Microsoft has acknowledged a bug in some of the most recent cumulative updates for Windows 10, revealing that installing these patches could cause devices connected to a domain using MIT Kerberos reals to fail to start up or continue to restart.
The company explains that this bug affects the majority of Windows 10 versions where the latest cumulative updates were installed, including the May 2019 Update.
The affected platforms (both client and server) are the following:
Windows 10 version 1903 |
Windows 10 version 1809 |
Windows 10 Enterprise LTSC 2019 |
Windows 10 version 1803 |
Windows 10 version 1709 |
Windows 10 version 1703 |
Windows 10 Enterprise LTSC 2016 |
Windows 10 version 1607 |
Windows Server version 1903 |
Windows Server version 1809 |
Windows Server 2019 |
Windows Server version 1803 |
Windows Server version 1709 |
Windows Server 2016 |
If you’re not sure the bug exists on your device or not, you can check if the following registry key exists on your computer using the Registry Editor:
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System\Kerberos\MitRealms
Microsoft says you should also look for a policy called “Define interoperable Kerberos v5 realm settings” located at the following path in the GPE:
Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos
The issue has already been confirmed to exist in the following cumulative updates:
Windows 10 version 1903: OS Build 18362.145, May 29, 2019 - KB4497935 |
Windows 10 version 1809: OS Build 17763.652, July 22, 2019 - KB4505658 |
Windows 10 version 1803: OS Build 17134.915, July 16, 2019 - KB4507466 |
Windows 10 version 1709: OS Build 16299.1296, July 16, 2019 - KB4507465 |
Windows 10 version 1703: OS Build 15063.1955, July 16, 2019 - KB4507467 |
Windows 10 version 1607: OS Build 14393.3115, July 16, 2019 - KB4507459 |