Hi, Folks!
It’s Patch Tuesday!
Once again – if you’re still running Windows XP, I strongly encourage you to upgrade to Windows 7 as soon as possible. Time is running out! There’s now less than 27 days and 20 hours remaining until Microsoft terminates all support for Windows XP.
https://12pd.com/amazon?windows+7+oem
The only good news on this front is that Microsoft has announced they’ll support Microsoft Security Essentials and Microsoft Defender *for* Windows XP through July 14, 2015. This does not alleviate the simple fact that vendors don’t even patch all the holes they know about in a timely fashion (see the iOS update further down). There is absolutely no reason to believe a secure computing environment on Windows XP will ever be possible after April 8th.
Here’s a list of known (some are unpatched) holes in XP Microsoft will never address:
http://www.cvedetails.com/product/739/Microsoft-Windows-Xp.html?vendor_id=26
So far, there are 961 publicly known vulnerabilities in Windows XP — over 80 discovered only within the last year at an upward-trending average of approximately 82/year. Of those, more than half allowed an unauthenticated third party to execute code on the computer, often without anything to do with the browser. Ultimately this means that being “safe” online with an unpatched or unpatchable XP computer is impossible. The potential for drive-by exploits, service-related attacks, firewall-bypasses and so on exists regardless of whether you’ve turned off or removed java, javascript & flash. The only safe XP computer as of April 8th will be completely disconnected from the Internet.
Now, back to our regularly scheduled updates.
Microsoft released 5 updates for Windows, Internet Explorer, Silverlight, root certificates and Exchange. If running XP you’ll also receive an update that warns you of the upcoming XPtinction. This includes security updates. A reboot is required.
http://update.microsoft.com/
Apple released updates for OS X, iOS, iTunes, QuickTime, Mac PRO SMC, Boot Camp, Safari, AppleTV, and Pages. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.
iOS 7.1 + 6.1.6 are security updates — patching vulnerabilities Apple has known about for nearly two years. While 7.1 addresses over 40 vulnerabilities, iOS 6.x did not receive a complementary update for this series. If you have an iPhone 3GS or earlier, it now has unpatched security holes that will not be addressed in any future update. Use iTunes to install this update to your Apple device.
Adobe Flash Player 12.0.0.77 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac
Adobe AIR 4.0.0.1628 is a security update.
Win: https://12pd.com/click?air
Mac: https://12pd.com/click?airmac
Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.
Important Notes
Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.
Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.
It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.
Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.
Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com
Driver Updates
If you’re using this hardware – these updates are for you.
Netgear WNDR3400v2 Firmware 1.0.0.38_1.0.61 is a security update.
http://kb.netgear.com/app/answers/detail/a_id/23813
nVidia 335.23 improves performance on newer hardware, updates game profiles. This is not a security update.
https://12pd.com/click?nvidia
PlayStation PS4 1.61 improves stability. This is not a security update.
http://us.playstation.com/support/systemupdates/ps4/index.htm
Browser Updates
One or more of these are likely to be of interest to everyone.
Firefox 27.0.1 is a security update. Use Help, About to install the most current version.
Google Chrome 33.0.1750.149 is a security update. Use Menu, About to install the current version.
Opera 20 is a security update. Use Menu, About to get the most current version.
Internet Updates
One or more of these are likely to be of interest to everyone.
Skype 6.14.0.104 does not provide a changelog, so should be treated as a security update.
https://12pd.com/click?skype
Connectify Hotspot 7.3 provides several stability fixes. This is not a security update.
http://www.connectify.me/
Dropbox 2.6.18 corrects a multi-user sync bug, improves accuracy of observation, and other fixes. This is not a security update.
https://12pd.com/click?dropbox
Evernote 5.2.0.2946 improves connection stability, requires password in offline mode and other fixes. This is a security update.
http://www.evernote.com/
uTorrent 3.4 Build 30635 corrects an issue with updates, removes support for older hardware. This is not a security update.
http://www.utorrent.com/downloads
Codec Updates
One or more of these are likely to be of interest to everyone.
Vista Codec Package 6.6.5 updates included codecs. To install the update, you must uninstall and reinstall the application. This version works for both Windows XP and Windows Vista.
http://shark007.net/vistacodecpackage.html
Win7 Codec Package 7 Codecs Advanced 4.5.2 updates included codecs. To install the update, you must uninstall and reinstall the application.
http://shark007.net/win7codecs.html
Media Updates
These are unlikely to be of interest to most people.
CDBurnerXP 4.5.3.4643 adds support for ALAC, improves error reporting, fixes several bugs. This is not a security update.
http://cdburnerxp.se/
iTunes 11.1.5 is a security update. Use the Apple Software Updater to install the most current version.
VLC Media Player 2.1.3 fixes several crash & reliability bugs. This is not a security update.
http://www.videolan.org/vlc/
QuickTime 7.7.5 is a security update. Use the Apple Software Updater to install the most current version.
Game Updates
These are unlikely to be of interest to most people.
Minecraft 1.7.5 adds minigame support, server-side improvements and bug fixes. This is not a security update.
http://www.minecraft.net/
EA Origin 9.4.6.2792 fixes issues with social profiles and chat and several other bug fixes. This is not a security update.
http://www.filehippo.com/download_origin/
Office Updates
One or more of these are likely to be of interest to most people.
