Microsoft releases KB5015814 update for Windows 11 to fix security flaws and PowerShell issues

For July's Patch Tuesday, Microsoft has released the KB5015814 update for Windows 11. This security update takes Windows 11 up to build 22000.795 and addresses a number of issues with the operating system. To accompany the release, Microsoft has also provided a handful of Windows 11 tips.

The company points out that this particular update includes the improvements that were introduced with last month's KB5014668 update. Importantly, it also addresses a PowerShell issue with blank transcript logs and lost passwords.

See also:

• Microsoft launches Windows Autopatch for Windows 10 and Windows 11
• Microsoft releases PowerToys v0.60.0 with great new Windows 11 features
• Microsoft releases new versions of free Windows 11 virtual machines

The update also addresses an issue that was preventing some users from upgrading to Windows 11, as well as making numerous improvements for video and audio in games. There are also improvements to Bluetooth reconnections and the addition of Search Highlights for anyone who does not yet have this feature.

Microsoft explains the PowerShell problem that is fixed by the KB5015814:

Addresses an issue that redirects the PowerShell command output so that transcript logs do not contain any content. Transcript logs might contain decrypted passwords if you turn PowerShell logging on. Consequently, the transcript logs lose the decrypted passwords.

KB5015814 also includes the following improvements and additions from the previously released KB5014668 update:

• New! Adds IP address auditing for incoming Windows Remote Management (WinRM) connections in security event 4262 and WinRM event 91. This addresses an issue that fails to log the source IP address and machine name for a remote PowerShell connection.
• New! Adds Server Message Block (SMB) redirector (RDR) specific public File System Control (FSCTL) code FSCTL_LMR_QUERY_INFO.
• New! Makes the SMB client and SMB server cipher suite order configurable using PowerShell.
• New! Introducing search highlights
• New! Adds support for Transport Layer Security (TLS) 1.3 in Windows client and server Lightweight Directory Access Protocol (LDAP) implementations.
• Addresses a race condition issue that might cause an upgrade to Windows 11 (original release) to fail.
• Addresses an issue that displays Japanese characters incorrectly in PowerShell.
• Addresses an issue that affects the Cloud Clipboard service and prevents syncing between machines after a period of inactivity.
• Addresses an issue that fails to hide the Windows Sandbox startup screen after Sandbox starts to run .
• Addresses an issue that causes a device that has a Japanese system locale to stop working when you disable end-user-defined characters (EUDCs).
• Enables the InternetExplorerModeEnableSavePageAs Group Policy. For more information, see Microsoft Edge Browser Policy Documentation.
• Provides the ability to use a network proxy during Universal Print operations.
• Addresses an issue that might cause playback of consecutive video clips to fail in games that use DirectX 12 (DX12).
• Addresses an issue that causes certain games to stop working if they use the XAudio API to play sound effects.
• Addresses an issue that affects some certificates chains to Root Certification Authorities that are members of the Microsoft Root Certification Program. For these certificates, the certificate chain status can be, "This certificate was revoked by its certification authority".
• Addresses an issue that prevents the use of Encrypted File System (EFS) files over a Web-based Distributed Authoring and Versioning (WebDAV) connection.
• Addresses an issue that causes a domain controller to incorrectly write Key Distribution Center (KDC) event 21 in the System event log. This occurs when the KDC successfully processes a Kerberos Public Key Cryptography for Initial Authentication (PKINIT) authentication request with a self-signed certificate for key trust scenarios (Windows Hello for Business and Device Authentication).
• Addresses an issue that prevents Bluetooth from reconnecting to some audio devices after you restart the devices.
• Addresses an issue that occurs when the Active Directory Lightweight Directory Service (AD LDS) resets the password for userProxy objects. When you try to reset someone else's password and you are authenticated using a simple bind, the password reset fails. The error is like, "00000005: SvcErr: DSID-03380C23, problem 5003 (WILL_NOT_PERFORM), data 0".
• Addresses an issue that causes Microsoft NTLM authentication using an external trust to fail. This issue occurs when a domain controller that contains the January 11, 2022 or later Windows update services the authentication request, is not in a root domain, and does not hold the Global Catalog role. The affected operations might log the following errors:
  • The security database has not been started.
  • The domain was in the wrong state to perform the security operation.
  • 0xc00000dd (STATUS_INVALID_DOMAIN_STATE).
• Addresses an issue that causes the LocalUsersAndGroups configuration service provider (CSP) policy to fail when you modify the built-in Administrators group. This issue occurs if the local Administrator account isn't specified in the membership list when you perform a replace operation.
• Addresses an issue in which malformed XML inputs might cause an error in DeviceEnroller.exe. This prevents CSPs from being delivered to the device until you restart the device or correct the XML.
• Addresses an issue that might cause Windows 11 (original release) to stop working when you install an application and there is no network connectivity.
• Updates the Start menu to display Windows PowerShell when you right-click (Win + X) the Start button after you have uninstalled Windows Terminal.
• Changes the name of the Your Phone app to Phone Link on the Settings page.
• Addresses an issue that causes the Microsoft Surface Dial customization settings page to stop working.
• Addresses a known issue that might prevent you from using the Wi-Fi hotspot feature. When attempting to use the hotspot feature, the host device might lose the connection to the internet after a client device connects.

It is worth taking a look at the release notes for the KB5015814 update as it includes a video complete with Windows 11 tips.

You should find that KB5015814 is downloaded and installed automatically, but you can also use Windows Update to manually check for and grab it. Alternatively, you can download the update from the Microsoft Update Catalog website.