Windows 10, version 1607 and Windows Server 2016

  • Article

Find information on known issues and the servicing status for Windows 10, version 1607 and Windows Server 2016. For immediate help with Windows update issues, click here if you are using a Windows device to open the Get Help app or go to support.microsoft.com. Follow @WindowsUpdate on X (formerly Twitter) for Windows release health updates. If you are an IT administrator and want to programmatically get information from this page, use the Windows Updates API in Microsoft Graph.

    Known issues

    See open issues, content updated in the last 30 days, and information on safeguard holds. To find a specific issue, use the search function on your browser (CTRL + F for Microsoft Edge).

    SummaryOriginating updateStatusLast updated
    Issue with Kerberos requests on domain controllers may cause LSASS memory leaks
    This issue affects on-premises and cloud-based Active Directory DCs after installing the March 2024 security update
    		OS Build 14393.6796
    KB5035855
    2024-03-12    		Resolved
    KB5037423    		2024-03-22
    15:11 PT
    Devices with locale set to Croatia might not utilize the expected currency
    This can affect applications which retrieve the device's currency for purchases or other transactions
    		N/A

    		Confirmed
    		2023-10-31
    10:06 PT
    Certain apps or devices might be unable to create Netlogon secure channel connections
    Scenarios which rely on synthetic RODC machine accounts might fail if they do not have a linked KRBTGT account.
    		OS Build 14393.4886
    KB5009546
    2022-01-11    		Investigating
    		2022-02-24
    17:41 PT
    Apps that acquire or set Active Directory Forest Trust Information might have issues
    Apps using Microsoft .NET to acquire or set Forest Trust Information might fail, close, or you might receive an error.
    		OS Build 14393.4886
    KB5009546
    2022-01-11    		Mitigated
    		2022-02-07
    15:36 PT
    Windows Presentation Foundation (WPF) apps might close, or you may receive an error
    Microsoft and third-party applications which use the .Net UI framework called WPF might have issues.
    		OS Build 14393.4225
    KB4601318
    2021-02-09    		Mitigated
    		2021-02-11
    20:41 PT

    Issue details

    March 2024

    Issue with Kerberos requests on domain controllers may cause LSASS memory leaks

    StatusOriginating updateHistory
    Resolved KB5037423OS Build 14393.6796
    KB5035855
    2024-03-12    		Resolved: 2024-03-22, 14:00 PT
    Opened: 2024-03-20, 18:39 PT

    Following installation of the March 2024 security update, released March 12, 2024 (KB5035855), Local Security Authority Subsystem Service (LSASS) may experience a memory leak on domain controllers (DCs). This is observed when on-premises and cloud-based Active Directory Domain Controllers service Kerberos authentication requests.

    Extreme memory leaks may cause LSASS to crash, which triggers an unscheduled reboot of underlying domain controllers (DCs).

    Note: This issue does not occur on Home devices. It affects only environments in organizations using some Windows Server platforms.

    Resolution: This issue was resolved in the out-of-band (OOB) update KB5037423, which is only available via the Microsoft Update Catalog. We strongly recommend you do not apply the March 2024 security update on DCs and install KB5037423 instead. As this is a cumulative update, you do not need to apply any previous update before installing KB5037423. To install this update, search for KB5037423 in the Microsoft Update Catalog. The OOB update can then be manually imported to Windows Server Update Services (WSUS) and Configuration Manager. For guidance, see WSUS and the Microsoft Update Catalog.

    If you manage update catalogs in Configuration Manager, please check the section Import updates. If you with you work with software update synchronization in Configuration Manager, review the steps on Import updates from the Microsoft Update Catalog. For more information about the Microsoft Update Catalog, visit Microsoft Update Catalog - FAQs

    Important: This update (KB5037423) is not available from Windows Update and will not install automatically.

    Affected platforms:

    • ​Client: None
    • ​Server: Windows Server 2022; Windows Server 2019; Windows Server 2016; Windows Server 2012 R2

    February 2023

    Devices with locale set to Croatia might not utilize the expected currency

    StatusOriginating updateHistory
    ConfirmedN/A

    		Last updated: 2023-10-31, 10:06 PT
    Opened: 2023-02-23, 13:22 PT

    The correct default currency might not display or be used in Windows devices which have locale set to Croatia. This can affect applications which retrieve the device's currency for purchases or other transactions. 

    Earlier this year, Croatia joined the Eurozone, changing its currency from the Kuna to Euro. Windows Locale data for Croatia will be updated for this change in the short term.

    Workaround: Changing the currency in Windows can help. This can be accomplished via the Windows Control Panel.

    1. ​Open the "Windows Region" settings. This can be done in one of the following ways:
      1. ​Open "Control Panel" from the start menu and select "Change date, time, or number formats" under "Clock and Region"
      2. ​On your keyboard, press and hold the Windows key, then press the letter R. This will open the "Run" window. Type INTL.CPL into the Open field,
    2. ​In the Region settings, choose one of the 2 locales for Croatia:
      1. Croatian (Bosnia & Herzegovina)
      2. Croatian (Croatia)
    3. ​In this same window, click the "Additional settings" button. Once there, click the "Currency" tab.
    4. ​Change the currency symbol from "KN" to Euro, ""

    Additional information can be seen here: Currency formatting - Globalization | Microsoft Learn.

    Manually changing currency might also be an option in some applications. Although this won't change the device’s default currency, this could allow usage of the application with the desired currency preference. Some applications might not allow this manual change. Please view the settings and documentation for your applications.

    Next steps: We are working on a resolution and will provide an update in an upcoming release.

    Affected platforms:

    • ​Client: Windows 11, version 23H2; Windows 11, version 22H2; Windows 10, version 22H2; Windows 11, version 21H2; Windows 10, version 21H2; Windows 10, version 20H2; Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607; Windows 10 Enterprise 2015 LTSB
    • ​Server: Windows Server 2022; Windows Server, version 20H2; Windows Server, version 1809; Windows Server 2019; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2

    February 2022

    Certain apps or devices might be unable to create Netlogon secure channel connections

    StatusOriginating updateHistory
    InvestigatingOS Build 14393.4886
    KB5009546
    2022-01-11    		Last updated: 2022-02-24, 17:41 PT
    Opened: 2022-02-24, 17:25 PT

    After installing KB5009546 or any updates released January 11, 2022 and later on your domain controllers, scenarios which rely on Read-only domain controllers (RODCs) or synthetic RODC machine accounts might fail to establish a Netlogon secure channel. RODC accounts must have a linked and compliant KRBTGT account to successfully establish a secure channel. Affected applications or network appliances, such as Riverbed SteelHead WAN Optimizers, might have issues joining domains or limitations after joining a domain.

    Next Steps: Affected apps and network appliances will need an update from their developer or manufacturer to resolve this issue. Microsoft and Riverbed are presently investigating and will provide an update when more information is available.

    Affected platforms:

    • ​Server: Windows Server 2022; Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012; Windows Server 2008 R2 SP1; Windows Server 2008 SP2

    Apps that acquire or set Active Directory Forest Trust Information might have issues

    StatusOriginating updateHistory
    MitigatedOS Build 14393.4886
    KB5009546
    2022-01-11    		Last updated: 2022-02-07, 15:36 PT
    Opened: 2022-02-04, 16:57 PT

    After installing updates released January 11, 2022 or later, apps using Microsoft .NET Framework to acquire or set Active Directory Forest Trust Information might fail, close, or you might receive an error from the app or Windows. You might also receive an access violation (0xc0000005) error. Note for developers: Affected apps use the System.DirectoryServices API.

