Updates 2021-08-10

Welcome back, Folks!

Today is Patch Tuesday for August, 2021. It’s a big one. There have been a series of Apple, Microsoft, and various hardware vulnerabilities, as well as the quarterly Oracle updates that kept the industry hopping. Couple that with Black Hat 2021 last week, which kept reminding us how poorly those who design our technology have done and continue to do.

This Month in Technology

Apple devices via Pegasus, IOMobileFrameBuffer, and Wi-Fi namesAtlassianCharming Kitten (hacking group), Cloudstar, cdnjs, FortiNet FortiManager and FortiAnalyzer, HP (and Samsung and Xerox) printer driver, Illinois State Police, Linux via SequoiaPulse Connect Secure, SonicWall Secure VPN, Swisslog Healthcare’s Translogic PTSVMware ESXiWindows via a SAM security bug, Hello, PrintNightmare (x3+), and PetitPotam, and a new exploit method for wiretapping DNS.

Apple announced a new feature where they scan your content “only” for images of child exploitation provided by an unaccountable third-party, while they assure their customers’ “screeching voices” that they won’t allow governments to directly access the data or feed the database or algorithms (uh-huh), just remember that this is the same company that vowed to silence online dissent and already works with governments to expose their users’ activity. Oh, and they’re launching their own VPN service which they claim even they won’t know what you’re using it for. Wink, wink.

While I’m on the subject of VPNs, Windscribe (a “secure” VPN service) servers were seized and were discovered to not use encryption. Talk about a false promise of privacy!

Now let’s do security. If you still thought Avast (the “get hacked every year” anti-virus company) was worth anything, knowing that Norton (the “we’ll just run our own crypto mining software on your hardware and you can pay us for it” people) was in talks to buy them for about $8B should make your skin crawl. Zoom lost an $85 million class-action cybersecurity lawsuit, and Colonial Pipeline is being targeted now.

The US Federal Government received a C- grade for their IT security. Half of the agencies tested received D grades. These are the same agencies that recently made a claim about the most secure election in history. Pay no attention to the missing 95% of ballots or remote access to voting machines. Or else!

Edward Snowden has a great writeup of physical vs theoretical security concerns,
and another on how the “security” industry is failing everyone. Regular maintenance (of everything!) is critical to technology security. Stale hardware & software are responsible for nearly every security incident. This is what we do and why this newsletter is even being published.

There was a major outage at Akamai that took down a large portion of the Internet.

Google broke ChromeOS twice this month for many users, once by preventing users from being able to login due to a single character coding error. I’m reminded of a Mark Twain quote: “Be careful about reading health books. You may die of a misprint.”

The thing about someone willing to buy your ransomware: when they feel wronged they’re likely to betray your ransomware gang.

Amazon is losing employees while CNN is firing them. Property owners are being ripped off by the state, and their tenants. There are child predators at Disney World.

There’s now a lawsuit over CDC under-counting vaccine deaths, meanwhile they’re over-counting infectionsignoring the risks, downplaying the ineffectiveness of the vaccine-induced herd immunity, and mandating cancer in children. Multiple pharmaceutical giants neglected to keep records of which “vaccines” were placebos and the European Parliament is being held liable for vaccine injuries and deaths. At least there has been victory in Alberta. It’s hard to take them seriously when they’re demonizing free will, treating dictates as law, government agencies are concealing their own violations of international lawmandating doctors violate their medical licenses in order to keep them, while flip-flopping like fish, and imposing prison time for unlawful parading. Would you trust someone with your life who thinks you should be in prison for disagreeing with them? It’s not enough for government to take 13%+ of what you pay at the pump (most gas stations profit is 1% or less) and force you into electric vehicles that they can pull the plug on anytime, they want to charge you for every mile you travel, too, personal or business.

Now for the good news:

Andy’s Mountain Grill & Deli is coming back! Starlink is growing fast and improving reliability and environmental tolerances.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday this month is huge. The typical computer should see roughly 3.0 GB in updates today. Let’s get started.

Microsoft released updates for Windows, Edge, .NET, Servicing Stack, Internet Explorer, and MSRT (~1.5 GB). This includes security updates. A reboot is required.

