共计 6914 个字符,预计需要花费 18 分钟才能阅读完成。
更新时间 2018 年 4 月 23 日,win10 更新至16299.402
KB4093105 更新内容:
1. 本次更新已经修复使用管理员身份运行应用程序时, 将账号密码粘贴到用户权限提升对话框出现的异常问题。
2. 本次更新已经修复使用 UE-V 的情况下 Microsoft Outlook 2013 邮件客户端设置账户的自动发现功能异常。
3. 本次更新已经修正应用程序控制策略 (Applocker) 限制 MSI 安装包时可能出现已有规则与文件不匹配问题。
4. 本次更新已经解决 TPM 即可信平台模块固件问题导致的 Windows Hello 可能无法正确生成强密码的问题。
5. 本次更新已经解决当多个用户快速切换登录到计算机时, 可能会被阻止登录并显示不正确的用户们和域名。
6. 本次更新已经解决在安装 Office for Chrome 扩展程序后系统会不断提示用户需要输入账号密码的烦人问题。
7. 本次更新已经调整 PIN 码或生物识别解锁系统时出现错误的等待时间,原本需等待 30 秒的策略已经被移除。
8. 本次更新已经调整组策略功能的安全控制项,其中组策略中设定的安全密码最小长度已经调整到 20 个字符。
9. 本次更新已经解决数字证书属性中不正确的显示约束信息,信息会以十六进制显示而不是呈现正确的内容。
10. 本次更新已经解决 http.sys 核心模块出现证书校验错误 0x800B0109(CERT_E_UNTRUSTEDROOT)的问题。
11. 本次更新已经解决在登录环节重置 Windows Hello PIN 密码时系统可能会出现无法正常重置 PIN 码的问题。
12. 本次更新已经解决使用资源管理器加密和解密文件时,右键菜单可能会出现丢失上下文关联菜单的问题等。
13. 本次更新已经解决 Microsoft EDGE 浏览器在开启软件限制策略的情况下运行几秒钟后即出现的崩溃问题。
14. 本次更新已经修正当使用多个显示器并且全屏显示虚拟机的情况下,会导致虚拟机连接出现丢失的问题等。
15. 本次更新已经解决当用户尝试更改显示模式时可能会导致原位置的光标意外移动到屏幕中心的异常问题等。
16. 本次更新已经解决从 1703 版升级到 1709 版后 Microsoft Outlook 2016 的搜索选项卡可能出现异常问题。
17. 本次更新已经解决部分大型游戏应用程序更是失败问题、解决了看某些隐形应用显示在开始菜单中的问题。
下载地址:https://www.catalog.update.microsoft.com/Search.aspx?q=KB4093105
修复内容:
-
Addresses an issue that causes modern applications to reappear after upgrading the OS version even though those applications have been deprovisioned using remove-AppXProvisionedPackages-Online.
-
Addresses an issue in which running an application as an administrator causes the application to stop working when pasting the user name or password into the user elevation prompt (LUA).
-
Addresses an issue that causes Skype and Xbox to stop working.
-
Addresses an issue that prevents Autodiscover in Microsoft Outlook 2013 from being used to set up email accounts when UE-V is enabled.
-
Addresses an issue where AppLocker publisher rules applied to MSI files don’t match the files correctly.
-
Addresses an issue that prevents Windows Hello from generating good keys when it detects weak cryptographic keys because of TPM firmware issues. This issue only occurs if the policy to require the TPM is configured.
-
Addresses an issue that prevents users from unlocking their session and sometimes displays incorrect user-name@domain-name information on the logon screen when multiple users log on to a machine using fast user switching. This specifically happens when users are logging on from several different domains, are using the UPN format for their domain credentials (user-name@domain-name), and are switching between users using fast user switching.
-
Addresses an issue that causes the browser to prompt for credentials often instead of only once when using the Office Chrome extension.
-
Addresses an issue related to smart cards that allow PINs or biometric entry. If the user enters an incorrect PIN or biometric input (e.g., a fingerprint), an error appears, and the user must wait up to 30 seconds. With this change, the 30-second delay is no longer required.
-
Increases the minimum password length in Group Policy to 20 characters.
-
Addresses an issue that displays name-constraint information incorrectly when displaying certificate properties. Instead of presenting properly formatted data, the information is presented in hexadecimal format.
