As always, these monthly updates are meant to improve all versions of the Windows OS with tweaks and new features, as well as fix whatever might have ended up broken in previous updates. These updates vary in importance from one version of Windows 10 to another, and that is precisely why we’ve created this guide that will act as a detailed changelog for the month of March. As an added bonus, we will also be including direct download links for all the cumulative updates, so that you can get them immediately, even if they haven’t become yet available in your Windows Update menu. Remember that you can update your Windows 10 Pc by using the following methods:

The Windows Update menu on your OS The WSUS (Windows Server Update Service) Group Policies set up by your admins if you’re part of a larger network.

Changes included in the March Patch Tuesday Updates

Windows 10, version 20H2

As of the writing of this article, Windows 10 v20H2 is the latest major version of Windows 10, and as such has the most experimental features on it. Fortunately, most bugs that were first present when it was first made available have been weeded out, and this version of Windows 10 is far more stable. That being said, you should upgrade to this version as soon as possible if your hardware allows it (the system requirements are the same as with Windows 10 v2004). If you haven’t updated to Windows 10 v20H2, know that it is easiest to update if you already have Windows 10 v2004. Check out this in-depth guide on how to get Windows 10 v20H2 as fast as possible. Cumulative update name:

KB5000802

Improvements and fixes:

Addresses an elevation of privilege security vulnerability documented in CVE-2021-1640 related to print jobs submitted to “FILE:” ports. After installing Windows updates from March 9, 2021 and later, print jobs that are in a pending state before restarting the print spooler service or restarting the OS will remain in an error state. Manually delete the affected print jobs and resubmit them to the print queue when the print spooler service is online. Security updates to the Windows Shell, Windows Fundamentals, Windows Management, Windows Apps, Windows User Account Control (UAC), Windows Virtualization, the Windows Kernel, the Microsoft Graphics Component, Internet Explorer, Microsoft Edge Legacy, and Windows Media.

Known Issues:

System and user certificates might be lost when updating a device from Windows 10, version 1809 or later to a later version of Windows 10. Devices will only be impacted if they have already installed any Latest cumulative update (LCU) released September 16, 2020 or later and then proceed to update to a later version of Windows 10 from media or an installation source which does not have an LCU released October 13, 2020 or later integrated. This primarily happens when managed devices are updated using outdated bundles or media through an update management tool such as Windows Server Update Services (WSUS) or Microsoft Endpoint Configuration Manager. This might also happen when using outdated physical media or ISO images that do not have the latest updates integrated. Note Devices using Windows Update for Business or that connect directly to Windows Update are not impacted. Any device connecting to Windows Update should always receive the latest versions of the feature update, including the latest LCU, without any extra steps.

Windows 10, version 2004

Windows 10 v2004 shares the same core system as Windows 10 v20H2, so all updates, fixes, and improvements applied to one are the same as the other. Cumulative update name:

Same as Windows 10 V20H2

Improvements and fixes:

Same as Windows 10 V20H2

Known Issues:

Same as Windows 10 V20H2

Windows 10, version 1909

Windows 10 v1909 shares a core structure, core operating system, and an identical set of system files with Windows 10 v1903. Because of this, all cumulative updates that apply to one version are available to the other as well. Cumulative update name:

KB5000808

Improvements and fixes:

Addresses an elevation of privilege security vulnerability documented in CVE-2021-1640 related to print jobs submitted to “FILE:” ports. After installing Windows updates from March 9, 2021 and later, print jobs that are in a pending state before restarting the print spooler service or restarting the OS will remain in an error state. Manually delete the affected print jobs and resubmit them to the print queue when the print spooler service is online. Security updates to the Windows Shell, Windows Fundamentals, Windows Management, Windows Apps, Windows User Account Control (UAC), Windows Core Networking, Windows Hybrid Cloud Networking, Windows Virtualization, the Windows Kernel, the Microsoft Graphics Component, Internet Explorer, Microsoft Edge Legacy, and Windows Media.

