Updates 2023-03-14

Posted on March 14, 2023 by Shawn K. Hall

Welcome back, Folks!

Today is Patch Tuesday for March, 2023.

This month brings a (mere) 104 major hacks and over 169 application updates. It’s the lightest month we’ve seen in a while with about 2 GB of updates for most users.

This Month in Technology

AASP, Acer, Activision, Albanian Government, Algodex, Aloha Nursing Rehab Centre, Andrade Gutierrez, AT&T, Atlassian, Bahrain International Airport, Booking.com, Boost Mobile, Burton Snowboards, California Northstate University, Cardiovascular Associates, CentraState, Cerebral Inc, Chick-fil-A, Codman Square Health Center, Coinbase, Community Health Systems, Convex, Danish Hospital websites, Dental Health Management Solutions, Denver Public Schools, Dish Network, Dole, Edgepark Medical Supplies, eMDs, Inc, Essendant, Euler Finance, Eye4Fraud, Fasecolda, the FBI, Flutterwave, Fonasa, Fortinet FortiOS, GDS Holdings, GoDaddy, GSC Game World, GunAuction.com, Hatch Bank, Hawai’i Department of Health, HDB Financial Services, HDFC Bank, Health Link, Henrico Doctors Hospital, Hope Finance, Hospital Clinic de Barcelona, Housing Authority of the City of Los Angeles, Hutchinson Clinic, Hyundai and Kia, iD Tech, Integrative Dentistry, Jump Crypto, LastPass, Lawrence General Hospital, LBB, Lehigh Valley Health Network, LimeVPN, Long Son Petrochemicals, Los Angeles Unified School District, Minneapolis Public Schools, News Corporation, Northeast Surgical Group, PC, Norwegian National Authority for Investigation and Prosecution of Economic and Environmental Crimes, Oakland, CA, PayPal, PetroVietnam, Pierce Transit, Platypus, POSCO Engineering & Construction, RealDudesInc, Reventics, LLC, Ring, Rosarito, San Juan Regional Medical Center, Scandinavian Airlines, Sentara Healthcare, Sharp Healthcare, Shopper+, Southeastern Louisiana University, SpaceX, ST Telemedia Global Data Centers, Stanford University, Technion, TELUS, Tender.fi, Tennessee State University, The Good Guys, Tusla, U.S. Marshals Service, Uranium Finance, Veeam, VGTRK, over 2,800 VMware hosts, Weee, West Cecil Health Center, WH Smith, White Bird Clinic, Wichita Urology Group, PA, Zoll Medical Corp, ZOLL Medical, and Zurcal have reportedly been hacked or compromised this month.

Twitter (twice), Russian state media, Microsoft Exchange Online, and Gmail IMAP have had major outages this month.

Two of the three largest bank failures in US history happened this week. Silicon Valley Bank was (briefly) shut down by regulators after mishandling billions of dollars.
Only days after Silvergate Capital Corp‘s collapse, and Signature Bank followed days later. Roku, for example, was set to lose over 99.9% of their deposits at SVB, almost 26% of their total cash. AcuityAds Holding, BlockFi, Rocket Lab, Roblox, and others were also at risk of major losses. Unfortunately, the federal government is going to bail them out, allowing bad business decisions to avoid any negative repercussions and giving way to cheap investments by larger banks to effectively stack the dominoes higher.

Last months updates broke IIS for Alliance.

Now for the good news:

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is small this month. The typical computer should see roughly 2 GB in updates today. Let’s get started.

Microsoft released updates to address 98 vulnerabilities in Azure, Client Server Run-time Subsystem (CSRSS), Internet Control Message Protocol (ICMP), Microsoft Bluetooth Driver, Microsoft Dynamics, Microsoft Edge (Chromium-based), Microsoft Graphics Component, Microsoft Office Excel, Microsoft Office Outlook, Microsoft Office SharePoint, Microsoft OneDrive, Microsoft PostScript Printer Driver, Microsoft Printer Drivers, Microsoft Windows Codecs Library, Office for Android, Remote Access Service Point-to-Point Tunneling Protocol, Role: DNS Server, Role: Windows Hyper-V, Service Fabric, Visual Studio, Windows Accounts Control, Windows Bluetooth Service, Windows Central Resource Manager, Windows Cryptographic Services, Windows Defender, Windows HTTP Protocol Stack, Windows HTTP.sys, Windows Internet Key Exchange (IKE) Protocol, Windows Kernel, Windows Partition Management Driver, Windows Point-to-Point Protocol over Ethernet (PPPoE), Windows Remote Procedure Call, Windows Remote Procedure Call Runtime, Windows Resilient File System (ReFS), Windows Secure Channel, Windows SmartScreen, Windows TPM, Windows Win32K and MSRT (~ 1 GB). This includes security updates. A reboot is required.

