Microsoft releases Home windows 10 KB5094127 prolonged safety replace

Microsoft has launched the Home windows 10 KB5094127 prolonged safety replace, which fixes the June 2026 Patch Tuesday vulnerabilities and provides new capability to watch the rollout of up to date Protected Boot certificate that change the ones expiring this month.

In case you are operating Home windows 10 Endeavor LTSC or are enrolled within the ESU program, you’ll set up this replace like commonplace by means of going into Settings, clicking on Home windows Replace, and manually appearing a ‘Take a look at for Updates.’

After putting in this replace, Home windows 10 will be up to date to construct 19045.7417, and Home windows 10 Endeavor LTSC 2021 will probably be up to date to construct 19044.7417.

What is new in Home windows 10 KB5094127

Microsoft is now not liberating new options for Home windows 10, and the KB5094127 replace basically accommodates safety updates and insect fixes.

The replace additionally comprises fixes launched as a part of as of late’s June 2026 Patch Tuesday, which addressed 200 vulnerabilities, together with 3 publicly disclosed zero-day flaws.

Your entire checklist of fixes in KB5094127 is indexed beneath:

• [File Explorer] This replace improves Record Explorer seek, together with give a boost to for Chinese language textual content, and UTF 8–encoded information with out a byte order mark (BOM). Textual content now presentations extra obviously and persistently throughout seek effects, Content material view, and tooltips.

• [Secure Boot]

  
  

  • This replace allows dynamic standing reporting for Protected Boot states in Home windows Safety App.

  • This replace provides a brand new coverage environment, LimitSecureBootRequiredServiceData, underneath Pc Configuration > Administrative Templates > Home windows Elements > Protected Boot. When this environment is enabled, Home windows limits the Protected Boot provider information it sends by means of suppressing the development most often despatched to Microsoft. This coverage could also be incorporated within the Home windows Limited Site visitors Restricted Capability Baseline package deal. For details about the coverage, see Arrange connections from Home windows 10 and Home windows 11 running gadget parts to Microsoft products and services.

  • With this replace, Home windows high quality updates come with further top self assurance instrument focused on information, expanding protection of units eligible to routinely obtain new Protected Boot certificate. Units obtain the brand new certificate most effective after demonstrating enough a hit replace indicators, keeping up a managed and phased rollout.

Microsoft could also be caution of a identified factor that may cause BitLocker restoration activates on some Home windows techniques after putting in contemporary updates.

In line with Microsoft, the problem basically impacts units configured with a selected BitLocker Workforce Coverage that explicitly comprises PCR7 within the TPM validation profile, and likely Protected Boot and Home windows Boot Supervisor configurations associated with the more moderen Home windows UEFI CA 2023 certificates.

As a short lived workaround, Microsoft advises eliminating the Workforce Coverage environment after which postponing and resuming BitLocker to regenerate the default PCR bindings whilst the corporate works on an everlasting repair.