Known Issues:

System and user certificates might be lost when updating a device from Windows 10, version 1809 or later to a later version of Windows 10. Devices will only be impacted if they have already installed any Latest cumulative update (LCU) released September 16, 2020 or later and then proceed to update to a later version of Windows 10 from media or an installation source which does not have an LCU released October 13, 2020 or later integrated. This primarily happens when managed devices are updated using outdated bundles or media through an update management tool such as Windows Server Update Services (WSUS) or Microsoft Endpoint Configuration Manager. This might also happen when using outdated physical media or ISO images that do not have the latest updates integrated. Note Devices using Windows Update for Business or that connect directly to Windows Update are not impacted. Any device connecting to Windows Update should always receive the latest versions of the feature update, including the latest LCU, without any extra steps.

Windows 10, version 1809

According to Microsoft, users that still have the Home, Pro, Pro for Workstation, and IoT Core editions of Windows 10 V1809 should know that it reached End of Service back in November 2020. That is why it is advised that you update your OS to a newer, supported version. Cumulative update name:

KB5000822

Improvements and fixes:

Addresses an elevation of privilege security vulnerability documented in CVE-2021-1640 related to print jobs submitted to “FILE:” ports. After installing Windows updates from March 9, 2021 and later, print jobs that are in a pending state before restarting the print spooler service or restarting the OS will remain in an error state. Manually delete the affected print jobs and resubmit them to the print queue when the print spooler service is online. Security updates to the Windows Shell, Windows Fundamentals, Windows Management, Windows Apps, Windows User Account Control (UAC), Windows Core Networking, Windows Hybrid Cloud Networking, the Windows Kernel, Windows Virtualization, the Microsoft Graphics Component, Internet Explorer, Microsoft Edge Legacy, and Windows Media.

Known Issues:

After installing KB4493509, devices with some Asian language packs installed may receive the error, “0x800f0982 – PSFX_E_MATCHING_COMPONENT_NOT_FOUND.”

Windows 10, version 1803

Microsoft first announced that Windows 10 v1803 will reach the end of mainstream support, and starting with July there wouldn’t be any more optional, non-security releases for this version of Windows 10. SPONSORED Because of the current global pandemic, as well as user feedback, Microsoft decided to extend the support for Windows 10 v1803 up until 2021. Cumulative update name:

KB5000809

Improvements and fixes:

Addresses an elevation of privilege security vulnerability documented in CVE-2021-1640 related to print jobs submitted to “FILE:” ports. After installing Windows updates from March 9, 2021 and later, print jobs that are in a pending state before restarting the print spooler service or restarting the OS will remain in an error state. Manually delete the affected print jobs and resubmit them to the print queue when the print spooler service is online. Security updates to the Windows Shell, Windows User Account Control (UAC), Windows Fundamentals, Windows Core Networking, the Windows Kernel, the Microsoft Graphics Component, Windows Graphics, Internet Explorer, Microsoft Edge Legacy, and Windows Media.

Known Issues:

Microsoft is not currently aware of any issues with this update.

Windows 10, version 1703

Note: Windows 10, version 1703 has reached the end of service for  Home, Pro, Pro for Workstation, and IoT Core editions. In order to continue receiving quality and security updates, Microsoft recommends that you get the latest possible version of Windows 10 installed. Cumulative update name:

KB5000812

Improvements and fixes:

Addresses an elevation of privilege security vulnerability documented in CVE-2021-1640 related to print jobs submitted to “FILE:” ports. After installing Windows updates from March 9, 2021 and later, print jobs that are in a pending state before restarting the print spooler service or restarting the OS will remain in an error state. Manually delete the affected print jobs and resubmit them to the print queue when the print spooler service is online. Security updates to the Windows Shell, Windows User Account Control (UAC), Windows Fundamentals, Windows Core Networking, the Windows Kernel, the Microsoft Graphics Component, Internet Explorer, Microsoft Edge Legacy, and Windows Media.

Known Issues:

Microsoft is not currently aware of any issues with this update. 

Windows 10, version 1607

Note: Windows 10, version 1607 has reached the end of service for all of its available editions. Update to the latest version of Windows 10 in order to keep your system protected. Cumulative update name:

KB5000803

Improvements and fixes: This security update includes quality improvements. Key changes include:

Turns off token binding by default in Windows Internet (WinINet). Addresses an issue in the Windows Management Instrumentation (WMI) service that causes a heap leak each time security settings are applied to WMI namespace permissions. Addresses an issue with extra dereferencing that causes a server to stop working. Addresses an issue in which a principal in a trusted MIT realm fails to obtain a Kerberos service ticket from Active Directory domain controllers (DC). This occurs on devices that installed Windows Updates that contain CVE-2020-17049 protections and configured PerfromTicketSignature to 1 or higher. These updates were released between November 10, 2020 and December 8, 2020. Ticket acquisition also fails with the error, “KRB_GENERIC_ERROR”, if callers submit a PAC-less Ticket Granting Ticket (TGT) as an evidence ticket without providing the USER_NO_AUTH_DATA_REQUIRED flag. Addresses an elevation of privilege security vulnerability documented in CVE-2021-1640 related to print jobs submitted to “FILE:” ports. After installing Windows updates from March 9, 2021 and later, print jobs that are in a pending state before restarting the print spooler service or restarting the OS will remain in an error state. Manually delete the affected print jobs and resubmit them to the print queue when the print spooler service is online.  Addresses a reliability issue in Remote Desktop. Addresses an issue that might cause stop error 7E in nfssvr.sys on servers running the Network File System (NFS) service. Adds a new dfslogkey as described below: Keypath: HKEY_LOCAL_MACHINE/SOFTWARE/MICROSOFT/dfslog. The RootShareAcquireSuccessEvent field has the following possible values: Default value = 1; enables the log. Value other than 1; disables the log.

        If this key does not exist, it will be created automatically. To take effect, any change to        dfslog/RootShareAcquireSuccessEvent in the registry requires that you restart the DFSN service. 

Addresses an issue that causes an increase in network traffic during update detection for Windows Updates. This issue occurs on devices that are configured to use an authenticated user proxy as the fallback method if update detection with a system proxy fails or there is no proxy. Security updates to the Windows Shell, Windows User Account Control (UAC), Windows Fundamentals, Windows Core Networking, Windows Hybrid Cloud Networking, Windows Kernel, Windows Virtualization, the Microsoft Graphics Component, Internet Explorer, Microsoft Edge Legacy, and Windows Media.

Known Issues:

After installing KB4467684, the cluster service may fail to start with the error “2245 (NERR_PasswordTooShort)” if the group policy “Minimum Password Length” is configured with greater than 14 characters.

Windows 10, version 1507

Note: Windows 10, version 1507 is the oldest version of Windows 10 still active, and it has reached the end of service for some time now. If your hardware allows it, update to a much newer version of Windows 10. Cumulative update name:

KB5000807

Improvements and fixes:

Addresses an elevation of privilege security vulnerability documented in CVE-2021-1640 related to print jobs submitted to “FILE:” ports. After installing Windows updates from March 9, 2021 and later, print jobs that are in a pending state before restarting the print spooler service or restarting the OS will remain in an error state. Manually delete the affected print jobs and resubmit them to the print queue when the print spooler service is online. Security updates to the Windows Shell, Windows User Account Control (UAC), Windows Fundamentals, Windows Core Networking, the Microsoft Graphics Component, Internet Explorer, Microsoft Edge Legacy, and Windows Media.

Known Issues:

Microsoft is not currently aware of any issues with this update.

This concludes our article covering this month’s Patch Tuesday updates. We hope that by reading the changelog, you’ll make a more informed decision on whether to download the latest updates or not. If you do decide to to apply the updates, go ahead and use our direct download links, since the lead straight to the official Windows Update Catalog. However, remember that the Patch Tuesday updates are extremely important and should be applied, especially if you express any concerns regarding your PC’s security. This is especially the case, considering this month over XYZ vulnerabilities were found. As a general note, Patch Tuesday updates should be applied as soon as they become available in your region, that is unless you want to become a target during Exploit Wednesday or Uninstall Thursday.

Name * Email * Commenting as . Not you? Save information for future comments
Comment

Δ