Download KB5017328 Windows 11 Cumulative Update For September 2022

Patch Tuesday Windows 11Patch Tuesday Windows 11

The second Tuesday of September 2022 has arrived, and we’re ready for the Patch Tuesday updates from Microsoft. Microsoft has released KB5017328 cumulative update for Windows 11, its latest Operating System. If you have Windows 10 installed on your system, you may want to install KB5017308 (21H2) to get the latest patches for your system .

Microsoft has already released a preview version of the cumulative update in August. If you have installed KB5016691, then most of the fixes included in KB5017328 have already been installed on your system.

Let’s go through the changelog and see what’s included in this update.

Fixes and improvements in KB5017328

Since this update includes all the fixes and improvements that came with KB5016691, we will list the fixes here for your ease.

  • IT administrators can now remotely add languages and language-related features. Additionally, they can now manage language scenarios across several endpoint managers.
  • The file will now be compressed regardless of its size if you have configured Server Message Block (SMB) Compression.
  • Microsoft Defender for Endpoint has been enhanced to identify and intercept ransomware and advanced attacks.
  • An issue that causes ServerAssignedConfigurations to be null in a few full configuration scenarios has been fixed.
  • An issue that affects the automatic high dynamic range (Auto HDR) feature for cross-adapter resource scan-out (CASO)-capable GPU drivers has been addressed.
  • An issue that causes Microsoft Edge to stop responding when using IE mode has been fixed. This issue also prevented you from interacting with a dialog box. 
  • An issue that prevents virtualized App-V Microsoft Office applications from opening or causes them to stop working entirely has been fixed.
  • An issue that might cause the deployment of the Windows Hello for Business certificate to fail in certain circumstances after you reset a device is mitigated.
  • Multiple issues related to USB printing have been addressed, such as:
    • The printer malfunctions after you restart or reinstall it.
    • Being in the wrong mode after you switch from an Internet Printing Protocol (IPP) Class Driver to an independent hardware vendor (IHV) driver.
    • Experiencing bidirectional communication issues that prevent you from accessing device features.
  • An issue that affects the ProjectionManager.StartProjectingAsync API has been addressed.
  • An issue that degrades BitLocker performance has been addressed.
  • An issue that prevents Windows 11 SE from trusting some Microsoft Store applications has been fixed.
  • An issue that prevents HyperVisor Code Integrity from being enabled automatically on systems that have Arm64 processors has been addressed.
  • An issue that stops non-Windows devices from authenticating has been mitigated.
  • An issue that causes the Resultant Set of Policy tool (Rsop.msc) to stop working when it processes 1,000 or more “File System” security settings has been fixed. 
  • An issue that causes the Take a Test app to remove all policies related to lockdown enforcement when you close the app has been fixed.
  • An issue that causes the Settings app to stop working on server Domain Controllers (DCs) when accessing the Privacy >> Activity history page has been fixed.
  • An issue that might cause certain Bluetooth audio headsets to stop playing after a progress bar adjustment has been fixed. This issue affects modern systems that support Advanced Audio Distribution Profile (A2DP) offload.
  • An issue that prevents devices from receiving an offer from Windows Update for the same extension driver when that extension driver is already installed without the base driver has been taken care of.
  • A race condition that causes the Local Security Authority Subsystem Service (LSASS) to stop working on Active Directory domain controllers has been mitigated.
  • An issue that affects a lookup for a nonexistent security ID (SID) from the local domain using a read-only domain controller (RODC) has been addressed. The lookup unexpectedly returned the STATUS_TRUSTED_DOMAIN_FAILURE error instead of STATUS_NONE_MAPPED or STATUS_SOME_MAPPED.
  • An issue that might cause the Local Security Authority Server Service (LSASS) to leak tokens has been fixed. This issue affects devices that have installed Windows updates dated June 14, 2022, or later.

In addition, this update includes some further fixes, including problems with the last preview update.

  • Addresses a known issue that affects Microsoft accounts (MSA). The web dialog that you use to sign in or sign out might not appear. This issue occurs on devices that have installed KB5016691.
  • A few vulnerabilities have also been fixed. Microsoft has not mentioned any specific vulnerability, but you can go through the vulnerability list on MSRC. Look for the following CVE updates for Windows 11:
    • CVE-2022-38011 – Raw Image Extension Remote Code Execution Vulnerability
    • CVE-2022-38004 – Windows Fax Service Remote Code Execution Vulnerability

Known Issues

There are some known issues Microsoft has still not addressed. You can go through the issues here.

