KB4601318 updates Windows 10 1607 to OS Build 14393.4225

Microsoft releases this month’s security update i.e. KB4601318 for Windows 10 1607 users. Applying this cumulative update will increase the OS Build to 14393.4225 while addressing different bugs and errors. 

You may get this patch update either via Windows Update, Update Catalog, or configuring parameters inside WSUS. Let’s explore the new changes and fixes in detail –


KB4601318 Windows 10 1609 Changelog

Here are the key changes that came along with this cumulative update –

  • Applying this update, Palestinian Authority may now see correct historical daylight savings time (DST) information.
  • No issues while using German translations to view Central European Time.
  • Users may now disable standalone Internet Explorer with the help of a group policy and continue to use Microsoft Edge’s IE Mode.
  • A standard modern dialog is now available instead of the Internet Explorer About dialog.
  • Improves Service Host (svchost.exe) process consuming excessive CPU usage inside Input Method Editor (IME) language environments, such as Traditional Chinese.
  • Resolves the error 0x120 (BITLOCKER_FATAL_ERROR) that mainly occurs on devices using BitLocker.
  • Works upon a bug that causes stop error 0x54 while using SRV2.SYS.
  • No more LanmanServer service-related issues while resetting the OptionalNames registry value.
  • Resolves an anomaly that prevents scheduled tasks from having multiple actions from running again if you have previously disabled them while they were running.
  • Resolves LSASS.exe issue that occurs because of a race condition that results in a double-free error in Schannel. This used to occur when the LDAP session is authenticated and sealed using a Simple Authentication and Security Layer (SASL) method. Microsoft has fixed this bug as well. 
  • Earlier, it is reported that Lightweight Directory Access Protocol (LDAP) sessions are not secured in Event ID 2889.

Apart from providing these quality improvements, KB4601318 provides security updates to the following –

Windows App Platform and Frameworks, Windows Apps, Windows Cloud Infrastructure, Windows Authentication, Windows Fundamentals, Windows Virtualization, Windows Core Networking, and Windows Hybrid Cloud Networking.

Other Fixes and Improvements

  • Works upon the Server Message Block (SMB) issue wherein, it incorrectly logs the Microsoft-Windows-SMBClient 31013 event in the “Microsoft-Windows-SMBClient” or Security event log of an SMB client. This bug mostly occurs on Remote Desktop Servers and displays an error message that reads – “STATUS_USER_SESSION_DELETED”. This occurs when SMB client users or applications open multiple SMB sessions using the same set of Transmission Control Protocol (TCP) connections on the same SMB server. 
  • Resolves an issue that fails to log events 4732 and 4733 for Domain-Local group membership changes in certain scenarios. This occurs typically when you use the “Permissive Modify” control on the computer. For instance – the Active Directory (AD) PowerShell modules use this control.

Known bugs on KB4601318

You will not encounter any new bug after installing this security patch to your device i.e. Windows 10 1609. However, do remember to set any domain default “Minimum Password Length” policy to include 14 or fewer characters. In case of forgetting this constrain, there should appear a long persisting error i.e. “2245 (NERR_PasswordTooShort)”.

How to Get this update

Before applying the KB4601318 cumulative update to your PC, make sure to first download and install the recent servicing stack update i.e. KB4601392. This will, in turn, ensure that the update process complete without getting into any trouble. Here are the three ways by which you may install the latest security patch for Windows 10 version 1607 –

1] Windows Update:

Microsoft pushes new updates in separate batches to compatible devices. That’s the reason why a few users receive the update the moment it becomes available while the others have to wait for a few hours or days. If you haven’t yet received KB4601318 on your device, manually search for it using the below steps –

  • Press WinKey + I and select Update & Security.
  • On the next screen, hit the Check for updates button. 
  • The system then looks for any pending updates over Microsoft’s servers and if available, the same gets automatically downloaded and installed.

2] Update Catalog:

Microsoft uploads the standalone packages of each update at its official site. If the above search doesn’t reveal any new update, use this method –

  • First of all, go to the Update Catalog site.
  • Scroll down and locate the update that matches your system configuration.
  • Once located, hit the download button available at the right end.
  • When the setup file gets downloaded, double-click over this to upgrade your PC to OS Build 14393.4225.


In this method, you don’t need to manually download any file. Just configure your device as follows and the update occurs itself.

  • Product: Windows 10
  • Classification: Security Updates


One comment

  1. Do NOT download KB4601392 as it has a bug with deploying further updates.

Comments are closed.