Download Windows 10 KB5029244 Patch Tuesday Security Update [August 2023]

Fixes critical and exploited vulnerabilities amongst other OS-related issues.

Table of contents

You can now download and install KB5029244 on your Windows 10 22H2 and 21H2 (specific editions only) computers with the latest updates and security patches. You can install this update through Windows Update or using the offline installers linked below.

Installing KB5029244 will upgrade the operating system’s build to 19044.3324 (21H2) and 19045.3324 (22H2).

Most of the improvements included in this update were released in last month’s optional non-security update KB5028244. So if you installed that update, then this one ought to be a small one.

This month’s security update addresses a total of 86 vulnerabilities (74 Microsoft CVEs and 12 non-Microsoft CVEs) and an additional 2 security advisories. Note that 2 of these are zero-day vulnerabilities – one advisory and one CVE.

You can learn more about these security vulnerability fixes on Microsoft’s MSRC vulnerability guide. Set the filter to “Update Tuesday (2nd Tuesday of the month)” and then select “August 2023” in the “Vulnerabilities” tab.

This page covers

KB5029244 release summary

The table below gives a brief summary of the update and the updated OS builds:

Article KB	OS Version	Release Date	Updated OS Build
KB5029244	Windows 10 22H2	8 August 2023	19045.3324
KB5029244	Windows 10 21H2	8 August 2023	19044.3324

August 2023 Patch Tuesday Summary for Windows 10

KB5029244 Changelog

This update includes all the improvements that were introduced in KB5028244 which was released on 25th July 2023 and was a Type D update. Other than those, no additional improvements have been made except the security patches (discussed ahead in this post).

We have compiled and listed all of the new features and improvements in KB5029244 here for you:

This update addresses an issue that might affect your computer when you are playing a game. Timeout Detection and Recovery (TDR) errors might occur.

This update addresses an issue that affects certain display and audio devices. They are missing after your system resumes from sleep.
This update addresses an issue that might affect some VPN clients. They might not establish a connection.
This update addresses an issue that affects the Search app. It opens in full screen, blocks additional Start menu actions, and you cannot close it.

This update addresses an issue that affects the Windows Notification Platform. It fails to send notifications from applications to you.
This update addresses an issue that affects hybrid joined devices. You cannot sign in to them if they are not connected to the internet. This occurs when you use a Windows Hello for Business PIN or biometric credentials. This issue applies to a cloud trust deployment.
This update affects Windows Autopilot profiles. This update increases the retry attempts when you try to download the Windows Autopilot profile.

This update addresses an issue that might affect Win32 and Universal Windows Platform (UWP) apps. They might close when devices enter Modern Standby.
This update addresses an issue that affects Event Forwarding Subscriptions. When you add an Event Channel to the subscription, it forwards events you do not need.
This update addresses an issue that affects the Windows Management Instrumentation (WMI) repository. This causes an installation error. The issue occurs when a device does not shut down properly.

This update affects user-mode printer drivers. They unload unexpectedly. This occurs when you print from multiple print queues to the same printer driver.
This update enhances hinting for some of the letters of the Verdana Pro font family.
This update affects text edit controls in XAML. You cannot edit the controls again after they become read-only.

This update addresses an issue that affects a printing job. An unexpected Internet Printing Protocol (IPP) mode switch can cause the print job to abruptly stop.
This update makes Country and Operator Settings Asset (COSA) profiles up to date.
This update addresses a deadlock in Internet Protocol Security (IPsec). When you configure servers with IPsec rules, they stop responding. This issue affects virtual and physical servers.

This update affects the Windows Kernel Vulnerable Driver Blocklist, DriverSiPolicy.p7b. It adds drivers that are at risk for Bring Your Own Vulnerable Driver (BYOVD) attacks.
This update addresses an issue that causes Windows to fail. This occurs when you use BitLocker on a storage medium that has a large sector size.
This update addresses an issue that affects I/O over Server Message Block (SMB). It might fail when you use the LZ77+Huffman compression algorithm.

These are all of the features, improvements, and fixes that KB5029244 offers for Windows 10 22H2 and 21H2. To read more in-depth about these, refer to this Microsoft announcement of KB5029244.

