Patch Tuesday: Here's what's new for Windows 8.1 and Windows 7

It's the second Tuesday of October, which means it's time for another one of Microsoft's Patch Tuesdays. Along with updates for every supported version of Windows 10, Microsoft has released updates for users on Windows 8.1 and WIndows 7 SP1.

As usual, there are two versions of each update, a monthly rollup, and a security-only update. For Windows 8.1, the monthly rollup is KB4520005, which can be downloaded manually here. The security-only update is KB4519990 and it can be downloaded manually from here. It comes with a relatively small changelog:

Addresses an issue with applications and printer drivers that utilize the Windows JavaScript engine (jscript.dll) for processing print jobs.

Security updates to Windows Cryptography, Windows Authentication, Windows Kernel, Windows Storage and Filesystems, Microsoft JET Database Engine, Internet Information Services, the Microsoft Scripting Engine, and Windows Server.

For the security-only update, only the second bullet point applies. Both updates have the same known issue:

Symptom	Workaround
Certain operations, such as rename, that you perform on files or folders that are on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”. This occurs when you perform the operation on a CSV owner node from a process that doesn’t have administrator privilege.	Do one of the following: Perform the operation from a process that has administrator privilege. Perform the operation from a node that doesn’t have CSV ownership. Microsoft is working on a resolution and will provide an update in an upcoming release.

Symptom

Workaround

Certain operations, such as rename, that you perform on files or folders that are on a Cluster Shared Volume (CSV) may fail with the error, “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)”. This occurs when you perform the operation on a CSV owner node from a process that doesn’t have administrator privilege.

Do one of the following:

Perform the operation from a process that has administrator privilege.
Perform the operation from a node that doesn’t have CSV ownership.

Microsoft is working on a resolution and will provide an update in an upcoming release.

As for Windows 7, the monthly rollup is KB4519976, and it can be downloaded manually here. It comes with the following changelog:

Addresses an issue that may fail to disable VBScript in Internet Explorer by default after installing KB4507437 (Preview of Monthly Rollup) or KB4511872 (Internet Explorer Cumulative Update) and later.

Addresses an issue with applications and printer drivers that utilize the Windows JavaScript engine (jscript.dll) for processing print jobs.

Security updates to Windows Authentication, Microsoft JET Database Engine, Windows Kernel, Internet Information Services, the Microsoft Scripting Engine, and Windows Server.

The security-only update is KB4520003 and it can be downloaded manually here. The changelog is a little different:

Addresses an issue in security bulletin CVE-2019-1318 that may cause client or server computers that don’t support Extended Master Secret (EMS) RFC 7627 to have increased connection latency and CPU utilization. This issue occurs while performing full Transport Layer Security (TLS) handshakes from devices that don’t support EMS, especially on servers. EMS support has been available for all the supported versions of Windows since calendar year 2015 and is being incrementally enforced by the installation of the October 8, 2019 and later monthly updates.

Security updates to Windows Authentication, Microsoft JET Database Engine, Windows Kernel, Internet Information Services, and Windows Server.

Neither of the Windows 7 updates has any known issues.

The monthly rollup updates for either version will show up automatically through Windows Update automatically, but if you want the security-only updates, you'll need to download it manually.