UPDATE 9/23: We are making Windows 11 Insider Preview Build 22000.194 available as an optional update for any Windows Insider on an eligible PC in the Release Preview Channel. We have also made the ISOs available for Build 22000.194 to download here.
We fixed a known issue that might prevent some users from opening or using certain built-in Windows apps or parts of some built-in apps. This issue occurs because of a Microsoft digital certificate that expired October 31, 2021. This issue might affect the following applications:
Snipping Tool
Touch Keyboard, Voice Typing, and Emoji Panel
Input Method Editor user interface (IME UI)
Getting started and Tips
We fixed a known issue that prevents the Start menu and Settings app from opening as expected (S-mode only).
We fixed an issue that affects the Appx PowerShell cmdlet functionality on PowerShell 7.1 and later.
We fixed an issue that causes some users to see an unexpected “bad image” error message dialog at startup.
We fixed an issue that causes searchindexer.exe to stop responding during a dismount operation in the remote desktop environment.
We fixed an issue that affects the opening of the SearchFilterHost.exe process.
We added support for the cancellation of daylight savings time for the Republic of Fiji for 2021.
We fixed an issue that causes devices that have certain processors to stop responding when waking from hibernation.
We fixed a COM initialization issue in dll that might cause the calling process to stop working.
We fixed an issue in the Hyper-V virtual machine bus (VMBus) that causes the Windows Subsystem for Linux (WSL) VM to occasionally time out when attaching disks. This issue also prevents the utility from starting.
We fixed an issue that affects the System Memory Management Unit’s (SMMU) fault handling after hibernation.
We fixed an issue that causes the system to stop working after you enable Hyper-V.
We fixed an issue that fails to apply machine Group Policy objects automatically at startup or in the background to devices on a domain that have certain processors.
We fixed an issue that causes the Server Manager cmdlet to return a failure. As a result, many Software Defined Data Center (SDDC) validations fail during the installation of optional features.
We added the option to configure an Internet Protocol version 4 (IPv4) maximum transmission unit (MTU) that is less than 576 bytes on an interface.
We fixed an issue that causes get-winevent to fail, and the error is an InvalidOperationException.
We fixed an issue that incorrectly renders some variable fonts.
We fixed an issue that displays glyphs at the wrong angle when you use the Meiryo UI font and other vertical fonts. These fonts are frequently used in Japan, China, or other countries in Asia.
We added a feature to facilitate certain cross-browser data transfers.
We fixed an issue that occurs when a dialog opens within Internet Explorer.
We fixed an issue in CLSID_InternetExplorer.
We fixed an issue that causes Internet Explorer to stop working when you copy and paste text while using the Input Method Editor (IME).
We fixed an issue that causes certain apps to stop responding to input. This issue occurs on devices that have a touchpad.
We fixed a touch keyboard deployment issue that affects WebView2 controls in Windows UI Library 3.0 (WinUI 3) applications.
We fixed a memory leak in ctfmon.exe that occurs when you switch between different edit clients.
We updated the phone number for Windows Activation for locales that have the wrong phone number.
We fixed a known issue that causes error codes 0x000006e4, 0x0000007c, or 0x00000709 when connecting to a remote printer that is shared on a Windows print server.
We fixed an issue that affects USB Print devices that support Internet Printing Protocol (IPP) Over USB. This issue prevents these USB Print devices from completing installation.
We fixed an issue that causes certain USB Print installers to report that they don’t detect the printer after you plug it in.
We fixed an issue where OS functionality could be improperly redirected when microsoft-edge: links are invoked.
We fixed an issue in the Windows audio system that might cause the audiodg.exe process to stop working, which results in a temporary loss of audio.
We fixed an issue that prevents Software-Defined Networking (SDN) virtual machines from working when you configure the Generic Routing Encapsulation (GRE) VPN bandwidth limitation.
We fixed an issue that might cause the return value of GetCommandLineA() to be lowercase in some developer scenarios.
We fixed a Primary Refresh Token (PRT) update issue that occurs when VPN users sign in using Windows Hello for Business when the VPN connection is offline. Users receive unexpected authentication prompts for online resources that are configured for user sign-in frequency (SIF) in Azure Active Directory-Conditional Access.
We fixed an issue that affects the Fast Identity Online 2.0 (FIDO2) credential provider and prevents the display of the PIN entry box.
We fixed an issue that causes Windows Defender Application Control to incorrectly compare two file version numbers.
We enhanced Microsoft Defender for Endpoint’s ability to identify and intercept ransomware and advanced attacks.
We fixed an issue that might cause Windows Mixed Reality to start when you put on a headset. This issue occurs even when you’ve turned off the option “Start Mixed Reality Portal when my headset’s presence sensor detects that I’m wearing it”.
We fixed an audio distortion issue that affects Xbox One and Xbox Series Audio peripherals and occurs when you use them with spatial audio.
We fixed an issue that causes the AltGr key to stop working if a remote desktop client is running or if RemoteApp was disconnected.
We fixed an issue that causes the edit button and the battery icon in Quick Settings to intermittently disappear.
We fixed an issue that affects the Focus Assist button in the notification area, and we provided an accessible name for screen readers.
We updated several aspects of Windows emoji. As part of an iterative and ongoing work, we have made the following improvements for this release:
Updated all emoji in the Segoe UI Emoji font to the Fluent 2D emoji style
Included support for Emoji 13.1, which:
Updated the emoji dictionary
Added the ability to search for Emoji 13.1 in all supported languages
Updated the Emoji and more panel so you can enter emoji in your applications
We fixed an issue that affects the display of the number of unread notifications; some numbers don’t appear in the center of the circle in the notification area.
We fixed an issue that affects the Start menu when you install a large number of apps and change the screen resolution. The app names appear on the Start menu, but the app icons are missing. This update might also improve the reliability of the Start menu when you use secondary monitors in mixed resolution scenarios.
We fixed an issue that causes flickering when you hover over icons on the taskbar; this issue occurs if you’ve applied a high contrast theme.
We updated the Start menu’s Ease of Access folder name to “Accessibility” to match our naming standard across Windows 11 (original release).
We fixed an issue that affects Microsoft Narrator users when they select Braille options in Settings.
We changed the screen color to blue when a device stops working or a stop error occurs as in previous versions of Windows.
We fixed an issue that causes some app icons in the Start’s All apps list to be cut off on the bottom after you change the screen resolution.
We fixed an issue that, under certain conditions, prevents the keyboard focus rectangle from being visible when you use Task View, Alt-Tab, or Snap Assist.
We fixed an issue that affects apps that provide context (shortcut) menu items in File Explorer and desktop context menus. This issue occurs if these apps utilize Directory or Directory\Background registrations.
We fixed an issue that automatically removes the Serbian (Latin) Windows display language from a device .
We fixed an issue that displays the incorrect background for the iFLY Simplified Chinese IME icon in the notification area.
We fixed an issue that displays a blank space on the bottom of the Touch keyboard when you close the keyboard while the Suggestion UI is expanded.
We fixed reliability issues that prevent the display of File Explorer and desktop shortcut menus. This issue often occurs when you choose to use a single click to open an item.
We added an option for you to choose whether to automatically turn on Focus Assist for the first hour after a Windows feature update.
We improved the animation performance of icons on the taskbar.
We fixed a reliability issue on the lock screen that affects the rendering of the network status text.
We fixed volume control issues that affect Bluetooth audio devices.
We fixed an issue that causes File Explorer to stop working after you close a File Explorer window.
We fixed an issue that displays incorrect closed-caption shadows for some videos.
We fixed an issue that causes the Windows Update History page in the Settings app to display a summary count of zero (0) updates per category when there are updates listed.
We fixed an issue that occurs when you run a 32-bit application on a 64-bit version of Windows 11. If you call NetServerEnum(), it might return error 87 or error 1231.
We fixed an issue that prevents your device from starting up, and it becomes unresponsive because of licensing API calls.
We fixed an issue in the Windows Network File System (NFS) client that might prevent you from renaming a file after mounting an NFS share. This issue occurs if you rename the file using File Explorer but does not occur if you rename the file using command line.
We fixed an issue that prevents flash drives, such SD cards and certain USB drives, from appearing in the Defragment and Optimize Drives UI.
We fixed an issue that might cause a stop error in volmgr.sys when you delete a volume.
We fixed an issue that affects NTFS when you enable the update sequence number (USN) journal. NTFS performs unnecessary actions each time it performs a write operation, which affects I/O performance.
We enabled onunload events to create pop-up windows in Microsoft Edge Internet Explorer mode.
We fixed a known issue that might prevent apps, such as Kaspersky apps, from opening after you attempt to repair or update the apps using the Microsoft Installer (MSI).
We improved the reliability of application installations on ARM64 devices.
We updated daylight savings time to start in February 2022 instead of March 2022 in Jordan.
We fixed an issue that causes ARM64 devices to stop responding when they hibernate or resume from hibernation.
We fixed an issue that might prevent some image editing programs from rendering colors correctly on certain high dynamic range (HDR) displays. This frequently affects white colors that might display in bright yellow or other colors.
We fixed an issue that affects predictive pre-rendering in Microsoft Edge Internet Explorer mode.
We fixed an issue that sometime prevents you from entering strings in the Input Method Editor (IME).
We fixed an issue that causes the audio service to stop responding on some devices that support hardware-accelerated Bluetooth audio.
We fixed an issue in which the text that informs a customer about the Windows update progress is incorrect for Japanese.
We fixed an issue that affects icons for apps when the apps are not running. On the taskbar, these icons might display as active as if the apps are running.
We fixed an issue that might cause VPN profiles to disappear. This issue occurs when you use Microsoft Intune or a third-party mobile device management (MDM) tool to deploy VPN profiles on Windows 11 (original release).
We fixed an issue that affects applications that are written to only integrate with Azure Active Directory (AAD). These applications will not work on machines that are joined to Active Directory Federation Services (ADFS).
We fixed an issue that might cause the Get-TPM PowerShell command to fail when it attempts to report Trusted Platform Module (TPM) information. The command fails with the error, “0x80090011 Microsoft.Tpm.Commands.TpmWmiException,Microsoft.Tpm.Commands.GetTpmCommand”.
We fixed an issue that causes a remote desktop protocol (RDP) session to disconnect or the screen to be blank for Server Core. This issue occurs when you install the AppCompat feature.
We fixed an issue that affects windows.system.profile.retailinfo.dll.
We fixed some issues that affect File Explorer’s performance when you browse for files and select files.
We added a new Your Microsoft Account page to the Accounts category in Windows Settings for Home and Professional editions.
We fixed an issue that incorrectly shows the volume icon in the taskbar as muted.
We fixed a reliability issue that causes File Explorer and desktop context menus to stop working.
We fixed an issue that fails to pass the Shift KeyUp event to an application when you use the Korean IME.
We added the HelpWith feature, which uses Microsoft Bing technologies to suggest Help topics that are relevant for each Settings page.
We fixed an issue that prevents the touch keyboard from appearing on the lock screen when a device has a Microsoft account (MSA).
We fixed an issue that affects the loading of badging information on the taskbar, which sometimes causes a device to stop working.
We fixed an issue that prevents some options from appearing on the Win + X menu.
We fixed an issue that causes a device to stop working when it’s connected to multiple displays.
We fixed an issue that affects the auto-hide feature of the taskbar. The taskbar might not reliably appear when you hover over the primary or secondary display.
We fixed an issue that sometimes prevents you from using the Chinese Simplified IME.
We fixed an issue that might prevent icons from appearing on the taskbar of a secondary display.
We fixed an issue that fails to install certain printer companion applications when the printer device driver is installing.
We fixed an issue that displays outdated battery percentages for connected Bluetooth devices on the Bluetooth and other devices page in Settings.
We fixed an issue that prevents IP cameras from connecting and streaming to certain DirectShow (DShow) applications.
We improved the auto brightness algorithm to provide a better response under low light conditions on all the supported systems.
We fixed an issue that causes lsass.exe to stop working and the device restarts. This issue occurs when you query Windows NT Directory Services (NTDS) counters after the NTDS service has stopped.
We fixed an issue that causes a deadlock in the WebDav redirector. This issue occurs when you attempt to read a file from the local TfsStore, which causes the system to stop responding.
We fixed a performance regression issue that occurs when you enable the update sequence number (USN) journal.
We fixed an issue that fails to apply the Group Policy Object (GPO) “Do not allow compression on all NTFS Volume” in some cases.
We fixed an issue that prevents Robocopy from retrying the file copy process.
We fixed an issue that causes Windows to stop working and generates the error, “IRQL_NOT_LESS_OR_EQUAL”.
We fixed a memory leak that occurs when you call WinVerifyTrust(). This issue occurs if verification fails for the first signature of a file that has multiple signatures.
We fixed an issue that occurs when Windows Server 2016 runs as a terminal server using certain cloud computing virtual desktop infrastructure (VDI). As result, the servers randomly stop responding after running for a period of time. This also addresses a regression that proactively checks to ensure that the CSharedLock in rpcss.exe is set correctly to avoid a deadlock.
We fixed an issue that might cause the time zone list in Settings to appear blank for users who are not administrators.
We fixed an issue that affects the Windows search service and occurs when you query using the proximity operator.
We fixed an issue that fails to show the Startup impact values in Task Manager.
We fixed an issue that prevents ShellWindows() from returning the InternetExplorer object when iexplore.exe runs in the Microsoft Edge Internet Explorer mode context.
We provided the ability to share cookies between Microsoft Edge Internet Explorer mode and Microsoft Edge.
We fixed an issue that affects dialog boxes in Microsoft Edge Internet Explorer mode.
We fixed an issue that causes Microsoft Edge Internet Explorer mode to stop working when you press the F1 key.
We fixed an issue that causes the improper cleanup of Dynamic Data Exchange (DDE) objects. This prevents session teardown and causes a session to stop responding.
We fixed an issue that prevents printing from operating properly for some low integrity process apps.
We introduced support for Windows Hello for Business Cloud Trust. This is a new deployment model for hybrid deployments of Windows Hello for Business. It uses the same technology and deployment steps that support on-premises single sign-on (SSO) for Fast IDentity Online (FIDO) security keys. Cloud Trust removes the public-key infrastructure (PKI) requirements for deploying Windows and simplifies the Windows Hello for Business deployment experience.
We fixed an issue that prevents you from unloading and reloading drivers when the drivers are protected Hypervisor-protected Code Integrity (HVCI).
We fixed an issue that affects the Silent BitLocker enablement policy and might unintentionally add a Trusted Platform Module (TPM) protector.
We fixed a reliability issue that affects the use of the Remote Desktop app to mount a client’s local drive to a terminal server session.
We fixed an issue that displays right-to-left (RTL) language text as left justified on File Explorer command menus and context menus.
We fixed an issue that prevents you from reaching the LanguagePackManagement configuration service provider (CSP) using the Windows Management Instrumentation (WMI) Bridge.
We opened Microsoft Office files that are in the Start menu’s recommended section in the browser. This occurs if the device does not have an appropriate Microsoft Office license and the file is stored in Microsoft OneDrive or Microsoft SharePoint. If there is a license, the file will open in the desktop app instead.
We fixed an issue that causes a mismatch between a Remote Desktop session’s keyboard and the Remote Desktop Protocol (RDP) client when signing in.
We added the clock and date to the taskbars of other monitors when you connect other monitors to your device.
We added weather content to the left side of the taskbar if the taskbar is aligned in the center. When you hover over the weather, the Widgets panel will appear on the left side of the screen and will disappear when you stop hovering over the area.
We added the ability to quickly share open application windows directly from your taskbar to a Microsoft Teams call.
We fixed an issue that causes incorrect tooltips to appear in an empty area on the taskbar after you hover over other icons like battery, volume, or Wi-Fi.
We fixed an issue that occurs when you try to write a service principal name (SPN) alias (such as www/FOO) and HOST/FOO already exists on another object. If the RIGHT_DS_WRITE_PROPERTY is on the SPN attribute of the colliding object, you receive an “Access Denied” error.
We fixed an issue that disconnects Offline Files on the network drive after you restart the OS and sign in. This issue occurs if the Distributed File System (DFS) path is mapped to the network drive.
We fixed an issue that displays the authentication dialog twice when you mount a network drive.
We added support for hot adding and the removal of non-volatile memory (NVMe) namespaces.
We added the ability to instantly mute and unmute a Microsoft Teams call from your taskbar. During a call, an active microphone icon will appear on the taskbar so that you can easily mute the audio without having to return to the Microsoft Teams call window.
New! We displayed up to three high priority toast notifications simultaneously. This feature is for apps that send notifications for calls, reminders, or alarms using Windows notifications in the OS. As a result, up to four toast notifications might appear simultaneously–three high priority notifications and one normal priority notification.
We fixed an issue that turns off auto-startup for Universal Windows Platform (UWP) apps after you upgrade the OS.
We fixed an issue that causes SystemSettings.exe to stop working.
We fixed an issue that affects searchindexer.exe and prevents Microsoft Outlook’s offline search from returning recent emails.
We fixed an issue that increases the startup time for Windows. This issue occurs because a UI thread in a networking API stops responding when a 5G wireless wide area network (WWAN) device is slow to wake up.
We fixed a memory leak in the wmipicmp.dll module that causes a lot of false alarms in the System Center Operations Manager (SCOM) datacenter monitoring system.
We fixed an issue that incorrectly returns the Execution Policy settings from the registry.
We fixed an issue in which modern browsers fail to correctly render HTML that is generated by gpresult/h.
We fixed an issue that causes an “Access denied” exception for a file during a PowerShell test for AppLocker.
We fixed an issue that causes the Remote Desktop Service (RDS)server to become unstable when the number of signed in users exceeds 100. This prevents you from accessing published applications using RDS on Windows Server 2019.
We fixed an issue that returns an error message when you browse for a domain or organizational unit (OU). This issue occurs because of improper zeroing out of memory.
We fixed an issue that causes the Group Policy Management Console to stop working after you close it. The system logs Application Error Event ID 1000 and the error, 0xc0000005 (STATUS_ACCESS_VIOLATION); the failing module is GPOAdmin.dll.
We fixed an issue that might cause the Group Policy Service to stop processing telemetry information for Group Policy Registry Preferences.
We fixed a stop error (0xD1, DRIVER_IRQL_NOT_LESS_OR_EQUAL) in the DirectX kernel component.
We fixed an issue that might cause Kerberos.dll to stop working within the Local Security Authority Subsystem Service (LSASS). This occurs when LSASS processes simultaneous Service for User (S4U) user-to-user (U2U) requests for the same client user.
We fixed an issue that affects the Key Distribution Center (KDC) Proxy. The KDC Proxy cannot properly obtain Kerberos tickets for signing in to Key Trust Windows Hello for Business.
We added support for Microsoft Account (MSA) Pass-through scenarios in Azure Active Directory(AAD) Web Account Manager (WAM).
We fixed an issue that logs Event ID 37 during certain password change scenarios, including failover cluster name object (CNO) or virtual computer object (VCO) password changes.
We fixed an issue that prevents the User Account Control (UAC) dialog from correctly showing the application that is requesting elevated privileges.
We fixed an issue that might cause a Microsoft OneDrive file to lose focus after you rename it and press the Enter key.
We returned the corresponding Settings page when you search for the word widgets.
We fixed an issue that prevents Event 4739 from displaying the new values of certain attributes after a policy change.
We fixed an issue that causes the Move-ADObject command to fail when you move computer accounts across domains. The error message is, “Multiple values were specified for an attribute that can have only one value”.
We fixed an issue that prevents you from accessing Server Message Block (SMB) shares using an IP Address when SMB hardening is enabled.
We fixed an issue that causes stop error 0x1E in the SMB Server (srv2.sys).
We fixed an issue that causes a mismatch between NetBIOS and DNS Active Directory domain names when you create a cluster.
New! We added improvements for servicing the Secure Boot component of Windows.
We fixed an issue that causes the AppX Deployment Service (AppXSvc) to stop working after you install certain MSIX apps.
We fixed a race condition that occurs early in the startup process that might cause a stop error.
We improved the Autopilot client to process updated Trusted Platform Module (TPM) capabilities that support self-deployment and pre-provisioning scenarios.
We changed the timeout for Azure Active Directory (Azure AD) registration from 60 minutes to 90 minutes for hybrid Azure AD-joined Autopilot scenarios. This also addresses a race condition that causes an exception at timeout.
We fixed an issue that delays OS startup by approximately 40 minutes.
We fixed a memory leak issue that affects Windows systems that are in use 24 hours each day of the week.
We fixed an issue that affects the Dynamic Host Configuration Protocol (DHCP) option 119 (Domain Search List) by preventing the use of the connection-specific DNS Suffix Search List.
We fixed an issue that affects the Title attribute in Microsoft Ege IE mode.
We fixed an issue in which mobile device management (MDM) policies were not allowed on Windows Enterprise editions that were upgraded to Enterprise using Azure AD-joined subscription entitlement.
We fixed an issue that might cause video subtitles to be partially cut off.
We fixed an issue that incorrectly aligns video subtitles.
We fixed an issue that causes Kerberos authentication to fail, and the error is “0xc0030009 (RPC_NT_NULL_REF_POINTER)”. This occurs when a client machine attempts to use the Remote Desktop Protocol (RDP) to connect to another machine while Remote Credential Guard is enabled.
We fixed an issue that causes Windows to go into BitLocker recovery after a servicing update.
We fixed an issue that prevents retrieval of the Endorsement Key (EK) certificate from the TPM device.
We fixed an issue that might fail to copy the security portion of a Group Policy to a machine.
We fixed an issue that prevents the instantiation of the Microsoft RDP Client Control, version 11 and higher, inside a Microsoft Foundation Class (MFC) dialog.
We displayed the temperature on top of the weather icon on the taskbar.
We fixed an issue that prevents you from using the minimize, maximize, and close buttons on a maximized app window. This issue occurs because the Notification Center keeps the input focus.
We fixed an issue that might occur when you use Netdom.exe or the Active Directory Domains and Trusts snap-in to list or modify name suffixes routing. These procedures might fail. The error message is, “Insufficient system resources exist to complete the requested service.” This issue occurs after installing the January 2022 security update on the primary domain controller emulator (PDCe).
We fixed an issue that causes the primary domain controller (PDC) of the root domain to generate warning and error events in the System log. This issue occurs when the PDC incorrectly tries to scan outgoing-only trusts.
We fixed an issue that occurs when you map a network drive to a Server Message Block version 1 (SMBv1) share. After restarting the OS, you cannot access that network drive.
We fixed an issue that affects an SMB multichannel connection and might generate a 13A or C2 error.
We fixed an issue that damages a pool when a Client-Side Caching (CSC) cleanup method fails to delete a resource that was created.
We fixed an issue that might cause the server to lock up because the nonpaged pool grows and uses up all memory. After a restart, the same issue occurs again when you try to repair the damage.
We reduced the overhead of resource contention in high input/output operations per second (IOPS) scenarios that have many threads contending on a single file.
New! We improved the Family Safety verification experience for a child account when you send a request for additional screen time.
New! Windows spotlight on the desktop brings the world to your desktop with new, daily background pictures. With this feature, new pictures will automatically appear as your desktop background. This feature already exists for the lock screen. You can also find out more information about each background picture on the web. To turn on this feature, go to Settings > Personalization > Background > Personalize your background. Choose Windows spotlight.
We fixed an issue that causes the Input (TextInputHost.exe) app to stop working.
We fixed an issue in searchindexer.exe that affects the search for shapes in Microsoft Visio.
We prevented users from bypassing forced enrollment by disconnecting from the internet when they sign in to Azure Active Directory (AAD).
We fixed an issue that might run an AnyCPU application as a 32-bit process.
We fixed an issue that prevents Azure Desired State Configuration (DSC) scenarios that have multiple partial configurations from working as expected.
We fixed an issue that affects remote procedure calls (RPC) to the Win32_User or Win32_Group WMI class. The domain member that runs the RPC contacts the primary domain controller (PDC). When multiple RPCs occur simultaneously on many domain members, this might overwhelm the PDC.
We fixed an issue that occurs when adding a trusted user, group, or computer that has a one-way trust in place. The error message, “The object selected doesn’t match the type of destination source” appears.
We fixed an issue that fails to display the Application Counters section in the performance reports of the Performance Monitor tool.
We fixed an issue that fails to maintain the display brightness after you change the display mode.
We fixed an issue that might affect some apps that use d3d9.dll with certain graphics cards and might cause those apps to close unexpectedly.
We fixed an issue that affects the IE mode window frame.
We fixed an issue that affects Group Policy templates.
We fixed an issue that prevents internet shortcuts from updating.
We fixed an issue that causes some users to see a black screen when they sign in and sign out of Windows.
We fixed an issue that causes an Input Method Editor (IME) to discard a character if you enter the character while the IME is converting previous text.
We fixed an issue that affects the Desktop Duplication API, which affects display orientation and causes a black image to appear on the screen.
We fixed an issue that causes print failures when a low integrity level (LowIL) application prints to a null port.
We fixed an issue that prevents BitLocker from encrypting when you use the silent encryption option.
We fixed an issue that leads to a false negative when you run scripts while Windows Defender Application Control (WDAC) is turned on. This might cause AppLocker events 8029, 8028, or 8037 to appear in the log when they should not .
We fixed an issue that occurs when you apply multiple WDAC policies. Doing that might prevent scripts from running when the policies allow scripts to run.
We fixed an issue that affects the Trusted Platform Module (TPM) driver, which might increase the system’s startup time.
We fixed an issue that might cause the Remote Desktop client application to stop working when you end a session.
We fixed an issue that affects the behavior and shape orientation of a mouse cursor for Microsoft Defender Application Guard (MDAG), Microsoft Office, and Microsoft Edge. This issue occurs when you turn on a virtual graphics processing unit (GPU).
We fixed an issue that causes Widgets to appear on the wrong monitor when you hover over the Widgets icon on the taskbar.
We added animation to the Widgets icon when you click or tap the icon and the taskbar is aligned on the left.
We fixed an issue that affects the rendering of the default Widgets icon on a taskbar that is aligned in the center.
We fixed an issue that causes blurry app icons in Search results when the display’s dots per inch (dpi) scaling is greater than 100%.
We fixed an issue that causes file copying to be slower because of a wrong calculation of write buffers within cache manager.
We fixed an issue that might cause a system to stop responding when a user signs out if Microsoft OneDrive is in use.
We fixed a known issue that might prevent recovery discs (CD or DVD) from starting if you created them using the Backup and Restore (Windows 7) app in Control Panel. This issue occurs after installing Windows updates released January 11, 2022 or later.
Windows 11, version 22H2 Build 22621 is being made available in the Release Preview Channel for Windows Insider Program for Business participants to validate on devices in their organizations. See the blog post for additional information about commercial devices.
We are also making this build available to any Windows Insider in the Release Preview Channel via our “seeker” experience in Windows Update. This means Insiders currently in the Release Preview Channel that meet the Windows 11 hardware requirements can go to Settings and Windows Update and choose to download and install Windows 11, version 22H2 Build 22621 if they want. Once an Insider updates their PC to Windows 11, version 22H2, they will continue to automatically receive new servicing updates through Windows Update (the typical monthly update process).
New! We added IP address auditing for incoming Windows Remote Management (WinRM) connections in security event 4262 and WinRM event 91. This We fixed an issue that fails to log the source IP address and machine name for a remote PowerShell connection.
New! We added Server Message Block (SMB) redirector (RDR) specific public File System Control (FSCTL) code FSCTL_LMR_QUERY_INFO.
New! We made the SMB client and SMB server cipher suite order configurable using PowerShell.
New! We introduced search highlights. Search highlights will roll out to Windows 11 customers over the next several weeks. We are taking a phased and measured approach. Broad availability will occur in the coming months.
We fixed an issue that might cause an upgrade to Windows 11 (original release) to fail.
We fixed an issue that displays Japanese characters incorrectly in PowerShell.
We fixed an issue that affects the Cloud Clipboard service and prevents syncing between machines after a period of inactivity.
We fixed an issue that fails to hide the Windows Sandbox startup screen after Sandbox starts to run.
We fixed an issue that causes a device that has a Japanese system locale to stop working when you disable end-user-defined characters (EUDCs).
We provided the ability to use a network proxy during Universal Print operations.
We fixed an issue that might cause playback of consecutive video clips to fail in games that use DirectX 12 (DX12).
We fixed an issue that causes certain games to stop working if they use the XAudio API to play sound effects.
We fixed an issue that affects some certificates chains to Root Certification Authorities that are members of the Microsoft Root Certification Program. For these certificates, the certificate chain status can be, “This certificate was revoked by its certification authority”.
We fixed an issue that prevents the use of Encrypted File System (EFS) files over a Web-based Distributed Authoring and Versioning (WebDAV) connection.
We fixed an issue that causes a domain controller to incorrectly write Key Distribution Center (KDC) event 21 in the System event log. This occurs when the KDC successfully processes a Kerberos Public Key Cryptography for Initial Authentication (PKINIT) authentication request with a self-signed certificate for key trust scenarios (Windows Hello for Business and Device Authentication).
We fixed an issue that prevents Bluetooth from reconnecting to some audio devices after you restart the devices.
We fixed an issue that occurs when the Active Directory Lightweight Directory Service (LDS) resets the password for userProxy objects. The password reset fails with an error such as, “00000005: SvcErr: DSID-03380C23, problem 5003 (WILL_NOT_PERFORM), data 0”.
We fixed an issue that causes Microsoft NTLM authentication using an external trust to fail. This issue occurs when a domain controller that contains the January 11, 2022 or later Windows update services the authentication request, is not in a root domain, and does not hold the Global Catalog role. The affected operations might log the following errors:
The security database has not been started.
The domain was in the wrong state to perform the security operation.
0xc00000dd (STATUS_INVALID_DOMAIN_STATE).
We fixed an issue that causes the LocalUsersAndGroups configuration service provider (CSP) policy to fail when you modify the built-in Administrators group. This issue occurs if the local Administrator account isn’t specified in the membership list when you perform a replace operation.
We fixed an issue in which malformed XML inputs might cause an error in DeviceEnroller.exe. This prevents CSPs from being delivered to the device until you restart the device or correct the XML.
We fixed an issue that might cause Windows 11 (original release) to stop working when you install an application and there is no network connectivity.
We updated the Start menu to display Windows PowerShell when you right-click (Win + X) the Start button after you have uninstalled Windows Terminal.
We changed the name of the Your Phone app to Phone Link on the Settings page.
We fixed an issue that caused the Microsoft Surface Dial customization settings page to stop working.
New! We added Server Message Block (SMB) redirector (RDR) specific public File System Control (FSCTL) code FSCTL_LMR_QUERY_INFO.
New! We added support for Transport Layer Security (TLS) 1.3 in Windows client and server Lightweight Directory Access Protocol (LDAP) implementations.
New! We added support for Transport Layer Security (TLS) 1.3 in Windows client and server Lightweight Directory Access Protocol (LDAP) implementations.
We updated the Remove-Item cmdlet to properly interact with Microsoft OneDrive folders
We fixed an issue that causes the Take Photo button to disappear when you use a common file dialog to open the camera.
We fixed an issue that prevents devices from receiving an offer from Windows Update for the same extension driver when that extension driver is already installed without the base driver.
We fixed an issue that causes install from media (IFM) creation for Active Directory to fail with the error, “2101 JET_errCallbackFailed”.
We fixed an issue that occurs when the Active Directory Lightweight Directory Service (LDS) resets the password for userProxy objects. The password reset fails with an error such as, “00000005: SvcErr: DSID-03380C23, problem 5003 (WILL_NOT_PERFORM), data 0”.
We fixed an issue that occurs when the Active Directory Lightweight Directory Service (AD LDS) resets the password for userProxy objects. When you try to reset someone else’s password and you are authenticated using a simple bind, the password reset fails. The error is like, “00000005: SvcErr: DSID-03380C23, problem 5003 (WILL_NOT_PERFORM), data 0”.
We fixed an issue that prevents Microsoft Edge from being available in Windows Sandbox.
New! We provided the ability for you to consent to receive urgent notifications when focus assist is on.
New! We provided the option for eligible devices to update to a newer Windows 11 version during the out-of-box experience (OOBE) when you first sign in. If you choose to update to a newer version, the update process will begin shortly after the update is installed on the device.
New! We restored functionality for Windows Autopilot deployment scenarios that are affected by the security mitigation for hardware reuse. This update removed the one-time use restriction for self-deploying mode (SDM) and pre-provisioning (PP). This update also re-enabled any User Principal Name (UPN) display in user-driven mode (UDM) deployments for approved manufacturers.
We fixed an issue in UIAutomation() that causes an application to stop working.
We fixed an issue that prevents the Startup Task API from working as expected for certain apps.
We improved the reliability of a push-button reset after an OS upgrade.
We fixed an issue that makes the tenant restrictions event logging channel inaccessible if you remove the EN-US language pack.
We fixed an issue that causes certificate-based machine account authentication to fail in some circumstances after you install the May 10, 2022 security updates on domain controllers.
We fixed an issue that affects the Arm64EC code you build using the Windows 11 software development kit (SDK).
We updated the Remove-Item cmdlet to properly interact with Microsoft OneDrive folders.
We fixed an issue that prevents troubleshooters from opening.
We fixed an issue that causes port mapping conflicts for containers.
We fixed an issue that causes Code Integrity to continue trusting a file after the file has been modified.
We fixed an issue that might cause Windows to stop working when you enable Windows Defender Application Control with the Intelligent Security Graph feature turned on.
We deployed search highlights to devices. To access the policy for search highlights (on a device that has installed the June 2022 Cumulative Update Preview or July 2022 monthly quality update), go to C:\Windows\PolicyDefinitions and locate admx. For your convenience, we will be publishing an updated version of the Administrative Templates (.admx) for Windows 11, version 21H2 to the Microsoft Download Center soon.
We fixed an issue that causes exe to stop working when you use the play and pause keyboard buttons on certain devices.
We fixed an issue that causes exe to stop working when you use the Start menu’s context menu (Win + X) and an external monitor is connected to your device.
We fixed an issue that displays a blank window that you cannot close when you hover over the search icon on the taskbar.
We reduced the overhead of resource contention in high input/output operations per second (IOPS) scenarios that have many threads contending on a single file.
We fixed an issue that causes the Windows profile service to fail sporadically. The failure might occur when signing in. The error message is, “gpsvc service failed to sign in. Access denied”.
We fixed an issue that prevents troubleshooters from opening.
We fixed an issue that might increase the latency of games when vertical sync (VSync or v-sync) is in use.
We fixed an issue that affects the ProjectionManager.StartProjectingAsync API and prevents certain locales from connecting to Miracast Sinks.
We fixed an issue that causes the Smart App Control to block catalog-signed files.
We fixed an issue that causes the Take a Test app to remove all policies related to lockdown enforcement when you close the app.
We fixed an issue that might highly distort photos you take using the Camera app. This issue occurs when using certain cameras under certain low light conditions.
We fixed an issue that throws an exception when you debug drivers using Visual Studio 2022 version 17.2 or later.
We fixed an issue that causes the Windows profile service to fail sporadically. The failure might occur when signing in. The error message is, “gpsvc service failed to sign in. Access denied”.
We fixed an issue that prevents virtualized App-V Office applications from opening or causes them to stop responding.
KB5016691 is a non-security update that includes quality improvements. Key changes include:
New! We gave IT admins the ability to remotely add languages and language-related features. Additionally, they can now manage language scenarios across several endpoint managers.
New! We compressed a file regardless of its size if you have configured Server Message Block (SMB) Compression.
New! We enhanced Microsoft Defender for Endpoint’s ability to identify and intercept ransomware and advanced attacks.
We fixed an issue that causes ServerAssignedConfigurations to be null in a few full configuration scenarios.
We fixed an issue that affects the automatic high dynamic range (Auto HDR) feature for cross-adapter resource scan-out (CASO)-capable GPU drivers.
We fixed a known issue that causes Microsoft Edge to stop responding when you use IE mode. This issue also prevents you from interacting with a dialog.
We fixed an issue that prevents virtualized App-V Microsoft Office applications from opening or causes them to stop working.
We fixed an issue that might cause the deployment of the Windows Hello for Business certificate to fail in certain circumstances after you reset a device.
We fixed multiple issues related to USB printing, such as:
A printer malfunctions after you restart or reinstall it
Being in the wrong mode after you switch from an Internet Printing Protocol (IPP) Class Driver to an independent hardware vendor (IHV) driver
Experiencing bidirectional communication issues that prevent you from accessing device features
We fixed an issue that affects the ProjectionManager.StartProjectingAsync API. This issue stops some locales from connecting to Miracast Sinks.
We fixed an issue that degrades BitLocker performance.
We fixed an issue that prevents Windows 11 SE from trusting some Microsoft Store applications.
We fixed an issue that prevents HyperVisor Code Integrity from being enabled automatically on systems that have Arm64 processors.
We fixed an issue that stops non-Windows devices from authenticating. This issue occurs when they connect to a Windows-based remote desktop and use a smart card to authenticate.
We fixed an issue that causes the Resultant Set of Policy tool (Rsop.msc) to stop working when it processes 1,000 or more “File System” security settings.
We fixed an issue that causes the Take a Test app to remove all policies related to lockdown enforcement when you close the app.
We fixed an issue that causes the Settings app to stop working on server domain controllers (DCs) when accessing the Privacy > Activity history page.
We fixed an issue that might cause certain Bluetooth audio headsets to stop playing after a progress bar adjustment. This issue affects modern systems that support Advanced Audio Distribution Profile (A2DP) offload.
We fixed an issue that prevents devices from receiving an offer from Windows Update for the same extension driver when that extension driver is already installed without the base driver.
We fixed a race condition that causes the Local Security Authority Subsystem Service (LSASS) to stop working on Active Directory domain controllers. This issue occurs when LSASS processes simultaneous Lightweight Directory Access Protocol (LDAP) over Transport Layer Security (TLS) requests that fail to decrypt. The exception code is 0xc0000409 (STATUS_STACK_BUFFER_OVERRUN).
We fixed an issue that affects a lookup for a nonexistent security ID (SID) from the local domain using read-only domain controller (RODC). The lookup unexpectedly returns the STATUS_TRUSTED_DOMAIN_FAILURE error instead of STATUS_NONE_MAPPED or STATUS_SOME_MAPPED.
We fixed an issue that might cause the Local Security Authority Server Service (LSASS) to leak tokens. This issue affects devices that have installed Windows updates dated June 14, 2022 or later. This issue occurs when the device performs a specific form of service for user (S4U) in a non-Trusted Computing Base (TCB) Windows service that runs as Network Service.
This non-security update KB5016695 includes quality improvements. Key changes include:
New! We enhanced Microsoft Defender for Endpoint’s ability to identify and intercept ransomware and advanced attacks.
New! We compressed a file regardless of its size if you have configured Server Message Block (SMB) Compression.
New! We improved storage replication that occurs over low bandwidth or congested wide area networks (WAN).
New! You can now view the usage history for the following resources from the Settings page:
Camera
Microphone
Phone Calls
Messaging
Contacts
Screenshots and apps
Music library
To use this feature, navigate to Settings >Privacy & Security
We fixed an issue that causes Windows to display tablet mode features for some devices that do not have touchscreens.
We fixed an issue that causes some application windows to have blank sections in the Task View preview.
We fixed an issue that occurs for some of you when you copy files from network drives. The error code is 0x80070026.
We fixed an issue that might cause the Local Security Authority Server Service (LSASS) to leak tokens. This issue affects devices that have installed Windows updates dated June 14, 2022 or later. This issue occurs when the device performs a specific form of service for user (S4U) in a non-Trusted Computing Base (TCB) Windows service that runs as Network Service.
We fixed an issue that, in certain cases, causes sihost.exe to use a high amount of the CPU.
We fixed an issue that causes Microsoft Edge to stop responding when you use IE mode. This issue also prevents you from interacting with a dialog. 40242609
We fixed an issue that causes the App-V client service to leak memory when you delete App-V registry nodes.
We fixed an issue that prevents you from opening a URL if the URL’s length is more than 2084 characters. This update supports a URL of up to 8192 characters.
We fixed an issue that prevents codecs from being updated from the Microsoft Store.
We fixed an issue that causes ServerAssignedConfigurations to be null in a few full configuration scenarios.
We fixed an issue that sometimes prematurely interrupts the resizing operations of a Snap Assist area.
We fixed an issue that might cause the deployment of the Windows Hello for Business certificate to fail in certain circumstances after you reset a device.
We fixed an issue that prevents you from reinstalling Universal Printers after you remove them.
We fixed an issue that prevents non-Windows devices from authenticating when they connect to a Windows-based remote desktop and use a smart card as the authentication method.
We fixed an issue that causes the Settings app to stop working on server domain controllers (DCs) when accessing the Privacy > Activity history page.
We fixed an issue that affects a lookup for a nonexistent security ID (SID) from the local domain using read-only domain controller (RODC). The lookup unexpectedly returns the STATUS_TRUSTED_DOMAIN_FAILURE error instead of STATUS_NONE_MAPPED or STATUS_SOME_MAPPED.
We fixed an issue that prevents the Storage Migration Service (SMS) from completing the inventory on servers that have many shares. Error event 2509 appears in Microsoft-Windows-StorageMigrationService/Admin channel (ErrorId=-2146233088/ErrorMessage=”Invalid table id”).
We fixed an issue that affects the Sync across your devices option under Settings > System > Clipboard. The option will not remain enabled.
New! We introduced WebAuthn redirection. It lets you authenticate in apps and on websites without a password when you use Remote Desktop. Then, you can use Windows Hello or security devices, such as Fast Identity Online 2.0 (FIDO2) keys.
New! We added more dynamic Widgets content to your taskbar with notification badging. When you open the Widgets board, a banner appears at the top of the board. It provides more information about what triggered the notification badge.
We fixed an issue that requires you to reinstall an app if the Microsoft Store has not signed that app. This issue occurs after you upgrade to a newer OS.
We fixed an issue that stops codecs from being updated from the Microsoft Store.
We fixed a race condition in framework autorepair registration. This issue occurs because a registration key is missing.
We fixed an issue that affects the Network Policy Server Management (NPSM) service. This issue causes major delays when you sign out.
We fixed an issue that affects the Windows Search service. Indexing progress is slow when you use the service.
We fixed an issue that affects cached credentials for security keys and FIDO2 authentications. On hybrid domain-joined devices, the system removes these cached credentials.
We fixed an issue that affects a network’s static IP. The issue causes the configuration of the static IP to be inconsistent. Because of this, NetworkAdapterConfiguration() fails sporadically.
We fixed a rare stop error that happens after you change the display mode and more than one display is in use.
We fixed an issue that affects rendering in Desktop Window Manager (DWM). This issue might cause your device to stop responding in a virtual machine setting when you use certain video graphics drivers.
We fixed an issue that affects graphics drivers that use d3d9on12.dll.
We fixed an issue that affects URLs generated by JavaScript: URLs. These URLs do not work as expected when you add them to the Favorites menu in IE mode.