Apple released updates for iOS 14.7.1 and iPadOS 14.7.1, macOS Big Sur 11.5.1, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave, watchOS 7.6.1, tvOS 14.7, Safari 14.1.2, and iTunes 12.11.4. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 14.7.1 is a security update. Use Settings, General, Software Update to install the most current update.

iPadOS 14.7.1 is a security update. Use Settings, General, Software Update to install the most current update.

watchOS 7.6.1 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 14.7 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 92.0.4515.130 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Big Sur (11.x) means that macOS High Sierra (10.13) and older are no longer supported. If you can not install at least macOS Mojave (10.14) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v21H1) is very large, for the first time it’s actually smaller than the previous release, but it will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 6 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Nvidia 471.68 resolves several bugs. This is not a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Xerox Smart Start 1.6.25.0 doesn’t provide a changelog so should be treated as a security update.
https://www.support.xerox.com/en-us/content/143617

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.27.111 is a security update. Use Help, About to install the most current version.
https://brave.com/

Google Chrome 92.0.4515.131 is a security update. Use Help, About to install the most current version.
https://www.google.com/chrome/

Microsoft Edge 92.0.902.67 is a security update. Use Help, About to install the most current version.
https://www.microsoft.com/en-us/edge/business/download

Firefox 91.0 is a security update. Use Help, Check for updates to install the most current version.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 78.13.0 is a security update. Use Help, Check for updates to install the most current version.
https://www.mozilla.org/en-US/firefox/organizations/all/

SeaMonkey 2.53.8.1 is a security update.
https://www.seamonkey-project.org/

Vivaldi 4.1.2369.16 is a security update. Use Help, About to install the most current version.
https://vivaldi.com/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk for macOS 6.3.0 improves scam handling, adds PKG release, and resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

curl 7.78.0 resolves dozens of bugs. This is not a security update.
https://curl.haxx.se/windows/

Dropbox 128.4.2870 doesn’t provide a changelog so should be treated as a security update.
https://www.dropbox.com/

FileZilla Client 3.55.1 resolves a couple bugs. This is not a security update.
https://filezilla-project.org/

Google Earth 7.3.4 is a security update.
https://earth.google.com/

Java 8u301 is a security update.
https://www.java.com/en/download/manual.jsp

Nmap 7.92 resolves dozens of bugs. This is not a security update.
https://nmap.org/

Prosody 0.11.10 is a security update.
https://prosody.im/download/start

PuTTY 0.76 resolves several bugs. This is not a security update.
https://www.chiark.greenend.org.uk/~sgtatham/putty/download.html

Rclone 1.56.0 adds many new features, improves compatibility, and resolves several bugs. This is not a security update.
https://rclone.org/

Skype 8.73.0.124 resolves several bugs. This is not a security update.
https://www.skype.com/

Telegram 2.9.0 resolves several bugs. This is not a security update.
https://telegram.org/

WinSCP 5.19.2 updates libraries and resolves several bugs. This is not a security update.
https://winscp.net/eng/index.php

Zoom 5.7.4.804 improves notifications and resolves several bugs. This is not a security update.
https://zoom.us/

Email updates

These are unlikely to be of interest to most people.

Thunderbird 78.13.0 is a security update. Use Help, Check for updates to get the most current version.
https://www.thunderbird.net/en-US/

Media Updates

These are unlikely to be of interest to most people.

Flickr Downloadr 3.4.1.1 updates libraries. This is not a security update.
https://flickrdownloadr.com/downloads/

iTunes 12.11.4 is a security update.
https://apple.com/itunes

Plex Media Server 1.23.6.4881 resolves several bugs and improves scanner. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Epic Games 12.2.12 resolves several bugs. This is not a security update.
https://www.epicgames.com/

Nintendo Switch 12.1.0 improves stability. This is not a security update.

Steam 2021.07.21 resolves a path bug. This is not a security update.
https://www.steampowered.com/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Connect 11.2.3 is a security update.
https://helpx.adobe.com/security/products/connect/apsb21-66.html

Adobe Magento Commerce 2.4.3, 2.4.2-p2, and 2.3.7-p1 are security updates.
https://helpx.adobe.com/security/products/magento/apsb21-64.html

Adobe Reader DC 21.005.20060 improves reliability. This is not a security update.
https://get.adobe.com/reader

Atom 1.58.0 improves cosmetics and resolves several bugs. This is not a security update.
https://atom.io/

Audacity 3.0.3 resolves several bugs. This is not a security update.
https://www.audacityteam.org/download/

Blender 2.93.2 resolves dozens of bugs. This is not a security update.
https://www.blender.org/download/

Krita 4.4.7 resolves several bugs. This is not a security update.
https://krita.org/en/download/krita-desktop/

LibreOffice Fresh 7.1.5 resolves over 50 bugs. This is not a security update. The “Fresh” line is beta software and should be avoided for the stable release.
https://www.libreoffice.org/

Nextcloud Desktop 3.3.0 resolves over 50 bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.1.2 improves dark mode. This is not a security update.
https://notepad-plus-plus.org/

Security Software Updates

One or more of these is likely to be of interest to most people.

DNSQuerySniffer 1.85 adds sort menu options and improves high DPI support. This is not a security update.
https://www.nirsoft.net/utils/dns_query_sniffer.html

elementary OS 6 is a major update that integrates several new features and controls and a simplified installer. This is not a security update.
https://elementary.io/

RogueKiller 15.0.9 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

uBlock Origin 1.37.2 resolves several books. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Tails 4.21 is a security update.
https://tails.boum.org/install/dvd-download/index.en.html

Capture Updates

These are unlikely to be of interest to most people.

