What’s New in Windows 10 Patch KB50004237
The KB5004237 patch builds version of Windows 10 in 2004, 20H2, and 21H1 19041.1110, 19042.1110 and 19042.1110, respectively. This link includes the following improvements:
- Fixed an issue that made printing difficult on some printers. This problem affects many products and models, but primarily receipt or label printers connected via a USB port.
- Configuration support removed PerformTicketSignature Permanently enable application mode for CVE-2020-17049. For additional information and steps on enabling full security on domain controller servers, see Kerberos S4U conversion deployment management for CVE-2020-17049.
- Advanced Encryption Standard (AES) encryption protection added CVE-2021-33757. For more information, see KB5004605.
- Fixed a vulnerability where key update tokens were not highly encrypted. This issue will allow tokens to be reused until the token expires or is renewed. For more information on this issue, see CVE-2021-33779.
- Windows Application Security Updates, Windows Admin, Windows Basics, Windows Authentication, Windows User Account Control (UAC), Operating System Security, Windows Virtualization, Windows Linux, Windows Kernel, Windows Engine Microsoft Script, HTML Engine Script.
Overall update known issues
- Devices with Windows installations created from custom offline media or custom ISO image may lose the Microsoft Edge legacy without being replaced by the new Microsoft Edge after the upgrade. This problem only occurs when creating ISO images or custom offline media without first installing the Independent Servicing Stack (SSU) update released on or after March 29, 2021.
- To avoid this problem, be sure to embed the SSU, which was first released on March 29, 2021, in a custom offline media or ISO image before embedding it in the LCU. To do this with the SSU and LCU combo packages currently in use for Windows 10 version 20H2 and Windows 10 version 2004, you need to extract SSU from the combo package.