Other than these improvements and fixes, this update also includes security updates.

Security updates in KB5029244

Out of the 86 vulnerabilities, 6 are deemed of critical importance. It means that their chances of being exploited are high. It is observed that all of these critical vulnerabilities address Remote Code Execution in Microsoft Teams, Microsoft Outlook, and Microsoft Message Queuing.

Here is a quick summary of the critical vulnerabilities in this update:

Windows 10 version 21H2: 32 vulnerabilities, 3 critical and 29 important.
- Microsoft Message Queuing Remote Code Execution Vulnerability — CVE-2023-35385
- Microsoft Message Queuing Remote Code Execution Vulnerability — CVE-2023-36910
- Microsoft Message Queuing Remote Code Execution Vulnerability — CVE-2023-36911

Additionally, 2 zero-day vulnerabilities have also been addressed in this month’s Patch Tuesday updates. These are CVE-2023-38180 which addressed a vulnerability with ASP .NET, and ADV230003 which is about the last month’s Outlook vulnerability.

The security advisory (ADV230003) has a status of “Exploitation detected,” which, in Microsoft’s language, means that they are aware of at least one instance where this vulnerability has been exploited by an attacker.

Known issues in KB5029244

An issue with the standalone (clean) installation of Windows 10 with this update is causing Microsoft Edge Legacy to be removed. However, it is not being replaced by the new Chromium-based Edge.

This occurs only when Windows has a custom offline media or an ISO image installed that does not include the 29th March 2021 SSU update. Microsoft suggests that you either install the March SSU update through slipstreaming or simply update an existing OS through Windows Update, so you will not be facing this issue.

Alternatively, you can simply download and install the new Microsoft Edge if you have already encountered this problem.

This issue has been around for a while and Microsoft still hasn’t fixed it.

Download and Install KB5029244

This update can be installed through Windows Update and standalone installers.

We have given the direct download links to the standalone installers below, using which you can install the update on your respective Windows 10 version, or you can simply update to the latest build using Windows Update through the given guide below.

Standalone installers

Click on the links below to download the KB article for your Windows 10 version.

KB Article	Windows Version	Download
KB5029244	Windows 10 22H2	x64 x86
KB5029244	Windows 10 21H2	x64 x86

Download Windows 10 Patch Tuesday updates for August 2023

To install the update, simply run the downloaded MSU file and Windows will automatically install the update. You can also extract the CAB file from the MSU file and install it.

To download any other updates related to any of the above, please check the Microsoft Catalog.

Windows Update

To install this update via Windows Update, you need to be running Windows 10 version 22H2 or 21H2 (with the supported edition). To check the version and edition of the operating system, type in “winver” in the Run Command box and press Enter.

Once ensured you have the right OS version, perform the following steps to install KB5029244:

Navigate to the following:

Settings app > Update and Security > Windows Update

Click “Check for updates” on the right.

Check for pending updates

You will now see the following update downloading and installing automatically:
```
2023-08 Cumulative Update for Windows 10 version 2XH2 for x64/x86-based Systems (KB5029244)
```
Click “Restart Now” when the update is ready for final installation.

Restart computer

Once the computer restarts, the update will be successfully installed. To confirm this, check the updated build number by typing in “winver” in the Run Command box.

KB5029244 successfully installed on Windows 10 22H2

Rollback/remove Windows 10 cumulative update

If you do not wish to keep the installed update for some reason, you can always roll back to the previous build of the OS. However, this can only be performed within the next 10 days after installing the new update.

To roll back after 10 days, you will need to apply this trick.

Cleanup after installing Windows updates

If you want to save space after installing Windows updates, you can run the following commands one after the other in Command Prompt with administrative privileges:

dism.exe /Online /Cleanup-Image /AnalyzeComponentStore
dism.exe /Online /Cleanup-Image /StartComponentCleanup

Cleanup after Windows update installation

Block Kb5029244 from installing

Since these are mandatory updates, they will download and install themselves on the schedule. If you want to block them from installing, temporarily or permanently, you can follow the steps below:

Download the “Show or hide updates” tool from Microsoft.
Run the utility and click Next to start the scanning process.

