Updates 2022-12-13

Merry Christmas, Folks!

Today is Patch Tuesday for December, 2022.

This month brings a new version of Windows 10 (v22H2), critical security updates for all supported Apple products, and (literally) new security updates every single week since the last update cycle on November 8th. That’s on top of the 150+ major hacks, and over 165 application updates this month. Prepare yourself, there will be about 4 GB of updates for most devices this month.

This Month in Technology

Over 15,000 websites, Abandonia2022, ABB Totalflow, Accuro, Acer UEFI Secure Boot, dozens of apps using the Algolia API, Amazon ECR, Amnesty International Canada, Android, Android OEM certificates, André-Mignot Hospital, Ankr, Antwerp, Belgium, Argentina de Soluciones Satelitales, Arkansas Department of Human Services, Atlassian Bitbucket Server, Bahrain, Bank of Russia, Boa web server, California’s Department of Finance, Canadian Teachers Union, Canon hardware, CareFirst Administrators, CCA Health Plans of California, Inc d/b/a CCA Health CA, Central Depository Services Ltd, Chiropractic Board of New Zealand, Cincinnati State Technical and Community College, Cisco IP phones, Citrix ADC and Gateway, CloudSEK, Codesys, CoinTracker, CommonSpirit Health, Community Health Network, Inc. as an Affiliated Covered Entity, Connexin Software, Consumer Directed Services In Texas, Inc., CorrectCare Integrated Health Inc, County of Tehama, California, Dallam Hartley Counties Hospital District, Deribit, Dermatology & Skin Cancer Ctr, PC, Dialpad, Inc., Dietitians Board of New Zealand, Docs Medical Inc, Doctors’ Center Hospital, Dr. Douglas C. Shoenberger,PC, Durham District School Board, Dutch LNG Terminal, Easton Cardiovascular, Ellen M. Field, M.D., Epic Management LLC, European Parliament, F5 BIG-IP and BIG-IQ, Fars News Agency, Festo, FortiOS SSL-VPN, FTX, GATE Petroleum Company Employee Benefits Plan, Gateway Rehabilitation Center, General Council of the Judiciary, GGCorp, Google Pixel 5 and 6, Google’s Looker Studio, GoTo, Guatemala’s Ministry of Foreign Affairs, Health Care Management Solutions, LLC, Health New Zealand, Hope Health Systems Inc., Hospital Center of Versailles, HP hardware, Hyundai and Genesis cars, Indian Central Board of Higher Education, Indian Community Health Network, Indian Council of Medical Research, Indian electrical grid operators, Innovative Service Technology Management Services, Inc., Kaiser Foundation Health Plan of the Mid-Atlantic States, Inc., Keralty Group, Lake Charles Memorial Health System, LastPass (again), Lehigh Valley Women’s Specialties, Lenovo UEFI Secure Boot, Lexmark hardware, Magento 2, Manassas Surgery Center Anesthesia Services, MaryAnne Freeman Brndjar, DO, PC, Medibank, Mena Regional Health System, Mercury IT, Microsoft Exchange, Mikrotik hardware, NETGEAR hardware, New York-Presbyterian Hospital, New Zealand Ministry of Justice, New Zealand Psychologists Board, New York-Presbyterian Hospital, a NY salon, NU House Calls, PC, Nuance Communications, Inc., OakBend Medical Center, One Brooklyn Health System, Optometrists and Dispensing Opticians Board of New Zealand, Oracle Fusion, Orange Telecom, Orlando Health, Pendurthi Surgical Associates, Peter J. Isaac, D.O., Physiotherapy Board of New Zealand, Plascar Participacoes Industriais, Podiatrists Board of New Zealand, Polsinelli PC, Quarkus Java Framework, Rackspace, Radio Free Asia, Receivables Performance Management, Restaurants in Cincinnati, Roman Catholic Church, Rosenfeld VanWirt, PC, Royal Mail, Samsung Galaxy S22, Sequoia One, Seville Urban Transport Company, Silverstone Circuit, Sobeys, Sonder, Sonos hardware, South Staffordshire Water, South Walton Fire District, Southampton County, Virginia, Sree Saran Medical Centre, Stanley Street Treatment and Resources, Inc., Synology hardware, Tata Power, Telstra, The Smith Family, TP-Link hardware, Tuloso-Midway Independent School District, Twitter, Uber, Ubiquiti hardware, University Medical Center of Southern Nevada, UOB KayHian, Uruguay’s Ministry of Transport and Public Works, the US government, VMware ESXi, VTB Bank, Western Digital hardware, Whoosh, Work Health Solutions, Wright & Filippis LLC, Xavier College, Yakima Neighborhood Health Services, Yale University, and the Zwijndrecht police have reportedly been hacked or compromised this month.

There’s another novel method for exfiltrating information from air-gapped devices: the power supply. Most US DoD contractors fail to implement basic security controls.

Windows updates last month broke DirectAccess, gaming performance, ODBC database connections, Remote Desktop, Task Manager, Windows Kerberos, caused Windows freezes and domain controller freezes.

Meta (Facebook and Instagram) has acknowledged they’ve been used by the US Military for propaganda

Now for the good news:

Apple is finally adding end-to-end encryption for some iCloud backups.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is huge this month. The typical computer should see roughly 4 GB in updates today. Let’s get started.

Microsoft released updates to address 57 vulnerabilities in .NET Framework, Azure, Client Server Run-time Subsystem (CSRSS), Microsoft Bluetooth Driver, Microsoft Dynamics, Microsoft Edge (Chromium-based), Microsoft Graphics Component, Microsoft Office, Microsoft Office OneNote, Microsoft Office Outlook, Microsoft Office SharePoint, Microsoft Office Visio, Microsoft Windows Codecs Library, Windows Hyper-V, SysInternals, Windows Certificates, Windows Contacts, Windows DirectX, Windows Error Reporting, Windows Fax Compose Form, Windows HTTP Print Provider, Windows Kernel, Windows PowerShell, Windows Print Spooler Components, Windows Projected File System, Windows Secure Socket Tunneling Protocol (SSTP), Windows SmartScreen, Windows Subsystem for Linux, Windows Terminal and MSRT (~ 2.5 GB). This includes security updates. A reboot is required.

Apple released updates for iCloud for Windows 14.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.1.2, iOS 16.2 and iPadOS 16.2, macOS Big Sur 11.7.2, macOS Monterey 12.6.2, macOS Ventura 13.1, Safari 16.2, tvOS 16.1.1, tvOS 16.2, and watchOS 9.2. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 15.7.2, 16.1.2, and 16.2 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.7.2, 16.1.2, and 16.2 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 9.2 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 16.1.1 and 16.2 are security updates. Use System, Software Update to install the most current version.

Google Chrome OS 108.0.5359.75 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Fedora 37-1.7 is a major update, adding support for Raspberry Pi 4, new editions, and updates libraries. This is not a security update.
https://getfedora.org/en/workstation/download/

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Monterey (12.x) means that macOS Mojave (10.14) and older are no longer supported. If you can not install at least macOS Big Sur (11) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 12 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v22H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 22.11.2 resolves several bugs. This is not a security update.
https://www.amd.com/en/support

Display Driver Uninstaller 18.0.5.9 improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

DS4Windows 3.1.11 resolves several bugs. This is not a security update.
https://github.com/Ryochan7/DS4Windows/releases/latest

Garmin Express 7.15.2 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.garmin.com/en-US/software/express/

NVcleanstall 1.14.0 resolves several bugs. This is not a security update.
https://www.techpowerup.com/download/techpowerup-nvcleanstall/

Nvidia Driver 474.06 is a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Drivers by Seagull 2022.3 adds support for over 200 new devices. This is not a security update.
https://www.seagullscientific.com/support/downloads/drivers/

Wacom Driver 6.4.0-11 resolves several bugs. This is not a security update.
https://www.wacom.com/en-us/support/product-support/drivers

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.46.134 is a security update. Use Menu, Help, About to install the most current version.
https://brave.com/

Google Chrome 108.0.5359.98 is a security update. Use Menu, Help, About to install the most current version.
https://www.google.com/chrome/

Microsoft Edge 108.0.1462.46 is a security update. Use Menu, Help, About to install the most current version.
https://www.microsoft.com/en-us/edge/business/download

Firefox 108.0 is a security update. Use Menu, Help, About to install the most current version.
https://www.mozilla.org/en-US/firefox/new/

Vivaldi 5.6.2867.40 is a security update. Use Menu, Help, About to install the most current version.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.10.7 resolves a couple bugs and improves cosmetic options. This is not a security update.
https://getmailspring.com/

OutlookAttachView 3.47 adds option to cancel scan with Esc key. This is not a security update.
https://www.nirsoft.net/utils/outlook_attachment.html

Spark 3.2.1.40643 resolves many bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.2.1.40641 resolves many bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 102.6 is a security update. Use Menu, Help, About to install the most current version.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk (macOS) 7.0.0 resolves several bugs and improves interface and Settings. This is not a security update.
https://anydesk.com/en/downloads

BrowsingHistoryView 2.53 adds multiple profile support to several browsers and adds the ability to cancel scan with the Esc key. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

DNSDataView 1.70 adds support for collecting A records of all PTR record. This is not a security update.
https://www.nirsoft.net/utils/dns_records_viewer.html

Dropbox 162.4.5419 resolves several bugs. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 172.0.0.23.215 is a security update.
https://www.messenger.com/download

FileZilla Client 3.62.2 resolves several bugs. This is not a security update.
https://filezilla-project.org/

FileZilla Server 1.6.1 resolves an installation bug and improves certificate controls. This is not a security update.
https://filezilla-project.org/

FreeFileSync 11.28 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 68.0 resolves several bugs. This is not a security update.
https://drive.google.com/start

Microsoft Teams 1.5.00.33362 adds HOSI support for compatible hardware. This is not a security update.
https://teams.microsoft.com/downloads

Minds (Android) 4.30.1 resolves several bugs. This is not a security update.
https://www.minds.com/

Nextcloud Server 25.0.2 resolves dozens of bugs. This is a security update.
https://nextcloud.com/

Omada Software Controller 5.7.4 improves the user interface, adds several new options, and resolves several bugs. This is a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Pocketnet-Core 0.20.29 resolves several bugs. This is not a security update.
https://pocketnet.app/

Pocketnet-GUI 0.8.34 resolves several bugs. This is not a security update.
https://pocketnet.app/

Qbox 4.0.5.35 doesn’t provide a changelog so should be treated as a security update.
https://www.coraltreetech.com/qbox

Rclone 1.60.1 resolves several bugs and improves compatibility. This is not a security update.
https://rclone.org/

Signal 6.0.1 adds Stories support. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 6.3.6 adds donation support. This is not a security update.
https://signal.org/android/apk/

Skype 8.91.0.404 adds universal translation and resolves several bugs. This is not a security update.
https://www.skype.com/

Syncthing 1.22.2 resolves several bugs and updates libraries. This is not a security update.
https://syncthing.net/

Technitium DNS Server 10.0.1 adds several features and resolves bugs. This is a security update.
https://technitium.com/dns/

Telegram 4.4.1 resolves several bugs. This is not a security update.
https://telegram.org/

Telegram (Android) 9.2.1 doesn’t provide a detailed changelog so should be treated as a security update.
https://telegram.org/apps

TP-Link Archer AX21 v1.3.6 is a security update.
https://www.tp-link.com/us/support/download/archer-ax21/v1.20/#Firmware

WinSCP 5.21.6 is a security update.
https://winscp.net/eng/index.php

Zoom 5.12.9.10650 improves policy controls, CC and translation, and resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

Bitwig Studio 4.4.3 fixes a couple stability bugs. This is not a security update.
https://www.bitwig.com/download/

Picard 2.8.5 resolves several bugs. This is a security update.
https://picard.musicbrainz.org/

Plex Desktop 1.59.1.3398 adds support for AV1 and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.30.1.3391 resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.30.0.6486 adds pattern matching, improves scheduled tasks, and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

VLC Media Player 3.0.18 is a security update.
https://www.videolan.org/vlc/

Game Updates

These are unlikely to be of interest to most people.

GameMaker Studio 2022.11.0.54 resolves dozens of bugs and improves usability. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.1.152 adds new features, including monetization through assets, and resolves several bugs. This is not a security update.
https://gdevelop.io/download

Lego Studio 2.22.12.1 resolves several bugs. This is not a security update.
https://www.lego.com/en-us/ldd

Steam 2022.12.01 resolves 20 bugs. This is not a security update.
https://steamcommunity.com/news/client

SteamOS SteamDeck Update 2022-11-21 resolves many bugs including hardware compatibility, performance and stability issues. This is not a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Campaign Classic 7.3.2 and 8.4.2 are security updates.
https://helpx.adobe.com/security/products/campaign/apsb22-58.html

Adobe Experience Manager 2022.10.0 and 6.5.15.0 resolve almost three dozen security vulnerabilities.
https://helpx.adobe.com/security/products/experience-manager/apsb22-59.html

Illustrator 2023 27.0.1 and 2022 26.5.2 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb22-60.html

Artweaver 7.0.14 resolves several bugs. This is not a security update.
https://www.artweaver.de/

Atom 1.63.1 is the final release of Atom before it is to be EOL in a couple days. Please switch to another editor.
https://atom.io/

Audacity 3.2.2 adds VST2 realtime effect support and resolves several bugs. This is not a security update.
https://www.audacityteam.org/download/

Calibre 6.9.0 adds signing to all binaries and resolves several bugs. This should be treated as a security update.
https://calibre-ebook.com/

Inkscape 1.2.2 resolves dozens of bugs. This is not a security update.
https://inkscape.org/release/

Kindle for PC 1.39.65383 doesn’t provide a changelog so should be treated as a security update.
https://www.amazon.com/kindleforpc

LibreOffice Fresh 7.4.3 resolves 100 bugs. This is a security update. Remember that the Fresh line is beta software. Most users should use the Still line.
https://www.libreoffice.org/

Nextcloud Desktop 3.6.4 improves stability. This is not a security update.
https://nextcloud.com/

PDF-XChange Editor 9.5.366.0 resolves several bugs. This is not a security update.
https://www.tracker-software.com/product/pdf-xchange-editor

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 2.3.0 improves culprit tracking. This should be treated as a security update.
https://github.com/countercept/chainsaw

HTTP Toolkit 1.12.1 doesn’t provide a changelog so should be treated as a security update.
https://httptoolkit.tech/

MalwareBytes Anti-Malware Mac 4.17.8 adds support for macOS Ventura/13. This is not a security update.
https://www.malwarebytes.com/mac/

ProtonVPN 2.3.1 improves user interface. This is not a security update.
https://protonvpn.com/download

ProtonVPN (macOS) 3.0.10 improves the user interface. This is not a security update.
https://protonvpn.com/download

Radmin VPN 1.3.4568.3 adds ability to add exceptions from within the software. This is not a security update.
https://www.radmin-vpn.com/

RogueKiller 15.6.3 updates engine and resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Tails 5.7 is a security update.
https://tails.boum.org/install/dvd/index.en.html

uBlock Origin 1.45.2 resolves a couple bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Velociraptor 0.6.7 adds PGP automation and resolves several bugs. This is not a security update.
https://github.com/Velocidex/velociraptor/releases/latest

WebBrowserPassView 2.12 adds High-DPI support and improves portable browser support. This is not a security update.
https://www.nirsoft.net/utils/web_browser_password.html

Capture Updates

These are unlikely to be of interest to most people.

Camtasia 22.4.1 resolves several bugs. This is not a security update.
https://www.techsmith.com/video-editor.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.0.9.4 adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

iMazing HEIC Converter 2.0.3 doesn’t provide a changelog so should be treated as a security update.
https://imazing.com/heic

IsoBuster 5.1 adds support for reading the FAT directly, improves performance and stability, and resolves dozens of bugs. This is not a security update.
https://www.isobuster.com/download.php

PDF Creator 5.0.3 resolves several bugs. This is not a security update.
https://www.pdfforge.org/pdfcreator

StreamFab 6.0.0.7 adds support for new encodings and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 6.0.18 resolves a merge bug. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 8.9.10 improves 2FA support and compatibility, and resolves dozens of bugs. This is not a security update.
https://1password.com/downloads/mac/

1Password for Windows 8.9.10 improves 2FA support and compatibility, and resolves dozens of bugs. This is not a security update.
https://1password.com/downloads/windows/

Agent Ransack 2022.3349 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

Bitwarden 2022.11.0 implements 2-step authentication and resolves several bugs. This is not a security update.
https://bitwarden.com/

CCleaner 6.06.10144 adds and improves cleanup for over a dozen applications. This is not a security update.
https://www.ccleaner.com/

Cygwin 3.4.1 resolves several bugs. This is not a security update.
https://cygwin.com/

DesktopOK 10.51 improves compatibility with Windows 11. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 3.1.197.0 adds recycle bin support, resolves several bugs, and improves bookmark behavior. This is not a security update.
https://dngrep.github.io/

Etcher 1.10.6 updates dependencies. This is not a security update.
https://www.balena.io/etcher/

FileLocator Pro 2022.3349 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Git SCM 2.39.0 resolves several bugs. This is not a security update.
https://git-scm.com/

Go 1.19.4 is a security update.
https://go.dev/

GoodSync 12.1.2 resolves dozens of bugs. This is not a security update.
https://www.goodsync.com/

Homedale 2.04 removes log headers and updates languages. This is not a security update.
https://www.the-sz.com/products/homedale/

HWMonitor 1.48 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

NetConnectChoose 1.10 adds Metric column and resolves a network selection bug. This is not a security update.
https://www.nirsoft.net/utils/net_connect_choose.html

NTLite 2.3.9.9018 improves compatibility and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 10.0.1006 resolves several bugs. This is not a security update.
https://www.osforensics.com/download.html

osquery 5.6.0 resolves several bugs, adds new columns and controls. This is not a security update.
https://osquery.io/downloads

AOMEI Partition Assistant 9.13.0 resolves several bugs. This is not a security update.
https://www.diskpart.com/

PointerStick 6.11 improves compatibility with Windows 11. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.65.0 upgrades dependencies and resolves a couple bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Process Explorer 17.02 resolves stability bugs. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/process-explorer

RoboForm 9.3.8 resolves several bugs. This is not a security update.
https://www.roboform.com/

Rufus 3.21 updates dependencies, libraries, and resolves several bugs. This is not a security update.
https://rufus.ie/en_US/

ScreenConnect 22.9.10589.8370 resolves dozens of bugs including stability and reliability. This is a security update.
https://www.connectwise.com/software/control/download

Sysmon 14.13 resolves a stability bug. This is a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

TeamViewer 15.36.9 improves terminal and scripting support. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

TraceRouteOK 3.22 improves compatibility with Windows 11. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK

Unity 2022.2.0 resolves over a hundred bugs. This is not a security update.
https://unity3d.com/get-unity/download/archive

WinScan2PDF 8.31 improves compatibility with Windows 11. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 4.12 resolves a couple bugs. This is not a security update.
https://www.diskanalyzer.com/

ZoomText 2022 2022.2211.5.400 improves integration and stability, and resolves several bugs. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

ZoomText 2023 2023.2210.28.400 is a new major version adding tethered view and improves compatibility. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

AutoHotkey 1.1.36.02 resolves several bugs. This is not a security update.
https://www.autohotkey.com/download/

Docker Desktop 4.14.1 improves stability and performance, adds WebAssembly support, user interface improvements, upgrades libraries and resolves several bugs. This is not a security update.
https://www.docker.com/products/docker-desktop

Node.js 14.21.2 updates certificates and timezone information. This should be treated as a security update.
https://nodejs.org/en/

Node.js 16.19.0 updates certificates and timezone information. This should be treated as a security update.
https://nodejs.org/en/

Node.js 19.2.0 updates libraries and resolves over a dozen bugs. This is not a security update.
https://nodejs.org/en/

SQLite 3.40.0 improves support for data recovery, performance, and reliability. This is a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.74 adds several new features. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.0.4 resolves over a dozen bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Drupal 9.4.9 resolves several bugs. This is not a security update.
https://drupal.org/download

HumHub 1.12.3 resolves several bugs. This is not a security update.
https://www.humhub.com/en/download

Joomla 4.2.6 improves compatibility and resolves several bugs. This is not a security update.
https://www.joomla.org/

jQuery 3.6.2 improves compatibility and resolves several bugs. This is not a security update.
https://code.jquery.com/

MailEnable 9.86 is a security update.
https://www.mailenable.com/

MailEnable 10.43 is a security update.
https://www.mailenable.com/

ownCloud Client 3.0.0.9215 resolves dozens of bugs. This is not a security update.
https://owncloud.com/desktop-app/

Piwigo 13.3.0 resolves several bugs. This is not a security update.
https://piwigo.org/

SMF 2.1.3 resolves dozens of bugs. This should be treated as a security update.
https://www.simplemachines.org/

WordPress 6.1.1 resolves dozens of bugs. This is not a security update.
https://wordpress.org/

Akismet 5.0.2 is a security update.
https://wordpress.org/extend/plugins/akismet/

Autoptimize 3.1.4 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/autoptimize/

Contact Form 7 5.7 resolves dozens of bugs and improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.1 adds support for the latest build of WordPress and resolves several bugs. This is a security update.
https://wordpress.org/plugins/duplicator/#developers

Redirection 5.3.6 improves translations. This is not a security update.
https://wordpress.org/extend/plugins/redirection/

Register IP – Multisite 1.8.3 is a security update.
https://wordpress.org/extend/plugins/register-ip-multisite/

Simple Lightbox 2.9.3 resolves several bugs and improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/simple-lightbox/

Sucuri Security 1.8.36 is a cosmetic update. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

W3 Total Cache 2.2.9 improves translation support. This is not a security update.
https://wordpress.org/extend/plugins/w3-total-cache/

WooCommerce 7.1.1 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/woocommerce/

WPtouch 4.3.46 is a security update.
https://wordpress.org/extend/plugins/wptouch/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2022-06-14

Welcome back, Folks!

Today is Patch Tuesday for June, 2022. It’s the biggest update series in well over a year.

This Month in Technology

AA Traveller, Acuity International’s Comprehensive Health Services, Adecco, Aesto Health, Aimware, Alameda Health System, Allaire Healthcare Group, Allwell Behavioral Health Services, Amart Furniture, Aon PLC, Apple iPhones (even when off), Apple M1 CPUs, Apple Watches, Arnprior Regional Health, Associated Ophthalmologists of Kansas City, P.C., Atlassian Confluence Server and Data Center, AU Health, Bangladesh government, Bank of Zambia, Behavioral Health Partners of Metrowest, LLC, BJC Health System, BlackBerry Fans, Bored Ape Yacht Club, Bryan County Ambulance Authority, Burman & Zuckerbrod Ophthalmology Associates, P.C., Capital One, Capsule, Carinthia, Austria, Central Florida Inpatient Medicine, Chicago Public Schools, CHRISTUS Health, Cisco IOS, Comstar LLC, Costa Rican Social Security Fund, Cypress Healthcare, LLC, Dis-Chem, DivX SubTitles, East Tennessee Children’s Hospital, Fanpass, Finkelstein Eye Associates, Fishman Vision, Football World Cup 2022 qualifier between Wales and Ukraine, Foxconn, Fred Hutchinson Cancer Center, General Motors, Genetics & IVF Institute, GitHub, GitLab, Greenland’s healthcare services, Healthcare Assistance Plan for Employees of Seventh-day Adventist Organization of the North American Division, Heidell, Pittoni, Murphy & Bach, LLP, Heroku, Homestead Hospice & Palliative Care, HP BIOS, 70 Indian government websites, John Knox Village of Florida, Kaiser Foundation Health Plan of Washington, Kaiser Permanente, Kiddos’ Clubhouse, Mandiant, McCoy Vision Center, McKenzie Health System, Memorial Community Health, Inc., MGM Resorts, Microsoft Teams, Mindpath Care Centers, North Carolina, PLLC, Mississippi Sports Medicine and Orthopaedic Center, Moyes Eye Center, PC, Nikkei, NLB Corporation, North Alabama Bone & Joint Clinic, P.C., North Lakes Pain Consultants, Northern Rockies Orthopaedics, Novartis, NuLife Med, LLC, Numrich Gun Parts, OE Enterprises, Inc, OGUsers, Oklahoma City Indian Clinic, Omnicell, Orangeburg Eye Center, Oswego County Opportunities, Inc, Otherside Metaverse, Palermo, Italy, Paragon Cheats, Parker-Hannifin Corporation, Partnership HealthPlan of California, PayHere, Pegasus Airlines, Platinum Hospitalists LLP, Preen.Me, QNAP NAS, Quantum Imaging & Therapeutic Associates, Quincy, Illinois, Rainier Arms, ReadNovel, RiverKids Pediatric Home Health, Russian Ministry of Construction, Housing and Utilities, Sberbank, Scarborough Health Network, Schneck Medical Center, Screencastify, Shaker Heights City School District in Ohio, Shields Health Care Group, Shoreline Eye Group, SirHurt, SonicWall Secure Mobile Access (SMA) 1000 Series, South Australia’s Treasury, SpiceJet, Stevens & Lee, Summit Healthcare Association, Sylvester Eye Care, Telegraph, Tesla Model 3, Tesla Model Y, Texas Department of Insurance, Texas Department of Transportation, The Multiple Sclerosis Center of Atlanta, Travis-CI, Trend Micro, U.S. Drug Enforcement Administration (DEA), University of Chicago Medical Center, Val Verde Regional Medical Center, Versus Market, Viasat, Virginia Mason Medical Center, Wagner Heights Nursing and Rehabilitation Center, Washington University School of Medicine, Wendy’s, and Windows 11 have reportedly been hacked or compromised this month.

Netgear broke the Orbi firmware. I’ve been warning about the privacy risks of Wi-Fi for years. It’s finally going mainstream. A pirated version of CCleaner is yet again being used to hijack user accounts.

Apple allowed 1.6 million malicious apps onto the Apple AppStore, then later removed them.

The next time someone uses the argument that “how is a web-based business supposed to stay alive without ads” to decry your use of an ad blocker, send them this link about how third-party trackers (like the ones used in Google and DuckDuckGo) are collecting everything you type.

Now for the good news:

Intuit has finally acknowledged they’re being used to send phishing messages. They’re not going to put an end to it, but they finally have admitted that it’s a widespread source of phishing emails.

Oh, and the UK has declared that defensive attacks” are legal.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is huge this month. The typical computer should see roughly 3 GB in updates today. Let’s get started.

Microsoft released updates to address 62
vulnerabilities in .NET Framework, AV1 Video Extension, Azure OMI, Azure RTOS, Azure Service Fabric Container, HEVC Video Extensions, Microsoft Endpoint Configuration Manager, Microsoft File Server, Microsoft Office, Microsoft Office Excel, Microsoft Office SharePoint, Microsoft Photos App, Microsoft SharePoint Server, Microsoft SQL Server, Microsoft Windows ALPC, Microsoft Windows Codecs Library, Microsoft Windows Support Diagnostic Tool (MSDT), Remote Volume Shadow Copy Service (RVSS), Visual Studio, Windows App Store, Windows Autopilot, Windows Container Isolation FS Filter Driver, Windows Container Manager Service, Windows DCOM Server, Windows Defender, Windows Encrypting File System (EFS), Windows File History Service, Windows Hyper-V, Windows Installer, Windows iSCSI, Windows Kerberos, Windows Kernel, Windows LDAP, Windows Media, Windows Media Center, Windows Network Address Translation, Windows Network File System, Windows PowerShell, Windows SMB, Windows WinSock, and MSRT (~2.5 GB). This includes security updates. A reboot is required.

Apple released updates for iOS 15.5, iPadOS 15.5, macOS Monterey 12.4, macOS Big Sur 11.6.7, Security Update 2022-004 Catalina, watchOS 8.6, tvOS 15.5.1, Safari 15.5, Xcode 13.4, and iTunes 12.12.4. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 15.5 is a security update. Use Settings, General, Software Update to install the most current update.

iPadOS 15.5 is a security update. Use Settings, General, Software Update to install the most current update.

tvOS 15.5.1 is a security update. Use System, Software Update to install the most current version.

watchOS 8.6 are security updatess. Use the Watch app on your iPhone to install the most current version.

Google Chrome OS 101.0.4951.72 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Monterey (12.x) means that macOS Mojave (10.14) and older are no longer supported. If you can not install at least macOS Catalina (10.15) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v21H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 12 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v21H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Garmin Express 7.13.1 doesn’t provide a changelog so should be treated as a security update.
https://www.garmin.com/en-US/software/express/

Nvidia Driver 473.62 is a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.39.111 is a security update.
https://brave.com/

Google Chrome 102.0.5005.115 is a security update. Use Menu, Help, About to install the most current version.
https://www.google.com/chrome/

Microsoft Edge 102.0.1245.41 is a security update. Use Menu, Help, About to install the most current version.
https://www.microsoft.com/en-us/edge/business/download

Firefox 101.0.1 is a security update. Use Menu, Help, About to install the most current version.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 91.10.0 is a security update. Use Menu, Help, About to install the most current version.
https://www.mozilla.org/en-US/firefox/organizations/all/

Iridium 2022.04.100 is a security update. Use Menu, Help, About to install the most current version.
https://iridiumbrowser.de/

Vivaldi 5.3.2679.55 is a security update. Use Menu, Help, About to install the most current version.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 91.10.0 is a security update. Use Menu, Help, About to install the most current version.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 7.0.10 resolves an error reporting bug. This is not a security update.
https://anydesk.com/en/downloads

curl 7.83.1 resolves dozens of bugs. This is not a security update.
https://curl.haxx.se/windows/

DNSDataView 1.65 adds a new command-line parameter. This is not a security update.
https://www.nirsoft.net/utils/dns_records_viewer.html

Dropbox 150.4.5000 resolves several bugs. This is not a security update. (btw, thank you Dropbox for finally releasing a changelog!)
https://www.dropbox.com/

FileZilla Client 3.60.1 resolves several bugs. This is not a security update.
https://filezilla-project.org/

FreeFileSync 11.21 adds volume GUID support, case conflicts, and resolves several bugs. This is a security update.
https://www.freefilesync.org/download.php

Google Drive 59.0 adds support for client-side encryption, system-level search shortcuts, and resolves several bugs. This is not a security update.
https://drive.google.com/start

Nextcloud Server 24.0.1 resolves several bugs. This is not a security update.
https://nextcloud.com/

Prosody 0.12.1 adds CORS controls and resolves several bugs. This is not a security update.
https://prosody.im/download/start

PuTTY 0.77 is a major update adding several new features, networking and security features, and resolves many bugs. This should be treated as a security update.
https://www.chiark.greenend.org.uk/~sgtatham/putty/download.html

Signal 5.45.1 improves language leveling and data sync. This is not a security update.
https://signal.org/download/windows/

Skype 8.83.0.408 resolves several bugs. This is not a security update.
https://www.skype.com/

Syncthing 1.20.2 resolves several bugs. This is not a security update.
https://syncthing.net/

Technitium DNS Server 8.1.3 resolves several bugs. This is not a security update.
https://technitium.com/dns/

Trillian 6.5.0.20 resolves several bugs. This is not a security update.
https://www.trillian.im/

Trillian Mac 6.5.0.14 resolves dozens of bugs. This is not a security update.
https://www.trillian.im/

TrueNAS Core 13.0 resolves dozens of bugs. This is a security update.
https://www.truenas.com/download-truenas-core/

Wget2 2.0.1 is a security update.
https://gitlab.com/gnuwget/wget2/-/releases

Zoom 5.10.7.6120 adds Zoom Whiteboard sharing and resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

iTunes 12.12.4.1 is a security update.
https://www.apple.com/itunes/download/

Picard 2.8.1 updates libraries and resolves several bugs. This is not a security update.
https://picard.musicbrainz.org/

Plex Desktop 1.46.1.3056 improves compatibility and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.18.0.3023 improves compatibility and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.27.0.5897 resolves several bugs and improves stability. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Epic Games 14.0.12 resolves several bugs. This is not a security update.
https://www.epicgames.com/

GameMaker Studio 2022.5.1.16 updates runtime. This is not a security update.
https://www.yoyogames.com/en/gamemaker

Nintendo Switch 14.1.2 improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PlayStation PS5 22.01-05.10.00 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2022.05.31 resolves several bugs. This is not a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Office Updates

One or more of these are likely to be of interest to most people.

