For Windows 10 v1903 users, Microsoft just released the KB4517211 update with a lot of improvements and fixes. You can find the KB4517211 offline installer download link below.
Though the KB4517211 update brings with it a lot of fixes and improvements, it is still an optional update. i.e, not a security update. Some of the issues that are addressed in this update include but not limited to issues with fonts, removable disks, File Explorer, VPN connections, power plan, etc.
The update should automatically install on your Windows 10 machine if you are using version 1903. If you want to, you can check for and install the update from the Settings app. Just open the Settings app, go to "Update & Security → Windows Update" and click on the "Check for updates" button.
If the update is not being installed or if you've paused the updates, you can download the KB4517211 offline installer directly from Microsoft and install it like any other software.
KB4517211 Download Links
To make things easier for you, I found the direct download links for KB4517211 for both Windows 10 32-bit and 64-bit systems. Depending on your system type, download the update using below links and install it like any other Windows software. After installing, restart the system and you are good to go.
KB4517211 x86 (32-bit) offline installer (download size: 155.3 MB)
KB4517211 x64 (64-bit) offline installer (download size: 311.4 MB)
If you want KB4517211 download links for Windows Server or ARM64 based systems, go to the Microsoft update catalog website to find the appropriate links. All you have to do is click on the Download button next to the appropriate version.
KB4517211 Change Log
Addresses an issue that causes vertical fonts to be larger when printing to a PostScript printer.
Addresses an issue that causes printing from 32-bit applications to fail with an “Access is denied” error when you select Run as different user for the application.
Addresses an issue that may give write access to a removable USB disk when a user switches from a privileged user to an unprivileged user.
Addresses an issue that causes the lsass.exe service to stop working, which causes the system to shut down. This occurs when migrating Data Protection API (DPAPI) credentials using dpapimig.exe with the -domain option.
Addresses an issue that gives a Windows Hello for Business user two certificates for authentication during certificate renewal instead of one certificate.
Addresses an issue that prevents a web browser from connecting securely to Windows Server. This occurs when using a client authentication certificate, such as a SHA512-based certificate, and the web browser does not support a signature algorithm that matches the certificate.
Addresses an issue that may cause authentication to fail for certificate-based authentication when the certificate authentication includes a cname as part of the pre-authentication request.
Addresses an issue that prevents a Microsoft App-V application from opening and displays a network failure error. This issue occurs under certain circumstances, such as when a system's battery is low or there is an unexpected power failure.
Addresses an issue that causes a query request of the Win32_LogonSession class for the StartTime to display the value of the epoch (for example, 1-1-1601 1:00:00) instead of the actual logon time. This occurs when a user who isn’t an administrator creates the query request.
Addresses an issue that causes File Explorer to show a regular file icon for files marked with FILE_ATTRIBUTE_OFFLINE instead of the expected placeholder icon.
Addresses an issue with intermittent virtual private network (VPN) disconnections on cellular networks.
Addresses an issue that may cause audio playback and recording to fail when connecting to a remote virtual machine.
Addresses an issue with MSCTF.dll that causes an application to stop working.
Addresses an issue with the input and display of special characters that occurs when an app uses imm32.dll.
Addresses an issue with resizing Windows Presentation Foundation (WPF) applications; they may not respond to being resized using the mouse until you release the mouse button.
Addresses an issue that may prevent older systems from upgrading to the latest operating systems because of an error in the display driver of older versions.
Addresses an issue that may cause the screen color to turn white on laptops that have built-in, high-dynamic-range (HDR) screens.
Addresses an issue with converting an application from 32-bit to 64-bit architecture.
Addresses an issue that prevents you from running the Active Directory Diagnostics Data Collector Set from the Performance Monitor for Domain Controllers. This causes the Data Collector Set name to appear empty.
Running the Active Directory Diagnostics Data Collector Set returns the error, “The system cannot find the file specified.” Event ID 1023 is logged with the source as Perflib and the following messages:
“Windows cannot load the extensible counter DLL “C:\Windows\system32\ntdsperf.dll.”
“The specified module could not be found.”
Addresses an issue that causes audio in certain games to be quieter or different than expected.
Addresses an issue that prevents Microsoft App-V from handling a parameter of the CreateProcess API properly, which prevents the virtual process from opening.
Addresses an issue in which the maximum central processing unit (CPU) performance is not enabled when you select the High Performance power plan.
Provides a way to configure the read buffer size. This allows you to address an issue with slow upload times when uploading a file to a Universal Naming Convention (UNC) share using the Internet Information Services (IIS) Web Distributed Authoring and Versioning (WebDAV) feature.
Addresses an issue that causes a device to stop working when opening files from a network drive that has client-side caching enabled. This issue may occur when the device has certain third-party antivirus products installed and the drive is backed by a server that is not a Microsoft Server Message Block (SMB) server. The error code is, “0x27 RDR_FILE_SYSTEM.”
Facilitates the configuration of devices that are managed by mobile device management (MDM) settings, which are created by ADMX ingestion. You can update a previously ingested ADMX file with a newer version, and you are not required to delete the previous ADMX file. This solution applies to all applications that use ADMX ingestion.