Apple released updates for GarageBand for macOS 10.4.8, tvOS 16.3.3, and macOS Big Sur 11.7.4. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

tvOS 16.3.3 is a security update. Use System, Software Update to install the most current version.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Ventura (13.x) means that macOS Catalina (10.15) and older are no longer supported. If you can not install at least macOS Big Sur (11) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 12 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v22H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 23.3.1 improves performance and reliability and resolves several bugs. This is not a security update.
https://www.amd.com/en/support

BullZip PDF Printer 14.2.0.2955 resolves the PrintToPrinter bug. This is not a security update.
https://www.bullzip.com/products/pdf/info.php#download

Crucial Storage Executive 9.01 doesn’t provide a changelog so should be treated as a security update.
https://www.crucial.com/support/storage-executive

Display Driver Uninstaller 18.0.6.1 introduces a new installer, improves Intel cleanup and improves user interface. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

DS4Windows 3.2.9 adds DualSense Edge support and resolves over a dozen bugs. This is not a security udpate.
https://github.com/Ryochan7/DS4Windows/releases/latest

Garmin Express 7.16.3 doesn’t provide a changelog so should be treated as a security update.
https://www.garmin.com/en-US/software/express/

Samsung DeX 2.4.1.11 doesn’t provide a changelog so should be treated as a security update.
https://www.samsung.com/us/apps/dex/

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.49.120 is a security update.
https://brave.com/

Firefox 111.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Google Chrome 111.0.5563.64 is a security update.
https://www.google.com/chrome/

Google Chrome 109.0.5414.129 is a security update. Chrome v109 is being maintained until October 2023 to support Windows Server 2012 and Windows Server 2012 R2.
https://www.google.com/chrome/

Microsoft Edge 110.0.1587.69 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Vivaldi 5.7.2921.63 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

ProtonMail (Android) 3.0.12 improves stability. This is not a security update.
https://proton.me/mail/download

Spark 3.3.4.44396 resolves several bugs and adds zoom and message dragging. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.3.4.44394 resolves several bugs and adds zoom and message dragging. This is not a security update.
https://sparkmailapp.com/

Thunderbird 102.8.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

curl 7.88.1 resolves dozens of bugs. This is not a security update.
https://curl.haxx.se/windows/

Dropbox 169.4.5684 resolves several bugs. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 182.0.0.9.73 is a security update.
https://www.messenger.com/download

FileZilla Client 3.63.2.1 updates libraries and resolves several bugs. This is a security update.
https://filezilla-project.org/

FileZilla Server 1.6.7 updates libraries and resolves several bugs. This is a security update.
https://filezilla-project.org/

FreeFileSync 12.1 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Microsoft Teams 1.6.00.4472 improves caption and rich call support. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 25.0.4 updates libraries and resolves dozens of bugs. This is a security update.
https://nextcloud.com/

Omada Software Controller 5.9.9 resolves a couple bugs and adds several new features. This is not a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Pocketnet-GUI 0.8.41 adds audio upload and resolves several bugs. This is not a security update.
https://pocketnet.app/

Prosody 0.12.3 resolves several bugs. This is not a security update.
https://prosody.im/download/start

Rclone 1.62.0 adds several new features and fixes dozens of bugs. This is not a security update.
https://rclone.org/

Signal 6.9.0 resolves several bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 6.13.7 doesn’t provide a detailed changelog so should be treated as a security update.
https://signal.org/android/apk/

Skype 8.94.0.428 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.skype.com/

Syncthing 1.23.2 updates libraries and resolves a relay bug. This is not a security update.
https://syncthing.net/

Technitium DNS Server 11.0.3 is a security update. This version is no longer compatible with operating systems older than Windows 10.
https://technitium.com/dns/

Telegram 4.6.5 resolves several bugs. This is not a security update.
https://telegram.org/

Zoom 5.13.11.13434 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

Bitwig Studio 4.4.8 improves stability. This is not a security update.
https://www.bitwig.com/download/

darktable 4.2.1 resolves over a dozen bugs. This is not a security update.
https://www.darktable.org/

Kodi 20.1 resolves dozens of bugs. This is not a security update.
https://kodi.tv/

Plex Desktop 1.65.1.3596 resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.35.1.3614 resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.31.2.6810 resolves several bugs including crash bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

GameMaker Studio 2023.2.0.71 resolves dozeens of bugs. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.1.158 resolves dozens of bugs. This is not a security update.
https://gdevelop.io/download

Lego Studio 2.23.2.1 now displays the color of bricks in the tooltip. This is not a security update.
https://www.lego.com/en-us/ldd

Nintendo Switch 16.0.0 improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PlayStation PS3 4.90 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps3/system-software/

PlayStation PS4 10.50 provides several cosmetic updates. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps4/system-software/

PlayStation PS5 23.01-07.01.00 improves stability and adds several cosmetic and voice features. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 23.001.20064 is a security update.
https://get.adobe.com/reader

Adobe Commerce 2.4.6, 2.4.5-p2, and 2.4.4-p3 are security updates.
https://helpx.adobe.com/security/products/magento/apsb23-17.html

Adobe Experience Manager 2023.1 and 6.5.16.0 are security updates.
https://helpx.adobe.com/security/products/experience-manager/apsb23-18.html

Adobe Illustrator 27.3.1 is a security update.
https://helpx.adobe.com/security/products/illustrator/apsb23-19.html

Adobe Dimension 3.4.8 is a security update.
https://helpx.adobe.com/security/products/dimension/apsb23-20.html

Adobe Creative Cloud 5.10 is a security update.
https://helpx.adobe.com/security/products/creative-cloud/apsb23-21.html

Adobe Substance 3D Stager 2.0.1 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb23-22.html

Adobe Photoshop 23.5.4 and 24.2.1 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb23-23.html

Adobe ColdFusion 2018.16 and 2021.6 are security updates.
https://helpx.adobe.com/security/products/coldfusion/apsb23-25.html

Audacity 3.2.5 resolves a reliability bug with third-party auth. This is not a security update.
https://www.audacityteam.org/download/

Calibre 6.14.0 improves metadata controls and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

GIMP 2.10.34 resolves several bugs. This is not a security update.
https://www.gimp.org/

ImageMagick 7.1.1-3 adds support for HEIC and resolves several bugs. This is not a security update.
https://imagemagick.org/

Kindle for PC 1.40.65535 doesn’t provide a changelog so should be treated as a security update.
https://www.amazon.com/kindleforpc

LibreOffice 7.4.6 resolves over 70 bugs. This is a security update.
https://www.libreoffice.org/

LibreOffice Fresh 7.5.1 resolves 90 bugs. This is a security update.
https://www.libreoffice.org/

Nextcloud Desktop 3.7.4 resolves several bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.5 updates libraries and resolves dozens of bugs. This is not a security update.
https://notepad-plus-plus.org/

OpenOffice 4.1.14 resolves several bugs. This is not a security update.
https://www.openoffice.org/download/

Paint.net 5.0.2 adds ability to invert Alpha channel, performance improvements, and resolves several bugs. This is not a security update.
https://www.getpaint.net/

PDF-XChange Editor 9.5.367.0 is a security update.
https://www.tracker-software.com/product/pdf-xchange-editor

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 2.5.0 resolves several bugs. This is not a security update.
https://github.com/countercept/chainsaw

MalwareBytes Anti-Malware 4.5.23 is a security update.
https://www.malwarebytes.org/antimalware/

OpenSSL 3.1.0 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN 3.0.14 improves user interface. This is not a security update.
https://protonvpn.com/download

RogueKiller 15.8.1 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

SanDisk PrivateAccess 6.3.12 doesn’t provide a changelog so should be treated as a security update.
https://support-en.wd.com/app/answers/detailweb/a_id/48025

Tails 5.10 is a security update.
https://tails.boum.org/install/dvd/index.en.html

TinyWall 3.3.1 resolves a couple bugs and releases it open source. This is not a security update.
https://tinywall.pados.hu/

uBlock Origin 1.47.4 resolves several bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

VT-CLI 0.13.0 adds a couple new features. This is not a security update.
https://github.com/VirusTotal/vt-cli/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

Camtasia 22.5.1 resolves a dozen bugs. This is not a security update.
https://www.techsmith.com/video-editor.html

SnagIt 23.1.0 resolves dozens of bugs. This is a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.1.0.1 adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

StreamFab 6.1.1.2 improves compatibility and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 1.0.1.5 adds conversion sampling and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 6.0.23 resolves several bugs and improves compatibility. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 8.10.1 resolves several bugs. This is not a security update.
https://1password.com/downloads/mac/

1Password for Windows 8.10.1 resolves several bugs. This is not a security update.
https://1password.com/downloads/windows/

Agent Ransack 2022.3367 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

AOMEI Partition Assistant 9.15.0 adds ability to reset Windows password and recover data. This is not a security update.
https://www.diskpart.com/

Beyond Compare 4.4.6.27483 improves compatibility. This is not a security update.
https://www.scootersoftware.com/download.php?zz=dl4

Bitwarden 2023.2.0 adds several new security and feature controls, adds new encryption options and adds desktop validation for new devices. This is not a security update.
https://bitwarden.com/

CPU-Z Installer 2.05 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

CurrPorts 2.70 adds dark mode and several new sort options. This is not a security update.
https://www.nirsoft.net/utils/cports.html

DesktopOK 10.71 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 3.2.279.0 resolves several bugs. This is not a security update.
https://dngrep.github.io/

Etcher 1.18.5 updates libraries. This is not a security update.
https://www.balena.io/etcher/

Everything Toolbar 1.0.3 resolves several bugs. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

Fido 1.44 now prevents operation on non-Windows platforms. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3367 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Git SCM 2.40.0 is a security update.
https://git-scm.com/

Go 1.20.2 is a security update.
https://go.dev/

GoodSync 12.1.9 resolves several bugs. This is a security update.
https://www.goodsync.com/

HWMonitor 1.50 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

NetworkInterfacesView 1.27 adds a new column for Metric. This is not a security update.
https://www.nirsoft.net/utils/network_interfaces.html

NTLite 2023.3.9160 adds support for new features and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 10.0.1009 resolves several bugs. This is a security update.
https://www.osforensics.com/download.html

osquery 5.8.1 is a security update.
https://osquery.io/downloads

PowerToys 0.68.1 adds Paste as Plain Text, Mouse Jump, new GPO policies, and resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

ProcessMonitor 3.93 resolves several user interface and log file bugs. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/procmon

RoboForm 9.4.4 is a security update.
https://www.roboform.com/

Seagate DiscWizard 25.0.1.39868 doesn’t provide a changelog so should be treated as a security update.
https://www.seagate.com/support/downloads/item/discwizard-master-dl/

SimpleWMIView 1.53 adds Sort By option to the toolbar. This is not a security update.
https://www.nirsoft.net/utils/simple_wmi_view.html

TcpLogView 1.37 adds several sorting options and resolves a bug. This is not a security update.
https://www.nirsoft.net/utils/tcp_log_view.html

TeamViewer 15.39.6 resolves several bugs. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

Unity 2022.2.10 resolves dozens of bugs. This is not a security update.
https://unity3d.com/get-unity/download/archive

Ventoy 1.0.89 resolves several bugs. This is not a security update.
https://www.ventoy.net/en/index.html

WifiInfoView 2.78 adds new sorting options and updates the internal MAC address database. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

WinRAR 6.21 resolves several bugs. This is not a security update.
https://www.rarlab.com/

WizFile 3.09 adds support for RegExp search, DrivePool, Storage Spaces, virtual drives, and resolves several bugs. This is not a security update.
https://antibody-software.com/wizfile/

ZoomText 2023 2023.2302.8.400 improves stability and resolves several bugs. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

ADB 34.0.1 resolves a couple bugs. This is not a security update.
https://developer.android.com/studio/releases/platform-tools

Android Studio 2022.1.1.21 resolves several bugs. This is not a security update.
https://developer.android.com/studio

GitHub Desktop 3.2.0 resolves several bugs. This is not a security update.
https://desktop.github.com/

Inno Setup 6.2.2 is a security update.
https://www.jrsoftware.org/isdl.php

Node.js 19.7.0 updates dependencies and resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

Node.js 14.21.3 is a security update.
https://nodejs.org/en/

Node.js 16.19.1 is a security update.
https://nodejs.org/en/

Node.js 18.15.0 is a security update.
https://nodejs.org/en/

SQLite 3.41.1 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.76.1 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Web Package Updates

These are likely to be of interest only to web developers.

Coppermine Gallery 1.6.22 resolves several bugs. This is not a security update.
https://coppermine-gallery.net/

Drupal 9.5.4 resolves several bugs. This is not a security update.
https://drupal.org/download

Joomla 4.2.9 is a security update.
https://www.joomla.org/

jQuery 3.6.4 adds selector forgiveness. This is not a security update.
https://code.jquery.com/

MailEnable Enterprise 10.45 is a security update.
https://www.mailenable.com/

MailEnable Enterprise 9.87 is a security update.
https://www.mailenable.com/

OpenPetra 2023.02 resolves several bugs. This is not a security update.
https://www.openpetra.org/

ownCloud Client 3.2.1.10355 resolves several bugs. This is not a security update.
https://owncloud.com/desktop-app/

Piwigo 13.6.0 is a security update.
https://piwigo.org/

YOURLS 1.9.2 improves compatibility and resolves several bugs. This is not a security update.
https://yourls.org/

BuddyPress 11.1.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 5.7.4 improves compatibility and resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Social Post Feed 4.1.8 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/custom-facebook-feed/

Sucuri Security 1.8.37 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

WooCommerce 7.5.0 is a security update.
https://wordpress.org/extend/plugins/woocommerce/

WP Cerber Security 9.5 resolves several bugs. This is not a security update.
https://wpcerber.com/

WPtouch 4.3.51 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/wptouch/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2023-02-14

Posted on February 14, 2023 by Shawn K. Hall

Happy Valentine’s Day, Folks!

Today is Patch Tuesday for February, 2023.

There are a whopping 150+ major hacks and 200+ application updates this month. It’s a big one, with about 6 GB of updates for most users. Microsoft is also pushing out Windows 22H2 (Win10 and Win11) for all supported devices. If you’re not already on the latest builds, expect to be “upgraded” automatically in the coming days.

This Month in Technology

1020 South Main Street Operations LLC, 1st Franklin Financial Corporation Master Welfare Benefit Plan, 225 Evergreen Road Operations LLC, 90 Degree Benefits, Inc., A10 Networks, Aflac, Alkomprar Technology, AmerisourceBergen, an unnamed medical research company, Arizona Health Advantage, Inc., Arnold Clark, Aspire Surgical, Atlassian’s Jira Service Management Server and Data Center, Audifarma, Autotrader, Bahrain’s international airport, Benefit Administrative Systems, LLC, BonqDAO, Brazilian Government, British PM Stewart McDonald, Cacti, Cardiovascular Associates, Casa Ley, Cedar Oaks Surgery Center, Centro Médico Virgen De La Caridad, CircleCi, Cisco IOx, City Council of Durango, City of London, City of Oakland, Community Health Systems, CommuteAir – exposing the TSA no-fly list, Control Web Panel, Costa Rica’s Ministry of Public Works and Transport, Court of Justice of the State of Pará, Datadog, Diligent Corp, DNV (impacting over 1000 ships worldwide), DotHouse Health Incorporated, DPP II, LLC, Dr. Keith Rundle & Dr. Herman Rundle, Edmonds School District, Eurostar, Exclu, FortiOS SSL-VPN, General Treasury of the Republic of Chile, Git, GitHub Atom, GitHub Desktop, GoAnywhere MFT, 130 organizations using GoAnywhere, Google Fi, GoTo, Grand Theft Auto (GTA) Online, Harmony Horizon, Health Plan of San Mateo, Heritage Provider Network, Hive, Home Care Providers of Texas, Howard Memorial Hospital, Indigo Books & Music, Instituto Federal Do Pará, Intelligent Business Solutions, ION Group, iOS, IT Servicios, Italy, Jackson & Joyce Family Dentistry, JD Sports, Jefferson County Health Center, KeePass, KomplettFritid, Kroger, LastPass, League of Legends, LearnPress, Lexmark firmware, LimeVPN, Liquor Control Board of Ontario, Los Angeles Unified School District, Luaces Asesores, Lutheran Social Services of Illinois, macOS, MailChimp, Maternal and Family Health Services, Microsoft-Verified OAuth Apps, a Midwest specialty medical care clinic, Mindpath Health, Minuteman Senior Services, MKS Instruments, Morgan Hill Unified School District, multiple federal civilian executive branch (FCEB) agencies, Namecheap, Nantucket, Massachusetts, Nissan North America, Norton LifeLock (including their password manager), ODIN Intelligence, One Brooklyn Health System, Packman anti-cheat software, PayPal, Pennsburg Manor, PeopleConnect (TruthFinder and Instant Checkmate), Pepsi, Pharma Gestao, Pitt Meadows School District 42, Planet Ice, Politriz, Puma, QNAP NAS, Qualys, Quintana Roo Attorney General’s Office, Qulliq Energy Corporation, Reddit, Regal Medical Group, Rise Interactive Media & Analytics, LLC, Rostelecom, Royal Mail, Rundle Eye Care, Samsung Galaxy App Store, San Francisco Transit Police, Seguros Equinoccial S.A, Sharp HealthCare, Shell, Sistema Integral De Control Alimentario, Skyview Networks, Solaris, Southeast Colorado Hospital District, St. Rose Hospital, Stanford Medicine, Stroke Scan Inc, T-Mobile, Tallahassee Memorial HealthCare, Technion – Israel Institute of Technology, Teijin Automotive Technologies Welfare Plan, The Guardian, Ticketmaster, Toyota’s GSPIMS, Tucson, Arizona, Ukrainian Computer Emergency Response Team, Ukrinform, University of California, University of Colorado Hospital Authority, University of Colorado, University of Duisburg-Essen, University of Maryland Baltimore, University of Miami, UScellular, VMware OpenSLP, VMware vRealize Log Insight, Weee!, Yum! Brands, Zacks Investment Research, and Zurich have reportedly been hacked or compromised this month.

Most federal agencies ignore the GAO cybersecurity recommendations.

Bankdata, Bermuda, The FAA’s NOTAM, Instagram, Microsoft 365, Microsoft Outlook, Tor, Twitter, Verizon, YouTube, and Zelle suffered from significant outages.

Cloudflare managed to prevent an insane 71 million requests per second attack.

Last months updates broke the Windows Start menu, Windows 10 (if a 365 trial was active), and almost 300 MSI motherboard models.

A whopping 12% (minimum) of online stores expose private data or backups. A new strain of point-of-sale malware prevents contactless payments in order to ensure that the skimmer operates unhindered.

Now for the good news:

Impossible Foods are being hit with patent problems across the globe. Hopefully this will lead to a financial incentive to grow real foods again.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is huge this month. The typical computer should see roughly
6 GB in updates today. Let’s get started.

Like it or not, Windows 10 and Windows 11 versions 22H2 are now being pushed out onto all supported devices, so expect it to be installed in the coming days.

