Microsoft has just come out with its own “Patch Tuesday” update for its Windows 10 operating system. Users on the April 2018 update can apply the build 17134.228 / KB4343909 update to their systems to apply fixes for numerous bugs discovered in the system as well as implement enhanced mitigation techniques for the Spectre vulnerability which has no cure as of yet.
According to the details published by Microsoft, this update brings quality improvements to your devices, a big plus point of which is the redemption of battery life that took a sudden decline with the previous April 2018 Windows Update. Another particular change to note in this update is the protection against L1 Terminal Fault in the Intel Core processors. This is a side-channel execution vulnerability in the Intel Core and Intel Xeon processors. This vulnerability has been given the labels CVE-2018-3620 and CVE-2018-3646.
In addition to CPU enhancements for better battery life, enhanced Spectre security definitions, and L1 Terminal Fault mitigation, this update resolves an issue in the 15th and 16th AMD processors which exhaust their CPUs and cause a branch target injection vulnerability. This vulnerability has been labeled CVE-2017-5715 and it’s found to show up in versions of the operating system post June 2018 and July 2018 Windows updates.
The update also brings enhancements for application mesh updates, allowing them to continue receiving updates once resumed. In addition to this, an issue that prevents some applications running on HoloLens, such as Remote Assistance, from authenticating is also resolved. This issue is found to exist in versions 1607 to 1803 of Windows 10.
An issue causing Device Guard to block ieframe.dll class IDs after the May 2018 Cumulative Update has also been resolved. A vulnerability related to the Export-Modulemember() function with a wildcard and dot-sourcing script has been resolved and an issue that came out of the July 2018 update causing applications relying on COM components to be rendered unable to load has been dealt with as well.
Other than these major changes, several small-scale security updates have also been added to the Windows Server. This Windows 10 update is available for download through the Windows Update Center on the operating system’s settings panel.