Updates 2024-04-09

Welcome back, Folks!

Today is Patch Tuesday for April, 2024.

There were 370+ major hacks, and over 160 application updates this month. It’s a small month though, with only about 1.5 GB of updates for most users.

This Month in Technology

A5 PHARMACY INC., 6,000 ASUS routers, Ace Hardware, Acer Philippines, Activision, Acuity, Adobe Reader, Affinity Health Services, Air Europa, AirDAO, Alabama State Government, Alamo Insurance, Alsaree3, Amazon’s AWS Airflow Service, AMD Zen CPUs (ZenHammer), American Renal Associates, Apex Legends Global Series, Apotheka pharmacy, Apple Safari, Apple’s M Chips (GoFetch), Apple, Arcserve UDP, Argo, AT&T (after denying it), Aussizz Group, Aveanna Healthcare, Axis Direct, BabyTV, Bank of America, Bank of Tanzania, Bank Syariah Indonesia, Banregio, Battle Mountain General Hospital, Benetton Group, Bernalillo County, Better Accounting Solutions, BigBasket, BioLife Plasma Services, L.P., Bira91, boAt Lifestyle, Bonney Forge Corporation, Brewer & Company Of West Virginia, British Tobacco, BSR Infratech India Ltd, Bticino Club, California Correctional Health Care Services, California Department of Food and Agriculture (CDFA), Carolina Foods, Carrozzeria Aretusa, CASIO India, CCM Health, Chambers Construction, ChatGPT Plugin, Cherry Health, City of Conneaut, Ohio, City of Hope Cancer Center, City of Jacksonville Beach, Florida, City of Pensacola, Florida, City of St. Cloud, Florida, ClickASnap, Colorado Public Defender, Commerce Dental Group, Commonwealth Healthcare Corporation, Communications Workers Union, Cornerstone Healthcare Group Management Services LLC, Cornerstone Specialty Hospitals, Credit China, Crinetics Pharmaceuticals, Curio smart contracts, CVS Group, D-Link NAS (and several router models), DBS Bank, Delhi Police, Delta Dental of California, Delta Pipeline, Inc., Dental Health Services, Designed Receivable Solutions, Inc., Diabetes WA, Docker, Doctorim, Dolomite Exchange, Domestic Violence Project, Inc, Dormakaba’s Saflok, Dr. Cafe Coffee, Dunn, Pittman, Skinner & Cushman, PLLC, Duty Free Americas, Eagle Bank, Eagle Hydraulic, EAS Change Systems, East Baton Rouge Sheriff’s Office (EBRSO), Eastern Radiologists, Eastside Union School District, EBlock Corp, Ecuador’s Ministerio de Economía, Editorialist, El Salvador’s citizen database, Eland Energy, Inc., Ellsworth Cooperative Creamery, Emergency Medical Services Authority (EMSA), Encina Wastewater Authority, England and Wales Cricket Board, EquiLend, Ernest Health, eSIMs, Ethos/Southwest Boston Senior Services, Europol, Everbrite, LLC., Exvagos, Ezras Choilim Health Center, Inc., Family Health Center, Farmacia Ettore Florio SNC, Fidelity Investments Life Insurance Company, Fiduciary Outsourcing, LLC, FileCatalyst Transfer Tool, Fire Rescue Victoria, 223 million exposed Firebase records, Five Eyes Intelligence Group, Flipkart, Florida Department of Juvenile Justice, Florida Pediatric Associates, FortiClient EMS, France Travail (Government Unemployment Agency), French Football Federation, Fujitsu Corporate Networks, G&S Japan, Gamooga, GardaWorld Cash, Gerson Lehrman Group, most modern CPUs (GhostRace), Giant Tiger, Gilmer County, Georgia, Google Chrome, Google DoubleClick, Google Pixel, Government Employees Pension Fund (GEPF), Greensboro College, Greenwood Regional Rehabilitation Hospital, Gresser Inc. and Affiliates, Greylock McKinnon Associates, Group Health Cooperative of South Central Wisconsin, GSM Hosting, Guardian Life Insurance Company, Guy’s Floor Service Inc., HALO Branded Solutions, Hamilton, Canada, Harvard Pilgrim Health Care, Health Plan Intermediaries Holdings, Healthfirst Health Plan, Inc., Healthfirst Insurance Company, Inc., Healthfirst PHSP, Inc., Henry County, Illinois, High Wycombe Cressex Community School, Home Depot, Homeocan, Hot Topic, Houser LLP, Hoya Corporation, HTTP/2 “continuation” frames, Hudson Supplies Inc, Human Development Services of Westchester, Inc., Huntsville, Ontario, IATSE Staff Retirement and National Pension Funds, ICICIPruLife, ICN Assessoria, IKF Finance, Imperva WAF, Indian Defense & Energy Sectors, Indian S3WaaS website, InfoHit, INNO-SOFT Info Systems Pte Ltd, Inspection Services, Inc., Integration International Inc., INTEGRIS Health, International Monetary Fund (IMF), Irish Health Service Executive (HSE), Israeli Justice Ministry, Israeli LGBTQ App Atraf, Ivanti Connect Secure, Ivanti Policy Secure, Ivanti VPN gateways, Jackson County, Missouri, John R. Wood Properties, Johnson Matthey, Jordano’s Inc., JSC Kaluzhskoe, Kaspersky Fan Club, Keenan & Associates, KidSecurity, Kyivstar, Leicester City Council, Lewis & Clark College, Lindsay Municipal Hospital, London Mayor’s Office for Policing and Crime (MOPAC), Los Angeles Department of Mental Health, M&D Capital Premier Billing, Maccarinelli Luciano, macOS, Macuz, Madero, Magento, Magnum, Mahoney Foundries Inc., Malaysian Industrial Development Finance, MarineMax, Mary H. Makhlouf, DMD, MS, PA, Massachusetts Mutual Life Insurance Company, MediaWorks, Meson, Metropolitan Life Insurance Company, Microsoft, Microsoft Edge, Microsoft Exchange Server, Microsoft SharePoint, Midlands Regional Rehabilitation Hospital, Minecraft, Mintlify, Monmouth College, Motilal Oswal, MotorCycle Holdings, Mozilla Firefox, Multi-Fill, Munchables, Nampak, National Amusements, National Home Mortgage Finance Corporation (NHMFC), National Insurance Institute of Israel, National Public Data, Nations Direct Mortgage, Nationstar Mortgage, Nemesis Market, New Mexico Administrative Office of the District Attorneys, New York State Education Department, Newport Group, NHS Dumfries and Galloway, NHS Scotland, Nissan, NorthBay VacaValley Hospital, Northern Virginia Oral, Maxillofacial & Implant Surgery, Nykaa, Oak View Group, Olea Kiosks Inc., Omni Hotels & Resorts, On Q Financial, Open Automation Software OAS Engine, Oracle VirtualBox, Orange County’s Credit Union, Orsini Pharmaceutical Services, Otolaryngology Associates, OWASP, Pacific Guardian Life Insurance, Paducah Dermatology, Palau National Government, PandaBuy, Panera Bread, Paulmann, Pembina County Memorial Hospital, PGF Technology Group, Inc., Philips Respironics, Phillipine Department of Science and Technology, Plymouth Tube Company Employee Benefit Plan, Polycab, Pomona Valley Hospital Medical Center, Ponoka, Canada, Powerhost, Precision Tune Auto Care, Inc., Prisma Finance, ProcessMaker, Prudential Insurance, Punjab Police, Pakistan, Quality Education and Skills Training (QUEST) App, R1 RCM Inc., Radiant Logistics, Rairdon Automotive Group, Ray AI Framework, Redbus, Regional One Health, Rent Go, REV Drill Sales & Rentals, Risas Dental & Braces, Rockland, Roi Et Rajabhat University, Roku, Rudman Winchell Law Firm, SAC Constelacion, Saint Louis University, Santa Clarita Community College District, Saudi Arabia Railways, Scranton School District, PA, Scullion Law, Select Education Group (SEG), Services Informatiques Pour Professionnels, Shopify plugins, Simpson Strong-Tie Co. Inc., Sit ‘n Sleep, Skyway Coach Lines, South China Athletic Association, SouthState Bank, Spa Grand Prix, Spartanburg Rehabilitation Institute, Spedition Langen, Stanford University, Sugargoo, Summit State Bank, Super Sushi Samurai, SurveyLama, Swiggy, SwordFantasy, Sycamore Rehabilitation Services, Inc., Targus, Tarrant Appraisal District, Tarrant County, Texas, TataMotors, Teleflora, Tesla, Tesla ECU, Tesla Model 3, The Big Issue, The Law Firm of Friedman + Bartoumian, The Pokémon Company, TIAA, Top.gg Discord bot, Torre Pacheco Town Hall, Spain, Trezor’s X Account, Tri-City Healthcare District, True Homes, Trustpoint Rehabilitation Hospital, Ubuntu desktop, UC San Diego Health, Ultra Intelligence & Communications, United Network for Organ Sharing (UNOS), University of Winnipeg, US Department of Health and Human Services (HHS), US Department of Justice (DoJ), US Department of State, US Environmental Protection Agency (EPA), US National Security Agency (NSA), US Vision, Inc., UT Southwestern, V12 Software, Valley Oaks Health, Venmo, Veritas Genetics, Viber, VMware Workstation, VNDirect, Void Interactive, Walmart, Washington State Food Worker Card, Weirton Medical Center, Wells Fargo, Wendy’s, WeRize, Western New York Independent Living, Inc., White Oak Partners, Windows 11, Windows SmartScreen, Woodruff-Sawyer & Co., 39,000 WordPress sites, WordPress Essential Addons for Elementor plugin, WordPress LayerSlider plugin, WordPress miniOrange plugins, WordPress Rank Math SEO plugin, Wyatt Detention Facility, XpressBees, XZ Utils, Yale University, and Z Development Services have reported hacking or compromises this month.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is pretty small this month. The typical computer should see roughly 1.5 GB in updates today. Let’s get started.

Microsoft released updates to address 100 vulnerabilities in .NET and Visual Studio, Azure, Azure Compute Gallery, Azure Migrate, Azure Monitor, Azure Private 5G Core, Azure SDK, Internet Shortcut Files, Microsoft Azure Kubernetes Service, Microsoft Brokering File System, Microsoft Defender for IoT, Microsoft Edge (Chromium-based), Microsoft Install Service, Microsoft Office Excel, Microsoft Office Outlook, Microsoft Office SharePoint, Microsoft WDAC ODBC Driver, Microsoft WDAC OLE DB provider for SQL, Open Management Infrastructure, Role: DNS Server, Servicing Stack Updates, SQL Server, Windows Authentication Methods, Windows BitLocker, Windows Compressed Folder, Windows Cryptographic Services, Windows Defender Credential Guard, Windows DHCP Server, Windows Distributed File System (DFS), Windows DWM Core Library, Windows File Server Resource Management Service, Windows HTTP.sys, Windows Internet Connection Sharing (ICS), Windows Kerberos, Windows Kernel, Windows Local Security Authority Subsystem Service (LSASS), Windows Message Queuing, Windows Mobile Hotspot, Windows Proxy Driver, Windows Remote Access Connection Manager, Windows Remote Procedure Call, Windows Routing and Remote Access Service (RRAS), Windows Secure Boot, Windows Telephony Server, Windows Update Stack, Windows USB Print Driver, Windows Virtual Machine Bus, Windows Win32K – ICOMP, and MSRT. This includes security updates. A reboot is required.

Apple released updates for GarageBand 10.4.11, iOS 16.7.7, iOS 17.4.1, iPadOS 16.7.7, iPadOS 17.4.1, macOS Sonoma 14.4.1, macOS Ventura 13.6.6, Safari 17.4.1, and visionOS 1.1.1. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 16.7.7 and 17.4.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 16.7.7 and 17.4.1 are security updates. Use Settings, General, Software Update to install the most current update.

visionOS 1.1.2 is a security update. Use Settings, General, Software Update to install the most current version.

Google Chrome OS 123.0.6312.94 is security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Sonoma (14.x) means that macOS Big Sur (11.x) and older are no longer supported. If you can not install at least macOS Monterey (12) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v23H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 24.3.1 resolves several bugs and compatibility issues. This is not a security update.
https://www.amd.com/en/support

Crucial Storage Executive 10.01 does not provide a change log so should be treated as a security update.
https://www.crucial.com/support/storage-executive

Display Driver Uninstaller 18.0.7.4 improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

UniFi airMAX NanoStation 5AC Loco 8.7.12 is a security update.
https://www.ui.com/download/software/loco5ac

UniFi Network Server 8.1.113 resolves dozens of bugs and improves management and features. This is not a security update.
https://www.ui.com/download/releases/network-server

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.64.116 is a security update.
https://brave.com/

Firefox 124.0.2 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 115.9.1 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 123.0.6312.86 is a security update.
https://www.google.com/chrome/

Microsoft Edge 123.0.2420.81 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Opera 109.0.5097.38 is a security update.
https://www.opera.com/browsers/opera

Opera GX 107.0.5045.86 is a security update.
https://www.opera.com/gx

SeaMonkey 2.53.18.2 is a security update. They’ve *finally* removed support for NPAPI plugins like Flash.
https://www.seamonkey-project.org/

Vivaldi 6.6.3271.57 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

DavMail Gateway 6.2.2 resolves dozens of bugs. This is a security update.
https://davmail.sourceforge.net/

OutlookAttachView 3.52 adds a cosmetic option to align numeric columns. This is not a security update.
https://www.nirsoft.net/utils/outlook_attachment.html

Spark 3.14.5.68977 resolves a couple bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.14.5.68976 resolves a couple bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 115.9.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk (macOS) 8.0.1 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

curl 8.7.1 is a security update.
https://curl.haxx.se/windows/

Dropbox 196.4.6900 is a security update.
https://www.dropbox.com/

Facebook Messenger 208.0.0.9.229 is a security update.
https://www.messenger.com/download

FreeFileSync 13.5 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 89.0 is a security update.
https://drive.google.com/start

Grocy Desktop 2.10.0 updates bundled Grocy. This is not a security update.
https://github.com/grocy/grocy-desktop

MeshCentral 1.1.22 resolves dozens of bugs and updates libraries. This is a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.7.00.7956 reduces default permissions. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 28.0.4 resolves dozens of bugs. This is a security update.
https://nextcloud.com/

Signal (Android) 7.2.4 takes a few more steps away from dependence on a phone number. This is not a security update.
https://signal.org/android/apk/

Signal 7.4.0 resolves several bugs. This is not a security update.
https://signal.org/download/windows/

Syncthing 1.27.6 resovles several bugs. This should be treated as a security update.
https://syncthing.net/

Technitium DNS Server 12.1 is a security update.
https://technitium.com/dns/

Telegram 4.16.6 resolves several bugs. This is not a security update.
https://telegram.org/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.3 resolves several compatibility and cosmetic issues. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.1.6 resolves a couple bugs. This is not a security update.
https://www.bitwig.com/download/

Plex Desktop 1.90.1.118 improves collection management. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.59.0.121 updates engine. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.40.1.8227 resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

GDevelop 5.3.198 introduces feedback rewards, updates dependencies and resolves several bugs. This is not a security update.
https://gdevelop.io/download

Minecraft Server (Bedrock) 1.20.73.01 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Nintendo Switch 18.0.0 adds a 15 minute option to sleep mode, Korean language, and resolves several bugs. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 2024.315 adds brightness controls, improves mic and speaker support for DualSense controllers, and resolves several bugs. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe After Effects 24.2 and 23.6.5 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb24-09.html

Adobe Photoshop 24.7.3 and 25.4 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb24-16.html

Adobe Commerce 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8, 2.4.3-ext-7, 2.4.2-ext-7, 2.4.1-ext-7, 2.4.0-ext-7, and 2.3.7-p4-ext-7 are security updates.
https://helpx.adobe.com/security/products/magento/apsb24-18.html

Adobe InDesign 19.3 and 18.5.2 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb24-20.html

Adobe Experience Manager 2024.03 and 6.5.20 are security updates.
https://helpx.adobe.com/security/products/experience-manager/apsb24-21.html

Adobe Media Encoder 24.3 and 23.6.5 are security updates.
https://helpx.adobe.com/security/products/media-encoder/apsb24-23.html

Adobe Bridge 13.0.7 and 14.0.3 are security updates.
https://helpx.adobe.com/security/products/bridge/apsb24-24.html

Adobe Illustrator 28.4 and 27.9.3 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb24-25.html

Adobe Animate 23.0.5 and 24.0.2 are security updates.
https://helpx.adobe.com/security/products/animate/apsb24-26.html

Adobe Reader DC 24.001.20643 improves GenAI stability. This is not a security update.
https://get.adobe.com/reader

Aronium 1.42 adds custom labels, database improvements and resolves several bugs. This should be treated as a security update.
https://aronium.com/

Calibre 7.8 resolves several bugs. This is not a security update.
https://calibre-ebook.com/

GnuCash 5.6 resolves dozens of bugs. This is not a security update.
https://www.gnucash.org/

Kdenlive 24.02.1 resolves dozens of bugs. This is not a security update.
https://kdenlive.org/

LibreOffice 7.6.6 resolves almost 40 bugs. This is not a security update.
https://www.libreoffice.org/

LibreOffice Fresh 24.2.2 resolves over 70 bugs. This is not a security update. The “Fresh” line is beta software so you should be avoided by most.
https://www.libreoffice.org/

Manager 24.4.8.1419 doesn’t provide a change log so should be treated as a security update.
https://www.manager.io/

Nextcloud Desktop 3.12.3 resolves several bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.6.5 resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

QuickBooks Pro 2022 R14_41 doesn’t provide a change log so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

QuickBooks Pro 2023 R11_35 doesn’t provide a change log so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

Zotero (macOS) 6.0.37 improves Google Docs integration and improves messaging. This is not a security update.
https://www.zotero.org/

Zotero 6.0.36 updates digital signature. This should be treated as a security update.
https://www.zotero.org/

Security Software Updates

One or more of these is likely to be of interest to most people.

MalwareBytes Anti-Malware 4.6.10 is not a security update.
https://www.malwarebytes.org/antimalware/

OnionShare 2.6.2 is a security update.
https://onionshare.org/

OpenSSL 3.3.0 is a security update.
https://www.openssl.org/source/

ProtonVPN (macOS) 4.1.11 improves stability and resolves several bugs. This is not a security update.
https://protonvpn.com/download

QubesOS 4.2.1 is a security update.
https://www.qubes-os.org/downloads/

Stinger 13.0.0.90 adds new detections. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

SuperAntiSpyware 10.0.1264 improves browser extension. This is not a security update.
https://www.superantispyware.com/download.html

Tails 6.1 is a security update.
https://tails.net/install/download/index.en.html

uBlock Origin 1.57.2 resolves a bug in differential updates. This should be treated as a security update.
https://github.com/gorhill/uBlock/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 30.1.2 adds several features and resolves a dozen bugs. This version requires NVIDIA 531.61 or newer drivers. This is not a security update.
https://obsproject.com/

ScreenToGif 2.41 updates libraries and adds click tracking. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.1.5 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

PDF Creator 5.2.1 resolves several bugs. This is not a security update.
https://www.pdfforge.org/pdfcreator

StreamFab 6.1.7.0 resolves several bugs and improves compatibility. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 2.0.1.6 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.28 resolves several bugs. This is not a security update.
https://1password.com/downloads/

AOMEI Partition Assistant 10.3.1 improves duplicate detection and resolves several bugs. This is not a security update.
https://www.diskpart.com/

Bitwarden 2024.3.1 resolves several bugs. This is not a security update.
https://bitwarden.com/

CCleaner 6.22.10977 resolves several bugs and improves compatibility. This is not a security update.
https://www.ccleaner.com/

ControlMyMonitor 1.38 improves compatibility. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html

Cygwin 3.5.3 resolves several bugs. This is a security update.
https://cygwin.com/

DesktopOK 11.19 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.1.47.0 resolves several bugs and updates dependencies. This is a security update.
https://dngrep.github.io/

email-oauth2-proxy 2024-03-15 improves compatibility and resolves several bugs. This is not a security update.
https://github.com/simonrob/email-oauth2-proxy

Everything Toolbar 1.3.3 resolves several bugs. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

ExplorerPatcher 22621.3296.64.1 resolves several bugs and improves compatibility. This is not a security update.
https://github.com/valinet/ExplorerPatcher/

FoneTool 2.5.2 improves licensing process. This is not a security update.
https://www.fonetool.com/download.html

Go 1.22.2 is a security update.
https://go.dev/

GoodSync 12.6.2 resolves several bugs and improves compatibility. This is not a security update.
https://www.goodsync.com/

HWiNFO 8.00 doesn’t provide a change log so should be treated as a security update.
https://www.hwinfo.com/download/

Kingston SSD Manager 1.5.4.5 doesn’t provide a change log so should be treated as a security update.
https://www.kingston.com/us/support/technical/ssdmanager

LessMSI 1.11.0 improves GUI. This is not a security update.
https://lessmsi.activescott.com/

ManageWirelessNetworks 1.13 resolves a data export bug. This is not a security update.
https://www.nirsoft.net/utils/manage_wireless_networks.html

NTLite 2024.4.9860 updates controls and improves compatibility. This is not a security update.
https://www.ntlite.com/download/

OSForensics 11.0.1007 updates libraries and improves documentation. This is not a security update.
https://www.osforensics.com/download.html

PointerStick 6.37 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.80.0 improves stability and resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

PSAppDeploy 3.10.0 resolves dozens of bugs and improves compatibility. This is not a security update.
https://psappdeploytoolkit.com/

RoboForm 9.5.7 improves defaults and resolves several bugs. This is not a security update.
https://www.roboform.com/

SearchMyFiles 3.25 improves compatibility. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

TraceRouteOK 3.35 updates language files. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK

WinGet 1.7.10861 resolves dependency issues and a couple other bugs. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest

Developer Updates

These are unlikely to be of interest to most people.

ADB 35.0.1 updates libraries. This is not a security update.
https://developer.android.com/studio/releases/platform-tools

Android Studio 2023.2.1.24 resolves several bugs. This is a security update.
https://developer.android.com/studio

AutoHotkey 1.1.37.02 resolves several bugs related to hotkeys and clipboard control. This is not a security update.
https://www.autohotkey.com/download/

AutoHotkey 2.0.12 resolves several bugs. This should be treated as a security update.
https://www.autohotkey.com/download/

GitHub Desktop 3.3.13 resolves several bugs. This is not a security update.
https://desktop.github.com/

NASM 2.16.02 resolves several bugs and improves dependency controls. This should be treated as a security update.
https://www.nasm.us/index.php

Node.js 18.20.1 is a security update.
https://nodejs.org/en/

Node.js 20.12.1 is a security update.
https://nodejs.org/en/

Node.js 21.7.2 is a security update.
https://nodejs.org/en/

Python 3.12.3 is a security updae.
https://www.python.org/downloads/windows/

Unreal Engine 5.3 adds dozens of new features and hundreds of changes. This is not a security update.
https://unrealengine.com/en-US/

Visual Studio Code 1.88 adds several new features. This is not a security update.
https://code.visualstudio.com/

Web Package Updates

These are likely to be of interest only to web developers.

Grocy 4.2.0 resolves several bugs. This is not a security update.
https://github.com/grocy/grocy

HumHub 1.15.4 resolves several bugs. This is not a security update.
https://www.humhub.com/en

SpamAssassin 4.0.1 improves compatibility. This is not a security update.
https://spamassassin.apache.org/downloads.cgi

WordPress 6.5 is a major update adding several new features and font controls. This is not a security update.
https://wordpress.org/

Akismet 5.3.2 resolves a couple bugs and adds support for new webhooks. This is not a security update.
https://wordpress.org/extend/plugins/akismet/

Antispam Bee 2.11.6 resolves several bugs and updates dependencies. This is not a security update.
https://wordpress.org/extend/plugins/antispam-bee/

BuddyPress 12.4.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 5.9.3 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Social Post Feed 4.2.3 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/custom-facebook-feed/

Interactive World Map 3.4.4 is a security update.
https://wordpress.org/extend/plugins/interactive-world-map/

My Sticky Bar 2.6.9 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

Really Simple CAPTCHA 2.3 flags compatibility requirements. This is not a security update.
https://wordpress.org/extend/plugins/really-simple-captcha/

Sucuri Security 1.8.43 updates license and improves notifications. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

W3 Total Cache 2.7.1 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/w3-total-cache/

WooCommerce 8.7.0 resolves over a hundred bugs and almost one hundred other issues. This is not a security update.
https://wordpress.org/extend/plugins/woocommerce/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2023-06-13

Welcome back, Folks!

Today is Patch Tuesday for June, 2023.

This month brings critical security updates for all supported Apple products, the end of all non-LTS versions of Windows 10 other than v22H2 (if you aren’t sure whether you are using LTS, you aren’t), and new security updates for every browser every single week since last month. That’s on top of the 180+ major hacks, and over 220 application updates this month.

Prepare yourself, there will be about 4.5 GB of updates for most devices this month.

This Month in Technology

Accellion FTA, Aer Lingus, airBaltic, Albany ENT & Allergy Services, Alvaria, Inc., Android, 60,000 malicious Android apps, millions of Android-based devices have been  pre-infected, Apria Healthcare, ASAS Health, Ascension Providence, Ascension Seton, Asian Health Services, Atomic Wallet, Augusta, Georgia, Bank Syariah Indonesia, Barracuda Email Security Gateway appliances (since 2022), BBC, Bluefield University, Boots, Brightline, Inc., Brightly Software SchoolDude, British Airways, Builders FirstSource Flex Plan, Bukkit and CurseForge Minecraft mods, Burton Snowboards, Capita, Casepoint (used by SEC, DOD and Pentagon), Celer, Children’s Health Insurance Program, Chilean army, Cisco Secure Client (formerly AnyConnect), Cisco Small Business Series Switches, City of Dallas, Texas, Clarke County Hospital, Credit Control Corp, Culbertson Memorial Hospital, D-Link D-View 8, Discord, Earlens Corporation, thousands of eCommerce sites, Eisai, Elgon Information Systems, Emby, Enzo Biochem, Essen Medical Associates, Extreme Networks, Farmalink, Fertility Specialists Medical Group, FortiOS, Franklin Templeton Canada, Franklin, Tennessee, GIGABYTE PCs, GitLab, Globalcaja, Goodwill Industries of Greater New York and Northern NJ, Inc., Google Chrome, over 30 Chrome extensions, Grant Regional Health Center, Great Expressions Dental Centers, Harvard Pilgrim Health Care, Hillsborough County Supervisors of Elections Office, Honda, HWL Ebsworth, Idaho Falls Community Hospital, Illinois Department of Healthcare and Family Services, Illinois Department of Human Services, IMA Financial Group, Inc., Infotel JSC, Intellihartx, iOS, Iowa Department of Health and Human Services (again!), iPhones, iSpace, Inc., Israeli organizations, ITx Companies, JD Group, Jimbos Protocol, Kaspersky, KeePass, Kiddowares Parental Control – Kids Place, L3Harris, Lacroix, Lancaster Orthopedic Group, Latitude Financial Services, Lehigh Valley Health Network, Luxottica, macOS, Madhya Pradesh Power Management Co, Managed Care of North America (MCNA) Dental, Marshall Information Services, LLC dba Primary Solutions, Martinique, MedInform, Inc., MEO, Mercy Home, Mercy Medical Center – Clinton, Inc., Microsoft Azure, Microsoft Exchange, Microsoft Visual Studio, Minnesota Department of Education, Mountain View Hospital, Mountain View RediCare, MOVEit Transfer (since 2021 – and more coming almost daily), MSI, NextGen Healthcare, North Shore Medical Labs, Norton Healthcare, Nova Scotia government, Onix Group LLC, Orbiter Finance, Oyate Health Center, Pacific Union College, thousands of PaperCut servers, PartsSource, Inc. Welfare Benefit Plan, Pearland ISD, Texas, PharMerica, Amazon PillPack, Pioneer Valley Ophthalmic Consultants, PC, 30 Portuguese financial institutions, R&B Corporation of Virginia, the defunct RaidForums, RenderDoc, RentoMojo, ReportLab, Rheinmetall AG, Ruckus Wireless Admin, Sacramento County, Salesforce ‘Ghost Sites’, Samsung mobile devices, Scandinavian Airlines, ScanSource, Seoul National University Hospital, Sesame, Inc., Shell Recharge, SimpleTire, Skolkovo Foundation, Solutran, South and Southeast Asia government, aviation, and telecommunication organizations, South East Regional Organised Crime Unit, Sparta Community Hospital District, State of Illinois, Strava, Swiss government, Synergy Hematology Oncology Medical Associates, T. Rowe Price Group, Inc., Tennessee Orthopaedic Clinics, The CSC Generation Holdings, Inc. Health and Welfare Plan, The Philadelphia Inquirer, Topcon Healthcare Solutions, Inc., Tornado Cash, Toyota Motor Corporation (over a decade), TP-Link routers, Trezor T Hardware Wallet, Tron, UI Community Home Care, Uintah Basin Healthcare, United Healthcare Services, Inc. Single Affiliated Covered Entity, University of Manchester, University of Rochester, Uranium Finance, “critical US infrastructure” since 2021, US communications infrastructure, US Department of Transportation, US government contractor ABB, Valley Orthopaedic Specialists, Vascular Center of Intervention, VMware Aria Operations for Networks, VMware ESXi servers, WhizComms, Windows 10 WordPad, Windows Internet Information Services, Windows XP activation, WordPress Advanced Custom Fields, WordPress Beautiful Cookie Consent Banner, WordPress Essential Addons for Elementor, WordPress Gravity Forms, WordPress Jetpack, Zacks Investment Research, Zellis, Zimbra, and Zyxel have reportedly been hacked or compromised this month.

ASUS routers, ChatGPT, GitHub, Microsoft 365, Microsoft Azure Portal, Microsoft OneDrive, Microsoft’s Outlook.com, Reddit, and ScanSource have suffered from outages this month.

Last months updates broke HP Office Jet printers, Surface laptop cameras, VPN performance, Windows Defender, Windows file copy, and Windows printing and audio playback.

30% of all internet traffic is malicious. Is anyone really surprised? Facebook has actually made progress against phishing by suing a registrar used primarily to create phishing domains.  The .zip TLD was released this month and it is already being used for malicious purposesMozilla was pushing full-screen ads for their VPN service. Google Ads remain one of the most common sources for malware.

Amazon has been fined $30 million over Ring and Alexa privacy violations. Microsoft will pay a mere $20 million for illegally collecting data on children in violation of COPPA. Meta (Facebook) has been fined $1.3 billion for moving data to US servers.

Call of Duty players can be identified on any platform violating their privacy. The American Hospital Association (AHA) doesn’t respect your privacy. People are sacrificing their tech, crypto and privacy in hopes of 15 minutes of fame.

Ford is so concerned about their spontaneous combustion issues, they’re advising owners of their vehicles to park outside.

While I’m not a big fan of Reddit, their new API rates and policies are going to be the death of many subreddits, since they’ll result in less automation by the good guys while not reducing the automation used by the bad guys.

Apple introduced Rapid Security Response (fast patching for security issues) last month, and have already caused panic among users.

The FDA has once-again expanded its own authority in what can only result in shrinking the food supply.

As expected, OAuth provides a fancy new “watering hole” target for attackers.

Now for the good news:

Microsoft will be killing Cortana later this year.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is huge this month. The typical computer should see roughly 4.5 GB in updates today. Let’s get started.

Windows 10 and Windows 11 versions 22H2 should now be installed on all supported hardware as all prior non-LTS versions are no longer supported.

Microsoft released updates to address 1,378 bugs including 73 vulnerabilities in .NET and Visual Studio, .NET Core, .NET Framework, ASP .NET, Azure DevOps, Microsoft Dynamics, Microsoft Edge (Chromium-based), Microsoft Exchange Server, Microsoft Office, Microsoft Office Excel, Microsoft Office OneNote, Microsoft Office Outlook, Microsoft Office SharePoint, Microsoft Power Apps, Microsoft Printer Drivers, Microsoft WDAC OLE DB provider for SQL, Microsoft Windows Codecs Library, NuGet Client, Remote Desktop Client, Role: DNS Server, SysInternals, Visual Studio, Visual Studio Code, Windows Authentication Methods, Windows Bus Filter Driver, Windows Cloud Files Mini Filter Driver, Windows Collaborative Translation Framework, Windows Container Manager Service, Windows CryptoAPI, Windows DHCP Server, Windows Filtering, Windows GDI, Windows Geolocation Service, Windows Group Policy, Windows Hello, Windows Hyper-V, Windows Installer, Windows iSCSI, Windows Kernel, Windows NTFS, Windows ODBC Driver, Windows OLE, Windows PGM, Windows Remote Procedure Call Runtime, Windows Resilient File System (ReFS), Windows Server Service, Windows SMB, Windows TPM Device Driver, Windows Win32K, and MSRT (~2 GB). This includes security updates. A reboot is required.

Apple released updates for macOS Ventura 13.4, macOS Monterey 12.6.6, macOS Big Sur 11.7.7, iOS 15.7.6, iOS 16.5, iPadOS 15.7.6, iPadOS 16.5, tvOS 16.5, watchOS 9.5.1, Safari 16.5, iTunes 12.12.9 for Windows, and Pro Video Formats 2.2.5. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 15.7.6 and 16.5 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.7.6 and 16.5 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 9.5.1 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 16.5 is a security update. Use System, Software Update to install the most current version.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Ventura (13.x) means that macOS Catalina (10.15) and older are no longer supported. If you can not install at least macOS Big Sur (11) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v22H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 23.5.2 resolves several bugs and improves reliability. This is not a security update.
https://www.amd.com/en/support

Crucial Storage Executive 9.01 doesn’t provide a changelog so should be treated as a security update.
https://www.crucial.com/support/storage-executive

Display Driver Uninstaller 18.0.6.4 adds command-line arguments to optimize removal and improves cleanup for AMD. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

DS4Windows 3.2.11 resolves several bugs and updates libraries. This should be treated as a security update.
https://github.com/Ryochan7/DS4Windows/releases/latest

Garmin Express 7.17.2 doesn’t provide a changelog so should be treated as a security update.
https://www.garmin.com/en-US/software/express/

Wacom Driver 6.4.2-3 adds training, help bar tips, and resolves several bugs. This is not a security update.
https://www.wacom.com/en-us/support/product-support/drivers

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.52.122 is a security update.
https://brave.com/

Google Chrome 114.0.5735.133 is a security update.
https://www.google.com/chrome/

Google Chrome 109.0.5414.149 (for Windows Server 2012) is a security update.
https://www.google.com/chrome/

Microsoft Edge 113.0.1774.57 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Microsoft Edge 109.0.1518.100 (for Windows Server 2012) is a security update.
https://www.microsoft.com/en-us/edge/business/download

Microsoft Edge WebView2 114.0.1823.43 is a security update.
https://developer.microsoft.com/en-us/microsoft-edge/webview2/

Firefox 114.0.1 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Vivaldi 6.1.3035.75 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

ProtonMail (Android) 3.0.15 is a security update.
https://proton.me/mail/download

Spark 3.6.0.50235 improves stability and resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.6.0.50236 improves stability and resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 102.12.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 7.1.12 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 7.1.0 adds User Account support. This is not a security update.
https://anydesk.com/en/downloads

curl 8.1.2 resolves dozens of bugs. This is not a security update.
https://curl.haxx.se/windows/

DNSDataView 1.71 resolves a cosmetic bug. This is not a security update.
https://www.nirsoft.net/utils/dns_records_viewer.html

Dropbox 175.4.5569 resolves several bugs. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 188.0.11.164 is a security update.
https://www.messenger.com/download

FileZilla Server 1.7.2 resolves several bugs and improves Let’s Encrypt compatibility. This is not a security update.
https://filezilla-project.org/

FreeFileSync 12.3 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 76.0 is a security update.
https://drive.google.com/start

IPInfoOffline 1.70 adds support for additional IP location databases. This is not a security update.
https://www.nirsoft.net/utils/ip_country_info_offline.html

MailEnable 10.46 is a security update.
https://www.mailenable.com/

MeshCentral 2.11.7849.20089 resolves several bugs and updates libraries. This is not a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.6.00.12455 resolves several bugs and adds lobby bypass, virtual front desk, and QR code sign-in for hotdesks. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 27.0 is a major update, with updates to libraries and resolves several bugs. This is a security update.
https://nextcloud.com/

Nmap 7.94 resolves several bugs, updates libraries, and adds dozens of new signatures. This is a security update.
https://nmap.org/

Pocketnet-GUI 0.8.49 improves IPFS support, adds option to purge local storage, and resolves several bugs. This is not a security update.
https://pocketnet.app/

PushBullet 501 doesn’t provide a changelog so should be treated as a security update.
https://www.pushbullet.com/

Signal 6.20.2 improves stability and adds scroll-to for mentions. This is not a security update.
https://signal.org/download/windows/
https://signal.org/download/macos/

Signal (Android) 6.22.8 doesn’t provide a changelog so should be treated as a security update.
https://signal.org/android/apk/

Skype 8.97.0.204 resolves several bugs. This is not a security update.
https://www.skype.com/

Syncthing 1.23.5 resolves several bugs. This is not a security update.
https://syncthing.net/

Technitium DNS Server 11.2 adds support for SVCB and HTTPS and unknown record types, PTR App, Weighted Round Robin App and resolves several bugs. This is not a security update.
https://technitium.com/dns/

Telegram 4.8.3 resolves several bugs. This is not a security update.
https://telegram.org/

USB Drive Log 1.12 adds sort-by. This is not a security update.
https://www.nirsoft.net/utils/usb_drive_log.html

Wget 1.21.4 is a security update.
https://eternallybored.org/misc/wget/

WinSCP 6.1 is a major update. This adds many features and resolves several bugs. This is a security update.
https://winscp.net/eng/index.php

Zoom 5.14.11.17466 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 3.0.9 resolves several bugs and improves tracking and interaction controls. This is not a security update.
https://en.3tene.com/

iTunes 12.12.9.4 is a security update.
https://www.apple.com/itunes/download/

Plex Desktop 1.70.2.3845 resolves several bugs and adds discover together. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.39.2.3822 adds sign-out and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.32.3.7192 adds support for new hardware and resolves several bugs. This is a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

GDevelop 5.1.164 resolves several bugs. This is not a security update.
https://gdevelop.io/download

Lego Studio 2.23.5.1 resolves several bugs. This is not a security update.
https://www.lego.com/en-us/ldd

PS5 23.01-07.40.00 resolves several bugs and improves stability. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Animate 22.0.10 and 23.0.2 are security updates.
https://helpx.adobe.com/security/products/animate/apsb23-36.html

Adobe Commerce and Magento Commerce 2.3.7-p4-ext-3, 2.4.0-ext-3, 2.4.1-ext-3, 2.4.2-ext-3, 2.4.3-ext-3, 2.4.4-p4, 2.4.5-p3, and 2.4.6-p1 are security updates.
https://helpx.adobe.com/security/products/magento/apsb23-35.html

Adobe Experience Manager 2023.4 and 6.5.17.0 are security updates.
https://helpx.adobe.com/security/products/experience-manager/apsb23-31.html

Adobe Substance 3D Designer 13.0.0 is a security update.
https://helpx.adobe.com/security/products/substance3d_designer/apsb23-39.html

Audacity 3.3.3 resolves several bugs. This is not a security update.
https://www.audacityteam.org/download/

ImageMagick 7.1.1-11 resolves dozens of bugs. This is a security update.
https://imagemagick.org/

Kdenlive 23.04.1 resolves several bugs. This is not a security update.
https://kdenlive.org/

LibreOffice Fresh 7.5.4 resolves 80 bugs. This is not a security update. Remember that the “Fresh” line is beta software so should be avoided by most users.
https://www.libreoffice.org/

LibreOffice 7.4.7 resolves over 50 bugs. While the 7.4 “Still” branch is now end of life, this should be used for the next 6 weeks before 7.5 is released as “Still.”
https://www.libreoffice.org/

Nextcloud Desktop 3.9.0 resolves dozens of bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.5.3 resolves over a dozen bugs. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 5.0.6 improves cosmetics and resolves several bugs. This is not a security update.
https://www.getpaint.net/

Calibre 6.21.0 resolves several bugs and adds output formats. This is not a security update.
https://calibre-ebook.com/

Adobe Reader DC 23.003.20201 resolves several bugs. This is not a security update.
https://get.adobe.com/reader

Adobe Reader DC Patch 23.001.20174 resolves a stability bug. This is not a security update.
https://get.adobe.com/reader

Adobe Reader DC Patch (Mac) 23.001.20177 resolves a stability bug. This is not a security update.
https://get.adobe.com/reader

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 2.6.2 resolves a rule parsing bug. This is not a security update.
https://github.com/countercept/chainsaw

KeePass 2.54 adds triggers, global URL overrides, password generator profiles, improvements to exports and reporting, and resolves several bugs. This is not a security update.
https://keepass.info/

OpenSSL 3.1.1 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

OpenSSL 1.1.1u is a security update.
https://www.openssl.org/source/

ProtonVPN (macOS) 3.1.4 resolves several bugs. This should be treated as a security update.
https://protonvpn.com/download

Radmin VPN 1.3.4570.5 doesn’t provide a changelog so should be treated as a security update.
https://www.radmin-vpn.com/

RogueKiller 15.10.0 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

SuperAntiSpyware 10.0.1252 is a security update.
https://www.superantispyware.com/download.html

Stinger 12.2.0.614 should be treated as a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

Tails 5.14 is a security update.
https://tails.boum.org/install/dvd/index.en.html

uBlock Origin 1.50.0 resolves dozens of bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Velociraptor 0.6.9 should be treated as a security update.
https://github.com/Velocidex/velociraptor/releases/latest

YARA 4.3.2 is a security update.
https://github.com/VirusTotal/yara/

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 29.1.2 resolves dozens of bugs. This is not a security update.
https://obsproject.com/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.1.0.8 adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

iMazing HEIC Converter 2.0.9 doesn’t provide a changelog so should be treated as a security update.
https://imazing.com/heic

MakeMKV 1.17.4 adds support for new encodings and resolves several bugs. This is not a security update.
https://www.makemkv.com/download/

PDF Creator 5.1.1 resolves a couple bugs. This is not a security update.
https://www.pdfforge.org/pdfcreator

StreamFab 6.1.2.6 adds support for new sources and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 1.0.2.0 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 8.10.7 resolves dozens of bugs. This is not a security update.
https://1password.com/downloads/mac/

1Password for Windows 8.10.7 resolves dozens of bugs. This is not a security update.
https://1password.com/downloads/windows/

7-Zip 23.00 resolves several bugs and improves performance in some situations. This is not a security update.
https://www.7-zip.org/

AppResourcesUsageView 1.05 adds sort-by option. This is not a security update.
https://www.nirsoft.net/utils/app_resources_usage_view.html

BatteryHistoryView 1.05 adds sort-by option. This is not a security update.
https://www.nirsoft.net/utils/battery_history_view.html

Bitwarden 2023.5.0 resolves several bugs. This is not a security update.
https://bitwarden.com/

CCleaner 6.12.10490 resolves several bugs. This is not a security update.
https://www.ccleaner.com/

ControlMyMonitor 1.37 adds support for abbreviated IDs and improves compatibility. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html

CurrPorts 2.75 adds support for additional IP location databases. This is not a security update.
https://www.nirsoft.net/utils/cports.html

Dell Command Update 4.9.0 resolves several bugs and improves stability. This should be treated as a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

Dell OS Recovery Tool 2.3.7515 doesn’t provide a changelog so should be treated as a security update.
https://www.dell.com/support/home/uk/en/ukbsdt1/drivers/osiso/recoverytool

dnGrep 3.2.330.0 resolves several bugs. This is not a security update.
https://dngrep.github.io/

email-oauth2-proxy 2023-05-18 resolves several bugs. This is not a security update.
https://github.com/simonrob/email-oauth2-proxy

ESEDatabaseView 1.72 adds sort-by and open recent file support. This is not a security update.
https://www.nirsoft.net/utils/ese_database_view.html

Everything 1.4.1.1024 is a security update.
https://www.voidtools.com/

Everything Toolbar 1.1.1 resolves a couple bugs. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

Fido 1.50 removes inactive downloads and adds UEFI Shell 2.2 23H1. This is not a security update.
https://github.com/pbatard/Fido/releases

FileTypesMan 1.97 resolves a support annoyance. This is not a security update.
https://www.nirsoft.net/utils/file_types_manager.html

Fing 3.3.1 resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

FullEventLogView 1.78 adds full screen mode. This is not a security update.
https://www.nirsoft.net/utils/full_event_log_view.html

Git SCM 2.41.0 resolves dozens of bugs. This is a security update.
https://git-scm.com/

Go 1.20.5 is a security update.
https://go.dev/

GoodSync 12.2.5 resolves several bugs. This is not a security update.
https://www.goodsync.com/

grepWin 2.0.15 resolves several bugs. This is not a security update.
https://github.com/stefankueng/grepWin/releases/latest

GUIPropView 1.25 adds sort-by and black background support. This is not a security update.
https://www.nirsoft.net/utils/gui_prop_view.html

Homedale 2.06 resolves a crash bug. This is not a security update.
https://www.the-sz.com/products/homedale/

HWiNFO 7.46 resolves several bugs. This is not a security update.
https://www.hwinfo.com/download/

InstalledAppView 1.07 adds sort-by support and resolves a high-DPI bug. This is not a security update.
https://www.nirsoft.net/utils/installed_app_view.html

LastActivityView 1.37 resolves a stability bug. This is not a security update.
https://www.nirsoft.net/utils/computer_activity_view.html

LiveTcpUdpWatch 1.50 adds ASN and Organization columns, and support for additional IP location databases. This is not a security update.
https://www.nirsoft.net/utils/live_tcp_udp_watch.html

ManageWirelessNetworks 1.11 adds sort by support. This is not a security update.
https://www.nirsoft.net/utils/manage_wireless_networks.html

MobileFileSearch 1.45 adds the ability to cancel search with Esc. This is not a security update.
https://www.nirsoft.net/utils/mobile_device_file_search.html

MultiMonitorTool 2.10 adds abbreviated ID support. This is not a security update.
https://www.nirsoft.net/utils/multi_monitor_tool.html

NetRouteView 1.40 adds several new columns and option to copy as route. This is not a security update.
https://www.nirsoft.net/utils/network_route_view.html

NetworkOpenedFiles 1.60 adds support for folder, user and computer filters. This is not a security update.
https://www.nirsoft.net/utils/network_opened_files.html

NTLite 2023.5.9257 resolves several bugs and improves compatibility. This is not a security update.
https://www.ntlite.com/download/

OpenToonz 1.7.1 resolves a stability bug. This is not a security update.
https://github.com/opentoonz/opentoonz/

OSForensics 10.0.1013 resolves several bugs. This is not a security update.
https://www.osforensics.com/download.html

AOMEI Partition Assistant 10.0 is a major update with cosmetic and functional changes. This is not a security update.
https://www.diskpart.com/

PingInfoView 2.30 adds high-resolution ping time support and the ability to hide disabled items. This is not a security update.
https://www.nirsoft.net/utils/multiple_ping_tool.html

PointerStick 6.26 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.70.1 improves stability. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Process Monitor 3.94 resolves a stability bug and restores Copy All functionality. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/procmon

PropertySystemView 1.20 adds CopyProperty command-line support. This is not a security update.
https://www.nirsoft.net/utils/windows_property_system_view.html

Recuva 1.53.2096 resolves a detection bug. This is not a security update.
https://www.ccleaner.com/recuva

RoboForm 9.4.8 resolves several bugs. This is not a security update.
https://www.roboform.com/

Rufus 4.1 resolves several bugs. This is not a security update.
https://rufus.ie/en_US/

SimpleWMIView 1.54 adds full screen and sort-by support. This is not a security update.
https://www.nirsoft.net/utils/simple_wmi_view.html

TeamViewer 15.42.7 resolves several bugs. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

Unity 2022.3.1 resolves dozens of bugs. This is a security update.
https://unity3d.com/get-unity/download/archive

WakeMeOnLan 1.91 updates the internal MAC addresses database. This is not a security update.
https://www.nirsoft.net/utils/wake_on_lan.html

WhyNotWin11 2.5.0.5 resolves several bugs and improves compatibility. This is not a security update.
https://github.com/rcmaehl/WhyNotWin11

WinGet 1.4.11071 resolves dozens of bugs and updates libraries. This is a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinRAR 6.22 improves reliability and resolves stability bugs. This is not a security update.
https://www.rarlab.com/

WizTree 4.14.0.1 resolves several bugs. This is not a security update.
https://www.diskanalyzer.com/

ZoomIt 7.0 adds several new features including screen recording, annotation and editing. This is not a security update.
https://learn.microsoft.com/sysinternals/downloads/zoomit

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 2022.2.1.20 resolves several bugs. This is not a security update.
https://developer.android.com/studio

cx_Freeze 6.15 resolves several bugs and improves compatibility. This is not a security update.
https://cx-freeze.readthedocs.io/en/latest/index.html

Get-IMAPAccessToken 2023.5.22 resolves a bug. This is not a security update.
https://github.com/DanijelkMSFT/ThisandThat/blob/main/Get-IMAPAccessToken.ps1

GitHub Desktop 3.2.4 resolves several bugs. This is not a security update.
https://desktop.github.com/

Godot 4.0.3 provides resolution for hundreds of bugs and feature issues. This is not a security update.
https://godotengine.org/

Node.js 20.3.0 updates libraries and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Python 3.11.4 is a security update.
https://www.python.org/downloads/windows/

SQLite 3.42.0 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Unreal Engine 5.2 adds dozens of new features and resolves several bugs. This is not a security update.
https://unrealengine.com/en-US/

Visual Studio Code 1.79.1 adds read-only, automatic copy, Git branch naming, and several other features. This is a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

PPSSPP 1.15.4 resolves several bugs. This is not a security update.
https://www.ppsspp.org/download/

Web Package Updates

These are likely to be of interest only to web developers.

Invision Community 4.7.10 adds Courses, improved email bounce handling, and resolves dozens of bugs. This is not a security update.
https://invisioncommunity.com/

HumHub 1.14.2 resolves several bugs. This is not a security update.
https://www.humhub.com/en

ISPConfig 3.2.10p1 resolves several bugs. This is not a security update.
https://www.ispconfig.org/ispconfig/download/

Joomla 4.3.2 is a security update.
https://www.joomla.org/

jQuery 3.7.0 resolves several bugs and integrates Sizzle directly into jQuery. This is not a security update.
https://code.jquery.com/

ownCloud Client 4.0.0.10896 resolves several bugs. This is not a security update.
https://owncloud.com/desktop-app/

phpList 3.6.13 improves updater process and resolves several bugs. This is not a security update.
https://www.phplist.org/

Piwigo 13.7.0 is a security update.
https://piwigo.org/

SMF 2.1.4 updates libraries and resolves several bugs. This is not a security update.
https://www.simplemachines.org/

WordPress 6.2.2 is a security update.
https://wordpress.org/

BuddyPress 11.2.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 5.7.7 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

myStickymenu 2.6.3 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

Really Simple CAPTCHA 2.2 updates minimum requirements and Apache directives. This is not a security update.
https://wordpress.org/extend/plugins/really-simple-captcha/

WooCommerce 7.7.2 resolves dozens of bugs. This is not a security update.
https://wordpress.org/extend/plugins/woocommerce/

WP Plugin Update Checker 5.1 improves GitHub and GitLab parsing and resolves a couple bugs. This is not a security update.
https://github.com/YahnisElsts/plugin-update-checker/releases/latest

WPBakery 6.13.0 is a security update.
https://wpbakery.com/

WPtouch 4.3.53 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/wptouch/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2022-09-13

Welcome back, Folks!

Today is Patch Tuesday for September, 2022. This month brings new major versions of iOS, tvOS, watchOS, and impending new versions of Windows 11 and Windows 10. That’s on top of the 120 major hacks, and over 150 application updates this month. Even with all that, it’s actually a pretty light month, with only about 3 GB of updates for most users.

This Month in Technology

Advanced (NHS MSP), Akamai, Akasa Air, Albanian government, Ally Bank, Amazon, Argentina’s Judiciary of Córdoba, Armed Forces General Staff agency of Portugal (EMGFA), Atlantic Dialysis Management Services, Atlassian Bitbucket Server, an “automotive supplier“, Avamere Health Services LLC, Baker & Taylor, Banorte, Block, BOGA Group, Bombardier Recreational Products (BRP), BrandNewTube, BSA Hospice of the Southwest, California Department of Corrections and Rehabilitation (CDCR), Celanese Medical Plan, Center Hospitalier Sud Francilien (CHSF), Cerebral Medical Group, P.A., Chester Upland School District, Chile Consumer Protection Agency, Chile’s government, Cisco (more), Common Ground Healthcare Cooperative, Conifer Revenue Cycle Solutions, CorrectHealth, CS.MONEY, Damart, DaVita Inc., DESFA, DigitalOcean, Dominican Republic’s Instituto Agrario Dominicano, DoorDash, EmergeOrtho, energy providers worldwide, Entrust, Eurocell, Family Medicine Centers, Farmville Internal Medicine, First Street Family Health, Forsyth County medical office, Franklin College, General Bytes, General Health System, Gestore dei Servizi Energetici SpA (GSE), Go-Ahead, Health Advantage, Henderson & Walton Women’s Center, P.C., Holdcroft Motor Group, HP Support Assistant, Hyundai, InterContinental Hotels Group PLC (IHG), IRS, Japan government, KeyBank, Kickstarter (?), LA USD (more), Lamoille Health Partners, LastPass, Lee County Emergency Medical Services, Liberty Counsel, MailChimp, Major Cineplex, Major Development PCL, Medical Mutual of Ohio, Methodist Craig Ranch Surgical Center, Methodist McKinney Hospital, Microsoft Teams, Montenegro government (and lied about it), Mossad, Nelnet Serving, Neopets, Nereus Finance, New Free DAO, NorthStar HealthCare Consulting LLC, Northwestern Medical Center, Novant Health, over 130 organizations via Okta, OMNI Healthcare, INC, OneTouchPoint, Onyx Technology LLC, Orange Cyberdefense, Overlake Medical Center & Clinics, Plex, Practice Resources LLC, Priti Patel Physician PC, Prowers  County Hospital District, PT Jasamarga Tollroad Operator, QNAP Photo Station, QuestionPro, Rug Pull Finder, Samsung, San Diego American Indian Health Center, San Francisco 49ers, Sando, Savannah College of Art and Design, Sephora, SFERRA, Sheppard Robson, Shipyaari, ShitExpress, Signal, SitePoint, South Staffordshire Water, Specialized Treatment Facility, Sri Lanka Department of Examinations, Starlink’s Dishy McFlatface, START.ru, Stratford University, TAP Air Portugal, Tesla cars, The North Face, TikTok, Trinity Health, Tulsa Tech, Twilio, Twitter, U-Haul, UK’s National Health Service, USAble Mutual Insurance Company, Valley Baptist Medical Center – Brownsville, Valley Baptist Medical Center – Harlingen, Warner Norcross & Judd, Xinai Electronics, and Zimbra Collaboration Suite have reportedly been hacked or compromised this month.

75% of retailers and 52% of supply chains report being hacked in 2021. Those numbers don’t reflect well on the security state of the nation. 🙁

Patreon fired their entire security department. What this means for you: if you’re still using Patreon, now is the best time to stop.  The Zoom installer can get you hacked. Facebook and Twitter will soon be shunning the CIA. (/sarc)

After updates last month, MS Office would crash if you floated your mouse over Outlook contacts. The version was pulled, but a new version wasn’t released until today. Microsoft released a virus definitions update that falsely identified every Electron app as malware on September 4th (the Labor Day holiday weekend). While it took only 13 hours before they released a fix, it was 13 hours too long for many who thought their browsers had been compromised. Edge 105 wouldn’t start if you had policies enabled relating to data reporting. Completely removing the policies was the only workaround. Tabs are coming to Windows Explorer in a “Moment.” I think they should probably call them Hot Flashes. Or Whims.

The only significant outages this month were Microsoft Azure and Microsoft 365.

End-of-life (EOL) means end-of-life. Don’t expect vendors to fix critical vulnerabilities in EOL hardware or software. Usually. This is a win for Apple. This isn’t. And this is just sad.

Google finished their purchase of Mandiant. Even Lloyd’s of London is taking a page out of the terrorism handbook. The IoT (Internet of Things) is far less secure than they claim. In an approach that could only be described as inevitable, the anti-cheat software used to prevent cheating in a video game is being abused to hack computers with it installed.

The concept of software “permissions” is fatally flawed. While this article only demonstrates how it effected the clipboard, it’s a timely reminder to keep your camera and mic physically disabled whenever possible.

When the Federal government has no respect for the law, is it any surprise that law enforcement are tracking you without warrants. Duh.

Now for the good news:

While there’s not a lot of good news in tech, we can at least have some fun with it. Check out these barcode ponies.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is about average this month. The typical computer should see roughly 3 GB in updates today. Let’s get started.

Microsoft released updates to address 64 vulnerabilities in .NET and Visual Studio, .NET Framework, Azure Arc, Cache Speculation, HTTP.sys, Microsoft Dynamics, Microsoft Edge (Chromium-based), Microsoft Graphics Component, Microsoft Office, Microsoft Office SharePoint, Microsoft Office Visio, Microsoft Windows ALPC, Microsoft Windows Codecs Library, Network Device Enrollment Service (NDES), SPNEGO Extended Negotiation, Visual Studio Code, Windows Common Log File System Driver, Windows Credential Roaming Service, Windows Defender, Windows Distributed File System (DFS), Windows DPAPI (Data Protection Application Programming Interface), Windows Enterprise App Management, Windows Event Tracing, Windows Group Policy, Windows IKE Extension, Windows Kerberos, Windows Kernel, Windows LDAP – Lightweight Directory Access Protocol, Windows ODBC Driver, Windows OLE, Windows Photo Import API, Windows Print Spooler Components, Windows Remote Access Connection Manager, Windows Remote Procedure Call, Windows TCP/IP, Windows Transport Security Layer (TLS), and MSRT (~3 GB). This includes security updates. A reboot is required.

Apple released updates for iOS 12.5.6 and 16.0, iPadOS 15.6.1, macOS Big Sur 11.7, macOS Monterey 12.5.1 and 12.6, Safari 15.6.1 and 16.0. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 12.5.6 and 16.0 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.6.1 is a security update. Use Settings, General, Software Update to install the most current update.

tvOS 16.0 is a security update. Use System, Software Update to install the most current version.

watchOS 9.0 is a security update. Use the Watch app on your iPhone to install the most current version.

Google Chrome OS 105.0.5195.112 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The new versions of Windows 10 and Windows 11 are expected within the next month. This release is the first in Microsoft’s new “Moments” behavior. We knew this would eventually happen last year when they threw in the towel on their 6-month OS release cadence and switch to a 1-year cadence, then last month announced that they would instead release a new major build every 3 years but release smaller feature updates (called “Moments”) whenever they wanted to. I think they missed their chance to call them “Whims”. If their recent cadence changes demonstrate anything, it’s that it’s all on a Windows Whim anyway. 🙂

The release of macOS Monterey (12.x) means that macOS Mojave (10.14) and older are no longer supported. If you can not install at least macOS Catalina (10.15) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v21H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 12 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v21H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 22.8.2 resolves several bugs and improves compatibility. This is not a security update.
https://www.amd.com/en/support

BullZip PDF Printer 14.0.0.2944 removes features. This is not a security update.
https://www.bullzip.com/products/pdf/info.php#download

Dymo Connect for Desktop 1.3.2.18 improves compatibility, but still not supported on Windows 11. This is not a security update.
https://www.dymo.com/label-makers-printers/labelwriter-label-printers/dymo-labelwriter-450-duo-thermal-label-printer/SAP_1752267.html

Intel Driver and Support Assistant 22.5.34 improves stability and resolves several bugs. This is not a security update.
https://www.intel.com/p/en_US/support/detect

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.43.89 is a security update.
https://brave.com/

Google Chrome 105.0.5195.102 is a security update.
https://www.google.com/chrome/

Microsoft Edge 105.0.1343.33 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 104.0.2 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 102.2.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Vivaldi 5.4.2753.47 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.10.5 is a security update.
https://getmailspring.com/

Thunderbird 102.2.2 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 7.0.14 is a security update.
https://anydesk.com/en/downloads

curl 7.85.0 resolves over a hundred bugs. This is a security update.
https://curl.haxx.se/windows/

Dropbox 156.4.4908 improves context menu behavior. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 159.0.0.23.221 is a security update.
https://www.messenger.com/download

FreeFileSync 11.25 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 63.0 is a security update.
https://drive.google.com/start

Mumble 1.4.274 resolves over a dozen bugs. This is not a security update.
https://www.mumble.info/

Nextcloud Server 24.0.5 updates libraries and resolves dozens of bugs. This is not a security update.
https://nextcloud.com/

Nmap 7.93 is a security update.
https://nmap.org/

Npcap 1.71 is a security update.
https://nmap.org/npcap/

Omada Software Controller 5.5.6 improves reliability, compatibility, and resolves an access bug. This is not a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Pocketnet-GUI 0.8.11 resolves several bugs. This is not a security update.
https://pocketnet.app/

Signal 5.58.0 doesn’t provide a detailed changelog so should be treated as a security update.
https://signal.org/download/windows/

Skype 8.87.0.406 resolves several bugs and adds quoting for all content types. This is not a security update.
https://www.skype.com/

Syncthing 1.21.0 resolves two bugs and adds several new features. This is not a security update.
https://syncthing.net/

Telegram 4.1.1 resolves several bugs. This is not a security update.
https://telegram.org/

Trillian 6.5.0.24 improves reliability, media and diagnostics. This is not a security update.
https://www.trillian.im/

WinSCP 5.21.3 resolves a couple bugs. This is not a security update.
https://winscp.net/eng/index.php

Zoom 5.11.11.8425 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 3.0.4 resolves several bugs. This is not a security update.
https://en.3tene.com/

iTunes 12.12.5.1 is a security update.
https://www.apple.com/itunes/download/

Picard 2.8.3 resolves a crash bug. This is not a security update.
https://picard.musicbrainz.org/

Plex Desktop 1.53.1.3225 improves watchlist, resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.25.1.3248 resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.28.2.6151 resolves a stability bug. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Epic Games 14.2.1 resolves several bugs. This is not a security update.
https://www.epicgames.com/

GameMaker Studio 2022.8.1.37 adds several new features, removes redundant and unused features, and resolves over 150 bugs. This is not a security update.
https://www.yoyogames.com/en/gamemaker

Lego Studio 2.22.8.1 resolves several bugs. This is not a security update.
https://www.lego.com/en-us/ldd

PS4 10.0 adds zoom and magnify options in the browser, and improves Remote Play. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps4/system-software/

PS5 22.02-06.00.00 adds dozens of new features and bug fixes. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2022.08.18 resolves several bugs. This is not a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Animate 21.0.12 and 22.0.8 are security updates.
https://helpx.adobe.com/security/products/animate/apsb22-54.html

Adobe Bridge 12.0.3 and 11.1.4 are security updates.
https://helpx.adobe.com/security/products/bridge/apsb22-49.html

Adobe Experience Manager 6.5.14.0 is a security update.
https://helpx.adobe.com/security/products/experience-manager/apsb22-40.html

Adobe Illustrator 23.5 and 25.4.8 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb22-55.html

Adobe InCopy 17.4 and 16.4.3 are security updates.
https://helpx.adobe.com/security/products/incopy/apsb22-53.html

Adobe InDesign 17.4 and 16.4.3 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb22-50.html

Adobe Photoshop 22.5.9 and 23.5 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb22-52.html

Adobe Reader DC 22.002.20212 is a security update.
https://get.adobe.com/reader

Calibre 6.4.0 adds several new management and organizational features, and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Krita 5.1.0 resolves dozens of bugs. This is not a security update.
https://krita.org/en/download/krita-desktop/

LibreOffice Fresh 7.4.1 adds over 500 bug fixes and features changes. This is a security update. Please remember that LibreOffice Fresh is beta software. Most users should use LibreOffice Still.
https://www.libreoffice.org/

LibreOffice 7.3.6 resolves over 50 bugs. This is not a security update.
https://www.libreoffice.org/

Nextcloud Desktop 3.6.0 resolves dozens of bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.4.5 updates libraries and resolves a dozen bugs. This should be treated as a security update.
https://notepad-plus-plus.org/

Paint.net 4.3.12 resolves several bugs. This is not a security update.
https://www.getpaint.net/

PDF-XChange Editor 9.4.363.0 resolves several stability and reliability bugs. This is not a security update.
https://www.tracker-software.com/product/pdf-xchange-editor

Security Software Updates

One or more of these is likely to be of interest to most people.

.NET Framework 4.8.1 adds native support for Arm64, forms, and tooltips improvements. This is not a security update.
https://dotnet.microsoft.com/en-us/download/dotnet-framework/net481

Hashcat 6.2.6 adds a return code for self-test failure. This is not a security update.
http://hashcat.net/hashcat/#downloadlatest

Johnny 2.2 adds several new modes, file formats, export options and resolves several bugs. This is not a security update.
https://openwall.info/wiki/john/johnny

KeePass 2.52 adds several new features, improves GUI and automation, and resolves a couple bugs. This is not a security update.
https://keepass.info/

ProtonVPN 2.0.6 improves DNS resolution. This is not a security update.
https://protonvpn.com/download

ProtonVPN (macOS) 3.0.2 now automatically logs you in when visiting the ProtonVPN website. This is not a security update.
https://protonvpn.com/download

RogueKiller 15.6.1 updates core, adds clipboard protection, and resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

SanDisk PrivateAccess 6.3.10 doesn’t provide a changelog so should be treated as a security update.
https://kb.sandisk.com/app/answersweb/detailweb/a_id/21996

Tails 5.4 is a security update.
https://tails.boum.org/install/dvd/index.en.html

uBlock Origin 1.44.2 resolves several bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Velociraptor 0.6.6 resolves several bugs. This is not a security update.
https://github.com/Velocidex/velociraptor/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 28.0.1 adds dozens of new features, bug fixes, and performance improvements. This is not a security update.
https://obsproject.com/

ScreenToGif 2.37.1 resolves a couple bugs. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.0.8.6 adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

StreamFab 5.0.5.2 improves reliability and performance with some websites. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 6.0.13 resolves several bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 8.9.4 resolves dozens of bugs. This is not a security update.
https://1password.com/downloads/mac/

1Password for Windows 8.9.5 resolves dozens of bugs. This is not a security update.
https://1password.com/downloads/windows/

AOMEI Partition Assistant 9.10.0 resolves several bugs and adds ability to delete large files. This is not a security update.
https://www.diskpart.com/

Agent Ransack 2022.3341 updates libraries and resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

CCleaner 6.03.10002 increases the nag factor and resolves several crash bugs. This is not a security update.
https://www.ccleaner.com/

ControlMyMonitor 1.36 adds option to start as hidden. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html

Coreinfo 3.53 now handles NUMA nodes with more than 64 processors. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/coreinfo

CPU-Z Installer 2.02 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

Cygwin 3.3.6 resolves a dozen bugs. This is not a security update.
https://cygwin.com/

DesktopOK 10.16 resolves a couple bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 3.0.154.0 resolves several bugs. This is not a security update.
https://dngrep.github.io/

Drive Snapshot 1.50 adds SFTP support and support for newer operating systems. This is not a security update.
http://www.drivesnapshot.de/en/

Everything 1.4.1.1020 is a security update.
https://www.voidtools.com/

Fido 1.31 improves compatibility. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3341 updates libraries and resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Git SCM 2.37.3 resolves several bugs. This is not a security update.
https://git-scm.com/

GoodSync 12.0.2 resolves dozens of bugs and improves compatibility. This is a security update.
https://www.goodsync.com/

NTLite 2.3.8.8890 improves compatibility. This is not a security update.
https://www.ntlite.com/download/

osquery 5.5.1 adds and updates several new tables, and resolves several bugs. This is not a security update.
https://osquery.io/downloads

PointerStick 5.95 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.62.0 adds Screen Ruler, Quick Accent, Text Extractor (OCR), and resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

ScreenConnect 22.7.8783.8255 resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

SearchMyFiles 3.22 resolves a couple bugs. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

SimpleWMIView 1.52 adds option to show milliseconds. This is not a security update.
https://www.nirsoft.net/utils/simple_wmi_view.html

Ookla Speedtest CLI 1.2.0
https://www.speedtest.net/apps/cli

Sysmon 14.0 adds a new event type, FileBlockExecutable, that prevents processes from creating executable files in specified locations, and includes several performance improvements and bug fixes. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

TcpLogView 1.36 is a security update.
https://www.nirsoft.net/utils/tcp_log_view.html

TeamViewer 15.33.7 resolves several bugs. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

TraceRouteOK 3.13 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK

Unity 2022.1.16 updates libraries and resolves dozens of bugs. This is not a security update.
https://unity3d.com/get-unity/download/archive

USBDeview 3.06 resolves several bugs. This is not a security update.
https://www.nirsoft.net/utils/usb_devices_view.html

WhyNotWin11 2.5.0.3 resolves several bugs. This is not a security update.
https://github.com/rcmaehl/WhyNotWin11

WinScan2PDF 8.22 adds reverse scan order. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 4.10 resolves several bugs. This is not a security update.
https://www.diskanalyzer.com/

Developer Updates

These are unlikely to be of interest to most people.

ADB 33.0.3 resolves several bugs. This is a security update.
https://developer.android.com/studio/releases/platform-tools

AutoHotkey 1.1.34.04 resolves several bugs. This is a security update.
https://www.autohotkey.com/download/

Docker Desktop 4.12.0 upgrades libraries and fixes dozens of bugs. This is a security update.
https://www.docker.com/products/docker-desktop

Get-IMAPAccessToken 2022.9.1 improves consistency and updates documentation. This is not a security update.
https://github.com/DanijelkMSFT/ThisandThat/blob/main/Get-IMAPAccessToken.ps1

Go 1.19.1 is a security update.
https://go.dev/

GitHub Desktop 3.0.8 resolves several bugs. This is not a security update.
https://desktop.github.com/

Node.js 18.9.0 updates libraries and resolves several bugs. This should be treated as a security update.
https://nodejs.org/en/

Node.js 16.17.0 updates libraries and resolves several bugs. This should be treated as a security update.
https://nodejs.org/en/

SQLite 3.39.3 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.71.1 is a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

PPSSPP 1.13.2 resolves several bugs. This is not a security update.
https://ppsspp.org/downloads.html

VirtualBox 6.1.38 resolves several bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Dada Mail 11.19.0 resolves several bugs, adds new features, and updates libraries. This is a security update.
https://dadamailproject.com/

HumHub 1.12.1 resolves several bugs. This is not a security update.
https://www.humhub.com/en/download

Joomla 4.2.2 is a security update.
https://www.joomla.org/

jQuery 3.6.1 resolves several bugs. This is not a security update.
https://code.jquery.com/

MailEnable 10.41 updates utilities, and resolves over a dozen bugs. This is not a security update.
https://www.mailenable.com/

OpenCart 4.0.1.1 resolves several bugs. This should be treated as a security update.
https://www.opencart.com/

ownCloud Client 2.11.1.8438 resolves several bugs. This is not a security update.
https://owncloud.com/desktop-app/

WordPress 6.0.2 is a security update.
https://wordpress.org/

Autoptimize 3.1.1.1 resolves a stability bug. This is not a security update.
https://wordpress.org/extend/plugins/autoptimize/

BuddyPress 10.4.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 5.6.3 adds new validation features. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.0 resolves several bugs and adds new options within the installer. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers

myStickymenu 2.6 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

Redirection 5.3.3 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/redirection/

Simple Lightbox 2.9.1 adds support for new media formats, improves compatibility, and resolves a validation bug. This is not a security update.
https://wordpress.org/extend/plugins/simple-lightbox/

Slider Revolution 6.5.31 resolves a minor bug. This is not a security update.
https://revolution.themepunch.com/

Sucuri Security 1.8.35 resolves a referer bug. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

WooCommerce 6.8.2 resolves dozens of bugs, improves reliability, compatibility and adds several new tests and flows. This is a security update.
https://wordpress.org/extend/plugins/woocommerce/

WP Mail SMTP 3.5.2 resolves a self-diagnostic bug. This is not a security update.
https://wordpress.org/extend/plugins/wp-mail-smtp/

WPtouch 4.3.44 is a security update.
https://wordpress.org/extend/plugins/wptouch/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

 

Updates 2022-02-08

Welcome back, Folks!

Today is Patch Tuesday for February, 2022.

It’s only the beginning. February tends to be “patch it once, whoops, patch it again” month most years, so expect another cycle later in the month.

This Month in Technology

Abington Memorial Hospital (dba Jefferson Abington Hospital), dozens of WordPress  Themes and Plugins by AccessPressAditya Birla Fashion and RetailAdvocates, Inc., Albany Family DentistryAlbuquerque Public SchoolsAllegheny Health Network Home Infusion, LLCArgo CDArnprior Regional HealthAWS GlueBoxBTC-AlphaCaring CommunitiesChico StateCisco StarOSColorado Department of Human ServicesCounty of Kings (CA)Crypto.comDelta ElectronicsDigital Insurance, LLC doing business as OneDigital, Evos in the NetherlandsFiondella, Milone & LaSaracina, LLPGlobal Affairs CanadaGolden State DermatologyGoodwillGreensward AcademyGriggsville-Perry School DistrictHensoldtIDEMIA biometric ID hardwareIndependence Blue Cross, International Committee of the Red CrossiRise Florida Spine and Joint Institute, LLCKP SnacksLympoMcAfee Enterprise (Trellix)various medical devicesMedical Healthcare Solutions, Inc., Medical Review Institute of AmericaMemorial Health SystemMeterMidland UniversityMillennium Eye Care LLCMonclerMotorolaMultichainNews Corp, publisher of The Wall Street JournalNobel FoundationOiltanking in GermanyOlympic Games AppOpenSubtitles, Oscar Buckeye State Insurance CorporationOscar Health Plan of CaliforniaOscar Insurance Company of FloridaOscar Insurance Corporation of OhioPace Center for GirlsPanasonicPellissippi State Community College in TennesseePennsbury School DistrictPhiladelphia FIGHT Community Health CentersPolkitPractolytics LLCPumaR.R. DonnellyRaveco MedicalRedDoorzSEA-Invest in BelgiumSecuritasSegwaySeneca Family of AgenciesSouth City HospitalSpencer Gifts LLC Health and Welfare Benefit PlanSt. Lucie County’s Drug Screening LabSwiss Federal RailwaysSwissportTaylor Regional HospitalThai University Central Admission SystemThomas Jefferson University Hospital, Inc., Ubiquiti’s UniFi NetworkUniversity of Arkansas for Medical SciencesUpstoxVantage Holding Company, LLCVolunteers of America Southwest CaliforniaWalgreen Co., Washington Department of LicensingWormhole, and Zimbra have been hacked.

GitHubDiscord, and Telegram have suffered major outages.

Phishing is proving to be even more effective against multi-factor authentication (MFA), as I’ve warned for decades. UPnP is still the worst network design feature. Buy an expensive GPU, gift your identity. Firefox’s “private” email relay service has been added to disposable email blacklists. As expected. Target, the premier member of the “hacked every month club“, is releasing the source code for some of their security software. Google Drive is flagging files containing the number “1” as violating copyrights. VPN companies Nord and Surfshark will merge. 11th and 12th generation Intel CPUs will not be able to play Blu-ray UHD disks.

The IRS is now mandating the use of a private third-party in order to access your own IRS information online. But wait, there’s more! The company, id.me, conceals their own identity and hides their WHOIS data. Tax-filers are already being phished with a threat of refunds being cancelled. The worst news: Nvidia has called off its efforts to acquire Arm.

Now for the good news:

The US Department of Justice has indicted 6 India Call Centers for Scams Targeting Seniors. Maybe the amount of scam calls we get will decrease? I doubt it though, considering the vast increase I’ve received in the last month. 🙁

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday this month is almost back to normal. Well, for now. The typical computer should see roughly 1.8 GB in updates today. Let’s get started.

Microsoft released updates for .NET, Windows, Azure Data Explorer, Kestrel Web Server, Microsoft DNS Server, Microsoft Dynamics, Microsoft Edge, Microsoft Office, Microsoft Office Excel, Microsoft Office Outlook, Microsoft Office SharePoint, Microsoft Office Visio, Microsoft OneDrive, Microsoft Teams, Microsoft Windows Codecs Library, Power BI, Roaming Security Rights Management Services, SQL Server, Visual Studio Code, Windows Common Log File System Driver, Windows DWM Core Library, Windows Hyper-V, Windows Kernel, Windows Kernel-Mode Drivers, Windows Named Pipe File System, Windows Print Spooler Components, Windows Remote Access Connection Manager, Windows Remote Procedure Call Runtime, Windows User Account Profile, Windows Win32K, and MSRT (~1.4 GB). This includes security updates. A reboot is required.

Apple released updates for iOS 15.3 and 15.2.1, iPadOS 15.3 and 15.2.1, tvOS 15.3, watchOS 8.4.1, Safari 15.3, macOS Monterey 12.2, macOS Big Sur 11.6.3, and Security Update 2022-001 Catalina. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 15.3 and 15.2.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.3 and 15.2.1 are security updates. Use Settings, General, Software Update to install the most current update.

tvOS 15.3 is a security update. Use System, Software Update to install the most current version.

watchOS 8.4.1 is a security update. Use the Watch app on your iPhone to install the most current version.

Google Chrome OS 98.0.4758.91 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Monterey (12.x) means that macOS Mojave (10.14) and older are no longer supported. If you can not install at least macOS Catalina (10.15) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v21H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 6 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v21H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 6 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.4.8 is a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Daemon Tools Lite 11.0.0 adds new image support, DD write, and resolves several other bugs. This is a security update.
https://www.daemon-tools.cc/products/dtLite

Logi Bolt App 1.2.6024 adds support for the Logitech Unifying Adapter and resolves several bugs. This is not a security update.
https://support.logi.com/hc/en-us/articles/4418089333655

Logitech Options 9.50.269 is a security update.
https://support.logi.com/hc/en-us/articles/360025297893

Nvidia 473.04 is a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.35.100 is a security update.
https://brave.com/

Google Chrome 98.0.4758.80 is a security update.
https://www.google.com/chrome/

Microsoft Edge 98.0.1108.43 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 97 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 91.6 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Vivaldi 5.0.2497.48 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 91.5.1 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

Mumble 1.4.230 is a major update resolving dozens of bugs, adding many new features and introducing true plugin support. This is not a security update.
https://www.mumble.info/downloads/

Prosody 0.11.13 is a security update.
https://prosody.im/download/start

Telegram 3.5.2 resolves several bugs and improves reactions. This is not a security update.
https://telegram.org/

Trillian Mac 6.4.0.4 improves compatibility and resolves several bugs. This is not a security update.
https://www.trillian.im/

BrowsingHistoryView 2.51 adds Visit Duration and improves Visited From. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

Dropbox 141.4.3299 doesn’t provide a changelog so should be treated as a security update.
https://www.dropbox.com/

FreeFileSync 11.17 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 55.0 adds integrated desktop search, resolves several bugs and improves performance. This is not a security update.
https://drive.google.com/start

Omada Software Controller 5.0.30 adds newer hardware support, 2FA for Cloud Access, DHCP reservations in Services, and resolves dozens of bugs. This is a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Syncthing 1.19.0 resolves a bug and improves ignore patterns. This is not a security update.
https://syncthing.net/

Zoom 5.9.3.3169 resolves several bugs, adds new features (and requirements) and controls. This is a security update.
https://zoom.us/

Java 8u321 is a security update.
https://www.java.com/en/download/manual.jsp

Media Updates

These are unlikely to be of interest to most people.

Flickr Downloadr 3.4.5.1 only updates the packager. This is not a security update.
https://flickrdownloadr.com/downloads/

Picard 2.7.3 resolves the launcher bug. This is not a security update.
https://picard.musicbrainz.org/

Plex Desktop 1.40.1.2823 resolves a packaging error in the installer. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.10.0.2819 resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.25.5.5492 resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Epic Games 13.1.7 resolves a couple bugs and prepares for feature changes. This is not a security update.
https://www.epicgames.com/

GameMaker Studio 2022.1.1.610 resolves several bugs. This is not a security update.
https://www.yoyogames.com/en/gamemaker

Nintendo Switch 13.2.1 improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

Steam 2022.01.20 resolves several bugs. This is not a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Office Updates

One or more of these are likely to be of interest to most people.

Adobe After Effects 22.2 and 18.4.4 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb22-09.html

Adobe Creative Cloud Desktop 2.7.0.15 is a security update.
https://helpx.adobe.com/security/products/creative-cloud/apsb22-11.html

Adobe Illustrator 26.0.3 and 25.4.4 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb22-07.html

Adobe Photoshop 22.5.5 and 23.1.1 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb22-08.html

Adobe Premiere Rush 2.3 is a security update.
https://helpx.adobe.com/security/products/premiere_rush/apsb22-06.html

Artweaver 7.0.11 is a security update.
https://www.artweaver.de/

Atom 1.59.0 resolves several bugs. This is not a security update.
https://atom.io/

Blender 3.0.1 doesn’t provide a changelog so should be treated as a security update.
https://www.blender.org/download/

Inkscape 1.1.2 resolves over 40 bugs, improves stability and reliability. This is not a security update.
https://inkscape.org/release/

LibreOffice Fresh 7.3.0 resolves hundreds of bugs. This is not a security update. The “Fresh” line is beta software and should be avoided in favor of the “Still” line whenever possible.
https://www.libreoffice.org/

LibreOffice Still 7.2.5 resolves almost a hundred bugs. This is not a security update.
https://www.libreoffice.org/

Nextcloud Desktop 3.4.2 resolves several bugs. This should be treated as a security update.
https://nextcloud.com/

Notepad++ 8.3 improves support for large files and resolves several bugs. Be aware there may be plugin stability issues for the near future. This is not a security update.
https://notepad-plus-plus.org/

Scribus 1.5.8 improves dark mode, import, PDF export, and resolves several bugs. This is not a security update.
https://www.scribus.net/

Calibre 5.36.0 improves metadata parsing and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Kindle for PC 1.34.63103 doesn’t provide a changelog so should be treated as a security update.
https://www.amazon.com/kindleforpc

Security Software Updates

One or more of these is likely to be of interest to most people.

MalwareBytes Anti-Malware 4.5.2 resolves several bugs. This is not a security update.
https://www.malwarebytes.org/antimalware/

MalwareBytes Anti-Malware Mac 4.14 improves up-sell ability. This is not a security update.
https://www.malwarebytes.com/mac/

OnionShare 2.5 is a security update.
https://onionshare.org/

RogueKiller 15.2.0 adds several new features and cosmetics. This is not a security update.
https://www.adlice.com/download/roguekiller/

Tails 4.27 updates components and libraries. This is a security update.
https://tails.boum.org/install/dvd-download/index.en.html

uBlock Origin 1.41.0 adds dark mode and resolves several bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

QubesOS 4.1.0 is a major update, with updated components, improved granular controls, new features and resolves many bugs. This is a security update.
https://www.qubes-os.org/downloads/

Capture Updates

These are unlikely to be of interest to most people.

VideoCacheView 3.09 improves compatibility with new Chromium-based browsers. This is not a security update.
https://www.nirsoft.net/utils/video_cache_view.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.0.6.0 resolves several crash bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

Agent Ransack 2022.3294 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

Autoruns 14.08 resolves several bugs. This should be treated as a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/autoruns

ControlMyMonitor 1.35 adds display filter options. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html

Cygwin 3.3.4 resolves several bugs. This is not a security update.
https://cygwin.com/

DesktopOK 9.61 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 3.0.0 improves the build process and now generates signed packages, and resolves several bugs. This is not a security update.
https://dngrep.github.io/

Everything CLI 1.1.0.23 adds support for long file names. This is not a security update.
https://www.voidtools.com/

Everything Toolbar 0.7.4 resolves a first-boot filter bug. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

Fido 1.28 adds support for Windows 11 21H2 v1. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3294 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Git SCM 2.35.1 resolves dozens of bugs. This is not a security update.
https://git-scm.com/

GoodSync 11.10.3 resolves several compatibility bugs. This is not a security update.
https://www.goodsync.com/

Kingston SSD Manager 1.5.1.6 doesn’t provide a changelog so should be treated as a security update.
https://www.kingston.com/us/support/technical/ssdmanager

NTLite 2.3.3.8585 adds new settings, upgrades components, and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

PowerToys 0.55.1 resolves several bugs and improves reliability. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Process Monitor 3.88 improves stability. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/procmon

Macrium Reflect 8.0.6525 improves media creation, compatibility, and resolves several bugs. This is not a security update.
https://www.macrium.com/reflectfree

RoboForm 9.2.4 improves Basic Auth support and resolves several bugs. This is not a security update.
https://www.roboform.com/

Samsung Magician 7.0.1 doesn’t provide a changelog, so should be treated as a security update.
https://www.samsung.com/semiconductor/minisite/ssd/download/tools/

SmartMonTools 7.2 significantly improves field detection and reporting, offers YAML output, drive database extensions, and other fixes. This is not a security update.
https://smartmontools.org/

Sysmon 13.32 improves compatibility. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

TCPView 4.17 improves stability. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/tcpview

VMMap 3.32 improves stability. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/vmmap

Windows 11 RCT 1.4.0 adds support for newer hardware. This is not a security update.
https://bytejams.com/

WinRAR 6.10 adds support for new formats, improved compatibility, resolves several bugs, and optimizes user interface. This is not a security update.
https://www.rarlab.com/

ZoomIt 5.0 adds support for Windows 11 and resolves several bugs. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/zoomit

Developer Updates

These are unlikely to be of interest to most people.

ADB 32.0.0 adds native M1 support. This is not a security update.
https://developer.android.com/studio/releases/platform-tools

Docker Desktop 4.4.4 is a security update.
https://www.docker.com/products/docker-desktop

MySQL ConnectorNet 8.0.28 is a security update.
https://dev.mysql.com/downloads/connector/net/

Node.js 12.22.10 upgrades libraries and time zone information. This is not a security update.
https://nodejs.org/en/

Node.js 14.19.0 updates time zone information, adds Corepack and updates libraries. This is a security update.
https://nodejs.org/en/

Node.js 17.4.0 resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

TortoiseGit 2.13.0.1 updates requirements, libraries, and resolves dozens of bugs. This is not a security update.
https://tortoisegit.org/

Visual Studio Code 1.64 improves cosmetics, automation, and resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 6.1.32 is a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Drupal 9.2.12 is a security update.
https://drupal.org/download

MailArchiva 8.7.1 improves role functionality and resolves several bugs. This is not a security update.
https://mailarchiva.com/

ownCloud Client 2.10.0.6519 resolves several bugs. This is not a security update.
https://owncloud.com/desktop-app/

ownCloud Server 10.9.1 improves stability and reliability. This is not a security update.
https://owncloud.org/install/

phpMyAdmin 5.1.2 and 4.9.9 are security updates.
https://www.phpmyadmin.net/

ScreenConnect 21.15.6739.8073 improves automation, triggers, auditing, 2FA timeouts, and resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

WordPress 5.9 resolves dozens of bugs and implements front-end editing. This is not a security update.
https://wordpress.org/

Akismet 4.2.2 improves compatibility and resolves several bugs. This is not a security update.

Autoptimize 2.9.5.1 resolves a stability bug. This is not a security update.

BuddyPress 10.0.0 is a major update offering several new features and resolving dozens of bugs. This is not a security update.

Contact Form 7 5.5.4 adds double opt-in support, new action and filter hooks and resolves a bug with the default contact form. This is not a security update.

Duplicator 1.4.4 resolves several bugs. This is not a security update.

Redirection 5.2.3 resolves several bugs. This is not a security update.

Slider Revolution 6.5.15 resolves several bugs. This is not a security update.
https://revolution.themepunch.com/

WooCommerce 6.1.1 resolves dozens of bugs. This is not a security update.

WordPress Zero Spam 5.2.10 is a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

Updates 2022-01-11

Welcome back, Folks!

Today is Patch Tuesday for January, 2022.

It’s a big one. This month has been insane. There’s always a surge in hacking events near holidays, but this month had almost double the *known* hacking events from previous months. What’s worse is that many of the vulnerabilities used were known weeks and sometimes years in advance, though the patches were not yet installed or the specific applications and services were simply not being maintained or secured. Grrrr.

This Month in Technology

A New Leaf, Inc., Advocate Aurora HealthAlabama Department of Rehabilitation ServicesAll in One SEOAmediaAndrew Sauchelli, DMDApache httpdApple Blossom Family PracticeAzure App ServiceBansley and Kiener (B&K), Belgium’s MilitaryBernalillo CountyBioPlus Specialty Pharmacy Services LLCBrazil’s Health MinistryBroward HealthC.E. Niehoff & CompanyChaddockCiox HealthCommission on ElectionsCOVID-19 Home TestsCrawford County Assessors OfficeDaniel J. Edelman Holdings, Inc., DatPiff, The De Montfort SchoolDouglas C Morrow ODPCDuneland School CorporationEvanston Township High SchoolExpresso and SICFertility Centers of Illinois, PLLC, FinalSiteFlexBookerFlorida Digestive Health Specialists LLP, Forensic Science IrelandFresenius Kabi infusion pump systemsGarrett metal detectorsGeorgia Bone & Joint Surgeons, P.C., Google Docs Comment PlatformGrass Valley, CAGumtreeH2 DatabaseHellmann Worldwide LogisticsImpresaInetum GroupiPhone 13James Kagan, MDJefferson Surgical ClinicKearsarge Regional School DistrictLastPassLog4j (several times)Loyola University Medical CenterLuxemburg-Casco School DistrictmacOS powerdirMcMenaminsMedQuest Pharmacy, Inc., Microsoft Active DirectoryMicrosoft TeamsMonkey Kingdom (via Grape), Monongalia Health System Inc., Monroe Public SchoolsMonterey Peninsula Unified School DistrictNetgear NighthawkNorthwest Broward Orthopaedics AssociatesNorth Shore Hebrew Academy High SchoolOG department storeONUSOregon Eye SpecialistsPeck & Associates, PC, Pithadia Medical Professional Services, Inc., ProtempsPulseTVQNAPRavkooRedLine StealerRhode Island Public Transit AuthorityR.R. Donnelley & SonsRunning Warehouse LLC, Sainsbury’sSaltzer HealthSaskatchewan Liquor and Gaming AuthoritySEGAShelley School DistrictShutterflySkate Warehouse LLC, Skin Care Specialty PhysiciansSotheby’s Realty’s BrightcoveSouthern Orthopaedic AssociatesSpar StoresStandard BankSuperior PlusSurgery Group SCT-MobileTackle Warehouse LLC, Tennis Warehouse LCC, Tiyuli and LametayelUAW Retiree Medical Benefits TrustUberUbisoftUK Defence AcademyUltimate Kronos GroupUS Commission on International Religious FreedomUScellular, Utah Department of Health, Virginia Division of Capitol PoliceVirginia General AssemblyVolvoWalgreen Co., WD MyCloudWelfare, Pension and Annuity Funds of Local No. ONE, I.A.T.S.E., and Zoho UEM have been hacked.

Norton 360 is now opting you in for their CPU cryptomining if you have their software installed. The very same software designed to protect you from evildoers that would take advantage of your computer to do this kind of thing…is now doing it. Apple has released an Android app under the auspice of helping users discover Tracker devices that might be tracking them…by enabling your device to allow them to communicate with the Apple Tracker network. Firefox still doesn’t properly support OCSP stapling. Dell BIOS updates are crashing devices. Microsoft has integrated their own financing platform into Edge.

Microsoft rang in the new year by breaking Microsoft Exchange (on-prem) for every server that had filtering enabled (almost all of them). Microsoft acknowledged the problem about 20 hours after it began and released resolution steps by deleting and rebuilding the scanning engine about 31 hours after it began. Sonicwall, too.

CloudflareAWS, Twitch, Zoom, PSN, Slack, Hulu, Imgur have had extended outages this month.

Please, for all that is holy, check your backups!

Phishing is an ever-growing problem. Sophos reminds us how to check for scams like this.

Now for the good news:

Mozilla has added Secure DNS to Firefox, now enabled by default. Unfortunately, this bypasses DNS filtering options you may have assigned yourself – so if you use Firefox you’ll need to enable your own DoH URLs within the settings.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday this month is pretty big. The typical computer should see roughly 3 GB in updates today. Let’s get started.

Microsoft released updates for.NET Framework, Microsoft Dynamics, Edge, Exchange Server, Microsoft Office, SharePoint, Microsoft Teams, Active Directory, CLFS, Windows Cryptographic Services, Windows Defender, DirectX, Windows Installer, Windows RDP, Windows Remote Desktop, ReFS, Windows Security Center, Windows Storage Spaces, Windows Tile Data Repository, Windows UEFI, Windows User Profile Service, and MSRT (~2 GB). This includes security updates. A reboot is required.

Apple released updates for Safari 15.2. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

Google Chrome OS 96.0.4664.111 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Monterey (12.x) means that macOS Mojave (10.14) and older are no longer supported. If you can not install at least macOS Catalina (10.15) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v21H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 6 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v21H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 6 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.4.7 removes support for Vista, updates libraries, and improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.34.80 is a security update.
https://brave.com/

Google Chrome 97.0.4692.71 is a security update.
https://www.google.com/chrome/

Microsoft Edge 97.0.1072.55 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 96.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 91.5.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Iridium 2021.12.96 is a security update.
https://iridiumbrowser.de/

SeaMonkey 2.53.10.2 is a security update.
https://www.seamonkey-project.org/

Vivaldi 5.0.2497.35 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 91.5.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk (macOS) 6.4.0 resolves a couple bugs. This is not a security update.
https://anydesk.com/en/downloads

curl 7.81.0 is a security update.
https://curl.haxx.se/windows/

Dropbox 139.4.4896 doesn’t provide a changelog so should be treated as a security update.
https://www.dropbox.com/

FileZilla Server 1.2.0 resolves several bugs. This is not a security update.
https://filezilla-project.org/

FreeFileSync 11.16 updates libraries and resolves several bugs. This is a security update.
https://www.freefilesync.org/download.php

Omada Software Controller 5.0.29 is a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Prosody 0.11.11 resolves several bugs. This is not a security update.
https://prosody.im/download/start

Syncthing 1.18.6 improves usability. This is not a security update.
https://syncthing.net/

Telegram 3.4.3 resolves several bugs. This is not a security update.
https://telegram.org/

Zoom 5.9.1.2581 is a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

darktable 3.8.0 makes nearly 4,000 changes including performance, bug fixes, new hardware support and more. This should be treated as a security update.
https://www.darktable.org/install/

Picard 2.7.2 resolves several bugs. This is not a security update.
https://picard.musicbrainz.org/

TuneIn 1.25.0 does not provide a changelog so should be treated as a security update.
https://tunein.com/radio/home/

Game Updates

These are unlikely to be of interest to most people.

Steam 2022.12.16 resolves several bugs. This is not a security update.
https://store.steampowered.com/about/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 21.011.20039 is a security update.
https://get.adobe.com/reader

Adobe Acrobat and Reader 21.011.20039, 20.004.30020, and 17.011.30207 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb22-01.html

Adobe Illustrator 26.0.2 and 25.4.3 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb22-02.html

Adobe Bridge 12.0.1 and 11.1.3 are security updates.
https://helpx.adobe.com/security/products/bridge/apsb22-03.html

Adobe InCopy 16.4.1 is a security update.
https://helpx.adobe.com/security/products/incopy/apsb22-04.html

Adobe InDesign 16.4.1 is a security update.
https://helpx.adobe.com/security/products/indesign/apsb22-05.html

Audacity 3.1.3 improves stability. This is not a security update.
https://www.audacityteam.org/download/

Krita 5.0.2 is a major update. This version adds several features, resolves bugs and improves stability and reliability. This is not a security update.
https://krita.org/en/download/krita-desktop/

LibreOffice Fresh 7.2.5 resolves almost 100 bugs. This is not a security update. The “Fresh” line is beta software and should be avoided in favor of the stable version (“Still”) by most users.
https://www.libreoffice.org/

Nextcloud Desktop 3.4.1 resolves several bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.2 improves stability. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 4.3.7 resolves a stability bug. This is not a security update.
https://www.getpaint.net/

Security Software Updates

One or more of these is likely to be of interest to most people.

elementary OS 6.1
https://elementary.io/

Gpg4win 4.0.0 is a major update adding several new features and updates libraries. This is a security update.
https://www.gpg4win.org/download.html

KeePass 2.50 improves performance and generator, updates libraries, and resolves several bugs. This is not a security update.
https://keepass.info/

OpenSSL 1.1.1m is a security update.
https://www.openssl.org/source/

OpenSSL 3.0.1 is a security update.
https://curl.se/windows/

OpenSSL 3.0.1 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ReactOS 0.4.13 provides over 250 bug fixes and improvements. This is not a security update.
https://reactos.org/

RogueKiller 15.1.5 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Tails 4.26 is a security update.
https://tails.boum.org/install/dvd-download/index.en.html

TinyWall 3.2.5 resolves several bugs. This is not a security update.
https://tinywall.pados.hu/

uBlock Origin 1.40.6 improves reliability. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

ScreenToGif 2.35.4 resolves several bugs. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

Converter Updates

These are unlikely to be of interest to most people.

HandBrake 1.5.1 updates libraries, resolves several bugs and improves stability and reliability. This is not a security update.
https://handbrake.fr/

IsoBuster 4.9 adds support for new hardware, new formats, and resolves several bugs. This is not a security update.
https://www.isobuster.com/download.php

Utility Updates

These are unlikely to be of interest to most people.

7-Zip 21.07 adds VHDX support, improved parameter handling and compatibility. This is not a security update.
https://www.7-zip.org/

Agent Ransack 2022.3283 improves performance and reliability, and resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

Aomei Partition Assistant 9.6.0 resolves several bugs and improves compatibility. This is not a security update.
https://www.diskpart.com/

Autoruns 14.07 resolves several bugs. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/autoruns

Active Directory Explorer 1.51 fixes a Windows Store packaging crash. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/adexplorer

CacheSet 1.02 fixes a 64 bit OS regression. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/cacheset

Beyond Compare 4.4.1.26165 resolves several bugs and improves compatibility. This is not a security update.
https://www.scootersoftware.com/download.php?zz=dl4

ControlMyMonitor 1.31 adds a new parameter for Secondary displays. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html

CPU-Z 1.99 adds support for new hardware and resolves a couple bugs. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

DesktopOK 9.51 adds dark mode. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 2.9.482.0 resolves several bugs. This is not a security update.
https://dngrep.github.io/

Etcher 1.7.3 is a security update.
https://www.balena.io/etcher/

Everything 1.4.1.1015 resolves several bugs. This is not a security update.
https://www.voidtools.com/

Everything CLI 1.1.0.21 resolves several bugs. This is not a security update.
https://www.voidtools.com/

FileLocator Pro 2022.3283 provides performance and reliability improvements. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

GoodSync 11.10.0 resolves several bugs and improves stability. This is not a security update.
https://www.goodsync.com/

Homedale 2.02 improves colors. This is not a security update.
https://www.the-sz.com/products/homedale/

Macrium Reflect 8.0.6495 doesn’t provide a changelog, so should be treated as a security update.
https://www.macrium.com/reflectfree

NTLite 2.3.2.8526 updates libraries and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

osquery 5.1.0 adds resource limiting, new objects, and resolves several bugs. This is not a security update.
https://osquery.io/downloads

PowerToys 0.53.1 adds several new features and resolves bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Process Monitor 3.87 fixes resolves several bugs. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/procmon

Samsung Magician 7.0.1 is a major update, but doesn’t provide a changelog so should be treated as a security update.
https://www.samsung.com/semiconductor/minisite/ssd/download/tools/

SearchMyFiles 3.16 is a cosmetic update. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

Sysmon 13.31 improves reliability. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

TeamViewer 15.25.8 fixes a VOIP bug. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

TraceRouteOK 2.71 updates language files. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK

WifiInfoView 2.72 updates the internal MAC database and resolves a high-DPI bug. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

ZoomText 2022.2112.10.400 resolves several bugs and improves display. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

Maraura 3.9.7 updates Java support and libraries, and resolves several bugs. This is a security update.
http://arianne.sourceforge.net/engine/marauroa.html

Docker Desktop 4.3.2 updates the scan engine to detect log4j vulnerabilities. This is a security update.
https://www.docker.com/products/docker-desktop

Godot 3.4.2 updates libraries and resolves several bugs. This is a security update.
https://godotengine.org/

Node.js 12.22.9 is a security update.
https://nodejs.org/en/

Node.js 14.18.3 is a security update.
https://nodejs.org/en/

Node.js 16.13.2 is a security update.
https://nodejs.org/en/

Node.js 17.3.1 is a security update.
https://nodejs.org/en/

SQLite 3.37.2 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Web Package Updates

These are likely to be of interest only to web developers.

Drupal 9.3.2 resolves a major stability bug. This is not a security update.
https://drupal.org/download

HumHub 1.10.3 is a security update.
https://www.humhub.com/en/download

MailArchiva 8.5.6 resolves several bugs. This is not a security update.
https://mailarchiva.com/

ownCloud Server 10.9 is a security update.
https://owncloud.org/install/

Piwigo 12.2.0 resolves several bugs. This is not a security update.
https://piwigo.org/

ScreenConnect 21.14.5924.8013 resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

SMF 2.0.19 is a security update.
https://www.simplemachines.org/

WordPress 5.8.3 is a security update.
https://wordpress.org/

Slider Revolution 6.5.14 updates libraries and resolves several bugs. This is not a security update.
https://revolution.themepunch.com/

WPBakery 6.8.0 improves compatibility and resolves several bugs. This is not a security update.
https://wpbakery.com/

Autoptimize 2.9.5 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/autoptimize/

BuddyPress 9.2.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/buddypress/

Social Post Feed 4.1.1 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/custom-facebook-feed/

Postie 1.9.59 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/postie/

NextScripts Social Networks Auto-Poster 4.3.25 is a security update.
https://wordpress.org/extend/plugins/social-networks-auto-poster-facebook-twitter-g/

Visual Composer 41.1 improves compatibility. This is not a security update.
https://visualcomposer.com/

WooCommerce 6.1.0 is a major update, resolving several bugs and adding features. This is not a security update.
https://wordpress.org/extend/plugins/woocommerce/

WordPress Zero Spam 5.2.9 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/zero-spam/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/