Download KB4577063 For Windows 10 Version 2004 and Version 20H2

Microsoft has released a new optional update for both Windows 10 Version 2004 and Version 20H2 which is the upcoming feature update for Windows 10.

When you install KB4577063, the new build no. will become 19041.541 for Version 2004 and 19042.541 for Version 20H2.


  • We have fixed the issue where the WSL does not start with an “Item not found” error.
  • We’ve added a notification to Internet Explorer 11 that tells users that support for Adobe Flash will end in December 2020.
  • We’ve improved the system’s ability to detect when Microsoft Edge IE mode stops responding.
  • We fixed an issue that in some cases prevents the language bar from appearing when the user logs on to a new session. This occurs even though the language bar is configured correctly.
  • We fixed an issue where the first East Asian language character entered into a Microsoft Foundation Class Library (MFC) DataGrid is not recognized.
  • Fixed an issue that prevents you from reconnecting to a previously closed session because that session is in an unrecoverable state.
  • We’ve fixed an issue that causes games that use room sound to stop working.
  • We have resolved an issue that prevents the deletion of outdated user profiles when you configure a GPO for profile cleanup.
  • We fixed an issue where selecting I forgot my PIN under Settings>Accounts>Sign-in options in a Windows Hello for Business On-Premise Deployment fails.
  • We have updated the time zone information to 2021 for Fiji.
  • We fixed an issue that affects the ability of Microsoft’s System Centre Operations Manager (SCOM) to monitor a customer’s workload.
  • We have fixed an issue that causes random line breaks when you redirect the PowerShell console error output.
  • We fixed an issue with creating HTML reports with Tracerpt.
  • We have made it possible to run the DeviceHealthMonitoring Cloud Service Plan (CSP) on Windows 10 Business and Windows 10 Pro editions.
  • We’ve fixed an issue that prevents the content from being transferred to HKLM-Software-Cryptography for Windows feature updates.
  • We fixed an issue that, under certain circumstances, causes an access violation in lsass.exe when starting a process using the runas command.
  • We’ve fixed an issue where Windows Defender application control enforces rules for package family names that should only be checked.
  • We fixed an issue that displays an error stating that a smart card PIN change was unsuccessful even though the PIN change was successful.
  • We fixed an issue that might create duplicate Foreign Security Principal objects for authenticated and interactive users in the domain partition. As a result, the configuration files (.cnf) for the original objects are corrupted. This problem occurs when you promote a new domain controller with the CriticalReplicationOnly flag.
  • We’ve updated the configuration of Windows Hello Face Detection to work well with 940 nm wavelength cameras.
  • We’ve reduced distortions and discrepancies in Windows Mixed Reality Head Mounted Displays (HMD).
  • We made sure that the new Windows Mixed Reality HMDs meet the minimum specification requirements and have a 90 Hz refresh rate by default.
  • We fixed an issue that causes a stop error on a Hyper-V host when a virtual machine (VM) issues a specific Small Computer System Interface (SCSI) command.
  • Fixed an issue that could cause attempts to bind a socket to a shared socket to fail.
  • We’ve fixed an issue that can prevent applications from opening or cause other errors when applications use Windows APIs to verify Internet connectivity and incorrectly display the network icon in the notification area that “No Internet access.” This problem occurs when you use Group Policy or a local network configuration to disable active search for the Network Connectivity Status Indicator (NCSI). This problem also occurs when the active probing does not use a proxy and passive samples cannot detect Internet connectivity.
  • We fixed an issue that prevents Microsoft Intune from syncing on a device that uses Virtual Private Network Version 2 (VPNv2) Configuration Service Provider (CSP).
  • We have suspended uploads and downloads of peers when a VPN connection is detected.
  • We have fixed an issue that prevents Microsoft Internet Information Services (IIS) management tools, such as IIS Manager, from managing a ASP.NET application that has configured SameSite cookie settings on the web.config.
  • We have fixed an issue with ntdsutil.exe that prevents you from moving the Active Directory database files. The error is: “Move the file failed with source and destination with error 5 (access is denied.)”.
  • We have fixed an issue that incorrectly reported that Lightweight Directory Access Protocol (LDAP) sessions in Event ID 2889 are unsafe. This occurs when the LDAP session is authenticated and locked using a Simple Authentication and Security Layer (SASL) method.
  • We’ve fixed an issue that can cause Windows 10 devices that enable the Credential Guard to fail on authentication requests when they use the machine certificate.


  • We restored the constructed attributes in Active Directory and Active Directory Lightweight Directory Services (AD LDS) for msDS-partdistname.
  • We fixed an issue that caused queries against large keys on Ntds.dit to fail with the MAPI_E_NOT_ENOUGH_RESOURCES error. This issue can cause users to see limited availability of the meeting room because the Exchange Messaging Application Programming Interface (MAPI) cannot allocate additional storage for meeting requests.
  • We’ve fixed an issue that temporarily generates OSCP Responder Audit Events (5125) that indicates that a request has been made to the OCSP Responder service. However, there is no indication of the serial number or domain name (DN) of the issuer of the request.
  • We’ve fixed an issue that displays strange characters before the day, month, and year fields in the output of console commands.
  • We fixed an issue that causes lsass.exe to stop working, which triggered a system restart. This problem occurs when invalid restart data is sent using a noncritical paged search control.
  • We fixed an issue that caused events 4732 and 4733 to not be logged for domain-local group membership changes in certain scenarios. This occurs when you use the Permissive Modify control; for example, the Active Directory (AD) PowerShell modules use this control.
  • We fixed a problem with the Microsoft Cluster Shared Volumes File Systems (CSVFS) driver that prevents Win32 API access to SQL Server Filestream data. This occurs when the data on a cluster shared volume is stored in a SQL Server failover cluster instance that resides on an Azure VM.
  • We fixed an issue that causes a deadlock when offline files are enabled. As a result, CscEnpDereferenceEntryInternal holds parent and child locks.
  • We have fixed an issue that causes deduplication jobs with stop error 0x50 to fail when you call HsmpRecallFreeCachedExtents().
  • We have fixed an issue that causes applications to stop working when they use Microsoft’s Remote Desktop Sharing APIs. The breakpoint exception code is 0x80000003.
  • We removed the HTTP call to that the Remote Desktop client (mstsc.exe) makes when logging off when it uses a Remote Desktop gateway.
  • We fixed an issue evaluating the compatibility status of the Windows ecosystem to ensure application and device compatibility for all Windows updates.
  • We’ve added support for certain new Windows Mixed Reality motion controls.
  • We have fixed an issue that causes applications that use Dynamic Data Exchange (DDE) to stop responding when you try to close the application.
  • We’ve added an Azure Active Directory (AAD) device token that is sent to Windows Update (WU) as part of each WU scan. WU can use this token to queries membership in groups that have an AAD device ID.
  • We fixed a problem setting Group Policy to restrict disqualification to remote servers with the Restrict Delegation of Credentials mode on the Remote Desktop Protocol (RDP) client. As a result, the Terminal Server service first attempts to use Require Remote Credential Guard mode and will only use Require Restricted Admin if the server does not support Require Remote Credential Guard.


KB4577063 for Windows 10 Version 2004 and 20H2 64-bit

KB4577063 for Windows 10 Version 2004 and 20H2 32-bit

You might also like: