Microsoft released its first security update for August 2023 for all Windows 11 users. As with most security/cumulative updates, the KB5029263 update is filled with several security fixes. Along with the security fixes, this update also includes additional improvements and fixes from KB5028254. Most of all, the update will be automatically downloaded and installed on all supported Windows 11 computers. However, if you have a problem with the Windows Update or to install it on an offline computer, use the link provided below to download the KB5029263 offline installer.
KB5029263 includes improvements to File Explorer, Edge browser, general Windows backend components, Windows Autopilot profiles, issues affecting user mode printer drivers, narrator improvements, Windows Defender Application Control (WDAC), SMB (Server Message Block) I/O issues, and more.
As for the security fixes, Microsoft didn’t say much other than ‘miscellaneous security improvements to internal OS functionality.’ Likely, the security fixes are general in nature.
As always, you can download the KB5029263 offline installer using the link provided below. Once downloaded, double-click on the installer file and follow the on-screen instructions.
Download KB5029263 offline installer
For users who prefer to download the KB5029263 offline installer, you can find it at the following link:
https://catalog.update.microsoft.com/Search.aspx?q=KB5029263
Once downloaded, double-click on the installer and follow the installation wizard to complete the installation process. Once done, reboot the computer to apply the changes. After rebooting you can enjoy all the goodness of the KB5029263 update.
KB5029263 Changelog
- This update makes miscellaneous security improvements to internal OS functionality. No additional issues were documented for this release.
General fixes from KB5028254
- This update affects the Handwriting Software Input Panel (SIP), the Handwriting Engine, and the Handwriting Embedded Inking Control. They now support GB18030-2022 conformance level 2. Because of this, they meet the level 3 requirements.
- This update addresses an issue in the Windows Notification Platform. The issue affects how much power your device uses.
- This update affects the Windows Push Notification Services (WNS). It makes the connection between the client and the WNS server more reliable.
- This update addresses an issue that affects hybrid joined devices. You cannot sign in to them if they are not connected to the internet. This occurs when you use a Windows Hello for Business PIN or biometric credentials. This issue applies to a cloud trust deployment.
- This update affects Windows Autopilot profiles. The process to download the Windows Autopilot policy is more resilient. This helps when a network connection might not be fully initialized. This update increases the retry attempts when you try to download the Windows Autopilot profile.
- This update addresses an issue that affects Event Forwarding Subscriptions. When you add an Event Channel to the subscription, it forwards events you do not need.
- This update addresses an issue that affects the Windows Management Instrumentation (WMI) repository. This causes an installation error. The issue occurs when a device does not shut down properly.
- This update addresses an issue that affects certain CPUs. There is inconsistent reporting of the L2 cache.
- This update enhances hinting for some of the letters of the Verdana Pro font family.
- This update affects user mode printer drivers. They unload unexpectedly. This occurs when you print from multiple print queues to the same printer driver.
- This update affects text edit controls in XAML and browser controls. You cannot make text edit controls editable again after they become read only. This occurs when you use the new Microsoft Input Method Editor for Japanese, Chinese, and Korean.
- This update makes Narrator announce the “Change product key” label.
- This update addresses an issue that affects the Defender Firewall Profile. It fails to automatically switch from a LAN that is trusted to a public network.
- This update makes Country and Operator Settings Asset (COSA) profiles up to date.
- This update addresses an issue that affects a printing job. An unexpected Internet Printing Protocol (IPP) mode switch can cause the print job to abruptly stop. This occurs when there is an independent hardware vendor (IHV) driver.
- This update addresses an issue that affects certain wireless wide area network (WWAN) devices. After every restart, a dialog reappears. It asks you to switch to embedded SIM (eSIM) even when you choose “No.”
- This update addresses a deadlock in Internet Protocol Security (IPsec). When you configure servers with IPsec rules, they stop responding. This issue affects virtual and physical servers.
- This update addresses an issue that affects the MPSSV service. The issues causes your system to restart repeatedly. The stop error code is 0xEF.
- This update affects the Windows Kernel Vulnerable Driver Blocklist, DriverSiPolicy.p7b. It adds drivers that are at risk for Bring Your Own Vulnerable Driver (BYOVD) attacks.
- This update addresses an issue that affects Windows Defender Application Control (WDAC). The issue copies unsigned WDAC policies to the Extensible Firmware Interface (EFI) disk partition. This partition is reserved for signed policies.
- This update addresses an issue that affects WDAC. The “Disabled: Script Enforcement” option might create audit events you do not need.
- This update addresses an issue that affects the fastfat file system driver. It stops responding because of a race condition.
- This update addresses an issue that affects I/O over Server Message Block (SMB). It might fail when you use the LZ77+Huffman compression algorithm.
That is it.