Microsoft released updates to address 72 vulnerabilities in .NET and Visual Studio, .NET Framework, 3D Builder, Azure App Service, Azure Data Box Gateway, Azure DevOps, Azure Machine Learning, HoloLens, Internet Storage Name Service, Microsoft Defender for Endpoint, Microsoft Defender for IoT, Microsoft Dynamics, Microsoft Edge (Chromium-based), Microsoft Exchange Server, Microsoft Graphics Component, Microsoft Office, Microsoft Office OneNote, Microsoft Office Publisher, Microsoft Office SharePoint, Microsoft Office Word, Microsoft PostScript Printer Driver, Microsoft WDAC OLE DB provider for SQL, Microsoft Windows Codecs Library, Power BI, SQL Server, Visual Studio, Windows Active Directory, Windows ALPC, Windows Common Log File System Driver, Windows Cryptographic Services, Windows Distributed File System (DFS), Windows Fax and Scan Service, Windows HTTP.sys, Windows Installer, Windows iSCSI, Windows Kerberos, Windows MSHTML Platform, Windows ODBC Driver, Windows Protected EAP (PEAP), Windows SChannel, Windows Win32K, and MSRT (~2 GB). This includes security updates. A reboot is required.

Apple released updates for macOS Big Sur 11.7.3, macOS Monterey 12.6.3, macOS Ventura 13.2.1, iOS 12.5.7, iOS 15.7.3, iOS 16.3.1, iPadOS 15.7.3, iPadOS 16.3.1, Safari 16.3.1, tvOS 16.3.2 and watchOS 9.3.1. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 12.5.7, 15.7.3, and 16.3.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.7.3 and 16.3.1 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 9.3.1 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 16.3.2 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 109.0.5414.125 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

elementary OS 7.0 is a new major version of elementary OS improving app management, controls, defaults, and many other bug fixes. This is not a security update.
https://elementary.io/

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.6.0 updates installer, adds option to update driver source to default, and improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

DS4Windows 3.2.8 resolves over a dozen bugs. This is not a security update.
https://github.com/Ryochan7/DS4Windows/releases/latest

Garmin Express 7.16.1 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.garmin.com/en-US/software/express/

JACK2 1.9.22 improves compatibility, removes example tools, updates dependencies, and resolves a couple bugs. This is a security update.
https://jackaudio.org/downloads/

NVcleanstall 1.15.1 resolves several bugs. This is not a security update.
https://www.techpowerup.com/download/techpowerup-nvcleanstall/

Drivers by Seagull 2023.1 adds support for over 200 new printer models from 20 vendors, RFID unique serial numbers (TID), and updates the license.
https://www.seagullscientific.com/support/downloads/drivers/

Wacom Driver 6.4.1-3 resolves several bugs. This is not a security update.
https://www.wacom.com/en-us/support/product-support/drivers

Xerox Smart Start 1.8.10.0 doesn’t provide a changelog so should be treated as a security update.
https://www.support.xerox.com/en-us/content/143617

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.48.158 is a security update.
https://brave.com/

Google Chrome 110.0.5481.100 is a security update.
https://www.google.com/chrome/

Microsoft Edge 110.0.1587.41 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 110.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

SeaMonkey 2.53.15 is a security update.
https://www.seamonkey-project.org/

Vivaldi 5.6.2867.62 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

ProtonMail (Android) 3.0.11 improves stability. This is not a security update.
https://proton.me/mail/download

Spark 3.3.3.42970 improves stability. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.3.3.42968 improves stability. This is not a security update.
https://sparkmailapp.com/

Thunderbird 102.7.2 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 7.1.8 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 7.0.1 resolves several bugs. This is a security update.
https://anydesk.com/en/downloads

BrowsingHistoryView 2.54 adds whitespace around the QR codes. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

Dropbox 167.4.4719 resolves several bugs and improves performance. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 176.0.0.12.101 is a security update.
https://www.messenger.com/download

FileZilla Client 3.63.1 resolves several bugs. This is not a security update.
https://filezilla-project.org/

FileZilla Server 1.6.6 resolves several bugs. This is not a security update.
https://filezilla-project.org/

FreeFileSync 12.0 is a major update and adds several new security profiles, improves timeouts, and resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 71.0 resolves several bugs. This is not a security update.
https://drive.google.com/start

IPInfoOffline 1.61 resolves a crash bug. This is not a security update.
https://www.nirsoft.net/utils/ip_country_info_offline.html

Java 8u361 is a security update.
https://www.java.com/en/download/manual.jsp

Microsoft Teams 1.6.00.376 adds several new features. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 25.0.3 is a security update.
https://nextcloud.com/

