[German]On January 11, 2022 (second Tuesday of the month, Patchday at Microsoft), various cumulative updates for the supported Windows 10 builds (from the RTM version to the current version) were released. Here are some details about each of the Patchday security updates.
A list of the updates can be found on this Microsoft website (but the German language pages are not up to date yet). I have pulled out the details below. Since March 2021, Microsoft has integrated the Servicing Stack Updates (SSUs) for newer Windows 10 builds into the cumulative update.
Updates for Windows 10 Version 20H2-21H2
For the Windows 10 versions mentioned above, Microsoft provides only one update package, which is mentioned below.
Update KB5009543 for Windows 10 Version 20H2 – 21H2
Cumulative Update KB5009543 raises the OS build to 19042.1466 for Windows 10 version 20H2, 19043.1455 for Windows 10 version 21H1, and 19044.1466 for Windows 10 version 21H2. The update contains only unspecified security fixes, but no new operating system features.
- Addresses an issue that prevents Active Directory (AD) attributes from being written properly during a Lightweight Directory Access Protocol (LDAP) modify operation when you make multiple attribute changes.
- Addresses a known issue that affects Japanese Input Method Editors (IME). When you use a Japanese IME to enter text, the text might appear out of order or the text cursor might move unexpectedly in apps that use the multibyte character set (MBCS). This issue affects the Microsoft Japanese IME and third-party Japanese IMEs.
Microsoft notes that this update makes quality improvements to the servicing stack (is responsible for Microsoft updates). This update is automatically downloaded and installed by Windows Update, but is also available from the Microsoft Update Catalog and via WSUS and WUfB. If the update from May 11, 2021 (KB5003173) or a newer LCU is missing, the special, standalone SSU from August 10, 2021 (KB5005260) must be installed beforehand. For the update, Microsoft cites several known issues in the support article.
I had reports, that lsass.exe is forcing a boot loop in Windows Server 2012 R2 and Windows Server 2019 on DCs – see also Patchday: Windows 8.1/Server 2012 R2 Updates (January 11, 2022), boot loop reported. And this German comment says update KB5009543 bricks L2TP-VPNs. At reddit.com there ist this thread about that.
Updates for Windows 10 Version 1909
The following updates are available for Windows 10 version 1909 released in 2019.
Update KB5009545 for Windows 10 Version 1909
Cumulative Update KB5009545 is upgrading the Windows 10 V1909 OS build to 18363.2037. The update is available for Windows 10 Enterprise/Education version 1909. The update includes quality improvements but no new operating system features and is intended to improve security.
- Addresses an issue that causes Windows to go into BitLocker recovery after a servicing update.
- Enables credentials for Azure Active Directory (Azure AD) Active Directory Federation Services (ADFS) users in Quick Assist.
- Addresses an issue that sometimes prevents Quick Assist users from using full screen view after they start a remote assistance session.
This update is automatically downloaded and installed by Windows Update. This update is also available in the Microsoft Update Catalog and via WSUS and WUfB. Microsoft has now included the latest Service Stack Update (SSU) as build 18363.1912 in the cumulative update. Microsoft does not indicate any known issues for the update. Details can be found in the KB article.
Updates for Windows 10 Version 1809
Windows 10 October 2018 Update (version 1809) has fallen out of support, but the following update is available for Windows 10 Enterprise 2019 LTSC and Windows Server 2019.
Update KB5009557 for Windows 10 Enterprise 2019 LTSC /Windows Server 2019 LTSC
Cumulative Update KB5009557 raises the OS build (according to MS) to 17763.2452 and includes quality improvements but no new OS features. Also for this Windows 10 version, which only receives updates for Enterprise LTSC and IoT Enterprise LTSC (the rest of the variants dropped out of the security update supply on May 11, 2021) brings the following fix:
Addresses an issue that prevents Active Directory (AD) attributes from being written properly during a Lightweight Directory Access Protocol (LDAP) modify operation when you make multiple attribute changes.
This update is automatically downloaded and installed by Windows Update, but is also available from the Microsoft Update Catalog, via WSUS and WUfB. Microsoft has also updated the Service Stack Update (SSU) to build 17763.2350. Microsoft lists several known issues. Details can be found in the KB article.
Updates for Windows 10 Version 1507 bis 1607
Updates for the Enterprise LTSC versions are available for Windows 10 RTM up to version 1607. These updates are automatically downloaded and installed by Windows Update, but are available for download from Microsoft Update Catalog (search for the KB number). Before manual installation, the latest Servicing Stack Update (SSU) must be installed. Details can be found in the respective KB article.
- Windows 10 Version 1607: Update KB5009546 is only available for Enterprise LTSC and Windows Server 2016. The update raises the OS build to 14393.4886. Windows Server 2016 thus falls out of mainstream support.
- Windows 10 Version 1507: Update KB5009585 is available for the RTM version (LTSC). The update raises the OS build to 10240.19177.
There was no update for the remaining Windows 10 versions, as these versions have fallen out of support. Details about the above updates can be found in the respective Microsoft KB articles if in doubt.
Similar articles:
Microsoft Office Updates (January 4, 2022)
Microsoft Security Update Summary (January 11, 2022)
Patchday: Windows 8.1/Server 2012 R2 Updates (January 11, 2022), boot loop reported
Patchday: Windows 10 Updates (January 11, 2022)
Patchday: Windows 11 Updates (January 11, 2022)
Patchday: Updates for Windows 7/Server 2008 R2 (January 11, 2022)
Windows Server: January 2022 security updates are causing DC boot loop
Windows VPN connections (L2TP over IPSEC) broken after January 2022 update
Windows Server 2012/R2: January 2022 Update KB5009586 bricks Hyper-V Host
Confirm reboot loop on WS2016 DC too
With KB5009546? I thought its KB5009545 only…
Many thanks for this clear overview of the updates.
Confirm WS2016 reboot every 15 minutes, only seems to affect servers with Active Directory or Domain Controllers