KB4601318

• Updates for verifying usernames and passwords. 

• Corrects historical daylight savings time (DST) information for the Palestinian Authority.

• Updates an issue with German translations of Central European Time.

• Enables administrators to disable standalone Internet Explorer using a Group Policy while continuing to use Microsoft Edge's IE Mode.

• Updates Internet Explorer’s About dialog to use the standard modern dialog.

• Addresses an issue with a Service Host (svchost.exe) process that causes excessive CPU usage in some Input Method Editor (IME) language environments, such as Traditional Chinese. This issue occurs when you try to add an input method in Control Panel.

• Corrects historical daylight savings time (DST) information for the Palestinian Authority.

• Addresses an issue with German translations of Central European Time.

• Addresses an issue that causes LSASS.exe to stop working because of a race condition that results in a double free error in Schannel. The exception code is c0000374, and the Event Log displays Schannel event 36888, fatal error code 20, and error state 960. This issue occurs after installing Windows updates from September 2020 and later.

• Addresses an issue that might cause systems that use BitLocker to stop working and display the error 0x120 (BITLOCKER_FATAL_ERROR).

• Addresses an issue that prevents scheduled tasks that have multiple actions from running again if you have previously disabled them while they were running.

• Addresses an issue that fails to log events 4732 and 4733 for Domain-Local group membership changes in certain scenarios. This occurs when you use the “Permissive Modify” control; for example, the Active Directory (AD) PowerShell modules use this control.

• Addresses an issue that incorrectly reports that Lightweight Directory Access Protocol (LDAP) sessions are unsecure in Event ID 2889. This occurs when the LDAP session is authenticated and sealed with a Simple Authentication and Security Layer (SASL) method.

• Addresses an issue with Server Message Block (SMB). This issue incorrectly logs the Microsoft-Windows-SMBClient 31013 event in the Microsoft-Windows-SMBClient or Security event log of an SMB client when an SMB server returns STATUS_USER_SESSION_DELETED. This issue occurs when SMB client users or applications open multiple SMB sessions using the same set of Transmission Control Protocol (TCP) connections on the same SMB Server. This issue most likely occurs on Remote Desktop Servers.

• Addresses an issue that causes the LanmanServer service to stop unexpectedly. This issue occurs if the OptionalNames registry value is set and the service restarts.

• Addresses an issue that causes stop error 0x54 in SRV2.SYS.

• Updates the Netlogon Elevation of Privilege Vulnerability (CVE-2020-1472) to enable Enforcement mode. For more details, see CVE-2020-1472 and How to manage the changes in Netlogon secure channel connections associated with CVE-2020-1472.

• Addresses an issue that might prevent the cluster service from starting and generates the error “2245 (NERR_PasswordTooShort)”. This occurs if you configure the “Minimum Password Length” Group Policy with more than 14 characters. For more information, see KB4557232.

• Addresses an issue that causes the configuration of the “Minimum Password Length” Group Policy with more than 14 characters to have no effect. For more information, see KB4557232.

• Security updates to Windows App Platform and Frameworks, Windows Apps, Windows Cloud Infrastructure, Windows Authentication, Windows Fundamentals, Windows Virtualization, Windows Core Networking, and Windows Hybrid Cloud Networking.