  • After installing KB5017328, XPS Viewer may stop opening XPS documents. Instead, XPS Viewer will start taking large amounts of RAM if not closed manually.
  • Possible incorrect display time and date if you are in Chile. DST settings were officially changed, from 4th September to 10th September. If Windows doesn’t change the time automatically, you will need to update it manually. Otherwise, there will be a time difference of 60 minutes from Chile’s official time.

Download and Install KB5017328

You can install this update on a Windows 11 PC through Windows Update as well as a standalone installer.

Windows Update

Perform the following steps to download and install KB5017328 on your Windows 11 computer :

Download and install Windows 11, or check if your system meets the minimum hardware requirements for Windows 11.

  1. Navigate to the following:

    Settings app >> Windows Update
  2. Here, click Check for updates.

    check for updates Windows 11
    Check for pending updates
  3. You will now see the following update downloading:

    2022-08 Cumulative Update for Windows 11 for x64-based Systems (KB5016629)

    When downloaded, click Install Now.

    Install now
    Install now
  4. Once it is installed, click Restart Now to reboot your PC and finalize the installation.

    Restart now 1
    Restart computer

Once the computer reboots, the update will be successfully installed. To confirm this, check the updated build number by typing in winver in the Run Command box.

Download KB5017328 Offline Installers

To download KB5017328 MSU offline installer, click on the respective link below:

Download Windows 11 KB5017328 for x64-based systems [301.2 MB]

Download Windows 11 KB5017328 for ARM-based systems [412.4 MB]

To install the update, simply run the downloaded MSU file and Windows will automatically install the update. You can also extract the CAB file from the MSU file and install it.

To download any other updates related to any of the above, please check the Microsoft Catalog.

Rollback/Remove Windows 11 Cumulative Update

If you do not wish to keep the installed update for some reason, you can always roll back to the previous build of the OS. However, this can only be performed within the next 10 days after installing the new update.

To roll back after 10 days, you will need to apply this trick.

Cleanup After Installing Windows Update

If you want to save space after installing Windows updates, you can run the following commands one after the other in Command Prompt with administrative privileges:

dism.exe /Online /Cleanup-Image /AnalyzeComponentStore
dism.exe /Online /Cleanup-Image /StartComponentCleanup
dism cleanup
DISM cleanup

Block KB5017328 from installing

Since KB5017328 is a mandatory update, it will download and install itself on the schedule. If you want to block it from temporarily or permanently installing, you can follow the steps below:

  1. Download Show or hide updates tool from Microsoft.

  2. Run the utility and start Next to start the scanning process.

    Show or hide updates
    Show or hide updates
  3. Next, select the Hide updates button.

    Hide updates
    Hide updates
  4. The tool will show available updates to hide. Select problematic updates and press Next.

    list of updates to hide
    list of updates to hide
  5. This automatically hides the update from Windows Update and it will not be installed during the next update process. Press the Close button to close.

If you want to unhide or show hidden updates, run the tool again and select Show hidden updates instead of Hide updates. The rest of the process is the same.

Final Analysis

Microsoft is known to release software updates with problems. For example, the last preview update had problems with the Microsoft account. This update fixes those issues, but comes with its own known issues. So our advice is always to wait for some time before installing the Patch Tuesday updates, especially for your production computers.

This update seems to only affect users who use XPS viewer or users living in Chile. If you’re not one of those, you can install this update without any problems. If you are a sysadmin and want to save bandwidth or install updates on systems without Internet access (if not using WSUS or Intune), you can download these updates to one system and install them manually on your network.