We fixed an issue that forces the IE mode tabs in a session to reload.
We fixed an issue that successfully opens a browser window in IE mode to display a PDF file. Later, browsing to another IE mode site within the same window fails.
We fixed an issue that affects window.open in IE mode.
We introduced a Group Policy that enables and disables Microsoft HTML Application (MSHTA) files.
We fixed an issue that affects the Microsoft Japanese input method editor (IME). Text reconversion fails when you use some third-party virtual desktops.
We fixed an issue that occurs when the input queue overflows. This might cause an application to stop responding.
We fixed an issue that might cause a black screen to appear on your display. This might occur when you use a pen to turn on high dynamic range (HDR).
We fixed an issue that affects the App-V client service. The service leaks memory when you delete App-V registry nodes.
We fixed an issue that might change the default printer if the printer is a network printer.
We fixed an issue that affects WDAC policies. If you enable SecureLaunch on a device, WDAC policies will not apply to that device.
We fixed an issue that affects Windows Defender Application Control (WDAC) path rules. This issue stops .msi and PowerShell scripts from running.
We fixed an issue that might bypass MSHTML and ActiveX rules for WDAC.
We fixed an issue that causes WDAC to log 3091 and 3092 events in audit mode.
We fixed an issue that affects Windows Defender Application Control (WDAC). It stops WDAC from logging .NET Dynamic Code trust verification failures.
We fixed an issue that occurs when a WDAC policy fails to load. The system logs that failure as an error, but the system should log the failure as a warning.
We fixed an issue that affects Code Integrity logging. It logs issues as errors instead of warnings. Because of this, automatic repair is triggered.
We fixed an issue that affects the touch keyboard. The touch keyboard immediately closes when you tap to switch apps.
We fixed an issue that causes LogonUI.exe to stop working. Because of this, you cannot dismiss the lock screen to view the credentials screen.
We fixed an issue that affects the FindNextFileNameW() It might leak memory.
We fixed an issue that affects robocopy. Robocopy fails to set a file to the right modified time when using the /IS
We fixed an issue that affects cldflt.sys. A stop error occurs when it is used with Microsoft OneDrive.
We fixed an issue that affects the LanmanWorkstation service. When you mount a network drive, the service leaks memory.
We fixed an issue that affects the Get-SmbServerNetworkInterface It only retrieves a subset of the available network interfaces.
We fixed an issue that affects the Get-SmbServerConfiguration It only allows you to run it if you are an administrator.
We fixed an issue that affects Roaming User Profiles. After you sign in or sign out, some of your settings are not restored.
We fixed a known issue that affects XML Paper Specification (XPS) viewers. This might stop you from opening XPS files in some non-English languages. These include some Japanese and Chinese character encodings. This issue affects XPS and Open XPS (OXPS) files.
We fixed a known issue that affects daylight saving time in Chile. This issue might affect the time and dates used for meetings, apps, tasks, services, transactions, and more.
We fixed an issue that affects some apps that were not signed by the Microsoft Store. You must reinstall them after you upgrade the OS.
We fixed issues that cause updates to the Microsoft Store to fail.
We fixed an issue that stops you from signing in to various Microsoft Office 365 apps. This affects Outlook, Word, Teams, and so on.
We updated the start date for daylight saving time in Chile. It will start on September 11, 2022 instead of on September 4, 2022.
We fixed an issue that affects the Windows Search service. It causes the indexing progress for the service to be slow.
We fixed an issue that affects some processors. This issue occurs when you turn on Hyper-V and kernel Direct Memory Access (DMA) protections.
We fixed an issue that affects a network’s static IP. The issue causes the configuration of the static IP to be inconsistent. Because of this, NetworkAdapterConfiguration() fails sporadically.
We fixed an issue that affects Task Manager. It stops working when you switch between light and dark mode or change the accent color.
We fixed an issue that affects the font of three Chinese characters. When you format these characters as bold, the width size is wrong.
We fixed an issue that affects graphics drivers that use d3d9on12.dll.
We reduced the power that the Dynamic Host Configuration Protocol uses on some devices when they are in Sleep mode.
We fixed an issue that affects URLs generated by JavaScript: URLs. These URLs do not work as expected when you add them to the Favorites menu in IE mode.
We fixed an issue that forces the IE mode tabs in a session to reload.
We fixed an issue that affects window.open in IE mode.
We fixed an issue that successfully opens a browser window in IE mode to display a PDF file. Later, browsing to another IE mode site within the same window fails.
We fixed an issue that affects the Microsoft Japanese input method editor (IME). Text reconversion fails when you use some third-party virtual desktops.
We fixed an issue that might cause an application to stop responding. This might occur when the input queue overflows.
We fixed an issue that affects XML Paper Specification (XPS) viewers. This might stop you from opening XPS files in some non-English languages. These include some Japanese and Chinese character encodings. This issue affects XPS and Open XPS (OXPS) files.
We fixed an issue that creates a duplicate print queue. Because of this, the original print queue stops working.
We fixed an issue that might bypass MSHTML and ActiveX rules for Windows Defender Application Control (WDAC).
We fixed an issue that affects the Miracast UI. Sometimes it closes too soon when you cast to devices that use the DeviceObjectType:Aep.
We added more dynamic Widgets content to your taskbar with notification badging. When you open the Widgets board, a banner appears at the top of the board. It provides more information about what triggered the notification badge.
We fixed an issue that affects the SharedPC account manager. The issue stops it from deleting many accounts during cleanup.
We fixed an issue that causes LogonUI.exe to stop working. Because of this, you cannot dismiss the lock screen to view the credentials screen.
We fixed an issue that affects Dual SIM calling. If you select no SIM on your phone and initiate a call on your device, Dual SIM functionality does not work.
We fixed an issue that affects the FindNextFileNameW() It might leak memory.
We fixed an issue that affects robocopy. Robocopy fails to set a file to the right modified time when using the /IS
We fixed an issue that affects cldflt.sys. A stop error occurs when it is used with Microsoft OneDrive.
We fixed an issue that affects Roaming User Profiles. After you sign in or sign out, some of your settings are not restored.
We fixed an issue that affects the LanmanWorkstation service. It leaks memory when you mount a network drive.
Has Sysnative Forums helped you? Please consider donating to help us support the site!