KB4467696 and KB4467691 fix AMD hardware security vulnerabilities

Giles Ensor avatar. By: Giles Ensor
2 minute read
file association update

Home » News » KB4467696 and KB4467691 fix AMD hardware security vulnerabilities

In this article, we are going to be looking at two more November 2018 Patch Tuesday updates – KB4467696 and KB4467691 – concerning Speculative Store Bypass. Both these updates are quality improvement updates. They do not contain any new operating system features.

Windows 10 KB4467696 and KB4467691

Improvements and Fixes

Both these update are working on the same problem:

Provides protections against an additional subclass of speculative execution side-channel vulnerability known as Speculative Store Bypass (CVE-2018-3639) for AMD-based computers. These protections aren’t enabled by default.

Known issues for KB4467696: OS Build 15063.1446:

After you install the August Preview of Quality Rollup or September 11, 2018 .NET Framework update, instantiation of SqlConnection can throw an exception.

Microsoft is working on a resolution and will provide an update in an upcoming releas

Known issues for KB4467691: OS Build 14393.2608

  1. After installing this update, installation and client activation of Windows Server 2019 and 1809 LTSC Key Management Service (KMS) (CSVLK) host keys do not work as expected.
  2. After installing this update, Windows Server 2016 promotions that create non-root domains fail in forests in which optional features like Active Directory recycle have been enabled. The error is, “The replication operation encountered a database error”.
  3. After you install the August Preview of Quality Rollup or September 11, 2018 .NET Framework update, instantiation of SqlConnection can throw an exception.

As usual, Microsoft says they are working on a resolution and will provide an update in an upcoming release for Issues #1, #2 and #3.

However, for Issue #2 , Microsoft suggests the following: “Use servers running Windows Server 2012 R2 or earlier to promote the first domain controller in a non-root domain until a resolution is available.”

Both updates include all or some of the following Security updates to:

  • Microsoft Edge
  • Internet Explorer
  • Windows Scripting
  • Windows App Platform and Frameworks
  • Windows Graphics
  • Windows Wireless Networking
  • Windows Kernel
  • Windows Server

Please note the following from Microsoft:

Windows 10 version 1607, reached end of service on April 10, 2018. Devices running Windows 10 Home or Pro editions will no longer receive monthly security and quality updates that contain protection from the latest security threats.

To continue receiving security and quality updates, Microsoft recommends updating to the latest version of Windows 10. Windows 10 Enterprise and Windows 10 Education editions will receive additional servicing at no cost. Please check Microsoft’s support pages here and here for more specific information.

To get the stand-alone packages for these two updates, click KB4467696 and KB4467691. You can find Microsoft’s official support pages for KB4467696 here and KB4467691 here.

RELATED STORIES YOU SHOULD CHECK OUT:

Discussions

Next up

How to solve Something went wrong Skype error

Emmanuel Johnson avatar. By: Emmanuel Johnson
3 minute read

Did you ever encounter Something went wrong Skype error? If you are encountering like this, then this article will guide you in solving it. This […]

Continue Reading

Edge browser changes User Agent automatically for top performance

Rabia Noureen avatar. By: Rabia Noureen
2 minute read

Chromium-based Edge browser will offer high quality content by automatically switching the user agent. In this manner, Chromium-based technology ensures the browser is compatibility with […]

Continue Reading

McAfee security tools are incompatible with Windows updates

Rabia Noureen avatar. By: Rabia Noureen
2 minute read

Microsoft released a new series of Patch Tuesday updates at the beginning of April. However, the updates didn’t go well with some of the leading […]

Continue Reading