KB4467696 and KB4467691 fix AMD hardware security vulnerabilities

Reading time icon 3 min. read


Readers help support Windows Report. When you make a purchase using links on our site, we may earn an affiliate commission. Tooltip Icon

Read the affiliate disclosure page to find out how can you help Windows Report effortlessly and without spending any money. Read more

file association update

In this article, we are going to be looking at two more November 2018 Patch Tuesday updates – KB4467696 and KB4467691 – concerning Speculative Store Bypass. Both these updates are quality improvement updates. They do not contain any new operating system features.

Windows 10 KB4467696 and KB4467691

Improvements and Fixes

Both these update are working on the same problem:

Provides protections against an additional subclass of speculative execution side-channel vulnerability known as Speculative Store Bypass (CVE-2018-3639) for AMD-based computers. These protections aren’t enabled by default.

Known issues for KB4467696: OS Build 15063.1446:

After you install the August Preview of Quality Rollup or September 11, 2018 .NET Framework update, instantiation of SqlConnection can throw an exception.

Microsoft is working on a resolution and will provide an update in an upcoming releas

Known issues for KB4467691: OS Build 14393.2608

  1. After installing this update, installation and client activation of Windows Server 2019 and 1809 LTSC Key Management Service (KMS) (CSVLK) host keys do not work as expected.
  2. After installing this update, Windows Server 2016 promotions that create non-root domains fail in forests in which optional features like Active Directory recycle have been enabled. The error is, “The replication operation encountered a database error”.
  3. After you install the August Preview of Quality Rollup or September 11, 2018 .NET Framework update, instantiation of SqlConnection can throw an exception.

As usual, Microsoft says they are working on a resolution and will provide an update in an upcoming release for Issues #1, #2 and #3.

However, for Issue #2 , Microsoft suggests the following: “Use servers running Windows Server 2012 R2 or earlier to promote the first domain controller in a non-root domain until a resolution is available.”

Both updates include all or some of the following Security updates to:

  • Microsoft Edge
  • Internet Explorer
  • Windows Scripting
  • Windows App Platform and Frameworks
  • Windows Graphics
  • Windows Wireless Networking
  • Windows Kernel
  • Windows Server

Please note the following from Microsoft:

Windows 10 version 1607, reached end of service on April 10, 2018. Devices running Windows 10 Home or Pro editions will no longer receive monthly security and quality updates that contain protection from the latest security threats.

To continue receiving security and quality updates, Microsoft recommends updating to the latest version of Windows 10. Windows 10 Enterprise and Windows 10 Education editions will receive additional servicing at no cost. Please check Microsoft’s support pages here and here for more specific information.

To get the stand-alone packages for these two updates, click KB4467696 and KB4467691. You can find Microsoft’s official support pages for KB4467696 here and KB4467691 here.

RELATED STORIES YOU SHOULD CHECK OUT:

More about the topics: patch tuesday, windows 10 news, windows 10 updates