Microsoft released the Windows 10 KB5078885 extended security update for March 2026 Patch Tuesday to address 79 vulnerabilities, including two actively exploited zero-days, and to fix a shutdown/hibernation issue affecting Secure Launch-capable devices. The update moves systems to build 19045.7058 (and 19044.7058 for LTSC 2021), rolls out new Secure Boot certificates, and includes security and bug fixes only; it is available to Enterprise LTSC and ESU-enrolled devices via Windows Update. #KB5078885 #Windows10 #SecureBoot #SystemGuard
Keypoints
- KB5078885 is the March 2026 extended security update that updates Windows 10 to build 19045.7058 (19044.7058 for LTSC 2021).
- The patch fixes 79 vulnerabilities, including two actively exploited zero-day flaws.
- It resolves a known issue where Secure Launch with Virtual Secure Mode (VSM) could prevent shutdown or hibernation.
- Microsoft is rolling out new Secure Boot certificates to replace expiring 2011 certificates ahead of June 2026.
- The update contains only security and bug fixes (no new features) and is available via Settings → Windows Update for Enterprise LTSC and ESU devices.