Hi, Folks!
It’s not Patch Tuesday, but Adobe, Microsoft, Apple, Google and many others have released updates this week.
“Yet another” zero-day Adobe Flash exploit is being used to actively hack computers as they browse the Internet. Most browsers have Flash baked-in now, so are actively building updates to patch this new vulnerability. While you should patch your browser, you should also disable Flash across your device and within each browser as the best defense against the lowest-hanging fruit in security today: Adobe Flash.
The typical computer should see approximately 500mb of updates. Let’s get started.
Microsoft released an out-of-cycle security update to address issues in Edge, IE and Flash (~20mb). This is a security update. A reboot is required.
Oh, btw, did you see that MS is planning to replace the engine in Edge with the same engine used by Chrome? This should help you dismiss the nagging feeling that maybe Edge might be faster or more stable than Chrome or other Chromium-based browsers.
Apple released updates for macOS Mojave 10.14.2, Security Update 2018-003 High Sierra, Security Update 2018-006 Sierra, iOS 12.1.1, Safari 12.0.2, Shortcuts 2.1.2, iCloud for Windows 7.9, iTunes 12.9.2 for Windows, tvOS 12.1.1, and watchOS 5.1.2. These are security updates. Use the Apple App Store or Apple Software Update to install the most current versions.
iOS 12.1.1 is a security update. Use Settings, General, Software Update to install the most current version.
watchOS 5.1.2 is a security update. Use your updated iPhone to install the most current version through the Watch app.
https://support.apple.com/en-us/HT204641
tvOS 12.1.1 is a security update. Use Settings, General, Updates to install the most current version.
Google Chrome OS 70.0.3538.110 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.
Adobe Flash Player 32.0.0.101 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac
Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.
Important Notes
Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.
Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.
It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.
Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.
Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com
Driver Updates
If you’re using this hardware – these updates are for you.
Display Driver Uninstaller 18.0.0.4 improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu
nVidia 417.22 improves compatibility with new hardware. This is not a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us
Browser Updates
One or more of these are likely to be of interest to everyone.
Google Chrome 71.0.3578.80 is a security update. Use Menu, Help, About to install the most current version.
Vivaldi 2.1.1337.51 is a security update. Use Menu, Help, About to install the most current version.
https://vivaldi.com/
Iridium 2018.11.70 is a security update (but still a major version behind the core chromium security patch level).
https://iridiumbrowser.de/
Email Updates
One or more of these are likely to be of interest to everyone.
Mailspring 1.5.3 resolves several bugs. This is not a security update.
https://getmailspring.com/
NK2Edit 3.38 adds select all and unselect all to the column selection window. This is not a security update.
https://www.nirsoft.net/utils/outlook_nk2_edit.html
Internet Updates
One or more of these are likely to be of interest to everyone.
Prosody 0.11.1 resolves several bugs. This is not a security update.
https://prosody.im/download/start
WinSCP 5.13.5 is a security update.
https://winscp.net/eng/index.php
FileZilla 3.39.0 resolves an empty file timestamp bug. This is not a security update.
https://filezilla-project.org/
MaxMind GeoIP Data 201812 is a data refresh.
https://dev.maxmind.com/geoip/geolite
WGet 1.20 updates libraries. This should be treated as a security update.
https://eternallybored.org/misc/wget/
Media Updates
These are unlikely to be of interest to most people.
Flickr Downloadr 3.2.0.1 resolves several bugs and adds support for simultaneous downloads. This is not a security update.
https://flickrdownloadr.com/downloads/
Game Updates
These are unlikely to be of interest to most people.
EA Origin 10.5.31.17411 resolves several bugs. This is not a security update.
https://www.origin.com/en-us/download
Steam 2018.11.27 resolves several bugs. This is not a security update.
Office Updates
One or more of these are likely to be of interest to most people.
Paint.net 4.1.5 resolves several bugs and improves performance. This is not a security update.
https://www.getpaint.net/
Security Software Updates
One or more of these is likely to be of interest to most people.
Wireshark 2.6.5 is a security update.
https://www.wireshark.org/
OpenSSL 1.0.2q is a security update.
RogueKiller 13.0.15 resolves several bugs and adds signatures. This is not a security update.
https://www.adlice.com/softwares/roguekiller/
TDSSKiller 3.1.0.24 adds detection for new malware. This should be treated as a security update.
https://support.kaspersky.com/viruses/utility#TDSSKiller
Converter Updates
These are unlikely to be of interest to most people.
MakeMKV 1.14.2 resolves several bugs and adds support for new encodings. This is not a security update.
https://www.makemkv.com/download/
DVDFab 11.0.0.7 resolves several bugs and adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm
Utility Updates
These are unlikely to be of interest to most people.
NTLite 1.7.1.6630 resolves a duplicate entry bug. This is not a security update.
https://www.ntlite.com/download/
GoodSync 10.9.19 changes some cosmetic information related to licensing and activation. This is not a security update.
https://12pd.com/click?goodsync
ControlMyMonitor 1.10 improves command-line support. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html
DesktopOK 5.79 improves performance. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK
DiskMaker X 8.0.3 resolves an updater bug. This is not a security update.
https://diskmakerx.com/
HWMonitor 1.38 resolves a bug with multiple graphics devices and adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html
IsMyHdOK 1.61 improves performance and output style. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK
LessMSI 1.6.3 only changes metadata. This is not a security update.
https://lessmsi.activescott.com/
FileLocator Pro 8.5.2878 adds support for portable device searching and resolves a language bug. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download
FolderChangesView 2.25 vastly improves utility of program by assigning command to folder changes with metainfo from watched folder. This is not a security update.
https://www.nirsoft.net/utils/folder_changes_view.html
SearchMyFiles 2.90 adds option to include only folders. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html
USBDeview 2.78 adds an option to configure the application from the command line. This is not a security update.
https://www.nirsoft.net/utils/usb_devices_view.html
WirelessKeyView 2.06 adds an option to export all items. This is not a security update.
https://www.nirsoft.net/utils/wireless_key.html
OSForensics 6.1.1005 resolves several bugs. This is not a security update.
https://www.osforensics.com/download.html
Rufus 3.4 resolves several bugs and improves compatibility. This is not a security update.
https://rufus.ie/en_IE.html
WinScan2PDF 4.64 improves performance and WIA compatibility, and adds support for rotating every other page to resolve issues with older duplex scanners. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF
Developer Updates
These are unlikely to be of interest to most people.
WinMerge 2.16.0 adds x64 support, resolves several bugs, adds support for Win7+ jump list feature (really!), HiDPI support, 3-way merge, advanced search patterns, and many more. This is not a security update.
https://winmerge.org/
Node.js 11.3.0 is a security update.
https://nodejs.org/en/
SQLite 3.26.0 resolves several bugs and improves storage and sanity checks. This is not a security update.
https://www.sqlite.org/download.html
StrawberryPerl 5.28.1.1 is a security update.
https://strawberryperl.com/
Web Package Updates
These are likely to be of interest only to web developers.
Joomla 3.9.1 resolves over 40 bugs. This is not a security update.
https://www.joomla.org/
Adminer 4.7.0 improves compatibility and resolves several bugs. This is not a security update.
https://www.adminer.org/en/
TinyMCE 4.9.1 resolves several bugs. This is not a security update.
https://www.tiny.cloud/get-tiny/
Drupal 8.6.4 resolves dozens of bugs, improves i18n, improves unit testing. This is not a security update.
https://drupal.org/download
MailEnable 10.20 resolves several bugs, including SPF and SNI-compatibility improvements. This is not a security update.
https://www.mailenable.com/
Nextcloud Server 14.0.4 resolves dozens of bugs, improves sanity and security. This should be treated as a security update.
https://nextcloud.com/
ScreenConnect 6.9.21027.6898 resolves a compatibility issue on IE for guests. This is not a security update.
https://www.screenconnect.com/Download
WordPress 5.0 is a major update primarily focused on switching to Gutenberg as the default editor, adding several new design and styling features, and over 40 bug fixes. This is not a security update.
https://wordpress.org/
Autoptimize 2.4.4 resolves a cronjob editor bug. This is not a security update.
BuddyPress 4.1.0 resolves several bugs. This is not a security update.
Custom Facebook Feed 2.8 adds several new features and improves compatibility. This is not a security update.
Postie 1.9.26 resolves a category bug. This is not a security update.
WooCommerce 3.5.2 resolves several bugs, improves self-diagnostics, and improves integration. This is not a security update.
WP Mail SMTP 1.4.1 should be treated as a security update.
WPtouch 4.3.34 improves cosmetics for Gutenberg compatibility. This is not a security update.
That’s all for now folks. Keep it clean out there. 😉
Regards,
Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/