This security update includes improvements and fixes in the functionality of Windows 10. It also resolves the following vulnerabilities in Windows:
Windows 10 updates are cumulative. Therefore, this package contains all previously released fixes. If you have installed earlier updates, only the new fixes that are contained in this package will be downloaded and installed on your computer. If you are installing a Windows 10 update package for the first time, the package for the x86 version is 320 MB and the package for the x64 version is 680 MB.
MS16-072 changes the security context with which user group policies are retrieved. This by-design behavior change protects customersβ computers from a security vulnerability. Before MS16-072 is installed, user group policies were retrieved by using the userβs security context. After MS16-072 is installed, user group policies are retrieved by using the computerβs security context. This issue is applicable for the following KB articles:
All user Group Policy, including those that have been security filtered on user accounts or security groups, or both, may fail to apply on domain joined computers.
This issue may occur if the Group Policy Object is missing the Read permissions for the Authenticated Users group or if you are using security filtering and are missing Read permissions for the domain computers group.
To resolve this issue, use the Group Policy Management Console (GPMC.MSC) and follow one of the following steps:
Important If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.
This update will be downloaded and installed automatically.
To get the stand-alone package for this update, go to the Microsoft Update Catalog website.
There are no prerequisites for installing this update.
You must restart the computer after you apply this update.
This update replaces the previously released update 3156387.
For a list of the files that are provided in this cumulative update, download the file information for cumulative update 3163017.
__
File hash information
File name | SHA1 hash | SHA256 hash |
---|---|---|
Windows10.0-KB3163017-x86.msu | 78027DD43E207D08560CC8FB151E217B348416CC | 0F5F7CC6185F5DD096DB7AC0DBB100043A57B4CF4E5A5AF7931AEA5252F8F211 |
Windows10.0-KB3163017-x64.msu | D70465D5327FBF3A783BC1FBD5343E17A138E0DC | B644A77EA96D28DE551CC4332B19D81D684AA8C432187312817F6774B00E21F3 |
More InformationThe .NET framework version 3.5 and earlier versions did not provide support for applications to use Transport Layer Security (TLS) System Default Versions as a cryptographic protocol. This update enables the use of TLS v1.2 in the .NET Framework 3.5.The following registry keys can be set to use the operating system defaults for SSL and TLS instead of the hardcoded .NET Framework defaults for a managed application running on the computer.