Updates 2024-06-11

Welcome back, Folks!

Today is Patch Tuesday for June, 2024.

There were 460+ major hacks, and over 270 application updates this month.
It’s an average month, with about 2.5 GB of updates for most users.

This Month in Technology

4LEAF, Inc, A123Systems, Abbott, AbbVie Inc, ABN Amro, ABS-CBN Broadcasting, Absolute Telecom, AC Financial, AC Propulsion, Inc, Acadia Pharmaceuticals Inc, Access Sports Medicine & Orthopaedics, Accounting Professionals LLC Price Breazeale Chastang, ADCOM911, Adobe Acrobat Reader, Advance Auto Parts, Advance Press, Adventist Health Tulare, Affiliated Dermatologists, Agrani Bank, AirAsia Group, Akdenizchemson, Al-Rajhi Bank, Allied Mechanical Services Inc, Allied Telesis, ALN Medical Management, ALO diamonds, Aloft, Alpha Capital Group, Amazon, AmerisourceBergen Specialty Group, Amgen Inc, Amsterdam Schools, Anchorage Daily News, Anderson Mikos Architects, Android, Archi Hives, Architecture Lejeune Giovanelli, Ardenbrook, ARRL, Ascension Healthcare Network, Association of California School Administrators, Asst Rhodense, Astagiudiziaria, Aston Villa, Astra Daihatsu Motor, Atlas Oil, Atlassian Confluence, Audubon Nature Institute, Ausgrid, Aussizz Group, Avelina, Ayoub Associates CPA Firm, B&G Foods, Banco de Crédito del Perú, Barclays, Bausch Health Companies Inc, Bayer Corporation, BBC Pension Scheme, Berge Bulk, Billericay School, Birmingham Children’s Trust, BlockTower Capital, Bluewater Health, BNB Chain, BreachForums, BreingAir, Brett Slater Solicitors, Brick Court Chambers, Bring Me the Horizon’s website, Bristol Myers Squibb, British Columbia Government, Brockton Area Multi-Services, Brovedani Group, Bruno generators, Bulgarian Ports Infrastructure Company, Café Soluble, California Highway Patrol, California Northstate University, Call 4 Health, Inc, Catch News, CDU, Cencora (11 big pharma companies), Center Line schools, Central Contra Costa Transit Authority, CentroMed, Centurion University, Check Point VPN, Chicago Fire Football Club, Christie’s, Cinterion Modems, Cisco Webex, City of Clarksville, City of Helsinki, City of St. Cloud, Clevo, CoinGecko, College Ahuntsic, Columbus Regional Healthcare System, Comwave Networks, Continuing Healthcare Solutions, Cooler Master, Coplosa, Corr Corr, Corse GSM, Cortina Watch, Costa Edutainment SpA, Cox WiFi routers, Crandall ISD, Credit Central, Crescent Point Energy, Cressex Community School, Crooker, Crossroads Equipment Lease & Finance, LLC, Cryptonary, Cushman Contracting Corporation, Cylance, D-Link EXO AX4800 routers, Daniel E. Fitzgerald, CPA, Decathlon, Delano Adult School, Dendreon Pharmaceuticals LLC, DFINITY, DG3 North America, Inc, DGT traffic authority, Digital Pix & Composites, Discovery Insure, Disney, Dkhoon Emirates, DMM, Dohman, Akerlund & Eddy, Dollmar, Doral, Florida, Dota2, DreamWall, Drive Sally, LLC, Driver Group, DRMS, Dubai government, Dynasafe, E-T-A, Easterseals Central Illinois, Eden Project Ltd, Egyptian Universities, Eigen crypto, Electronic Arts, Elk Grove Unified School District, Elmhurst Group, Elutia, EmailGPT, Embellir, Endo Pharmaceuticals Inc, Ernest Health Facilities, ES Pack Euro, Especialistas Contacto Directo, EU Parliament, Everbridge, Ewing Marion Kauffman School, Excel Security Corp, Experis Technology Group, Facebook, Family Guardian, Faultless Brands, FEI Systems, Fic Expertise, Financial Business and Consumer Solutions (FBCS), Fincasrevuelta, First American, FIRST Heritage Co-operative Credit Union, First Nations Health Authority, First Priority Restoration, Firstmac, Fiskars, Fluent Bit, Form I-9 Compliance, Formosa Plastics, Foxit PDF Reader, FPL Food, France Solar, Frontier Communications, Frotcom International, Fulcrum, Gala Games, Gantan Beauty Industry, Gapbuster Worldwide Pty Ltd, GE HealthCare ultrasound devices, Genentech, Inc, Georgia University System, Gestion Kronos, GitLab, GlaxoSmithKline Patient Health, Google (thousands of times), Google Chrome, Google Document AI Warehouse, Granville Food Care Limited, Graphic Solutions Group Inc, Gravetye Manor, Greater Amsterdam School District, Grupo Cadarso, Guardian Analytics, Guardian Childcare Victoria, Gulp, Hamburg Airport, Hatari Electric Co, HawkEye, Hedbergs, Heineken, Helapet Ltd, Heron Therapeutics, Inc, Hit Promotional Products, HopSkipDrive, Hotel Kiosks, HSBC, Hugging Face Spaces, Iberdrola, IBM Cloud, IBM Neural Compressor AI, Illinois Secretary of State, Incyte Corporation, Indigo ENT Group, Interactive Brokers, Inventum Øst, Iranian Hajj, Iranian Pilgrims, Iress, Isaacs Odinocki, Iseto Corporation, Islamabad’s Safe City Authority, Israel-made industrial devices, Israeli Government and Military Infrastructure, ISTA International GmbH, Ivanti EPMM, IZOMAT Praha, J & N Stone, JAVS Courtroom Recording Software, Johnson & Johnson Patient Assistance Foundation, Inc, Johnson & Johnson Services, Inc, Jordano’s Inc, Jumbo Group, Kaiser Permanente, Keytronic, Klein ISD, Knowmad Mood, Kyber Post-Quantum Key Encapsulation Mechanism (KEM), Lactanet, Lane Gorman Trubitt, Lash Group, Laxmi Capital, Lee Shau Kee School of Creativity, LEMKEN, LenelS2 NetBox, Les Miroirs St Antoine Inc, Levin Porter Associates, Lintas Nusa, LivaNova, Live Nation, London Drugs, London Hospitals, Los Angeles Department of Mental Health (LACDMH), Los Angeles Unified School District (LAUSD), M2EConsulting Engineers, MagicLand, MAH Machine, Mainline Health Systems, Malaysia’s Railway Assets Corporation (RAC), Malone & Co, Malouf Companies, Manurewa Marae, NZ census, Marathon Pharmaceuticals, LLC, Marigin, Mariposa Landscapes Inc, Matusima, McLean Hospital, MediSecure, medQ, Inc, MF Group, Microsoft Exchange Server, Microsoft India, Microsoft Quick Assist, Midwest Covenant Home, Morton Williams, My Daily Choice, Inc, Myersville, Maryland, Mālama I Ke Ola Health Center, National Records of Scotland, Native American Health Center, NATO, Natsume Tax Accountant Corporation, Navvis & Company, LLC, Neovia Company, Netflix Genie, New Boston Dental Care, New Hampshire Public Radio, New York Times, Newfoundland Broadcasting Company Limited, Newman Ferrara, Nidec Motor Corporation, Nissan North America, Inc, Normie Meme Coin, North Texas Municipal Water District, Northeast Rehabilitation Hospital Network, Northern Minerals, Novartis Pharmaceuticals Corporation, Ntv, OakBend Medical, OmniVision, OneVue, OpenSea, Oracle WebLogic Server, Osaka Motorcycle Business Cooperative, OTR, Otsuka America Pharmaceutical, Inc, Oxford Global Resources, LLC, PAN-OS, Panasonic Australia, PandaBuy, Panorama Eyecare, Pantana CPA, Patriot Mobile, Patties Foods, pcTattletale, Peak Design, Pendle Token, PepsiCo, Pezesha, Pfizer Inc, Philippine National Police (PNP), Philips Respironics, PHP, Pope & Conner Consulting, Inc, Providence Hospital, PSG Banatski Dvor, Pulse Connect Secure VPN, QNAP NAS, QNAP QTS, Qualitas, QuoteWizard, R3 Education Inc, Rayner Surgical Inc, RDI-USA, Real Madrid CF, Red Bull, Red Cross, Regeneron Pharmaceuticals, Inc, Regional Obstetrical Consultants, Rex Signature Services, LLC, Richland, Washington, Rio Technology, Riyadh Airport, Robinsons Land, Robson, Rockford Public Schools, Rockwell Automation ICS, Royal Star & Garter, Räddningstjänsten Vä stra Blekinge, Samco, Sandoz Inc, Sanok Rubber Company Spólka Akcyjna, Santa Barbara Systems, Santander, Sav-Rx, Scanda, Schuette Metals, Science Po Paris, Seattle Public Library, Semicore Equipment, Service public de Wallonie, Servicio Móvil, Shirasaki, Shore Regional High School District, Sigmund Espeland AS, SLB Transit Inc, Smith and Caughey’s, Snchez-Betances Sifre & Muñoz-Noya, Snowflake, Solana Meme Coin, SonicWALL SSL-VPN, Sonne Finance, Southwark hospitals, Specialty Market Managers, Sree Hotels, SSI World, St. Landry Parish School, State Grid Corporation of China (SGCC), Sterling Transportation Services, Sumitomo Pharma America, Inc, Sumo, Superior Air-Ground Ambulance Service, Sysmex America, Takeda Pharmaceuticals USA, Inc, Talalay Global, Talley Group, Tamil Nadu, Tech in Asia, Telangana Police, Telefónica, Tesla’s Ultra-Wideband, Thayer Academy, The Egyptian-Sudanese Company, The Kelly Group, ThinkPHP, Ticketek Australia, Ticketmaster, Tietoevry, TikTok, Tinyproxy, Tobii Dynavox, Toshiba America, Town of Westlock, Toyota Philippines, TP-Link Archer C5400X, TRC Talent Solutions, Trib Total Media, TriLiteral, Trionfo Solutions, TruGreen, TSCOP App, UAE Ministry of Education, UK Armed Forces, United Urology Group, Universidad Nacional de Entre Ríos, University of Chicago Medical Center, University of Delhi, University of Hyderabad, University of Siena, US Environmental Protection Agency (EPA), Vannguard Utility Partners, Vasitam, Veeam Backup Enterprise Manager, Velocore, Victoria Eye Center, Victorian Freight Specialists, Vietnam Post, Visa Lighting, VIT Bhopal University, VWholesaleTour, Walmart pension plan, Walser Automotive Group, Walton County, Watt Carmicheal, WD Associates, Wealth Depot LLC, WebTPA, Welsh Rugby Union, Western Dovetail, Western Saw Inc, Western Sydney University, William S Hein & Co, Windows Defender, WIS Sicherheit, WordPress, WP Copymatic, WP Country State City Dropdown CF7 Plugin, WP Dessky Snippets, WP Easy Listing Directories, WP Fluent Forms Contact Form, WP Hash Form Drag & Drop Form Builder, WP LiteSpeed Cache, WP Meta SEO, WP Pie Register, WP Slider Revolution, WP Statistics, WP UserPro Plugin, WP Web Directory Free, WP WooCommerce, WPZOOM, XLink Bitcoin Bridge, Zuber Gardner CPA, and Zyxel NAS have reported hacking or compromises this month.

ARRL, TRAM Barcelona, Internet Archive, Queen Alia International Airport, LastPass, and Copilot have suffered from outages this month.

According to a recent study from Kaspersky, 59% of multi-site business experience monthly outages.

Last months updates broke Windows Taskbar, File Explorer, Windows Server 2019 updates, and Microsoft Outlook again, of course.

AI bots are ridiculously easy to convince to share sensitive information.

Apple is releasing a new password manager for macOS, iOS and iPadOS. But…to get an idea of how concerned Apple is about security, they’ve recently exposed that Wi-Fi on their devices can be used to geolocate any device around the globe.

Google is making it harder and harder to get help.

ICQ, my favorite messaging app from the 90s, has shut down after 28 years.

VBscript is on its deathbed.

FTX paid off whistleblowers.

Now for the good news:

Microsoft has reversed course on Windows Recall and is now making it “optional” even though it isn’t actually resolving most of the security issues or privacy risks.

Let’s Get Busy

Patch Tuesday is about average this month. The typical computer should see roughly 2.5 GB in updates today. Let’s get started.

Microsoft released updates to address 58 vulnerabilities in Azure Data Science Virtual Machines, Azure File Sync, Azure Monitor, Azure SDK, Azure Storage Library, Chrome, Dynamics Business Central, GitHub, Microsoft Dynamics, Microsoft Edge, Microsoft Office, Microsoft Office Outlook, Microsoft Office SharePoint, Microsoft Office Word, Microsoft Streaming Service, Microsoft WDAC OLE DB provider for SQL, Microsoft Windows, Microsoft Windows Speech, Visual Studio, Windows Cloud Files Mini Filter Driver, Windows Container Manager Service, Windows Cryptographic Services, Windows DHCP Server, Windows Distributed File System (DFS), Windows Event Logging Service, Windows Kernel, Windows Kernel-Mode Drivers, Windows Link Layer Topology Discovery Protocol, Windows NT OS Kernel, Windows Perception Service, Windows Remote Access Connection Manager, Windows Routing and Remote Access Service (RRAS), Windows Server Service, Windows Standards-Based Storage Management Service, Windows Storage, Windows Themes, Windows Wi-Fi Driver, Windows Win32 Kernel Subsystem, Windows Win32K – GRFX, Winlogon, and MSRT. This includes security updates. A reboot is required.

Apple released updates for tvOS 17.5.1, iOS 17.5.1, iPadOS 17.5.1, and visionOS 1.2. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 17.5.1 is a security update. Use Settings, General, Software Update to install the most current update.

iPadOS 17.5.1 is a security update. Use Settings, General, Software Update to install the most current update.

tvOS 17.5.1 is a security update. Use System, Software Update to install the most current version.

visionOS 1.2 is a security update. Use Settings, General, Software Update to install the most current version.

Google Chrome OS 125.0.6422.169 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Sonoma (14.x) means that macOS Big Sur (11.x) and older are no longer supported. If you can not install at least macOS Monterey (12) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v23H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 24.5.1 improves stability and resolves several bugs. This is not a security update.
https://www.amd.com/en/support

Nvidia Driver 475.06 is a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Samsung DeX 2.4.1.23 doesn’t provide a change log so should be treated as a security update.
https://www.samsung.com/us/apps/dex/

UniFi airMAX NanoStation 5AC Loco 8.7.13 resolves several bugs. This is not a security update.
https://www.ui.com/download/software/loco5ac

UniFi Network Server 8.2.93 adds ACL rules, DNS records, MLO, BGP and Inspection support. This is not a security update.
https://www.ui.com/download/releases/network-server

Wacom Driver 6.4.6-2 adds support for newer hardware, improved reliability, and resolves several bugs. This is not a security update.
https://www.wacom.com/en-us/support/product-support/drivers

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.66.118 is a security update.
https://brave.com/

Firefox 127.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 115.12.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 125.0.6422.141 is a security update.
https://www.google.com/chrome/

Microsoft Edge 125.0.2535.92 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Vivaldi 6.7.3329.39 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Spark 3.16.2.75403 adds calendar support. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.16.2.75440 adds calendar support. This is not a security update.
https://sparkmailapp.com/

Thunderbird 115.11.1 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk (macOS) 8.1.0 improves performance and resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

Facebook Messenger 213.0.0.22.228 is a security update.
https://www.messenger.com/download

Microsoft Teams 1.7.00.13456 resolves several bugs and improves user controls. This is not a security update.
https://teams.microsoft.com/downloads

Mumble 1.5.634 adds over a dozen new features and resolves several bugs. This should be treated as a security update.
https://www.mumble.info/

Signal 7.11.1 resolves several bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.8.1 doesn’t provide a detailed change log so should be treated as a security update.
https://signal.org/android/apk/

Telegram 5.1.5 improves stability and resolves several bugs. This is not a security update.
https://telegram.org/

Telegram (Android) 10.13.1 doesn’t provide a detailed change log so should be treated as a security update.
https://telegram.org/apps

Tigase Server 8.4.0 adds RBL support, portable export format, improved user management and resolves dozens of bugs. This should be treated as a security update.
https://github.com/tigase/tigase-server/releases/latest

curl 8.8.0 resolves over 200 bugs. This is not a security update.
https://curl.haxx.se/windows/

Dropbox 200.4.7134 resolves several bugs. This is not a security update.
https://www.dropbox.com/

MeshCentral 1.1.23 resolves dozens of bugs. This should be treated as a security update.
https://meshcentral.com/info/downloads.html

Nextcloud Server 29.0.2 resolves over a dozen bugs. This should be treated as a security update.
https://nextcloud.com/

Omada Software Controller 5.14.20.9 adds several new filters, features and controls. This is not a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Syncthing 1.27.8 resolves a couple bugs. This is not a security update.
https://syncthing.net/

Zoom 6.0.11.39959 is a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.5 improves cosmetics and resolves several bugs. This is not a security update.
https://en.3tene.com/

Grayjay 244 improves compatibility and resolves several bugs.
https://grayjay.app/index.html

Plex Desktop 1.94.1.155 doesn’t provide a detailed change log so should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.62.1.152 doesn’t provide a detailed change log so should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-app

VLC Media Player 3.0.21 improves hardware compatibility and resolves several bugs. This is a security update.
https://www.videolan.org/vlc/

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Java) 1.20.6 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server

Nintendo Switch 18.1.0 removes X/Twitter and social media integration and improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 2024.522 improves performance and stability and resolves several bugs. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2024-05-21 resolves several bugs. This is not a security update.
https://store.steampowered.com/news/app/593110

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Acrobat Android 24.5.0.33694 is a security update.
https://helpx.adobe.com/security/products/acrobat-android/apsb24-50.html

Adobe Audition 23.6.6 and 24.4.1 are security updates.
https://helpx.adobe.com/security/products/audition/apsb24-32.html

Adobe ColdFusion 2021.14 and 2023.8 are security updates.
https://helpx.adobe.com/security/products/coldfusion/apsb24-41.html

Adobe Commerce 2.4.0-ext-8, 2.4.1-ext-8, 2.4.2-ext-8, 2.4.3-ext-8, 2.4.4-p9, 2.4.5-p8, 2.4.6-p6 and 2.4.7-p1 are security updates.
https://helpx.adobe.com/security/products/magento/apsb24-40.html

Adobe Commerce Webhooks Plugin 1.5.0 is a security update.
https://helpx.adobe.com/security/products/magento/apsb24-40.html

Adobe Creative Cloud Desktop 6.2.0.554 is a security update.
https://helpx.adobe.com/security/products/creative-cloud/apsb24-44.html

Adobe Experience Manager 2024.5 and 6.5.21 are security updates.
https://helpx.adobe.com/security/products/experience-manager/apsb24-28.html

Adobe FrameMaker Publishing Server 2022.3 is a security update.
https://helpx.adobe.com/security/products/framemaker-publishing-server/apsb24-38.html

Adobe Media Encoder 23.6.6 and 24.4.1 are security updates.
https://helpx.adobe.com/security/products/media-encoder/apsb24-34.html

Adobe Photoshop 24.7.4 and 25.9 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb24-27.html

Adobe Substance 3D Stager 3.0.2 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb24-43.html

Calibre 7.12.0 improves conversion, media support and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Columns++ 1.1.2 improves performance, stability, and reliability, and adds a Timestamps and resolves a couple bugs. This is not a security update.
https://github.com/Coises/ColumnsPlusPlus

Ghostscript 10.03.1 doesn’t provide a change log so should be treated as a security update.
https://www.ghostscript.com/releases/gsdnld.html

Kdenlive 24.05.0 reimplements audio capture, adds group effects and automatic subtitle translation, performance improvements and resolves several bugs. This is not a security update.
https://kdenlive.org/

LibreOffice Fresh 24.2.4 resolves over 70 bugs. This is not a security update.
https://www.libreoffice.org/

Magento Open Source 2.3.7-p4-ext-8, 2.4.4-p9, 2.4.5-p8, 2.4.6-p6 and 2.4.7-p1 are security updates.
https://helpx.adobe.com/security/products/magento/apsb24-40.html

Manager 24.6.11.1637 resolves several bugs but does not have current release notes so should be treated as a security update.
https://www.manager.io/

Notepad++ 8.6.8 resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

QuickBooks Pro 2022 20240529-R16_8 resolves several bugs. This should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

QuickBooks Pro 2023 20240529-R13_6 doesn’t provide a detailted change log. This should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

Security Software Updates

One or more of these is likely to be of interest to most people.

KeePass 2.57 improves privacy and security or
https://keepass.info/

OpenSSL 3.3.1 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN (macOS) 4.3.0 improves stability and resolves several bugs. This is not a security update.
https://protonvpn.com/download

RogueKiller 15.17.0 improves detection and resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Stinger 13.0.0.127 adds new detections and improves others. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

Tails 6.3 is a security update.
https://tails.net/install/download/index.en.html

uBlock Origin 1.58.0 resolves over a dozen bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

YARA 4.5.1 resolves several bugs. This is not a security update.
https://github.com/VirusTotal/yara/

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 24.1.4 improves compression, video combine, and resolves several bugs. This is not a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.1.9 improves subtitle support and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

HandBrake 1.8.0 updates libraries and resolves dozens of bugs. This is a security update.
https://handbrake.fr/

IsoBuster 5.4.1 adds support for new formats and resolves several bugs. This is not a security update.
https://www.isobuster.com/download.php

MakeMKV 1.17.7 updates license date. This is not a security update.
https://www.makemkv.com/download/

PDF Creator 5.2.2 updates libraries. This is a security update.
https://www.pdfforge.org/pdfcreator

StreamFab 6.1.8.2 improves reliability, compatibility, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 2.0.2.3 improves performance, quality, and AI integration. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.34 resolves over a dozen bugs. This is not a security update.
https://1password.com/downloads/

7-Zip 24.06 improves reliability and resolves several bugs. This is not a security update.
https://www.7-zip.org/

Agent Ransack 2022.3435 resolves a crash bug. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

Bitcoin 27.0 resolves several bugs and improves performance. This is not a security update.
https://bitcoin.org/en/download

Bitwarden 2024.5.0 adds organization item cloning and begins the manifest v3 compatibility roll-out. This is not a security update.
https://bitwarden.com/

CCleaner 6.24.11060 improves cleanup and resolves several bugs. This is not a security update.
https://www.ccleaner.com/

DesktopOK 11.24 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.2.6.0 adds several new features and updates libraries. This is a security update.
https://dngrep.github.io/

email-oauth2-proxy 2024-05-25 adds JWT and resolves a python compatibility bug. This is not a security update.
https://github.com/simonrob/email-oauth2-proxy

Etcher 1.19.21 resolves dependency bugs. This is not a security update.
https://www.balena.io/etcher/

Fido 1.56 adds 24H1 ISO UEFI support. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3435 resolves a crash bug. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Fing 3.6.3 improves compatibility and resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

FoneTool 2.7.0 resolves several bugs. This is not a security update.
https://www.fonetool.com/download.html

Free Virtual Serial Ports 6.01.00.1309 adds several more controls. This is not a security update.
https://freevirtualserialports.com/

Git SCM 2.45.2 is a security update.
https://git-scm.com/

Go 1.22.4 is a security update.
https://go.dev/

GoodSync 12.6.9 resolves several bugs. This is not a security update.
https://www.goodsync.com/

grepWin 2.1.1 resolves several bugs. This is not a security update.
https://github.com/stefankueng/grepWin/releases/latest

GUIPropView 1.30 adds two new action commands. This is not a security update.
https://www.nirsoft.net/utils/gui_prop_view.html

NTLite 2024.5.9946 resolves several bugs and improves compatibility. This is not a security update.
https://www.ntlite.com/download/

osquery 5.12.2 is a security update.
https://osquery.io/downloads

PowerToys 0.81.1 resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

ProcDump 3.3 for Linux improves container support. This is not a security update.
https://github.com/Sysinternals/ProcDump-for-Linux

Process Explorer 17.06 resolves several bugs. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/process-explorer

RoboForm 9.6.1 resolves several bugs. This is not a security update.
https://www.roboform.com/

Rufus 4.5 updates libraries, adds UEFI validation, and resolves several bugs. This is a security update.
https://rufus.ie/en_US/

ScreenConnect 24.1.9.8915 improves compatibility, reliability, and stability, and resolves several bugs. This should be treated as a security update.
https://screenconnect.connectwise.com/download

SetUserFTA 1.8.1 implements a workaround for the new UCPD “security feature”. This is not a security update.
https://kolbi.cz/blog/2017/10/25/setuserfta-userchoice-hash-defeated-set-file-type-associations-per-user/

Ventoy 1.0.99 updates EFI binaries and resolves a couple bugs. This is not a security update.
https://www.ventoy.net/en/index.html

WinRAR 7.01 resolves several bugs. This is not a security update.
https://www.rarlab.com/

WizFile 3.10 adds include and exclude filters, adds more feature controls, and resolves several bugs. This is not a security update.
https://antibody-software.com/wizfile/

Developer Updates

These are unlikely to be of interest to most people.

.NET Runtime 8.0.6 is a security update.
https://dotnet.microsoft.com/en-us/download/dotnet

Android Studio 2023.3.1.20 is a security update.
https://developer.android.com/studio

AutoHotkey 2.0.17 resolves several bugs. This is not a security update.
https://www.autohotkey.com/download/

cx_Freeze 7.1 updates libraries and resolves dozens of bugs. This is not a security update.
https://cx-freeze.readthedocs.io/en/latest/index.html

GitHub Desktop 3.4.1 resolves several bugs. This is not a security update.
https://desktop.github.com/

Inno Setup 6.3.1 improves compatibility and resolves dozens of bugs. This version also removes support for older operating systems. This is not a security update.
https://www.jrsoftware.org/isdl.php

Microsoft Visual C++ 2022 Redistributable 14.40.33810.0 doesn’t provide a change log so should be treated as a security update.
https://learn.microsoft.com/en-us/cpp/windows/latest-supported-vc-redist

Node.js 18.20.3 updates dependencies and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Node.js 20.14.0 updates dependencies and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Node.js 22.2.0 updates dependencies and resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

Python 3.12.4 is a security update.
https://www.python.org/downloads/windows/

SQLite 3.46.0 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.90 adds several new features. This is not a security update.
https://code.visualstudio.com/

Web Package Updates

These are likely to be of interest only to web developers.

HumHub 1.15.6 resolves several bugs. This is not a security update.
https://www.humhub.com/en

Invision Community 4.7.17 resolves dozens of bugs. This is not a security update.
https://invisioncommunity.com/

Joomla 5.1.1 resolves dozens of bugs. This is not a security update.
https://www.joomla.org/

ownCloud Client 5.3.0.13987 resolves several bugs. This is not a security update.
https://owncloud.com/desktop-app/

WordPress 6.5.4 resolves several bugs. This is not a security update.
https://wordpress.org/

BuddyPress 12.5.1 is a security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 5.9.5 is a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Multisite Enhancements 1.7.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/multisite-enhancements/

Social Post Feed 4.2.5 resolves a couple menu bugs. This is not a security update.
https://wordpress.org/extend/plugins/custom-facebook-feed/

WooCommerce 8.9.2 is a security update.
https://wordpress.org/extend/plugins/woocommerce/

WPBakery 7.7 resolves several bugs. This is a security update.
https://wpbakery.com/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

Updates 2024-02-13

Happy Valentine’s Day, Folks!

Today is Patch Tuesday for February, 2024. There were 230+ major hacks and over 200 application updates this month. It’s a big month, with about 3.5 GB of updates for most users.

This Month in Technology

23andMe, Inc., Academy Mortgage Corporation, AHS Management Company, Inc., Air Methods, LLC, Alkem Laboratories, AlmerysAlpine Halo9 iLX-F509, American Meat Companies, Android TV and eCos set-top boxes, Android, Ann & Robert H. Lurie Children’s Hospital, AnyDesk, Apple iPhone, Apple Mac, Apple Vision Pro, Apple Watch, AppleTV, Ashford, Inc., Autel MaxiCharger AC Wallbox Commercial, Automotive Grade Linux, Azura Vascular Care, Azusa Unified School District, Bake ‘N Joy Foods, Inc., Bank of America, Bankers Life and Casualty Company, Blink Mobility, Bosch Thermostats, Brady Martz & Associates PC, 3 million Breathless toothbrushes, BrightStar Care, Buildkit, Burr & Forman LLP, Cadence Bank, California Public Employees Retirement System (CalPERS), Calvià City Council, Canterbury County Council, Carnegie Mellon University, Catholic Charities of the Archdiocese of Miami, Inc., ChargePoint Home Flex, a China-based financial MNC, Chuze Fitness, Citrix Netscaler, Cloudflare, CNO ACE, Coastal Hospice & Palliative Care, Coastal Plains Community Mental Health Mental Retardation Center, Colorado Ophthalmology Associates, PC, Columbus Life Insurance Company, Columbus Regional Healthcare System, Concentra Health Services, Concord Music Group, Inc., Connecticut College, Coppola Physical Therapy and Fitness Gyms, Covenant Care California, LLC, Coventry school, Crace Medical Centre, Des Moines Orthopaedic Surgeons, P.C., Dickinson County Health Department, Docker, Dover District Council, Dutch Ministry of Defence, ElGuindy, Meyer & Koegel, APC, Emmanuel College, EMPORIA EV Charger Level 2, EquiLend Holdings, Europcar, ExpressVPN, Family Healthcare Center, FedEx  Corporation Group Health Plan, Fidelity National Financial, First Financial Security, Inc.,
FortinetFortiOS SSL VPN, FortiSIEM, Fortra GoAnywhere MFT, Framework Computer, Freehold Township schools, Fullerton Joint Union High School District, Gamma Strategies, GEICO Corporation, Georgia’s Fulton County, 5,300+ GitLab instances, Glendale Unified School District, Global Affairs CanadaGlow, Goledo Finance, Google Bazel, Google Chrome, Hair Club for Men, Ltd., Inc., Halara, Hampton-Newport News Community Services Board, Hanmi Bank, Hathway, Health Alliance Medical Plans, Hewlett Packard Enterprise (HPE), Hipocrate Information System, HMG Healthcare, HopSkipDrive, HORNE, LLP, HP ink cartridges, Hyundai Motor Europe, Infosys McCamish Systems LLC, InHealth Technologies, INTEGRIS Health, Islamic Charity in Saudi Arabia, ITITAN Hosting, Ivanti Avalanche, Ivanti Connect Secure VPN, Ivanti Policy Secure Gateway, J.D. Gilmour, Jason’s Deli, 45,000+ Jenkins instances, JetBrains TeamCity, 65 job listing sites, JuiceBox 40 Smart EV Charging Station, Juniper, Kansas City Area Transportation Authority, Kansas State University, Keenan & Associates, Kern Regional Center, Kyocera printers, Liberty Hospital, Lineage, Inc, Livall, LoanDepot, Lutheran World Federation, Marywood Nursing Care Center, Mastodon, McCarthy & Holthus, LLP, Medical Eye Services, Inc., Mercedes-Benz, Microbe & Lab, Microsoft (again!), Microsoft SharePoint, Microsoft SQL servers, Multi-Fineline Electronix, Inc., Musick, Peeler & Garrett LLP, MyPertamina, Nabholz Construction Company Employee Welfare Health Plan, NASCO, National Advisors Holdings, Inc., Nautic Partners, LLC, Navvis & Company, LLC, Naz.API, Oak View Group, Omaha Firefighters Healthcare Trust, Orange Spain, Orange Unified School District, OrthoArkansas, PA Employee Benefit Plan, Ozys, Parkovy, Payoneer, Pennsylvania Emergency Dispatch, Perry Johnson & Associates, Inc., Phoenix Contact CHARX SEC-3100, Pioneer DMH-WT7600NEX, Planet Home Lending, Planeta, PLUS FIVE FIVE, Prestige Care, Inc., Radiant Capital, Rajasthan government (India), Rebekah Children’s Services, Ripple, Romanian Chamber of Deputies, Roundcube email server, Saint Anthony Hospital, Schneider Electric Sustainability, SendGrid, Singing River Gulfport, Singing River Health System, SinglePoint Outsourcing, Inc., Socket, Somesing, SonicWall next-generation firewalls, Sony XAV-AX5500, Spoutible, Summit Medical Group, PLLC, Sun Pain Management, LLC, Tesla Infotainment System, Tesla Modem, Tesla, TGI Direct, Thanet District Council, The Burton Corporation, TIC Hosting, Tietoevry, Tigo, Torchbyte, TP-Link Omada, Trello, Trezor, Trinity Universal Insurance Company, TRISTAR Insurance  Group, U.S. Renal Care, Inc., Ubiquiti Connect EV Station, UEFI Firmware, United Regional Health Care System, Unitronics PLCs, US Department of Health and Human Services, US GSA, US military, Ventura County Credit Union, Veolia North America, Verizon Communications Inc., Verizon, Viamedis, VMware vCenter Server, Walker Therapeutic & Educational Programs, Washington National Insurance Company, Webber Chiropractic Sports Clinic, Inc., Weslend Financial, Windows SmartScreen, WinStar, Wise Lending, and WPS Office have reported hacking or compromises this month.

Atlassian Jira, Microsoft Teams (twice), Parkovy, Tietoevry, and T-Mobile have suffered from outages this month.

Last months updates broke spellcheck in Microsoft Teams, the ability to install updates directly for Microsoft Teams without enabling Delivery Optimization, search in OutlookGoogle Pixel phones, Outlook.com via Outlook, Windows Sysprep, Windows updates.

There is a new “flaw” in the Windows 11 installer, which allows incompatible hardware to be installed to and activated. The Microsoft ms-appinstaller protocol handler is being exploited again to install malware.

The German railway system still uses MS-DOS and Windows 3.11 to manage their displays. Wrenches and toothbrushes are the latest victims in hijacking efforts. A new study demonstrates that the new trend of using AI to write code generates less secure code. SIM swapping is still quite popular.

Google is resuming their migration to Manifest V3, which will result in many content and ad filters failing, as well as many other browser extensions, in only 5 short months.

Amazon AWS is now charging for IPv4 addresses.

While unlikely to make a difference, CA is now suing streaming media services for violating the CCPA. The UN is pushing for a “cybercrime” treaty designed to criminalize all efforts to research malware, security, and vulnerability testing, even when the target of the research has requested it. The treaty would also allow international courts to be used to target anyone using encryption for private communication channels, such as PGP, Telegram, or Signal.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is a big one this month. The typical computer should see roughly 3.5 GB in updates today. Let’s get started.

Microsoft released updates to address 79 vulnerabilities in .NET, .NET Framework, ASP.NET, Azure Active Directory, Azure Connected Machine Agent, Azure DevOps, Azure File Sync, Azure Site Recovery, Azure Stack, Internet Connection Sharing (ICS), Internet Shortcut Files, Microsoft ActiveX, Microsoft Azure Kubernetes Service, Microsoft Defender for Endpoint, Microsoft Dynamics 365, Microsoft Dynamics, Microsoft Edge, Microsoft Entra Jira, Microsoft Exchange Server, Microsoft Message Queuing (MSMQ), Microsoft ODBC Driver, Microsoft Office OneNote, Microsoft Office Outlook, Microsoft Office Word, Microsoft Office, Microsoft Power Platform Connector, Microsoft SQL Data Provider, Microsoft Teams for Android, Microsoft WDAC ODBC Driver, Microsoft WDAC OLE DB provider for SQL, Microsoft Windows DNS, Microsoft Windows, Servicing Stack Update, Skype for Business, SQL Server, Trusted Compute Base, Visual Studio, Win32k, Windows AppX, Windows DNS Client, Windows DNS Server, Windows Hyper-V, Windows Kernel, Windows LDAP, Windows Network Address Translation (NAT), Windows OLE, Windows Pragmatic General Multicast (PGM), Windows Printing Service, Windows SmartScreen, Windows USB Generic Parent Driver, Windows USB Serial Driver, and MSRT (~ 2.0 GB). This includes security updates. A reboot is required.

Apple released updates for iOS 15.8.1, iOS 16.7.5, iOS 17.3, iOS 17.3.1, iPadOS 15.8.1, iPadOS 16.7.5, iPadOS 17.3, iPadOS 17.3.1, macOS 14.3, macOS 14.3.1, macOS Monterey 12.7.3, macOS Sonoma 14.3, macOS Ventura 13.6.4, Magic Keyboard Firmware 2.0.6, Safari 17.3.1, tvOS 17.3, visionOS 1.0.3, watchOS 10.3, and watchOS 10.3.1. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 15.8.1, 16.7.5 and 17.3.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.8.1, 16.7.5 and 17.3.1 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 10.3.1 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 17.3 is a security update. Use System, Software Update to install the most current version.

visionOS 1.0.3 is a security update. Use Settings, General, Software Update to install the most current version.

Google Chrome OS 120.0.6099.235 and 121.0.6167.159 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Sonoma (14.x) means that macOS Big Sur (11.x) and older are no longer supported. If you can not install at least macOS Monterey (12) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v23H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 24.1.1 adds support for new hardware, AFMF and upscaling improvements, and resolves several bugs. AMD Link is being discontinued with this version. This is not a security update.
https://www.amd.com/en/support

Display Driver Uninstaller 18.0.7.2 improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Wacom Driver 6.4.5-5 improves reliability. This is not a security update.
https://www.wacom.com/en-us/support/product-support/drivers

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.62.162 is a security update. Use Menu, Help, About to install the most current version.
https://brave.com/

Firefox 122.0.1 is a security update. Use Menu, Help, About to install the most current version.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 115.7.0 is a security update. Use Menu, Help, About to install the most current version.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 121.0.6167.160 is a security update. Use Menu, Help, About to install the most current version.
https://www.google.com/chrome/

Microsoft Edge 121.0.2277.113 is a security update. Use Menu, Help, About to install the most current version.
https://www.microsoft.com/en-us/edge/business/download

SeaMonkey 2.53.18.1 is a security update. Use Menu, Help, About to install the most current version.
https://www.seamonkey-project.org/

Vivaldi 6.5.3206.61 is a security update. Use Menu, Help, About to install the most current version.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

DavMail Gateway 6.2.1 is a security update.
https://davmail.sourceforge.net/

Spark 3.13.4.66391 adds deep link email sharing and resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Spark for macOS 3.13.4.66401 adds deep link email sharing and resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 115.7.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 8.0.8 is a security update.
https://anydesk.com/en/downloads

AnyDesk 8.0.0 for macOS is a security update.
https://anydesk.com/en/downloads

curl 8.6.0 resolves over 100 bugs. This is a security update.
https://curl.haxx.se/windows/

Dropbox 192.4.4605 resolves several bugs. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 205.0.0.11.228 is a security update.
https://www.messenger.com/download

FileZilla Client 3.66.5 is a security update.
https://filezilla-project.org/

FileZilla Server 1.8.1 is a security update.
https://filezilla-project.org/

Google Drive 86.0 resolves several bugs. This is not a security update.
https://drive.google.com/start

Grocy Desktop 2.9.0 updates library and resolves several bugs. This is not a security update.
https://github.com/grocy/grocy-desktop

MeshCentral 1.1.20 resolves over a dozen bugs. This is not a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.7.00.1864 adds several new features, including improved domain & email integration. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 28.0.2 resolves more than 100 bugs. This is a security update.

Homepage

Npcap 1.79 resolves a couple reliability bugs. This is not a security update.
https://nmap.org/npcap/

Omada Software Controller 5.13.23 resolves several bugs. This is not a security udpate.
https://www.tp-link.com/us/support/download/omada-software-controller/

Pocketnet-Core 0.22.1 resolves over a dozen bugs. This is not a security update.
https://pocketnet.app/

Pocketnet-GUI 0.8.77 resolves several bugs. This is not a security update.
https://pocketnet.app/

Rclone 1.65.2 updates libraries and resolves a couple important reliability bugs. This should be treated as a security update.
https://rclone.org/

Signal 6.47.0 makes several improvements to emoji and emoticon support. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 6.46.7 doesn’t have a detailed changelog so should be treated as a security update.
https://signal.org/android/apk/

Skype 8.110.0.218 improves stability and resolves several bugs. This is not a security update.
https://www.skype.com/

Syncthing 1.27.3 resolves several bugs and improves CLI complettion. This is not a security update.
https://syncthing.net/

Technitium DNS Server 12.0.1 moves to .NET 8, resolves more than a dozen bugs. This is a security update.
https://technitium.com/dns/

Telegram 4.14.15 resolves several bugs. This is not a security update.
https://telegram.org/

Telegram (Android) 10.6.1 resolves several bugs. This is not a security update.
https://telegram.org/apps

Tigase Server 8.3.1 resolves several bugs. This is not a security update.
https://github.com/tigase/tigase-server/releases/latest

Trillian 6.5.0.38 resolves a mute bug. This should be treated as a security update.
https://www.trillian.im/

Zoom 5.17.7.31859 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.1 improves tracking, compatibility, and resolves several bugs. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.1.3 adds a few new filters and modules, and resolves several bugs. This is not a security update.
https://www.bitwig.com/download/

Grayjay 233 resolves several crashes and improves stability. This is not a security update.
https://grayjay.app/index.html

Kodi 20.4 resolves dozens of bugs and improves compatibility. This is a security update.
https://kodi.tv/

MediaMonkey 5.2 resolves a cosmetic bug. This is not a security update.
https://www.mediamonkey.com/windows#download

Plex Desktop 1.86.1.4076 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.55.1.4084 updates libraries. This should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.40.0.7998 improves native tagging, music filtering, resolves several bugs. This should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

GDevelop 5.3.189 resolves over 20 bugs. This is not a security update.
https://gdevelop.io/download

Minecraft Server (Bedrock) 1.20.61.01 doesn’t provide a changelog so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

PS5 2024.206 is a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2024-01-13 resolves dozens of bugs. This is not a security update.
https://store.steampowered.com/news/app/593110

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 23.008.20533 is a security update.
https://get.adobe.com/reader

Adobe Commerce 2.4.6-p4, 2.4.5-p6, 2.4.4-p7, 2.4.3-ext-6, 2.4.2-ext-6, 2.4.1-ext-6, 2.4.0-ext-6, and 2.3.7-p4-ext-6 are security updates.
https://helpx.adobe.com/security/products/magento/apsb24-03.html

Magento Open Source 2.4.6-p4, 2.4.5-p6, and 2.4.4-p7 are security updates.
https://helpx.adobe.com/security/products/magento/apsb24-03.html

Adobe Substance 3D Painter 9.1.2 is a security update.
https://helpx.adobe.com/security/products/substance3d_painter/apsb24-04.html

Adobe Acrobat 23.008.20533 and 20.005.30574 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb24-07.html

Adobe FrameMaker Publishing Server 2022.2 is a security update.
https://helpx.adobe.com/security/products/framemaker-publishing-server/apsb24-10.html

Adobe Audition 24.2 and 23.6.4 are security updates.
https://helpx.adobe.com/security/products/audition/apsb24-11.html

Adobe Substance 3D Designer 13.1.1 iis a security update.
https://helpx.adobe.com/security/products/substance3d_designer/apsb24-13.html

Calibre 7.5.1 resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Columns++ 1.0.2 resolves a critical stability bug. This should be treated as a security update.
https://github.com/Coises/ColumnsPlusPlus

ImageMagick 7.1.1-28 updates libraries and resolves over a dozen bugs. This should be treated as a security update.
https://imagemagick.org/

Kindle for PC 2.3.70682 doesn’t provide a changelog so should be treated as a security update.
https://www.amazon.com/kindleforpc

LibreOffice Fresh 24.2.0 is the first version released with the new numbering scheme (year and month of release). This version resolves almost 300 bugs. This is a security update. The “Fresh” line is beta software and should be avoided by most people.
https://www.libreoffice.org/

Manager 24.2.13.1295 doesn’t have any detailed changes in the changelog for the most recent several versions over the last month, so this should be treated as a security update.
https://www.manager.io/

Nextcloud Desktop 3.11.1 updates libraries and resolves over a dozen bugs. This is a security update.

Homepage

Notepad++ 8.6.2 resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

PDF-XChange Editor 10.2.1.385 resolves over a dozen bugs. This is not a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

QuickBooks Pro 2022 20231120-R13_63 doesn’t provide a detailed changelog so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

QuickBooks Pro 2023 20231107-R9_121 doesn’t provide a detailed changelog so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

uniCenta oPOS 5.0 doesn’t provide a detailed changelog so should be treated as a security update.
https://unicenta.com/

Security Software Updates

One or more of these is likely to be of interest to most people.

Gpg4win 4.3.0 resolves dozens of bugs. This is a security update.
https://www.gpg4win.org/download.html

Java 8u401 is a security update.
https://www.java.com/en/download/manual.jsp

KeePass 2.56 improves integration and search feature, resolves more than a dozen bugs. This is not a security update.
https://keepass.info/

MalwareBytes Anti-Malware 4.6.8.311 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.malwarebytes.org/antimalware/

Microsoft Edge Policy 2024.02.06 adds blocklist for extension install types and the ability to preserve Manifest v2 availability. This is not a security update.
https://github.com/MicrosoftDocs/Edge-Enterprise/blob/public/edgeenterprise/microsoft-edge-policies.md

OpenSSL 3.2.1 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN 3.3.5 improves stability. This is not a security update.
https://protonvpn.com/download

RogueKiller 15.14.0 is a security update.
https://www.adlice.com/download/roguekiller/

Stinger 13.0.0.64 is a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

Symantec Norton Removal Tool 20240206 improves removal. This is not a security update.
https://support.norton.com/sp/en/us/home/current/solutions/v60392881

Tails 5.22 updates libraries, included apps, and resolves several bugs. This is a security update.
https://tails.net/install/download/index.en.html

YARA 4.5.0 resolves a dozen bugs. This is not a security update.
https://github.com/VirusTotal/yara/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.1.1 adds support for new encodings and resolves a couple bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

HandBrake 1.7.3 resolves over a dozen bugs. This is not a security update.
https://handbrake.fr/

MakeMKV 1.17.6 improves tolerance and resolves several bugs. This is not a security update.
https://www.makemkv.com/download/

StreamFab 6.1.6.5 improves compatibility and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 2.0.1.1 adds support for denoise, improves upscaling performance, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.24 resolves several bugs, improves idle behavior, and improves integration. This should be treated as a security update.
https://1password.com/downloads/mac/
https://1password.com/downloads/windows/

Agent Ransack 2022.3420 resolves several bugs. This is not a security update.

Agent Ransack – Download

AMD Ryzen Master 2.13.0.2908 adds support for new hardware and improves Curve Optimizer settings. This is not a security update.
https://www.amd.com/en/technologies/ryzen-master

AOMEI Partition Assistant 10.3.0 adds Bitlocker support and resolves several bugs. This is not a security update.
https://www.diskpart.com/

Autoruns 14.11 fixes a parameter parsing bug. This is a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/autoruns

balenaEtcher 1.18.11 resolves a couple bugs. This is not a security update.
https://etcher.balena.io/

Bitwarden 2024.2.0 improves self-hosting controls, TOTP capture and import. This is not a security update.
https://bitwarden.com/

CCleaner 6.20.10897 improves cleaning, adds bookmark backup removal, and improves compatibility. This is not a security update.
https://www.ccleaner.com/

CPU-Z Installer 2.09 adds support for new hardware and adds the ability to benchmark a single coreset/cluster. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

Cygwin 3.5.0 drops support for older Windows versions, adds several new raw maps, API calls, and mixer control. This is not a security update.
https://cygwin.com/

Dell Command Update 5.2.0 improves controls and notifications. This is not a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

DesktopOK 11.16 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.1.7.0 improves PDF search, date-time display, adds mutliple custom editor support, and resolves several bugs. This is not a security update.
https://dngrep.github.io/

email-oauth2-proxy 2024-01-20 adds support for GWS Cloud Service accounts, and resolves several bugs. This is a security update.
https://github.com/simonrob/email-oauth2-proxy

Everything CLI 1.1.0.27 improves performance and adds x64 build. This is not a security update.
https://www.voidtools.com/

Fido 1.55 improves compatibility. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3420 resolves several bugs. This is not a security update.

FileLocator Pro – Download

Fing 3.6.1 resolves a couple bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

Go 1.22.0 adds several new language constructs, improved auditing and performance, adds go/version, and enhanced routing. This is not a security update.
https://go.dev/

GoodSync 12.5.5 improves compatibility and resolves more than a dozen bugs. This is not a security update.
https://www.goodsync.com/

Hiren’s BootCD PE 1.0.4 adds several new utilities, updates libraries and applications, adds hundreds of new drives, and resolves several bugs. This is a security update.

Download

Homedale 2.10 adds support for MU-MIMO detection. This is not a security update.
https://www.the-sz.com/products/homedale/

HWiNFO 7.72 doesn’t provide a detailed changelog so should be treated as a security update.

Download HWiNFO

Inkchip WIC 1.17 doesn’t provide a changelog so should be treated as a security update.
https://inkchip.net/wic/

Kingston SSD Manager 1.5.3.6 doesn’t provide a changelog so should be treated as a security update.
https://www.kingston.com/us/support/technical/ssdmanager

MS Printer Metadata Troubleshooter 1.0.0.1 is a security update.
https://support.microsoft.com/en-us/topic/kb5034510-microsoft-printer-metadata-troubleshooter-tool-december-2023-b3197f24-fd25-430d-96d2-70f2044ce6a1

OSForensics 11.0.1004 improves compatibility and resolves dozens of bugs. This is not a security update.
https://www.osforensics.com/download.html

osquery 5.11.0 updates libraries, adds support for new tables, and resolves several bugs. This is a security update.
https://osquery.io/downloads

PowerToys 0.78.0 updates libraries and resolves several bugs. This is a security update.
https://github.com/microsoft/PowerToys/releases/latest

Rufus 4.4 updates libraries and resolves several bugs. This is not a security update.
https://rufus.ie/en_US/

ScreenConnect 23.9.7.8804 is a security update.
https://www.connectwise.com/software/control/download

SearchMyFiles 3.24 resolves several bugs. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

Sysmon 15.12 resolves several stability and reliability bugs. This is a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

Ventoy 1.0.97 adds support for FreeBSD 14.0 and resolves several bugs. This is not a security update.
https://www.ventoy.net/en/index.html

WhyNotWin11 2.6.0.0 improves detection and resolves several bugs. This is not a security update.
https://github.com/rcmaehl/WhyNotWin11

WizTree 4.18 improves scan performance and filter behavior, improves Copy/Cut/Delete, progress bar and resolves several bugs. This is not a security update.
https://www.diskanalyzer.com/

ZoomIt 8.01 adds DemoType (autotyping) support and fixes a crash. This is not a security update.
https://learn.microsoft.com/en-us/sysinternals/downloads/zoomit

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 2023.1.1.28 resolves several bugs. This is not a security update.
https://developer.android.com/studio

GitHub Desktop 3.3.8 resolves more than a dozen bugs. This is not a security update.
https://desktop.github.com/

Microsoft Visual C++ 2022 Redistributable 14.38.33135.0 doesn’t provide a changelog so should be treated as a security update.
https://learn.microsoft.com/en-us/cpp/windows/latest-supported-vc-redist

MySQL ConnectorNet 8.3.0 is a security update.
https://dev.mysql.com/downloads/connector/net/

MySQL Server 8.0.36 is a security update.
https://dev.mysql.com/downloads/installer/

Node.js 21.6.1 updates libraries and resolves several bugs. This should be treated as a security update.
https://nodejs.org/en/

Node.js 20.11.0 is a security update.
https://nodejs.org/en/

Python 3.12.2 is a security update.
https://www.python.org/downloads/windows/

SQLite 3.45.1 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.86.1 resolves dozens of bugs. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.38 improves BOM detection and resolves several bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

PPSSPP 1.17.1 improves compatibility and resolves several bugs. This is not a security update.
https://www.ppsspp.org/download/

VirtualBox 7.0.14 resolves more than a dozen bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Coppermine Gallery 1.6.26 improves compatibility. This is not a security update.
https://coppermine-gallery.net/

Grocy 4.1.0 updates library and resolves several bugs. This is not a security update.
https://github.com/grocy/grocy

HumHub 1.15.3 resolves several bugs. This is not a security update.

Home

Invision Community 4.7.15 resolves over 50 bugs. This is a security update.
https://invisioncommunity.com/

MailEnable 10.48 resolves more than a dozen bugs. This is not a security update.
https://www.mailenable.com/

ownCloud Client 5.2.1.13040 resolves several bugs. This is not a security update.
https://owncloud.com/desktop-app/

Piwigo 14.2.0 resolves several bugs. This is not a security update.
https://piwigo.org/

WordPress 6.4.3 is a security update.
https://wordpress.org/

Akismet 5.3.1 resolves several bugs and improves reliability. This is not a security update.
https://wordpress.org/extend/plugins/akismet/

BuddyPress 12.2.0 is a minor security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 5.8.7 improves compatibility and resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.8.1 resolves a couple bugs. This is not a security update.

Duplicator – WordPress Migration & Backup Plugin

Email Log 2.4.9 adds controls to limit actions. This is a security update.
https://wordpress.org/extend/plugins/email-log/

Redirection 5.4.2 removes Geo IP and resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/redirection/

Social Post Feed 4.2.2 is a security update.
https://wordpress.org/extend/plugins/custom-facebook-feed/

Sucuri Security 1.8.41 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

WooCommerce 8.5.2 resolves a dozen bugs. This is a security update.
https://wordpress.org/extend/plugins/woocommerce/

WordPress Importer 0.8.2 updates documentation and improves workflow. This is not a security update.
https://wordpress.org/extend/plugins/wordpress-importer/

WP Cerber Security 9.6.2 updates design, adds event insights, and resolves a couple bugs. This is not a security update.
https://wpcerber.com/

WP Mail SMTP 3.11.1 resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/wp-mail-smtp/

WPBakery 7.4 adds built-in SEO toolkit and improves social media controls. This is not a security update.
https://wpbakery.com/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

Updates 2023-08-08

Welcome back, Folks!

Today is Patch Tuesday for August, 2023.

This month brings a whole bucket of ugly, and a reminder that fixing a bug is not the same thing as fixing the software. Every common browser released at least a security update each week for the last month, with Firefox maxing out sanity tests by releasing five (5) security updates in a mere ten (10) days. I warned about this years ago.

There were over 160 major hacks (some involving millions of users and thousands of organizations, one involving billions of users, Microsoft’s own security keys), and over 200 application updates this month. It’s a huge month, with about 4 GB of updates for most users.

This Month in Technology

Acupuncture and Integrative Solutions Incorporated, All-In-One Security, Allegheny County, AlphaPo, AMD Zen CPUs, AMD Zen2 CPUs, AMI MegaRAC Baseboard Management Controller (BMC), Argentina’s Comprehensive Medical Care Program, PathGroup Health Plan, Barracuda ESG, Batesville Tool & Die, Inc., Baylor College of Medicine, BAZAN Group, Beverly Hills Plastic Surgery, Bi-Bett Corporation, BookCrossing, Buckingham County Public Schools, Buffalo State, California Public Employee and Retirement System (CalPERS), Call of Duty, Canon printers, CardioComm Solutions Inc, Care N’ Care Insurance Company, Inc., Centers for Medicare and Medicaid (CMS), Charles George Department of Veterans Affairs Medical Center, Cisco SD-WAN vManage, Citrix Netscaler ADC and Gateway serversCloudzy, CoinsPaid, ColdFusion (several times),  Colorado Department of Higher Education (CDHE), Colorado State University (CSU), Comdirect, Commerzbank, Conic Finance, almost all CPUs, CraftRise, Curve Finance, Deutsche Bank AG, air-gapped systems in Eastern Europe, Egyptian Ministry of Health and Population, Era Lend, Estée Lauder (twice!), European diplomats, Evotec, Exchange Online, EY Law, Fairfax Oral and Maxillofacial Surgery, Family Vision of Anderson, P.A., Fortinet SSL VPNs, FortiOS and FortiProxy, Gary Motykie, M.D., Ghostscript, Google Accelerated Mobile Pages (AMP), Google Cloud Build, Harkins Pain & Sleep Management Group, Harris Health System, Hawai’i Community College, Helix, Henry Ford Health, Highland Health Systems, Hillsborough County, Hines Interests Limited Partnership, Hot Topic, Howard County General Hospital, Immigration Directorate General in Indonesia, ING, Italian government, Ivanti Endpoint Manager Mobile/Mobileiron — an unknown number of devices are effected, likely in the millions (and again, and again), IVF Michigan, P.C., Johns Hopkins Health System Corporation, JumpCloud, Kenya’s e-Citizen, LeetSwap, LetMeSpy, Life Management Center of Northwest Florida, Inc., Locally, MagicDuel, Majorel, Maximus Federal Services, Inc,  Microsoft, Microsoft Azure, Microsoft Exchange, MikroTik RouterOS routers, Military and Police “Secure” Radio systems, Minecraft servers, MobiMed ePR, Molina Healthcare, Mondee, at least 545 servers/organizations running MOVEit software, Multichain, National Student Clearinghouse (3,500 colleges and universities97% of postsecondary enrollment in the US), NATO (yes, that NATO), New England Life Care, Inc., 12 Norwegian Ministries, Norwegian Government Security and Service Organisation (DSS), NPO Mashinostroyeniya, OpenAI, Orrick, Herrington & Sutcliffe, Ortivus, Outlook.com, PaperCut NG/MF, Paramedic Billing Services, Park Royal Hospital, Pension Benefit Information, Performance Health Technology (PH Tech), Physicians Insurance, Poly Network, Postbank, Prospect Medical Holdings, Quinn Emanuel, Razer, Redis, Rite Aid Corporation, Roblox, Roblox Developer Conference, Rockstar Games Inc., Rockwell Automation ControlLogix, Rodeo Finance, Saint Francis Health System, Salesforce, Serco Inc., several hospitals, Shutterfly, 70,000 small office/home office (SOHO) routers, SonicWall, South Central Ambulance Service, South Western Ambulance Service, Southern Association of Independent Schools, Sutter Senior Care, Tampa General Hospital, Teachers Insurance and Annuity Association of America, Terrestrial Trunked Radio (TETRA), Tesla, The Chattanooga Heart Institute, The Health Plan of West Virginia, Inc., Tigo, TLScontact, Tomra, Uber Technologies Inc, Ubuntu OverlayFS, UEFI boot loader security, UK Electoral Commission, Ukrainian and Polish businesses, Unified Pain Management, US Ambassador to China, US Department of Commerce (and at least two dozen other US government agencies), UT Southwestern Medical Center, Vermillion, VirusTotal, VMware ESXi, VMware Tanzu Application Service, Wake Family Eye Care, WooCommerce Payments, WordPress Ninja Forms, Wuhan Earthquake Monitoring Center, Yamaha, Zimbra (twice), and Zyxel firewalls have reportedly been hacked or compromised this month.

In light of all that, Barracuda Networks asserts that fewer than 100 scammers are responsible for global email extortion campaigns, leading to record breaches. There is yet another means of exfiltrating user information and passwords – this time from the sound your keyboard makes as you type.

BAZAN Group, Microsoft Exchange Online, Microsoft Sharepoint, Reddit, Slack, Spotify, and WhatsApp have suffered from outages this month.

Last months updates broke display and audio hardware, Outlook for Desktop saving, Outlook hyperlinks, websites in Safari, Screen Time on iOS, video recording and playback, certain VPNs, and Windows Update. I am also seeing reports from dozens of my clients that the iOS and iPadOS updates released last week are triggering alerts about “new devices” connecting to users’ Apple accounts. In all cases it was triggered shortly after a restart of a device that had received the OTA update.

Google is *really* pushing Enhanced Safe Browsing, the feature that allows them to monitor all activity on your devices, including third-party apps and websites in other browsers, even when you tell them no. Google announced they will be making it easier to remove personal information and explicit images from Google Search. Google is pushing WEI, though, which will make it impossible to enforce security and privacy in your own browser. As an example, your local Taco Bell could refuse to show you their address on their own website – or even load at all – unless you enable their ability to access your precise location, microphone and camera. This isn’t just my paranoia, it’s a standard Google is pushing at this very moment.

IBM’s Red Hat has announced that they will change the way they “comply” with the GPLv2 open source requirements, limiting access to some of their source. Oracle (yes, that Oracle!) is actually pointing out the insanity of this move.

Amazon is raising prices on some IPv4 addresses.

Clop ransomware is now using bittorrent to bypass takedowns. Cloudflare, primarily known for their security and privacy features, is being abused to aid malware.

The SEC is now mandating that publicly traded companies disclose attacks in four business days after discovery. The Australian government isn’t sure if the Privacy Act applies to their own actions when they violate citizen’s trust or privacy.

Microsoft is going to be forcing users of the native Windows Mail and Calendar applications to the “new Outlook” starting this month. Don’t do it!

Now for the good news:

The FBI finally found out which evil organization purchased malicious spyware after the US banned it: the FBI itself!

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is huge this month. The typical computer should see roughly 4 GB in updates today. Let’s get started.

Microsoft released updates to address 88 vulnerabilities in .NET Core, .NET Framework, ASP.NET, Azure Arc, Azure DevOps, Azure HDInsights, Dynamics Business Central Control, Memory Integrity System Readiness Scan Tool, Microsoft Dynamics, Microsoft Edge (Chromium-based), Microsoft Exchange Server, Microsoft Office, Microsoft Office Excel, Microsoft Office Outlook, Microsoft Office SharePoint, Microsoft Office Visio, Microsoft Teams, Microsoft WDAC OLE DB provider for SQL, Microsoft Windows Codecs Library, Reliability Analysis Metrics Calculation Engine, SQL Server, Tablet Windows User Interface, Visual Studio, Windows Bluetooth A2DP driver, Windows Cloud Files Mini Filter Driver, Windows Common Log File System Driver, Windows Cryptographic Services, Windows Defender, Windows Fax and Scan Service, Windows Group Policy, Windows HTML Platform, Windows Hyper-V, Windows Kernel, Windows LDAP – Lightweight Directory Access Protocol, Windows Message Queuing, Windows Mobile Device Management, Windows Projected File System, Windows Reliability Analysis Metrics Calculation Engine, Windows Smart Card, Windows System Assessment Tool, Windows Wireless Wide Area Network Service, and MSRT (~ 2 GB). This includes security updates. A reboot is required.

Apple released updates for macOS Ventura 13.5, macOS Monterey 12.6.8, macOS Big Sur 11.7.9, Safari 16.6, iOS 15.7.8, iOS 16.6, iPadOS 15.7.8, iPadOS 16.6, tvOS 16.6, watchOS 9.6, and Pro Video Formats 2.2.6. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 15.7.8 and 16.6 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.7.8 and 16.6 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 9.6 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 16.6 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 108.0.5359.239 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Ventura (13.x) means that macOS Catalina (10.15) and older are no longer supported. If you can not install at least macOS Big Sur (11) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v22H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 23.7.2 resolves several bugs. This is not a security update.
https://www.amd.com/en/support

BullZip PDF Printer 14.3.0.2961 resolves several bugs and improves compatibility. This is not a security update.
https://www.bullzip.com/products/pdf/info.php#download

Display Driver Uninstaller 18.0.6.5 improves removal. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Drivers by Seagull 2023.3 adds support for 300 new models including several RFID tag printers. This is not a security update.
https://www.seagullscientific.com/support/downloads/drivers/

DS4Windows 3.2.13 several new features and improves hardware compatibility. This is not a security update.
https://github.com/Ryochan7/DS4Windows/releases/latest

Ghostscript 10.01.2 resolves several bugs. This is a security update.
https://www.bullzip.com/products/pdf/download.php

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.56.20 is a security update. Use Menu, Help, About to get the most current version.
https://brave.com/

Microsoft Edge 115.0.1901.200 is a security update. Use Menu, Help, About to get the most current version.
https://www.microsoft.com/en-us/edge/business/download

Firefox 116.0.2 is a security update…the fifth in the last ten days! Use Menu, Help, About to get the most current version.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 115.1.0 is a security update. Use Menu, Help, About to get the most current version.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 115.0.5790.170 is a security update. Use Menu, Help, About to get the most current version.
https://www.google.com/chrome/

Microsoft Edge 115.0.1901.188 is a security update. Use Menu, Help, About to get the most current version.
https://www.microsoft.com/en-us/edge/business/download

Microsoft Edge WebView2 115.0.1901.200 is a security update. Use Menu, Help, About to get the most current version.
https://developer.microsoft.com/en-us/microsoft-edge/webview2/

SeaMonkey 2.53.17 is a security update. Use Menu, Help, About to get the most current version.
https://www.seamonkey-project.org/

Vivaldi 6.1.3035.257 is a security update. Use Menu, Help, About to get the most current version.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.11.0 improves cosmetics and resolves several bugs. This is a security update.
https://getmailspring.com/

Spark (macOS) 3.6.8 resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Spark 3.6.8 resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 115.1.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk (macOS) 7.2.1 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

curl 8.2.1 resolves dozens of bugs. This is a security update.
https://curl.haxx.se/windows/

Dropbox 179.4.4985 doesn’t provide a change log so should be treated as a security update.
https://www.dropbox.com/

Facebook Messenger 192.0.0.8.125 is a security update.
https://www.messenger.com/download

FreeFileSync 12.5 resolves several bugs and improves stability and reliability. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 79.0 is a security update.
https://drive.google.com/start

Grocy Desktop 2.5.0 updates Grocy to 4.0.1 and resolves several bugs and improves performance. This is not a security update.
https://github.com/grocy/grocy-desktop

Microsoft Teams 1.6.00.20074 updates the channels experience and improves security. This is a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 27.0.1 resolves dozens of bugs. This is a security update.
https://nextcloud.com/

Npcap 1.76 resolves a couple bugs, improves performance, and updates the code signing key. This is not a security update.
https://nmap.org/npcap/

Qbox 4.0.5.48 doesn’t provide a change log so should be treated as a security update.
https://www.coraltreetech.com/qbox

Rclone 1.63.1 resolves several bugs, improves compatibility and resilience. This is not a security update.
https://rclone.org/

Signal (Android) 6.27.10 doesn’t provide a change log so should be treated as a security update.
https://signal.org/android/apk/

Signal 6.27.1 improves voice and video calling. This is not a security update.
https://signal.org/download/macos/
https://signal.org/download/windows/

Skype 8.99.0.403 resolves several bugs, integrates motr Bing AI, and adds self-chat. This is not a security update.
https://www.skype.com/

Telegram 4.8.10 resolves a couple bugs. This is not a security update.
https://telegram.org/

Zoom 5.15.6.19959 resolves dozens of bugs. This is a security update. Note that Zoom has also recently updated their Terms of Service to assert ownership of any audio, video, or other communication through their platform IN ANY WAY THEY SEE FIT with no way to opt out.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 3.0.11 resolves a dozen bugs. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.0.4 resolves a couple minor bugs. This is not a security update.
https://www.bitwig.com/download/

darktable 4.4.2 resolves several bugs. This is not a security update.
https://www.darktable.org/

Picard 2.9 resolves dozens of bugs. This is not a security update.
https://picard.musicbrainz.org/

Plex Desktop 1.75.0.3920 resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.44.1.3926 resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.32.5.7349 resolves several bugs and improves hardware compatibility. This is a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

GameMaker Studio 2023.6.0.92 improves macOS compatibility. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.2.169 resolves several bugs. This is not a security update.
https://gdevelop.io/download

Lego Studio 2.23.7.3 resolves a stability bug. This is not a security update.
https://www.lego.com/en-us/ldd

Minecraft Server (Bedrock) 1.20.14.01 is a security update.
https://www.minecraft.net/en-us/download/server/bedrock

PS5 23.01-07.60.00 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Acrobat and Reader 23.003.20269, 20.005.30516.10516, and 20.005.30514.10514 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb23-30.html

Adobe Commerce and Magento Open Source 2.4.6-p2, 2.4.5-p4, 2.4.4-p5, 2.4.3-ext-4, 2.4.2-ext-4, 2.4.1-ext-4, 2.4.0-ext-4, and 2.3.7-p4-ext-4 are security updates.
https://helpx.adobe.com/security/products/magento/apsb23-42.html

Adobe Dimension 3.4.10 is a security update.
https://helpx.adobe.com/security/products/dimension/apsb23-44.html

Adobe XMP Toolkit SDK 2023.07 is a security update.
https://helpx.adobe.com/security/products/xmpcore/apsb23-45.html

Blender 3.6.1 improves performance and resolves several bugs. This is not a security update.
https://www.blender.org/download/

Calibre 6.24.0 adds the ability to operate full text search across a subset of books, fixes calibre:// links, and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

GnuCash 5.3 resolves a couple bugs and improves performance. This is not a security update.
https://www.gnucash.org/

ImageMagick 7.1.1-15 resolves several bugs. This is a security update.
https://imagemagick.org/

Inkscape 1.3 resolves dozens of bugs and improves several tools. This is not a security update.
https://inkscape.org/release/

Kdenlive 23.04.3 resolves over a dozen bugs. This is not a security update.
https://kdenlive.org/

LibreOffice Fresh 7.5.5 resolves 70 bugs. This is not a security update. Remember that the “Fresh” line is beta software and you should use the “Still” line instead.
https://www.libreoffice.org/

Nextcloud Desktop 3.9.1 resolves a dozen bugs. This is not a security update.
https://nextcloud.com/

Paint.net 5.0.8 resolves several bugs. This is not a security update.
https://www.getpaint.net/

Security Software Updates

One or more of these is likely to be of interest to most people.

Gpg4win 4.2.0 resolves a dozen bugs. This is a security update.
https://www.gpg4win.org/download.html

HTTP Toolkit 1.13.0 doesn’t provide a change log so should be treated as a security update.
https://httptoolkit.tech/

MalwareBytes Anti-Malware 4.5.34 resolves several bugs. This is not a security update.
https://www.malwarebytes.org/antimalware/

MalwareBytes Anti-Malware Mac 4.20.7 resolves several bugs. This is not a security update.
https://www.malwarebytes.com/mac/

OpenSSL 1.1.1v and 3.1.2 are security updates.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN 2.4.3 improves stability. This is not a security update.
https://protonvpn.com/download

Radmin VPN 1.4.4642.1 doesn’t provide a change log so should be treated as a security update.
https://www.radmin-vpn.com/

Tails 5.16 is a security update.
https://tails.boum.org/install/dvd/index.en.html

uBlock Origin 1.51.0 resolves several bugs and adds support for several new filters and scriptlets. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

VT-CLI 0.14.0 adds silent operation support, winget and go support, and resolves a couple bugs. This is not a security update.
https://github.com/VirusTotal/vt-cli/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

Camtasia 23.1.2 updates libraries and resolves several bugs. This is a security update.
https://www.techsmith.com/video-editor.html

SnagIt 23.2.0 updates libraries and resolves over a dozen bugs. This is a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.1.1.2 adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

StreamFab 6.1.3.4 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 1.0.2.8 improves conversion speed and resolves a couple bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Utility Updates

These are unlikely to be of interest to most people.