Show or hide updates
Next, click the “Hide updates” button.

Hide updates

Select the update(s) you want to block and click Next.

This automatically hides the update from Windows Update and it will not be installed during the next update process.

Click the Close button.

If you want to unhide or show hidden updates, run the tool again and select “Show hidden updates” instead of “Hide updates.” The rest of the process is the same.

Windows 10 KB5029244 hands on

We have installed KB5029244 through Windows Update on one of our VMs and gained some insight that we’d like to share with our readers.

Since we had previously installed last month’s non-security update KB5028244, it did not take a lot of time to download and install KB5029244.

After it was installed, there were no visible changes within the OS, or in its functionality. This seems true since the release notes do not mention any new features either.

Furthermore, after having done some research, at the time of writing this post, no additional issues (other than the known issues) had been reported by any Windows 10 users.

Windows 10 Patch Tuesday History

KB Article	OS Versions	Build	Release Date	Significant Changes	Announcement
KB5032189	22H2, 21H2	1904X.3693	14-Nov-23	Fixes update installation issues, touchscreen, and Outlook issues.	Microsoft Announcement of KB5032189
KB5031356	22H2, 21H2	1904X.3570	10-Oct-23	Improved search box experience, animations to certain icons, several fixes and security patches	Microsoft Announcement of KB5031356
KB5030211	22H2, 21H2	1904X.3448	12-Sep-23	Fixes smart card authentication for domain joining, improves location detection, expands the rollout of notification badging for Microsoft accounts on the Start menu	Microsoft Announcement of KB5030211
KB5029244	22H2, 21H2	1904X.3324	8-Aug-23	Addresses VPN issues, makes notifications more reliable, and addresses critical Remote Code Execution vulnerabilities.	Microsoft Announcement of KB5029244
KB5028166	22H2, 21H2	1904X.3208	11-Jul-23	Improvements to Microsoft Defender for Endpoint, Printer Spooler, and others.	Microsoft Announcement of KB5028166
KB5027215	22H2, 21H2	1904X.3086	13-Jun-23	Ability to sync language and region settings, address issues with LSASS, and other security improvements	Microsoft Announcement of KB5027215
KB5026361	22H2, 21H2, 20H2	1904X.2965	9-May-23	The ability to sync language and region settings addresses issues with LSASS, other security improvements	Microsoft Announcement of KB5026361
KB5025221	22H2, 21H2, 20H2	1904X.2846	11-Apr-23	Ability to sync language and region settings addresses issues with LSASS, other security improvements	Microsoft Announcement of KB5025221
KB5023696	22H2, 21H2, 20H2	1904X.2728	14-Mar-23	Improved Windows Spotlight experience on the lock screen, fixed AD joining issue and others	Microsoft Announcement of KB5023696
KB5022834	22H2, 21H2, 20H2	1904X.2604	14-Feb-23	Fixes audio issues with IoT devices	Microsoft Announcement of KB5022834
KB5022282	22H2, 21H2, 20H2	1904X.2486	10-Jan-23	Microsoft ODBC SQL Server Driver connectivity issue resolved	Microsoft Announcement of KB5022282
KB5021233	22H2, 21H2, 21H1, 20H2	1904X.2364	13-Dec-22	-Search bar will now appear by default on the taskbar -Cortana won’t be pinned in the taskbar by default	Microsoft Announcement of KB5021233
KB5019959	22H2, 21H2, 21H1, 20H2	1904X.2251	8-Nov-22	Fixes to Microsoft Direct3D 9 and DCOM	Microsoft Announcement of KB5019959

Changelog for Windows 10 Patch Tuesday updates

Tags: Patch Tuesday, Windows 10 Updates, Windows Updates

Subhan Zafar

Subhan Zafar is an established IT professional with interests in Windows and Server infrastructure testing and research, and is currently working with Itechtics as a research consultant. He has studied Electrical Engineering and is also certified by Huawei (HCNA & HCNP Routing and Switching).

See all posts from Subhan Zafar