Artweaver 4.5.1 improves reliability of reading corrupted files, PSD and display improvements. This version also fixes several bugs. This is not a security update.
http://www.artweaver.de/
Notepad++ 6.5.5 adds wildcard and recursive parameter support, auto-detection for file encodings, word-completion in certain environments, enhances function list behavior, and several bugfixes, including crash bugs. This is not a security update.
https://12pd.com/click?npp
SketchUp 14.0.4900 fixes dozens of bugs. This is not a security update.
http://www.sketchup.com/
Security Software
Updates One or more of these is likely to be of interest to most people.
Wireshark 1.10.6 corrects a couple dozen bugs, improves performance, updates protocol support and improves capture.
http://www.wireshark.org/
Capture Updates
These are unlikely to be of interest to most people.
Open Broadcaster Software 0.613 Beta improves fixes several bugs, improves profile support, adds controller hotkeys. This is not a security update.
http://obsproject.com/
SnagIt 11.4.2 improves scrolling in Chrome, fixes several crash bugs, and improves performance with Screencast.com
http://download.techsmith.com/snagit/enu/snagit.exe
Converter Updates
These are unlikely to be of interest to most people.
MakeMKV 1.8.9 corrects several bugs and improves reliability. This is not a security update.
https://12pd.com/click?makemkv
Utility Updates
These are unlikely to be of interest to most people.
RoboForm 7.9.5 corrects several compatibility issues with Chrome and fixes autoupdate related bugs. This is not a security update.
https://12pd.com/click?rf
GoodSync 9.7.9 corrects several protocol bugs, improves reliability and stability. This is not a security update.
https://12pd.com/click?goodsync
CCleaner 4.11.4619 adds newer application support, improves scheduler, and several bug fixes. This is not a security update.
https://12pd.com/click?ccleaner
CintaNotes 2.5.1 improves reliability, corrects bugs with sync, markdown, crashes, tray icon and more. This is not a security update.
https://12pd.com/click?cintanotes
GPU-Z 0.7.7 adds newer hardware support, improves display performance. This is not a security update.
http://www.techpowerup.com/downloads/SysInfo/GPU-Z/
Hamachi 2.2.0.173 adds crapware to the installer. This is not a security update.
http://help.logmein.com/SelfServiceDownloads
Process Explorer 16.02 adds a refresh button to the thread’s stack dialog and ensures that the Virus Total terms of agreement dialog box remains above the main Process Explorer window. This is not a security update.
Process Monitor 3.1 adds registry create file disposition (create vs open) and a new switch, /saveapplyfilter, which has Process Monitor apply the current filter to the output file as it saves it. This is not a security update.
PSExec 2.1 now encrypts all communication between local and remote systems. This is a security update.
Sigcheck 2.03 fixes a bug that caused the output of the –u switch to include signed files, and fixes several other minor bugs. This is not a security update.
http://live.sysinternals.com/
TeamViewer 9.0.26297 adds ‘best fit’ display scaling and other bug fixes. This is not a security update.
http://www.teamviewer.com/en/download/
QuickSetDNS 1.01 adds Router DNS item which allows you to choose the internal DNS server of your router.
http://www.nirsoft.net/utils/quick_set_dns.html
USBDeview 2.30 corrects a bug related to UAC. This is not a security update.
http://www.nirsoft.net/utils/usb_devices_view.html
WakeMeOnLan 1.62 adds the ability to specify hostname and broadcast address. This is not a security update.
http://www.nirsoft.net/utils/wake_on_lan.html
WhosIP 1.08 updates internal countries file. This is not a security update.
http://www.nirsoft.net/utils/whosip.html
WifiInfoView 1.36 adds detection for 802.11ac networks. This is not a security update.
http://www.nirsoft.net/utils/wifi_information_view.html
Developer Updates
These are unlikely to be of interest to most people.
TortoiseSVN 1.8.5 corrects several bugs. This is not a security update.
http://tortoisesvn.net/downloads.html
Virtual Machine Updates
These are unlikely to be of interest to most people.
PPSSPP 0.9.7.2 corrects a major stability bug. This is not a security update.
http://ppsspp.org/downloads.html
VirtualBox 4.3.8-92456 corrects several dozen bugs, including stability, reliability and memory leaks. This is not a security update.
http://www.virtualbox.org/wiki/Downloads
Web Package Updates
These are likely to be of interest only to web developers.
phpMyAdmin 4.1.9 corrects several bugs. This is not a security update.
http://www.phpmyadmin.net/home_page/news.php
ScreenConnect 4.2.6273.5177 adds several new features (including improved reliability and handling of Mac+Linux installs). This is not a security update.
http://www.screenconnect.com/Download
Joomla 3.2.3 is a security update.
http://www.joomla.org/
MailEnable 8.03 corrects several bugs with ActiveSync, IMAP and more. This is not a security update.
http://www.mailenable.com/
BuddyStream 3.2.3 corrects several compatibility bugs. This is not a security update.
Cloudflare Cache Purge 1.0.6 updates branding and FAQ. This is not a security update.
Contact Form 7 3.7.2 corrects CAPTCHA bypass bug and updates libraries. This is a security update.
Multisite Enhancements 1.0.3 removes superadmin check, adds indicator for Network Only plugins and Favicons. This is not a security update.
Smart YouTube 4.2.2 updates colorbox compatibility. This is not a security update.
WooCommerce 2.1.5 corrects several bugs, improves admin display. This is not a security update.
WPtouch 3.1.9 updates footer link code. This is not a security update.
That’s all for now folks. Keep it clean out there. 😉
Regards,
Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/