.NET Runtime 7.0.10 is a security update.
https://dotnet.microsoft.com/en-us/download/dotnet

1Password 8.10.9 resolves dozens of bugs. This is not a security update.
https://1password.com/downloads/windows/
https://1password.com/downloads/mac/

8GadgetPack 37.0 updates My Weather and removes unsupported widgets. This is not a security update.
https://8gadgetpack.net/

Bitcoin 25.0 improves network communication, RPCs, and resolves several bugs. This is not a security update.
https://bitcoin.org/en/download

Bitwarden 2023.7.1 adds commands to the CLI Secrets Manager. This is not a security update.
https://bitwarden.com/

CCleaner 6.14.10584 is a security update.
https://www.ccleaner.com/

Dell Command Update 5.0.0 doesn’t provide a change log so should be treated as a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

DesktopOK 11.01 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.0.45.0 updates libraries and resolves several bugs to improve compatibility. This is a security update.
https://dngrep.github.io/

Etcher 1.18.12 resolves a couple bugs. This is not a security update.
https://www.balena.io/etcher/

Everything Toolbar 1.2.0 improves compatibility. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

Go 1.21.0 is a major update, adding several new tools and language constructs. This is a security update.
https://go.dev/

GoodSync 12.3.1 improves AutoUpdate sync, stability, and resolves several compatibility issues. This is not a security update.
https://www.goodsync.com/

HWiNFO 7.60 doesn’t provide a change log so should be treated as a security update.
https://www.hwinfo.com/download/

Java 8u381 is a security update.
https://www.java.com/en/download/manual.jsp

JShelter 0.13 improves stability. This is not a security update.
https://jshelter.org/install/

LiveTcpUdpWatch 1.51 adds dark background and full screen support. This is not a security update.
https://www.nirsoft.net/utils/live_tcp_udp_watch.html

NetworkOpenedFiles 1.61 adds dark background and full screen support. This is not a security update.
https://www.nirsoft.net/utils/network_opened_files.html

NTLite 2023.7.9371 resolves several bugs and improves features. This is not a security update.
https://www.ntlite.com/download/

OSForensics 10.0.1015 resolves several bugs. This is not a security update.
https://www.osforensics.com/download.html

osquery 5.9.1 adds ARM support and resolves several bugs. This is a security update.
https://osquery.io/downloads

PowerToys 0.72.0 resolves several bugs and improves compatibility. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Process Explorer 17.05 improves stability. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/process-explorer

Rufus 4.2 improves compatibility and stability, adds conversion options, and resolves several bugs. This is not a security update.
https://rufus.ie/en_US/

ScreenConnect 23.5.8.8598 improves logging. This is not a security update.
https://www.connectwise.com/software/control/download

SmartMonTools 7.4 adds several new switches, improved hardware support, and resolves a couple bugs. This is not a security update.
https://smartmontools.org/

TcpLogView 1.38 updates IP database. This is not a security update.
https://www.nirsoft.net/utils/tcp_log_view.html

Ventoy 1.0.94 resolves compatibility issues. This is not a security update.
https://www.ventoy.net/en/index.html

VMMap 3.33 improves compatibility. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/vmmap

WinRAR 6.23 is a security update.
https://www.rarlab.com/

WinScan2PDF 8.61 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

ZoomIt 7.1 adds audio capture support. This is not a security update.
https://learn.microsoft.com/en-us/sysinternals/downloads/zoomit

ZoomText 2023 2023.2307.29.400 improves keyboard shortcuts and resolves several bugs.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

ADB 34.0.4 resolves several bugs. This is not a security update.
https://developer.android.com/studio/releases/platform-tools

Android Studio 2022.3.1.18 improves compatibility. This is not a security update.
https://developer.android.com/studio

AutoHotkey 2.0.4 resolves several bugs. This is not a security update.
https://www.autohotkey.com/download/

AutoHotkey 1.1.37.01 resolves several bugs. This is not a security update.
https://www.autohotkey.com/download/

GitHub Desktop 3.2.7 resolves several bugs. This is not a security update.
https://desktop.github.com/

Godot (macOS) 4.1.1 improves stability. This is not a security update.
https://godotengine.org/

MySQL ConnectorNet 8.1.0 resolves several bugs. This is not a security update.
https://dev.mysql.com/downloads/connector/net/

MySQL Server 8.0.34 resolves dozens of bugs. This is a security update.
https://dev.mysql.com/downloads/installer/

Node.js 18.17.0 updates libraries, improves performance, and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Node.js 20.5.0 updates libraries, improves performance, and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Visual Studio Code 1.81 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.0.10 resolves dozens of bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

HumHub 1.14.3 resolves several bugs. This is not a security update.
https://www.humhub.com/en

ISPConfig 3.2.11 adds support for Debian 12 and resolves several bugs. This is not a security update.
https://www.ispconfig.org/ispconfig/download/

Invision Community 4.7.12 updates libraries and resolves dozens of bugs. This should be treated as a security update.
https://invisioncommunity.com/

Grocy 4.0.1 is a major update adding new API features, compatibility, and performance improvements. This build also resolves several bugs.
https://github.com/grocy/grocy

MailEnable 10.47 resolves several bugs. This should be treated as a security update.
https://www.mailenable.com/

ownCloud Client 4.2.0.11670 resolves several bugs. This should be treated as a security update.
https://owncloud.com/desktop-app/

Contact Form 7 5.8 adds several hooks and resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.5.1 improves messaging and subsite mapping structure. This is not a security update.
https://wordpress.org/plugins/duplicator/

Social Post Feed 4.1.9 adds promotional link, updates the block and improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/custom-facebook-feed/

Theme My Login 7.1.6 resolves a couple bugs and adds a new hook. This is not a security update.
https://wordpress.org/extend/plugins/theme-my-login/

W3 Total Cache 2.4.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/w3-total-cache/

WooCommerce 7.9.0 resolves over a hundred bugs, updates blocks and options. This is a security update.
https://wordpress.org/extend/plugins/woocommerce/

WP Mail SMTP 3.8.2 resolved several bugs. This is not a security update.
https://wordpress.org/extend/plugins/wp-mail-smtp/

WPBakery 7.0 adds a couple elements, improves notifications and compatibility. This is not a security update.
https://wpbakery.com/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2023-07-11

Welcome back, Folks!

Today is Patch Tuesday for July, 2023.

This month has actually been pretty quiet. There were only 140 major hacks, and over 145 application updates this month. There are only about 4 GB of updates for most users.

This Month in Technology

1st Source Bank, Activate Healthcare LLC, Advanced Medical Management, LLC, American Airlines, American Board of Internal Medicine, Apple iOS, Arris devices, ARx Patient Solutions, ASUS routers, Atlantic General Hospital, Atomic Wallet, Atrium Health Wake Forest Baptist, Bangladesh government web portal, Barracuda ESG, Barrow County, Georgia, Beacon Ridge, BORN Ontario, BreachForums Clone, Bristol Myers Squibb, CalPERS, ChatGPT, Chilean Army, Cisco data center switches, City of San Luis, ClearMedi, Commonwealth Health Physician Network-Cardiology, Community Research Foundation, Core Recovery, LLC, D-Link devices, Des Moines Public Schools, Desert Physicians Management, Deutsche Bank AG, Dozor-Teleport, D’Youville University, EncroChat, Extreme Networks, Floating Point Group, FortiGate firewalls, G7 summit, Genworth, GlobalHealth Holdings, LLC, Grafana, Great Valley Cardiology, Hashflow, HCA Healthcare, Henrietta Johnson Medical Center, Illinois, Imagine360, Indonesian passport system, iOttie, Itasca County Health & Human Services, Jones Lang LaSalle, JumpCloud, K&L Gates, Kannact, Inc., Kinmax, Kirkland & Ellis, Lansing Community College, LetMeSpy, Limbach Facility Services LLC Group Benefit Plan, Locally, Louisiana OMV, Lumberton ISD, Maimonides Medical Center, Mastodon, MediaTek devices, Microsoft Teams, Microsoft, Missouri, Mondelez International, Mount Desert Island Hospital, MOVEit Transfer, Murfreesboro Medical Clinic & SurgiCenter, National Student Clearinghouse, Nebraska, Netgear devices, New Horizons Medical, Inc, New York City Department of Education, Nickelodeon, Nova Scotia, nuclear weapons experts, Ofcom, ONIX Group, Oregon Department of Transportation, Oregon DMV, Orrick, Herrington & Sutcliffe LLP, Paris High School, Parker Drilling Company Group Health and Flexible Benefit Plan, PBI Research Services, Peachtree Orthopaedic Clinic, P.A., Pennsylvania, Petro-Canada Gas Stations, Poly Network, Port of Nagoya, Japan, Proskauer Rose, Radisson, Razer, Realm IDX, Recovery Centers of America, Senior Choice, Inc, Shell Oil, Siemens Energy, Solar Energy Monitoring Systems, SolarView Systems, South Carolina, South Dakota, South Suburban Surgical Suites, LLC, Southwest Airlines, Sturdy Finance, Suncor Energy, Tenda devices, Texas, The Atrium, The Patriot, The Williamsport Home, Tidewater Diagnostic Imaging, Ltd., TomTom, TP-Link devices, TSMC, U.S. Department of Energy, Ukrainian Government FaceBook Page, Ultimate Member WordPress Plug-In, University of Colorado, University of Illinois, University of Manchester, University of Pittsburgh Medical Center, UofL Health, UPMC, UPS, US Federal agencies, USPTO, Vermillion, Vincera Core Physicians, Vincera Imaging LLC, Vincera Rehab LLC, Vincera Surgery Center, Vitra Home Care, LLC, Zellis, Zyxel devices, and Zyxel NAS have reportedly been hacked or compromised this month.

The state of Alaska, Taos, Azure, Microsoft 365 (multiple times), Outlook.com, Microsoft Teams, and Outlook for the web have suffered from outages this month.

Last months updates broke .NET WebApps, default browser GPO, Apple Safari on mobile, Windows Start Menu, and Windows File Explorer.

The US Federal government is still using unsecured devices across 50 different agencies. Sweden is fining companies that use Google Analytics. Microsoft is going to be permanently storing all the AI interactions with Bing to “better serve you.” Facebook parent company Meta says the only way to delete your account from their defective Threads service is to delete your Instagram account.

Now for the good news:

A federal judge has blocked the federal government from orchestrating censorship with private tech companies.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is huge this month. The typical computer should see roughly 4 GB in updates today. Let’s get started.

Windows 10 and Windows 11 versions 22H2 should now be installed. Sadly, the new “Moments” features on Windows 11 will insert advertisements in the Start menu and Control Panel. Just another sign of the continuing decline of Windows.

Microsoft released updates to address 132 vulnerabilities in .NET and Visual Studio, ASP.NET and .NET, Azure Active Directory, Microsoft Dynamics, Microsoft Graphics Component, Microsoft Media-Wiki Extensions, Microsoft Office Access, Microsoft Office Excel, Microsoft Office Outlook, Microsoft Office SharePoint, Microsoft Office, Microsoft Power Apps, Microsoft Printer Drivers, Microsoft Windows Codecs Library, Mono Authenticode, Paint 3D, Role: DNS Server, Service Fabric, Visual Studio Code, Windows Active Directory Certificate Services, Windows Active Template Library, Windows Admin Center, Windows App Store, Windows Authentication Methods, Windows CDP User Components, Windows Certificates, Windows Clip Service, Windows Cloud Files Mini Filter Driver, Windows Cluster Server, Windows CNG Key Isolation Service, Windows Common Log File System Driver, Windows Connected User Experiences and Telemetry, Windows CryptoAPI, Windows Cryptographic Services, Windows Defender, Windows Deployment Services, Windows EFI Partition, Windows Error Reporting, Windows Failover Cluster, Windows Geolocation Service, Windows HTTP.sys, Windows Image Acquisition, Windows Installer, Windows Kernel, Windows Layer 2 Tunneling Protocol, Windows Layer-2 Bridge Network Driver, Windows Local Security Authority (LSA), Windows Media, Windows Message Queuing, Windows MSHTML Platform, Windows Netlogon, Windows Network Load Balancing, Windows NT OS Kernel, Windows ODBC Driver, Windows OLE, Windows Online Certificate Status Protocol (OCSP) SnapIn, Windows Partition Management Driver, Windows Peer Name Resolution Protocol, Windows PGM, Windows Print Spooler Components, Windows Remote Desktop, Windows Remote Procedure Call, Windows Routing and Remote Access Service (RRAS), Windows Server Update Service, Windows SmartScreen, Windows SPNEGO Extended Negotiation, Windows Transaction Manager, Windows Update Orchestrator Service, Windows VOLSNAP.SYS, Windows Volume Shadow Copy, Windows Win32K, and MSRT (~ 3 GB). This includes security updates. A reboot is required.

Apple released updates for iOS 15.7.7, iOS 16.5.1, iPadOS 15.7.7, iPadOS 16.5.1, macOS Big Sur 11.7.8, macOS Monterey 12.6.7, macOS Ventura 13.4.1, Rapid Security Responses for iOS 16.5.1, Rapid Security Responses for iPadOS 16.5.1, Rapid Security Responses for macOS Ventura 13.4.1, Safari 16.5.1, Safari 16.5.2, watchOS 8.8.1, and watchOS 9.5.2. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 15.7.7 and 16.5.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.7.7 and 16.5.1 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 8.8.1 and 9.5.2 are security updates. Use the Watch app on your iPhone to install the most current version.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Ventura (13.x) means that macOS Catalina (10.15) and older are no longer supported. If you can not install at least macOS Big Sur (11) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v22H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 23.7.1 resolves several bugs and improves compatibility. This is not a security update.
https://www.amd.com/en/support

Crucial Storage Executive 9.04 doesn’t provide a changelog so should be treated as a security update.
https://www.crucial.com/support/storage-executive

DS4Windows 3.2.12 resolves several bugs. This is not a security update.
https://github.com/Ryochan7/DS4Windows/releases/latest

Garmin Express 7.17.3 doesn’t provide a changelog so should be treated as a security update.
https://www.garmin.com/en-US/software/express/

Nvidia Driver 474.44 is a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Xerox Smart Start 1.9.12.0 doesn’t provide a changelog so should be treated as a security update.
https://www.support.xerox.com/en-us/content/143617

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.52.130 is a security update.
https://brave.com/

Google Chrome 114.0.5735.198 is a security update.
https://www.google.com/chrome/

Microsoft Edge 114.0.1823.79 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 115.0.2 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 115.0.2 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Vivaldi 6.1.3035.84 is a security update.
https://vivaldi.com/

Microsoft Edge WebView2 114.0.1823.79 is a security update.
https://developer.microsoft.com/en-us/microsoft-edge/webview2/

Email Updates

One or more of these are likely to be of interest to everyone.

