Updates 2025-11-11

Posted on November 11, 2025 by Shawn K. Hall

Happy Veteran’s Day, Folks!

Today is Patch Tuesday for November, 2025.

If your Windows 10 computer can not be upgraded to Windows 11 then you should either replace your device or use the Windows 10 ESU program to get another year out of it.

Windows 11 25H2 is now available and Windows 11 23H2 and older are no longer supported. Treat Windows 11 25H2 as beta software and wait a few months before upgrading.

macOS 26 Tahoe is now available and macOS 13 Ventura and older are no longer supported. Treat macOS 26 as beta software and wait a few months before upgrading.

There were 750+ major hacks, and over 650 application updates this month. It’s a relatively small month, with about 4.0 GB of updates for most users.

This Month in Technology

5CA, Abilene Family Medical Associates, Accord Carton, Adichunchanagiri Institute Of Technology, Adobe Commerce, Adobe Experience Manager, Adore Children and Family Services, Advanced Delivery Services, Advanced Installer, Afghan Ministry of Defence, AGFA, Agri-Food and Biosciences Institute (AFBI), (at least) 2/3rds of AI companies, Air Arabia, Al Ahly Leasing & Factoring Company, Al Rimal Group, Albanese Physical Therapy, Albert Heijn, Alibaba Cloud Workspace Client, Alight Solutions, Alios Finance Group, Alissa Group, Alitech, Alpha Omega Winery, LLC, Altimedia, Amazon Smart plugs, AMD CPU VM (RMPocalypse), AMD CPUs (TEE.fail), American Airlines, American PowerNet, Ami Bearings, Anderson-Moore Construction, Android, ANIA KRUK, Ansell, Antigo Construction, Apache OpenOffice, Aphase II, ApleNet, Applied Technology Resources, Aptura Group & Central Indiana Hardware, ArcGIS, Armed Forces of the Philippines, Artistica Rubens, Asahi Group Holdings, Ashlar-Vellum Cobalt, Askul, ASP.NET Core, Assemblée Nationale, Astra Nova, AT&T Careers, Athol Hospital, ATIRG, Atrium Living Centers, Auckland City, Aunt Martha’s Health and Wellness, Aussie Fluid Power, Autodesk AutoCAD, Autodesk On-Demand Install Services, Automated Logistics Systems, Autorotor, Avast, AVG, Axelson, Williamowsky, Bender & Fishman, Badger Popcorn and Concession Supply, BAE Systems SOCET, Balancer, Bank3, BARCO Rent-A-Truck, Batta Fulkerson Law Group, Bay West, Bayu Buana Travel, Beijing Time Systems, Bell Engineering, Bellflower Unified School District, Benda Grace Stulz, Benefitelect, Benworth Capital Partners, Bergman Dacey Goldsmith, Berkeley Research Group, LLC, Bestlog Logistic Solutions, Beta Dyne, Beverly Hills Oncology Medical Group, Bicing, BIND DNS, BK Technologies, Black Hills Bentonite, Blavity Inc, blockchain smart contracts (EtherHiding), Blue Cross Blue Shield of Montana, BMP Worldwide, Boilersource, Bolt Electricity, Oil & Gas, Bovavet, Boyer, BRDSoft, Bridgehead IT, Brihta, Bristol Student Union, Buffalo Games, Edaron, Ceaco, Cabinets 2000, LLC, Canada water and energy facilities, Canadian Tire, Canon imageCLASS MF654Cdw, Cape Dara Resort Pattaya, CapitalPlus Exchange, Castilla, Cavalry Consulting, CCI Tax Pros, CDS, CentOS Web Panel, Central Jersey Medical Center, Central Plate Services Limited, CESO, CEVA Logistics, CHDFS, Chi Rho Chiropractic, Chiapas Health Secretariat, Christina Development, Cisco ASA firewalls, Cisco FTD firewalls, Cisco IOS XE, Cisco networking devices (SNMP), Cisco Snort, Cisco Unified Contact Center Express (UCCX), City of Gloversville, NY, City of Houston Fire Department, TX, City of La Vergne, TN, City of Ottawa, Canada, City of Riviera Beach, FL, City of Sugar Land, TX, Clackamas Community College, Claimlinx, Clarion Safety Systems, Claude Desktop, ClearCare Periodontal & Implant Centre, Co-op Credit Union, Cocamar Cooperativa Agroindustrial, Cohen’s Fashion Optical, Coilplus, Cole Huber, LLP, Collins Aerospace, Colombia’s CNSC, Comcast, Community Unit School District 201, Computer World WLL, Conduent Business Services, LLC, ConnectWise Automate, Consolidated Restaurant Operations, ConvExx, Cooperativa Esercenti Farmacia Scrl, Core Resources Inc, Crave Management, Crenshaw Community Hospital, Crown Automotive Sales, Cursor, CyPark, D Magazine Partners, Dairy Farmers of America, Dakota Dostavka, Darvin Furniture, DataChain, Dayal Metal Containers Factory LLC, DCS Technologies Inc, Deco Dental, Defensoría del Pueblo de Colombia, Dekalb County, GA, Dell BSAFE Crypto-C, Dell CloudLink, Delmia Apriso, Delta Electronics ASDA-Soft, Delta Electronics CNCSoft-G2, Delta Electronics DIAScreen, Delta, Dental Society of La Plata, Dentsu Merkle, Dermatology Associates, Designs for Vision, Desjardin Bank Group, Desjardins, Devolutions, Dilosa Food Companies, Dimarco Group LLC, Disseny Dental, Django, dmwapp, Docker runC, Doctor Alliance, Docurail, Dodo, Doha British School, DomeWatch, Domy, Double Oak Construction, Dublin Airport, DUC App, Dulcich, Dundee City Council, Durvet, E-First Aid Supplies, East Jefferson General Hospital, Eastern Cape Department of Human Settlements, South Africa, Easterseals Arc of Northeast Indiana, Echo Lake Foods, Econo-Pak, Eligibility Tracking Calculators, Elliott Tax Service, Elmcrest Children’s Center, Encore Repair Services, ENEA, Enem Nostrum Remedies, Enessance Holdings, Engineered Profiles, Entr’ouvert Lasso, Envoy Air, Episource, LLC, Ernst & Young, Essential Cabinetry Group, Essilor of America, Eticex Hosting, evernote-mcp-server, Evogence, Evolve Mortgage Services, over 266,000 F5 BIG-IP instances, FA Servers, Fast Freight, Fatih Turizm, Fellou browser, Fidelity Pension Managers, Nigeria, Figment POS, FinWise, Fleet Landing, Flegenheimer International, Flock, Florida Marking Products, Florida-Spectrum Environmental Services, Form Energy, Inc, Fort Wayne Medical Education Program, Fouad Alghanim & Sons Group of Companies Holding, Fountains Condominium Operations, Framework Secure Boot, Francehopital, Fujifilm Biotechnologies, Fédération Internationale de l’Automobile (FIA), G & H Distributing, G-Plans, G-Xchange, Inc, G. Hauswirth Architects, Galine, Frye, Fitting & Frangos, LLP, Gardiners Solicitors, Garvin Promotion Group, Gas Generator Solutions, Gateworks Corporation, GB Mail, GCC Productions Inc. Fade In, GeBePro, Gemini Group, General Micro Systems (GMS), George E. Weems Memorial Hospital, Gerar, Gericke AG, Gerson & Schwartz Accident & Injury Lawyers, GIMP, Gittens Healthcare, Gladinet CentreStack, Gladinet Triofox, Global Go, GlobalLogic Inc, Goglia Nutrition LLC, Goodfellow & Schuettlaw, Google Chrome, Google’s Find Hub, Grande Prairie Public Library, Greater Mental Health of New York, Gulf Warranties LLC, Gullco International, Gun Accessory Supply, Habib Bank AG Zurich, Hall Estill, Harmony Brands, Harvard University, Health and Vitality Center, Health Dimensions Group, Healthy Living Market and Café, Heart South Cardiovascular Group, Heartland Health Center, Heimbrock, Heimdall Data, HeiTech Padu Berhad, Hello Cake, Hematology Oncology Consultants, Henrietta Ezeoke Law Firm, Henry Raymond & Thompson, Heywood Hospital, Hikvision iSecure Center, Hitzinger, HMP Global, Holtz Office Support, Home Assistant Green, Hometown Credit Union, Hongji Metal, Hosteur, HSBC USA, Huber, Erickson & Bowman, Huddle01, Hyundai AutoEver America, I-Tek Medical Technologies, IBEW Local 697, iCare Software, ICET Studios, ICTBroadcast, IKAD, Il Manifesto, Imagicle, Indian Spring Country Club, ING Bank, Instituto Nacional de Oftalmologia, Peru, Integrated Silicon Solution, Inc, Intel CPUs (TEE.fail), International Social Survey Programme (ISSP), International.com, Invacare, Ioxo & Stream Computers, IPrimus, Iran’s Ravin Academy, Iraqi Electoral Commission, IREM companies, Irwin Car, Izaki Group Investments, J & S Electrical And Lighting Supply, JA Jennings, Jack’s Family Restaurants, JavaScript expr-eval, Jazeera Airways, JC Auto Accident Law Firm, Jean-Georges, Jewett-Cameron, JFS Wealth Advisors, Kansas City Police Department, KS, Karnes Electric Cooperative, Kasmawi, Kaufman & Stigger, Kaufman County, Texas (twice), Kearney Public Schools, NE, Kelowna airport, BC, Kettering Health, Khan and Associates CPA, Khatami Law, KHL Printing, Kipp & Christian, Kirby Corporation, KIS Asset Evaluation, KISS FM, Kitchen Design Concepts, KLA Instruments, Klae Construction, Kobayashi, Koch & Co, Koch & White Heating & Cooling, Koncise Company, Kottster Server, Krita, KT Corp, Kubernetes runC, Kudela & Weinheimer, Kumwell, Kwik Mix Materials, LaBonne, Land Title Guaranty, Lanscope Endpoint Manager, LaRosa’s Pizzeria, Latona Trucking, 42 Latvian municipalities, Laxmi Niwas Palace, Legacy Health, Legacy Manufacturing, Legal Aid Agency, Lexmark CX532adwe, LG U+, LGAA LLC, Lidera Network, LifeBridge Health, Limocar, Lincoln University, LMHT Associates, LNER, Logitech, Long Island Weight Loss Institute, Lorber, Greenfield & Polito, LLP, Louvre Museum, LP Insurance, LuBian, Ludwigshafen, Germany, Luis Garratón, Lumma Stealer, Luxury Escapes, Lüks Artvin Seyahat, M-TIBA, Mack Energy, Magna Hospitality Group, Mailing.com, Maine Course Hospitality Group, Mainetti UK, Maki Building Centers, Malibu Boats Australia, Manassas City Public Schools, Mango, Mango’s Tropical Cafe, Manko Window Systems, Marine Turbine Technologies, Marmotech, Matlusky, Max.ru, Mayco International, McDonald Building, McIntosh Labs, Mciver Engineering & Controls, Mecanex USA, MedImpact, Meinhardt Group, Meritage Hospitality, Metal Pros, Methodist Homes of Alabama & Northwest Florida, MetroWest Community FCU, Mexican Bank Debtor, Michael R. Schwartz, MD, FACS, Microbix Biosystems, Microsoft SharePoint, Microsoft Teams, Microsoft Windows, Middlesex Appraisal Associates, Middlesex Endodontics, Miljödata, Mission City Community Network, Inc, Modernizing Medicine (ModMed), Mold In Graphic Systems, Monsta FTP, Montage Marketing Services, Moonlight Basin, More Than Gourmet, Morris Communications Company LLC, Motex Lanscope Endpoint Manager, Mountain West, Moxa security appliances, MS Metal Solutions, MSC-Wireless, Mt. Baker Imaging, Muji, MusikComputer GmbH, MyCardiologist, MyVidster, NAHGA Claims Services, NasDem Party, National Coatings, National Informatics Centre (NIC) Kavach, National Institute of Administration, Navigator Business Solutions, Nelligan White Architects, NetcoreCloud, Netgate pfSense CE, New Toyo International Holdings Ltd, Newk, Newmark Healthcare Services, Nikkei, Nintendo, NJ Lenders Corp, Noble Compaña de Seguros, Nobu Restaurants, Noroaco, Northern Light Technologies, Northern Montana Health Care (NMHC), Northwest Radiologists, NurseSpring, NVIDIA CPUs (TEE.fail), OB-GYN Associates, OCI International Holdings, Oglethorpe, OMS, One Agency Eastlakes, oobabooga, OpenAI Assistants API, OpenAI Atlas browser, OpenEyes Technologies, Opera Neon, Oracle E-Business Suite, Oracle VirtualBox, Origin Energy, Origin, Oscars Group, Ouranos, Outcomes One, Inc, OYO Hotel & Casino Las Vegas, Palacios Marine Industrial (PMI), Palomar Health Medical Group, Pan-American, Pangea, Paris Rétina Vision, Paterson & Dowding, Patron Insurance, Patterson-Schwartz & Associates, Inc, PCB Uitvaartzorg, People’s Postcode Lottery, PeopleGuru Holdings, Inc, Peppermint Properties, Peraso, Perplexity Comet, Phia Group, Phillips Hue Bridge, Phillips Printing Company, Phoenix Village Dental, PHP CGI, PHPUnit, Pine Pharmaceuticals, Pinto Coates Kyre & Bowers, Pittsburgh Gastroenterology Associates, Pixar OpenUSD, Plastics Extrusion Machinery, Platinum Wines & Spirits, PLP SoCal, Pocatello Ready Mix, Polymarket, Ponzini SPA, Post Ranch Inn, PQCNC Hospitals, Precision Machined Products, Prime Dental, Pritchard Brown & Chillicothe Metal, Productive Tool Products, Professional’s Choice Sports, Propertyfinder / PropSpace CRM, Prosper, Prova, Provincial Department of Health Services Sri Lanka, Pruksa Holding, PT Kalimantan Prima Persada, Pulse Urgent Care Center, Punjab Forensic Science Agency, Qatar Gas and Tar Company, Iran, QNAP Qhora-322, QNAP TS-453E, Radiant Capital, Ravin Academy, React Native CLI, Real Estate Specialists, Reese Group, Regency Specialist Hospital, Resana, Revive Adserver, Rex-Hide, Ribbon Communications, Richmond Behavioral Health Authority, Riddell Law Group, Right at Home, Ringmor, Rios Espinosa, Ritz, Clark & Ben-Asher, River City Eye Care, RKA Consulting Group, Roblox, Rockhill Women’s Care, Rockstar, Rogers Mechanical, Romanian National Penitentiary Association (ANP), Ronemus & Vilensky, Royal Thai, RPI Roofing, Sai Mai Hospital, Saigon Industrial Service, Samera Health, Samsung Android, Samsung Galaxy S25, San Benito County, CA, San Bernard Electric Cooperative, San Diego Automotive Museum, Santander Bank, SAP Solution Manager, Sarulla Operation, Saturday Spotlight, Saturn Machine, Sauter Modulo, Saxun, Scales Sales & Service, Scouts Canada, Seasons Federal Credit Union, Sedgebrook, Selig Enterprises, Sellars Absorbent Materials, Sensational Teeth, Sensory, Servicios del Valle del Fuerte, Mexico, Seward County, KS, Shadrix & Parmer, Shands Elbert, Shaparak, Shelbyville Police Department, Shollenberger Januzzi & Wolfe, SHRM New Mexico, SIAD, Sierra Vista Hospital & Clinics, Signet Armorlite, Silverado Contractors, Inc, Silverlake Axis, Simon Property Group, Sincros Lab, SK Shieldus, SK-Telecom, Snipe-IT, Soapy Joe’s Car Wash, Soft Serve, Software Unlimited Corp, Sold Real Estate, SonicWall, Sonos Era 300, Sotheby’s, SourceOne Corporation, South African Revenue Service (SARS), South Alabama Regional Planning Commission, South Atlanta Medical Clinic, Speedmais, Spijkermat, Spindletop Center, Sports Medicine and Orthopaedics, Sprague & Jackson, St Stephen’s International, Stephenson’s Rental Services, Stowaway Storage, Studio Corvo Parma, Sullivan Interests, Summit Golf Brands, Summit Hotel Properties, Sunnyvale Elementary School District, Super Quik, Super Value, SuperGrosz, Superior Air Parts, Superior Court of California for the County of San Joaquin, Superior Linen Service, Svenska Kraftnät, Sydney Centre for Ear, Nose & Throat, Sylvester Roofing, SymbolTransport, Synnovis, Synology ActiveProtect Appliance DP320, Synology BeeStation Plus, Synology CC400W, Synology DiskStation DS925+, Systems Integrated, Tass Meister Patent Firm, Tavo Packaging Inc, TBM Service Group, TELACU Property Management, Inc, TENAX Law Group PC, Tenryu America, Tex-Tube, Thailand’s Department of Agricultural Extension (DOAE), The Blood and Marrow Transplant Group of Georgia, The Fence People, The Gerson, The Job Shop, The Laxmi Niwas Palace, The Phia Group, The Thayer Hotel, The Union League of Philadelphia, ThinkPHP, Thompson Dorfman Sweatman, Time Equities, TISZA Világ, TMF Logistics, Toys R Us Canada, TP-Link Festa routers, TP-Link Omada gateways, Trans7, Travere Therapeutics, Tri City Foods, Tri-Century Eye Care, Trojan Construction & Holding Group, Truffle Security Co. TruffleHog, Truro Cannabis, Tryon Distributing, Ubiquiti AI Pro, 8 UK Ministry of Defence bases, UK National Health Service (NHS), UniCursos, Unigym Gatineau, UnitedLayer, University of Cádiz, University of Pennsylvania, UrbanX, US Attorneys Office (USAO), US Congressional Budget Office (CBO), US Department of Homeland Security (DHS), US Department of Justice (DOJ/FBI), US Federal Aviation Authority (FAA), US Immigration and Customs Enforcement (ICE), US National Security Administration (NSA), USB Memory Direct, UScraft, Vanan Online Services, Vascara, Vietnam, Veeam Agent, Verdugo Hills Dental, Verisure, Vertikal Systems, Vexels, Vibra Hospital, Victorian Chemical, Victory Christian Center, Village of New Lenox, Ville de MontLaurier, Vinomofo, Vitalmex, VIZ Media, Volkswagen, Vrata Tech, VZW Avalon, Wakefield & Associates, WarmBlue, Washington Post, WatchGuard Firebox, WatchGuard Fireware, Watsonville Community Hospital, Waveny LifeCare, We R Family Foundation, Weber, Weintraub Traub Tracy & Virk Cra’s LLP, West Welch Reed Engineers, Western Sydney University, WhatsApp, Wheale Law Firm, Windows Server Update Service (WSUS), Windsurf, Winholt Equipment Group, Wisconsin Department Of Corrections, Wits University, Wood PLC, WordPress Anti-Malware Security and Brute-Force Firewall plugin, WordPress Gravity Forms plugin, WordPress GutenKit plugin, WordPress Hunk Companion plugin, WordPress JobMonster theme, WordPress King Addons for Elementor plugin, WordPress Post SMTP plugin, WordPress Slider Revolution plugin, Workers Compensation Insurance Rating Bureau of California, Wright Tool, Wright-Gardner Insurance, X.Org Server, Xortec, Xubuntu website, XWiki, Yaesu, Yas Takaful Dubai Insurance, Zacho-Lind, Zierick Manufacturing Corporation, Zoho ManageEngine, Zoom Workplace, and ZZ Dats have reported hacking or compromises this month.

