KB4519998, KB4520011 provide protection against vulnerabilities

by Teodor Nechita
Teodor Nechita
Teodor Nechita
Software Managing Editor
Eager to help those in need, Teodor writes articles daily on subjects regarding Windows, Xbox, and all things tech-related. When not working, you may usually find him either... read more
Affiliate Disclosure
KB4519998 KB4520011 download

It is always good to have the latest version of Windows 10 installed, and that is why taking advantage of the October 2019 Patch Tuesday is a must.

These include cumulative updates for Windows 10 v1607 and v1507, namely KB4519998 and KB4520011.

These updates mainly focus on improved username and password verification, better security when using Internet Explorer and Microsoft Edge, and more.

KB4519998 and KB4520011 Changelog

Updates for both Windows 10 v1607 and v1507 contain several improvements and fixes, such as:

  • Addresses an issue that prevents netdom.exe from displaying the new ticket-granting ticket (TGT) delegation bit for the display or query mode.
  • Addresses an issue in security bulletin CVE-2019-1318 that may cause client or server computers that don’t support Extended Master Secret (EMS) RFC 7627 to have increased connection latency and CPU utilization. This issue occurs while performing full Transport Layer Security (TLS) handshakes from devices that don’t support EMS, especially on servers. EMS support has been available for all the supported versions of Windows since calendar year 2015 and is being incrementally enforced by the installation of the October 8, 2019 and later monthly updates.
  • Provides protections against a new subclass of speculative execution side-channel vulnerabilities, known as Microarchitectural Data Sampling, for 32-Bit (x86) versions of Windows (CVE-2019-11091, CVE-2018-12126, CVE-2018-12127, CVE-2018-12130). Use the registry settings as described in the Windows Client article. (These registry settings are enabled by default for Windows Client OS editions.)
  • Addresses an issue with applications and printer drivers that utilize the Windows JavaScript engine (jscript.dll) for processing print jobs.
  • Security updates to Internet Explorer, Microsoft Edge, Microsoft Scripting Engine, Windows Cryptography, Windows Authentication, Windows Storage and Filesystems, Windows Kernel, and Windows Server.

However, VKB4519998 and KB4520011 come with their own share of downsides.

For example, operations such as renaming files and folders that are on a Cluster Shared Volume may result in certain errors.

If you have automatic updates enabled, you’ll get KB4519998 or KB4520011 (depending on your Windows 10 version) on your PC by default.

You can also choose to update them manually from the Microsoft Update Catalog:

If you’ve already installed one of these updates and have encountered issues with them, let us know in the comments section below!

This article covers:Topics: