Microsoft releases Windows 10 KB5075912 extended security update

Source: Bleeping Computer

Microsoft has released the Windows 10 KB5075912 extended security update to fix February 2026 Patch Tuesday vulnerabilities, including six zero‑days, and to continue rolling out replacements for expiring Secure Boot certificates.

If you are running Windows 10 Enterprise LTSC or are enrolled in the ESU program, you can install this update as usual by going to Settings → Windows Update and manually performing a “Check for Updates.”

Windows 10 KB5075912 update – Source: BleepingComputer

After installing the update, Windows 10 will be updated to build 19045.6937, and Windows 10 Enterprise LTSC 2021 will be updated to build 19044.6937.

What’s new in Windows 10 KB5075912

Microsoft is no longer releasing new features for Windows 10, and the KB5075912 update contains only security fixes and bug fixes introduced by previous security updates.

With today’s February 2026 Patch Tuesday, Microsoft fixed 58 vulnerabilities, including six actively exploited zero‑day flaws.

KB5075912 also resolves a known issue that prevented Windows 10 devices from shutting down or hibernating when System Guard Secure Launch is enabled.

List of fixes

• Fonts – Updated Chinese fonts to meet GB18030‑2022A compliance.
• OS Security (known issue) – Fixed a problem where, after installing the Windows security update released on or after January 13 2026, some Secure Launch‑capable PCs with Virtual Secure Mode (VSM) enabled were unable to shut down or enter hibernation and instead restarted.
• Folders – Resolved an issue affecting folder renaming with desktop.ini files in File Explorer. The LocalizedResourceName setting is now honored, so custom folder names appear correctly.
• Graphics – Fixed a stability issue affecting certain GPU configurations.
• Secure Boot – Updated the targeting data used by Windows quality updates to identify devices capable of receiving new Secure Boot certificates. Devices will receive the new certificates only after showing sufficient successful update signals, ensuring a safe, phased rollout.

Since June 2025, Microsoft has warned that multiple Windows Secure Boot certificates from 2011 are expiring in June 2026. If not updated, these expirations could breach Secure Boot protections, potentially allowing threat actors to bypass security controls. As part of today’s update, Microsoft continues to roll out the new Secure Boot certificates to targeted systems, with the rollout expanding over time.

Microsoft states that there are no known issues with this update.

The future of IT infrastructure is here

Modern IT infrastructure moves faster than manual workflows can handle. In this new Tines guide, learn how your team can reduce hidden manual delays, improve reliability through automated response, and build and scale intelligent workflows on top of tools you already use.