Amazon Web Services (AWS US-EAST-1), Microsoft 365, Microsoft Azure (more than once), Microsoft Security Response Center, and YouTube have suffered from outages this month.

Internet access throughout Bermuda, Cameroon, Dominican Republic, Italy, Jamaica, Kenya, Pakistan, Philippines, Tanzania, and Ukraine has been blocked our down for extended periods.

Last months updates broke Cisco Duo, HP OneAgent / Microsoft Entra ID, Microsoft Internet Information Server (IIS), Microsoft Outlook, smart card authentication, sprotect.sys compatibility, USB mouse and keyboard in WinRE, wallpaper managers, Windows 11 Media Creation Tool, Windows Task Manager and Start menu, and the Windows Update Hotpatch service.

There’s a new type of worm out there. GlassWorm uses a combination of Solana, UTF-concealed code, and remote access trojans to ensure that it’s impossible to shut down or kill from the top-down while still being fully manageable by the people behind it. In addition, it uses compromised developer accounts to propagate by uploading itself to their repositories in order to grow the botnet to new audiences. This signals the first major use of these three aspects in combination and the first software of its kind to operate with no centralized command-and-control server. This evolution is going to cause a massive change in how we deal with security incidents and how we protect our devices.

Half of all the satellites in orbit are exposing your information in clear text.

Nearly 2 billion accounts from hundreds of thousands of different platforms have been disclosed in a credential stuffing database (Synthient). While this appears to mostly be the result of stealer logs (the result of hacked devices), there is a lot of duplication in the data which demonstrates a lot of password re-use and thus a high chance of other accounts being abused as a result.

The boss of a defense contractor, Trenchant, has been selling exploits to foreign governments.

The Louvre Museum security system was “hacked” in order to enable thieves to steal the crown jewels. It’s hardly hacking when the password was so stupid.

“Beware that, when fighting monsters,
you yourself do not become a monster.”
— Friedrich Nietzsche

Now for the good news:

SpaceX disabled 2,500 Starlink terminals in Asia to curb their use by scammers.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is relatively small this month. The typical computer should see roughly 4.0 GB in updates today. Let’s get started.

Microsoft released 41 updates to address 68 vulnerabilities in Azure Monitor Agent, Customer Experience Improvement Program (CEIP), Dynamics 365 Field Service (online), GitHub Copilot and Visual Studio Code, Host Process for Windows Tasks, Microsoft Configuration Manager, Microsoft Dynamics 365 (on-premises), Microsoft Edge, Microsoft Graphics Component, Microsoft Office, Microsoft Office Excel, Microsoft Office SharePoint, Microsoft Office Word, Microsoft Streaming Service, Microsoft Wireless Provisioning System, Multimedia Class Scheduler Service (MMCSS), Nuance PowerScribe, OneDrive for Android, SQL Server, Storvsp.sys Driver, Visual Studio, Visual Studio Code CoPilot Chat Extension, Windows Administrator Protection, Windows Ancillary Function Driver for WinSock, Windows Bluetooth RFCOM Protocol Driver, Windows Broadcast DVR User Service, Windows Client-Side Caching (CSC) Service, Windows Common Log File System Driver, Windows DirectX, Windows Hyper-V, Windows Kerberos, Windows Kernel, Windows License Manager, Windows OLE, Windows Remote Desktop, Windows Routing and Remote Access Service (RRAS), Windows Smart Card, Windows Speech, Windows Subsystem for Linux GUI, Windows TDX.sys, Windows WLAN Service, and MSRT. This includes security updates. A reboot is required.

Oracle released 374 security updates this quarter to address 170 vulnerabilities in 29 product lines.

Apple released updates for iOS 18.7.2, iOS 26.1, iPadOS 18.7.2, iPadOS 26.1, macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1, Safari 26.1, tvOS 26.1, visionOS 26.1, watchOS 26.1, and Xcode 26.1. This includes security updates. Use Apple Software Update to install the most current versions.

iOS 18.7.2 and 26.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 18.7.2 and 26.1 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 26.1 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 26.1 is a security update. Use System, Software Update to install the most current version.

visionOS 26.1 is a security update. Use System, Software Update to install the most current version.

Google ChromeOS 141.0.7390.115 and ChromeOS LTS 138.0.7204.296 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Fedora 43 updates libraries, adds Hare support, changes UEFI+MBR requirements, and enables automatic updates. This is not a security update.
https://getfedora.org/en/workstation/download/

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Tahoe (26.x) means that macOS Ventura (13.x) and older are no longer supported. If you can not install at least macOS Sonoma (14) on your Mac then you should immediately remove your device from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The current — and final — release of the Windows 10 (v22H2) is end of life (EOL). All non-LTS versions of Windows 10 without ESU are now out of support, with the sole alternatives being to upgrade to Windows 11 or enable Extended Service Updates (ESU). If you aren’t sure whether you are using LTS, you aren’t. Enable the ESU now.

The current release of the Windows 11 (v25H2) is very large (30% larger than any previous release) so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it. If not, switch to Linux (Mint is nice) or replace your computer.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, drivers for hardware you’re not using (like old printers), and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with a SaferPC Subscription and we will install updates each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 25.10.2 is a security update.
https://www.amd.com/en/support

BullZip PDF Printer 2025.2.0.2990 is a security update.
https://www.bullzip.com/products/pdf/info.php#download

Epson ET-2720 2.100.00 is a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-2720/s/SPT_C11CH42201?review-filter=Windows+10+64-bit

Epson ET-2988 3.60.00 is a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-2988/s/SPT_C11CL41203?review-filter=Windows+11

Epson ET-15000 3.60.00 is a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-15000/s/SPT_C11CH96201?review-filter=Windows%2010%2064-bit

MTPdrive 4.5.179 resolves a stability bug. This is not a security update.
https://www.mtpdrive.com/

Plustek ePhoto Z300 6.7.0.5 resolves a couple bugs. This is not a security update.
https://plustek.com/us/products/film-photo-scanners/ephoto-z300/support.php

TP-Link Archer A6 v3 250718 improves stability and PPPoE support. This is not a security update.
https://www.tp-link.com/us/support/download/archer-a6/v3/#Firmware

TP-Link Archer AX72 v1.60 250814 is a security update.
https://www.tp-link.com/us/support/download/archer-ax72-pro/#Firmware

UniFi U6 Professional 6.7.33 adds packet capture, Roaming Assistant, 5GHz channel selection, mesh improvements, and resolves a dozen bugs. This is not a security update.
https://www.ui.com/download/software/u6-pro

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.84.132 is a security update.
https://brave.com/

Firefox 145.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 140.5.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 142.0.7444.134 is a security update.
https://www.google.com/chrome/

Microsoft Edge 142.0.3595.69 is a security update.
https://www.microsoft.com/en-us/edge/business/download

SeaMonkey 2.53.22 is a security update.
https://www.seamonkey-project.org/

Email Updates

One or more of these are likely to be of interest to everyone.

DavMail Gateway 6.5.1 resolves several bugs. This is not a security update.
https://davmail.sourceforge.net/

Spark 3.27.2.122708 ramps up the AI integration. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.27.2.122707 ramps up the AI integration. This is not a security update.
https://sparkmailapp.com/

Thunderbird 144.0.1 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 9.6.4 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 9.5.1 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

curl 8.17.0 resolves dozens of bugs. This is a security update.
https://curl.haxx.se/windows/

Discord November 4, 2025 resolves dozens of bugs. This is not a security update.
https://discord.com/download

Dropbox 236.4.5918 resolves several bugs and improves stability. This is not a security update.
https://www.dropbox.com/

Google Drive 117.0 is a security update.
https://drive.google.com/start

MeshCentral 1.1.53 resolves a couple bugs and improves UI controls. This is not a security update.
https://meshcentral.com/info/downloads.html

Mumble 1.5.857 is a security update.
https://www.mumble.info/

Nextcloud Server 32.0.1 updates libraries and resolves dozens of bugs. This is a security update.
https://nextcloud.com/

OneDrive 25.184.0921.0004 adds Copilot actions, improves offline mode, renames binaries, and adds the ability to cleanly opt out of the OneDrive Backup service. This is not a security update.
https://support.microsoft.com/en-us/onedrive

Rclone 1.71.2 updates libraries and resolves several bugs. This is a security update.
https://rclone.org/

Signal 7.78.0 resolves a couple bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.63.3 adds split-screen support, improves performance and resolves many bugs. This is not a security update.
https://signal.org/android/apk/

Syncthing 2.0.11 migrates database to SQLite, improves log structure, changes CLI syntax, and resolves several bugs. This is not a security update.
https://syncthing.net/

Technitium DNS Server 14.0.1 is a security update.
https://technitium.com/dns/

Telegram 6.2.4 makes a couple minor changes in the UI and resolves crash bugs. This is not a security update.
https://telegram.org/

WinSCP 6.5.4 is a security update.
https://winscp.net/eng/index.php

Zoom 6.6.6.19875 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.22 resolves several bugs related to facial tracking. This is not a security update.
https://en.3tene.com/

Grayjay 342 resolves a couple bugs. This is not a security update.
https://grayjay.app/index.html

iTunes 12.13.9.1 is a security update.
https://www.apple.com/itunes/download/

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.122.2 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Nintendo Switch 21.0.0 updates cosmetics and cloud settings, and resolves a couple bugs. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 2025.101 displays more hardware details and messaging. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

SteamOS SteamDeck Update 2025.11.06 improves UI and resolves a couple bugs. This is not a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Format Plugins 1.1.2 is a security update.
https://helpx.adobe.com/security/products/formatplugins/apsb25-114.html

Adobe Illustrator 29.8.3 and 30.0 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb25-109.html

Adobe Illustrator Mobile 3.0.10 is a security update.
https://helpx.adobe.com/security/products/illustrator-mobile-ios/apsb25-111.html

Adobe InCopy 21.0 and 20.5.1 are security updates.
https://helpx.adobe.com/security/products/incopy/apsb25-107.html

Adobe InDesign ID21.0 and ID20.5.1 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb25-106.html

Adobe Pass 3.8.0 is a security update.
https://helpx.adobe.com/security/products/pass/apsb25-112.html

Adobe Photoshop 26.9 is a security update.
https://helpx.adobe.com/security/products/photoshop/apsb25-108.html

Adobe Reader DC 25.001.20844 resolves stability bugs. This is not a security update.
https://get.adobe.com/reader

Adobe Substance 3D Stager 3.1.6 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb25-113.html

Calibre 8.14.0 resolves several bugs. This is a security update.
https://calibre-ebook.com/

Columns++ 1.3 resolves several bugs and improves compatibility. This is not a security update.
https://github.com/Coises/ColumnsPlusPlus

LibreOffice 25.2.7 resolves over 40 bugs. This is not a security update.
https://www.libreoffice.org/

Nextcloud Desktop 4.0.1 resolves several bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.8.7 adds a publisher certificate for the installation packages and resolves several bugs. This is a security update.
https://notepad-plus-plus.org/

OpenOffice 4.1.16 is a security update.
https://www.openoffice.org/download/

Paint.net 5.1.11 resolves several bugs. This is not a security update.
https://www.getpaint.net/

PDF-XChange Editor 10.7.5.403 updates libraries and resolves several bugs. This is a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

Operating System Updates

These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.

Fedora 43 updates libraries, adds Hare support, changes UEFI+MBR requirements, and enables automatic updates. This is not a security update.
https://getfedora.org/en/workstation/download/

Google ChromeOS 141.0.7390.115 is a security update. Use Help, About to install this update.

Google ChromeOS LTS 138.0.7204.296 is a security update. Use Help, About to install this update.

iOS 18.7.2 and 26.1 are security updates.
https://support.apple.com/en-us/100100

iPadOS 18.7.2 and 26.1 are security updates.
https://support.apple.com/en-us/100100

macOS Tahoe 26.1 is a security update.
https://support.apple.com/en-us/100100

macOS Sequoia 15.7.2 is a security update.
https://support.apple.com/en-us/100100

macOS Sonoma 14.8.2 is a security update.
https://support.apple.com/en-us/100100

tvOS 26.1 is a security update.
https://support.apple.com/en-us/100100

visionOS 26.1 is a security update.
https://support.apple.com/en-us/100100

watchOS 26.1 is a security update.
https://support.apple.com/en-us/100100

Security Software Updates

One or more of these is likely to be of interest to most people.

KeePass 2.60 adds group path search, consistent shortcuts and hot keys, improved import options, and improves several other UI and integration features. This is not a security update.
https://keepass.info/

ProtonVPN 4.3.5 resolves several bugs and adds FIDO2 security key support. This is not a security update.
https://github.com/ProtonVPN/win-app/releases/latest

RogueKiller 16.5.1 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

SanDisk PrivateAccess 6.4.14.0 adds messaging signaling that the software is now end of life and should be removed as soon as possible. Migrate your data out of PrivateAccess and remove it.
https://support-en.wd.com/app/answers/detailweb/a_id/48025

Stinger 13.0.0.562 adds support for new detections. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

uBlock Origin 1.67.0 resolves a couple bugs and improves various features. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

WebBrowserPassView 2.18 improves compatibility. This is not a security update.
https://www.nirsoft.net/utils/web_browser_password.html

YARA 4.5.5 resolves several bugs. This is not a security update.
https://github.com/VirusTotal/yara/

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 32.0.2 resolves a couple crash bugs. This is not a security update.
https://obsproject.com/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.5.1 adds support for new encodings and improves menu editing. This is not a security update.
https://www.dvdfab.cn/download.htm

StreamFab 6.2.6.2 adds multithreading, improves compatibility, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 3.0.3.1 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 7.0.27 resolves several bugs. This is not a security update.
https://www.zotero.org/

Zotero (macOS) 7.0.29 resolves Safari and Word clipboard issues. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.11.18 resolves several bugs. This is not a security update.
https://1password.com/downloads/

Beyond Compare 5.1.6.31527 resolves several bugs. This is not a security update.
https://www.scootersoftware.com/download

Bitwarden 2025.10.0 improves observation of data ownership policies, adds direct importer for Chromium browser accounts, and resolves several bugs. This is not a security update.
https://bitwarden.com/

BulkFileChanger 1.74 resolves a field copy bug. This is not a security update.
https://www.nirsoft.net/utils/bulk_file_changer.html

CCleaner 7.01.1042 resolves several bugs and renames several features. This is not a security update.
https://www.ccleaner.com/

Cygwin 3.6.5 resolves several bugs. This is a security update.
https://cygwin.com/

DesktopOK 12.21 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.6.39.0 resolves several bugs. This is a security update.
https://dngrep.github.io/

Everything 1.4.1.1030 is a security update.
https://www.voidtools.com/

Everything SDK 1.4.1.1030 is a security update.
https://www.voidtools.com/support/everything/sdk/

Everything Toolbar 2.1.1 resolves a couple bugs. This is a security update.
https://github.com/stnkl/EverythingToolbar/

ExplorerPatcher 26100.4946.69.6 improves compatibility and resolves several bugs. This is not a security update.
https://github.com/valinet/ExplorerPatcher/

Fing 3.9.2 adds PDF reporting and resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

Git SCM 2.51.2 resolves several bugs. This is not a security update.
https://git-scm.com/

GoodSync 12.9.14 resolves several bugs. This is not a security update.
https://www.goodsync.com/

Homedale 2.22 improves filtering. This is not a security update.
https://www.the-sz.com/products/homedale/

LessMSI 2.10.4 resolves a selection bug. This is not a security update.
https://lessmsi.activescott.com/

MPAM 1.441.121.0 adds support for new detections. This is not a security update.
https://www.microsoft.com/en-us/wdsi/defenderupdates

MultiMonitorTool 2.21 resolves a stability bug. This is not a security update.
https://www.nirsoft.net/utils/multi_monitor_tool.html

NTLite 2025.11.10669 adds support for Windows 24H1 and updates component support. This is not a security update.
https://www.ntlite.com/download/

PolicyPlus October 2025 updates included policies. This is not a security update.
https://github.com/Fleex255/PolicyPlus/releases

PowerToys 0.95.1 resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Process Explorer 17.07 adds strings for Arm64 binaries and fixes a notification bug. This is not a security update.
https://learn.microsoft.com/sysinternals/downloads/process-explorer

PSAppDeploy 4.1.7 resolves several bugs and improves compatibility. This is not a security update.
https://psappdeploytoolkit.com/

Remotly 1.35.0 adds UPnP port forwarding. This is not a security update.
https://remotly.com/

RDCMan 3.11 enables Entra ID login. This is not a security update.
https://learn.microsoft.com/sysinternals/downloads/rdcman

ripgrep 15.1.0 resolves a bug with line buffering. This is not a security update.
https://github.com/BurntSushi/ripgrep/releases/latest

RoboForm 9.8.3 resolves a security bug. This is a security update.
https://www.roboform.com/

WinGet 1.12.350 improves compatibility and resolves several bugs. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinScan2PDF 9.44 adds support for newer hardware. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

ZoomIt 9.20 adds ability to export to MP4 and GIF. This is not a security update.
https://learn.microsoft.com/sysinternals/downloads/zoomit

Developer Updates

These are unlikely to be of interest to most people.

.NET Runtime 9.0.10 and 10.0.0 are security updates.
https://dotnet.microsoft.com/en-us/download/dotnet

Android Studio 2025.2.1.7 resolves several bugs. This is not a security update.
https://developer.android.com/studio

DB Browser for SQLite 3.13.1 resolves several bugs and improves compatibility. This is not a security update.
https://sqlitebrowser.org/

GameMaker Studio 2024.14.0.207 is a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.5.245 adds new templates and resolves several bugs. This is not a security update.
https://gdevelop.io/download

GitHub Desktop 3.5.4 is a security update.
https://desktop.github.com/

Go 1.25.4 resolves several bugs. This is not a security update.
https://go.dev/

Inno Setup 6.6.0 improves dark mode, custom styling support, and pascal scripting. This is a security update.
https://www.jrsoftware.org/isdl.php

Java 8u471 is a security update.
https://www.java.com/en/download/manual.jsp

Node.js 22.21.1 resolves several bugs. This is not a security update.
https://nodejs.org/en/

Node.js 24.11.0 marks the transition to LTS. This is not a security update.
https://nodejs.org/en/

Node.js 25.1.0 updates libraries and resolves several bugs. This is not a security update.
https://nodejs.org/en/

SQLite 3.51.0 adds a couple new macros, improves JSON support and CLI capabilities, and resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

TortoiseGit 2.18.0 updates libraries and resolves several bugs. This is not a security update.
https://tortoisegit.org/

Visual Studio Code 1.105.1 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.52 resolves several bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.2.4 resolves several bugs and improves compatibility. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

HumHub 1.17.4 adds a nonce for OEmbeds and resolves several bugs. This is a security update.
https://www.humhub.com/en

MailEnable 10.54 resolves several bugs and improves logging. This is a security update.
https://www.mailenable.com/

ownCloud Client 6.0.2.17506 is a security update.
https://owncloud.com/desktop-app/

Piwigo 15.7.0 is a security update.
https://piwigo.org/

Contact Form 7 6.1.3 resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Email Log 2.62 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/email-log/

WordPress Importer 0.9.5 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/wordpress-importer/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2025-09-09

Posted on September 9, 2025 by Shawn K. Hall

Welcome back, Folks!

Today is Patch Tuesday for September, 2025.

Time is now running short to upgrade to Windows 11 24H2 or macOS 15/Sequoia. The next release of each OS will be available within the next month and should be treated as beta software – Win11 and macOS 15/Sequoia are as close to stable as they will ever be. Upgrade now.

If your Windows 10 computer can not be upgraded to Windows 11 then you should either replace your device or use the Windows 10 ESU program to get another year out of it.

There were 490+ major hacks, and over 260 application updates this month. It’s a mild month, with about 2.5 GB of updates for most users.

This Month in Technology

10DESIGN, 32 Pearls, Absolute Dental Group, LLC, Academic Urology & Urogynecology of Arizona, Academy Software Foundation OpenEXR, Access Personal Checking Services (APCS), Accident Injury Solicitors, Advanced Security Systems, Afghan Relocations and Assistance Policy, Aflac Inc, AgeGO, Airfast Indonesia, AIS InfoSource, Alcàsser City Council, Aldagi, Alera Group, Inc, Algérie Poste, All States Materials Group, All Truck Transportation, Ambitek, American Association of Critical-Care Nurses, Android, Anuvu, Apex Class Action, LLC, Apple iOS, Apple macOS, Apple macOS Keychain, Arboris, Argo CD, Arkansas Primary Care Clinic, Aroeira Salles Advogados, Artists&Clients, Aspire Rural Health System, Assisted Living Pharmacy, AT&T, Auchan, Austrian Interior Ministry, Autodesk, Awes.me, Inc, Axis Communications Autodesk Plugin, Banville Wine Merchants, BAR Architects & Interiors, Baycoat, BDO Perú, Beech Acres, Behavioral Health Group, Belle Vernon Schools, Bemac-Merivale, Benworth Capital, Ben’s Asphalt, Berkshire Health Systems, BFC Solutions, Bizcom Electronics, Black Hills Regional Eye Institute, Blazer Building, Blenders in the Grass, Bolt Nut Manufacturing, Borghese Contemporary Hotel, Bouvier Insurance, Box Elder County, Bragg Gaming Group, Bridgestone, Brightpoint, BtcTurk, Burger & Brown Engineering, Burger King, Burt Process Equipment, Business Council of New York State (BCNYS), Canadian House of Commons, Canadian Investment Regulatory Organization (CIRO), Cancer Care Center of North Florida, CareTracker, Inc, Carmichael Engineering, Carter Credit Union, Carter Federal Credit Union, CB1 Medical, CBG Surveying Texas, CData API Server, CEI Vision Partners, Center for Disability Services (NY), Central Florida Hand Specialists, Charak Center for Health, ChatGPT, Chess.com, Children’s Center of Hamden, Chung Shan Institute of Science and Technology, Church of England, CI Engineering, Cisco Secure Firewall Management Center, City of Baltimore, MD, City of Batavia, City of Lubbock, TX, City of St. Paul, MN, Clicknget, CloudFlare (as well as a certificate issuance thing), Cockroach Labs cockroach-k8s-request-cert, College Hometown Pharmacy, College Parkside Pharmacy, Colt Technology Services, Columbia University, Commonwealth Business Bank, Community Connections, Community Treatment Solutions, Compass Counseling Services, Comprehensive Pain Centers, Connex Credit Union, Copilot, CPAP Medical Supplies and Services Inc, CPH Corp, CPK Interior Products, Crawford Gives, Credix, Cunningham Group, D. Visser & Zonen BV, Data I/O, DaVita, DBM Global, Delta Electronics DIAView, Delta Electronics ISPSoft, Denray Tire, Digilent DASYLab, DIGO, Diversified CPC, Django, Docker Desktop, Doctors Memorial Hospital, DOGE, Dr. Doug’s Pediatric Dentistry, Dubai Pharmacy College for Girls, DUC App, Dynacast, ECM Consultants, EG4 Electronics solar inverters, Electricity Authority of Cyprus, Elektro-Buder, Elkhart Independent School District, Episource, LLC, Epperson Law Group, Erdy McHenry Architecture, eShipGlobal, Eurofins, European Commissioner Ursula von der Leyen’s plane, Ewald Consulting, LLC, Excelsior Orthopaedics, Exel Composites, Expert E-commerce GmbH, Faltner, Family Counseling Services of the Finger Lakes, Fannava, Farmers Group, Inc, Farmers Insurance, Farmers Insurance Exchange, Farmers New World Life Insurance Company, Farmers Rice Cooperative, Ferienwohnungen.de, Ferplast, Firebird SQL Database Server, FirstLight, Flavor & Fragrance Specialties, Florarte, FortiWeb, Foxit PDF Reader, FreePBX Servers, Friesen Group, FTX Creditor, Fullerton Surgical Center, Fundamental Administrative Services, Galaxy Freightline, Garner Trucking, GEA Consulting Engineers, George Haney & Son, Ghana Postal Service, Giglio, GitHub (s1ngularity), Glen Falls Hospital, Google Workspace, Gosive, Grand Rapids Controls, Graphite Construction Group, Greenville, Texas, Grupo DIRIA, Guerrero Mears, HackerOne, Haeger & Schmidt Logistics, Hanson Chambers, Hardwick Tactical, Healthcare Services Group, Inc, HighDoc, HK Hardware & Engineering, Hogan Construction Group, Humanists.org, Huntwood Industries, Hydrometrics, Hygrade Components, iCloud Calendar, iiNet, IMDataCenter, Indian Institute of Technology Roorkee, InEar, Infoniqa, Inotiv, Inox Laghi, Insight Partners, Insightly, Integrated Orthopedics of Arizona, Intel, International Freight & Commerce, Internet Archive, Internet Rimon, Israel Railways, Ivanti Avalanche, Ivanti Connect Secure, Ivanti Policy Secure, Ivanti ZTA, J Derenzo Co, Jack’s Lawn Service, Jaguar Land Rover, Jamaican Office of the Registrar, James H Cunningham Insurance Agency Inc, Jet Centre, Johann-Peter-Hebel Realschule, Juggernaut, K Strategies Marketing and Public Relations, Kafka Conveyors, Karachi American School, Karndean International LLC, Kazmunay Gas, Kennedys Law LLP, Keys Pathology Associates, Kirkpatrick Partners LLC, Kofax, Inc, Kokomo24/7, Krewett, Kuwait’s Ministry of Electricity & Water, Lake City Cancer Care, LLC, LandWorks, Langdon & Company, Lee & Associates, Legacy Treatment Services, Lewis Baach Kaufmann Middlemiss PLLC, Lipigas, Litchfield Cavo LLP, LJ Falcon Holdings, Inc – Hiller Companies, Logan & Mencuccini, Louis Vuitton North America, Inc, LoveSac, LPL Financial, Lundberg Design, Luxembourg National Lottery, Manesa, Manpower, Mark Edward Partners, Marlborough Partners, McDonald’s, McEwen & Associates, MDLand International Corporation, Mediate Management, MedicareCompareUSA, Medway Plastics, Meridian Valley Labs, Metro Technology Centers, Michigan Medicine, Microsoft Windows, Mid America Health, Miljödata (200 Swedish government agencies), Miracle Ear, Miraflores, Peru, MJets, Moniz Silva International, Morgenstern AG, Morocco’s Social Security Fund, Motor Controls Inc, Mower County, MN, Mower County Health and Human Services, MPOWERHealth, Mutual of America Life Insurance Company, My Psychiatrist (FL), MyVisaJobs, 800 N-able N-central servers, NASCAR, NAST DOST, NATO, Navy Federal Credit Union, NC Dynamics LLC, Nelnet, Nemo Protocol, NetScaler ADC, NetScaler Gateway, New York Blood Center Enterprises, New Zealand Cruise Association, NextLabs, Nigeria Customs Service, Nike USA, Nissan CBI, Nissan Japan, NoMachine, Northern Construction, Northwest Medical Specialties PLLC, Norwest Venture Partners, NVIDIA Isaac-GR00T, NVIDIA Transformers4Rec, NVIDIA Triton Inference Server, OB-GYN Associates, Ocean Edge Resort & Golf Club, Odin.fun, Ohio Medical Alliance, Omani Email Server, Omega Global Technologies, Ona Hotels, One Way Solutions, Onno Center, OnTrac Final Mile, OpenPrinting ippusbxd, Optima Tax Relief, LLC, Optivosa, Orange Belgium, Orleans Parish jail, Oxford Instruments Imaris Viewer, PagerDuty, Pakistan Petroleum, Palo Alto Networks, Panorama, Parkside Group, PassportScan, Passwordstate, PathoQuest, Paul Wilkinson Law Firm, Pediatric Otolaryngology Head & Neck Surgery Associates, Peggy Sage, Pena Briones McDaniel, Pennsylvania AG, Pequannock Township School District, Perplexity Comet AI browser, Pesado Construction, Philadelphia Investment Partners, Philippine Amusement and Gaming Corporation, Phillips 66 Lubricants, Pincong, Plex, Pocono Farms Country Club, Precision Endodontics of Raleigh, Premier Realty Group, pREST, Primax, PROVAIL, QEMU, QNAP QHora-322, Quadrangle Imaging Center, Qualys, RA Services, Rapper Bot, RAVEN Mechanical, Realtek rtl81xx Wi-Fi Driver, Reimagine Network, Revere Health PC, Risevatnet Dam, Risk Management Services LLC, Riverton Cabinets, Roche Underground, Rockwell Automation Arena Simulation, Rose Acre Farms, Royal Enfield, Royal Health Inc, Rusin Law, Ruđer Bošković Institute, Sabine County Hospital, SAIL Image Decoding Library, Salesforce, Salesian University, Salesloft, Sangoma FreePBX, Sansone Group, Santa Fe County, SAP S/4HANA, Schliessmeyer, School District Five of Lexington & Richland Counties, SC, Seasons Living, Securam ProLogic safe locks (used on at least 10 brands of safes), Security First Credit Union, Seguros América, Selartex, Seoul Guarantee Insurance, SFA Engineering, SGI, Shafer Partners, Sherman, Silverstein, Kohl, Rose & Podolsky, Shopify, Siemens Simcenter, Signit Online, Sika Footwear, Simmons Boardman, Sinqia SA, Sitecore, Six Guns LLC, Som Mobilitat, Sonitrol Security Solutions, South Coast Pediatrics, South Korean Intelligence, South Yorkshire Police, Southern Graphics, Spiffy Bin, Springs Christian Academy, State of Maryland, State of Nevada, Steel Encounters, Step2Education, Sterlings Accountancy Solutions, Stewart Home School, Sun Pacific Solar Electric Inc, Sunsweet Growers Inc, SVDP Management Inc, SYNCADD, SystemExec Co, Tallaght University Hospital, Tea Dating Advice, Inc, TeamstersCare, TeamViewer, TechSourceOne IT Solutions, TELACU College, TeleMessage, Tenable, Tenda AC6, TeslaMate, The Biosig Project libbiosig, The Computer Merchant (TCM), The Farmer’s Dog, The Smile Spa, TheSqua.re, TheTruthSpy, Togolese Republic Government, Tomb Multimedia Productions, Town of Vienna, VA, TP-Link routers, TransUnion, Trinity News, True World Group LLC, Tucows, Twin Cities Pain Clinic, Uganda Electricity Transmission Company Limited, UI Community HomeCare, Umeå University, United Domestic Workers of America (UDW), Universal Group For Engineering and Consulting, University of Iowa Health Care, University of Southeastern Philippines, University of the Philippines Tacloban College, US Homeland Security, Uzbekistan Airways, Van Hook Dental Studio, Vanderpool Construction, Venice Biennale, Venture Credit Union, Venus Protocol, VerifTools, Vistra Group, Vital Imaging Medical Diagnostic Centers, Volanno, Voltus GmbH, WaitWhatWeb, Washington Gastroenterology, water utilities across Europe, Waterford Surgical Center, Wayne Memorial Hospital, Wealthsimple, Weathercraft Companies, Welcome Dentistry, West Chester Township, OH, West Texas Oral Facial Surgery, WestJet, WhatsApp, Whitepages, Wier Boerner Allin, Wine Works Australia, WinRAR, Woodlawn Hospital, WordPress Doccure theme, WordPress Inspiro theme, WordPress Paid Memberships plugin, Workday, Workiva, Wyong Rugby League Club, Xerox, Xperthair, XWiki Blog, YES24, Zeelab, Ziegler-Design, Zions Bancorporation, NA, Zizzl LLC, Zoom, and Zscaler have reported hacking or compromises this month.

Copilot, Google search, Microsoft Teams, Nintendo store (blame Silksong), Office.com, PlayStation store (blame Silksong), Starlink, Steam (blame Silksong), X, Xbox store (blame Silksong), and YouTube have suffered from outages this month.

Internet access throughout Gotland, India, Iraq, Pakistan, Starlink, Turkey, Ukraine, United Arab Emirates, Venezuela, Vietnam, and Yemen has been blocked our down for extended periods.

Last months updates broke AutoCAD, Enterprise updates for Windows, Firefox, SAP, solid state drives (SSDs) from various vendors (then fixed it without telling anyone), streaming, and Windows Recovery & Reset options.

Yes, EMF is bad for you. You knew that. It’s also really bad for your children.

Epochalypse is closer than you think.

Microsoft Word is now saving your documents in the cloud by default. Apple has removed native encryption (Advanced Data Protection (ADP)) from devices in the UK while reports repeatedly claim otherwise. License plate reader company Flock Safety is teaming up with Nexar to access your dashcam video (and everyone else’s).

The absurd:

PayPal will no longer allow you to purchase Steam games in many native currencies. “Science” has decided that “science” is best served by lying to the public. The unforeseen side-effects of gatekeeping the Internet. The UK has found a novel way of saving water during their current drought: delete your emails!

Now for the good news:

FFmpeg now offers AV1 encoding.

Chromium manifest V2 is now disabled everywhere in the Chrome browser. This means that all fully featured ad-blocking (and security extensions) will no longer work. Switch to Brave. Need help? Call me.tel:+1-209-565-1273

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is pretty mild this month. The typical computer should see roughly 2.5 GB in updates today. Let’s get started.

Microsoft released 44 updates to address 86 vulnerabilities in Azure Arc, Azure Windows Virtual Machine Agent, Capability Access Management Service (camsvc), Graphics Kernel, Microsoft AutoUpdate (MAU), Microsoft Brokering File System, Microsoft Edge, Microsoft Edge (Chromium-based), Microsoft Graphics Component, Microsoft High Performance Compute Pack (HPC), Microsoft Office, Microsoft Office Excel, Microsoft Office PowerPoint, Microsoft Office SharePoint, Microsoft Office Visio, Microsoft Office Word, Microsoft Virtual Hard Drive, SQL Server, Windows Ancillary Function Driver for WinSock, Windows BitLocker, Windows Bluetooth Service, Windows Connected Devices Platform Service, Windows Defender Firewall Service, Windows DWM, Windows Hyper-V, Windows Imaging Component, Windows Internet Information Services, Windows Kernel, Windows Local Security Authority Subsystem Service (LSASS), Windows Management Services, Windows MapUrlToZone, Windows MultiPoint Services, Windows NTFS, Windows NTLM, Windows PowerShell, Windows Routing and Remote Access Service (RRAS), Windows SMB, Windows SMBv3 Client, Windows SPNEGO Extended Negotiation, Windows TCP/IP, Windows UI XAML Maps MapControlSettings, Windows UI XAML Phone DatePickerFlyout, Windows Win32K – GRFX, Xbox, and MSRT. This includes security updates. A reboot is required.

Apple released updates for iOS 18.6.2, iPadOS 18.6.2, iPadOS 17.7.10, macOS Sequoia 15.6.1, macOS Sonoma 14.7.8, macOS Ventura 13.7.8, and watchOS 11.6.1. This includes security updates. Use Apple Software Update to install the most current versions.

iOS 18.6.2 is a security update. Use Settings, General, Software Update to install the most current update.

iPadOS 18.6.2 and 17.7.10 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 11.6.1 is a security update. Use the Watch app on your iPhone to install the most current version.

Google ChromeOS 139.0.7258.164, ChromeOS LTC 138.0.7204.255, and ChromeOS LTS 132.0.6834.242 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

The release of macOS Sequoia (15.x) means that macOS Monterey (12.x) and older are no longer supported. If you can not install at least macOS Ventura (13) on your Mac then you should immediately remove your device from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v24H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it. If not, switch to Linux (Mint is nice) or replace your computer.

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 25.9.1 resolves several bugs. This is not a security update.
https://www.amd.com/en/support

BullZip PDF Printer 2025.1.0.2985 adds ARM support and updates libraries. This is a security update.
https://www.bullzip.com/products/pdf/info.php#download

Crucial Storage Executive 11.08 is a security update.
https://www.crucial.com/support/storage-executive

Intel Driver and Support Assistant 25.4.36.6 improves hardware detection. This is not a security update.
https://www.intel.com/p/en_US/support/detect

UniFi Network Server 9.4.19 is a security update.
https://www.ui.com/download/releases/network-server

VIISAN OfficeCam 7.2.12 doesn’t provide a change log so should be treated as a security update.
https://www.viisan.com/en/download/type1.html

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.82.165 is a security update.
https://brave.com/

Firefox 142.0.1 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Google Chrome 140.0.7339.80 is a security update.
https://www.google.com/chrome/

Microsoft Edge 140.0.3485.54 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Vivaldi 7.5.3735.66 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

DavMail Gateway 6.4.0 resolves dozens of bugs. This is a security update.
https://davmail.sourceforge.net/

Spark 3.25.2.115680 resolves several bugs and improves the user interface. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.25.2.115679 resolves several bugs and improves the user interface. This is not a security update.
https://sparkmailapp.com/

Thunderbird 142.0.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 9.6.0 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 9.5.0 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

Discord September 3, 2025 resolves over a hundred bugs and vastly improves server capabilities and performance. This is not a security update.
https://discord.com/download

Dropbox 231.4.5770 resolves an installation bug. This is not a security update.
https://www.dropbox.com/

FileZilla Server 1.11.0 adds optional pattern matching and resolves several bugs. This is a security update.
https://filezilla-project.org/

Google Drive 114.0 resolves several bugs. This is not a security update.
https://drive.google.com/start

MeshCentral 1.1.49 resolves a dozen bugs. This is not a security update.
https://meshcentral.com/info/downloads.html

Nextcloud Server 31.0.8 updates libraries and resolves dozens of bugs. This is a security update.
https://nextcloud.com/

Nmap 7.98 is a security update.
https://nmap.org/

Pocketnet-GUI 0.9.129 resolves several bugs. This is not a security update.
https://pocketnet.app/

Rclone 1.71.0 updates libraries and resolves dozens of bugs. This is a security update.
https://rclone.org/

Signal 7.69.0 resolves several bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.54.1 improves scrolling performance. This is not a security update.
https://signal.org/android/apk/

Syncthing 2.0.8 is the eighth bugfix release for v2 with dozens of changes and improvements. This is not a security update.
https://syncthing.net/

Telegram 6.1.3 resolves several bugs. This is not a security update.
https://telegram.org/

Zoom 6.5.12.14128 doesn’t provide a detailed change log so should be treated as a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.21 resolves several bugs. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.3.13 adds support and fixes for new controllers and resolves several bugs. This is not a security update.
https://www.bitwig.com/download/

Grayjay 336 resolves several bugs and improves controls. This should be treated as a security update.
https://grayjay.app/index.html

KaraFun Player 3.9.0 resolves several bugs and improves the user interface. This is not a security update.
https://www.karafun.com/karaoke-windows/

Plex Desktop 1.110.0.351 is a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Game Updates
These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.102.1 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Nintendo Switch 20.4.0 improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 2025.902 improves performance and stability. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

SteamOS SteamDeck Update 2025.09.04 is a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe 3D Substance Modeler 1.22.4 is a security update.
https://helpx.adobe.com/security/products/substance3d-modeler/apsb25-92.html

Adobe Acrobat 25.001.20693, 24.001.30264, 20.005.30793, and 20.005.30791 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb25-85.html

Adobe After Effects 25.4 and 24.6.8 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb25-86.html

Adobe ColdFusion 2025.4, 2023.16, and 2021.22 are security updates.
https://helpx.adobe.com/security/products/coldfusion/apsb25-93.html

Adobe Commerce Hotfix for CVE-2025-54236 (applies to all *current* builds of Adobe Commerce) is a security update.
https://helpx.adobe.com/security/products/magento/apsb25-88.html

Adobe Dreamweaver 21.6 is a security update.
https://helpx.adobe.com/security/products/dreamweaver/apsb25-91.html

Adobe Experience Manager 2025.9, 6.5 LTS SP1 (GRANITE-61551 Hotfix), 6.5.23 (GRANITE-61551 Hotfix) are security updates.
https://helpx.adobe.com/security/products/experience-manager/apsb25-90.html

Adobe Magento Open Source Hotfix for CVE-2025-54236 (applies to all *current* builds of Magento Open Source) is a security update.
https://helpx.adobe.com/security/products/magento/apsb25-88.html

Adobe Premiere Pro 25.4 and 24.6.8 are security updates.
https://helpx.adobe.com/security/products/premiere_pro/apsb25-87.html

Adobe Substance 3D Viewer 0.25.2 is a security update.
https://helpx.adobe.com/security/products/substance3d-viewer/apsb25-89.html

Calibre 8.10.0 resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Ghostscript 10.06.0 is a security update.
https://www.ghostscript.com/releases/gsdnld.html

LibreOffice 25.2.6 resolves over 30 bugs. This is a security update.
https://www.libreoffice.org/

LibreOffice Fresh 25.8.1 resolves nearly a hundred bugs. This is a security update. The “Fresh” line is beta software and should be avoided by most users for the stable “Still” branch.
https://www.libreoffice.org/

Manager 25.8.19.2622 doesn’t provide a current change log so should be treated as a security update.
https://www.manager.io/

Nextcloud Desktop 3.17.1 updates libraries and resolves dozens of bugs. This should be treated as a security update.
https://nextcloud.com/

PDF Candy Desktop 3.15 doesn’t provide a change log so should be treated as a security update.
https://pdfcandy.com/

PDF-XChange Editor 10.7.2.400 resolves dozens of bugs and adds new user interface options and documents controls. This is not a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

Operating System Updates

These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.

ChromeOS 139.0.7258.164 is a security update.
https://chromereleases.googleblog.com/search/label/Stable%20updates+ChromeOS

ChromeOS LTC 138.0.7204.255 is a security update.
https://chromereleases.googleblog.com/search/label/Stable%20updates+ChromeOS

ChromeOS LTS 132.0.6834.242 is a security update.
https://chromereleases.googleblog.com/search/label/Stable%20updates+ChromeOS

iOS 18.6.2 is a security update.
https://support.apple.com/kb/HT204204

iPadOS 18.6.2 is a security update.
https://support.apple.com/kb/HT204204

Linux Mint 22.2 is a security update.
https://www.linuxmint.com/download.php

macOS 15.6.1 is a security update.
https://support.apple.com/kb/HT201541

Tails 6.19 is a security update.
https://tails.net/install/download/index.en.html

watchOS 11.6.1 is a security update.
https://support.apple.com/kb/HT204641

Security Software Updates

One or more of these is likely to be of interest to most people.

.NET Runtime 9.0.9 resolves several bugs and improves compatibility. This is not a security update.
https://dotnet.microsoft.com/en-us/download/dotnet

FRST 2025.8.22 doesn’t provide a change log so should be treated as a security update.
https://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/

Hashcat 7.1.2 resolves several bugs and adds dozens of new modes and features. This is not a security update.
http://hashcat.net/hashcat/#downloadlatest

HTTP Toolkit 1.22.1 doesn’t provide a change log so should be treated as a security update.
https://httptoolkit.tech/

RogueKiller 16.3.0 adds disk monitoring and improves performance. This is not a security update.
https://www.adlice.com/download/roguekiller/

Stinger 13.0.0.455 improves detections.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

uBlock Origin 1.66.2 resolves several bugs and improves defaults. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Velociraptor 0.75 adds multiselect, tagging, improved keyboard navigation and controls, optional compression, “continue” support, improves server permissions, and resolves several bugs. This is not a security update.
https://github.com/Velocidex/velociraptor/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 25.3.1 resolves several bugs and improves keyboard navigation. This is not a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.4.7 adds support for new encodings and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

FFmpeg 20250909 adds support for new hardware, encoding and decoding profiles, improves performance and additional filters. This is not a security update.
https://ffmpeg.org/ffmpeg.html

HandBrake 1.10.2 updates libraries and resolves several bugs. This is not a security update.
https://handbrake.fr/

StreamFab 6.2.5.3 improves compatibility and resolves dozens of bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 3.0.2.7 adds support for newer hardware, improves logic and performance, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

e-Sword 14.5, updates libraries, resolves several bugs, and improves user interface. This is not a security update.
https://www.e-sword.net/

Zotero 7.0.24 improves compatibility and resolves several bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.11.8 resolves several bugs. This is not a security update.
https://1password.com/downloads/

Agent Ransack 2022.3530 updates libraries, resolves several bugs, and now splits the search library into a separate download in order to avoid false antivirus detections. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

Beyond Compare 5.1.5.31310 updates libraries and resolves several bugs. This is a security update.
https://www.scootersoftware.com/download

Bitwarden 2025.8.3 updates libraries and resolves several bugs. This should be treated as a security update.
https://bitwarden.com/

CCleaner 6.39.11548 resolves several bugs. This is not a security update.
https://www.ccleaner.com/

DesktopOK 11.98 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.5.66.0 updates libraries and translations. This is a security update.
https://dngrep.github.io/

Everything Toolbar 2.0.4 updates installer to let you switch between launcher and deskband behavior. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

FileLocator Pro 2022.3530 updates libraries, resolves several bugs, and now splits the search library into a separate download in order to avoid false antivirus detections. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Fing 3.9.1 resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

GoodSync 12.9.8 resolves several bugs and improves compatibility. This should be treated as a security update.
https://www.goodsync.com/

HWMonitor 1.59 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

Kingston SSD Manager 1.5.5.7 doesn’t provide a change log so should be treated as a security update.
https://www.kingston.com/us/support/technical/ssdmanager

LessMSI 2.8.1 resolves a language bug. This is not a security update.
https://lessmsi.activescott.com/

ManageWirelessNetworks 1.17 adds ability to set language encoding for exports. This is not a security update.
https://www.nirsoft.net/utils/manage_wireless_networks.html

MPAM 1.435.674.0 updates detections. This is not a security update.
https://www.microsoft.com/en-us/wdsi/defenderupdates

osquery 5.19.0 updates libraries and resolves several bugs. This is not a security update.
https://osquery.io/downloads

PointerStick 6.79 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.94.0 resolves several bugs and improves compatibility. This is a security update.
https://github.com/microsoft/PowerToys/releases/latest

PSAppDeploy 4.1.5 improves diagnostics and resolves several bugs. This is not a security update.
https://psappdeploytoolkit.com/

Remotly 1.34.1 expands connectivity options, improves hardware support, and resolves over a dozen bugs.
https://remotly.com/

SpaceSniffer 2.0.3.12 adds high-DPI support, Unicode support, CLI improvements, and resolves several bugs. This is not a security update.
http://www.uderzo.it/main_products/space_sniffer/

Ventoy 1.1.07 resolves a compatibility bug. This is not a security update.
https://www.ventoy.net/en/index.html

WizTree 4.27 adds QuickLook and Seer support, improves filtering syntax, and resolves several bugs. This is not a security update.
https://www.diskanalyzer.com/

ZoomText 2025 2025.2508.35.400 improves performance, multi-monitor controls, and resolves several bugs. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 2025.1.3.7 resolves dozens of bugs. This is a security update.
https://developer.android.com/studio

GDevelop 5.5.239 adds a training course, GPT-5 integration, new controls and several bugs fixes. This is not a security update.
https://gdevelop.io/download

GitHub includefragment 6.4.1 improves content-type detection. This is not a security update.
https://github.github.io/include-fragment-element/

Go 1.25.1 is a security update.
https://go.dev/

Inno Setup 6.5.1 adds threading support for downloads to improve responsiveness and resolves several bugs. This is not a security update.
https://www.jrsoftware.org/isdl.php

Node.js 20.19.5 updates libraries and resolves several bugs. This is a security update.
https://nodejs.org/en/

Node.js 22.19.0 updates libraries and resolves several bugs. This is a security update.
https://nodejs.org/en/

Node.js 24.7.0 updates libraries and resolves several bugs. This is a security update.
https://nodejs.org/en/

Python 3.13.7 resolves several bugs. This is a security update.
https://www.python.org/downloads/macos/

Visual Studio Code 1.103.2 adds GPT-5 support and resolves several bugs. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.50.2 resolves several bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.2.0 improves performance resolves several bugs. This is a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Adminer 5.4.0 resolves several bugs and adds new display, selection and export options. This is not a security update.
https://www.adminer.org/en/

Joomla 5.3.3 resolves a couple bugs. This is not a security update.
https://www.joomla.org/

SpamAssassin 4.0.2 improves compatibility and resolves several bugs. This is not a security update.
https://spamassassin.apache.org/downloads.cgi

Duplicator 1.5.13.2 resolves a script bug. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers

Email Log 2.61 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/email-log/

Postie 1.9.72 resolves several bugs. This is a security update.
https://wordpress.org/extend/plugins/postie/

WordPress Importer 0.9.0 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/wordpress-importer/

WP Add Custom CSS 1.2.1 resolves a couple bugs and improves compatibility. This should be treated as a security update.
https://wordpress.org/extend/plugins/wp-add-custom-css/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2024-08-13

Posted on August 13, 2024 by Shawn K. Hall

Today is Patch Tuesday for August, 2024.

There were 436+ major hacks, and over 372 application updates this month.
It’s an enormous month, with about 4 GB of updates for most users.

This Month in Technology

1Password, 1Tx.io, 40 French Museums, 5G baseband, A-Line Staffing Solutions, a16z, Acadian Ambulance, Accelon Technologies Private, Acronis, Adreno, ADT, Advance Stores Company, Inc, Advantage Orthopedic & Sports Medicine, LLP, AirAsia Group, AirsoftC3, Al-Karam Textile Mills Pvt, Alabama Cardiovascular Group, Alabama Department Of Education, Allcare Medical Management, Alternate Energy, Amazon India, Amazon Web Services (AWS), AMD (SinkClose), American Golf Corporation, an “undisclosed ISP”, Angel One, AnimeLeague, Ankitects Anki, Anniversary Holding Company, Apache HugeGraph, Apache InLong, Apache OFBiz, Argentina Citizen Data, Arisa Health, Astra Daihatsu Motor, AT&T, Augusta Orthopedic, Aveanna Healthcare, LLC, Aviben, B&G Foods, Bandolier, BangBros, Barrett Eye Care, Bassett Furniture Industries, Bausch Health, Baxter International, Bayhealth, Bazaar, Berkshire Hathaway Home Services, Betances Health Center, BIND 9, BioMatrix Specialty Pharmacy, BlackCat, Bluewater Health, BMW Hong Kong, Bosque Animal Rescue Kennels, Brazil FGTS, Brevard Alzheimer’s Foundation, Brownell Travel, Inc, Bunkhouse Group, Business Insider, Cadre Holdings, Calibrated Healthcare, Cambridgeshire schools, Care Vision UK, Cartier, CCM Health, Celcom Axiata Berhad, Cencora, Central Bedfordshire Council, Central Contra Costa Transit Authority, Central Texas 911 service, Change Healthcare Inc, Chilean Government, Chrome, Cisco Small Business SPA 300 and SPA 500, Cisco Smart Install, Cisco Smart Manager software, City of Cold Lake, Alberta, City of Columbus, OH, City of Philadelphia, PA, City of Victorville, CA, Clay County, IN, ClickBalance, Co-op Banks, CoinStats, Columbus Regional Healthcare System, Community Care Alliance, Compex Legal Services Inc, Compound Finance, Condo.com, Congoleum, Convergence, Credible Group, Crescent Point Energy, Crimson Wine Group, Croatia’s Split Airport, CSC ServiceWorks, Cyepro Solutions, Dallas County, DaVita, Deep Sea Electronics DSE855, Dell & Dean PLLC, Delta County Memorial Hospital District (Delta Health), Designed Receivable Solutions, Deye, Digitalstress, Directional Aviation, Disney’s Slack, Docker Engine, Dorset Council, Dough Finance, Dr Bronner’s, Dubai Municipality, dYdX, East Valley Institute of Technology (evit), easySim.global, Econolite, Ecovacs home robots, Edward Flynn, LMHC, EgBill India, Embily Crypto, Embotits Espina, SLU, EMS Department for the Kansas City, Kansas Fire Department, Energo, Evening Post Publishing Inc, Everest, Evolution Mining, Evolve Bank & Trust, Exco Solutions, Exim, Explore Talent, FacilityBills, Fairfax Radiological Consultants, Family Dynamics Counseling Services, Inc, FCDG Management LLC, Federacion Española de Padel, Fidelity Investments Life Insurance Company, FilterBaby, LLC, Financial Business and Consumer Solutions, Inc, Firefox, First Choice Dental, Flexible, Florence Cement Company, Inc, Football Federations of Tenerife and Las Palmas, Fractal ID, Franklin County, Kansas, Fresnillo PLC, Freudenberg Medical, Fujitsu, Gateway Extrusions, GCA Global Cargo Alliance, Gemini, Gendron & Gendron, GeoServer GeoTools, Ghayar, GitLab Community and Enterprise, Glendale Unified School District, Golden Business Machines, Good Smile Company, Google Cloud Platform, Google Quick Share, Google Workspace, Gramercy Surgery Center, Granit Design, Graphic Solutions Group Inc, Greece’s Land Registry, Green Investment Management, Inc, Greenlight Biosciences, Grupo Jal, Guaranteed Supply Company, Guardian Analytics, Guhring, Hair Club for Men, Ltd, Inc, Hajj and Pilgrimage Organization of Iran, Harry Perkins Institute of Medical Research, Hayden Power Group, HealthCare.gov, Healthed, HealthEquity, Help PDF, Hit Promotional Products, Hokushinko Co, Ltd, Horizon View Medical Center, Hospital Auxilio Mutuo, Hotjar, Hyperice, Indian Ministry of Defence, Indonesian government, Infomedika, Ingo Money, Inc, Ingresse, InHouse Physicians, Injectable Therapy Services, Inc, Insula Group, Intelight X-1, iRacing, Iseto Corp, Island Transportation Corp, Israeli Intelligence, Israeli Security Ministry, ISTA International GmbH, Janna Pharmacy LLC, Jefferson County, KY, Jersey Financial Services Commission (JFSC), JG Summit, Jim Ellis Automotive Group, Joe’s Club, Kadokawa, Kaiser Foundation Hospitals, Karvo Companies, Inc, Kerman Unified, Keytronic, KinetX, KnowBe4, Kofile Technologies, Korean National Police Agency (KNPA), KuiperCompagnons, Kusum Group of Companies, La Salle University, Lago Group Spa, Lake Washington Institute of Technology, LangChain, Laurentian University, Law Office of Omar O Vargas PC, LCS and Partners, Lebanon Ministry of Health, Leicester City Council, Leidos, LI.FI, Life360, Linux Kernel (SLUBStick), LITE-ON, LivaNova USA, Inc, Liverpool Football Club, Loretto, Los Angeles Superior Court, Loumar, LS Networks, LuLu, Lvivteploenergo, L’Oréal, Macau government, Majestic Metals, Mallox, Manila Health Department, MarineMax, Maybank2u, McDowall Affleck, McLaren Health Care (again), MediSecure, Melchers Singapore, Meridian Internal Medicine, PA, Meta Prompt Guard, Microsoft (several times), Microsoft 365, Microsoft BITS, Microsoft Copilot, Microsoft Windows (Downgrade), Microsoft Windows Update, MIPS Technologies, Mississippi Blood Services, MNGI Digestive Health, Mobex, Mobile Guardian, Monte Nido, Moonly app, mSpy, Multiplayer.it, multiple VPN services, Mykukun/USBank, Nainital Bank, National Curry Awards, National Payments Corporation of India, National Public Data/Jerico Pictures, Neiman Marcus, Netflix, Netgear Orbi, Netgear WiFi 6 routers, NetOne, Netshoes, Neuro Rehab Associates, Inc, New Jersey City University, New Jersey Oral & Maxillofacial Surgery Associates, Nexera, Nexperia, Nidec Corporation, Nigerian Cloud Service, Nilorngruppen AB, Nokia, Norfolk and Norwich University Hospitals, North Texas Municipal Water District, Northeast Rehabilitation Hospital Network, Northern Ireland Department of Education, Northwest Arkansas Community College, NSA SkillTree, NVIDIA GPU, OakBend Medical, Odyssey Fitness Center, OfficeOps, Ohio School Boards Association, Olympus Financial, OneBlood, OpenAI, Oxfam Hong Kong, Pacific Oaks College, Palo Alto Networks Expedition Migration Tool, PAN, Patelco Credit Union, PDF Pro, Peco Foods, Peruvian Government, Peterson Holding Company, Philippine Department of Migrant Workers, Philips Vue PACS, PHL Variable Insurance Company in Rehabilitation, phpBB, Pick n Pay Group, Pinnacle Bank, Piramal Group, Playa Vista Job Opportunities and Business Services, PlayNow, Port of Tyne, Portuguese Government, Preferred IT Group, PRI, Principal Life Insurance, Proofpoint, Pueblo County School District 70, Pure Storage, Q-Cells, RADIUS, Recology Inc, Recruit Co, Red Art Games, Rencontre-Ados, REPLIGEN, Resolian, Rhode Island Wyatt Detention Facility, RISC-V CPU (GhostWrite), Rite Aid, RiverSoft, Roberts HVAC, Rockwell Automation Logix Controllers, Romanian Government, Ronglian Group, Ronin Network, Roseland Community Hospital Association, Sable International, Samsung Galaxy Secure Vault, SAP AI Core, Saudi FarmGo App, Schlatter Group, Sede Electrónica de la DGT, ServiceNow, SFR, SH Pension, Shadow, Shoe Zone, Shorenstein Realty Services, Sibanye-Stillwater, Singapore Moneylenders Credit Bureau (MLCB), Solarman, SolarWinds Access Rights Manager, Sonic Automotive, South Korean Military, South Suburban College, South Western Communications, Inc, SouthCoast Medical Group, Special Health Resources of Texas, Inc, Splunk, Spytech, Student Transportation of America, Sumter County Sheriff, Sun City Pediatrics, PA, Superior Court of Justice of Mexico City, Surgery Center of Mid Florida, Sutton Dental Arts, SUUMO, Synnovis, Taiyo Kogyo Co, Ltd, TC Capital Asia Limited, Telerik Report Server, TelPro, Texas Alcohol & Drug Testing Service, Texas Electric Cooperatives, The 21st Century Energy Group, The Coffee Bean & Tea Leaf, The Computer Merchant, The Heritage Foundation, The Lutheran Foundation, Therapeutic Health Services, Thompson Creek, Thousands of Ubiquiti cameras and routers, TopNet, Topserve Service Solutions, TPCI, Trello, Tri-Star Display, Trib Total Media, Tribunal Superior de Justicia CDMX, True Blue Environmental, Trump Campaign, TV SAT 364, U Mobile, UAB School of Nursing, uBook, UEFI SecureBoot (PKfail), UK Home Office, United of Omaha Life Insurance Company, United Seating and Mobility LLC, Universitas Indonesia, University of Michigan/Michigan Medicine, US Voter Data, Valisana, Venezuelan Military, Veren Inc, Victoria’s Royal Brighton Yacht Club, Vivamax, Walmart, WazirX, WebTPA Employer Services, LLC, Western Sydney University, Western Wyoming Beverages, WhatsApp, Williams Construction, Windows Smart App Control and SmartScreen, Wise US Inc, Woodstock Hospital, WordPress Modern Events Calendar plugin, WordPress Time Capsule plugin, ZB Financial Holdings, Zeroed-In Technologies, Zoppo, and Zotac have reported hacking or compromises this month.

CrowdStrike published a buggy definition file to Windows-based devices, causing literally tens of millions of devices from Microsoft Azure, Airlines, Hospitals, Media, Banks and much more. The damage from this “update” can not be overstated: they released an untested, defective, definition to all devices within a 87 minute window and the “fix” to restore access on modern hardware requires a complex process involving decrypting the drive and removing the defective definition file from a system folder. This is already being called the largest IT outage in history. Locally, it even hit Chicken Ranch Casino.

Delta Air Lines, Google Ads, iCloud Private Relay, iRacing, Microsoft Azure, Microsoft 365, and Microsoft 365 Admin Center have suffered from outages this month.

Last months updates broke signed WDAC policies, Office Click-to-Run updates, tens of millions of computers (CrowdStrike), Google Password Manager, Bitlocker-encrypted devices, Remote Desktop, Microsoft Connected Cache, Microsoft Photos app, Microsoft 365 Defender, and Windows Update.

Stop using Zelle. The fraud risk is too high, and banks don’t care if you’re defrauded. Robots are not your friends. The US Postal Service has been sharing your private information with Meta, LinkedIn and Snap. Microsoft – the organization primarily behind mandating DMARC – is sending Data Breach Notifications that fail their own DMARC rules.

DigiCert is still breaking trust with the world by allowing malicious certificates to be preserved, in the name of ensuring maximum availability…for maliciously created certificates?

Hackers are much faster at exploiting vulnerabilities than vendors are in discovering and patching them. The US federal agency tasked with tracking known vulnerabilities (NIST) is seeing a growing backlog which could exceed 30,000 records in only a few short months.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is enormous this month. The typical computer should see roughly 4 GB in updates today. Let’s get started.

Microsoft released 56 updates to address 102 vulnerabilities in .NET and Visual Studio, Azure Connected Machine Agent, Azure CycleCloud, Azure Health Bot, Azure IoT SDK, Azure Stack, Line Printer Daemon Service (LPD), Microsoft Bluetooth Driver, Microsoft Copilot Studio, Microsoft Dynamics, Microsoft Edge, Microsoft Local Security Authority Server (lsasrv), Microsoft Office, Microsoft Office Excel, Microsoft Office Outlook, Microsoft Office PowerPoint, Microsoft Office Project, Microsoft Office Visio, Microsoft Streaming Service, Microsoft Teams, Microsoft WDAC OLE DB provider for SQL, Microsoft Windows DNS, Reliable Multicast Transport Driver (RMCAST), Windows Ancillary Function Driver for WinSock, Windows App Installer, Windows Clipboard Virtual Channel Extension, Windows Cloud Files Mini Filter Driver, Windows Common Log File System Driver, Windows Compressed Folder, Windows Deployment Services, Windows DWM Core Library, Windows Initial Machine Configuration, Windows IP Routing Management Snapin, Windows Kerberos, Windows Kernel, Windows Kernel-Mode Drivers, Windows Layer-2 Bridge Network Driver, Windows Mark of the Web (MOTW), Windows Mobile Broadband, Windows Network Address Translation (NAT), Windows Network Virtualization, Windows NT OS Kernel, Windows NTFS, Windows Power Dependency Coordinator, Windows Print Spooler Components, Windows Resource Manager, Windows Routing and Remote Access Service (RRAS), Windows Scripting, Windows Secure Boot, Windows Secure Kernel Mode, Windows Security Center, Windows SmartScreen, Windows TCP/IP, Windows Transport Security Layer (TLS), Windows Update Stack, Windows WLAN Auto Config Service, and MSRT. This includes security updates. A reboot is required.

Apple released updates for macOS Sonoma 14.6.1, macOS Ventura 13.6.9, macOS Monterey 12.7.6, iOS 17.6.1, iOS 16.7.10, iPadOS 17.6.1, iPadOS 16.7.10, tvOS 17.6, watchOS 10.6, visionOS 1.3, and Safari 17.6. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 17.6.1 and 16.7.10 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 17.6.1 and 16.7.10 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 10.6 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 17.6 is a security update. Use System, Software Update to install the most current version.

visionOS 1.3 is a security update. Use Settings, General, Software Update to install the most current version.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

The release of macOS Sonoma (14.x) means that macOS Big Sur (11.x) and older are no longer supported. If you can not install at least macOS Monterey (12) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 11 (v23H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 24.7.1 resolves several bugs and incompatibility issues, improves performance and introduces AntiLag 2. This is not a security update.
https://www.amd.com/en/support

BullZip PDF Printer 14.5.0.2974 is a security update.
https://www.bullzip.com/products/pdf/info.php#download

Nearly every Epson ET Series (EcoTank) and WF Series (WorkForce) printer has received an update to their firmware in the last week, with no details on what is included. Instead of listing them all here, assume it applies to your device, too. This should be treated as a security update. Use the Epson Software Updater to install the current firmware on your Epson ET printer.
https://epson.com/Support/Printers/

goxlr-utility 1.1.2 resolves several bugs and improves stability and reliability. This is not a security update.
https://github.com/GoXLR-on-Linux/goxlr-utility/

GSLite 20240711 is a security update.
https://www.bullzip.com/products/pdf/download.php

MTPdrive 4.4.166 resolves a couple bugs. This is not a security update.
https://www.mtpdrive.com/

UniFi Network Server 8.3.32 adds support for customer NAT rules, feature and control improvements and resolves several bugs. This is not a security update.
https://www.ui.com/download/releases/network-server

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.68.137 is a security update.
https://brave.com/

Google Chrome 127.0.6533.99 is a security update.
https://www.google.com/chrome/

Microsoft Edge 127.0.2651.98 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 129.0.1 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Vivaldi 6.8.3381.53 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

ProtonMail (Android) 4.0.17 resolves several bugs. This is not a security update.
https://proton.me/mail/download

Spark 3.17.0.82433 introduces Meet with and resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.17.0.82432 introduces Meet with and resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 128.1.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 8.0.13 fixes a crash bug and improves licensing behavior. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 8.1.1 resolves several bugs and adds heirarchical tag support. This is not a security update.
https://anydesk.com/en/downloads

curl 8.9.1 resolves several bugs and improves input sanitization. This should be treated as a security update.
https://curl.haxx.se/windows/

DNSDataView 1.75 adds support for loading domains from a file. This is not a security update.
https://www.nirsoft.net/utils/dns_records_viewer.html

Dropbox 205.4.5765 doesn’t provide a change log so should be treated as a security update.
https://www.dropbox.com/

Facebook Messenger 215.3.0.13.211 is a security update.
https://www.messenger.com/desktop

FileZilla Client 3.67.1 resolves a confirmation dialog bug and updates library. This is not a security update.
https://filezilla-project.org/

Google Drive 95.0 doesn’t provide a detailed change log so should be treated as a security update.
https://drive.google.com/start

MeshCentral 1.1.27 resolves several bugs. This is not a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.7.00.19353 implements new virtualization behavior. This should be treated as a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 29.0.4 resolves dozens of bugs and updates dependencies. This is a security update.
https://nextcloud.com/

Omada Software Controller 5.14.26.1 resolves several bugs and implements new configuration and statistical options. This is not a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Pocketnet-Core 0.22.5 implements several network changes for privacy and security. This is a security update.
https://pocketnet.app/

Pocketnet-GUI 0.8.93 resolves several bugs. This is not a security update.
https://pocketnet.app/

Signal (Android) 7.13.3 adds landscape support. This is not a security update.
https://signal.org/android/apk/

Signal 7.19.1 resolves several bugs. This is not a security update.
https://signal.org/download/windows/

Syncthing 1.27.10 resolves a couple bugs. This is not a security update.
https://syncthing.net/

Telegram 5.3.2 resolves a crash bug. This is not a security update.
https://telegram.org/

Trillian 6.5.0.42 resolves almost a dozen bugs and updates emoji. This is not a security update.
https://www.trillian.im/

Zoom 6.1.6.43767 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

Grayjay 253 resolves several bugs. This is not a security update.
https://grayjay.app/index.html

3tene 4.0.8 resolves a couple cosmetic bugs. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.2.1 adds new compression options, EQ improvements and improves keyboard shortcuts, in addition to dozens of resolved bugs. This is not a security update.
https://www.bitwig.com/download/

darktable 4.8.1 resolves several bugs. This is not a security update.
https://www.darktable.org/

Plex Desktop 1.99.0.210 resolves sevveral bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.65.4.206 updates libraries. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.40.4.8679 improves TVDB support and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Lego Studio 5.6 resolves a stability bug. This is not a security update.
https://www.lego.com/en-us/ldd

Minecraft Server (Bedrock) 1.21.20.03 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Minecraft Server (Java) 1.21.1 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server

PS5 2024.723 adds option to share links to public games and resolves several bugs. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2024.07.17 resolves a couple bugs. This is not a security update.
https://store.steampowered.com/news/app/593110

SteamOS SteamDeck Update 2024.08.09 improves update engine and resolves over 20 bugs. This is not a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Acrobat Reader 24.002.21005 and 24.001.30159 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb24-57.html

Adobe Bridge 13.0.9 and 14.1.2 are security updates.
https://helpx.adobe.com/security/products/bridge/apsb24-59.html

Adobe Commerce 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, and 2.4.4-p10 are security updates.
https://helpx.adobe.com/security/products/magento/apsb24-61.html

Magento Open Source 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, and 2.4.4-p10 are security updates.
https://helpx.adobe.com/security/products/magento/apsb24-61.html

Adobe Dimension 4.0.2 is a security update.
https://helpx.adobe.com/security/products/dimension/apsb24-47.html

Adobe Illustrator 28.6 and 27.9.5 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb24-45.html

Adobe InCopy 19.5 and 18.5.3 are security updates.
https://helpx.adobe.com/security/products/incopy/apsb24-64.html

Adobe InDesign ID19.5 and ID18.5.3 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb24-56.html

Adobe Photoshop 24.7.4 and 25.11 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb24-49.html

Adobe Substance 3D Designer 14.0 is a security update.
https://helpx.adobe.com/security/products/substance3d_designer/apsb24-67.html

Adobe Substance 3D Sampler 4.5.1 is a security update.
https://helpx.adobe.com/security/products/substance3d-sampler/apsb24-65.html

Adobe Substance 3D Stager 3.0.3 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb24-60.html

Audacity 3.6.1 adds new themes, FFmpeg 7 support, new compressor, limiter, master effects, improved performance and resolves several bugs. This is not a security update.
https://www.audacityteam.org/download/

Calibre 7.16.0 is a security update.
https://calibre-ebook.com/

Kindle for PC 2.4.70946 doesn’t provide a change log so should be treated as a security update.
https://www.amazon.com/kindleforpc

LibreOffice Fresh 24.2.5 resolves over 80 bugs. This is a security update.
https://www.libreoffice.org/

Manager 24.8.11.1812 adds ability to send emails via HTTP and changes Freight-in behavior. This is not a security update.
https://www.manager.io/

Nextcloud Desktop 3.12.7 resolves several bugs. This should be treated as a security update.
https://nextcloud.com/

Notepad++ 8.6.9 improves installer and resolves over 25 bugs. This not a security update.
https://notepad-plus-plus.org/

PDF Candy Desktop 3.09 doesn’t provide a change log so should be treated as a security update.
https://pdfcandy.com/

QuickBooks Pro 2022 20240529-R16_30 doesn’t provide a change log so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

QuickBooks Pro 2023 20240529-R13_30 doesn’t provide a change log so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

Security Software Updates

One or more of these is likely to be of interest to most people.

.NET Runtime 8.0.8 is a security update.
https://dotnet.microsoft.com/en-us/download/dotnet

Chainsaw 2.9.2 improves amcache hive processing. This should be treated as a security update.
https://github.com/countercept/chainsaw

FSS 2024.8.12 doesn’t provide a detailed change log so should be treated as a security update.
https://www.bleepingcomputer.com/download/farbar-service-scanner/dl/62/

Java 8u421 is a security update.
https://www.java.com/en/download/manual.jsp

JShelter 0.19 weakens security implementation in order to comply with Manifest v3. This is not a security update.
https://jshelter.org/install/

Microsoft Edge Policy 2024.08.07 adds several new policies and obsoletes two. This is not a security update.
https://github.com/MicrosoftDocs/Edge-Enterprise/blob/public/edgeenterprise/microsoft-edge-policies.md

QubesOS 4.2.2 is a security update.
https://www.qubes-os.org/downloads/

RogueKiller 15.18.0 updates engine and theme platform, resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

SmartSniff 2.30 adds support for the SAPICS geo data. This is not a security update.
https://www.nirsoft.net/utils/smsniff.html

Stinger 13.0.0.155 adds new detections. This should be treated as a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

Tails 6.6 adds support for Dangerzone, updates libraries and resolves several bugs. This is a security update.
https://tails.net/install/download/index.en.html

uBlock Origin 1.59.0 resolves several bugs and improves perforamnce and reliability. This may be the last version to support Chromium-based browsers due to the Manifest v3 changes that limit much of the very capabilities that uBlock Origin requires. Time for Firefox.
https://github.com/gorhill/uBlock/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 30.2.2 resolves several bugs. This is not a security update.
https://obsproject.com/

SnagIt 24.2.1 improves video recorder, performance, automated installation and resolves several bugs. This is not a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.2.4 resolves several bugs and adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

Exact Audio Copy 1.8 resolves a metadata parsing problem. This is not a security update.
https://www.exactaudiocopy.de/en/

HandBrake 1.8.2 updates libraries and resolves several bugs. This is not a security update.
https://handbrake.fr/

StreamFab 6.1.9.3 improves compatibility and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 2.0.3.0 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

e-Sword 14.1 improves mobile integration and adds ability to convert Topic Notes to a Reference Book and export notes. This is not a security update.
https://www.e-sword.net/

Zotero 7.0 is a major update and adds several new features, performance improvements, cosmetic improvements and resolves dozens of bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.39 resolves a dozen bugs and disables the option to reset settings. This is a security update.
https://1password.com/downloads/

7-Zip 24.08 resolves several bugs. This is not a security update.
https://www.7-zip.org/

Beyond Compare 5.0.1.29877 resolves over a dozen bugs. This is not a security updte.
https://www.scootersoftware.com/download

Bitwarden 2024.7.3 improves secrets manager and provider portal controls, and adds vault item keys for each item. This is a security update.
https://bitwarden.com/

CCleaner 6.26.11169 resolves several bugs. This is not a security update.
https://www.ccleaner.com/

Dell OS Recovery Tool 2.4.0.7813 doesn’t provide a change log so should be treated as a security update.
https://www.dell.com/support/home/uk/en/ukbsdt1/drivers/osiso/recoverytool

DesktopOK 11.32.1 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

DMDE 4.2.0.814 adds Btrfs and large cluster NTFS support, increases file limits, and resolves several bugs. This is not a security update.
https://dmde.com/

dnGrep 4.2.46.0 resolves several bugs, improves display behavior, and updates libraries. This is a security update.
https://dngrep.github.io/

DriverView 1.51 adds support for Windows 11 24H2. This is not a security update.
https://www.nirsoft.net/utils/driverview.html

Eraser 6.2.0.2994 doesn’t provide a change log so should be treated as a security update.
https://eraser.heidi.ie/download/

Everything 1.4.1.1026 updates localization. This is not a security update.
https://www.voidtools.com/

Fing 3.7.0 resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

Free Virtual Serial Ports 6.03.00.1321 resolves several bugs. This is not a security update.
https://freevirtualserialports.com/

Git SCM 2.46.0 resolves dozens of bugs. This should be treated as a security update.
https://git-scm.com/

grepWin 2.1.5 resolves several bugs. This is not a security update.
https://github.com/stefankueng/grepWin/releases/latest

Homedale 2.12 improves cosmetics. This is not a security update.
https://www.the-sz.com/products/homedale/

HWiNFO 8.06 resolves several bugs and updates hardware support. This is not a security update.
https://www.hwinfo.com/download/

HWMonitor 1.54 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

Inkchip WIC 1.18 doesn’t provide a change log so should be treated as a security update.
https://inkchip.net/wic/

IsMyHdOK 3.99 resolves a couple bugs and improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

LessMSI 2.1.1 improves extraction behavior. This is not a security update.
https://lessmsi.activescott.com/

LiveTcpUdpWatch 1.55 adds custom context menu, new columns and resolves a clipboard bug. This is not a security update.
https://www.nirsoft.net/utils/live_tcp_udp_watch.html

MobileFileSearch 1.49 adds option to export all items. This is not a security update.
https://www.nirsoft.net/utils/mobile_device_file_search.html

NetworkOpenedFiles 1.63 adds number of open files to the tray tooltip. This is not a security update.
https://www.nirsoft.net/utils/network_opened_files.html

NTLite 2024.7.10001 resolves two crash bugs. This is not a security update.
https://www.ntlite.com/download/

PointerStick 6.41 updates language support and compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.83.0 resolves dozens of bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Process Monitor 4.01 adds process start timestamp and improves cosmetics. This is not a security update.
https://learn.microsoft.com/en-us/sysinternals/downloads/procmon

QuickSetDNS 1.36 adds an indicator in the tray tooltip for the current DNS service. This is not a security update.
https://www.nirsoft.net/utils/quick_set_dns.html

RoboForm 9.6.2 resolves several bugs. This is not a security update.
https://www.roboform.com/

ScreenConnect 24.2.8.8987 resolves several bugs, including those that broke instances and prevented interacting with older devices. This is not a security update.
https://screenconnect.connectwise.com/download

Sysmon 15.15 resolves a stability bug. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

TraceRouteOK 3.44 updates language support and compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK

WinGet 1.8.1911 improves compatibility. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinScan2PDF 8.91 updates language support and compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 4.20 improves performance and resolves several bugs. This is not a security update.
https://www.diskanalyzer.com/

Developer Updates

These are unlikely to be of interest to most people.

ADB 35.0.2 resolves several bugs. This is not a security update.
https://developer.android.com/studio/releases/platform-tools

Android Studio 2024.1.1.13 improves compatibility. This is not a security update.
https://developer.android.com/studio

cx_Freeze 7.2 resolves dozens of bugs and updates libraries. This is not a security update.
https://cx-freeze.readthedocs.io/en/latest/index.html

DB Browser for SQLite 3.13.0 adds new features including tab support, updates libraries, and resolves several bugs. This is a security update.
https://sqlitebrowser.org/

GameMaker Studio 2024.06.2.162 resolves a crash bug. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.4.208 resolves several bugs. This is not a security update.
https://gdevelop.io/download

GitHub Desktop 3.4.3 resolves several bugs. This is not a security update.
https://desktop.github.com/

Go 1.23.0 introduces telemetry, improves env, tidy, and list commands, as well as modifying behavior for several modules and libraries. This is not a security update.
https://go.dev/

Inno Setup 6.3.3 improves support for ASLR. This should be treated as a security update.
https://www.jrsoftware.org/isdl.php

Node.js 20.16.0 updates libraries and resolves dozens of bugs. This should be treated as a security update.
https://nodejs.org/en/

Node.js 22.6.0 updates libraries and resolves dozens of bugs. This should be treated as a security update.
https://nodejs.org/en/

Python 3.12.5 resolves dozens of bugs. This is a security update.
https://www.python.org/downloads/windows/

SQLite 3.46.1 improves tokenization, query planner, error reporting and resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.92.1 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.42.1 resolves several bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.0.20 improves compatibility and resolves several bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Invision Community 4.7.18 resolves dozens of bugs. This is not a security update.
https://invisioncommunity.com/

Piwigo 14.5.0 resolves several bugs. This is not a security update.
https://piwigo.org/

WordPress 6.6.1 resolves dozens of bugs and adds many new features and cosmetic controls. This is not a security update.
https://wordpress.org/

Autoptimize 3.1.12 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/autoptimize/

BuddyPress 14.0.0 resolves dozens of bugs. This is not a security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 5.9.8 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.10.2 improves compatibility. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers

Multisite Enhancements 1.7.1 improves stability. This is not a security update.
https://wordpress.org/extend/plugins/multisite-enhancements/

Redirection 5.5.0 adds support for multiple URL and WP page type redirects. This is not a security update.
https://wordpress.org/extend/plugins/redirection/

My Sticky Bar 2.7.5 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

Sucuri Security 1.9.2 improves cosmetics. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

WPBakery 7.8 resolves several bugs. This is a security update.
https://wpbakery.com/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2023-09-12

Posted on September 12, 2023 by Shawn K. Hall

Welcome back, Folks!

Today is Patch Tuesday for September, 2023.

This month has been insane. There were 223 major hacks, and over 170 application updates this month. Each browser and several other apps released at least weekly security updates. It’s a very big month, with about 5 GB of updates for most users.

This Month in Technology

16shop, A-Family Dental Care Center PC, Absolute Dental Services, Adobe Acrobat & Reader, Alberta Dental Services Corporation, Allison Transmission Inc., AMD CPUs, AmeriBen, American National Group, LLC, Android TV, Anonfiles, Apache’s RocketMQ, Asian national electricity grid, The Associated Press Stylebook, Associates in Pediatric Dentistry, ASUS routers, Atlas VPN, Atmeltomo, a major auction house, Avada WordPress Theme and Plugin, Ayush Jharkhand, AzeroCloud, Baesman Group, Inc., Balancer, Barracuda Email Security Gateway (ESG), Beverly Hills Plastic Surgery, Binance, Bloom Health Centers, Blue Cross Blue Shield of Arizona, Byju’s, CareSource, CentroMed, CERT Poland, Chicago IVF, Church of England Debenham High School, Church of England St. Augustine Academy, Cisco Adaptive Security Appliance (ASA), Cisco BroadWorks, Cisco Firepower Threat Defense (FTD), Cisco VPN, Citrix NetScaler, Citrix ShareFile, Cleveland City Schools, Clorox, CloudNordic, Coastal Orthopedics, Cobra DocGuard, CODESYS V3, Coffee Meets Bagel, Coinbase, Colorado Department of Health Care Policy & Financing, CraftRise, Cummins Behavioral Health Systems, CyberPower PowerPanel, Cypher, Data Media Associates, Dataprobe iBoot, Dell Compellent, Detroit Central City Community Mental Health, Discord, Discord.io, DuoLingo, Dymocks Booksellers, El Salvadoran government, a south African electrical utility, EMS Management and Consultants Inc, Energy One Limited, Enzo Clinical Labs, Inc., Exactly Protocol, Florida Healthy Kids, Ford SYNC3, Forever 21, France’s Pôle emploi, Free Download Manager, Freecycle, Geico, Gemini North Observatory, GitLab, Google Chrome, Google Looker Studio, Harbor Protocol, Harris Center for Mental Health and Intellectual and Developmental Disabilities, Health Care Service Corporation, Health Employers Association of BC, Highgate Wood School, Illinois Department of Public Health, iMenu360, Indiana University Health, Intel CPUs, iPhone iMessage, Israel’s Mayanei Hayeshua hospital, iTrust Wellness Group, Ivacy VPN, Ivanti Avalanche, Ivanti MobileIron, Ivanti Sentry, IXPERTA, Japan’s Cybersecurity Agency (NISC), Jefferson Health, Jobzone, Johnson & Johnson Health Care Systems, Juniper EX switches, Juniper SRX firewalls, Jupiter X Core, Just Kids Dental, Kroll (that’s appropriate), Leaseweb, Libbitcoin, Lifeline Health Systems, Lincoln SYNC3, LinkedIn, LogicMonitor, Lolek Bulletproof Hosting, MacOS, Madera County, Magellan Rx Management, Maiden Erlegh Trust, Manipulated Caiman, Maximus Health Services Inc, McAlester Regional Health Center, Mend.io, MGM Resorts International, Microsoft 365 corporate accounts, Microsoft Azure Active Directory, Microsoft’s PowerShell Gallery, Milan Eye Center, MinIO, Missouri Department of Social Services, Morris Hospital & Healthcare Centers, Mountain View Family Practice, PC, Nice Pak Products Inc., Norfolk and Suffolk police, Nova Scotia government, NPO Mashinostroyeniya, NVIDIA D3D10 Driver, NXP, O’Neil Digital Solutions, LLC, OAS Engine, Openfire, Orrick, Herrington & Sutcliffe, Pampling, Paramount Global, PCC Pediatric EHR Solutions, Performance Health Technology, PHPFusion, Pizza Hut Australia, PlayCyberGames, Poland’s PKP railway, Police Service of Northern Ireland (PSNI) — twice, Prime Therapeutics, Prince George’s County Public Schools, Prospect Medical Group, Prospect Medical Holdings, PurFoods/Mom’s Meals, QakBot, Radius Global Solutions, Ranhill Utilities Berhad, Rapattoni, Resort Data Processing, Respublikinė Vilniaus Psichiatrijos Ligoninė, Rightbiz, Rite Aid, Roberto Polizzi, RocketSwap, Sabre, Schneck Medical Center, See Tickets, Seiko, Serco, Inc., SevenRooms, Seville, Spain, Singing River Health System, Sourcegraph, South African National Defence Force, SouthCoast Medical Group, LLC, Sovos Compliance LLC, Spring WebFlux, Sri Lankan Government, St. Paul Public Schools, Stake.com, Starmount Life Insurance Co, SUNY at Buffalo School of Dental Medicine, SysInformation Healthcare Services, LLC, Terra, Tesla, Three Crowns Park, Tift Regional Medical Center, TitleMax, Topgolf Callaway, TP-Link Tapo, TRACT Radiology, TTEC Healthcare Solutions, a UK internet backbone infrastructure provider, UK Metropolitan Police, UK Ministry of Defence, Ukrainian Military, United Bankshares, Inc., United Healthcare Services, Inc., UnitedHealthcare, University of Massachusetts Chan Medical School, University of Michigan, University of Sydney, University of Utah, UofL Health, US Department of Defense (DoD), US Drug Enforcement Administration (DEA), US energy company, US Government email servers, Vecino Health Centers, Venus Protocol, Virginia Dept. of Medical Assistance Services, Viva Air, VMware’s Aria Operations for Networks, VNS Health Plans, WebDetetive, WinRAR, Zaun, Zengo, Zimbra Collaboration Suite, Zoom ZTP, and Zunami have reportedly been hacked or compromised this month.

Coffee Meets Bagel, German Federal Financial Supervisory Authority (BaFin), Hotmail, Midwest Hospital Group, Rogers, Square, and Toyota have suffered from outages this month.

Last months updates broke Microsoft Exchange, MSI BIOS compatibility, Windows drive partitions, Windows EFI boot loader, Windows Group Policy, Windows LAPS, Windows Search, Windows Time service, and Windows Update for Business.

The new Microsoft Edge for Business release was such a disaster that enterprise customers are moving to Chrome and Firefox.

Facebook Messenger has become a major target of phishing. Again. So is Microsoft Teams.

The fallout from the LastPass hack last year is still coming to light, including repeated hijacks of large cryptocurrency accounts. At the time we were assured that since the data was “strongly encrypted” that there was no chance of accounts being exposed. It seems that faith was misplaced.

Microsoft will finally be eliminating WordPad. This isn’t really that surprising since all supported versions of Windows are now born with MS Office already installed.
What is less surprising is that they’re also killing off Visual Studio for Mac and disabling support for older TLS versions in the next few months, which is likely to prevent many network and automation apps from working.

Another ransomware key decryptor is now available.

The Taliban is working with Huawei to install facial detection cameras. Experian Consumer Services has been caught spamming, to the tune of $650k. The Federal Trade Commission has publicly named 130 healthcare firms sharing user information with third parties through web trackers.

Google has added a new feature in Chrome, “Privacy Sandbox,” to use your browsing history to show ads. Turn it all off.

Now for the good news:

There may finally be a good reason to use Microsoft Paint. It will soon have the ability to remove photo backgrounds. And — this is hard for me to believe — Apple, yes that Apple, is supporting the California State “Right to Repair” bill.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is huge this month. The typical computer should see roughly 5 GB in updates today. Let’s get started.

Microsoft released updates to address 73 vulnerabilities in .NET, .NET Core, .NET Framework, 3D Builder, 3D Viewer, AMD CPU Branch, Azure DevOps, Azure HDInsights, Microsoft Azure Kubernetes Service, Microsoft Dynamics, Microsoft Dynamics Finance & Operations, Microsoft Edge, Microsoft Exchange Server, Microsoft Identity Linux Broker, Microsoft Office, Microsoft Office Excel, Microsoft Office Outlook, Microsoft Office SharePoint, Microsoft Office Word, Microsoft PostScript Printer Driver, Microsoft Streaming Service, Microsoft Windows Codecs Library, Servicing Stack Update, Visual Studio, Visual Studio Code, Windows Cloud Files Mini Filter Driver, Windows Common Log File System Driver, Windows Defender, Windows DHCP Server, Windows GDI, Windows Internet Connection Sharing (ICS), Windows Kernel, Windows Photo Import API, Windows Scripting, Windows TCP/IP, Windows Themes, and MSRT (~1.5 GB). This includes security updates. A reboot is required.

Apple released updates for macOS Ventura 13.5.2, macOS Monterey 12.6.9, macOS Big Sur 11.7.10, iOS 16.6.1 and 15.7.9, iPadOS 16.6.1 and 15.7.9, watchOS 9.6.2, and tvOS 16.6. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 16.6.1 and 15.7.9 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 16.6.1 and 15.7.9 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 9.6.2 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 16.6 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 115.0.5790.182 and 108.0.5359.242 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

The release of macOS Ventura (13.x) means that macOS Catalina (10.15) and older are no longer supported. If you can not install at least macOS Big Sur (11) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 11 (v22H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 23.9.1 resolves a stability bug. This is not a security update.
https://www.amd.com/en/support

BullZip PDF Printer 14.4.0.2963 updates translations. This is not a security update.
https://www.bullzip.com/products/pdf/info.php#download

Crucial Storage Executive 9.07 doesn’t provide a changelog so should be treated as a security update.
https://www.crucial.com/support/storage-executive

Display Driver Uninstaller 18.0.6.7 improves cleanup and resolves a couple bugs. This is a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

DS4Windows 3.2.14 adds several new controls and translations. This is not a security update.
https://github.com/Ryochan7/DS4Windows/releases/latest

Garmin Express 7.18.3 doesn’t provide a changelog so should be treated as a security update.
https://www.garmin.com/en-US/software/express/

GSLite 20230809 is a security update.
https://www.bullzip.com/products/pdf/download.php

TP-Link Archer A6 v3 230828 is a security update.
https://www.tp-link.com/us/support/download/archer-a6/v3/#Firmware

TP-Link Archer AX21 v1.20 230829 is a security update.
https://www.tp-link.com/us/support/download/archer-ax21/v1.20/#Firmware

Wacom Driver 6.4.3-1 adds support for newer hardware and resolves a couple bugs. This is not a security update.
https://www.wacom.com/en-us/support/product-support/drivers

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.57.62 is a security update.
https://brave.com/

Firefox 117.0.1 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 115.2.1 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 116.0.5845.187 is a security update.
https://www.google.com/chrome/

Iridium 2023.09.116 is a security update.
https://iridiumbrowser.de/

Microsoft Edge 116.0.1938.81 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Vivaldi 6.2.3105.48 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

NK2Edit 3.46 adds the icon to dialogs and resolves an empty field bug. This is not a security update.
https://www.nirsoft.net/utils/outlook_nk2_edit.html

ProtonMail (Android) 3.0.16 doesn’t provide a detailed changelog so should be treated as a security update.
https://proton.me/mail/download

Spark 3.8.3 resolves several bugs. This should be treated as a security update.
https://sparkmailapp.com/

Thunderbird 115.2.1 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 7.1.16 improves localization. This is not a security update.
https://anydesk.com/en/downloads

BrowsingHistoryView 2.56 improves cosmetics. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

Dropbox 182.4.6427 resolves several bugs. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 195.0.0.4.225 is a security update.
https://www.messenger.com/download

FileZilla Server 1.7.3 is a security update.
https://filezilla-project.org/

FreeFileSync 13.0 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 80.0 improves performance, installation size and resolves several bugs. This is not a security update. Note that Windows 8, Windows Server 2012, and 32-bit Windows of all flavors are no longer supported — you can still access your files through Firefox on these devices.
https://drive.google.com/start

Grocy 4.0.3 improves performance and resolves several bugs. This is not a security update.
https://grocy.info/

Grocy Desktop 2.7.0 improves compatibility. This is not a security update.
https://github.com/grocy/grocy-desktop

IPInfoOffline 1.70 adds support for sapics IP-Location. This is not a security update.
https://www.nirsoft.net/utils/ip_country_info_offline.html

jq 1.7 is the first update in 5 years and doesn’t disappoint. This build adds several new functions, logical structures, stability, output formats, and resolves dozens of bugs. This is not a security update.
https://jqlang.github.io/jq/

Microsoft Teams 1.6.00.22378 doesn’t provide a changelog so should be treated as a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 27.0.2 updates dependencies and resolves dozens of bugs. This is not a security update.
https://nextcloud.com/

PuTTY 0.79 resolves a dozen bugs. This is a security update.
https://www.chiark.greenend.org.uk/~sgtatham/putty/latest.html

Rclone 1.64.0 adds new backends, multithreaded transfers, and resolves dozens of bugs. This is not a security update.
https://rclone.org/

Signal 6.30.1 resolves several bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 6.31.2 improves performance. This is not a security update.
https://signal.org/android/apk/

Skype 8.102.0.211 expands AI integration and resolves several bugs. This is not a security update.
https://www.skype.com/

Syncthing 1.24.0 resolves several bugs. This is not a security update.
https://syncthing.net/

Technitium DNS Server 11.4.1 resolves several bugs. This is not a security update.
https://technitium.com/dns/

Telegram 4.9.5 ads several new bot web-app features and resolves several bugs. This is not a security update.
https://telegram.org/

Telegram (Android) 10.0.1 doesn’t provide a changelog so should be treated as a security update.
https://telegram.org/apps

Trillian 6.5.0.31 resolves several bugs. This is not a security update.
https://www.trillian.im/

Wget2 2.1.0 adds support for sitemaps, certificate validation, improves recursion, and resolves a dozen bugs. This is a security update.
https://gitlab.com/gnuwget/wget2/-/releases

Zoom 5.15.12.21574 adds several new features (and the ability to disable!) to their integrated AI Companion offering. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 3.0.12 resolves several bugs. This is not a security update.
https://en.3tene.com/

Picard 2.9.2 resolves a dozen bugs and improves update detection behavior. This is not a security update.
https://picard.musicbrainz.org/

Plex Desktop 1.78.2.3975 resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.47.1.3971 resolves a couple networking bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Game Updates

These are unlikely to be of interest to most people.

GameMaker Studio 2023.8.0.98 updates libraries and runtimes, improves debugging capabilities, and resolves dozens of bugs. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.2.172 resolves several bugs. This is not a security update.
https://gdevelop.io/download

Lego Studio 2.23.8.1 resolves several bugs and adds new palette controls, tagging and GUI elements. This is not a security update.
https://www.lego.com/en-us/ldd

Minecraft Server (Bedrock) 1.20.15.01 doesn’t provide a changelog so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Nintendo Switch 16.1.0 improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PlayStation PS5 23.01-07.61.00 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Connect 12.4.1 is a security update.
https://helpx.adobe.com/security/products/connect/apsb23-33.html

Adobe Experience Manager 6.5.18.0 is a security update.
https://helpx.adobe.com/security/products/experience-manager/apsb23-43.html

Adobe Reader DC 23.006.20320 and 20.005.30524 are security updates.
https://get.adobe.com/reader

Blender 3.6.2 resolves several bugs. This is not a security update.
https://www.blender.org/download/

Calibre 6.26.0 adds support for new hardware, new stylization options, and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Ghostscript 10.01.2 is a security update.
https://www.ghostscript.com/releases/gsdnld.html

Kdenlive 23.08.0 adds support for several new formats, improved hardware support and performance, and resolves several bugs. This is not a security update.
https://kdenlive.org/

Kindle for PC 2.0.70301 doesn’t provide a changelog so should be treated as a security update.
https://www.amazon.com/kindleforpc

LibreOffice 7.5.6 resolves over 50 bugs. This is not a security update.
https://www.libreoffice.org/

LibreOffice Fresh 7.6.1 provides over 400 new features and bug fixes. This is not a security update. Remember that the “Fresh” line is beta software and the “Still” line should be used wherever possible.
https://www.libreoffice.org/

Nextcloud Desktop 3.9.4 resolves several bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.5.7 is a security update.
https://notepad-plus-plus.org/

Paint.net 5.0.9 resolves several bugs and improves stability. This is not a security update.
https://www.getpaint.net/

PDF-XChange Editor 10.1.0.380 is a security update.
https://www.tracker-software.com/product/pdf-xchange-editor

Security Software Updates

One or more of these is likely to be of interest to most people.

.NET Runtime 7.0.11 is a security update.
https://dotnet.microsoft.com/en-us/download/dotnet

Chainsaw 2.7.3 updates dependencies, adds new rules, and resolves export data issues. This is not a security update.
https://github.com/countercept/chainsaw

DNSQuerySniffer 1.95 adds support for sapics IP geolocation. This is not a security update.
https://www.nirsoft.net/utils/dns_query_sniffer.html

JShelter 0.14 improves performance, internationalization, and resolves several bugs. This is not a security update.
https://jshelter.org/install/

Kaspersky Removal Tool 20.0.6.0 doesn’t provide a changelog so should be treated as a security update.
https://support.kaspersky.com/viruses/utility

MalwareBytes Anti-Malware 4.6.2 improves detection, internationalization, and resolves several bugs. This is not a security update.
https://www.malwarebytes.org/antimalware/

OpenSSL 1.1.1w is a security update.
https://www.openssl.org/source/

ProtonVPN (macOS) 3.3.2 resolves several bugs and adds B2B WPN support. This is not a security update.
https://protonvpn.com/download

RogueKiller 15.12.0 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Tails 5.17 is a short follow-on to a critical security update in 5.16.1. This version adds new printer drivers and enables all drivers by default (which I personally think is a horrible idea) and updates libraries. This is a security update.
https://tails.boum.org/install/dvd/index.en.html

uBlock Origin 1.52.0 improves performance and stability, adds new operators, and resolves several bugs. This is a security update.
https://github.com/gorhill/uBlock/releases/latest

Velociraptor 0.7.0 adds several new features and many bug fixes. This is not a security update.
https://github.com/Velocidex/velociraptor/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 23.2.1 updates libraries, improves output options, and resolves several bugs. This is not a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.1.1.5 adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

PDF Creator 5.1.2 is a security update.
https://www.pdfforge.org/pdfcreator

StreamFab 6.1.4.1 improves compatibility and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 1.0.3.0 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 6.0.27 resolves several bugs and adds support for macOS Sonoma. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 8.10.13 resolves dozens of bugs and updates libraries. This should be treated as a security update.
https://1password.com/downloads/mac/

1Password for Windows 8.10.13 resolves dozens of bugs and updates libraries. This should be treated as a security update.
https://1password.com/downloads/windows/

Agent Ransack 2022.3406 resolves a compatibility bug. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

Bitwarden 2023.8.3 doesn’t provide a changelog so should be treated as a security update.
https://bitwarden.com/

CCleaner 6.15.10623 adds and updates cleaning rules. This is not a security update.
https://www.ccleaner.com/

CintaNotes 3.14 is *finally* released. This version resolves several stability and reliability bugs. This is not a security update.
https://cintanotes.com/download

CPU-Z Installer 2.07 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

Cygwin 3.4.9 resolves several bugs. This is a security update.
https://cygwin.com/

DesktopOK 11.08 improves compatibility and resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

DevManView 1.80 adds high DPI support, ability to run unelevated, an elevation switch, and a dark background option. This is not a security update.
https://www.nirsoft.net/utils/device_manager_view.html

dnGrep 4.0.69.0 adds pause/resume support, improved print output, and updates libraries. This is a security update.
https://dngrep.github.io/

email-oauth2-proxy 2023-09-06 resolves several bugs and improves compatibility. This is a security update.
https://github.com/simonrob/email-oauth2-proxy

ESEDatabaseView 1.74 resolves a couple bugs. This is not a security update.
https://www.nirsoft.net/utils/ese_database_view.html

Fido 1.51 improves compatibility. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3406 resolves a compatibility bug. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

FileTypesMan 1.98 adds sort menus and buttons. This is not a security update.
https://www.nirsoft.net/utils/file_types_manager.html

Git SCM 2.42.0 resolves dozens of bugs. This is not a security update.
https://git-scm.com/

Go 1.21.1 is a security update.
https://go.dev/

GoodSync 12.3.6 resolves several bugs. This is not a security update.
https://www.goodsync.com/

HWiNFO 7.62 doesn’t provide a changelog so should be treated as a security update.
https://www.hwinfo.com/download/

HWMonitor 1.52 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

IsMyHdOK 3.91 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

Kingston SSD Manager 1.5.3.3 doesn’t provide a changelog so should be treated as a security update.
https://www.kingston.com/us/support/technical/ssdmanager

NConvert 7.155 improves HEIC and TIFF support. This is not a security update.
https://www.xnview.com/en/nconvert/

NTLite 2023.8.9408 improves compatibility and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

Open-Shell 4.4.191 resolves over a dozen bugs and improves compatibility. This is not a security update.
https://github.com/Open-Shell/Open-Shell-Menu

PointerStick 6.31 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.73.0 resolves dozens of bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

QuickSetDNS 1.35 improves high DPI support, adds menu and toolbar controls, and keyboard support. This is not a security update.
https://www.nirsoft.net/utils/quick_set_dns.html

RoboForm 9.5.2 resolves several bugs. This is not a security update.
https://www.roboform.com/

ScreenConnect 23.6.8.8644 resolves dozens of bugs. This is not a security update.
https://www.connectwise.com/software/control/download

TraceRouteOK 3.33 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK

Unity 2023.1.12 resolves dozens of bugs. This is not a security update.
https://unity3d.com/get-unity/download/archive

Ventoy 1.0.95 resolves a couple bugs and adds new distros. This is not a security update.
https://www.ventoy.net/en/index.html

WifiInfoView 2.91 resolves a detection bug. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

WinGet 1.5.2201 resolves a couple bugs and is now available through the PowerShell Gallery. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest

WizTree 4.15 improves deletion detection and display, TSV support, and updates translations. This is not a security update.
https://www.diskanalyzer.com/

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 2022.3.1.19 adds several new features. This is not a security update.
https://developer.android.com/studio

AutoHotkey 2.0.8 resolves several parsing and key mapping bugs. This is not a security update.
https://www.autohotkey.com/download/

GitHub Desktop 3.3.1 adds support for commit signing, repository rules, fixes several bugs and improves output, contrast, and accessibility. This is not a security update.
https://desktop.github.com/

Node.js 16.20.2 is a security update.
https://nodejs.org/en/

Node.js 18.17.1 is a security update.
https://nodejs.org/en/

Node.js 20.6.1 is a security update.
https://nodejs.org/en/

Python 3.11.5 is a security update.
https://www.python.org/downloads/windows/

SQLite 3.43.1 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.82.1 adds several new features and improves accessibility. This is a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

PPSSPP 1.16 adds support for new backends, resolves dozens of bugs, and improves reliability. This is not a security update.
https://www.ppsspp.org/download/

Web Package Updates

These are likely to be of interest only to web developers.

Grocy 4.0.3 is a major update improving compatibility, adds several new features, improved calculations and field support, and dozens of bug fixes. This should be treated as a security update.
https://github.com/grocy/grocy

Invision Community 4.7.13 resolves dozens of bugs. This is not a security update.
https://invisioncommunity.com/

Joomla 3 is now end of life (EOL). *Please* upgrade to Joomla 4 as soon as possible.
https://www.joomla.org/announcements/release-news/5894

Joomla 4.3.4 resolves several bugs. This is not a security update.
https://www.joomla.org/

jQuery 3.7.1 resolves several bugs. This is not a security update.
https://code.jquery.com/

ownCloud Server 10.13.1 resolves dozens of bugs. This is not a security update.
https://owncloud.com/download-server/

WordPress 6.3.1 resolves several bugs. This is not a security update.
https://wordpress.org/

BuddyPress 11.3.1 is a security update.
https://wordpress.org/extend/plugins/buddypress/

Idea Publisher 1.0.9 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/idea-publisher/

Social Post Feed 4.2 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/custom-facebook-feed/

W3 Total Cache 2.4.1 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/w3-total-cache/

WooCommerce 8.0.3 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/woocommerce/

WP Cerber Security 9.5.7 adds and extends 2FA support. This is not a security update.
https://wpcerber.com/

WP Mail SMTP 3.9.0 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/wp-mail-smtp/

WP Plugin Update Checker 5.2 improves compatibility. This is not a security update.
https://github.com/YahnisElsts/plugin-update-checker/releases/latest

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2023-08-08

Posted on August 8, 2023 by Shawn K. Hall

Welcome back, Folks!

Today is Patch Tuesday for August, 2023.

This month brings a whole bucket of ugly, and a reminder that fixing a bug is not the same thing as fixing the software. Every common browser released at least a security update each week for the last month, with Firefox maxing out sanity tests by releasing five (5) security updates in a mere ten (10) days. I warned about this years ago.

There were over 160 major hacks (some involving millions of users and thousands of organizations, one involving billions of users, Microsoft’s own security keys), and over 200 application updates this month. It’s a huge month, with about 4 GB of updates for most users.

This Month in Technology

Acupuncture and Integrative Solutions Incorporated, All-In-One Security, Allegheny County, AlphaPo, AMD Zen CPUs, AMD Zen2 CPUs, AMI MegaRAC Baseboard Management Controller (BMC), Argentina’s Comprehensive Medical Care Program, PathGroup Health Plan, Barracuda ESG, Batesville Tool & Die, Inc., Baylor College of Medicine, BAZAN Group, Beverly Hills Plastic Surgery, Bi-Bett Corporation, BookCrossing, Buckingham County Public Schools, Buffalo State, California Public Employee and Retirement System (CalPERS), Call of Duty, Canon printers, CardioComm Solutions Inc, Care N’ Care Insurance Company, Inc., Centers for Medicare and Medicaid (CMS), Charles George Department of Veterans Affairs Medical Center, Cisco SD-WAN vManage, Citrix Netscaler ADC and Gateway servers, Cloudzy, CoinsPaid, ColdFusion (several times), Colorado Department of Higher Education (CDHE), Colorado State University (CSU), Comdirect, Commerzbank, Conic Finance, almost all CPUs, CraftRise, Curve Finance, Deutsche Bank AG, air-gapped systems in Eastern Europe, Egyptian Ministry of Health and Population, Era Lend, Estée Lauder (twice!), European diplomats, Evotec, Exchange Online, EY Law, Fairfax Oral and Maxillofacial Surgery, Family Vision of Anderson, P.A., Fortinet SSL VPNs, FortiOS and FortiProxy, Gary Motykie, M.D., Ghostscript, Google Accelerated Mobile Pages (AMP), Google Cloud Build, Harkins Pain & Sleep Management Group, Harris Health System, Hawai’i Community College, Helix, Henry Ford Health, Highland Health Systems, Hillsborough County, Hines Interests Limited Partnership, Hot Topic, Howard County General Hospital, Immigration Directorate General in Indonesia, ING, Italian government, Ivanti Endpoint Manager Mobile/Mobileiron — an unknown number of devices are effected, likely in the millions (and again, and again), IVF Michigan, P.C., Johns Hopkins Health System Corporation, JumpCloud, Kenya’s e-Citizen, LeetSwap, LetMeSpy, Life Management Center of Northwest Florida, Inc., Locally, MagicDuel, Majorel, Maximus Federal Services, Inc, Microsoft, Microsoft Azure, Microsoft Exchange, MikroTik RouterOS routers, Military and Police “Secure” Radio systems, Minecraft servers, MobiMed ePR, Molina Healthcare, Mondee, at least 545 servers/organizations running MOVEit software, Multichain, National Student Clearinghouse (3,500 colleges and universities – 97% of postsecondary enrollment in the US), NATO (yes, that NATO), New England Life Care, Inc., 12 Norwegian Ministries, Norwegian Government Security and Service Organisation (DSS), NPO Mashinostroyeniya, OpenAI, Orrick, Herrington & Sutcliffe, Ortivus, Outlook.com, PaperCut NG/MF, Paramedic Billing Services, Park Royal Hospital, Pension Benefit Information, Performance Health Technology (PH Tech), Physicians Insurance, Poly Network, Postbank, Prospect Medical Holdings, Quinn Emanuel, Razer, Redis, Rite Aid Corporation, Roblox, Roblox Developer Conference, Rockstar Games Inc., Rockwell Automation ControlLogix, Rodeo Finance, Saint Francis Health System, Salesforce, Serco Inc., several hospitals, Shutterfly, 70,000 small office/home office (SOHO) routers, SonicWall, South Central Ambulance Service, South Western Ambulance Service, Southern Association of Independent Schools, Sutter Senior Care, Tampa General Hospital, Teachers Insurance and Annuity Association of America, Terrestrial Trunked Radio (TETRA), Tesla, The Chattanooga Heart Institute, The Health Plan of West Virginia, Inc., Tigo, TLScontact, Tomra, Uber Technologies Inc, Ubuntu OverlayFS, UEFI boot loader security, UK Electoral Commission, Ukrainian and Polish businesses, Unified Pain Management, US Ambassador to China, US Department of Commerce (and at least two dozen other US government agencies), UT Southwestern Medical Center, Vermillion, VirusTotal, VMware ESXi, VMware Tanzu Application Service, Wake Family Eye Care, WooCommerce Payments, WordPress Ninja Forms, Wuhan Earthquake Monitoring Center, Yamaha, Zimbra (twice), and Zyxel firewalls have reportedly been hacked or compromised this month.

