Improvements and fixes
This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:
Addresses an issue in which customers sometimes can't sign in to Windows 2012 R2 servers when they use a custom credential provider on a console or RDP.
Provides Spectre and Meltdown protection for 32-Bit (x86) and 64-Bit (x64) versions of Windows except the KB4078130 update that was offered to disable mitigation against Spectre Variant 2.
Provides security updates to the Microsoft Graphics component, Windows Kernel, Windows Shell, Windows MSXML, Windows Installer, and Windows Hyper-V.
For more information about the resolved security vulnerabilities, see the Security Update Guide.
Known issues in this update
Because of an issue that affects some versions of antivirus software, this fix applies only to computers on which the antivirus ISV updated the ALLOW REGKEY.
This issue is resolved in KB4093115. You no longer need the following ALLOW REGKEY to detect and be offered this update:
How to get this update
This update is now available for installation through WSUS. To get the standalone package for this update, go to the Microsoft Update Catalog website.
For a list of the files that are provided in this update, download the file information for update 4088879.