The major monthly maintenance for October 2023 introduces two cumulative updates for Windows 11, namely KB5031358 and KB5031354. The first is designed for 21H2, while the second is tailored for 22H2.
This Patch Tuesday holds significant importance for the operating system. It marks the final maintenance update for Windows 11 21H2, as Microsoft is discontinuing support for this version. Simultaneously, Windows 11 22H2 incorporates all the new features of Moment 4. These features are not unfamiliar, as they have been accessible through an optional update for some days. Now, users can expect automatic downloads and installations.
Regarding security, Microsoft fixes 75 vulnerabilities, 12 of which are considered critical. They concern the Layer 2 Tunneling protocol ( CVE-2023-38166 , CVE-2023-41765 , CVE-2023-41767 , CVE-2023-41768 , CVE-2023-41769 , CVE-2023-41770 , CVE-2023-41771 , CVE-2023-41773 , CVE-2023-41774 ), Microsoft Message Queuing ( CVE-2023-35349 , CVE-2023-36697 ), and the Virtual Trusted Platform module ( CVE-2023-36718 ). All this little world allows remote code execution.
Windows 11 21H2 and KB5031358
Upon installation, the operating system will advance to version 22000.2538. This numerical identifier serves as a straightforward means to verify the success of the installation. You can locate it by launching winver.exe in “Run” (WIN+R).
All the contents of the optional update for September 2023 (KB5030301) are present. The noteworthy highlight is the resolution of a bug affecting Excel. This bug can potentially cause the application to crash when attempting to share a PDF file in Excel.
Here is the release note
- New! This update completes the work to comply with the GB18030-2022 requirements. It removes and remaps characters for Microsoft Wubi input and Microsoft Pinyin U-mode input. You can no longer enter character codepoints that are not supported. All the required codepoints are up to date.
- This update supports daylight saving time (DST) changes in Greenland.
- This update changes the spelling of Ukraine’s capital from Kiev to Kyiv.
- This update addresses an issue that affects account lockout event 4625. The format of the event is wrong in the ForwardedEvents log. This occurs when an account name is in the user principal name (UPN) format.
- This update affects the Key Distribution Center (KDC) and user security identifiers (SID). KDC now reads the user SID from a certificate’s Subject Alternative Name (SAN). Because of this, mobile device management (MDM) providers can use offline templates to fill in the user SID. To learn more, see KB5014754.
- This update addresses an issue that is related to changes in the forwarding of events.
- This update addresses an issue that affects XPath queries on FileHash and other binary fields. It stops them from matching values in event records.
- This update addresses an issue that affects an Application Virtualization (App-V) environment. Copy operations within it stop working. This occurs after you install the April 2023 update.
- This update addresses an issue that affects the Simple Certificate Enrollment Protocol (SCEP) certificate. The system reports some SCEP certificate installations as failed. Instead, the system should report them as pending.
- This update addresses an issue that affects Microsoft Print to PDF. It uses the metadata for the name you sign in with as the author of a printed PDF. It should use the display name instead.
- This update addresses an issue that affects some USB printers. Microsoft Defender stops them from printing.
- This update addresses an issue that affects Windows Defender Application Control (WDAC). AppID Tagging policies might greatly increase how long it takes your device to start up.
- This update addresses an issue that affects IMEPad. It stops working. This occurs when you enter end-user-defined characters (EUDC).
- This update addresses an issue that affects application compatibility. It is related to Microsoft Defender for Endpoint.
- This update addresses an issue that affects Remote Apps. The display of some elements is not aligned correctly.
- This update addresses an issue that affects the Microsoft Distributed Transaction Coordinator (DTC). It has a handle leak. Because of this, the system runs out of memory.
- This update addresses an issue that might make Windows stop responding. This might occur if you use Microsoft OneDrive files that NTFS compresses.
- This update addresses an issue that might cause a user-mode memory leak. It might occur when you call CopyFile()or MoveFile().
- This update addresses an issue that affects external binding. It fails. This occurs after you install Windows updates dated May 2023 or later. Because of this, there are issues that affect LDAP queries and authentication.
Windows 11 22H2 et KB5031354
We are facing an important update. Its installation allows the OS to upgrade to version 22621.2428. It offers all the content of the optional update KB5030310 for September 2023. It includes all the new features of Moment 4.
Here are the three most notable facts.
