Even though Windows 10 mainstream support ended in October 2025, Microsoft is still servicing the OS for customers on its Extended Security Updates (ESU) program—and February 2026 brings another important update. KB5075912 is now rolling out as the latest ESU cumulative update for Windows 10 versions 22H2 and 21H2, pushing systems to build 19045.6937 (Windows 10 22H2) and 19044.6937 (Windows 10 21H2).
What’s new in KB5075912 for Windows 10 ESU
KB5075912 is described as a relatively small update, but it includes a mix of security fixes, quality improvements, and key changes tied to Secure Boot certificates and previous January updates. Among the highlights:
-
It continues expanding Secure Boot certificate updates to more devices, helping prepare systems for upcoming certificate expirations later in 2026.
-
It rolls up changes from the January 2026 security update and multiple out‑of‑band (OOB) updates, including KB5077796 and KB5078129, so you don’t have to deploy those separately.
-
It includes bug fixes for fonts, File Explorer, graphics, and a shutdown/hibernation issue on Secure Launch‑capable PCs with Virtual Secure Mode (VSM) enabled.
For example, Microsoft notes that Chinese fonts have been updated to meet GB18030‑2022A compliance requirements, File Explorer now properly respects custom folder names defined in desktop.ini, and a GPU‑related stability issue has been fixed on some configurations.
Secure Boot certificate rollout and why it matters
A key theme running through KB5075912 is preparing Windows 10 machines for new Secure Boot certificates. Microsoft explains that Windows quality updates now include expanded targeting data to identify device readiness for the deployment of new Secure Boot certificates, and devices will only receive the new certificates after showing enough successful update signals.
This phased approach is designed to reduce the risk of bricking systems when older certificates are retired. For organizations still running Windows 10 via ESU, staying current with updates like KB5075912 is critical to avoid disruptions later in the year when the legacy certificate chain is replaced.
Servicing stack update KB5077456
Alongside KB5075912, Microsoft is also shipping a servicing stack update (SSU), KB5077456, for Windows 10 ESU devices. Servicing stack updates maintain and improve the component that installs Windows updates, ensuring that future cumulative updates can be applied reliably.
While SSUs typically don’t add user‑visible features, skipping them can lead to installation failures or incomplete patching. Microsoft recommends installing the latest SSU before or together with the latest cumulative update, which in this case means pairing KB5077456 with KB5075912 in your February 2026 maintenance window.
How to get the Windows 10 February 2026 ESU update
Windows 10 ESU updates are delivered through Windows Update, Windows Server Update Services (WSUS), and the Microsoft Update Catalog, but you must have an active ESU license (and the appropriate enablement key) for the OS version you’re running.
According to Microsoft, ESU coverage for Windows 10 22H2 is now available to both organizations and regular consumers who want to keep using Windows 10 beyond the official support period. If you plan to stay on Windows 10 through 2026, keeping up with monthly ESU updates like KB5075912 and SSU KB5077456 is essential for both security and future Secure Boot compatibility.
Recent Posts You Might Like
Microsoft February 2026 Patch Tuesday Fixes 6 Zero‑Days and 50+ Windows Security Flaws
Discover more from Microsoft News Now
Subscribe to get the latest posts sent to your email.