-
Addresses an issue that blocks failed NTLM authentications instead of only logging them when using an authentication policy with audit mode turned on. Netlogon.log may show the following:
SamLogon: Transitive Network logon of <domain><user> from <machine2> (via <machine1>) Entered
NlpVerifyAllowedToAuthenticate: AuthzAccessCheck failed for A2ATo 0x5. This can be due to the lack of claims and compound support in NTLM
SamLogon: Transitive Network logon of <domain><user> from <machine2> (via <machine1>) Returns 0xC0000413
-
Addresses an issue that generates a certificate validation error 0x800B0109 (CERT_E_UNTRUSTEDROOT) from http.sys.
-
Addresses an issue in which resetting the Windows Hello PIN at the logon prompt puts the system in a state that makes resetting the PIN again impossible.
-
Addresses an issue where the right-click context menu for encrypting and decrypting files using Windows Explorer is missing.
-
Addresses an issue that suspends BitLocker or Device Encryption during device unenrollment instead of keeping the drive protected.
-
Addresses an issue that causes Microsoft Edge to stop working after a few seconds when running a software restriction policy.
-
Addresses an issue that may cause a file system mini-filter to fail to unload because of a leak in Filter Manager, which requires a restart.
-
Addresses an issue that causes the connection bar to be missing in Virtual Machine Connection (VMConnect) when using full-screen mode on multiple monitors.
-
Addresses an issue that prevents certain devices from working on Windows 10, version 1709, machines when the“Disable new DMA devices when this computer is locked”Group Policy is active. The non-working devices are internal, PCI-based peripherals (wireless network drivers and input and audio peripherals). These peripherals can fail on systems whose firmware blocks the peripherals from performing Direct Memory Access (DMA) at boot.
-
Addresses an issue that might cause Windows Server 2016 Domain Controllers to log Microsoft Windows Security audit events ID 4625 and ID 4776. The username and domain name in the events may appear truncated, only showing the first character for logons coming from client applications using wldap32.dll.
-
Addresses an issue in which users may exist in a domain that is trusted using transitive trust, but are unable to locate a PDC or DC for the Extranet Lockout feature. The following exception occurs:“Microsoft.IdentityServer.Service.AccountPolicy.ADAccountLookupException: MSIS6080: A bind attempt to domain ‘globalivewireless.local’ failed with error code ‘1722’”.
Also, the following message appears on the IDP page: “Incorrect user ID or password. Type the correct user ID and password, and try again.”
-
Addresses an issue that prevents you from modifying or restoring Active Directory objects that have invalid backlink attributes populated in their class. The error you receive is “Error 0x207D An attempt was made to modify an object to include an attribute that is not legal for its class.”
-
Addresses an issue that prevents the AdminSDHolder task from running when a protected group contains a member attribute that points to a deleted object. Additionally, Event 1126 is logged as “Active Directory Domain Services was unable to establish a connection with the global catalog. Error value: 8430. The directory service encountered an internal failure. Internal ID: 320130e.”
-
Addresses an issue that occurs when Volume Shadow Copy is enabled on a volume that hosts a file share. If the client accesses the UNC path to view the properties in the Previous Version tab, the Date Modified field is empty.
-
Addresses an issue that occurs when a user with a roaming user profile first logs on to a machine running Windows 10, version 1607, and then logs off. Later, if the user tries to log on to a machine running Windows 10, version 1703, and opens Microsoft Edge, Microsoft Edge will stop working.
- Addresses an issue that makes a Japanese keyboard unusable in remote assistance sessions.
- Addresses an issue that causes the cursor to unexpectedly move to center of the screen when changing the display mode.
- Addresses a potential leak caused by opening and closing a new web browser control.
- Addresses an issue that causes the ContentIndexter.AddAsync API to throw an unnecessary exception.
- Addresses an issue with the first launch performance of UWP Desktop Bride apps.
- Addresses an issue with the Search tab of Microsoft Outlook 2016 during the upgrade from Windows 10, version 1703, to Windows 10, version 1709.
- Addresses an issue that causes updates for large game apps to fail.
- Addresses an issue that removes user-pinned folders or tiles from the Start menu in some cases
- Addresses an issue that causes invisible apps to appear in the Start menu.
- Addresses an issue that might cause some users to experience unexpected panning or scrolling in certain apps while using the pen.