Release Date:
4/23/2024
Version:
OS Builds 22621.3527 and 22631.3527
2/27/24
IMPORTANT: New dates for the end of non-security updates for Windows 11, version 22H2
The new end date is June 24, 2025 for Windows 11, version 22H2Enterprise and Educationeditions. Home and Pro editions of version 22H2 will receive non-security preview updates until June, 26, 2024.
After these dates, only cumulative monthly security updates will continue for the supported editions of Windows 11, version 22H2. The initial date communicated for this change was February 27, 2024. Based on user feedback, this date has been changed so more customers can take advantage of our continuous innovations.
Forinformation about Windows update terminology, see the articleabout thetypes of Windows updatesand themonthly quality update types. For an overview of Windows 11, version 23H2, see its update history page.
NoteFollow@WindowsUpdateto find out when new content is published to the Windows release health dashboard.
Highlights
-
New! The Recommended section of the Start menu will show some Microsoft Store apps. These apps come from a small set of curated developers. This will help you to discover some of the great apps that are available. If you want to turn this off, go to Settings > Personalization > Start. Turn off the toggle for Show recommendations for tips, app promotions, and more.
-
New! In the coming weeks, your most frequently used apps might appear in the Recommended section of the Start menu. This applies to apps that you have not already pinned to the Start menu or the taskbar.
See Also2024.5: Just a little bit smallerWhat’s new in Home Assistant March 2024.3 – Drag and Drop is Here! - Smart Home Junkie - Tutorials and Information for your Smart Home and Home AssistantHome Assistant 2023.11: What's New in the Latest Release - Kiril Peyanski's BlogWhat's new in Home Assistant 2023.9 - UI Changes and Templates! -
New! This update improves the Widgets icons on the taskbar. They are no longer pixelated or fuzzy. This update also starts the rollout of a larger set of animated icons.
-
New! This update affects Widgets on the lock screen. They are more reliable and have improved quality. This update also supports more visuals and a more customized experience for you.
-
This update affects the touch keyboard. It makes the Japanese 106 keyboard layout appear as expected when you sign in.
-
This update addresses an issue that affects Settings. It stops responding when you dismiss a flyout menu.
Improvements
Note:To view the list of addressed issues, click or tap the OS name to expand the collapsible section.
Important:Use EKBKB5027397to update to Windows 11, version 23H2.
This non-security update includes quality improvements. Key changes include:
-
This build includes all the improvements inWindows 11, version 22H2.
-
No additional issues are documented for this release.
This non-security update includes quality improvements. When you install this KB:
-
This update adds a new mobile device management (MDM) policy called “AllowScreenRecorder.” It affects the Snipping Tool. IT admins can use this policy to turn off screen recording in the app.
-
This update adds support for Arm64 .msi files using a Group Policy Object (GPO). You can now use the Group Policy Management Console (GPMC) to add Arm64 .msi files. You can also use a GPO to install these files on Arm64 machines.
-
This update addresses an issue that affects the netstat -c command. It fails to perform effective port exhaustion troubleshooting.
-
This update addresses an issue that affects a low latency network. The speed of data on the network degrades significantly. This occurs when you turn on timestamps for a Transmission Control Protocol (TCP) connection.
-
This update addresses a race condition that might stop a machine from starting up. This occurs when you set up a bootloader to start up multiple OSes.
-
This update addresses an issue that affects an accelerator backing store management path. A memory leak occurs that affects some devices.
-
This update affects media allocations. It improves their memory granularity for some hardware setups. This lowers overcommitment. Also, performance is more efficient.
-
This update affects Windows Subsystem for Linux 2 (WSL2). Intermittent name resolution fails in a split DNS setup.
-
This update addresses an issue that affects universal printers. The system creates duplicate print queues for them.
-
This update makes Country and Operator Settings Asset (COSA) profiles up to date for some mobile operators.
-
This update addresses an issue that affects the container networking Address Resolution Protocol (ARP). It returns the wrong Virtual Subnet ID (VSID) for external ports.
-
This update addresses a memory allocation issue in the Host Networking Service (HNS). The issue causes high memory consumption. It also affects service and pod deployment and scaling.
-
This update addresses an issue that occurs when you elevate from a normal user to an Administrator to run an application. When you use a PIN to sign in, the app will not run.
-
This update affects hypervisor-protected code integrity (HVCI). It accepts drivers that are now compatible.
-
This update includes quarterly changes to the Windows Kernel Vulnerable Driver Blocklist file, DriverSiPolicy.p7b. It adds to the list of drivers that are at risk for Bring Your Own Vulnerable Driver (BYOVD) attacks.
-
This update addresses an issue that affects Protected Process Light (PPL) protections. You can bypass them.
-
This update addresses an issue that affects Bluetooth Advanced Audio Distribution Profile (A2DP) hardware offload. A stop error occurs on PCs that support it.
-
This update addresses an issue that affects the Distributed Transaction Coordinator (DTC). A memory leak occurs when it retrieves mappings.
-
This update addresses an issue that affects Windows Local Administrator Password Solution (LAPS). Its Post Authentication Actions (PAA) do not occur at the end of the grace period. Instead, they occur at restart.
-
This update addresses an issue that affects the Resilient File System (ReFS). A high load might make the system unresponsive. Also, signing in might be slow.
If you installed earlier updates, only the new updates contained in this package will be downloaded and installed on your device.
Windows 11servicing stack update - 22621.3522 and 22631.3522
This update makes quality improvements to the servicing stack, which is the component that installs Windows updates. Servicing stack updates (SSU) ensure that you have a robust and reliable servicing stack so that your devices can receive and install Microsoft updates.
Known issues in this update
| Applies to | Symptom | Workaround |
|---|---|---|
| All users | After installing this update, you might be unable to change your user account profile picture. When attempting to change a profile picture by selecting the button Start> Settings> Accounts > Your info, and then selecting Choose a file, you might receive an error message with error code 0x80070520. | We are working on a resolution and will provide an update in an upcoming release. |
| All users | Windows devices might face VPN connection failures after installing the update dated April 9, 2024, or later. | Windows support: Home PC: If you need support with your personal or family account, use the Get help app in Windows. Enterprise devices: Request help for your organization through Support for business. We are working on a resolution and will provide an update in an upcoming release. |
How to get this update
Before installing this update
Microsoft combines the latest servicing stack update (SSU) for your operating system with the latest cumulative update (LCU).For general information about SSUs,see Servicing stack updatesandServicing Stack Updates (SSU): Frequently Asked Questions.
Install this update
| Release Channel | Available | Next Step |
|---|---|---|
| Windows Update or Microsoft Update | Yes | Go toSettings>Update & Security>Windows Update. In theOptional updates availablearea, you’ll find the link to download and install the update. |
| Windows Update for Business | No | None. These changes will be included in the next security update to this channel. |
| Microsoft Update Catalog | Yes | To get the standalone package for this update, go to theMicrosoft Update Catalogwebsite. |
| Windows Server Update Services (WSUS) | No | You can import this updateinto WSUS manually. See theMicrosoft Update Catalogfor instructions. |
If you want to remove the LCU
To remove the LCU after installing the combined SSU and LCU package, use the DISM/Remove-Package command line option with the LCU package name as the argument. You can find the package nameby using this command: DISM /online /get-packages.
Running Windows Update Standalone Installer (wusa.exe) with the /uninstall switch on the combined package will not work because the combined package contains the SSU. You cannot remove the SSU from the system after installation.
File information
For a list of the files that are provided in this update, download thefile information for cumulative update 5036980.
For a list of the files that are provided in the servicing stack update, download thefile information for the SSU - versions 22621.3522 and 22631.3522.