In light of all that, Barracuda Networks asserts that fewer than 100 scammers are responsible for global email extortion campaigns, leading to record breaches. There is yet another means of exfiltrating user information and passwords – this time from the sound your keyboard makes as you type.

BAZAN Group, Microsoft Exchange Online, Microsoft Sharepoint, Reddit, Slack, Spotify, and WhatsApp have suffered from outages this month.

Last months updates broke display and audio hardware, Outlook for Desktop saving, Outlook hyperlinks, websites in Safari, Screen Time on iOS, video recording and playback, certain VPNs, and Windows Update. I am also seeing reports from dozens of my clients that the iOS and iPadOS updates released last week are triggering alerts about “new devices” connecting to users’ Apple accounts. In all cases it was triggered shortly after a restart of a device that had received the OTA update.

Google is *really* pushing Enhanced Safe Browsing, the feature that allows them to monitor all activity on your devices, including third-party apps and websites in other browsers, even when you tell them no. Google announced they will be making it easier to remove personal information and explicit images from Google Search. Google is pushing WEI, though, which will make it impossible to enforce security and privacy in your own browser. As an example, your local Taco Bell could refuse to show you their address on their own website – or even load at all – unless you enable their ability to access your precise location, microphone and camera. This isn’t just my paranoia, it’s a standard Google is pushing at this very moment.

IBM’s Red Hat has announced that they will change the way they “comply” with the GPLv2 open source requirements, limiting access to some of their source. Oracle (yes, that Oracle!) is actually pointing out the insanity of this move.

Amazon is raising prices on some IPv4 addresses.

Clop ransomware is now using bittorrent to bypass takedowns. Cloudflare, primarily known for their security and privacy features, is being abused to aid malware.

The SEC is now mandating that publicly traded companies disclose attacks in four business days after discovery. The Australian government isn’t sure if the Privacy Act applies to their own actions when they violate citizen’s trust or privacy.

Microsoft is going to be forcing users of the native Windows Mail and Calendar applications to the “new Outlook” starting this month. Don’t do it!

Now for the good news:

The FBI finally found out which evil organization purchased malicious spyware after the US banned it: the FBI itself!

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is huge this month. The typical computer should see roughly 4 GB in updates today. Let’s get started.

Microsoft released updates to address 88 vulnerabilities in .NET Core, .NET Framework, ASP.NET, Azure Arc, Azure DevOps, Azure HDInsights, Dynamics Business Central Control, Memory Integrity System Readiness Scan Tool, Microsoft Dynamics, Microsoft Edge (Chromium-based), Microsoft Exchange Server, Microsoft Office, Microsoft Office Excel, Microsoft Office Outlook, Microsoft Office SharePoint, Microsoft Office Visio, Microsoft Teams, Microsoft WDAC OLE DB provider for SQL, Microsoft Windows Codecs Library, Reliability Analysis Metrics Calculation Engine, SQL Server, Tablet Windows User Interface, Visual Studio, Windows Bluetooth A2DP driver, Windows Cloud Files Mini Filter Driver, Windows Common Log File System Driver, Windows Cryptographic Services, Windows Defender, Windows Fax and Scan Service, Windows Group Policy, Windows HTML Platform, Windows Hyper-V, Windows Kernel, Windows LDAP – Lightweight Directory Access Protocol, Windows Message Queuing, Windows Mobile Device Management, Windows Projected File System, Windows Reliability Analysis Metrics Calculation Engine, Windows Smart Card, Windows System Assessment Tool, Windows Wireless Wide Area Network Service, and MSRT (~ 2 GB). This includes security updates. A reboot is required.

Apple released updates for macOS Ventura 13.5, macOS Monterey 12.6.8, macOS Big Sur 11.7.9, Safari 16.6, iOS 15.7.8, iOS 16.6, iPadOS 15.7.8, iPadOS 16.6, tvOS 16.6, watchOS 9.6, and Pro Video Formats 2.2.6. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 15.7.8 and 16.6 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.7.8 and 16.6 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 9.6 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 16.6 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 108.0.5359.239 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 23.7.2 resolves several bugs. This is not a security update.
https://www.amd.com/en/support

BullZip PDF Printer 14.3.0.2961 resolves several bugs and improves compatibility. This is not a security update.
https://www.bullzip.com/products/pdf/info.php#download

Display Driver Uninstaller 18.0.6.5 improves removal. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Drivers by Seagull 2023.3 adds support for 300 new models including several RFID tag printers. This is not a security update.
https://www.seagullscientific.com/support/downloads/drivers/

DS4Windows 3.2.13 several new features and improves hardware compatibility. This is not a security update.
https://github.com/Ryochan7/DS4Windows/releases/latest

Ghostscript 10.01.2 resolves several bugs. This is a security update.
https://www.bullzip.com/products/pdf/download.php

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.56.20 is a security update. Use Menu, Help, About to get the most current version.
https://brave.com/

Microsoft Edge 115.0.1901.200 is a security update. Use Menu, Help, About to get the most current version.
https://www.microsoft.com/en-us/edge/business/download

Firefox 116.0.2 is a security update…the fifth in the last ten days! Use Menu, Help, About to get the most current version.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 115.1.0 is a security update. Use Menu, Help, About to get the most current version.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 115.0.5790.170 is a security update. Use Menu, Help, About to get the most current version.
https://www.google.com/chrome/

Microsoft Edge 115.0.1901.188 is a security update. Use Menu, Help, About to get the most current version.
https://www.microsoft.com/en-us/edge/business/download

Microsoft Edge WebView2 115.0.1901.200 is a security update. Use Menu, Help, About to get the most current version.
https://developer.microsoft.com/en-us/microsoft-edge/webview2/

SeaMonkey 2.53.17 is a security update. Use Menu, Help, About to get the most current version.
https://www.seamonkey-project.org/

Vivaldi 6.1.3035.257 is a security update. Use Menu, Help, About to get the most current version.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.11.0 improves cosmetics and resolves several bugs. This is a security update.
https://getmailspring.com/

Spark (macOS) 3.6.8 resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Spark 3.6.8 resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 115.1.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk (macOS) 7.2.1 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

curl 8.2.1 resolves dozens of bugs. This is a security update.
https://curl.haxx.se/windows/

Dropbox 179.4.4985 doesn’t provide a change log so should be treated as a security update.
https://www.dropbox.com/

Facebook Messenger 192.0.0.8.125 is a security update.
https://www.messenger.com/download

FreeFileSync 12.5 resolves several bugs and improves stability and reliability. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 79.0 is a security update.
https://drive.google.com/start

Grocy Desktop 2.5.0 updates Grocy to 4.0.1 and resolves several bugs and improves performance. This is not a security update.
https://github.com/grocy/grocy-desktop

Microsoft Teams 1.6.00.20074 updates the channels experience and improves security. This is a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 27.0.1 resolves dozens of bugs. This is a security update.
https://nextcloud.com/

Npcap 1.76 resolves a couple bugs, improves performance, and updates the code signing key. This is not a security update.
https://nmap.org/npcap/

Qbox 4.0.5.48 doesn’t provide a change log so should be treated as a security update.
https://www.coraltreetech.com/qbox

Rclone 1.63.1 resolves several bugs, improves compatibility and resilience. This is not a security update.
https://rclone.org/

Signal (Android) 6.27.10 doesn’t provide a change log so should be treated as a security update.
https://signal.org/android/apk/

Signal 6.27.1 improves voice and video calling. This is not a security update.
https://signal.org/download/macos/
https://signal.org/download/windows/

Skype 8.99.0.403 resolves several bugs, integrates motr Bing AI, and adds self-chat. This is not a security update.
https://www.skype.com/

Telegram 4.8.10 resolves a couple bugs. This is not a security update.
https://telegram.org/

Zoom 5.15.6.19959 resolves dozens of bugs. This is a security update. Note that Zoom has also recently updated their Terms of Service to assert ownership of any audio, video, or other communication through their platform IN ANY WAY THEY SEE FIT with no way to opt out.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 3.0.11 resolves a dozen bugs. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.0.4 resolves a couple minor bugs. This is not a security update.
https://www.bitwig.com/download/

darktable 4.4.2 resolves several bugs. This is not a security update.
https://www.darktable.org/

Picard 2.9 resolves dozens of bugs. This is not a security update.
https://picard.musicbrainz.org/

Plex Desktop 1.75.0.3920 resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.44.1.3926 resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.32.5.7349 resolves several bugs and improves hardware compatibility. This is a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

GameMaker Studio 2023.6.0.92 improves macOS compatibility. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.2.169 resolves several bugs. This is not a security update.
https://gdevelop.io/download

Lego Studio 2.23.7.3 resolves a stability bug. This is not a security update.
https://www.lego.com/en-us/ldd

Minecraft Server (Bedrock) 1.20.14.01 is a security update.
https://www.minecraft.net/en-us/download/server/bedrock

PS5 23.01-07.60.00 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Acrobat and Reader 23.003.20269, 20.005.30516.10516, and 20.005.30514.10514 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb23-30.html

Adobe Commerce and Magento Open Source 2.4.6-p2, 2.4.5-p4, 2.4.4-p5, 2.4.3-ext-4, 2.4.2-ext-4, 2.4.1-ext-4, 2.4.0-ext-4, and 2.3.7-p4-ext-4 are security updates.
https://helpx.adobe.com/security/products/magento/apsb23-42.html

Adobe Dimension 3.4.10 is a security update.
https://helpx.adobe.com/security/products/dimension/apsb23-44.html

Adobe XMP Toolkit SDK 2023.07 is a security update.
https://helpx.adobe.com/security/products/xmpcore/apsb23-45.html

Blender 3.6.1 improves performance and resolves several bugs. This is not a security update.
https://www.blender.org/download/

Calibre 6.24.0 adds the ability to operate full text search across a subset of books, fixes calibre:// links, and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

GnuCash 5.3 resolves a couple bugs and improves performance. This is not a security update.
https://www.gnucash.org/

ImageMagick 7.1.1-15 resolves several bugs. This is a security update.
https://imagemagick.org/

Inkscape 1.3 resolves dozens of bugs and improves several tools. This is not a security update.
https://inkscape.org/release/

Kdenlive 23.04.3 resolves over a dozen bugs. This is not a security update.
https://kdenlive.org/

LibreOffice Fresh 7.5.5 resolves 70 bugs. This is not a security update. Remember that the “Fresh” line is beta software and you should use the “Still” line instead.
https://www.libreoffice.org/

Nextcloud Desktop 3.9.1 resolves a dozen bugs. This is not a security update.
https://nextcloud.com/

Paint.net 5.0.8 resolves several bugs. This is not a security update.
https://www.getpaint.net/

Security Software Updates

One or more of these is likely to be of interest to most people.

Gpg4win 4.2.0 resolves a dozen bugs. This is a security update.
https://www.gpg4win.org/download.html

HTTP Toolkit 1.13.0 doesn’t provide a change log so should be treated as a security update.
https://httptoolkit.tech/

MalwareBytes Anti-Malware 4.5.34 resolves several bugs. This is not a security update.
https://www.malwarebytes.org/antimalware/

MalwareBytes Anti-Malware Mac 4.20.7 resolves several bugs. This is not a security update.
https://www.malwarebytes.com/mac/

OpenSSL 1.1.1v and 3.1.2 are security updates.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN 2.4.3 improves stability. This is not a security update.
https://protonvpn.com/download

Radmin VPN 1.4.4642.1 doesn’t provide a change log so should be treated as a security update.
https://www.radmin-vpn.com/

Tails 5.16 is a security update.
https://tails.boum.org/install/dvd/index.en.html

uBlock Origin 1.51.0 resolves several bugs and adds support for several new filters and scriptlets. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

VT-CLI 0.14.0 adds silent operation support, winget and go support, and resolves a couple bugs. This is not a security update.
https://github.com/VirusTotal/vt-cli/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

Camtasia 23.1.2 updates libraries and resolves several bugs. This is a security update.
https://www.techsmith.com/video-editor.html

SnagIt 23.2.0 updates libraries and resolves over a dozen bugs. This is a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.1.1.2 adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

StreamFab 6.1.3.4 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 1.0.2.8 improves conversion speed and resolves a couple bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Utility Updates

These are unlikely to be of interest to most people.

.NET Runtime 7.0.10 is a security update.
https://dotnet.microsoft.com/en-us/download/dotnet

1Password 8.10.9 resolves dozens of bugs. This is not a security update.
https://1password.com/downloads/windows/
https://1password.com/downloads/mac/

8GadgetPack 37.0 updates My Weather and removes unsupported widgets. This is not a security update.
https://8gadgetpack.net/

Bitcoin 25.0 improves network communication, RPCs, and resolves several bugs. This is not a security update.
https://bitcoin.org/en/download

Bitwarden 2023.7.1 adds commands to the CLI Secrets Manager. This is not a security update.
https://bitwarden.com/

CCleaner 6.14.10584 is a security update.
https://www.ccleaner.com/

Dell Command Update 5.0.0 doesn’t provide a change log so should be treated as a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

DesktopOK 11.01 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.0.45.0 updates libraries and resolves several bugs to improve compatibility. This is a security update.
https://dngrep.github.io/

Etcher 1.18.12 resolves a couple bugs. This is not a security update.
https://www.balena.io/etcher/

Everything Toolbar 1.2.0 improves compatibility. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

Go 1.21.0 is a major update, adding several new tools and language constructs. This is a security update.
https://go.dev/

GoodSync 12.3.1 improves AutoUpdate sync, stability, and resolves several compatibility issues. This is not a security update.
https://www.goodsync.com/

HWiNFO 7.60 doesn’t provide a change log so should be treated as a security update.
https://www.hwinfo.com/download/

Java 8u381 is a security update.
https://www.java.com/en/download/manual.jsp

JShelter 0.13 improves stability. This is not a security update.
https://jshelter.org/install/

LiveTcpUdpWatch 1.51 adds dark background and full screen support. This is not a security update.
https://www.nirsoft.net/utils/live_tcp_udp_watch.html

NetworkOpenedFiles 1.61 adds dark background and full screen support. This is not a security update.
https://www.nirsoft.net/utils/network_opened_files.html

NTLite 2023.7.9371 resolves several bugs and improves features. This is not a security update.
https://www.ntlite.com/download/

OSForensics 10.0.1015 resolves several bugs. This is not a security update.
https://www.osforensics.com/download.html

osquery 5.9.1 adds ARM support and resolves several bugs. This is a security update.
https://osquery.io/downloads

PowerToys 0.72.0 resolves several bugs and improves compatibility. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Process Explorer 17.05 improves stability. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/process-explorer

Rufus 4.2 improves compatibility and stability, adds conversion options, and resolves several bugs. This is not a security update.
https://rufus.ie/en_US/

ScreenConnect 23.5.8.8598 improves logging. This is not a security update.
https://www.connectwise.com/software/control/download

SmartMonTools 7.4 adds several new switches, improved hardware support, and resolves a couple bugs. This is not a security update.
https://smartmontools.org/

TcpLogView 1.38 updates IP database. This is not a security update.
https://www.nirsoft.net/utils/tcp_log_view.html

Ventoy 1.0.94 resolves compatibility issues. This is not a security update.
https://www.ventoy.net/en/index.html

VMMap 3.33 improves compatibility. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/vmmap

WinRAR 6.23 is a security update.
https://www.rarlab.com/

WinScan2PDF 8.61 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

ZoomIt 7.1 adds audio capture support. This is not a security update.
https://learn.microsoft.com/en-us/sysinternals/downloads/zoomit

ZoomText 2023 2023.2307.29.400 improves keyboard shortcuts and resolves several bugs.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

ADB 34.0.4 resolves several bugs. This is not a security update.
https://developer.android.com/studio/releases/platform-tools

Android Studio 2022.3.1.18 improves compatibility. This is not a security update.
https://developer.android.com/studio

AutoHotkey 2.0.4 resolves several bugs. This is not a security update.
https://www.autohotkey.com/download/

AutoHotkey 1.1.37.01 resolves several bugs. This is not a security update.
https://www.autohotkey.com/download/

GitHub Desktop 3.2.7 resolves several bugs. This is not a security update.
https://desktop.github.com/

Godot (macOS) 4.1.1 improves stability. This is not a security update.
https://godotengine.org/

MySQL ConnectorNet 8.1.0 resolves several bugs. This is not a security update.
https://dev.mysql.com/downloads/connector/net/

MySQL Server 8.0.34 resolves dozens of bugs. This is a security update.
https://dev.mysql.com/downloads/installer/

Node.js 18.17.0 updates libraries, improves performance, and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Node.js 20.5.0 updates libraries, improves performance, and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Visual Studio Code 1.81 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.0.10 resolves dozens of bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

HumHub 1.14.3 resolves several bugs. This is not a security update.
https://www.humhub.com/en

ISPConfig 3.2.11 adds support for Debian 12 and resolves several bugs. This is not a security update.
https://www.ispconfig.org/ispconfig/download/

Invision Community 4.7.12 updates libraries and resolves dozens of bugs. This should be treated as a security update.
https://invisioncommunity.com/

Grocy 4.0.1 is a major update adding new API features, compatibility, and performance improvements. This build also resolves several bugs.
https://github.com/grocy/grocy

MailEnable 10.47 resolves several bugs. This should be treated as a security update.
https://www.mailenable.com/

ownCloud Client 4.2.0.11670 resolves several bugs. This should be treated as a security update.
https://owncloud.com/desktop-app/

Contact Form 7 5.8 adds several hooks and resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.5.1 improves messaging and subsite mapping structure. This is not a security update.
https://wordpress.org/plugins/duplicator/

Social Post Feed 4.1.9 adds promotional link, updates the block and improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/custom-facebook-feed/

Theme My Login 7.1.6 resolves a couple bugs and adds a new hook. This is not a security update.
https://wordpress.org/extend/plugins/theme-my-login/

W3 Total Cache 2.4.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/w3-total-cache/

WooCommerce 7.9.0 resolves over a hundred bugs, updates blocks and options. This is a security update.
https://wordpress.org/extend/plugins/woocommerce/

WP Mail SMTP 3.8.2 resolved several bugs. This is not a security update.
https://wordpress.org/extend/plugins/wp-mail-smtp/

WPBakery 7.0 adds a couple elements, improves notifications and compatibility. This is not a security update.
https://wpbakery.com/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/