Elgato Game Capture HD 3.70.51 adds PS5 and Xbox Series X/S to input and resolves several bugs. This is not a security update.
https://www.elgato.com/en/game-capture-software

ScreenToGif 2.33.1 resolves several bugs. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

SnagIt 2021.4.3 is a security update.
https://download.techsmith.com/snagit/enu/snagit.exe

Converter Updates

These are unlikely to be of interest to most people.

HandBrake 1.4.0 adds several new filters, improves hardware encoding, resolves several bugs, and updates libraries. This is not a security update.
https://handbrake.fr/

Utility Updates

These are unlikely to be of interest to most people.

Dell Command Update 4.3 is a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

DesktopOK 9.15 improves compatibility with Windows 11 and resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

GoodSync 11.8.0 resolves several bugs and improves compatibility. This is not a security update.
https://www.goodsync.com/

Homedale 1.98 improves CLI support. This is not a security update.
https://www.the-sz.com/products/homedale/

IsMyHdOK 3.33 improves compatibility with Windows 11 and resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

NTLite 2.2.0.8152 adds several new features, improves performance, updates libraries and resolves bugs. This is not a security update.
https://www.ntlite.com/download/

Aomei Partition Assistant 9.4 adds Disk Defrag and resolves a bug. This is not a security update.
https://www.diskpart.com/

ProcDump 10.1 adds an option to specify a dumpfile comment and supports triage dumps. This is not a security update.
https://live.sysinternals.com/

PowerToys 0.43.0 improves stability and accessibility, and resolves dozens of bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

RDCMan 2.82 resolves a couple bugs. This is not a security update.
https://live.sysinternals.com/

RoboForm 9.1.9 resolves several bugs. This follows shortly after a security update.
https://www.roboform.com/

Rufus 3.15 updates libraries and resolves several bugs. This is not a security update.
https://rufus.ie/en/

Sigcheck 2.82 resolves a stability bug. This is not a security update.
https://live.sysinternals.com/

Synergy 1.14.0 is a security update.
https://symless.com/synergy/

Sysmon 13.23 resolves a stability bug. This is not a security update.
https://live.sysinternals.com/

ZoomText 2021 2021.2107.13.400 adds support for new hardware and resolves several bugs. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

Node.js 16.6.1 resolves several bugs. This build closely follow 16.6.0, which was a security update.
https://nodejs.org/en/

Node.js 14.17.4 is a security update.
https://nodejs.org/en/

Node.js 12.22.4 is a security update.
https://nodejs.org/en/

Visual Studio Code 1.59 improves extensions, finalizes the Testing API, adds Remote Containers, and resolves several bugs. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.14 resolves dozens of bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 6.1.26-145957 resolves several bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Dada Mail 11.14.2 resolves several bugs. This is not a security update.
https://dadamailproject.com/

Docker Desktop 3.5.2 resolves several bugs. This is not a security update.
https://www.docker.com/products/docker-desktop

Drupal 9.2.3 is a security update.
https://drupal.org/download

HumHub 1.9.0 resolves several bugs. This is not a security update.
https://www.humhub.com/en/download

MailArchiva 8.1.0 resolves several bugs. This is not a security update.
https://mailarchiva.com/

Nextcloud Server 22.1.0 resolves dozens of bugs. This is not a security update.
https://nextcloud.com/

ownCloud Server 10.8 resolves dozens of bugs. This is not a security update.
https://owncloud.org/install/

phpList 3.6.4 improves compatibility. This is not a security update.
https://www.phplist.org/

ScreenConnect 21.10.4238.7885 resolves a couple bugs. This is not a security update.
https://www.connectwise.com/software/control/download

WordPress 5.8 integrates Blocks into Widget logic, adds new patterns, and styles. This is not a security update.
https://wordpress.org/

Antispam Bee 2.10.0 resolves several bugs. This is not a security update.

Autoptimize 2.9.0 improves customization and controls. This is not a security update.

BuddyPress 9.0.0 improves compatibility, block support, and resolves several bugs. This is not a security update.

Contact Form 7 5.4.2 resolves several bugs. This is not a security update.

Interactive World Map 3.1.9.1 improves compatibility. This is not a security update.

myStickymenu 2.5.6 resolves several bugs. This is not a security update.

Postie 1.9.56 resolves a couple bugs. This is not a security update.

Redirection 5.1.3 resolves a couple bugs. This is not a security update.

Slider Revolution 6.5.6 resolves several bugs. This is not a security update.
https://revolution.themepunch.com/

Social Post Feed 2.19.3 improves compatibility. This is not a security update.

Sucuri Security 1.8.27 improves compatibility. This is not a security update.

Visual Composer 38.0 resolves several bugs. This is not a security update.
https://visualcomposer.com/

W3 Total Cache 2.1.6 resolves several bugs. This is not a security update.

WooCommerce 5.5.2 resolves several bugs. This is not a security update.

WordPress Zero Spam 5.0.13 resolves several bugs. This is a security update.

WP Mail SMTP 3.0.3 resolves several bugs. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2015-06-09

Hi, Folks!

It’s Patch Tuesday! The typical computer should see roughly 160mb in updates today. Let’s get started.

Microsoft released 6 updates to address issues in Windows, Office and Internet Explorer (~80mb). This includes security updates. A reboot is required.
http://update.microsoft.com/

Microsoft also announced the release date for Windows 10, a free upgrade to Windows 7 and 8.x (as long as you install it within the first year). Windows 10 will be released on July 29th, and will be a direct upgrade path (you won’t lose files, data or most settings or applications). You may need to reinstall some software. You may have noticed the Windows 10 logo in your system tray. You can use this to enable a local cache of the Windows 10 installation on your computer, however it will download a MINIMUM of 3gb to do so. If important updates are released before the launch in July, this could be updated or re-cached several times. If you have a slow, unstable or bandwidth limited connection, I recommend you wait until after the second Tuesday in August to enable this update. That will ensure you download the absolute least data necessary.

Adobe AIR 18.0.0.144 is a security update.
Win: https://12pd.com/click?air
Mac: https://12pd.com/click?airmac

Adobe Flash Player 18.0.0.160 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac
Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 15.3.0.0 corrects several bugs. This is not a security update.
http://www.wagnardmobile.com/DDU/

PlayStation PS3 4.75 improves stability. This is not a security update.
http://us.playstation.com/support/systemupdates/ps3/index.htm

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 43.0.2357.124 is a security update. Use Menu, About to install the most current version.

Firefox 38.0.5 is a performance update. This is not a security update. Use Help, About to install the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

OutlookAttachView 2.78 adds option to skip overwriting existing files. This is not a security update.
http://www.nirsoft.net/utils/outlook_attachment.html

Internet Updates

One or more of these are likely to be of interest to everyone.

Trillian 5.6.0.5 fixes Facebook and Google connectivity issues. After installing the update you will need to reopen Trillian and re-add the Facebook account. This is not a security update.
https://www.trillian.im/news/

Skype 7.5.0.102 does not provide a changelog, so should be treated as a security update.
https://12pd.com/click?skype

Dropbox 3.6.5 fixes several bugs, including performance, stability and update improvements. This is not a security update.
https://12pd.com/click?dropbox

Evernote 5.8.8.7837 corrects a bug that broke preferences during upgrade. This is not a security update.
http://www.evernote.com/

FileZilla 3.11.0.2 is a security update.
http://filezilla-project.org/

BrowsingHistoryView 1.70 is a cosmetic update. This is not a security update.
http://www.nirsoft.net/utils/browsing_history_view.html

Google Earth 7.1.5.1557 fixes auto-update and replaces OAuth 1.0 with OAuth 2.0. This should be treated as a security update.
http://earth.google.com/index.html

Media Updates

These are unlikely to be of interest to most people.

CDBurnerXP 4.5.5.5666 improves CD cover printing, adds custom gaps, improved upgrade, and fixes several bugs. This is not a security update.
http://cdburnerxp.se/

Plex Media Server 0.9.12.3.1173 now imposes HTTPS, fixes several bugs, including improvements to on-the-fly metadata reading. This should be treated as a security update.
https://plex.tv/downloads/1/archive

MPC HC 1.7.9 updates libraries, fixes many bugs. This is a security update.
http://sourceforge.net/projects/mpc-hc/

Game Updates

These are unlikely to be of interest to most people.

EA Origin 9.5.20.5318 adds voice chat, network quality testing, and various bug fixes. This is not a security update.

Minecraft 1.8.7 is a security update.
http://www.minecraft.net/

Office Updates

One or more of these are likely to be of interest to most people.

Notepad++ 6.7.8.2 fixes issues with the updater. This is not a security update.
https://12pd.com/click?npp

Artweaver 5.0.7 fixes several bugs. This is not a security update.
http://www.artweaver.de/

Security Software Updates

One or more of these is likely to be of interest to most people.