    Next Steps: This issue was resolved in the out-of-band update for the version of .NET Framework used by the app. Note: These out-of-band updates are not available from Windows Update and will not install automatically. To get the standalone package, search for the KB number for your version of Windows and .NET Framework in the Microsoft Update Catalog. You can manually import these updates into Windows Server Update Services (WSUS) and Microsoft Endpoint Configuration Manager. For WSUS instructions, see WSUS and the Catalog Site. For Configuration Manger instructions, see Import updates from the Microsoft Update Catalog.

    For instructions on how to install this update for your operating system, see the KB articles listed below:

    • ​Windows Server 2022: 
    • ​Windows Server 2019: 
    • ​Windows Server 2016: 
    • ​Windows Server 2012 R2: 
    • ​Windows Server 2012:

    Affected platforms:

    • ​Client: None
    • ​Server: Windows Server 2022; Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012

    February 2021

    Windows Presentation Foundation (WPF) apps might close, or you may receive an error

    StatusOriginating updateHistory
    MitigatedOS Build 14393.4225
    KB4601318
    2021-02-09    		Last updated: 2021-02-11, 20:41 PT
    Opened: 2021-02-11, 17:49 PT

    After installing KB4601318, Windows Presentation Foundation (WPF) apps might close, or you may receive an error similar to:

            Exception Info: System.NullReferenceException at System.Windows.Interop.HwndMouseInputProvider.HasCustomChrome(System.Windows.Interop.HwndSource, RECT ByRef)

            at System.Windows.Interop.HwndMouseInputProvider.GetEffectiveClientRect(IntPtr)

            at System.Windows.Interop.HwndMouseInputProvider.PossiblyDeactivate(IntPtr, Boolean)

            at System.Windows.Interop.HwndMouseInputProvider.Dispose()

    This occurs when disposing an HwndSource whose RootVisual is null, a situation that arises in Visual Studio when docking or splitting windows, and could arise in other apps.

    Affected platforms:

    • ​Client: Windows 10, version 1803; Windows 10 Enterprise LTSC 2016; Windows 10, version 1607
    • ​Server: Windows Server, version 1803; Windows Server 2016

    Workaround: To mitigate this issue when using Microsoft Visual Studio, update to the latest version. This issue is resolved starting with the following releases:

    Developers can mitigate this issue in their own apps by setting two AppContext switches using one of the methods described in AppContext Class (System) under the heading “AppContext for library consumers”. The switches are named Switch.System.Windows.Interop.MouseInput.OptOutOfMoveToChromedWindowFix and Switch.System.Windows.Interop.MouseInput.DoNotOptOutOfMoveToChromedWindowFix; both should be set to “true”. The first switch avoids the crash, but re-introduces the issue addressed in this update. The second switch is currently ignored, but will be recognized in a future .NET update that addresses the issue for the null-reference crash; it restores the behavior originally intended to be addressed in this update.

    For example, using the app.config file method to apply the workaround at application scope:

            <AppContextSwitchOverrides value="Switch.System.Windows.Interop.MouseInput.OptOutOfMoveToChromedWindowFix=true; Switch.System.Windows.Interop.MouseInput.DoNotOptOutOfMoveToChromedWindowFix=true " />

    Next steps: We are working on a resolution and will provide an update in an upcoming release.


    Report a problem with Windows updates

    To report an issue to Microsoft at any time, use the Feedback Hub app. To learn more, see Send feedback to Microsoft with the Feedback Hub app.

    Need help with Windows updates?

    Search, browse, or ask a question on the Microsoft Support Community. If you are an IT pro supporting an organization, visit Windows release health on the Microsoft 365 admin center for additional details.

    For direct help with your home PC, use the Get Help app in Windows or contact Microsoft Support. Organizations can request immediate support through Support for business.

    View this site in your language

    This site is available in 11 languages: English, Chinese Traditional, Chinese Simplified, French (France), German, Italian, Japanese, Korean, Portuguese (Brazil), Russian, and Spanish (Spain). All text will appear in English if your browser default language is not one of the 11 supported languages. To manually change the display language, scroll down to the bottom of this page, click on the current language displayed on the bottom left of the page, and select one of the 11 supported languages from the list.