Updates 2020-04-30

We just had to get one last update cycle in for “the April that would never end.”

It’s not Patch Tuesday, but updates to OpenSSL have prompted security updates for almost every browser as well as application updates to many others have triggered an out-of-cycle update.

This Month/Week in Technology

If you can’t trust the CDC not to taint the tests, you can’t trust the SBA with your privacy in their loan process, you can’t trust Apple with your data, you can’t trust your “home automation” to not expose your entire home to hackers, you can’t trust the CIA not to abuse their authority in the mainstream media and academia, you can’t trust the FBI to follow their own rules when making requests of the secret FISA courts, you *really* can’t trust your antivirus software not to put you at even greater risk of exploitation, you can’t trust anyone not to reuse passwords, and you can’t trust advertising publishers to keep their ad platforms safe for their target audience, then why should you ever even consider giving Google and Apple 24/7, permanent, extensive monitoring of everywhere you go and everyone you ever have contact with? I don’t. Even if Apple and Google were above reproach (and they’re not), the inevitable abuse by any platform like this makes Orwell’s worst dreams look tame in comparison.

Now for the good news:

Intel has finally opened up their graphic drivers so you can use them on OEM hardware.

Let’s Get Busy

Apple released iOS 13.4.1 for iPhone SE (2nd generation) and watchOS 6.2.1 for Apple Watch Series 1 and 2. These are security updates. Use Settings, General, Software Update to install the most current version.

Fedora 32-1.6 provides several new features, now uses nftables by default, improves regular maintenance routines, and updates libraries. This is a security update.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If youโ€™re using this hardware โ€“ these updates are for you.

Display Driver Uninstaller 18.0.2.4 adds ability to remove only NVCP and resolves several bugs. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Intel Driver and Support Assistant 20.4.17 resolves several bugs. This is not a security update.
https://www.intel.com/p/en_US/support/detect

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.8.86 is a security update. Use Menu, Help, About to install the most current version.

Google Chrome 81.0.4044.129 is a security update. Use Menu, Help, About to install the most current version.

Microsoft Edge 81.0.416.68 is a security update. Use Menu, Help, About to install the most current version.

Vivaldi 3.0.1874.33 is a security update. Use Menu, Help, About to install the most current version.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.7.6 resolves several bugs. This is not a security update.
https://getmailspring.com/

OutlookAttachView 3.35 adds option to control Enter Key Action. This is not a security update.
https://www.nirsoft.net/utils/outlook_attachment.html

Internet Updates

One or more of these are likely to be of interest to everyone.

FileZilla Client 3.48.0 is a security update.
https://filezilla-project.org/

FreeFileSync 10.23 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Earth 7.3.3 improves Street View, plus code support, and resolves several bugs. This is a security update.
https://earth.google.com/

WinSCP 5.17.5 is a security update.
https://winscp.net/eng/index.php

Zoom 5.0.23502.0430 improves encryption, abuse reporting, privacy controls, and resolves several bugs. This is a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

VLC Media Player 3.0.10 is a security update.
https://www.videolan.org/vlc/

Game Updates

These are unlikely to be of interest to most people.

Steam 2020.04.28 resolves several bugs. This is not a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Office Updates

One or more of these are likely to be of interest to most people.

LibreOffice 6.3.6 resolves 80 bugs. This is not a security update.
https://www.libreoffice.org/

Notepad++ 7.8.6 resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

Illustrator 24.1.2 is a security update.
https://www.adobe.com/creativecloud/catalog/desktop.html

Adobe Bridge 10.0.4 is a security update.
https://www.adobe.com/products/bridge.html

Security Software Updates

One or more of these is likely to be of interest to most people.

OpenSSL 1.1.1g is a security update.

RogueKiller 14.4.1 is a security update.
https://www.adlice.com/download/roguekiller/

Capture Updates

These are unlikely to be of interest to most people.

ScreenToGif 2.23.2 resolves a couple minor bugs. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 11.0.8.6 adds support for new encodings, improves upscaling and enlarger. This is not a security update.
https://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

Dell Command Update 3.1.2 is a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

RoboForm 8.7.0 resolves several bugs. This is not a security update.
https://12pd.com/click?rf

1Password for Windows 7.4.767 resolves several bugs. This is a security update.
https://1password.com/downloads/windows/

DesktopOK 7.01 adds command-line support, mapping support for alt-drag, and resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

Easy2Boot 2.02 updates libraries, dependencies, and resolves a bug in Make USB. This is not a security update.
https://www.fosshub.com/Easy2Boot.html

Etcher 1.5.83 adds workflows to Flash from URL and improves the cosmetics. This is not a security update.
https://www.balena.io/etcher/

GoodSync 11.1.6 adds RDC tunneling support, explorer actions, account management improvements, and resolves several bugs. This is not a security update.
https://12pd.com/click?goodsync

MS ISO Downloader 8.35 adds support for new Windows, Office, and Dell images. This is not a security update.
https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool

PSAppDeploy 3.8.1 adds Repair as action type, execute-process-as-user, several new features, compatibility improvements and bug fixes. This is not a security update.
https://psappdeploytoolkit.com/

Rufus 3.10 improves compatibility, device detection, updates drivers, and resolves several bugs. This is not a security update.
https://rufus.ie/en_IE.html

TeamViewer 15.5.3 adds message search, conditional access servers for fallback options, and resolves several bugs. This is not a security update.
https://www.teamviewer.com/en/download/windows/

WinScan2PDF 5.31 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

CPU-Z 1.92 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

NTLite 1.9.0.7455 adds new controls and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

Coreinfo 3.5 doesn’t provide a changelog so should be treated as a security update.
https://live.sysinternals.com/

LiveKD 5.63 doesn’t provide a changelog so should be treated as a security update.
https://live.sysinternals.com/

Process Explorer 16.32 doesn’t provide a changelog so should be treated as a security update.
https://live.sysinternals.com/

Sysmon 11.0 adds file delete and archive monitoring, additional options to control behavior, improved log support and reliability improvements. This is not a security update.
https://live.sysinternals.com/

Developer Updates

These are unlikely to be of interest to most people.

Node.js 14.1.0 is a new major version adding several new features, libraries and bug fixes. Unfortunately, the previous build (14.0.0) broke stream support for many packages. This version resolves that bug. This is a security update.
https://nodejs.org/en/

Node.js 13.14.0 resolves several bugs. This is a security update.
https://nodejs.org/en/

Node.js 12.16.3 updates libraries. This is a security update.
https://nodejs.org/en/

Redemption 5.23.0.5664 adds support for in-memory objects, several new objects, collection-level assignments, and resolves several bugs. This is not a security update.
http://www.dimastr.com/redemption/

MySQL ConnectorNet 8.0.20 resolves several bugs. This is not a security update.
https://dev.mysql.com/downloads/connector/net/

Web Package Updates

These are likely to be of interest only to web developers.