Wireshark 1.99.6 is a security update.
http://www.wireshark.org/

Junkware Removal Tool 6.9.1 is a security update.
http://thisisudax.org/

SecuritySoftView 1.00 is a new tool that identifies the security software for a Windows computer. This is the initial release.
http://www.nirsoft.net/utils/security_software_view.html

SmartSniff 2.20 adds loopback tracking. This is not a security update.
http://www.nirsoft.net/utils/smsniff.html

Wireless Network Watcher 1.81 adds “Last Detected On” column. This is not a security update.
http://www.nirsoft.net/utils/wireless_network_watcher.html

RogueKiller 10.8.2 fixes several bugs. This is a security update.
http://www.adlice.com/softwares/roguekiller/

SuperAntiSpyware 6.0.1194 is a security update.
http://www.superantispyware.com/download.html

Capture Updates

These are unlikely to be of interest to most people.

Elgato Game Capture HD (Win) 2.1.1 doesn’t provide a changelog, so should be treated as a security update.
https://www.elgato.com/en/game-capture-hd-support

Elgato Game Capture HD (Mac) 2.0.2 doesn’t provide a changelog, so should be treated as a security update.
https://www.elgato.com/en/game-capture-hd-support

VideoCacheView 2.86 fixes a bug on some systems with IE10+. This is not a security update.
http://www.nirsoft.net/utils/video_cache_view.html

XSplit Broadcaster 2.3.1505.0542 fixes several bugs. This is not a security update.
http://www.xsplit.com/get/

XSplit Gamecaster 2.3.1504.3030 fixes several bugs. This is not a security update.
http://www.xsplit.com/get/

Converter Updates

These are unlikely to be of interest to most people.

MakeMKV 1.9.3 adds support for newer media and fixes several bugs. This is not a security update.
https://12pd.com/click?makemkv

DVDFab 9.2.0.1 fixes several bugs. This is not a security update.
http://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

GoodSync 9.9.22 fixes several bugs. This is a security update.
https://12pd.com/click?goodsync

BFGMiner 5.2.0 updates libraries, fixes bugs and improves performance. This is a security update.
https://github.com/luke-jr/bfgminer/

CPU-Z 1.72.1 adds support for newer hardware. This is not a security update.
http://www.cpuid.com/softwares/cpu-z.html

Cygwin 2.0.4 is a bugfix release. This is not a security update.
http://cygwin.com/

TeamViewer 10.0.43174 fixes several bugs. This is not a security update.
http://www.teamviewer.com/en/download/windows.aspx

AS SSD Benchmark 1.8.5636 fixes bugs. This is not a security update.
http://www.alex-is.de/PHP/fusion/downloads.php?cat_id=4&download_id=9

LicenseCrawler 1.47 build-825 does not provide a changelog, so should be treated as a security update.
http://www.klinzmann.name/licensecrawler_download.htm

FileLocator Pro 7.5.2099 corrects several bugs. This is not a security update.
http://www.mythicsoft.com/filelocatorpro/download

MyEventViewer 2.14 fixes a cosmetic bug. This is not a security update.
http://www.nirsoft.net/utils/my_event_viewer.html

NetConnectChoose 1.07 fixes a cosmetic bug. This is not a security update.
http://www.nirsoft.net/utils/net_connect_choose.html

QuickSetDNS 1.05 adds tray support. This is not a security update.
http://www.nirsoft.net/utils/quick_set_dns.html

SimpleWMIView 1.01 is a new tool for constructing WMI queries. This is not a security update.
http://www.nirsoft.net/utils/simple_wmi_view.html

TcpLogView 1.16 adds the ability to be started hidden. This is not a security update.
http://www.nirsoft.net/utils/tcp_log_view.html

CCleaner 5.06.5219 fixes several bugs and improves cleaning. This is not a security update.
https://12pd.com/click?ccleaner

GPU-Z 0.8.3 adds support for newer hardware. This is not a security update.
http://www.techpowerup.com/downloads/SysInfo/GPU-Z/

Autoruns 13.4 adds support for Office addins, several more auto-start locations, and no longer hides hosting executables like cmd.exe, powershell.exe and others when Windows and Microsoft filters are in effect. This is a security update.
http://sysinternals.com/

ProcessMonitor 3.2 adds hexadecimal support, additional error code and file system control strings, and fixes a bug that prevented boot capture on Windows 10. This is a security update.
http://sysinternals.com/

VMMap 3.2 fixes a bug. This should be treated as a security update.
http://sysinternals.com/

AccessChk 6.0 adds the ability to show the permissions and security descriptors assigned to event logs. This is a security update.
http://sysinternals.com/

SystemRescueCD 4.5.3 is a security update.
http://www.sysresccd.org/

Developer Updates

These are unlikely to be of interest to most people.

MySQL 5.6.25 is a security update.
http://www.mysql.com/downloads/installer/

StrawberryPerl 5.22.0.1 updates libraries, core, and fixes bugs. This should be treated as a security update.
http://strawberryperl.com/

Web Package Updates

These are likely to be of interest only to web developers.

