Updates 2018-12-06

Hi, Folks!

It’s not Patch Tuesday, but Adobe, Microsoft, Apple, Google and many others have released updates this week.

“Yet another” zero-day Adobe Flash exploit is being used to actively hack computers as they browse the Internet. Most browsers have Flash baked-in now, so are actively building updates to patch this new vulnerability. While you should patch your browser, you should also disable Flash across your device and within each browser as the best defense against the lowest-hanging fruit in security today: Adobe Flash.

The typical computer should see approximately 500mb of updates. Let’s get started.

Microsoft released an out-of-cycle security update to address issues in Edge, IE and Flash (~20mb). This is a security update. A reboot is required.

Oh, btw, did you see that MS is planning to replace the engine in Edge with the same engine used by Chrome? This should help you dismiss the nagging feeling that maybe Edge might be faster or more stable than Chrome or other Chromium-based browsers.

Apple released updates for macOS Mojave 10.14.2, Security Update 2018-003 High Sierra, Security Update 2018-006 Sierra, iOS 12.1.1, Safari 12.0.2, Shortcuts 2.1.2, iCloud for Windows 7.9, iTunes 12.9.2 for Windows, tvOS 12.1.1, and watchOS 5.1.2. These are security updates. Use the Apple App Store or Apple Software Update to install the most current versions.

iOS 12.1.1 is a security update. Use Settings, General, Software Update to install the most current version.

watchOS 5.1.2 is a security update. Use your updated iPhone to install the most current version through the Watch app.
https://support.apple.com/en-us/HT204641

tvOS 12.1.1 is a security update. Use Settings, General, Updates to install the most current version.

Google Chrome OS 70.0.3538.110 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Adobe Flash Player 32.0.0.101 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.0.4 improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

nVidia 417.22 improves compatibility with new hardware. This is not a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 71.0.3578.80 is a security update. Use Menu, Help, About to install the most current version.

Vivaldi 2.1.1337.51 is a security update. Use Menu, Help, About to install the most current version.
https://vivaldi.com/

Iridium 2018.11.70 is a security update (but still a major version behind the core chromium security patch level).
https://iridiumbrowser.de/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.5.3 resolves several bugs. This is not a security update.
https://getmailspring.com/

NK2Edit 3.38 adds select all and unselect all to the column selection window. This is not a security update.
https://www.nirsoft.net/utils/outlook_nk2_edit.html

Internet Updates

One or more of these are likely to be of interest to everyone.

Prosody 0.11.1 resolves several bugs. This is not a security update.
https://prosody.im/download/start

WinSCP 5.13.5 is a security update.
https://winscp.net/eng/index.php

FileZilla 3.39.0 resolves an empty file timestamp bug. This is not a security update.
https://filezilla-project.org/

MaxMind GeoIP Data 201812 is a data refresh.
https://dev.maxmind.com/geoip/geolite

WGet 1.20 updates libraries. This should be treated as a security update.
https://eternallybored.org/misc/wget/

Media Updates

These are unlikely to be of interest to most people.

Flickr Downloadr 3.2.0.1 resolves several bugs and adds support for simultaneous downloads. This is not a security update.
https://flickrdownloadr.com/downloads/

Game Updates

These are unlikely to be of interest to most people.

EA Origin 10.5.31.17411 resolves several bugs. This is not a security update.
https://www.origin.com/en-us/download

Steam 2018.11.27 resolves several bugs. This is not a security update.

Office Updates

One or more of these are likely to be of interest to most people.

Paint.net 4.1.5 resolves several bugs and improves performance. This is not a security update.
https://www.getpaint.net/

Security Software Updates

One or more of these is likely to be of interest to most people.

Wireshark 2.6.5 is a security update.
https://www.wireshark.org/

OpenSSL 1.0.2q is a security update.

RogueKiller 13.0.15 resolves several bugs and adds signatures. This is not a security update.
https://www.adlice.com/softwares/roguekiller/

TDSSKiller 3.1.0.24 adds detection for new malware. This should be treated as a security update.
https://support.kaspersky.com/viruses/utility#TDSSKiller

Converter Updates

These are unlikely to be of interest to most people.