Windows 11 Patch Tuesday History

KB ArticleOS VersionBuildRelease DateSignificant ChangesAnnouncement
KB503476523H2, 22H2226X1.315513-2-24Fixed Narrator, search in Start menu, and more. Moved Copilot icon in taskbar to the rightMicrosoft announcement of KB5034765
KB503412323H2, 22H2226X1.30079-Jan-23Improved weather widget on lock screen, fixed Wi-Fi connectivity issue for education and corporate usersMicrosoft announcement of KB5034123
KB503337523H2, 22H2226X1.286112-Dec-23Copilot improvements, Windows Spotlight to be the default backgroundMicrosoft announcement of KB5033375
KB503219023H2, 22H2226X1.2715 14-Nov-23Enable Moment 4 features, addresses zero-day vulnerabilities, introduces issues with Copilot and COLRv1.Microsoft announcement of KB5032190
KB503135422H222621.242810-Oct-23Introduces Copilot and Dev Drives, new voice access commands, improvements to Settings app and File ExplorerMicrosoft announcement of KB5031354
KB503021922H222621.228312-Sep-23Improved Search app, search flyout box on hover, easily tab through search resultsMicrosoft announcement of KB5030219
KB502926322H222621.21348-Aug-23Addresses VPN issues, more accurate brightness levels, notifications more reliableMicrosoft Announcement of KB5029263
KB502925321H222000.22958-Aug-23Addresses VPN issues, reliable notificationsMicrosoft Announcement of KB5029253
KB502818522H222621.199211-Jul-23Share local files with Outlook contacts, 78 vulnerabilities addressesMicrosoft Announcement of KB5028185
KB502818221H222000.217611-Jul-23Announcement of some Windows 11 22H2 editions EOL, share local files with Outlook contacts Microsoft Announcement of KB5028182
KB502723122H222621.184813-Jun-23Fixes a known issue with 32-bit apps, addresses a Windows kernel information disclosure vulnerabilityMicrosoft Announcement of KB5027231
KB502722321H222000.205713-Jun-23Fixes a known issue with 32-bit apps, addresses a Windows kernel information disclosure vulnerabilityMicrosoft Announcement of KB5027223
KB502637222H222621.17029-May-23Option to get the latest non-security updates immediately, new animations in the Widgets iconsMicrosoft Announcement of KB5026372
KB502636821H222000.19369-May-23Addresses issues with LSASS and other fixesMicrosoft Announcement of KB5026368
KB502523922H222621.155511-Apr-23Microsoft account notifications in the Start menu, the search box will be lighter in a custom color theme, and a plethora of fixesMicrosoft Announcement of KB5025239
KB502522421H222000.181711-Apr-23Fixes known issues with kiosk devicesMicrosoft Announcement of KB5025224
KB502370622H222621.141314-Mar-23AI Bing search box, iOS linking, tabbed notepad, screen recording from Snipping Tool, redesigned Quick AssistMicrosoft Announcement of KB5023706
KB502369821H222000.169614-Mar-23Phase three of DCOM hardening, other fixesMicrosoft Announcement of KB5023698
KB502284522H222621.126514-Feb-23.NET Framework updates integrated into UUP-based feature updatesMicrosoft Announcement of KB5022845
KB502283621H222000.157414-Feb-23– Combines Windows Spotlight with Themes on the Personalization page
– Multiple changes to the Accounts Settings page
Microsoft Announcement of KB5022836
KB502230322H222621.110510-Jan-23– ODBC Connectivity with SQL Server fixed.
– Local Session Manager security issues fixed
Microsoft Announcement of KB5022303
KB502228721H222000.145510-Jan-23– ODBC Connectivity with SQL Server fixed.
– Local Session Manager security issues fixed
Microsoft Announcement of KB5022287
KB502125522H222621.96313-Dec-22-UI discrepancies in Task Manager are fixed
-DPAPI decryption issue is fixed
Microsoft Announcement of KB5021255
KB5021234 21H222000.133513-Dec-22-UI discrepancies in Task Manager are fixed
-DPAPI decryption issue is fixed
Microsoft Announcement of KB5021234
KB501998022H222621.8198-Nov-22Task Manager option added to taskbar’s context menuMicrosoft Announcement of KB5019980
KB501996121H222000.12198-Nov-22Task Manager option added to taskbar’s context menuMicrosoft Announcement of KB5019961
Changelog for Windows 11 Patch Tuesday updates
If you liked this post, Share it on:

Get Updates in Your Inbox

Sign up for the regular updates and be the first to know about the latest tech information

Usman Khurshid
Usman Khurshid is a seasoned IT Pro with over 15 years of experience in the IT industry. He has experience in everything from IT support, helpdesk, sysadmin, network admin, and cloud computing. He is also certified in Microsoft Technologies (MCTS and MCSA) and also Cisco Certified Professional in Routing and Switching.

Leave the first comment