Dada Mail 8.1.0 adds Magic User Templates. This is not a security update.
http://dadamailproject.com/

ownCloud Client 1.8.2 is a security update.
https://owncloud.org/install/

phpMyAdmin 4.4.9 fixes several bugs. This should be treated as a security update.
http://www.phpmyadmin.net/home_page/news.php

Plupload 2.1.4 should be treated as a security update.
http://www.plupload.com/

Helicon Ape 3.1.0.200 improves Regular Expression support in Manager. This is not a security update.
http://www.helicontech.com/ape/download.html

BuddyPress 2.3.1 adds a lot of new features and fixes. This is a security update.

Contact Form 7 4.2 updates the editor. This is not a security update.

Easy Bootstrap Shortcode 4.4.2 is a stability update. This is not a security update.

Redirection 2.3.16 corrects a bug with export. This is not a security update.

WooCommerce 2.3.10 fixes a number of bugs.  This is a security update.

WPtouch 3.7.9.1 fixes several bugs. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2014-01-14

Hi, Folks!

It’s Patch Tuesday! And not just any Patch Tuesday, but the first one of the year — when many vendors implement new behaviors, new schedules and new problems.

On that note…

“The time has come,” the Walrus said, “To talk of many things:
Of shoes–and ships–and sealing-wax–  Of cabbages–and kings–
And why the sea is boiling hot–  And whether pigs have wings.”

Before we begin, I want to take a moment to warn the many Windows XP users of the upcoming end of support. Microsoft has confirmed that April 8th will be the last day Windows XP will receive updates or support of any kind. The same goes for Microsoft Office 2003.  As a result of this move, I expect a series of new malware for XP to be released *immediately* afterwards, perhaps as soon as 10:01am on April 8th – a minute after the last updates for XP are released.

If you’re still running Windows XP (along with more than 28% of the rest of the world), I strongly encourage you to upgrade to Windows 7 as soon as possible. Windows 7 will run on most hardware running Windows XP and will be supported by Microsoft until 2020. It’s not for retail sale anymore, but you can pick it up on Amazon for as little as $85 (sometimes). This close to the end, availability will suffer. Make sure you get the correct version for your hardware (32bit vs 64bit) and no, the “Anytime Upgrade” is not for Windows XP. One last note: all “upgrades” to Windows 7, 8 or 8.1 from Windows XP require a complete reinstall. You’ll lose your settings & applications and may lose data, depending on how you’re currently set up. When possible, I strongly recommend you install to a new clean drive, even if only temporarily, then migrate your settings and data using the Migration Wizard from the old drive, then you can clone the new install back to the old drive. This is a time consuming process but it will preserve the most data & settings from your existing installation.

…and now back to our regularly scheduled updates.

Microsoft released 4 updates for Office, Windows, Server, MSRT, Windows Defender and Dynamics AX. This includes security updates. A reboot is required.
http://update.microsoft.com/

Apple released updates for OS X, Safari, Motion, RAW Compatibility, Retina, and the first major patch to Mavericks. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

Adobe AIR 4.0.0.1390 is a security update.
Win: https://12pd.com/click?air
Mac: https://12pd.com/click?airmac

Adobe Flash Player 12.0.0.43 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone or kindle – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Catalyst 13.12 adds newer hardware support and bug fixes. This version no longer has Windows XP support!
https://12pd.com/click?atidriver

BullZip PDF Printer 10.2.0.2141 removes the toolbar from the free version, improves color matching, adds FTP & SFTP destinations, additional triggers, increased encryption options and more. This is not a security update.

GMail Drive FS 1.0.20 fixes a login bug due to changes in the Google authentication platform. This is not a security update.
http://www.viksoe.dk/code/gmail.htm

WD TV Live Streaming Media Player 2.01.86 adds several new services, corrects dozens of bugs, and breaks closed captioning for many video types. This is not a security update.
http://www.wdc.com/wdproducts/updates/?family=wdfwdtv_live_g3

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 32.0.1700.72 removes automatic instantiation of NPAPI plugins, reducing the attack surface. You can re-enable instantiation (for RoboForm for example) at chrome://plugins. This is a security update. Use Menu, About to get the most current version.

SeaMonkey 2.23 is a security update. Use Menu, About to install the update.

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 24.2.0 is a security update. Use Menu, About to get the most current version.

NK2Edit 2.87 is a bugfix release. This is not a security update.
http://www.nirsoft.net/utils/outlook_nk2_edit.html

OutlookAttachView 2.63 is a cosmetic update. This is not a security update.
http://www.nirsoft.net/utils/outlook_attachment.html

Internet Updates

One or more of these are likely to be of interest to everyone.

Java 7u51 is a security update. HOWEVER, if you don’t actually need it, remove it instead! If you do need it, get the 32-bit version and ALSO install the 64-bit version if you have a 64-bit CPU — ie; on 64-bit you install both.
32: https://12pd.com/click?java32
64: https://12pd.com/click?java64
http://www.java.com/en/download/manual.jsp

BrowsingHistoryView 1.43 corrects a cosmetic issue related to DST. This is not a security update.
http://www.nirsoft.net/utils/browsing_history_view.html

Connectify Hotspot 7.2.1 unifies the installer with Dispatch, improves the display, throttling and behavior controls, provides bug fixes and adds smart load balancing. This is not a security update.
http://www.connectify.me/new-release/

Evernote 5.1.0.2217 improves xAuth support and offline security. This is a security update.
http://www.evernote.com/

Google Drive 1.13.5782.0599 does not provide a changelog so should be treated as a security update. Close and re-open Google Drive to update.

IPInfoOffline 1.33 updates the internal country database. This is not a security update.
http://www.nirsoft.net/utils/ip_country_info_offline.html

IPNetInfo 1.52 updates the internal country database. This is not a security update.
http://www.nirsoft.net/utils/ipnetinfo.html

WinSCP 5.5 is a major update, with dozens of new features including automation, a cleaner interface, faster access to advanced features and a handful of bug fixes. This version also offers the ability to import sites and settings from third-party programs, integrates with alternative SSH clients and queue management. This is not a security update.

Codec Updates

One or more of these are likely to be of interest to everyone.

Win7 Codec Package 4.4.4 updates included codecs and libraries. To install the update, you must uninstall and reinstall the application. This is not a security update.
http://shark007.net/win7codecs.html

Media Updates

These are unlikely to be of interest to most people.

CDBurnerXP 4.5.2.4478 improves UDF, ISO & Joliet support, prefers .NET 4 over 2, imports title & artist from cue sheet for CD-Text. This is not a security update.
http://cdburnerxp.se/

Picasa 3.9.137.69 adds Google+ Auto Backup, improves RAW support, and fixes security bugs. This is a security update. To eliminate the G+AB nag, you can remove it within the control panel. Use Help, Check for Updates to install the most current version.

XBMC 12.3 updates PVR addons, corrects memory leaks, audio channel mapping, crash bugs and more. This should be treated as a security update.
http://xbmc.org/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader 11.0.06 is a security update. Use Help, Check for Updates to get the most current version.

Adobe Acrobat 11.0.06 Pro is a security update Use Help, Check for Updates to get the most current version.

Adobe Premiere Pro CC 7.2.1 is a security update. Use the Adobe Updater to get the most current version.

Notepad++ 6.5.3 corrects a bug with touchpad scrolling and offers a workaround to people facing similar issues. This is not a security update.
https://12pd.com/click?npp

Security Software Updates

One or more of these is likely to be of interest to most people.

Avast! Home Edition 9.0.2011 should vastly improve web performance while also adding crapware within the toolbar. This is a security update.
http://www.avast.com/

Wireshark 1.10.5 updates protocol support and corrects several bugs. This is not a security update.
http://www.wireshark.org/

Capture Updates

These are unlikely to be of interest to most people.

Elgato Game Capture HD 1.4 adds streaming to YouTube, Ustream and any custom RTMP server. This is not a security update. Click ‘Check for Updates’ to install the most current version.

Greenshot 1.1.7.17 updates the Box plugin to use v2 API and corrects several bugs. This is not a security update.
https://12pd.com/click?greenshot

SnagIt 11.4 fixes several bugs, adds Blur feature, and several other GUI changes. This is not a security update.
http://www.techsmith.com/

Open Broadcaster Software 0.592 Beta corrects several bugs. This is not a security update.
http://obsproject.com/

Converter Updates

These are unlikely to be of interest to most people.

MakeMKV 1.8.7 corrects a stability bug, improves reliability of output and adds support for AACS v46. This is not a security update.
https://12pd.com/click?makemkv

DVDFab 9.1.2.2 corrects issues with preview, noise and Apple TV output. This is not a security update.
http://www.dvdfab.com/download.htm

IsoBuster 3.3 adds Mpg transcoding, detects encrypted partitions, implements shell integration, provides several bug fixes and a number of new file system and cosmetic improvements. This is not a security update.
http://www.isobuster.com/isobusterdownload.php

Utility Updates

These are unlikely to be of interest to most people.

Agent Ransack 2014.816 is a major update providing new reporting information, additional export options, enhanced expressions, UI improvements and bug fixes. This is not a security update.
https://12pd.com/click?agentransack

CintaNotes 2.5 adds Remarks field, ‘any text field’ search filtering, improved export controls, import of UTF-8 XML files, upgraded libraries, and many more. This is not a security update.
http://cintanotes.com/

CCleaner 4.09.4471 improves cleaning for various apps and bugfixes. This is not a security update.
https://12pd.com/click?ccleaner

Coreinfo 3.21 adds microcode reporting. This is not a security update. Disk2vhd 2.0 adds support for VHDX-formatted VHDs, now supports WinRE volumes, can capture removable media, and includes an option to capture live volumes instead of relying on volume shadow copy. This is not a security update.
http://live.sysinternals.com/

GoodSync 9.7.4 improves locking behavior, fixes crash bugs, and issues with Google Drive, Google Docs, and Linux license activation. This is not a security update.
https://12pd.com/click?goodsync

LogMeIn Win 4.1.3888 alters the host behavior to trigger NPAPI-free browser integration for clients. This is not a security update.

IPXWrapper 0.4.1 adds support for automatically adding Windows Firewall exceptions and experimental support for point-to-point type VPN connections. This is not a security update.
http://www.solemnwarning.net/ipxwrapper/

TeamViewer 9.0.24951 is a bugfix release. This is not a security update.
http://www.teamviewer.com/en/download/windows.aspx

CPU-Z Installer 1.68 adds support for newer hardware. This is not a security update.
http://www.cpuid.com/softwares/cpu-z.html

BulkFileChanger 1.32 fixes a bug related to DST display. This is not a security update.
http://www.nirsoft.net/utils/bulk_file_changer.html

DNSQuerySniffer 1.15 adds the ability to show the country of the IP result. This is not a security update.
http://www.nirsoft.net/utils/dns_query_sniffer.html

FolderChangesView 1.61 adds the ability to purge the MRU list. This is not a security update.
http://www.nirsoft.net/utils/folder_changes_view.html

MyEventViewer 2.07 fixes a bug related to DST display. This is not a security update.
http://www.nirsoft.net/utils/my_event_viewer.html

NetworkTrafficView 1.80 adds the ability to display the hostname and IP addresses to the display mode. This is not a security update.
http://www.nirsoft.net/utils/network_traffic_view.html

SearchMyFiles 2.46 fixes a bug related to DST display. This is not a security update.
http://www.nirsoft.net/utils/search_my_files.html

TcpLogView 1.11 enables the localhost filter to also apply to IPv6 connections. This is not a security update.
http://www.nirsoft.net/utils/tcp_log_view.html

USBDeview 2.28 fixes a bug related to DST display. This is not a security update.
http://www.nirsoft.net/utils/usb_devices_view.html

Developer Updates

These are unlikely to be of interest to most people.

Redemption 5.6.0.3644 adds POP3/SMTP account automation, password manipulation, improved Exchange support and corrects a couple dozen bugs. This is not a security update.
http://www.dimastr.com/redemption/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 4.3.6-91406 corrects about a dozen non-security bugs.
http://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Adminer 4.0.2 adds SimpleDB, MongoDB and ElasticSearch support, SQL highlighting, and many more features. This is not a security update.
http://www.adminer.org/en/

phpMyAdmin 4.0.10 corrects several minor bugs. This is not a security update. phpMyAdmin 4.1.4 corrects several bugs, improves encryption, adds CAPTCHA support, and more. Be aware that the 4.1 branch now requires PHP 5.3 and MySQL 5.5+. If you’re not using these, either upgrade to the required minimums or use an alternative like Adminer.
http://www.phpmyadmin.net/home_page/news.php

Drupal 7.25 fixes several bugs. This is not a security update.
http://drupal.org/download

YOURLS 1.7 improves HTTP request handling, adds proxy support, improved UTF8 titles, and bug fixes. This is a security update.
http://yourls.org/

Coppermine Gallery 1.5.26 is a security update.
http://coppermine-gallery.net/

WordPress 3.8 is a major update offering a very new cleaner look and feel, new annual theme, updated libraries and performance improvements. This is not a security update. Be aware that several popular plugins and themes are still not compatible with this version, so be sure to do a full backup before upgrading!

bbPress 2.5.3 is a bugfix and WP 3.8 compatibility release. This is not a security update.

BuddyPress 1.9.1 is a major update many new features and dozens of bug fixes. This is not a security update.

Activate Update Services 1.0.7 is a WP 3.8 compatibility release. This is not a security update.

Contact Form 7 3.6 improves accessibility and Flamingo support, and updates libraries. This is not a security update.

Email Log 1.6.1 improves strict mode reliability, removes deprecated function call. This is not a security update.

Quick Cache 140104 adds automatic update support for Pro and new feed caching options. This is not a security update.

Raw HTML 1.4.11 fixes a compatibility issue with “the_content” being called out of the loop. This is not a security update.

Theme My Login 6.3.9 fixes several bugs. This is not a security update.

Ultimate TinyMCE 5.2 fixes several bugs. This is not a security update.

WPtouch 3.1.5 corrects bugs with taxonomy parsing, cosmetics, improved internationalization, and validates WP 3.8 compatibility. This should be a major performance update for most sites. This is not a security update.

Zemanta 1.2.3 increases default media size, removes unused code, and validates WP 3.8 compatibility. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/