Perhaps one of the most notable advancements is the introduction of Copilot, an AI-powered assistant. Its goal is to make the OS more user-friendly and intelligent. Its capabilities are currently limited to a few commands, such as taking screenshots or switching to dark mode. At the same time, Windows 11 is enriched with a new backup application designed to facilitate the inclusion of new content on OneDrive. This will apply to certain folders, settings, and customizations. This application is not intended to compete with specialized backup utilities.
Finally, the file explorer interface benefits from significant work with modifications, notably a movement of the address and the toolbar in order to offer an environment close to that of a web browser. The “Gallery” module is dedicated to managing images and snapshots, adopting an approach similar to the chronological display of the Photos application. The information pane shows larger thumbnails and a new sharing option.
Here is the release note
Highlights
- New! This update introduces websites to the Recommended section of the Start menu. These websites will be personalized for you and come from your browsing history. This gives you quick access to the websites that are important to you. Using the shortcut menu, you can remove any website URL from the Recommended section. To turn off the feature, go to Settings > Personalization > Start. You can adjust settings for all recommended content on the Start menu on this Settings page. Commercial customers can manage this feature using a policy.
- This update addresses an issue that affects Microsoft Excel. It stops responding when you try to share a file as a PDF in Outlook.
- This update addresses an issue that affects the Korean touch keyboard. It completes the first character in the search box on the taskbar. This is not expected.
- This update addresses an issue that affects the search box tooltip. It does not appear in the correct position.
- This update addresses an issue that affects the search button. It disappears when you interact with the search flyout box.
- This update addresses an issue that affects sleep mode. After you resume sleep, a blank window appears that has the title “Windows Input Experience.”
- This update addresses an issue that affects iCloud Calendar and Contacts. Outlook fails to properly sync them when you use the iCloud for Windows app. To resume syncing, follow the steps in this Apple Support article.
Improvements
This non-security update includes quality improvements. When you install this KB:
- New! This update completes the work to comply with the GB18030-2022 requirements. It removes and remaps characters for Microsoft Wubi input and Microsoft Pinyin U-mode input. You can no longer enter character codepoints that are not supported. All the required codepoints are up to date.
- This update supports daylight saving time (DST) changes in Greenland.
- This update changes the spelling of Ukraine’s capital from Kiev to Kyiv.
- This update addresses an issue that affects account lockout event 4625. The format of the event is wrong in the ForwardedEvents log. This occurs when an account name is in the user principal name (UPN) format.
- This update affects the Key Distribution Center (KDC) and user security identifiers (SID). KDC now reads the user SID from a certificate’s Subject Alternative Name (SAN). Because of this, mobile device management (MDM) providers can use offline templates to fill in the user SID. To learn more, see KB5014754.
- This update addresses an issue that is related to changes in the forwarding of events.
- This update addresses an issue that affects events that have a TAB character. The events do not render, or you cannot forward them.
- This update addresses an issue that affects XPath queries on FileHash and other binary fields. It stops them from matching values in event records.
- This update addresses an issue that affects an Application Virtualization (App-V) environment. Copy operations within it stop working. This occurs after you install the April 2023 update.
- This update addresses an issue that affects Microsoft Print to PDF. It uses the metadata for the name you sign in with as the author of a printed PDF. It should use the display name instead.
- This update addresses an issue that affects some USB printers. Microsoft Defender stops them from printing.
- This update addresses an issue that affects Windows Defender Application Control (WDAC). AppID Tagging policies might greatly increase how long it takes your device to start up.
- This update addresses an issue that affects IMEPad. It stops working. This occurs when you enter end-user-defined characters (EUDC).
- This update addresses an issue that affects Remote Apps. The display of some elements is not aligned correctly.
- This update addresses an issue that affects the Microsoft Distributed Transaction Coordinator (DTC). It has a handle leak. Because of this, the system runs out of memory.
- This update addresses an issue that might make Windows stop responding. This might occur if you use Microsoft OneDrive files that NTFS compresses.
- This update addresses an issue that might cause a user-mode memory leak. It might occur when you call CopyFile() or MoveFile().
- This update addresses an issue that affects application compatibility. It is related to Microsoft Defender for Endpoint.
- This update addresses an issue that affects external binding. It fails. This occurs after you install Windows updates dated May 2023 or later. Because of this, there are issues that affect LDAP queries and authentication.
It is possible to manually retrieve these two updates for offline installation. Here are the direct links via the Microsoft Update Catalog online service: