Mainstream Support for Windows 10 version 1507 Ends, 'No More Security Updates Going Forward'

After May 9, version 1507 will no longer receive security and quality updates. Microsoft recommends updating to latest release.

Share online:

Windows 10 version 1507, which was rolled out to general public on July 29, 2015, today on May 9, reaches the last day of support.

Microsoft had announced the end of support to its original Windows 10 release to be in March 2017, but later it pushed it back to May 2017. And, today it marks the last day.

The following versions of Windows 10 will be affected:

  • Windows 10 Home
  • Windows 10 Pro
  • Windows 10 Education
  • Windows 10 Enterprise

Beyond today, however the operating system will continue to operate, but will no longer receive security and quality updates, Microsoft said. If you are unsure of your Windows 10 version, you can press "Windows" + "R", and type "winver" to check the running version.

To upgrade to lastest Creators Update 1703, you can head over to Windows Software Download page.

In addition, Microsoft noted that devices running Windows 10 Enterprise 2015 LTSB or Windows 10 IoT Enterprise 2015 LTSB, will continue receiving security updates. According to Microsoft post:

Since the initial release of Windows 10 in July 2015, Microsoft has released two additional feature updates that build upon each other, delivering the newest features and more comprehensive security.

Windows 10 was designed as a service, whereby feature updates are required a few times a year. For most consumers, both quality and feature updates are delivered automatically according to their Windows Update settings.

By policy, devices need to install the latest feature update within a 60-day grace period of its release to continue to be eligible for monthly servicing with security updates and other quality updates.

We extended this grace period for version 1507 beyond this typical 60-day policy, but the time has now come to end servicing for version 1507.

The end of mainstream lifecycle dates for versions 1511 and 1607 aren't listed on Microsoft's website yet, while version 1703 is slated for October 13, 2020.

On Tuesday, Microsoft as part of May Patch Tuesday, issued a total of 57 security updates. A staggering 57 common vulnerabilities and exposures (CVEs) have been addressed as part of this month's Patch Tuesday and is comprised of 16 critical and 41 important updates, the team said.

However, in terms of notable vulnerabilities, perhaps one of the most critical addressed by Patch Tuesday was a remote code execution flaw affecting Microsoft Office 2010, 2013, and 2016. Another remote code execution vulnerability was found in Windows Defender, Microsoft Security Essentials, Windows Intune Endpoint Protection, and specific Microsoft Forefront products, tracked under CVE-2017-0290.

Here is a list of affected softwares:

  • Adobe Flash Player
  • Internet Explorer 9, 10, and 11
  • Microsoft .NET Framework 3.5 and later
  • Microsoft Edge
  • Microsoft Office and component products
  • Windows Defender
  • Windows 7, 8.1, RT 8.1, and 10
  • Windows Server 2008, 2008 R2, 2012, 2012 R2, and 2016

In addition, cumulative updates for Windows 10 builds 15063.296 and 14393.1198 are now available for PCs and Mobile devices running Anniversary Update 1607 and Creators Update 1703, also received updates.

See the changelog below for Windows PCs and Mobile:

Here is what's fixed for Creators Update receiving KB4016871, or build 15063.296/15063.297:

  • Addressed issue with Surface Hub devices waking from sleep approximately every four minutes after the first two hours.
  • Addressed issue where autochk.exe can randomly skip drive checks and not fix corruptions, which may lead to data loss.
  • Addressed an issue where Microsoft Edge users in networking environments that do not fully support the TCP Fast Open standard may have problems connecting to some websites. Users can re-enable TCP Fast Open in about:flags.
  • Addressed issues with Arc Touch mouse Bluetooth connectivity.
  • Security updates to Microsoft Edge, Internet Explorer, Microsoft Graphics Component, Windows SMB Server, Windows COM, Microsoft Scripting Engine, Windows kernel, Windows Server, and the .NET Framework.

What's new in Anniversary Update receiving KB4019472, build 14393.1198:

  • Addressed issue where the PC Settings pages do not display the correct options after the installation of KB3213986 and a language pack.
  • Addressed issue where fonts appear differently based on whether an app uses Graphics Device Interface (GDI) or GDI Plus.
  • Addressed issue where applications that use msado15.dll stop working after installing security update KB4015550.
  • Addressed issue that causes a device to become unresponsive when users try to enable end-user-defined characters (EUDCs).
  • Addressed issue that causes a device to crash every time a user logs off from a remote session using a Virtual Desktop Agent (VDA).
  • Addressed issue where changing the scaling setting of the display prevents DPI-aware tools (Notepad, MS Paint, etc.) from accepting input or drawing correctly when using the Japanese IME.
  • Addressed issue that causes Windows Explorer's CPU usage to be at 20% when an executable file is hosted on a file share and its Offline attribute is set.
  • Addressed issue where Windows Event Forwarding between two 2012 R2 servers makes reports incompatible with third-party Security Information and Event Management software.
  • Addressed issue where the BitLocker Drive Encryption wizard shows the "Choose which encryption mode to use" page even when the BitLocker GPO is enabled.
  • Addressed issue where AppLocker fails to block binaries with revoked certificates.
  • Addressed issue where a virtual machine (VM) loses network connectivity if the VM does not send Address Resolution Protocol packets for five minutes and the VM is connected to a wireless NIC.
  • Addressed issue that causes the loss of a VPN connection when using a computer with an integrated WAN card (cellular card).
  • Addressed issue where multipath I/O did not properly restore service after the check condition "Illegal request, LUN not available (sense codes 05/25/00)" occurs.
  • Addressed issue where a Stop 0x27 error occurs after a user provides the domain username and password.
  • Addressed issue where users can create folders on a USB flash drive when "Deny write access" is set for Removable Storage Access.
  • Addressed an issue where crash dump generation hangs at 0% on a system with over 750 GB of physical memory and Hyper-V enabled.
  • Addressed an issue with a paging file space leak that leads Windows to a crash, blue screen, or data loss.
  • Addressed issue that prevents access to a website when Automatic Rebind of Renewed Certificate and Directory Service Mapper are enabled.
  • Addressed a crash in Services.exe with the error code "0xc0000374 - A heap has been corrupted," and requires a system restart.
  • Addressed issue where Windows Defender anti-virus definitions, which are regulated by the network, prevent other updates (LCU, drivers) from being downloaded.
  • Addressed issue where Internet Explorer 11 does not save JavaScript files when exporting to an MHT file.
  • Addressed issue that prevents Internet Explorer 11 from following redirects when the Include-Referer-Token-Binding-ID header is set to "true."
  • Addressed issue that causes users to get logged out from a Web-application intermittently.
  • Updated Internet Explorer 11's New Tab Page with an integrated newsfeed.
  • Deprecated SHA-1 Microsoft Edge and Internet Explorer 11 for SSL/TLS Server Authentication. See Advisory 4010323 for more information.
  • Addressed additional issues with the Windows Shell, enterprise security, Datacenter Networking, storage networking, Internet Information Services, Active Directory, clustering, Windows Server, the client platform, and Internet Explorer.
  • Security updates to Windows COM, Windows SMB Server, Windows server, Internet Explorer, and Microsoft Edge.

version 1511 receiving KB4019473, or build 10586.916 includes:

  • Addressed issue that causes the OS to become unresponsive when migrating users from a cloud-based solution to an on-premise desktop running Microsoft Virtual Desktop Infrastructure.
  • Addressed issue with high CPU and RAM usage when accessing .mp4 files larger than 60 GB using Windows Explorer.
  • Addressed issue where Windows Event Forwarding between two 2012 R2 servers makes reports incompatible with third-party Security Information and Event Management software.
  • Addressed an issue related to establishing a secure connection to a server using the TLS protocol. The application may hang when the server certificate specifies a secure URL (HTTPS) for the Certificate Revocation List (CRL) or for the Authority Information Access (AIA) values within the certificate.
  • Addressed issue where applications that use msado15.dll stop working after installing after installing security update KB4015550.
  • Addressed issue where the BitLocker Drive Encryption wizard shows the "Choose which encryption mode to use" page even when the BitLocker GPO is enabled.
  • Addressed an issue where changing your password while not directly connected to the enterprise network, such as with a VPN, will cause your private keys to become inaccessible. Symptoms vary including the inability to encrypt/decrypt or sign documents.
  • Updated Internet Explorer 11's New Tab Page with an integrated newsfeed.
  • Deprecated SHA-1 Microsoft Edge and Internet Explorer 11 for SSL/TLS Server Authentication. See Advisory 4010323 for more information.
  • Addressed additional issues with enterprise security, Internet Explorer, and Microsoft Edge.
  • Security updates to Microsoft Edge, Microsoft Scripting Engine, Windows COM, Microsoft Graphics Component, .NET Framework, Windows kernel, Windows SMB Server, Windows Server, and Internet Explorer.

Here's what's new in version 1507 receiving KB4019474, or build 10240.17394:

  • Addressed issue where Windows Event Forwarding between two 2012 R2 servers makes reports incompatible with third-party Security Information and Event Management software.
  • Addressed an issue related to establishing a secure connection to a server using the TLS protocol. The application may hang when the server certificate specifies a secure URL (HTTPS) for the Certificate Revocation List (CRL) or for the Authority Information Access (AIA) values within the certificate.
  • Addressed an issue where changing your password while not directly connected to the enterprise network, such as with a VPN, will cause your private keys to become inaccessible. Symptoms vary including the inability to encrypt/decrypt or sign documents.
  • Addressed issue where applications that use msado15.dll stop working after installing security update KB4015550.
  • Addressed issue that prevents Internet Explorer 11 from following redirects when the Include-Referer-Token-Binding-ID header is set to "true."
  • Addressed issue with Microsoft Edge where a memory leak occurs every time you refresh a webpage.
  • Updated Internet Explorer 11's New Tab Page with an integrated newsfeed.
  • Deprecated SHA-1 Microsoft Edge and Internet Explorer 11 for SSL/TLS Server Authentication. See Advisory 4010323 for more information.
  • Addressed additional issues with storage file system, Internet Explorer, and the .NET Framework.
  • Security updates to the Microsoft Scripting Engine, Microsoft Edge, Windows COM, Microsoft Graphics Component, .NET Framework, Windows kernel, Windows SMB Server, Windows Server, and Internet Explorer.