Spark 3.6.5.51733 resolves several bugs and improves mail collections. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.6.5.51732 resolves several bugs and improves mail collections. This is not a security update.
https://sparkmailapp.com/

Thunderbird 102.13.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

Dropbox 177.4.5399 resolves a reliability bug. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 190.0.0.9.106 is a security update.
https://www.messenger.com/download

FileZilla Client 3.65.0 updates libraries and resolves several bugs. This should be treated as a security update.
https://filezilla-project.org/

FreeFileSync 12.4 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 77.0 is a security update.
https://drive.google.com/start

Microsoft Teams 1.6.00.16472 resolves a couple bugs and adds user feedback. This is not a security update.
https://teams.microsoft.com/downloads

Pocketnet-Core 0.21.3 resolves several bugs. This is not a security update.
https://pocketnet.app/

PushBullet 502 doesn’t provide a changelog so should be treated as a security update.
https://www.pushbullet.com/

Rclone 1.63.0 adds several new features and resolves dozens of bugs. This should be treated as a security update.
https://rclone.org/

Signal 6.24.0 adds search to mentions. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 6.24.4 doesn’t provide a changelog so should be treated as a security update.
https://signal.org/android/apk/

Syncthing 1.23.6 resolves several bugs. This is not a security update.
https://syncthing.net/

Technitium DNS Server 11.3 adds new record types and resolves several bugs. This is not a security update.
https://technitium.com/dns/

Telegram 4.8.4 improves stability. This is not a security update.
https://telegram.org/

WinSCP 6.1.1 is a security update.
https://winscp.net/eng/index.php

Zoom 5.15.3.18551 is a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 3.0.10 resolves a dozen bugs. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.0 is a major update add over a hundred new features, objects, object controls, and resolves over 20 bugs.
https://www.bitwig.com/download/

darktable 4.4.1 resolves several bugs. This is not a security update.
https://www.darktable.org/

Kodi 20.2 resolves almost 40 bugs. This is not a security update.
https://kodi.tv/

Plex Desktop 1.73.1.3905 improves the Discover feature. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.42.0.3898 resolves a couple bugs with Live TV. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.32.4.7195 resolves several bugs. This is a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

GameMaker Studio 2023.6.0.89 resolves over 60 bugs. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.2.166 enables 3D editing for all users, adds 3D models to the asset store and resolves several bugs. This is not a security update.
https://gdevelop.io/download

Lego Studio 2.23.6.1 resolves several bugs. This is not a security update.
https://www.lego.com/en-us/ldd

Steam 2023.06.14 resolves over a hundred bugs and improves the notification and in-game chat experience. This is not a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Office Updates

One or more of these are likely to be of interest to most people.

Adobe ColdFusion 2018u17, 2021u7, and 2023u1 are security updates.
https://helpx.adobe.com/security/products/coldfusion/apsb23-40.html

Adobe InDesign 18.4 and 17.4.2 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb23-38.html

Adobe Reader DC 23.003.20244 is a security update.
https://get.adobe.com/reader

Blender 3.6 vastly improves performance and adds several new features, including cache, UI, text and selection improvements, new Simulation abilities and UV improvements. This is not a security update.
https://www.blender.org/download/

Calibre 6.22.0 adds support for new hardware and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

ImageMagick 7.1.1-12 resolves several bugs. This is not a security update.
https://imagemagick.org/

Kdenlive 23.04.2 improves timeline and resolves several bugs. This is not a security update.
https://kdenlive.org/

Notepad++ 8.5.4 resolves over a dozen bugs. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 5.0.7 resolves several bugs. This is a security update.
https://www.getpaint.net/

PDF-XChange Editor 10.0.1.371 is a security update.
https://www.tracker-software.com/product/pdf-xchange-editor

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 2.7.2 resolves several bugs. This is not a security update.
https://github.com/countercept/chainsaw

HTTP Toolkit 1.12.8 doesn’t provide a changelog so should betreated as a security update.
https://httptoolkit.tech/

Microsoft Edge Policy 2023.07.05 adds new policies.
https://github.com/MicrosoftDocs/Edge-Enterprise/blob/public/edgeenterprise/microsoft-edge-policies.md

PureOS 10.3 improves security and management. THis is a security update.
https://pureos.net/download/

RogueKiller 15.11.0 is a security update.
https://www.adlice.com/download/roguekiller/

Stinger 12.2.0.641 adds several new detections. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

SuperAntiSpyware 10.0.1254 resolves several bugs. This is not a security update.
https://www.superantispyware.com/download.html

Capture Updates

These are unlikely to be of interest to most people.

Camtasia 23.1.0 adds variable speed playback, reflections, and resolves several bugs. This is not a security update.
https://www.techsmith.com/video-editor.html

Open Broadcaster Software 29.1.3 resolves a dozen bugs. This is not a security update.
https://obsproject.com/

ScreenToGif 2.38.1 resolves several bugs. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.1.1.0 adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

IsoBuster 5.2 doesn’t adds support for spanned archives, new file type support, and resolves several bugs. This is not a security update.
https://www.isobuster.com/download.php

StreamFab 6.1.3.0 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 1.0.2.4 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 8.10.8 vastly improves LastPass import, and resolves several bugs. This is not a security update.
https://1password.com/downloads/mac/

1Password for Windows 8.10.8 vastly improves LastPass import, and resolves several bugs. This is not a security update.
https://1password.com/downloads/windows/

7-Zip 23.01 improves translation details and resolves several bugs. This is not a security update.
https://www.7-zip.org/

Agent Ransack 2022.3405 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

Autoruns 14.1 resolves several bugs. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/autoruns

Bitwarden 2023.5.1 resolves several bugs. This is not a security update.
https://bitwarden.com/

CCleaner 6.13.10517 resolves several bugs and adds cleanup support for a dozen more applications. This is not a security update.
https://www.ccleaner.com/

Cygwin 3.4.7 resolves several bugs. This is not a security update.
https://cygwin.com/

DesktopOK 10.88 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.0.26.0 switches underlying .NET support to v7, which significantly improves performance. This is not a security update.
https://dngrep.github.io/

ESEDatabaseView 1.73 adds full screen support. This is not a security update.
https://www.nirsoft.net/utils/ese_database_view.html

Etcher 1.18.8 fixes the support link. This is not a security update.
https://www.balena.io/etcher/

FileLocator Pro 2022.3405 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Fing 3.4.0 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.fing.com/products/fing-desktop-download-windows

Go 1.20.6 is a security update.
https://go.dev/

Homedale 2.07 adds cosmetic changes for local MAC addresses. This is not a security update.
https://www.the-sz.com/products/homedale/

HWiNFO 7.50 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.hwinfo.com/download/

Kingston SSD Manager 1.5.3.2 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.kingston.com/us/support/technical/ssdmanager

ManageWirelessNetworks 1.12 adds a sort-by toolbar button. This is not a security update.
https://www.nirsoft.net/utils/manage_wireless_networks.html

MobileFileSearch 1.46 adds a sort-by toolbar button. This is not a security update.
https://www.nirsoft.net/utils/mobile_device_file_search.html

MPAM 1.393.60.0 adds support for new detections. This should be treated as a security update.
https://www.microsoft.com/en-us/wdsi/defenderupdates

NetworkTrafficView 2.50 adds support for the sapics geo-IP databases. This is not a security update.
https://www.nirsoft.net/utils/network_traffic_view.html

NTLite 2023.6.9292 resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 10.0.1014 adds new filesto detection. This is not a security update.
https://www.osforensics.com/download.html

AOMEI Partition Assistant 10.1.0 adds interactive UEFI BIOS import and export support. This is not a security update.
https://www.diskpart.com/

PowerToys 0.71.0 resolves several bugs. This should be treated as a security update.
https://github.com/microsoft/PowerToys/releases/latest

ProcessMonitor 3.95 resolves a crash bug. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/procmon

RoboForm 9.4.9 resolves several bugs. This is not a security update.
https://www.roboform.com/

ScreenConnect 23.5.5.8587 resolves dozens of bugs. This is not a security update.
https://www.connectwise.com/software/control/download

SimpleWMIView 1.55 resolves a bug. This is not a security update.
https://www.nirsoft.net/utils/simple_wmi_view.html

Sysmon 15.0 is a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

TaskSchedulerView 1.73 adds a sort-by button to the toolbar and resolves a cosmetic bug. This is not a security update.
https://www.nirsoft.net/utils/task_scheduler_view.html

Unity 2023.1.3 resolves dozens of bugs. This is not a security update.
https://unity3d.com/get-unity/download/archive

Ventoy 1.0.93 improves compatibility and resolves several bugs. This is not a security update.
https://www.ventoy.net/en/index.html

WinGet 1.5.1881 resolves a couple bugs. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest

ZoomText 2023 2023.2306.21.400 resolves several bugs. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

GitHub Desktop 3.2.6 resolves a dozen bugs. This is not a security update.
https://desktop.github.com/

Godot 4.1 resolves dozens of bugs and adds several new features. This is not a security update.
https://godotengine.org/

GitHub includefragment 6.3.0 adds a customelements manifest. This is not a security update.
https://github.github.io/include-fragment-element/

Node.js 20.4.0 resolves dozens of bugs. This is a security update.
https://nodejs.org/en/

Node.js 16.20.1 is a security update.
https://nodejs.org/en/

Node.js 18.16.1 is a security update.
https://nodejs.org/en/

Redemption 6.4.0.6234 adds several new features and resolves a dozen bugs. This is not a security update.
https://www.dimastr.com/redemption/

Visual Studio Code 1.80 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Web Package Updates

These are likely to be of interest only to web developers.

Invision Community 4.7.11.1 is a security update.
https://invisioncommunity.com/

Drupal 9.5.10 improves compatibility. This is not a security update.
https://drupal.org/download

Joomla 4.3.3 resolves dozens of bugs. This is not a security update.
https://www.joomla.org/

OpenCart 4.0.2.2 resolves over a dozen bugs. This is not a security update.
https://www.opencart.com/

ownCloud Client 4.1.0.11250 resolves a dozen bugs. This is not a security update.
https://owncloud.com/desktop-app/

Piwigo 13.8.0 is a security update.
https://piwigo.org/

Akismet 5.2 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/akismet/

Autoptimize 3.1.8.1 is a security update.
https://wordpress.org/extend/plugins/autoptimize/

Duplicator 1.5.5 resolves a dozen bugs. This is not a security update.
https://wordpress.org/plugins/duplicator/

myStickymenu 2.6.4 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

W3 Total Cache 2.3.3 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/w3-total-cache/

Widgets on Pages 1.8.1 resolves a compatibility bug. This is not a security update.
https://wordpress.org/extend/plugins/widgets-on-pages/

WooCommerce 7.8.2 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/woocommerce/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

Updates 2023-03-14

Welcome back, Folks!

Today is Patch Tuesday for March, 2023.

This month brings a (mere) 104 major hacks and over 169 application updates. It’s the lightest month we’ve seen in a while with about 2 GB of updates for most users.

This Month in Technology

AASP, Acer, Activision, Albanian Government, Algodex, Aloha Nursing Rehab Centre, Andrade Gutierrez, AT&T, Atlassian, Bahrain International Airport, Booking.com, Boost Mobile, Burton Snowboards, California Northstate University, Cardiovascular Associates, CentraState, Cerebral Inc, Chick-fil-A, Codman Square Health Center, Coinbase, Community Health Systems, Convex, Danish Hospital websites, Dental Health Management Solutions, Denver Public Schools, Dish Network, Dole, Edgepark Medical Supplies, eMDs, Inc, Essendant, Euler Finance, Eye4Fraud, Fasecolda, the FBI, Flutterwave, Fonasa, Fortinet FortiOS, GDS Holdings, GoDaddy, GSC Game World, GunAuction.com, Hatch Bank, Hawai’i Department of Health, HDB Financial Services, HDFC Bank, Health Link, Henrico Doctors Hospital, Hope Finance, Hospital Clinic de Barcelona, Housing Authority of the City of Los Angeles, Hutchinson Clinic, Hyundai and Kia, iD Tech, Integrative Dentistry, Jump Crypto, LastPass, Lawrence General Hospital, LBB, Lehigh Valley Health Network, LimeVPN, Long Son Petrochemicals, Los Angeles Unified School District, Minneapolis Public Schools, News Corporation, Northeast Surgical Group, PC, Norwegian National Authority for Investigation and Prosecution of Economic and Environmental Crimes, Oakland, CA, PayPal, PetroVietnam, Pierce Transit, Platypus, POSCO Engineering & Construction, RealDudesInc, Reventics, LLC, Ring, Rosarito, San Juan Regional Medical Center, Scandinavian Airlines, Sentara Healthcare, Sharp Healthcare, Shopper+, Southeastern Louisiana University, SpaceX, ST Telemedia Global Data Centers, Stanford University, Technion, TELUS, Tender.fi, Tennessee State University, The Good Guys, Tusla, U.S. Marshals Service, Uranium Finance, Veeam, VGTRK, over 2,800 VMware hosts, Weee, West Cecil Health Center, WH Smith, White Bird Clinic, Wichita Urology Group, PA, Zoll Medical Corp, ZOLL Medical, and Zurcal have reportedly been hacked or compromised this month.

Twitter (twice), Russian state media, Microsoft Exchange Online, and Gmail IMAP have had major outages this month.

Two of the three largest bank failures in US history happened this week. Silicon Valley Bank was (briefly) shut down by regulators after mishandling billions of dollars.
Only days after Silvergate Capital Corp‘s collapse, and Signature Bank followed days later. Roku, for example, was set to lose over 99.9% of their deposits at SVB, almost 26% of their total cash. AcuityAds Holding, BlockFi, Rocket Lab, Roblox, and others were also at risk of major losses. Unfortunately, the federal government is going to bail them out, allowing bad business decisions to avoid any negative repercussions and giving way to cheap investments by larger banks to effectively stack the dominoes higher.

Last months updates broke IIS for Alliance.

Now for the good news:

 

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is small this month. The typical computer should see roughly 2 GB in updates today. Let’s get started.