WordPress 5.4.1 is a security update.
https://wordpress.org/

ScreenConnect 20.3.28091.7419 improves relay action scheduling, resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

Magento 2.3.4-p2, 2.3.5-p1, 1.14.4.5, 1.9.4.5 are security updates.
https://helpx.adobe.com/security/products/magento/apsb20-22.html#solution

Joomla 3.9.18 is a security update.
https://www.joomla.org/

HumHub 1.5.1 resolves several bugs. This is not a security update.
https://www.humhub.com/en/download

MailEnable 10.30 resolves several bugs. This is not a security update.
https://www.mailenable.com/

Nextcloud Server 18.0.4 resolves dozens of bugs and updates libraries. This should be treated as a security update.
https://nextcloud.com/

phpList 3.5.3 is a security update.
https://www.phplist.org/

YOURLS 1.7.9 improves compatibility, API signature algorithm, accessibility, and resolves several bugs. This is not a security update.
https://yourls.org/

Akismet 4.1.5 disables the notice and updates WP requirements. This is not a security update.

Antispam Bee 2.9.2 improves compatibility, and resolves several bugs. This is not a security update.

BuddyPress 5.2.0 is a security update.

Custom Facebook Feed 2.14 resolves several bugs. This is not a security update.

myStickymenu 2.4 resolves several bugs and adds font color control. This is not a security update.

Postie 1.9.50 improves diagnostics. This is not a security update.

W3 Total Cache 0.13.3 resolves a minification bug. This is not a security update.

WP Mail SMTP 2.0.0 changes PHP requirements (7+) and resolves several bugs. This is not a security update.

That’s all for now folks. Keep it clean out there. ๐Ÿ˜‰

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2019-12-10

Merry Christmas, Folks!

Today is Patch Tuesday for December 2019.

Note: shortly after publishing, Google released Chrome 79.0.3945.79.

Windows 10, version 1909, is available. This version is minor compared to previous Windows 10 upgrades. Nevertheless, don’t do it yet. There is nothing so critically important in 1909 that the update can’t wait a month. Wait for it.
https://www.microsoft.com/en-us/software-download/windows10

Windows 7 will fall completely out of support in only 35 days. Don’t run out the clock. If you are running a licensed version of Windows 7 or 8 you can still upgrade to Windows 10 and have a supported version of Windows for the foreseeable future. Get it done before it’s too late. Don’t want to do it yourself? Call me!

There is a lot of talk right now about enabling POSready mode to gain additional time for Windows 7. This *does* work, but I recommend against it. POSready mode is designed to allow existing third-party software to continue to operate in the Windows 7 ecosystem, but Microsoft and most third-party developers will stop support when Windows 7 is end-of-life (EOL). This means that while your OS itself will continue to receive security updates, most other apps will not. If your device is used as a typical PC this means your risk will still significantly increase by relying on POSready with unmaintainable third-party applications.

Christmas is only a couple weeks away which means it’s that time of year when the best and worst of humanity is exposed. This time of year brings stress and urgency to everything, and that means people are more likely to be targeted for common phishing schemes, malicious attachments (invoices and holiday letters), end-of-year insurance scams, and advance fee fraud. You’ll be targeted by phone and email and the deluge won’t subside until mid-to-late January. Don’t be afraid to hang up and delete. It really is better to be safe than sorry.

If you’ve read more than a couple of my newsletters you’ve seen me hate on Avast regularly. Last week I was actually considering easing off and giving them another chance. Then I received diet spam FROM AVAST BUSINESS! I’ve reconsidered. If you’re using any of this software you should remove it immediately. Avast can’t be trusted. Having any of their software installed significantly increases the risk to your devices, and should be treated as a malware infection as far as I’m concerned.

Now back to our regularly scheduled program. The typical computer should see roughly 2 GB in updates today. Let’s get started.

Microsoft released updates for Windows, Internet Explorer, .NET, Servicing Stack, hardware drivers, and MSRT (~1 GB). This includes security updates. A reboot is required.

Apple released updates for macOS Catalina 10.15.2, Mojave Security Update 2019-002, and High Sierra Security Update 2019-007, iOS 13.3, iOS 12.4.4, iPadOS 13.3, Safari 13.0.4, Xcode 11.3, watchOS 5.3.4, watchOS 6.1.1, and tvOS 13.3. These are security updates. Use Apple Software Update to install the most current versions.

watchOS 6.1.1 and watchOS 5.3.4 are security updates. Use the Watch app on your iPhone to install the most current version.

tvOS 13.3 is a security update. Use System, Software Update to install the most current version.

macOS Catalina (10.15) is available. If you don’t have to, don’t install it. Mojave (10.14) will be supported for almost 2 more years.

iOS 13.3, iOS 12.4.4, and iPadOS 13.3 are security updates. Use Settings, General, Software Update to install the most current update.

Google Chrome OS 78.0.3904.106 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Adobe Flash Player 32.0.0.303 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Catalina (10.15) means that macOS Sierra (10.12) and older are no longer supported. If you can not install at least macOS High Sierra (10.13) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (1909) is a pretty small update so will install quickly. Windows 10 pushes you to get the latest Windows 10 release every 6 months. If you don’t let it finish and you’re on a slow connection, this process kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If youโ€™re using this hardware โ€“ these updates are for you.

BullZip PDF Printer 11.11.0.2804 adds High-DPI support, printing page range, and copy+paste support for UTF16 characters. This is not a security update.
https://www.bullzip.com/products/pdf/info.php#download

Display Driver Uninstaller 18.0.2.0 improves Nvidia cleanup.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Dymo Label 8.7.3 doesn’t provide a changelog, so should be treated as a security update.
https://www.dymo.com/en-US/online-support/dymo-user-guides

MS Mouse and Keyboard Center 20191127 adds support for newer hardware. This is not a security update.
https://www.microsoft.com/accessories/en-us/downloads/mouse-keyboard-center

Nvidia 441.66 adds image sharpening for Vulkan and OpenGL, support for newer hardware, and multiple security fixes. This is a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 79.0.3945.79 is a security update. Use Menu, Help, About to get the most current version.

Firefox 71.0 is a security update. Use Menu, Help, About to get the most current version.

Firefox ESR 68.3.0 is a security update. Use Menu, Help, About to get the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 68.3.0 is a security update. Use Menu, Help, About to get the most current version.

Internet Updates

One or more of these are likely to be of interest to everyone.

BrowsingHistoryView 2.30 adds History File and Record ID columns. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

FileZilla Client 3.46.0 resolves a crash, and updates dependencies. This is a security update.
https://filezilla-project.org/

FreeFileSync 10.18 adds parallel processing, grid sort, filter counts, improved responsiveness and bug fixes. This is not a security update.
https://www.freefilesync.org/download.php

MaxMind GeoIP2 201912 is a data refresh.
https://dev.maxmind.com/geoip/

WinSCP 5.15.9 is a security update.
https://winscp.net/eng/index.php

Media Updates

These are unlikely to be of interest to most people.

CDBurnerXP 4.5.8.7128 improves error handling. This should be treated as a security update.
https://cdburnerxp.se/

Game Updates

These are unlikely to be of interest to most people.

Steam 2019.12.05 resolves several bugs, returns Small Mode, updates libraries, and adds GUI improvements. This should be treated as a security update.

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Acrobat DC 19.021.20058 is a security update. Use Menu, Help, Check for updates to get the most current version.

Adobe Reader DC 19.021.20058 is a security update. Use Menu, Help, Check for updates to get the most current version.

Adobe Photoshop CC 20.0.8 and 21.0.2 are security updates. Use Adobe Creative Cloud to install the most current version.

Artweaver 7.0.3 resolves several bugs. This is not a security update.
https://www.artweaver.de/

Krita 4.2.8 improves disk write reliability, and resolves several bugs. This is not a security update.
https://krita.org/en/download/krita-desktop/

Notepad++ 7.8.2 resolves several bugs and returns the hotkeys to the save prompt. This is not a security update.
https://12pd.com/click?npp

Paint.net 4.2.8 updates libraries, improves performance, resolves several bugs, and adds self-repair with /repair. This should be treated as a security update.
https://www.getpaint.net/

Security Software Updates

One or more of these is likely to be of interest to most people.

Caine 11.0 adds several new features and apps, updates libraries, and updates core. This is a security update.
https://www.caine-live.net/

HTTP Toolkit 0.1.17 doesn’t provide a changelog so should be treated as a security update.
https://httptoolkit.tech/

RogueKiller 14.0.0.16 updates core engine, resolves several bugs, adds real time protection and documents protection. This should be treated as a security update.
https://www.adlice.com/softwares/roguekiller/

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 2020.0.3 resolves an Editor launch bug. This is not a security update.
https://download.techsmith.com/snagit/enu/snagit.exe

Converter Updates

These are unlikely to be of interest to most people.

MKVToolnix 41.0.0 adds many new features, improves meta storage, resolves several bugs. This is not a security update.
https://www.fosshub.com/MKVToolNix.html

DVDFab 11.0.6.4 adds support for new encodings, new hardware, adds Enlarger AI and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

MakeMKV 1.14.7 adds support for new encodings, resolves a file name variable expansion bug. This is not a security update.
https://12pd.com/click?makemkv

Utility Updates

These are unlikely to be of interest to most people.

Beyond Compare 4.3.3.24545 resolves several bugs. This is not a security update.
https://www.scootersoftware.com/download.php?zz=dl4

Bitcoin 0.19.0.1 integrates a tool to analyze and reduce memory consumption, adds and updates many RPC functions. This is not a security update.
https://bitcoin.org/en/download

CPU-Z Installer 1.91 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

Dell Command Update 3.1 adds CLI support, automatic suspension of BitLocker for BIOS updates, enhances return codes for CLI, update scheduling, and resolves several bugs. This is not a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

DesktopOK 6.79 resolves a false AV alert. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

DevManView 1.65 adds shortcut creation, and adds option to start remote registry service for automation. This is not a security update.
https://www.nirsoft.net/utils/device_manager_view.html

Drive Snapshot 1.48 adds support for newer OSes, resolves encryption bugs. This is a security update.
http://www.drivesnapshot.de/en/

Etcher 1.5.69 updates libraries, resolves several bugs, and improves compatibility. This is not a security update.
https://www.balena.io/etcher/

GoodSync 10.10.15 resolves several bugs, improves and weakens security options (yes, really). This version should be avoided until they get their stuff together.
https://www.goodsync.com/

Homedale 1.86 improves the dot-chart. This is not a security update.
https://www.the-sz.com/products/homedale/

MS ISO Downloader 8.24 adds support for new media. This is not a security update.
https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool

NTLite 1.8.0.7240 adds several options for new features, resolves bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 7.1.1002 resolves several bugs and improves reliability. This should be treated as a security update.
http://www.osforensics.com/download.html

Password Security Scanner 1.50 adds support for Windows Credentials passwords, and resolves a couple bugs. This is not a security update.
https://www.nirsoft.net/utils/password_security_scanner.html

RoboForm 8.6.5 resolves an upgrade data conversion bug, improves experience when changing Master password, improves login from RF behavior, and resolves several other bugs. This is not a security update.
https://12pd.com/click?rf

SearchMyFiles 3.07 resolves a bug. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

TraceRouteOK 1.61 adds window position saving, resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK

USBDeview 2.85 adds option to create shortcuts. This is not a security update.
https://www.nirsoft.net/utils/usb_devices_view.html

WinScan2PDF 5.11 improves WIA reliability, performance. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WirelessKeyView 2.11 improves output formatting and adds explore from here option. This is not a security update. Note that downloads are not password protected. This is not a security update.
https://www.nirsoft.net/utils/wireless_key.html

WSUS Offline 11.8.3 updates supercedence list, resolves several bugs. This is not a security update.
http://download.wsusoffline.net/

Developer Updates

These are unlikely to be of interest to most people.

AutoHotkey 1.1.32.00 resolves several bugs, adds InputHook OnKeyUp callback, adds support for PixelSearch in fast mode. This is not a security update.
https://www.autohotkey.com/download/

Android Studio 3.5.3.0 improves stability and performance, resolves several bugs. This is not a security update.
https://developer.android.com/studio/index.html

Godot 3.1.2 resolves over 400 bugs. This is a security update.
https://godotengine.org/

Node.js 13.3.0 resolves several bugs, and updates libraries. This should be treated as a security update.
https://nodejs.org/en/

StrawberryPerl 5.30.1.1 updates core to 5.30.1 and updates libraries. This is not a security update.
http://strawberryperl.com/

Web Package Updates

These are likely to be of interest only to web developers.

Drupal 8.8.0 makes several feature-level and requirements changes (recommended PHP is now 7.2+), removes several features and modules, updates libraries, and improves code consistency. This should be treated as a security update.
https://drupal.org/download

Brackets 1.14.1 is a security update.
http://brackets.io/

MailEnable 10.28 resolves several bugs, and adds recurring tasks and custom special folders. This is not a security update.
https://www.mailenable.com/

phpMyAdmin 4.9.2 resolves several bugs and improves compatibility. This is a security update.
https://www.phpmyadmin.net/

ScreenConnect 19.5.26030.7282 improves server compatibility. This is not a security update.
https://www.connectwise.com/software/control/download

ColdFusion 2018 Update 7 is a security update.
https://helpx.adobe.com/coldfusion/kb/coldfusion-2018-update-7.html

bbPress 2.6.2 resolves several bugs. This is not a security update.

BuddyPress 5.1.0 resolves several bugs. This is not a security update.

Contact Form 7 5.1.6 resolves an incompatible CSS bug. This is not a security update.

Custom Facebook Feed 2.12.2 resolves a bug. This is not a security update.

FV Top Level Categories 1.9.1 improves compatibility. This is not a security update.

Multisite Enhancements 1.5.2 resolves several bugs. This is not a security update.

Redirection 4.5.1 resolves broken canonical redirects. This is not a security update.

NextScripts Social Networks Auto-Poster 4.3.11 adds WordPress 5.3 support, resolves several bugs. This is not a security update.

Sucuri Security 1.8.22 adds several new checks. This is not a security update.

W3 Total Cache 0.11.0 resolves several bugs, improves compatibility and performance, and adds lazy loading. This is not a security update.

WooCommerce 3.8.1 resolves several bugs. This is not a security update.

That’s all for now folks. Keep it clean out there. ๐Ÿ˜‰

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

Updates 2019-09-10

Hi, Folks!

Today is Patch Tuesday for September 2019 and it’s another big one.

The next build of Windows 10, version 1909, is scheduled to be released later this month. This version will be minor compared to other Windows 10 upgrades and should be nearly indistinguishable from 1903. Well, hopefully local search will work when Cortana Web Search is disabled, but indistinguishable otherwise.

Windows 7 will fall completely out of support in only 4 months. Don’t run out the clock. If you are running a licensed version of Windows 7 you can still upgrade to Windows 10 and have a supported version of Windows for the foreseeable future. Get it done before it’s too late. Don’t want to do it yourself? Call me!

Borderlands 3 will be released on Friday! If you haven’t pre-ordered yet, you can still get a hefty discount. It’ll available for preinstallation starting this evening.

This month we’ve had another series of security lessons.

The Jordan Peterson “deepfake” platform was just the tiniest recent example of how such technology would inevitably be abused. Even though it was removed, it was followed shortly by a custom deepfake that cost one company $243,000. Oops.

The most popular email server and web management platforms both had critical security issues allowing malicious third parties to take over the entire server.

Don’t trust your mobile. Apple iOS and Google Android vulnerabilities disclosed and abused this month can be used to take over your device. Patches are not yet available to resolve these recent exploits for either platform, though both have released patches for unrelelated security vulnerabilities. Google finally acknowledged a security issue in Google Calendar that has been exploited for at least 3 years and the Google Play Store has been publishing malicious apps.

Your “automated assistant” (Siri, Alexa, Cortana, and Hello Google) defaults to calling unrelated third parties since the numbers are pulled from search results, which are easily abused. Heck, the “vast majority” of new domain registrations and websites exist only for malicious purposes. Even if you don’t visit unknown websites, your information is exposed to others whenever you use automated assistants and sometimes even if you don’t intend to. The best solution is to use a privacy respecting browser, such as Vivaldi or Brave and disable any automation and voice controls.

You should always assume all hardware and software will eventually be hacked and maintain them religiously. From Ring to lightbulbs, it will happen. This month shows how entire platforms are being exploited remotely through their networking features.

When even Jack gets hacked you should assume that your information is out there somewhere. This is demonstrated with the latest in a too-frequent series of Facebook data leaks, this time including phone numbers for over 419 million users.

Finally, a friendly reminder that even if your data is “backed up” by a third party you should always back it up again yourself. Between unreliable third party services to the potential damage from ransomware and trojans, there’s no good reason not to pick up a cheap USB thumb drive and toss your important data on it, then toss it into your fireproof safe.

Now back to our regularly scheduled program. The typical computer should see roughly 2 GB in updates today. Let’s get started.

Microsoft released updates for Windows, .NET, Edge, Internet Explorer, Flash, and MSRT (~1.1 GB). This includes security updates. A reboot is required.

Apple released updates for macOS Mojave 10.14.6 Supplemental Update, iOS 12.4.1, tvOS 12.4.1, and watchOS 5.3.1. These are security updates. Use Apple Software Update to install the most current versions.

iOS 12.4.1 is a security update. Use Settings, General, Software Update to install the most current update.

watchOS 5.3.1 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 12.4.1 is a security update. Use System, Software Update to install the most current version.

Adobe Flash Player 32.0.0.255 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The now-current release of Windows 10 (1903) will cause your computer to feel unusually slow until it is installed. This is a side-effect of the Windows 10 upgrade cycle, which pushes out 3-6 GB through Windows update to get you to the latest Windows 10 release every 6 months. If you don’t let it finish and you’re on a slow connection, it will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If youโ€™re using this hardware โ€“ these updates are for you.

Intel Driver and Support Assistant 19.8.34 adds OEM links and improved hardware detection and installation. This is not a security update.
https://www.intel.com/p/en_US/support/detect

nVidia 436.30 resolves several bugs. This is not s security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Display Driver Uninstaller 18.0.1.8 improves removal for Nvidia devices. This is not a security update. Be aware that DDU is now wallpapered in advertisements for crapware, so you should avoid it unless you know what you’re doing.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 77.0.3865.75 is a security update. Use Menu, Help, About to install the most current version.

Firefox 69.0 is a security update. Use Menu, Help, About to install the most current version.

Firefox ESR 60.9.0 is a security update. Use Menu, Help, About to install the most current version.

Vivaldi 2.7.1628.33 is a security update. Use Menu, Help, About to install the most current version.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

OutlookAttachView 3.26 resolves a bug when closed prematurely. This is not a security update.
https://www.nirsoft.net/utils/outlook_attachment.html

Internet Updates

One or more of these are likely to be of interest to everyone.

Trillian Mac 6.2.0.19 resolves several bugs. This is not a security update.
https://www.trillian.im/

FileZilla Client 3.44.2 resolves several bugs. This is not a security update.
https://filezilla-project.org/

MaxMind GeoIP 201909 is a data refresh.
https://dev.maxmind.com/geoip/

Npcap 0.9983 improves hardware detection, improves Loopback detection and support, and resolves several bugs. This is not a security update.
https://nmap.org/npcap/

ZeroNet 0.7.1 is a security update.
https://zeronet.io/

Media Updates

These are unlikely to be of interest to most people.

VLC Media Player 3.0.8 is a security update.
https://www.videolan.org/vlc/

FastStone Viewer 7.4 improves Clone and Heal, Pencil, Google Maps integration, and resolves several bugs. This is not a security update.
http://www.faststone.org/FSViewerDetail.htm

Game Updates

These are unlikely to be of interest to most people.

Steam 2019.08.26 is a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

PlayStation PS3 4.85 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/system-updates/ps3/

Office Updates

One or more of these are likely to be of interest to most people.

Atom 1.40.1 resolves a package integration update. This is not a security update.
https://atom.io/

Artweaver 7.0.1 resolves several bugs. This is not a security update.
http://www.artweaver.de/

Krita 4.2.6 resolves several bugs. This is not a security update.
https://krita.org/en/download/krita-desktop/

LibreOffice Fresh 6.3.1 is a security update.
https://www.libreoffice.org/

LibreOffice Still 6.2.7 is a security update.
https://www.libreoffice.org/

Adobe Reader DC Patch 19.012.20040 resolves a font-embedding bug. This is not a security update. Use Help, Check for updates to install the most current version.

Adobe Application Manager 2019.0 is a security update. AAM will be EOL very soon, so if you do not require it, you should remove it instead of updating to the latest version.
https://supportdownloads.adobe.com/detail.jsp?ftpID=4773

Adobe FrameMaker 2019.0.4 doesn’t provide a changelog so should be treated as a security update.
64-bit: https://supportdownloads.adobe.com/detail.jsp?ftpID=6739
32-bit: https://supportdownloads.adobe.com/detail.jsp?ftpID=6737

Security Software Updates

One or more of these is likely to be of interest to most people.

PureOS 9.0 is a major update to PureOS and signals that the Librem 5 release is likely just around the corner.
https://pureos.net/download/

Looking for a secure phone? Check out the Librem 5:
https://puri.sm/products/librem-5/

MSRT 5.76 updates detections. This is a security update.

RogueKiller 13.4.3 resolves several bugs and updates options. This is a security update.
https://www.adlice.com/softwares/roguekiller/

TinyWall 2.1.12 resolves a bug. This is not a security update.
http://tinywall.pados.hu/

Converter Updates

These are unlikely to be of interest to most people.

MakeMKV 1.14.5 resolves several bugs. This is not a security update.
https://12pd.com/click?makemkv

MKVToolnix 37.0.0 resolves several bugs. This is not a security update.
https://www.fosshub.com/MKVToolNix.html

DVDFab 11.0.4.8 adds support for new encodings, improves Meta Info detection, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

FFmpeg 4.2.1 resolves several bugs. This is not a security update.
https://ffmpeg.org/ffmpeg.html

Utility Updates

These are unlikely to be of interest to most people.

Windows 10 Upgrade v1903 updates the installation package for the Windows 10 v1903 build in preparation for v1909.
https://www.microsoft.com/en-us/software-download/windows10

ControlMyMonitor 1.20 improves refresh and default monitor behavior. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html

CPU-Z Installer 1.90 adds support for newer hardware. This is not a security update.
http://www.cpuid.com/softwares/cpu-z.html

DesktopOK 6.56 improves portability, adds options for reporting and export analysis, window positions, and resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

DMDE 3.6.0 adds support for new filesystems, resolves several bugs. This is a security update.
https://dmde.com/

FolderChangesView 2.28 resolves a notification bug. This is not a security update.
https://www.nirsoft.net/utils/folder_changes_view.html

GoodSync 10.10.7 removes support for Amazon Cloud Drive, resolves several bugs. This is not a security update.
https://12pd.com/click?goodsync

HWMonitor 1.41 adds support for newer hardware. This is not a security update.
http://www.cpuid.com/softwares/hwmonitor.html

IsMyHdOK 1.84 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

NTLite 1.8.0.7115 adds support for Windows 10 v1909, resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 7.0.1003 resolves several bugs. This is not a security update.
http://www.osforensics.com/download.html

PointerStick 3.68 improves multi-monitor operation. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

Sysmon 10.4 adds nested rule support, improved conditions, and resolves several bugs. This is not a security update.
https://live.sysinternals.com/

Process Explorer 16.30 adds Shared Commit, and resolves several bugs. This is not a security update.
https://live.sysinternals.com/

Rufus 3.7 adds persistent partition support for Debian and Ubuntu flavored ISOs, reports SuperSpeed+ devices, resolves several bugs. This is not a security update.
https://rufus.ie/en_IE.html

SimpleWMIView 1.40 adds Case Sensitive option to Quick Filters. This is not a security update.
https://www.nirsoft.net/utils/simple_wmi_view.html

Synergy 1.10.3 resolves several bugs and updates the VC++ dependency to 2019. If you’re having problems with the update, install the VC++ 2019 runtime, reboot, then reinstall.
https://members.symless.com/synergy/downloads/list/s1

TaskSchedulerView 1.52 adds Case Sensitive option to Quick Filters. This is not a security update.
https://www.nirsoft.net/utils/task_scheduler_view.html

TraceRouteOK 1.51 updates language files and improves compatibility with Windows 10 v1909. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK

WinScan2PDF 4.94 adds page selection and improved compatibility with Windows 10 v1909. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 3.5.0.21 integrates several automated improvements, performance optimizations, diagnostics, and resolves several bugs. This is not a security update.
https://developer.android.com/studio/index.html

Node.js 12.10.0 resolves many bugs, improves documentation, and updates dependencies. This is not a security update.
https://nodejs.org/en/

Visual Studio Code 1.38 improves search and replace, resolves several bugs, and adds new features. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 6.0.12-133076 resolves several bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Adminer 4.7.3 improves performance and stability, resolves several bugs. This is not a security update.
https://www.adminer.org/en/

Drupal 8.7.7 resolves several bugs. This is not a security update.
https://drupal.org/download

Nextcloud Server 16.0.4 updates libraries and resolves several bugs. This should be treated as a security update.
https://nextcloud.com/

ScreenConnect 19.3.25270.7185 resolves bugs. This is not a security update.
https://www.connectwise.com/software/control/download

WordPress 5.2.3 is a security update.
https://wordpress.org/

myStickymenu 2.2.2 resolves a cosmetic bug. This is not a security update.

NextScripts Social Networks Auto-Poster 4.3.9 resolves several bugs, improves integration with Blogger, Reddit, Pinterest, and WordPress.com. This is not a security update.

Theme My Login 7.0.15 resolves update bug, adds two new filters. This is not a security update.

W3 Total Cache 0.10.0 resolves several bugs, adds support for new S3 regions, webp caching, and other improvements. This is not a security update.

WP Mail SMTP 1.6.2 improves reliability and resolves several bugs. This is not a security update.

Show IDs 1.1.3 improves compatibility. This is not a security update.

That’s all for now folks. Keep it clean out there. ๐Ÿ˜‰

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2019-06-11

Hi, Folks!

Today is Patch Tuesday for June 2019 and it’s a big one.

The typical computer should see roughly 1.1 GB in updates today. Let’s get started.

Microsoft released updates for Windows, .NET, Edge, Internet Explorer, Flash, Dynamic Update, POSReady and MSRT (~2 GB). This includes security updates. A reboot is required.

Apple released updates for iOS 12.3.2, iCloud for Windows 7.12, iTunes for Windows 12.9.5, AirPort Base Station Firmware 7.9.1, and macOS Mojave 10.14.5 Supplemental Update. This includes security updates. Use Apple Software Update to install the most current versions.

iOS 12.3.2 is a security update. Use Settings, General, Software Update to install the most current update.

Adobe Flash Player 32.0.0.207 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Google Chrome OS 74.0.3729.159 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The now-current release of Windows 10 (1903) will cause your computer to feel unusually slow until it is installed. This is a side-effect of the Windows 10 upgrade cycle, which pushes out 3-6 GB through Windows update to get you to the latest Windows 10 release every 6 months. If you don’t let it finish and you’re on a slow connection, it will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If youโ€™re using this hardware โ€“ these updates are for you.

Display Driver Uninstaller 18.0.1.5 adds support for newer hardware, improves cleanup and stability. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Intel Driver & Support Assistant 19.5.22 resolves several bugs and improves security. This is a security update.
https://www.intel.com/p/en_US/support/detect

nVidia 430.86 adds support for newer hardware and updates game profiles. This is a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 75.0.3770.80 is a security update. Use Menu, Help, About to install the most current version.

Firefox 67.0.2 is a security update. Use Menu, Help, About to install the most current version.

Firefox ESR 60.7.0 is a security update. Use Menu, Help, About to install the most current version.

Vivaldi 2.5.1525.48 is a security update. Use Menu, Help, About to install the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 60.7.0 is a security update. Use Menu, Help, About to install the most current version.

Internet Updates

One or more of these are likely to be of interest to everyone.

iCloud for Windows 7.12 is a security update. Use Apple Software Update to get the most current version.

Skype 8.45.0.41 adds quick sign out and improves preference persistence. This is not a security update.
https://12pd.com/click?skype

IPInfoOffline 1.50 adds GeoLite2 City, Country and ASN database support. This is not a security update.
https://www.nirsoft.net/utils/ip_country_info_offline.html

MaxMind GeoIP 201906 is a data refresh.
https://dev.maxmind.com/geoip/

Technitium DNS Server 3.3 resolves several bugs. This is not a security update.
https://technitium.com/dns/

WinSCP 5.15.2 is a security update.
https://winscp.net/eng/index.php

Media Updates

These are unlikely to be of interest to most people.

FastStone Viewer 7.1 adds HEIC and WEBP support, resolves bugs, and improves stability and security. This is a security update.
https://www.faststone.org/FSViewerDetail.htm

iTunes 12.9.5 is a security update. Use Apple Software Update to get the most current version.

VLC Media Player 3.0.7 improves Blu-ray and MP4 support, and resolves several bugs. This is a security update.
https://www.videolan.org/vlc/

Game Updates

These are unlikely to be of interest to most people.

PlayStation PS4 6.71 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/system-updates/ps4/

Office Updates

One or more of these are likely to be of interest to most people.

Artweaver 6.0.12 improves stability and resolves a cloning bug. This is not a security update.
http://www.artweaver.de/

LibreOffice Fresh 6.2.4 resolves over a hundred bugs. This is not a security update.
https://www.libreoffice.org/

Notepad++ 7.7.0 updates Scintilla to 4.1.x and adds code signing. This should be treated as a security update. The first time it is opened after updating from a previous version will take longer. Be patient.
https://12pd.com/click?npp

Atom 1.38.0 resolves several bugs. This is not a security update.
https://atom.io/

Security Software Updates

One or more of these is likely to be of interest to most people.

Wireshark 3.0.2 is a security update.
https://www.wireshark.org/

Gpg4win 3.1.8 resolves several bugs. This is not a security update.
https://www.gpg4win.org/download.html

OpenSSL 1.0.2s is a security update.
https://openssl.org/

RogueKiller 13.2.2 resolves several bugs. This is not a security update.
https://www.adlice.com/softwares/roguekiller/

RouterPassView 1.81 resolves a bug decompressing some binaries. This is not a security update.
https://www.nirsoft.net/utils/router_password_recovery.html

Stinger 12.1.0.3196 adds support for new detections. This is not a security update.
https://12pd.com/click?stinger

DNSQuerySniffer 1.80 adds support for GeoLite2 City and Country databases. This is not a security update.
https://www.nirsoft.net/utils/dns_query_sniffer.html

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 2019.1.2 adds support for varying High-DPI displays, resolves several bugs, updates integration. This is not a security update.
https://download.techsmith.com/snagit/enu/snagit.exe

Converter Updates

These are unlikely to be of interest to most people.

CDex 2.18 resolves several bugs. This is not a security update.
https://cdex.mu/?q=download

DVDFab 11.0.3.4 improves compatibility, adds support for new encodings, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

MakeMKV 1.14.4 adds support for new encodings and resolves several bugs. This is not a security update.
https://12pd.com/click?makemkv

Utility Updates

These are unlikely to be of interest to most people.

NTLite 1.8.0.6975 adds settings, adds support for Windows 10 v1903, and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

1Password for Mac 7.3 improves mini, integration, and drag and drop support. This is not a security update.
https://1password.com/downloads/mac/

8GadgetPack 29.0 improves compatibility with Windows 10 v1903. This is not a security update.
https://8gadgetpack.net/

Beyond Compare 4.2.10.23938 adds support for case-sensitive folders, improves compatibility with OneDrive, and resolves several bugs. This is not a security update.
https://www.scootersoftware.com/download.php?zz=dl4

Carbonite 6.3.5 resolves OneDrive compatibility issues. This is not a security update.
https://account.carbonite.com/

CPU-Z Installer 1.89 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

DesktopOK 6.31 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

GoodSync 10.9.33 improves compatibility, updates libraries, and resolves bugs. This is not a security update.
https://12pd.com/click?goodsync

IsMyHdOK 1.71 improves compatibility and performance. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

NetworkInterfacesView 1.15 adds several new fields and automatic elevation support. This is not a security update.
https://www.nirsoft.net/utils/network_interfaces.html

NetworkTrafficView 2.30 adds several new columns. This is not a security update.
https://www.nirsoft.net/utils/network_traffic_view.html

OSFMount 3.0.1004 resolves a couple bugs. This is not a security update.
https://www.osforensics.com/tools/mount-disk-images.html

PointerStick 3.55 removes buggy code signing certificate. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

QuickSetDNS 1.30 adds support for IPv6.
https://www.nirsoft.net/utils/quick_set_dns.html

RoboForm 8.5.9 adds encryption iteration option and resolves several bugs. This is not a security update.
https://12pd.com/click?rf

SearchMyFiles 2.92 resolves large file size search and adds Explorer context feature. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

TraceRouteOK 1.41 adds Polish language support. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK

WinScan2PDF 4.81 removes buggy code signing certificate. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 3.29 resolves stability bugs. This is a security update.
https://antibody-software.com/web/software/software/wiztree-finds-the-files-and-folders-using-the-most-disk-space-on-your-hard-drive/

WSUS Offline 11.7.2 resolves several bugs. This should be treated as a security update.
http://download.wsusoffline.net/

Windows 10 Media Creation Tool 1903 allows creating your own Windows 10 installation media for the latest build of Windows.
https://www.microsoft.com/en-us/software-download/windows10

Developer Updates

These are unlikely to be of interest to most people.

Node.js 12.4.0 moves several experimental features to stable, and updates several heap capabilities. This is not a security update.
https://nodejs.org/en/

StrawberryPerl 5.30.0.1 updates Perl core, gcc compiler and libraries. This is a security update.
http://strawberryperl.com/

Visual Studio Code 1.35 improves native semantic behaviors, definition context, breadcrumbs, and better merge conflict display. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 6.0.8-130520 resolves several bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Drupal 8.7.3 resolves several bugs. This is a security update.
https://drupal.org/download

Joomla 3.9.7 is a security update.
https://www.joomla.org/

ConnectWise Control 19.1.24050.7079 doesn’t provide a detailed changelog (their site changes have been a pain), so this should be treated as a security update.
https://www.connectwise.com/software/control/download

MailEnable Enterprise 10.24 is a security update.
https://www.mailenable.com/

Nextcloud Server 16.0.1 resolves several bugs. This is not a security update.
https://nextcloud.com/

phpMyAdmin 4.9.0.1 resolves dozens of bugs. This is a security update.
https://www.phpmyadmin.net/home_page/news.php

WordPress 5.2.1 resolves several bugs. This is not a security update.
https://wordpress.org/

Autoptimize 2.5.1 improves image handling, CSS deferral, and settings interface. This is not a security update.

Contact Form 7 5.1.3 resolves the Mail tab check bug. This is not a security update.

myStickymenu 2.1.6 is a security update.

Postie 1.9.35 resolves several bugs. This is not a security update.

Really Simple CAPTCHA 2.0.2 resolves a bug. This is not a security update.

Redirection 4.3.1 resolves several bugs. This is not a security update.

NextScripts Social Networks Auto-Poster 4.3.7 improves compatibility. This is not a security update.

W3 Total Cache 0.9.7.5 updates libraries, resolves several bugs, and improves default PHP behaviors. This is not a security update.

WooCommerce 3.6.4 resolves several bugs. This is not a security update.

WordPress Zero Spam 3.1.1 resolves several bugs. This is a security update.

That’s all for now folks. Keep it clean out there. ๐Ÿ˜‰

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2019-04-09

Hi, Folks!

Today is Patch Tuesday for April 2019. Windows 10 v1903 is just around the corner. Edge users will start getting it over the next few days, with the majority of Home users getting it near the end of the month. You can delay it by installing v1809 if you haven’t done so yet, which will grant you a 3 month reprieve. Today is also the last day of updates released for any Windows 10 version prior to v1803. If you’re running v1507-v1709 (and not running a long-term servicing build) then you should upgrade to v1809 ASAP.

The typical computer should see roughly 1.2 GB in updates today. Let’s get started.

Microsoft released updates for Windows, .NET, Edge, Internet Explorer, Flash, POSReady, and MSRT (~850 MB). This includes security updates. A reboot is required.

Apple released updates for macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra, iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4, iCloud for Windows 7.11, Xcode 10.2, and watchOS 5.2. This includes security updates. Use Apple Software Update to install the most current versions.

iOS 12.2 is a security update. Use Settings, General, Software Update to install the most current update.

watchOS 5.2 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 12.2 is a security update. Use System, Software Update to install the most current version.

Adobe AIR 32.0.0.116 is a security update.
Win: https://12pd.com/click?air
Mac: https://12pd.com/click?airmac

Adobe Flash Player 32.0.0.171 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Google Chrome OS 73.0.3683.88 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The now-current release of Windows 10 (1903) will cause your computer to feel unusually slow until it is installed. This is a side-effect of the Windows 10 upgrade cycle, which pushes out 3-6gb through Windows update to get you to the latest Windows 10 release every 6 months. If you don’t let it finish and you’re on a slow connection, it will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If youโ€™re using this hardware โ€“ these updates are for you.

Seagull Scientific Driver 2019.1 adds support for over 115 new printer models, but installs a Seagull Scientific Certificate which might later be used for exploitation. This is not a security update.
https://www.seagullscientific.com/drivers/

Display Driver Uninstaller 18.0.1.1 resolves several bugs. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Intel Driver & Support Assistant 19.3.12 adds support for newer hardware and resolves several bugs. This is not a security update.
https://www.intel.com/p/en_US/support/detect

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 73.0.3683.103 resolves several bugs. This is not a security update. Use Menu, Help, About to install the most current version.

Firefox 66.0.2 resolves several stability and compatibility bugs. This version follows closely on the 66.0.1 security update. Use Menu, Help, About to install the most current version.

Firefox ESR 60.6.1 is a security update. Use Menu, Help, About to install the most current version.

Vivaldi 2.4.1488.36 resolves several bugs, adds many new features including GUI customization and stack management. This is a security update. Use Menu, Help, About to install the most current version.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.6.1 resolves several bugs. This is not a security update.
https://getmailspring.com/

Thunderbird 60.6.1 is a security update. Use Menu, Help, About to install the most current version.

Internet Updates

One or more of these are likely to be of interest to everyone.

Skype 8.42.0.60
https://12pd.com/click?skype

FileZilla Client 3.41.2 is a security update.
https://filezilla-project.org/

MaxMind GeoIP 201904 is a data refresh.
https://dev.maxmind.com/geoip/

Npcap 0.992 resolves several bugs. This is not a security update.
https://nmap.org/npcap/

PuTTY 0.71 is a security update.
https://www.chiark.greenend.org.uk/~sgtatham/putty/latest.html

WGet 1.20.3 is a security update. However, this version breaks HTTPS so should be avoided for now.
https://eternallybored.org/misc/wget/

WinSCP 5.15 resolves several bugs and adds a dark mode. This is a security update.
https://winscp.net/eng/index.php

Line 9.4.0 adds chat capture. This is not a security update.
https://line.me/update

ZeroNet 0.6.5 resolves several bugs. This is not a security update.
https://zeronet.io/

Media Updates

These are unlikely to be of interest to most people.

iTunes 12.9.4 for Windows is a security update. Use Apple Software Update to install the most current version.

iCloud for Windows 7.11 is a security update. Use Apple Software Update to install the most current version.

CDBurnerXP 4.5.8.7042 resolves a burn speed bug on multiple copies. This is not a security update.
https://cdburnerxp.se/

FastStone Viewer 7.0 adds support for monitor color profiles, improves compatibility, and dual instance display option differences. This is a security update.
https://www.faststone.org/FSViewerDetail.htm

iTunes 12.9.4 is a security update.
https://www.apple.com/itunes/download/

Game Updates

These are unlikely to be of interest to most people.

EA Origin 10.5.36.23506 resolves several bugs. This is not a security update.
https://www.origin.com/en-us/download

PlayStation PS4 6.51 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/system-updates/ps4/

SteamOS 2019-02-28 is a security update.
https://store.steampowered.com/steamos/download/?ver=custom

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 19.010.20099 is a security update. Use Help, Check for Updates to install the most current version.

Atom 1.35.1 resolves a bug. This is not a security update.
https://atom.io/

Paint.net 4.1.6 resolves several bugs and improves performance. This is not a security update.
https://www.getpaint.net/

LibreOffice Fresh 6.2.2 resolves dozens of bugs. Remember that the Fresh branch is the LibreOffice Beta, so the Still (Stable) line should be used by most users.
https://www.libreoffice.org/

Artweaver 6.0.11 resolves several bugs. This is not a security update.
http://www.artweaver.de/

Notepad++ 7.6.6 resolves the file-change-detection nag on frequently updated files and adds GPG release signing.
https://12pd.com/click?npp

FrameMaker 2019.0.3 is a security update.
64-bit: https://supportdownloads.adobe.com/detail.jsp?ftpID=6645
32-bit: https://supportdownloads.adobe.com/detail.jsp?ftpID=6643

Adobe Bridge CC 9.0.3 is a security update.
https://helpx.adobe.com/security/products/bridge/apsb19-25.html

Adobe Experience Manager Forms 6.2.sp1-cfp15, 6.3.3.1, 6.4.2.0 are security updates.
https://helpx.adobe.com/security/products/aem-forms/apsb19-24.html

Adobe InDesign 14.0.2 is a security update.
https://helpx.adobe.com/security/products/indesign/apsb19-23.html

Adobe XD CC 17.0.12 is a security update.
https://helpx.adobe.com/security/products/xd/apsb19-22.html

Adobe Dreamweaver 19.1 is a security update.
https://helpx.adobe.com/security/products/dreamweaver/apsb19-21.html

Adobe Shockwave player 12.3.5.205 is a security update, however, it is officially end-of-life (EOL) as of today so your best option is to remove Shockwave from any and all devices.

Security Software Updates

One or more of these is likely to be of interest to most people.

DNSQuerySniffer 1.76 adds Quick Filter feature. This is not a security update.
https://www.nirsoft.net/utils/dns_query_sniffer.html

Gpg4win 3.1.7 is a security update.
https://www.gpg4win.org/download.html

RogueKiller 13.1.9 updates scanning engine and adds support for several new file types. This should be treated as a security update.
https://www.adlice.com/softwares/roguekiller/

Wireshark 3.0.1 resolves several security issues.
http://www.wireshark.org/

Stinger 12.1.0.3107 adds support for new detections. This is a security update.
https://12pd.com/click?stinger

Capture Updates

These are unlikely to be of interest to most people.

VideoCacheView 3.05 adds manual merge option. This is not a security update.
https://www.nirsoft.net/utils/video_cache_view.html

Converter Updates

These are unlikely to be of interest to most people.

CDex 2.16 resolves several bugs. This is not a security update.
http://cdex.mu/?q=download

DVDFab 11.0.2.3 resolves several bugs and adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

NTLite 1.7.5.6842 resolves several bugs and adds new options. This is not a security update.
https://www.ntlite.com/download/

CPU-Z Installer 1.88 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

Cygwin 3.0.6 resolves several bugs. This is not a security update.
https://cygwin.com/

GoodSync 10.9.30 resolves several bugs. This is not a security update.
https://12pd.com/click?goodsync

HWMonitor 1.40 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

NirCmd 2.82 improves High-DPI compatibility. This is not a security update.
https://www.nirsoft.net/utils/nircmd.html

OSFMount 3.0.1000 adds several new features. This is not a security update.
https://www.osforensics.com/tools/mount-disk-images.html

RoboForm 8.5.8 resolves several bugs. This is not a security update.
https://12pd.com/click?rf

Rufus 3.5 adds Windows ISO download, adds Windows To Go support, and resolves several bugs. This is not a security update.
https://rufus.ie/en_IE.html

USBDeview 2.80 resolves serial number CLI options. This is not a security update.
https://www.nirsoft.net/utils/usb_devices_view.html

WakeMeOnLan 1.84 updates the MAC database. This is not a security update.
https://www.nirsoft.net/utils/wake_on_lan.html

WinScan2PDF 4.77 improves stability. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WSUS Offline 11.6.1 resolves several bugs. This is not a security update.
http://download.wsusoffline.net/

Developer Updates

These are unlikely to be of interest to most people.

AutoHotkey 1.1.30.03 resolves several bugs. This is not a security update.
https://www.autohotkey.com/download/

Godot 3.1 adds several new features and improves stability. This is not a security update.
https://godotengine.org/

Node.js 11.13.0 resolves several bugs. This is not a security update.
https://nodejs.org/en/

Redemption 5.20.0.5298 resolves several bugs. This is not a security update.
http://www.dimastr.com/redemption/

DB Browser for SQLite 3.11.2 resolves several bugs. This is not a security update.
https://sqlitebrowser.org/

Visual Studio Code 1.33 adds several new features. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.2 resolves several bugs. This is not a security update.
http://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

PPSSPP 1.8.0 doesn’t provide a changelog so should be treated as a security update.
https://ppsspp.org/downloads.html

VMware Player 15.0.4 is a security update.
https://www.vmware.com/products/player/

Web Package Updates

These are likely to be of interest only to web developers.

Joomla 3.9.5 is a security update.
https://www.joomla.org/

Drupal 8.6.14 resolves several bugs. This is not a security update.
https://drupal.org/download

phpList 3.4.0 is a security update.
https://www.phplist.com/download

TinyMCE 5.0.3 resolves several bugs. This is not a security update.
https://www.tiny.cloud/get-tiny/

MailEnable 10.23 resolves several bugs. This is not a security update.
https://www.mailenable.com/

ScreenConnect 19.0.23234.7027 reorganizes the control interface, uses a new default theme, reformats the General tab and more. This is not a security update.
https://www.screenconnect.com/Download

Nextcloud Server 15.0.7 is a security update.
https://nextcloud.com/

WordPress 5.1.1 is a security update.
https://wordpress.org/

Redirection 4.2.1 resolves several bugs. This is not a security update.

NextScripts Social Networks Auto-Poster 4.3.4 removes Google+ and 500px, adds Google My Business and fixes VK. This is not a security update.

W3 Total Cache 0.9.7.3 resolves several bugs and improves compatibility. This is not a security update.

WooCommerce 3.5.7 is a security update.

WP Mail SMTP 1.4.2 removes TGMPA. This is not a security update.

WPtouch 4.3.36 adds kinsta check. This is not a security update.

That’s all for now folks. Keep it clean out there. ๐Ÿ˜‰

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/