type ‘services’.
  2. Open the Services app and locate Touch Keyboard and Handwriting Panel Service.
  3. Double-click Touch Keyboard and Handwriting Panel Service and pick Properties.
  4. Locate Startup type: and change it to Manual. Thereafter hit OK.

Once you complete the above instructions, the default service will be the TabletInputService. Succeeding this, IMEs should work exactly as we hoped for.

How to get this cumulative Update

We suggest you execute the current SSU on your PC before downloading this security patch KB4516077. The latest servicing stack for this patch is KB4520390.

Windows Update section will notify you about this cumulative update through a message in the notification panel. You may download the standalone package manually as well by clicking on this link.

Alternatively, navigate to the following address and hit Check for Updates button.

Settings > Update & Security > Windows Update 

Source – Microsoft Update Catalog.