Calibre 5.43.0 resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Inkscape 1.2 adds pages, markers and dashes, more gradient controls, performance improvements and resolves several bugs. This is not a security update.
https://inkscape.org/release/

LibreOffice Fresh 7.3.4 resolves over 80 bugs. This is not a security update. Remember that the Fresh line is beta software and should be avoided by most users.
https://www.libreoffice.org/

LibreOffice 7.2.7 resolves almost 50 bugs. This is not a security update.
https://www.libreoffice.org/

Nextcloud Desktop 3.5.1 resolves 20 bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.4.2 resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 4.3.11 improves dark theme and updates plugins. This is not a security update.
https://www.getpaint.net/

PDF Candy Desktop 2.93 doesn’t provide a changelog so should be treated as a security update.
https://pdfcandy.com/

Adobe Animate 21.0.11 and 22.0.6 are security updates.
https://helpx.adobe.com/security/products/animate/apsb22-24.html

Adobe Bridge 12.0.2 is a security update.
https://helpx.adobe.com/security/products/bridge/apsb22-25.html

Adobe Illustrator 26.3.1 and 25.4.6 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb22-26.html

Adobe InCopy 17.3 and 16.4.2 are security updates.
https://helpx.adobe.com/security/products/incopy/apsb22-29.html

Adobe InDesign 17.3 and 16.4.2 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb22-30.html

RoboHelp Server 11.3 is a security update.
https://helpx.adobe.com/security/products/robohelp-server/apsb22-31.html

Security Software Updates

One or more of these is likely to be of interest to most people.

RogueKiller 15.5.3 is a security update.
https://www.adlice.com/download/roguekiller/

Tails 5.1 is a security update.
https://tails.boum.org/install/dvd/index.en.html

uBlock Origin 1.43.0 resolves several bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.0.7.4 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 6.0.8 resolves several bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 7.9.5 is a security update.
https://1password.com/downloads/mac/

AccessChk 6.15 resolves a crash bug. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/accesschk

Agent Ransack 2022.3326 resolves several bugs and dds support for new policies and file types. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

AOMEI Partition Assistant 9.8.0 improves compatibility. This is not a security update.
https://www.diskpart.com/

Bitwarden 2022.5.1 resolves several bugs and improves integration and compatibility. This is not a security update.
https://bitwarden.com/

Cygwin 3.3.5 resolves several bugs. This is not a security update.
https://cygwin.com/

DesktopOK 9.91 adds system-wide dark theme controls. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 3.0.64.0 resolves several bugs, improves performance and reliability. This is not a security update.
https://dngrep.github.io/

Everything 1.4.1.1017 updates localizations and resolves a search history bug. This is not a security update.
https://www.voidtools.com/

Fido 1.29 adds UEFI Shell 2.2 support. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3326 resolves several bugs and dds support for new policies and file types. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Go 1.18.3 is a security update.
https://go.dev/

GoodSync 11.11.2 is a security update.
https://www.goodsync.com/

NTLite 2.3.6.8785 resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

OSFMount 3.1.1001 improves command-line verbosity and error reporting. This is not a security update.
https://www.osforensics.com/tools/mount-disk-images.html

osquery 5.3.0 resolves several bugs. This is not a security update.
https://osquery.io/downloads

PowerToys 0.59.0 resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

RAMMap 1.61 improves compatibility. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/rammap

ScreenConnect 22.5.7881.8171 resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

SmartMonTools 7.3 resolves several bugs and improves compatibility. This is not a security update.
https://smartmontools.org/

Sysmon 13.34 resolves several bugs. This should be treated as a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

TaskSchedulerView 1.71 adds a new switch to control column display and export. This is not a security update.
https://www.nirsoft.net/utils/task_scheduler_view.html

TeamViewer 15.30.3 improves user interface and resolves a send-to bug. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

TraceRouteOK 3.01 improves internal networking. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK

Unity 2022.1.4 improves performance and resolves several bugs. This is not a security update.
https://unity3d.com/get-unity/download/archive

USBDeview 3.05 adds WCID column. This is not a security update.
https://www.nirsoft.net/utils/usb_devices_view.html

WinScan2PDF 7.81 improves multi-monitor support. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

Developer Updates

These are unlikely to be of interest to most people.

AutoHotkey 1.1.34.03 resolves several bugs. This is not a security update.
https://www.autohotkey.com/download/

Android Studio 2021.2.1.15 resolves several bugs. This is not a security update.
https://developer.android.com/studio

GitHub Desktop 3.0.2 resolves several bugs. This is not a security update.
https://desktop.github.com/

Node.js 14.19.3 updates OpenSSL. This is not a security update.
https://nodejs.org/en/

Node.js 16.15.1 updates OpenSSL. This is not a security update.
https://nodejs.org/en/

Node.js 17.9.1 is a security update.
https://nodejs.org/en/

Node.js 18.3.0 is a security update.
https://nodejs.org/en/

Visual Studio Code 1.68.0 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Web Package Updates

These are likely to be of interest only to web developers.

Drupal 9.2.21 is a security update.
https://drupal.org/download

Drupal 9.3.15 resolves several bugs. This is not a security update.
https://drupal.org/download

HumHub 1.11.2 resolves several bugs. This is not a security update.
https://www.humhub.com/en/download

Joomla 4.1.4 resolves several bugs. This is not a security update.
https://www.joomla.org/

OpenCart 4.0.0.0 is major update adding many new features and libraries. This is not a security update.
https://www.opencart.com/

phpList 3.6.8 resolves several bugs. This is not a security update.
https://www.phplist.org/

phpMyAdmin 5.2.0 updates libraries and resolves several bugs. This is not a security update.
https://www.phpmyadmin.net/

YOURLS 1.9.1 updates libraries and resolves several bugs. This is not a security update.
https://yourls.org/

WordPress 6.0 is a major update adding several new features, including block locking, performance, accessibility and new design tools. This is not a security update.
https://wordpress.org/

Akismet 4.2.4 only updates documentation. This is not a security update.
https://wordpress.org/extend/plugins/akismet/

BuddyPress 10.3.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 5.5.6.1 resolves Constant Contact API changes and improves compatibility. This should be treated as a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Social Post Feed 4.1.4 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/custom-facebook-feed/

Duplicator 1.4.6 resolves several bugs. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers

myStickymenu 2.5.9 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

Slider Revolution 6.5.24 resolves several bugs. This is not a security update.
https://revolution.themepunch.com/

Sucuri Security 1.8.31 resolves a path bug. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

Theme My Login 7.1.5 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/theme-my-login/

WooCommerce 6.5.1 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/woocommerce/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2021-09-14

Welcome back, Folks!

This is for Patch Tuesday for September, 2021.

I’m running late with the newsletter this month. I needed to focus on our clients since there was simply so much to do. In the typical month we usually see 85-90 updated applications (some several times). This month there have been over 160. An increase in application release frequency is typical when other major software releases are impending, and the next month will bring Windows 11, iOS 15, a new build of Windows 10, a new version of Microsoft Office, iPhone 13, and Windows Server 2022.

This Month in Technology

AccentureApple devices, and Apple iCloudAT&T (more than once), various airline and IAB staffBangkok AirwaysBanksyBeaumont HealthBlackbaud (more information about a previous hack), Boston Public LibraryBrooklyn Technical High SchoolCampbell Conroy & O’Neil, P.C., Chase Bank, thousands of Coinbase accountsComcast/Xfinity remotes29% increase in attacks targeting the education sector, Cream FinanceDallas Police DepartmentDallas School DistrictDesert Wells Family MedicineDuPage Medical GroupEpikEskyFunFordForHousing and Liberty, over 80,000 Fortinet FortiGate VPN devices, Fortinet FortiWebFortress Home Security, the French Visa ProgramGuntrader (including data of over 100,000 UK gunowners), Howard UniversityHP Omen HubIndiana Department of Health (Contact Tracing System), ImavexEvin (Iranian Prison), JenkinsJohn Deere, JP Morgan Chase, over 1,200 K-12 schoolsKaseya UnitrendsLithuanian Ministry of Foreign AffairsMarketron60,000 domains with MarkMonitorMcDonald’sMemorial Health SystemMicrosoft Power Apps (38 million records!), MikroTik routersMyRepublicNEW Cooperative, a NY Credit UnionOlympusParallels DesktopPeterborough, New HampshireRazer mouse driver (and pretty much all other drivers), Republican Governors AssociationRevere HealthSAC WirelessSonic, various NAS drivesPayPal is sharing user data and transactions with the ADL, pNetworkRazorPayvarious routers from over a dozen vendors, various Russian phonesSouth Africa’s Department of JusticeSpotify data leak, Syracuse UniversityT-MobileTexas GOPTokio Marine, the United NationsUPS, the US Census, the US State Department, hundreds of US financial systems, almost half of all US hospitals, dozens of US government websites, the US Terrorist Screening CenterValveWalgreens, the WordPress Gutenberg Template Library Plugin, and Zoho ManageEngine have been hacked this month.

I separated the Microsoft-specific hacks this month mostly to shame them. The month they claim that “the cloud” is more secure they should absolutely have their noses rubbed in it. Microsoft suffered from yet another nasty, epic, world-wide Exchange attack, but defended their own hosted product by claiming “Microsoft’s Office 365 wasn’t swept up in the breach because it runs in the cloud, which offers more protection,” even though only hours later a critical vulnerability in Microsoft’s Azure Cosmos DB service was confirmed — one of the largest cloud hacks of all time, affecting thousands of service providers. The vulnerability existed for months, so there’s simply no way to know if your accounts were compromised or if permanent access to any victim’s Microsoft Azure services occurred months prior, and Microsoft patched it only two weeks before making the claim above that “the cloud…offers more protection.” As if hammering the point home, yet another series of vulnerabilities in Microsoft’s Azure cloud services were discovered this week which expose millions more endpoints, with thousands already infected. Microsoft’s 365 Cloud PCIIS, Microsoft Teams event data, WSL, and MSHTML used by Microsoft Office have all been hacked this month. Microsoft’s PrintNightmare still isn’t over. In fact, the “fix” breaks printing and printer installation on at least 5% of computers. To top it all off, with all of these incidents they are removing features and they still feel their software is worth a 20% price increase based on the improved security and reliability of their products. Sigh.

The Ragnarok ransomware gang has released a master decryption key. So has REvil (accidentally).

The US Senate is working to make encryption meaningless. Facebook is, too. And Facebook just got slapped by the German Supreme Court for violating free speech rights in Germany. Hypocrisy is their codeword. Facebook actually hid their transparency report. That kinda says it all, doesn’t it? If not, then Apple “considering” removing Facebook for their ties to human trafficking should at least raise an eyebrow. Really, the question should be, why didn’t they? Google geofence warrants are up 1,167%.

Anyone can post a job for any company on LinkedIn. A new fake Captcha tricks the user into keeping malware. ProtonMail, once a beacon of hope for privacy advocates, has shared IP addresses and device information of a user in violation of their own privacy assertions.

Dogfooding is usually a good thing. Not always.

On hardware – GPU-level malware is a thing. Hacking strict hardware security through a silly design flaw. ASUS has made a few serious mistakes with their $2,000 GeForce RTX graphics cards. If you ever wondered why you shouldn’t borrow someone’s charging cable or wall wart, wonder no more. Samsung has acknowledged that they can disable any Samsung TV using a “feature” (read: backdoor) installed on all their televisions. Do you think they limited this “feature” to their TVs?

Apple is still pushing their Jedi Mind Tricks. They want you to use your phone as your ID, but a recent iOS update even broke the “phone” part of iPhones. Why would anyone trust their identity to their phones?

The Epic v Apple case finally has a ruling. One of the two most significant issues, that Apple forbade any payments not through the App Store, was (rightly) ruled illegal. All other counts were dismissed. It’s being appealed, of course. This could cost Apple a huge chunk of a $20+ billion pie. There are some great reads from discovery. South Korea has passed a new law with similar implicationsEpic v Google is really shaping up.

Be careful how you treat your employees – they might turn out to be the “evil insider” for a ransomware gang.

If you’re a government employee and the scope of your abuse was just to use your boss’s computer then you’re really thinking small potatoes.

Oh, and don’t photograph the moon. You might get sued by UMG.

All technology carries risk, but Wi-Fi is probably the most significant risk to your privacy.

Microsoft broke OneDrive for Business, has some major issues with Outlook 365 right now, and VoIP.ms has been extorted by a DDoS attack.

Apple has dropped it’s lawsuit against Corellium over virtual iPhones, lost their Optis trial, and settled with small developers who publish on the App Store, but it still in bed with Big Brother. The US is pushing a bill right now to prevent App Stores from being the sole source of apps and content for their platforms and the EU is pushing for a minimum of seven years of hardware support.

There is no Section 230 in Australia…and it shows. Until social media companies are slapped by the Supreme Court, they will continue to get away with acting on behalf of government while claiming to be independent.

Since nobody is working “full time” anyway, they’re planning to force employers to cut their hours even more.

A federal court has ruled that the HHS can not force doctors to perform transgender surgeries or abortions. If you were concerned about the damage someone might do to your wedding cake, why would you want them holding a scalpel between your legs?

When the MSM has to resort to blatant lies to support their position and the people eat it up you have to acknowledge that they’re the enemy of honesty. The only real pandemic is a curious series of deaths only affecting those leaders opposed to mandates and ignoring the blatantly obvious data. This isn’t the first time. Sadly, absolute fraud passes for science today. There really are proven treatments available.

The science behind face masks demonstrates that this has never been an honest conversation. Instead, politicized (and ineffective) tests and treatments are more lethal
than the disease. Those required to do so are failing or simply refusing to report injuries (does this mean they lose protection under NVICP?) and the events that are reported still resemble a certain climate change “hockey stick.” They’re maliciously and negligently ignoring the dataactual health and safety concernscommitting fraud, and cherry-picking sources so they can make tiktok videos. They’re intentionally falsifying data to coerce and terrorize the publicGeorge Orwell would be proud. The spews media, and by extension, their loyal vidiots, aren’t interested in the truth. They mindlessly supportJab Crow,” racism, rape, tyranny, dehumanizing people, and sweep the scandals under the rug with their massive propaganda machine.

If they were honest and their goals were actually in line with reality, then isolation and replication would be required *before* the creation of a cure, but they’re still pushing tests that can’t distinguish Coronavirus from Influenza. The “vaccines” intentionally, permanently alter your DNA. Claims of effectiveness have repeatedly been disproven, as have their false claims of FDA licenseapproval.” So they push illegal mandates that aren’t intended to protect your health, even going so far as to ban students from online classesPoliticians ignoring mathematics isn’t really anything new. Especially when there’s animportantagendaIt’s time for a human rights commission for war crimes over this bio weapon. After all, more servicemembers have died from the vaccines than the disease.

The anti-privacy passports are not designed to prove you’re immune. They’re not designed to prove you’re not a carrier.

Whether there’s sufficient evidence to determine the cause of any deaths over the last 18 months, one thing is sure: Science no longer has any validity.

At least some regions are waking up to the insanity of a group of super-governmental multi-national corporations with total immunity from any and all liability. Or elseIt’s time to opt out.

The FBI admits no one (else!) orchestrated the Jan 6 protest. Nevertheless, it was, according to “experts,” the darkest day in American history. (And they don’t mean the subsequent human rights violations.) Odd that the same agenda is unfolding through Big Pharma.

A real President doesn’t abandon their people, or commit war crimes when they’re embarrassed, the Speaker shouldn’t be silencing the names of those who died on their watch, and the FCC, the FDA, OSHA, and other government agencies should actually study what they approve. Companies that only answer to consumers do.

Only after the last year of humans treating other humans as trash, and validating it by dumbing down the rest, could a flight attendant say, matter-of-factly, that “we don’t follow federal law” and expect her victim to just roll over and comply.

It makes perfect sense, then, that the Constitution and Declaration of Independence would be labeled “harmful content” by the National Archives. Not to be outdone, the UK – once the standard to measure an open press – will now punish reporters who “embarrass” the government with up to 14 years in prison.

Now for the good news:

Inexpensive batteries are on the horizon and Starlink satellites are being fitted with lasers.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday this month is huge. The typical computer should see roughly 3.5 GB in updates today. Let’s get started.

Microsoft released updates for Windows, Edge, .NET, Servicing Stack, Internet Explorer, and MSRT (~2.5 GB). This includes security updates. A reboot is required.

Apple released updates for iOS 15 and 14.8, iPadOS 15 and 14.8, tvOS 15, macOS Big Sur 11.6, watchOS 8 and 7.6.2, Safari 15, Safari 14.1.2, Xcode 13, iTunes 12.12 for Windows and Security Update 2021-005 Catalina. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 15 and 14.8 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15 and 14.8 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 8 and 7.6.2 are security updates. Use the Watch app on your iPhone to install the most current version.

tvOS 15 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 93.0.4577.63 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Big Sur (11.x) means that macOS High Sierra (10.13) and older are no longer supported. If you can not install at least macOS Mojave (10.14) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v21H1) is very large, for the first time it’s actually smaller than the previous release, but it will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 6 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Citizen Driver 2021.1 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.seagullscientific.com/support/downloads/drivers/citizen/download/

Display Driver Uninstaller 18.0.4.3 improves removal. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

HP Laserjet Stub 13.3.3 doesn’t provide a changelog so should be treated as a security update.
https://123.hp.com/us/en/devices/LASERJET

Nvidia 472.12 adds support for Windows 11, CUDA 11.4, and resolves several bugs. This is a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.29.81 adds more advertising, improves IPFS support, resolves several crashes and other bugs. This is not a security update.
https://brave.com/

Google Chrome 94.0.4606.54 is a security update.
https://www.google.com/chrome/

Microsoft Edge 93.0.961.52 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 92.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 78.14.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Vivaldi 4.2.2406.48 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.9.2 resolves several bugs. This is not a security update.
https://getmailspring.com/

Thunderbird 91.1.1 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

Skype 8.75.0.140 resolves several bugs. This is not a security update.
https://www.skype.com/

Telegram 3.1.0 resolves several bugs. This is not a security update.
https://telegram.org/

Trillian 6.5.0.17 updates libraries and resolves upload bug. This is not a security update.
https://www.trillian.im/

AnyDesk 6.3.3 improves connection reliability. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 6.3.2 adds a URL handler and adds a warning for permissions. This is not a security update.
https://anydesk.com/en/downloads

aria2 1.36.0 updates libraries and resolves several bugs. This is not a security update.
https://aria2.github.io/

BrowsingHistoryView 2.50 improves menu sorting behavior. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

curl 7.79.0 is a security update.
https://curl.haxx.se/windows/

DNSDataView 1.61 resolves an international compatibility bug. This is not a security update.
https://www.nirsoft.net/utils/dns_records_viewer.html

Dropbox 130.4.4978 doesn’t provide a changelog, so should be treated as a security update.
https://www.dropbox.com/

FileZilla Server 1.0.1 (wow! I honestly thought they’d never release a major version) adds ACME Let’s Encrypt support, logging improvements, library updates and resolves several bugs. This is not a security update.
https://filezilla-project.org/

FreeFileSync 11.14 adds OpenSSL 3.0 support, resolves several bugs, adds ability to manage filter settings, and improves cross-platform compatibility. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 51.0 improves reliability and stability. This is not a security update.
https://drive.google.com/start

Npcap 1.55 resolves several bugs. This is not a security update.
https://nmap.org/npcap/

Omada Software Controller 4.4.4 resolves several bugs. This is not a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Rclone 1.56.1 improves reliability and resolves several bugs. This is not a security update.
https://rclone.org/

Technitium DNS Server 6.4.1 resolves several bugs. This is not a security update.
https://technitium.com/dns/

Zoom 5.7.8.1247 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

darktable 3.6.1 improves hardware support and resolves over a dozen bugs. This is not a security update.
https://www.darktable.org/install/

Flickr Downloadr 3.4.3.1 updates libraries. This is not a security update.
https://flickrdownloadr.com/downloads/

iTunes 12.12.0.6 is a security update. Use Apple Software Update to install the most current version.
https://www.apple.com/itunes/download/

MediaMonkey 5.0.3 resolves a duplication bug. This is not a security update.
https://www.mediamonkey.com/windows#download

Plex Home Theater 1.5.1.2629 updates libraries, improves hardware support, and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.24.3.5033 adds support for new hardware, updates libraries, resolves stability and reliability bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Steam 2021.09.20 resolves dozens of bugs. This is not a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Nintendo Switch 13.0.0 adds Bluetooth Audio, the ability to install Dock updates, and preserve the Internet connection in sleep mode. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PlayStation PS5 21.02-04.00.00 adds M.2 SSD expansion support, 3D audio, and resolves several bugs. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Office Updates

One or more of these are likely to be of interest to most people.