MakeMKV 1.14.2 resolves several bugs and adds support for new encodings. This is not a security update.
https://www.makemkv.com/download/

DVDFab 11.0.0.7 resolves several bugs and adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

NTLite 1.7.1.6630 resolves a duplicate entry bug. This is not a security update.
https://www.ntlite.com/download/

GoodSync 10.9.19 changes some cosmetic information related to licensing and activation. This is not a security update.
https://12pd.com/click?goodsync

ControlMyMonitor 1.10 improves command-line support. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html

DesktopOK 5.79 improves performance. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

DiskMaker X 8.0.3 resolves an updater bug. This is not a security update.
https://diskmakerx.com/

HWMonitor 1.38 resolves a bug with multiple graphics devices and adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

IsMyHdOK 1.61 improves performance and output style. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

LessMSI 1.6.3 only changes metadata. This is not a security update.
https://lessmsi.activescott.com/

FileLocator Pro 8.5.2878 adds support for portable device searching and resolves a language bug. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

FolderChangesView 2.25 vastly improves utility of program by assigning command to folder changes with metainfo from watched folder. This is not a security update.
https://www.nirsoft.net/utils/folder_changes_view.html

SearchMyFiles 2.90 adds option to include only folders. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

USBDeview 2.78 adds an option to configure the application from the command line. This is not a security update.
https://www.nirsoft.net/utils/usb_devices_view.html

WirelessKeyView 2.06 adds an option to export all items. This is not a security update.
https://www.nirsoft.net/utils/wireless_key.html

OSForensics 6.1.1005 resolves several bugs. This is not a security update.
https://www.osforensics.com/download.html

Rufus 3.4 resolves several bugs and improves compatibility. This is not a security update.
https://rufus.ie/en_IE.html

WinScan2PDF 4.64 improves performance and WIA compatibility, and adds support for rotating every other page to resolve issues with older duplex scanners. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

Developer Updates

These are unlikely to be of interest to most people.

WinMerge 2.16.0 adds x64 support, resolves several bugs, adds support for Win7+ jump list feature (really!), HiDPI support, 3-way merge, advanced search patterns, and many more. This is not a security update.
https://winmerge.org/

Node.js 11.3.0 is a security update.
https://nodejs.org/en/

SQLite 3.26.0 resolves several bugs and improves storage and sanity checks. This is not a security update.
https://www.sqlite.org/download.html

StrawberryPerl 5.28.1.1 is a security update.
https://strawberryperl.com/

Web Package Updates

These are likely to be of interest only to web developers.

Joomla 3.9.1 resolves over 40 bugs. This is not a security update.
https://www.joomla.org/

Adminer 4.7.0 improves compatibility and resolves several bugs. This is not a security update.
https://www.adminer.org/en/

TinyMCE 4.9.1 resolves several bugs. This is not a security update.
https://www.tiny.cloud/get-tiny/

Drupal 8.6.4 resolves dozens of bugs, improves i18n, improves unit testing. This is not a security update.
https://drupal.org/download

MailEnable 10.20 resolves several bugs, including SPF and SNI-compatibility improvements. This is not a security update.
https://www.mailenable.com/

Nextcloud Server 14.0.4 resolves dozens of bugs, improves sanity and security. This should be treated as a security update.
https://nextcloud.com/

ScreenConnect 6.9.21027.6898 resolves a compatibility issue on IE for guests. This is not a security update.
https://www.screenconnect.com/Download

WordPress 5.0 is a major update primarily focused on switching to Gutenberg as the default editor, adding several new design and styling features, and over 40 bug fixes. This is not a security update.
https://wordpress.org/

Autoptimize 2.4.4 resolves a cronjob editor bug. This is not a security update.

BuddyPress 4.1.0 resolves several bugs. This is not a security update.

Custom Facebook Feed 2.8 adds several new features and improves compatibility. This is not a security update.

Postie 1.9.26 resolves a category bug. This is not a security update.

WooCommerce 3.5.2 resolves several bugs, improves self-diagnostics, and improves integration. This is not a security update.

WP Mail SMTP 1.4.1 should be treated as a security update.

WPtouch 4.3.34 improves cosmetics for Gutenberg compatibility. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Leave a Reply

Your email address will not be published. Required fields are marked *