Windows 10 ESU Users Get KB5078885 Update With Graphics Fixes and Secure Boot Help

Windows 10 ESU users are getting a new update, KB5078885. This update fixes graphics problems and helps Secure Boot work better on more devices.
By Newsroom | Technology, Operating Systems |

Extended Security Updates (ESU) program participants for Windows 10 are now receiving the KB5078885 update. This cumulative patch, pushed out automatically via Windows Update, includes fixes for graphical issues, File History, and the Windows System Image Manager.

The update also expands support for Secure Boot certificates, a measure intended to enhance system security and device readiness for future updates.

Details of the update:

  • Target Audience: Primarily users enrolled in the Extended Security Updates (ESU) program for Windows 10.

  • Distribution: Delivered automatically through Windows Update. Offline installers (.msu) are available for scenarios requiring manual or bulk installation.

  • Key Fixes:

  • Addresses problems with graphics performance and stability.

  • Resolves an issue affecting folder renaming via desktop.ini files in File Explorer.

  • Improves File History functionality when backing up files.

  • Corrects a problem that could prevent Windows 10 devices from shutting down or hibernating when System Guard Secure Launch was enabled.

  • Secure Boot Enhancements: The update incorporates additional "high-confidence device targeting data" within quality updates. This aims to increase the number of devices eligible to receive new Secure Boot certificates automatically. This process is described as a "controlled and phased rollout," with devices receiving certificates only after demonstrating sufficient successful update signals.

  • Version Numbers: For users on supported versions of Windows 10, this update corresponds to OS builds 19045.7058 and 19044.7058.

Offline Installation and Account Requirements:

For those opting for offline installation using the .msu files, Microsoft requires users to sign in with a Microsoft account, even if they typically use a local Windows account.

Background on Secure Boot:

Secure Boot is a security feature designed to ensure that a device boots using only software that is trusted by the manufacturer. It works by verifying the digital signature of boot software before it loads. Expansions and updates to Secure Boot certificates are part of ongoing efforts to maintain system integrity and protect against evolving security threats. Past issues have arisen where older graphics cards, for instance, have experienced compatibility problems when Secure Boot is enabled in UEFI mode on modern motherboards, sometimes necessitating disabling it or adjusting BIOS settings. Microsoft has previously indicated that enabling Secure Boot fixes by default can sometimes cause system startup disruptions, requiring a phased approach to deployment.

Read More: BBC iPlayer May Share Shows with Channel 4 and Others in 2025

Frequently Asked Questions

Q: What is the new update for Windows 10 ESU users called and what does it do?
The new update is called KB5078885. It is for Windows 10 users who have the Extended Security Updates (ESU) program. It fixes problems with graphics, File History, and makes Secure Boot work on more computers.
Q: How do Windows 10 ESU users get the KB5078885 update?
The update comes automatically through Windows Update. You can also download it manually if needed. If you install it yourself, you need to log in with a Microsoft account.
Q: What specific problems does the KB5078885 update fix for Windows 10 ESU users?
This update fixes graphics problems, issues with renaming folders, and makes File History work better. It also fixes a problem where Windows 10 might not shut down or hibernate correctly when a security feature called System Guard Secure Launch is on.
Q: How does the KB5078885 update improve Secure Boot support for Windows 10?
The update adds more information to help more devices get new Secure Boot certificates automatically. This makes systems more secure and ready for future updates by checking that only trusted software starts the computer.
Q: Which Windows 10 versions get the KB5078885 update and what are the OS build numbers?
Supported versions of Windows 10 will get this update. The OS build numbers for these versions are 19045.7058 and 19044.7058.