Audacity 3.0.4 resolves a stability bug. This is not a security update.
https://www.audacityteam.org/download/

Blender 2.93.4 resolves dozens of bugs. This is not a security update.
https://www.blender.org/download/

Gimp 2.10.28 is a major update ported to GEGL, adds multithreading, GPU-side processing, hi-DPI support, and improved user interface, selection tools and more. This is not a security update.
https://www.gimp.org/

IcoFX 3.6.1 resolves a startup bug. This is not a security update.
https://icofx.ro/

Krita 4.4.8 resolves several bugs. This is not a security update.
https://krita.org/en/download/krita-desktop/

LibreOffice Fresh 7.2.1 resolves over 400 bugs. This is a security update. The “Fresh” line is beta software, and should be avoided in favor of the “Still” version for most users.
https://www.libreoffice.org/

LibreOffice Still 7.1.6 resolves 44 bugs. This is not a security update.
https://www.libreoffice.org/

Nextcloud Desktop 3.3.4 resolves several bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.1.4 resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

Adobe XMP Toolkit SDK 2021.08 is a security update.
https://helpx.adobe.com/security/products/xmpcore/apsb21-85.html

Adobe Photoshop 21.2.12 and 22.5.1 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb21-84.html

Adobe Experience Manager 6.5.10.0 is a security update.
https://helpx.adobe.com/security/products/experience-manager/apsb21-82.html

Adobe Genuine Service 7.4 is a security update.
https://helpx.adobe.com/security/products/integrity_service/apsb21-81.html

Adobe Digital Editions 4.5.11.187658 is a security update.
https://helpx.adobe.com/security/products/Digital-Editions/apsb21-80.html

Adobe Premiere Elements 20210809.daily.2242976 is a security update.
https://helpx.adobe.com/security/products/premiere_elements/apsb21-78.html

Adobe Photoshop Elements 20210811.m.158081 is a security update.
https://helpx.adobe.com/security/products/photoshop_elements/apsb21-77.html

AdobeCreative Cloud Desktop Application 5.5 is a security update.
https://helpx.adobe.com/security/products/creative-cloud/apsb21-76.html

Adobe ColdFusion 2018.12 and 2021.2 are security updates.
https://helpx.adobe.com/security/products/coldfusion/apsb21-75.html

Adobe Framemaker 2019.8 and 2020.3 are security updates.
https://helpx.adobe.com/security/products/framemaker/apsb21-74.html

Adobe InDesign 16.4 is a security update.
https://helpx.adobe.com/security/products/indesign/apsb21-73.html

Adobe SVG-Native-Viewer 20210914 is a security update.
https://helpx.adobe.com/security/products/svg-native-viewer/apsb21-72.html

Adobe InCopy 16.4 is a security update.
https://helpx.adobe.com/security/products/incopy/apsb21-71.html

Adobe Premiere Pro 15.4.1 is a security update.
https://helpx.adobe.com/security/products/premiere_pro/apsb21-67.html

Adobe Acrobat and Reader 2021.007.20091, 2020.004.30015, and 2017.011.30202 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb21-55.html

Security Software Updates

One or more of these is likely to be of interest to most people.

Tails 4.22 resolves several stability bugs with Tor. This is a security update.
https://tails.boum.org/install/dvd-download/index.en.html

BelArc Advisor 11.1 adds support for new software and operating systems. This is not a security update.
https://www.belarc.com/products_belarc_advisor

Hashcat 6.2.4 improves performance, adds hash modes, and resolves several bugs. This is not a security update.
http://hashcat.net/hashcat/#downloadlatest

KeePass 2.49 improves accessibility, reliability, and resolves several bugs. This is not a security update.
https://keepass.info/

OnionShare 2.3.3 adds dark mode, updates libraries, and resolves several bugs. This is not a security update.
https://onionshare.org/

OpenSSL 1.1.1l and 3.0.0 are security updates.
https://curl.se/windows/
https://slproweb.com/products/Win32OpenSSL.html

RogueKiller 15.1.0 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

uBlock Origin 1.38.0 adds Node.js support and resolves several bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

WebBrowserPassView 2.11 adds a new export/import option, Firefox CSV. This is not a security update.
https://www.nirsoft.net/utils/web_browser_password.html

Capture Updates

These are unlikely to be of interest to most people.

Elgato Game Capture HD 3.70.55 adds Facecam support and resolves several bugs. This is not a security update.
https://www.elgato.com/en/game-capture-software

SnagIt 2021.4.4 resolves several bugs. This is a security update.
https://download.techsmith.com/snagit/enu/snagit.exe

Converter Updates

These are unlikely to be of interest to most people.

HandBrake 1.4.1 resolves several bugs. This is not a security update.
https://handbrake.fr/

PDF Creator 4.4 resolves several bugs, adds CS Script action, page numbers, and a couple more actions. This is not a security update.
https://www.pdfforge.org/pdfcreator

Education updates

One or more of these are likely to be of interest to most people.

Zotero 5.0.96.3 resolves several bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 7.8.7 resolves dozens of bugs and compatibility issues. This is not a security update.
https://1password.com/downloads/mac/

Autoruns 14.01 resolves a bug with VirusTotal and adds a dark theme. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/autoruns

Beyond Compare 4.4.0.25886 adds support for TLS 1.3, improves SFTP and resolves several bugs. This should be treated as a security update.
https://www.scootersoftware.com/download.php?zz=dl4

Bitwarden 1.28.2 resolves several bugs. This is not a security update.
https://bitwarden.com/

CPU-Z Installer 1.97 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

DesktopOK 9.21 improves support for Windows 11 and resolves bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 2.9.378.0 adds several new features and resolves several bugs. This is a security update.
https://dngrep.github.io/

Drive Snapshot 1.49 adds support for new operating systems and improves encryption. This should be treated as a security update.
http://www.drivesnapshot.de/en/

Etcher 1.5.122 resolves several bugs. This is not a security update.
https://www.balena.io/etcher/

Everything Toolbar 0.7.2 resolves a display bug. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

Fido 1.24 adds UEFI Shell downloads and command line support. This is not a security update.
https://github.com/pbatard/Fido/releases

GoodSync 11.8.2 resolves several bugs. This is not a security update.
https://www.goodsync.com/

LessMSI 1.8.2 resolves a CAB parsing bug. This is not a security update.
https://lessmsi.activescott.com/

NTLite 2.3.0.8330 adds support for Windows 11 and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

osquery 5.0.1 adds several new tables and queries, updates libraries and resolves several bugs. This is not a security update.
https://osquery.io/downloads

PowerToys 0.45.0 improves stability and resolves dozens of bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Process Monitor 3.84 adds dark theme. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/procmon

Process Explorer 16.43 resolves a memory leak and other bugs. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/process-explorer

Synergy 1.14.1 resolves several bugs, improves reliability and adds new operating system support. This is not a security update.
https://symless.com/synergy/

Sysmon 13.24 improves stability and event handling. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

TCPView 4.14 adds dark theme. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/tcpview

TeamViewer 15.21.8 resolves a license warning bug. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

WhyNotWin11 2.4.1 improves compatibility detection. This is not a security update.
https://github.com/rcmaehl/WhyNotWin11

WifiChannelMonitor 1.70 adds 802.11ac monitoring mode. This is not a security update.
https://www.nirsoft.net/utils/wifi_channel_monitor.html

WifiInfoView 2.71 improves internationalization. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

Windows 11 RCT 1.1.0 improves compatibility detection. This is not a security update.
https://bytejams.com/

WinScan2PDF 7.31 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 4.03 is a massive update. This version adds zoom, improved search controls and organization, Explorer interaction and improved cosmetic controls. This is not a security update.
https://wiztreefree.com/

Developer Updates

These are unlikely to be of interest to most people.

AutoHotkey 1.1.33.10 resolves several bugs. This is not a security update.
https://www.autohotkey.com/download/

Godot 3.3.3 resolves dozens of bugs. This is not a security update.
https://godotengine.org/

Node.js v12 12.22.6 is a security update.
https://nodejs.org/en/

Node.js v14 14.17.6 is a security update.
https://nodejs.org/en/

Node.js v16 16.9.1 updates libraries, resolves several bugs, and improves error handling. This is a security update.
https://nodejs.org/en/

Unreal Engine 4.27 resolves several bugs. This is not a security update.
https://unrealengine.com/en-US/

Visual Studio Code 1.60 adds debug watch values, improves cosmetics, and resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Web Package Updates

These are likely to be of interest only to web developers.

OpenCart 3.0.3.8 resolves an RTL bug. This is not a security update.
https://www.opencart.com/

Coppermine Gallery 1.6.13 is a security update.
https://coppermine-gallery.net/

Dada Mail 11.15.1 updates libraries and resolves several bugs. This is a security update.
https://dadamailproject.com/

Docker Desktop 4.0.1 introduces the new licensing scheme, updates libraries, and resolves several bugs. This is not a security update.
https://www.docker.com/products/docker-desktop

Drupal 9.1.13 is a security update (the second in a week).
https://drupal.org/download

Drupal 9.2.5 resolves dozens of bugs. This is not a security update.
https://drupal.org/download

MailArchiva 8.2.4 resolves several bugs. This is not a security update.
https://mailarchiva.com/

MailEnable 10.36 resolves several bugs, including a certificate assignment bug. This is not a security update.
https://www.mailenable.com/

Nextcloud Server 22.1.1 updates libraries and resolves dozens of bugs. This is not a security update.
https://nextcloud.com/

ownCloud Client 2.9.0.5150 resolves several bugs and improves stability. This is not a security update.
https://owncloud.com/desktop-app/

ScreenConnect 21.12.4575.7914 adds several controls for compatibility and reporting, improves stability, and resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

YOURLS 1.8.2 resolves several bugs. This is a security update.
https://yourls.org/

WordPress 5.8.1 is a security update.
https://wordpress.org/

Akismet 4.1.12 resolves a couple bugs. This is not a security update.

Autoptimize 2.9.2 improves compatibility and resolves several bugs. This is not a security update.

BuddyPress 9.1.1 is a security update.

Duplicator 1.4.3 resolves several bugs. This is not a security update.

Postie 1.9.57 improves attachment handling. This is not a security update.

Show IDs 1.1.8 adds support for the latest WordPress. This is not a security update.

Slider Revolution 6.5.8 resolves several bugs. This is not a security update.
https://revolution.themepunch.com/

Social Post Feed 4.0 is a major update adding several new features. This is not a security update.

Sucuri Security 1.8.28 removes a warning. This is not a security update.

Visual Composer 38.1 resolves a couple bugs. This is not a security update.
https://visualcomposer.com/

W3 Total Cache 2.1.8 resolves several bugs. This is not a security update.

WooCommerce 5.7.0 resolves several bugs. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2019-10-08

Hi, Folks!

Today is Patch Tuesday for October 2019 and it’s pretty mild for anyone not using Apple products.

The next build of Windows 10, version 1909, will be released any time. This version will be minor compared to other Windows 10 upgrades and should be nearly indistinguishable from 1903. If you’re running 1903 now installing 1909 should have no negative impact. If you’re running an older version I recommend upgrading to 1903 before switching to 1909.

Windows 7 will fall completely out of support in only 3 months. Don’t run out the clock. If you are running a licensed version of Windows 7 you can still upgrade to Windows 10 and have a supported version of Windows for the foreseeable future. Get it done before it’s too late. Don’t want to do it yourself? Call me!
https://saferpc.info/contact/

This month we learned that sometimes the weakest link is support. ZenDesk, central to support for more than 120,000 companies from Airbnb to MailChimp to Vimeo, was hacked in 2016 and discovered it only last week. They’re doing things right: public exposure, contacting customers, describing the chain of events, getting outside help to research and resolve their issues. Unfortunately, this doesn’t eliminate the problems for the approximately 25% of their customers that were exposed in this breach.

Now back to our regularly scheduled program. The typical computer should see roughly 2 GB in updates today. Let’s get started.

Microsoft released updates for Windows, .NET, Edge, Internet Explorer, and MSRT (~ 1.1 GB). This includes security updates. A reboot is required.

Apple released updates for macOS Catalina 10.15, macOS Mojave 10.14.6 Supplemental Update 2, Security Update 2019-005 High Sierra, Security Update 2019-005 Sierra, iCloud for Windows 10.7, iCloud for Windows 7.14, iTunes for Windows 12.10.1, iOS 12.4.2, iOS 13.1.2, iPadOS 13.1.2, Safari 13.0.1, Xcode 11.0, tvOS 13, and watchOS 6.0.1. These are security updates. Use Apple Software Update to install the most current versions.

macOS Catalina (10.15) is available! This is a large download and will take between 2 and 4 hours to install on most hardware. The release of macOS Catalina (10.15) means that macOS Sierra (10.12) is now no longer supported. If you can not install at least macOS High Sierra (10.13) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

iOS 12.4.2 and 13.1.2 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 6.0.1 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 13.0 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 77.0.3865.105 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Catalina (10.15) means that macOS Sierra (10.12) is now no longer supported. If you can not install at least macOS High Sierra (10.13) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (1903) will cause your computer to feel unusually slow until it is installed. This is a side-effect of the Windows 10 upgrade cycle, which pushes out 3-6 GB through Windows update to get you to the latest Windows 10 release every 6 months. If you don’t let it finish and you’re on a slow connection, it will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.1.9 improves cleanup, system restore, and resolves several bugs. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Intel Driver and Support Assistant 19.9.38 improves device detection. This is not a security update.
https://www.intel.com/p/en_US/support/detect

nVidia 436.48 adds support for newer hardware and improves performance. This is not a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 77.0.3865.90 is a security update. Use Menu, Help, About to get the most current version.

Firefox 69.0.2 resolves several bugs, but follows shortly on the heels of 69.0.1, which was a security update. Use Menu, Help, About to get the most current version.

Vivaldi 2.8.1664.40 resolves several bugs. This is not a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 68.1.1 is a security update. Use Menu, Help, About to get the most current version.

Internet Updates

One or more of these are likely to be of interest to everyone.

Prosody 0.11.3 resolves several bugs and improves reliability. This is not a security update.
https://prosody.im/download/start

Trillian 6.2.0.12 resolves several bugs. This is not a security update.
https://www.trillian.im/

aria2 1.35.0 updates libraries and resolves several bugs. This is a security update.
https://aria2.github.io/

BrowsingHistoryView 2.25 adds support for Waterfox. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

DNSDataView 1.60 adds TTL. This is not a security update.
https://www.nirsoft.net/utils/dns_records_viewer.html

FileZilla Client 3.45.1 resolves several bugs and adds stale version detection. This should be treated as a security update.
https://filezilla-project.org/

MaxMind GeoIP2 201910 is a data refresh.
http://dev.maxmind.com/geoip/

PuTTY 0.73 is a security update.
https://www.chiark.greenend.org.uk/~sgtatham/putty/download.html

WinSCP 5.15.4 is a security update.
https://winscp.net/eng/index.php

Media Updates

These are unlikely to be of interest to most people.

MusicBrainz Picard 2.2.2 resolves dozens of bugs and adds several new features. This is not a security update.

Flickr Downloadr 3.2.3.1 resolves a JSON length bug. This is not a security update.

iTunes 12.10.1 is a security update. Use Apple Software Update to install the most current version.

Game Updates

These are unlikely to be of interest to most people.

Steam 2019.09.19 resolves a beta bug. This is not a security update. Use Steam to update Steam.

PlayStation PS4 7.00 is a major update that doubles the size limit of parties to 16, improves networking, adds chat transcription, improves voice audio, adds Remote Play to more devices, and resolves several bugs. This is not a security update.
https://www.playstation.com/en-us/support/system-updates/ps4/

Office Updates

One or more of these are likely to be of interest to most people.

Artweaver 7.0.2 improves online update and error reporting, resolves several bugs. This is not a security update.
http://www.artweaver.de/

Krita 4.2.7.1 resolves several bugs, improves color selector, layer controls, and adds new brushes. This is not a security update.
https://krita.org/en/download/krita-desktop/

LibreOffice Fresh 6.3.2 resolves dozens of bugs. This is not a security update. (“Fresh” is the Beta version so stick with “Still” unless you don’t mind stability issues.)
https://www.libreoffice.org/

OpenOffice 4.1.7 resolves several bugs and adds support for OpenJDK. This is not a security update.
http://www.openoffice.org/download/

Paint.net 4.2.5 adds support for WebP format and resolves several bugs. This is not a security update.
https://www.getpaint.net/

Adobe DNG Converter 11.4.1 adds support for newer hardware. This is not a security update.
macOS: https://supportdownloads.adobe.com/detail.jsp?ftpID=6743
Windows: https://supportdownloads.adobe.com/detail.jsp?ftpID=6741

Security Software Updates

One or more of these is likely to be of interest to most people.

OpenSSL 1.0.2t is a security update.
https://indy.fulgan.com/SSL/

RogueKiller 13.5.2 resolves several bugs, improves performance for large files, and improves stability. This is not a security update.
https://www.adlice.com/softwares/roguekiller/

Wireless Network Watcher 2.21 updates the internal MAC database. This is not a security update.
https://www.nirsoft.net/utils/wireless_network_watcher.html

PureOS 9.0 is a new major release of PureOS, updates libraries, dependencies and forging the way for the final release of the Librem 5. This is a security update.
https://pureos.net/download/

Converter Updates

These are unlikely to be of interest to most people.

MKVToolnix 38.0.0 resolves several bugs, improves immutability, adds new default output (console) to mkvextract. This is not a security update.
https://www.fosshub.com/MKVToolNix.html

DVDFab 11.0.5.3 adds support for new encodings, updates libraries, resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

Education updates

One or more of these are likely to be of interest to most people.

e-Sword 12.1 updates the downloader to support eStudySource. This is not a security update.
https://www.e-sword.net/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Windows 7.3.712 resolves several bugs, adds support for new features. This is a security update.
https://1password.com/downloads/windows/

Agent Ransack 2019.2929 is a major update that adds high-DPI support, improves performance, improves PDF search, resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

BgInfo 4.28 doesn’t provide a changelog, so should be treated as a security update.
https://live.sysinternals.com/

Sysmon 10.41 resolves a configuration parsing bug. This is not a security update.
https://live.sysinternals.com/

DesktopOK 6.59 resolves several bugs and improves color detection. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

Etcher 1.5.57 resolves a startup bug. This is not a security update.
https://www.balena.io/etcher/

FolderChangesView 2.30 adds “*.” support to include/exclude files without filenames. This is not a security update.
https://www.nirsoft.net/utils/folder_changes_view.html

GoodSync 10.10.9 resolves several bugs and updates cipher list. This is a security update.
https://12pd.com/click?goodsync

NTLite 1.8.0.7165 adds new features, updates translations, and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 7.0.1004 adds clipboard viewer, AmCache viewer, auto triage, VM improvements, improved indexing, and resolves several bugs. This is not a security update.
https://www.osforensics.com/download.html

Password Security Scanner 1.46 improves reliability and adds support for Waterfox. This is not a security update.
https://www.nirsoft.net/utils/password_security_scanner.html

Recover Keys 11.0.4.233 adds support for over 1,000 new applications. This is not a security update.
https://recover-keys.com/en/download.html

RoboForm 8.6.1 impose periodic Master Password check, add difference check to Backup/Restore, add import from Sticky Password, resolves several bugs. This is not a security update.
https://12pd.com/click?rf

Rufus 3.8 resolves several bugs. This is not a security update.
https://rufus.ie/en_IE.html

SearchMyFiles 3.05 adds support to specify time range in GMT. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

WakeMeOnLan 1.85 updates the internal MAC database. This is not a security update.
https://www.nirsoft.net/utils/wake_on_lan.html

WifiInfoView 2.47 updates the internal MAC database. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

WinScan2PDF 5.01 improves drag and drop page re-order feature, multiformat output, adds support for multiple scan operations. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WSUS Offline 11.8.1 improves detection of updates and resolves supersedence issues. This is not a security update.
http://download.wsusoffline.net/

Developer Updates

These are unlikely to be of interest to most people.

AutoHotkey 1.1.31.00 adds Switch and InputHook, improves support for long paths, and resolves several bugs. This is not a security update.
https://www.autohotkey.com/download/

Android Studio 3.5.1.0 resolves several bugs. This is not a security update.
https://developer.android.com/studio/index.html

Node.js 12.11.1 resolves several bugs. This is not a security update.
https://nodejs.org/en/

SQLite 3.30.0 adds support for aggregate filters, NULLS FIRST/NULLS LAST in order by, improves index, and resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Virtual Machine Updates

These are unlikely to be of interest to most people.

PPSSPP 1.9.3 resolves several bugs. This is not a security update.
https://ppsspp.org/downloads.html

Web Package Updates

These are likely to be of interest only to web developers.

YOURLS 1.7.4 is a security update.
https://yourls.org/

Drupal 8.7.8 is a security update.
https://drupal.org/download

Joomla 3.9.12 is a security update.
https://www.joomla.org/

Nextcloud Server 17.0.0 adds remote wipe, improved 2FA, secure view, one-time login tokens, secure mailbox Outlook Add-in, and resolves several bugs. This is not a security update.
https://nextcloud.com/

Adobe ColdFusion 2018.5 and 2016.12 are security updates.
https://helpx.adobe.com/security/products/coldfusion/apsb19-47.html

phpList 3.4.6 resolves several bugs. This is not a security update.
http://www.phplist.com/download

phpMyAdmin 4.9.1 resolves several bugs. This is a security update.
http://www.phpmyadmin.net/home_page/news.php

BuddyPress 5.0.0 adds BP REST API, group invites, group membership requests, improved WP integration, and resolves several bugs. This is not a security update.

Smash Balloon Social Post Feed 2.11 (was Custom Facebook Feed) adds several new options, restores FB group access, and updates FB API to v4.0. This is not a security update.

myStickymenu 2.2.3 updates Pro features. This is not a security update.

Redirection 4.4.2 resolves several bugs. This is not a security update.

W3 Total Cache 0.10.1 resolves several bugs. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

Updates 2019-01-08

Welcome to 2019, Folks! I’ve never been so happy to have a year behind me. 2019 is looking good even if it starts with a huge number of updates.

Today is Patch Tuesday and it’s a big one. Every major vendor has their regular updates, and it looks like every minor vendor took the holiday break to work on updates for their software, too.

The typical computer should see roughly 3 GB in updates today. Let’s get started.

Microsoft released updates for Windows, Edge, Internet Explorer, .NET, Flash, and MSRT (~2 GB). This includes security updates. A reboot is required.

iOS 12.1.2 is a security update. Use Settings, General, Software Update to install the most current update.

Adobe AIR 32.0.0.89 is a security update.
Win: https://12pd.com/click?air
Mac: https://12pd.com/click?airmac

Adobe Flash Player 32.0.0.114 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Google Chrome OS 71.0.3578.94 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The now-current release of Windows 10 (1809) will cause your computer to feel unusually slow until it is installed. This is a side-effect of the Windows 10 upgrade cycle, which pushes out 3-6 GB through Windows update to get you to the latest Windows 10 release every 6 months. If you don’t let it finish and you’re on a slow connection, it will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.0.6 resolves several bugs and adds support for newer hardware. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Logitech Options 7.10.5 is a security update.
https://support.logitech.com/en_us/software/options

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 71.0.3578.98 is a security update.

Vivaldi 2.2.1388.37 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.5.5 adds preview for common attachment types and resolves several bugs. This is not a security update.
https://getmailspring.com/

Internet Updates

One or more of these are likely to be of interest to everyone.

Skype 8.36.0.52 resolves several bugs. This is not a security update.
https://12pd.com/click?skype

DNSDataView 1.56 adds command-line configuration syntax. This is not a security update.
https://www.nirsoft.net/utils/dns_records_viewer.html

IPNetInfo 1.80 now defaults to detecting IPv6 addresses and provides command-line configuration syntax. This is not a security update.
https://www.nirsoft.net/utils/ipnetinfo.html

WinSCP 5.13.7 resolves several bugs. This is not a security update.
https://winscp.net/eng/index.php

uTorrent 3.5.5 Build 44954 resolves several bugs. This is not a security update.
https://www.utorrent.com/downloads

FreeFileSync 10.7 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Npcap 0.99-r8 resolves several bugs. This is not a security update.
https://nmap.org/npcap/

MaxMind GeoIP Data 201901 is a data refresh.
https://dev.maxmind.com/geoip/geolite

Media Updates

These are unlikely to be of interest to most people.

VLC Media Player 3.0.5 resolves several bugs, updates libraries and components, and now imposes runtime hardening on macOS. This is not a security update.
https://www.videolan.org/vlc/

MusicBrainz Picard 2.1 resolves many bugs, adds AAC/ADTS/MIDI/SMF support, $delete, $title, and several other improvements. This is not a security update.
https://picard.musicbrainz.org/

Game Updates

These are unlikely to be of interest to most people.

EA Origin 10.5.32.18460 resolves several bugs and adds data moving. This is not a security update.
https://www.origin.com/en-us/download

PlayStation PS4 6.20 improves performance. This is not a security update. Note that Sony says it is important not to install this update “soon before or soon after” a power outage. If you’re planning to have a power outage, wait for well after it ends before installing the PS4 update. LOL
https://www.playstation.com/en-us/support/system-updates/ps4/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 19.010.20069 is a security update. Use Help, Check for Updates to install the most current version.

Adobe Connect 10.1 is a security update.
Win: https://www.adobe.com/go/Connectmsi
Mac: https://www.adobe.com/go/ConnectSetupMac

Adobe Digital Editions 4.5.10 is a security update.
https://www.adobe.com/solutions/ebook/digital-editions/download.html

Notepad++ 7.6.2 resolves several bugs and improves the plugin sanity…but requires that you move any plugins you put in %appdata% for 7.6 under %programdata% now with 7.6.1+, but still allows custom user-level configuration of the installed plugins through %appdata%. It’s the right way to do things and will be better for all of us once we get past this. This is not a security update.
https://12pd.com/click?npp

Krita 4.1.7 resolves several bugs, including a rather annoying wifi bug introduced by a dependency. This is not a security update.
https://krita.org/en/download/krita-desktop/

LibreOffice Fresh 6.1.4 resolves over a hundred bugs. This is not a security update.
https://www.libreoffice.org/

Kindle for PC 1.25.0 Build 52064 doesn’t provide a changelog, so should be treated as a security update.
https://12pd.com/click?kindle4pc

Security Software Updates

One or more of these is likely to be of interest to most people.

TDSSKiller 3.1.0.25 doesn’t provide a changelog so should be treated as a security update.
https://support.kaspersky.com/viruses/utility#TDSSKiller

Wireless Network Watcher 2.19 updates the MAC addresses database. This is not a security update.
https://www.nirsoft.net/utils/wireless_network_watcher.html

RogueKiller 13.0.21 resolves several bugs, adds signatures, improves high-DPI support, and updates core engine. This is not a security update.
https://www.adlice.com/softwares/roguekiller/

SuperAntiSpyware 8.0.1026 resolves several bugs and adds ability to disable notifications.
https://www.superantispyware.com/download.html

Avast! Home Edition 19.1.2360 resolves several bugs, improves GUI, and reduces clutter. It still doesn’t behave well with low-resolution screens.
https://www.avast.com/free-antivirus-download

KeePass 1.37 adds several options including the ability to avoid storing data in the clipboard history. This should be treated as a security update.
https://keepass.info/

Converter Updates

These are unlikely to be of interest to most people.

CDex 2.13 resolves several bugs. This is not a security update.
https://cdex.mu/?q=download

AVStoDVD 2.8.8 resolves several bugs, adds several new features, and updates libraries. This should be treated as a security update.
https://sites.google.com/site/avstodvdmain/

DVDFab 11.0.1.2 adds several new output options, new encodings, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

IsoBuster 4.3 adds support to many new formats, resolves several new bugs, and adds syntax and command-line options, settings, performance improvements, and more. This is not a security update.
https://www.isobuster.com/download.php

Utility Updates

These are unlikely to be of interest to most people.

RoboForm 8.5.5 resolves several bugs. This is not a security update.
https://12pd.com/click?rf

7-Zip 18.06 improves performance and resolves several bugs. This is not a security update.
https://www.7-zip.org/

GoodSync 10.9.21 improves stability, license management, and resolves several bugs. This is not a security update.
https://12pd.com/click?goodsync

NTLite 1.7.2.6650 adds command-line support and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

1Password for Mac 7.2.4 is a security update.
https://1password.com/downloads/mac/

1Password for Windows 7.2.617 improves stability and compatibility. This should be considered a security update.
https://1password.com/downloads/windows/

DevManView 1.56 adds command-line configuration support and now returns an error code instead of 0 on error. This is not a security update.
https://www.nirsoft.net/utils/device_manager_view.html

DesktopOK 5.82 improves compatibility and resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

Everything 1.4.1.924 resolves several bugs. This is not a security update.
https://www.voidtools.com/

Sysmon 8.04 reverts a filtering change that broke existing configuration files, and resolves a couple bugs. This is not a security update.
https://sysinternals.com/

Bitcoin 0.17.1 resolves several bugs and improves performance. This is not a security update.
http://bitcoin.org/en/download

PointerStick 3.41 is a cosmetic update. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

SearchMyFiles 2.91 adds duplicate file indication. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

TaskSchedulerView 1.46 adds policy control for multiple instances and a column for network availability requirement. This is not a security update.
https://www.nirsoft.net/utils/task_scheduler_view.html

WifiChannelMonitor 1.58 adds always on top support and updates internal MAC database. This is not a security update.
https://www.nirsoft.net/utils/wifi_channel_monitor.html

WinScan2PDF 4.67 adds support for new translations and improves customization. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

Developer Updates

These are unlikely to be of interest to most people.

Node.js 11.6.0 adds and improves certificate trust and resolves several bugs. This should be treated as a security update.
https://nodejs.org/en/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 6.0.0-127566 is a major update with many resolved bugs. This version adds HiDPI support, export to Oracle Cloud Infrastructure, improved setup and maintenance, improved 3D support for guests, surround sound speakers, and Hyper-V as fallback core for compatibility. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

TinyMCE 4.9.2 resolves several bugs. This is not a security update.
https://www.tinymce.com/download/

phpList 3.3.7 resolves a minor bug. This is not a security update.
http://www.phplist.com/download

Coppermine Gallery 1.5.48 is a security update.
https://coppermine-gallery.net/

Drupal 8.6.5 resolves several bugs. This is not a security update.
https://drupal.org/download

YOURLS 1.7.3 resolves several bugs, adds hooks, and updates libraries. This should be treated as a security update.
https://yourls.org/

WordPress 5.0.2 resolves over 70 bugs in the 5.0 branch and follows quickly on the heels of the 5.0.1 security update. This should be treated as a security update to 5.0.
https://wordpress.org/

Contact Form 7 5.1.1 improves handling of empty response. This is not a security update.

Postie 1.9.27 improves support for parent post detection. This is not a security update.

Sucuri Security 1.8.19 resolves a couple bugs. This is not a security update.

Theme My Login 7.0.12 improves compatibility and reliability. This is not a security update.

WooCommerce 3.5.3 resolves a cosmetic bug for WP5 compatibility. This is not a security update.

WP Add Custom CSS 1.1.3 improves compatibility and uninstaller. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/