Microsoft released updates to address 98 vulnerabilities in Azure, Client Server Run-time Subsystem (CSRSS), Internet Control Message Protocol (ICMP), Microsoft Bluetooth Driver, Microsoft Dynamics, Microsoft Edge (Chromium-based), Microsoft Graphics Component, Microsoft Office Excel, Microsoft Office Outlook, Microsoft Office SharePoint, Microsoft OneDrive, Microsoft PostScript Printer Driver, Microsoft Printer Drivers, Microsoft Windows Codecs Library, Office for Android, Remote Access Service Point-to-Point Tunneling Protocol, Role: DNS Server, Role: Windows Hyper-V, Service Fabric, Visual Studio, Windows Accounts Control, Windows Bluetooth Service, Windows Central Resource Manager, Windows Cryptographic Services, Windows Defender, Windows HTTP Protocol Stack, Windows HTTP.sys, Windows Internet Key Exchange (IKE) Protocol, Windows Kernel, Windows Partition Management Driver, Windows Point-to-Point Protocol over Ethernet (PPPoE), Windows Remote Procedure Call, Windows Remote Procedure Call Runtime, Windows Resilient File System (ReFS), Windows Secure Channel, Windows SmartScreen, Windows TPM, Windows Win32K and MSRT (~ 1 GB). This includes security updates. A reboot is required.

Apple released updates for GarageBand for macOS 10.4.8, tvOS 16.3.3, and macOS Big Sur 11.7.4. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

tvOS 16.3.3 is a security update. Use System, Software Update to install the most current version.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Ventura (13.x) means that macOS Catalina (10.15) and older are no longer supported. If you can not install at least macOS Big Sur (11) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 12 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v22H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 23.3.1 improves performance and reliability and resolves several bugs. This is not a security update.
https://www.amd.com/en/support

BullZip PDF Printer 14.2.0.2955 resolves the PrintToPrinter bug. This is not a security update.
https://www.bullzip.com/products/pdf/info.php#download

Crucial Storage Executive 9.01 doesn’t provide a changelog so should be treated as a security update.
https://www.crucial.com/support/storage-executive

Display Driver Uninstaller 18.0.6.1 introduces a new installer, improves Intel cleanup and improves user interface. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

DS4Windows 3.2.9 adds DualSense Edge support and resolves over a dozen bugs. This is not a security udpate.
https://github.com/Ryochan7/DS4Windows/releases/latest

Garmin Express 7.16.3 doesn’t provide a changelog so should be treated as a security update.
https://www.garmin.com/en-US/software/express/

Samsung DeX 2.4.1.11 doesn’t provide a changelog so should be treated as a security update.
https://www.samsung.com/us/apps/dex/

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.49.120 is a security update.
https://brave.com/

Firefox 111.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Google Chrome 111.0.5563.64 is a security update.
https://www.google.com/chrome/

Google Chrome 109.0.5414.129 is a security update. Chrome v109 is being maintained until October 2023 to support Windows Server 2012 and Windows Server 2012 R2.
https://www.google.com/chrome/

Microsoft Edge 110.0.1587.69 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Vivaldi 5.7.2921.63 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

ProtonMail (Android) 3.0.12 improves stability. This is not a security update.
https://proton.me/mail/download

Spark 3.3.4.44396 resolves several bugs and adds zoom and message dragging. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.3.4.44394 resolves several bugs and adds zoom and message dragging. This is not a security update.
https://sparkmailapp.com/

Thunderbird 102.8.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

curl 7.88.1 resolves dozens of bugs. This is not a security update.
https://curl.haxx.se/windows/

Dropbox 169.4.5684 resolves several bugs. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 182.0.0.9.73 is a security update.
https://www.messenger.com/download

FileZilla Client 3.63.2.1 updates libraries and resolves several bugs. This is a security update.
https://filezilla-project.org/

FileZilla Server 1.6.7 updates libraries and resolves several bugs. This is a security update.
https://filezilla-project.org/

FreeFileSync 12.1 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Microsoft Teams 1.6.00.4472 improves caption and rich call support. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 25.0.4 updates libraries and resolves dozens of bugs. This is a security update.
https://nextcloud.com/

Omada Software Controller 5.9.9 resolves a couple bugs and adds several new features. This is not a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Pocketnet-GUI 0.8.41 adds audio upload and resolves several bugs. This is not a security update.
https://pocketnet.app/

Prosody 0.12.3 resolves several bugs. This is not a security update.
https://prosody.im/download/start

Rclone 1.62.0 adds several new features and fixes dozens of bugs. This is not a security update.
https://rclone.org/

Signal 6.9.0 resolves several bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 6.13.7 doesn’t provide a detailed changelog so should be treated as a security update.
https://signal.org/android/apk/

Skype 8.94.0.428 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.skype.com/

Syncthing 1.23.2 updates libraries and resolves a relay bug. This is not a security update.
https://syncthing.net/

Technitium DNS Server 11.0.3 is a security update. This version is no longer compatible with operating systems older than Windows 10.
https://technitium.com/dns/

Telegram 4.6.5 resolves several bugs. This is not a security update.
https://telegram.org/

Zoom 5.13.11.13434 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

Bitwig Studio 4.4.8 improves stability. This is not a security update.
https://www.bitwig.com/download/

darktable 4.2.1 resolves over a dozen bugs. This is not a security update.
https://www.darktable.org/

Kodi 20.1 resolves dozens of bugs. This is not a security update.
https://kodi.tv/

Plex Desktop 1.65.1.3596 resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.35.1.3614 resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.31.2.6810 resolves several bugs including crash bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

GameMaker Studio 2023.2.0.71 resolves dozeens of bugs. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.1.158 resolves dozens of bugs. This is not a security update.
https://gdevelop.io/download

Lego Studio 2.23.2.1 now displays the color of bricks in the tooltip. This is not a security update.
https://www.lego.com/en-us/ldd

Nintendo Switch 16.0.0 improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PlayStation PS3 4.90 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps3/system-software/

PlayStation PS4 10.50 provides several cosmetic updates. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps4/system-software/

PlayStation PS5 23.01-07.01.00 improves stability and adds several cosmetic and voice features. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 23.001.20064 is a security update.
https://get.adobe.com/reader

Adobe Commerce 2.4.6, 2.4.5-p2, and 2.4.4-p3 are security updates.
https://helpx.adobe.com/security/products/magento/apsb23-17.html

Adobe Experience Manager 2023.1 and 6.5.16.0 are security updates.
https://helpx.adobe.com/security/products/experience-manager/apsb23-18.html

Adobe Illustrator 27.3.1 is a security update.
https://helpx.adobe.com/security/products/illustrator/apsb23-19.html

Adobe Dimension 3.4.8 is a security update.
https://helpx.adobe.com/security/products/dimension/apsb23-20.html

Adobe Creative Cloud 5.10 is a security update.
https://helpx.adobe.com/security/products/creative-cloud/apsb23-21.html

Adobe Substance 3D Stager 2.0.1 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb23-22.html

Adobe Photoshop 23.5.4 and 24.2.1 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb23-23.html

Adobe ColdFusion 2018.16 and 2021.6 are security updates.
https://helpx.adobe.com/security/products/coldfusion/apsb23-25.html

Audacity 3.2.5 resolves a reliability bug with third-party auth. This is not a security update.
https://www.audacityteam.org/download/

Calibre 6.14.0 improves metadata controls and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

GIMP 2.10.34 resolves several bugs. This is not a security update.
https://www.gimp.org/

ImageMagick 7.1.1-3 adds support for HEIC and resolves several bugs. This is not a security update.
https://imagemagick.org/

Kindle for PC 1.40.65535 doesn’t provide a changelog so should be treated as a security update.
https://www.amazon.com/kindleforpc

LibreOffice 7.4.6 resolves over 70 bugs. This is a security update.
https://www.libreoffice.org/

LibreOffice Fresh 7.5.1 resolves 90 bugs. This is a security update.
https://www.libreoffice.org/

Nextcloud Desktop 3.7.4 resolves several bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.5 updates libraries and resolves dozens of bugs. This is not a security update.
https://notepad-plus-plus.org/

OpenOffice 4.1.14 resolves several bugs. This is not a security update.
https://www.openoffice.org/download/

Paint.net 5.0.2 adds ability to invert Alpha channel, performance improvements, and resolves several bugs. This is not a security update.
https://www.getpaint.net/

PDF-XChange Editor 9.5.367.0 is a security update.
https://www.tracker-software.com/product/pdf-xchange-editor

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 2.5.0 resolves several bugs. This is not a security update.
https://github.com/countercept/chainsaw

MalwareBytes Anti-Malware 4.5.23 is a security update.
https://www.malwarebytes.org/antimalware/

OpenSSL 3.1.0 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN 3.0.14 improves user interface. This is not a security update.
https://protonvpn.com/download

RogueKiller 15.8.1 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

SanDisk PrivateAccess 6.3.12 doesn’t provide a changelog so should be treated as a security update.
https://support-en.wd.com/app/answers/detailweb/a_id/48025

Tails 5.10 is a security update.
https://tails.boum.org/install/dvd/index.en.html

TinyWall 3.3.1 resolves a couple bugs and releases it open source. This is not a security update.
https://tinywall.pados.hu/

uBlock Origin 1.47.4 resolves several bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

VT-CLI 0.13.0 adds a couple new features. This is not a security update.
https://github.com/VirusTotal/vt-cli/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

Camtasia 22.5.1 resolves a dozen bugs. This is not a security update.
https://www.techsmith.com/video-editor.html

SnagIt 23.1.0 resolves dozens of bugs. This is a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.1.0.1 adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

StreamFab 6.1.1.2 improves compatibility and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 1.0.1.5 adds conversion sampling and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 6.0.23 resolves several bugs and improves compatibility. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 8.10.1 resolves several bugs. This is not a security update.
https://1password.com/downloads/mac/

1Password for Windows 8.10.1 resolves several bugs. This is not a security update.
https://1password.com/downloads/windows/

Agent Ransack 2022.3367 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

AOMEI Partition Assistant 9.15.0 adds ability to reset Windows password and recover data. This is not a security update.
https://www.diskpart.com/

Beyond Compare 4.4.6.27483 improves compatibility. This is not a security update.
https://www.scootersoftware.com/download.php?zz=dl4

Bitwarden 2023.2.0 adds several new security and feature controls, adds new encryption options and adds desktop validation for new devices. This is not a security update.
https://bitwarden.com/

CPU-Z Installer 2.05 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

CurrPorts 2.70 adds dark mode and several new sort options. This is not a security update.
https://www.nirsoft.net/utils/cports.html

DesktopOK 10.71 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 3.2.279.0 resolves several bugs. This is not a security update.
https://dngrep.github.io/

Etcher 1.18.5 updates libraries. This is not a security update.
https://www.balena.io/etcher/

Everything Toolbar 1.0.3 resolves several bugs. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

Fido 1.44 now prevents operation on non-Windows platforms. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3367 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Git SCM 2.40.0 is a security update.
https://git-scm.com/

Go 1.20.2 is a security update.
https://go.dev/

GoodSync 12.1.9 resolves several bugs. This is a security update.
https://www.goodsync.com/

HWMonitor 1.50 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

NetworkInterfacesView 1.27 adds a new column for Metric. This is not a security update.
https://www.nirsoft.net/utils/network_interfaces.html

NTLite 2023.3.9160 adds support for new features and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 10.0.1009 resolves several bugs. This is a security update.
https://www.osforensics.com/download.html

osquery 5.8.1 is a security update.
https://osquery.io/downloads

PowerToys 0.68.1 adds Paste as Plain Text, Mouse Jump, new GPO policies, and resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

ProcessMonitor 3.93 resolves several user interface and log file bugs. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/procmon

RoboForm 9.4.4 is a security update.
https://www.roboform.com/

Seagate DiscWizard 25.0.1.39868 doesn’t provide a changelog so should be treated as a security update.
https://www.seagate.com/support/downloads/item/discwizard-master-dl/

SimpleWMIView 1.53 adds Sort By option to the toolbar. This is not a security update.
https://www.nirsoft.net/utils/simple_wmi_view.html

TcpLogView 1.37 adds several sorting options and resolves a bug. This is not a security update.
https://www.nirsoft.net/utils/tcp_log_view.html

TeamViewer 15.39.6 resolves several bugs. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

Unity 2022.2.10 resolves dozens of bugs. This is not a security update.
https://unity3d.com/get-unity/download/archive

Ventoy 1.0.89 resolves several bugs. This is not a security update.
https://www.ventoy.net/en/index.html

WifiInfoView 2.78 adds new sorting options and updates the internal MAC address database. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

WinRAR 6.21 resolves several bugs. This is not a security update.
https://www.rarlab.com/

WizFile 3.09 adds support for RegExp search, DrivePool, Storage Spaces, virtual drives, and resolves several bugs. This is not a security update.
https://antibody-software.com/wizfile/

ZoomText 2023 2023.2302.8.400 improves stability and resolves several bugs. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

ADB 34.0.1 resolves a couple bugs. This is not a security update.
https://developer.android.com/studio/releases/platform-tools

Android Studio 2022.1.1.21 resolves several bugs. This is not a security update.
https://developer.android.com/studio

GitHub Desktop 3.2.0 resolves several bugs. This is not a security update.
https://desktop.github.com/

Inno Setup 6.2.2 is a security update.
https://www.jrsoftware.org/isdl.php

Node.js 19.7.0 updates dependencies and resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

Node.js 14.21.3 is a security update.
https://nodejs.org/en/

Node.js 16.19.1 is a security update.
https://nodejs.org/en/

Node.js 18.15.0 is a security update.
https://nodejs.org/en/

SQLite 3.41.1 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.76.1 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Web Package Updates

These are likely to be of interest only to web developers.

Coppermine Gallery 1.6.22 resolves several bugs. This is not a security update.
https://coppermine-gallery.net/

Drupal 9.5.4 resolves several bugs. This is not a security update.
https://drupal.org/download

Joomla 4.2.9 is a security update.
https://www.joomla.org/

jQuery 3.6.4 adds selector forgiveness. This is not a security update.
https://code.jquery.com/

MailEnable Enterprise 10.45 is a security update.
https://www.mailenable.com/

MailEnable Enterprise 9.87 is a security update.
https://www.mailenable.com/

OpenPetra 2023.02 resolves several bugs. This is not a security update.
https://www.openpetra.org/

ownCloud Client 3.2.1.10355 resolves several bugs. This is not a security update.
https://owncloud.com/desktop-app/

Piwigo 13.6.0 is a security update.
https://piwigo.org/

YOURLS 1.9.2 improves compatibility and resolves several bugs. This is not a security update.
https://yourls.org/

BuddyPress 11.1.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 5.7.4 improves compatibility and resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Social Post Feed 4.1.8 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/custom-facebook-feed/

Sucuri Security 1.8.37 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

WooCommerce 7.5.0 is a security update.
https://wordpress.org/extend/plugins/woocommerce/

WP Cerber Security 9.5 resolves several bugs. This is not a security update.
https://wpcerber.com/

WPtouch 4.3.51 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/wptouch/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/