KB4525236 updates Windows 10 1607 to Build 14393.3326 – 12 Nov 2019

Windows 10 has just now received a new cumulative update KB4525236 on Patch Tuesday 12 November 2019. Focusing on build 14393.3326, this update addresses several issues of the operating system and includes certain key changes as well. However, the company is working on a resolution and will present an update to fix this. In this patch, the Windows 10 team mainly improve the security update while using Internet Explorer and Microsoft Edge, some external devices, and internal devices. For example – game controllers, printers, and web cameras.

You can either download KB4525236 cumulative update manually or let Windows do it for you. Apart from this, manual installation is an alternative option when you fail to get the patch. For this, simply get access to the Update & Security category and select Check for updates. Furthermore, you can also check the Cumulative Update Complete patches by visiting Windows 10 Cumulative Updates List. See the details ahead.


General Improvements and fixes- Windows 10 1607

This patch having Build 14393.3326 is actually a bug-fixing update that carries no new feature to the OS. Here are the key changes –

  • The tech giant works on an issue that causes events that are based on Windows Defender Application Control Code Integrity to be unreadable.
  • With KB4525236, the Windows maker provides protection against the Intel® Processor Machine Check Error vulnerability (CVE-2018-12207). You can use the registry setting as explained in the Guidance KB article(This setting is disabled by default.)
  • Furthermore, they also provide protection against the Intel® Transactional Synchronization Extensions (Intel® TSX) Transaction Asynchronous Abort vulnerability (CVE-2019-11135). For this, you need to use the registry settings as mentioned in the “Windows Client and Windows Server tutorials”.
  • The company provides security updates to the various applications like – “Microsoft Scripting Engine, Internet Explorer, Windows App Platform and Frameworks, Microsoft Graphics Component, Windows Input and Composition, Microsoft Edge, Windows Fundamentals, Windows Cryptography, Windows Virtualization, Windows Kernel, Windows Datacenter Networking, Windows Peripherals, and the Microsoft JET Database Engine”.

Known Issues- Build KB4525236

Symptom Workaround
Inside this Tuesday patch KB4525236, when you install KB4467684, the cluster service may fail to start with the error “2245 (NERR_PasswordTooShort)”. It happens if the group policy “Minimum Password Length” is configured with greater than 14 characters.

As a resolution, the Windows 10 maker guide to set the domain default “Minimum Password Length” policy to less than or equal to 14 characters.

The company is trying to resolve the issue and working on a resolution. Also, they will send an update in a future release.

With Build 14393.3326, you may receive an error when performing certain operations, for example, rename, on files or folders. This mainly happens when using Cluster Shared Volume (CSV). Here, you will observe the error message that prompts while the execution is STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5).
It occurs since the operation does not have an administrator authorization. Also, the operation performs on the CVS owner node.

Follow anyone –

  • Perform the operation using a process that holds admin authorities.
  • Use a node that does not have CSV ownership and then perform the task.

In the upcoming release, the team ensures to release a resolution as they are still working on it.

How to get this update

If you are going to install this KB4525236, make sure to install the latest Servicing stack update (SSU) i.e. (KB4520724) on your System. This will enhance the overall reliability of the whole update process.

You will receive this update automatically on the Windows Update section. In case, if it happens the same, you can follow these steps to install the latest cumulative update manually on your PC.

  • At first, browse to the following path.
Settings --> Update & Security --> Windows Update

To get the standalone package, visit Microsoft Update Catalog.