Microsoft Releases New Cumulative Update for Windows 10 April 2018 Update

Microsoft is releasing a new update for Windows 10 April 2018 Update today. The firm already released this month’s Patch Tuesday update earlier in the month, so this is the second cumulative update for Windows 10 April 2018 Update. Redmond usually doesn’t release multiple cumulative updates in the same month for a particular release of Windows 10, but this isn’t the first time it’s releasing more than one update for the OS in the same month.

The latest cumulative update is particularly interesting because it doesn’t include any notable fixes for consumers. However, the update, KB4340917, does include a fix for Active Directory domains which resulted in some enrolling issues with enterprise devices. There are a number of other enterprise-focused fixes included in the update, though it doesn’t seem to include any security patches.

Either way, here is the changelog for the update, which brings the build number to 17134.191:

• Addresses an issue that causes devices within Active Directory or Hybrid AADJ++ domains to unexpectedly unenroll from Microsoft Intune or third-party MDM services after installing provisioning package updates (PPKG). This issue occurs on devices that are subject to the Auto MDM Enrollment with AAD Token Group Policy. If you ran the script Disable-AutoEnrollMDMCSE.PS1 as a workaround for this issue, run Enable-AutoEnrollMDMCSE.PS1 from a PowerShell window in Administrator mode after installing this update.
• Addresses additional issues with updated time zone information.
• Improves the ability of the Universal CRT Ctype family of functions to handle EOF as valid input.
• Addresses an issue with registration in the “Push to Install” service.
• Addresses an issue with Roaming User Profiles where the AppData\Local and AppData\Locallow folders are incorrectly synchronized at user logon and logoff. For more information, see KB4340390.
• Addresses issues related to peripherals that use Quality of Service (QoS) parameters for Bluetooth connections.
• Addresses an issue that causes SQL Server memory usage to grow over time when encrypting data using a symmetric key that has a certificate. Then, you execute queries that open and close the symmetric key in a recursive loop.
• Addresses an issue where using an invalid password in a wireless PEAP environment that has SSO enabled submits two authentication requests with the invalid password. The excess authentication request may cause premature account lockouts in environments with low account lockout thresholds. To enable the changes, add the new registry key DisableAuthRetry (Dword) on HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RasMan\PPP\EAP\26 using regedit, and set it to 1.
• Addresses an issue that prevents OpenType fonts from printing in Win32 applications.
• Addresses an issue with DNS Response Rate Limiting that causes a memory leak when enabled with LogOnly mode.
• Addresses an issue in a RemoteApp session that may result in a black screen when maximizing an app window on a secondary monitor.
• Addresses an issue in IME that causes unexpected finalization of strings during Japanese input in applications such as Microsoft Outlook.

Keep in mind that there’s a single known issue in this update, so you might want to avoid the update if the issue is affecting you. Otherwise, you can just grab the update from Windows Update as usual.