Omada Software Controller 5.8.4 adds global view, mapping, and adds several other features. This is not a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Pocketnet-GUI 0.8.39 adds P2P audio and video calls, improved GUI confirmations, and resolves over a dozen bugs. This is not a security update.
https://pocketnet.app/

Signal 6.5.1 resolves a crash bug. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 6.10.9 improves display of activity. This is not a security update.
https://signal.org/android/apk/

Skype 8.93.0.404 improves translator, color schemes, and resolves several bugs. This is not a security update.
https://www.skype.com/

Syncthing 1.23.1 resolves an upgrade bug. This is not a security update.
https://syncthing.net/

Telegram 4.6.2 resolves several bugs. This is not a security update.
https://telegram.org/

Telegram (Android) 9.4.0 doesn’t provide a changelog so should be treated as a security update.
https://telegram.org/apps

WinSCP 5.21.7 updates Batch Rename extension and resolves a settings change bug. This is not a security update.
https://winscp.net/eng/index.php

Zoom 5.13.7.12602 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

BasicSR 1.4.2 adds torch and resolves several bugs. This is not a security update.
https://github.com/XPixelGroup/BasicSR/releases/latest

Kodi 20.0 implements over 500 changes. This is a security update.
https://kodi.tv/

Plex Desktop 1.63.3.3523 resolves audio passthrough. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.33.2.3525 resolves audio passthrough. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.31.0.6654 improves season and episode detection, end credit marker detection, scanner, and resolves over a dozen bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Real-ESRGAN-ncnn-vulkan 0.2.0 is a security update.
https://github.com/xinntao/Real-ESRGAN-ncnn-vulkan/releases/latest

TuneIn 1.26.0 doesn’t provide a changelog so should be treated as a security update.
https://tunein.com/radio/home/

Game Updates

These are unlikely to be of interest to most people.

GameMaker Studio 2023.1.0.58 improves installation experience, performance and image editing. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.1.157 adds new objects, improves GDevelop banner behavior, asynchronous objects, updates libraries and extensions. This is not a security update.
https://gdevelop.io/download

Lego Studio 2.23.1.1 resolves several bugs. This is not a security update.
https://www.lego.com/en-us/ldd

Playstation PS5 22.02-06.50.00 adds support for the DualSense Edge wireless controller and improves performance. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2023.02.10 resolves dozens of bugs. This should be treated as a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 22.003.20314 resolves several bugs. This is not a security update.
https://get.adobe.com/reader

Adobe After Effects 23.2 and 22.6.4 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb23-02.html

Adobe Connect 11.4.6 and 12.2 are security updates.
https://helpx.adobe.com/security/products/connect/apsb23-05.html

Adobe FrameMaker 2020.5 and 2022.1 are security updates.
https://helpx.adobe.com/security/products/framemaker/apsb23-06.html

Adobe Bridge 12.0.4 and 13.0.2 are security updates.
https://helpx.adobe.com/security/products/bridge/apsb23-09.html

Adobe Photoshop 23.5.4 and 24.1.1 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb23-11.html

Adobe InDesign 18.2 and 17.4.1 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb23-12.html

Adobe Premiere Rush 2.7 is a security update.
https://helpx.adobe.com/security/products/premiere_rush/apsb23-14.html

Adobe Animate 22.0.9 and 23.0.1 are security updates.
https://helpx.adobe.com/security/products/animate/apsb23-15.html

Adobe Substance 3D Stager 2.0.0 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb23-16.html

Audacity 3.2.4 resolves a functional bug. This is not a security update.
https://www.audacityteam.org/download/

LibreOffice 7.4.5 resolves a stability bug. This is not a security update.
https://www.libreoffice.org/

LibreOffice Fresh 7.5.0 resolves over 250 bugs. This is a security update. Be aware that the Fresh line is beta software and should be avoided in favor of the Still line above.
https://www.libreoffice.org/

Nextcloud Desktop 3.7.3 resolves dozens of bugs. This is a security update.
https://nextcloud.com/

Notepad++ 8.4.9 resolves over a dozen bugs. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 5.0.1 is a major update to Paint.net, adds several features, and resolves several bugs. This is not a security update.
https://www.getpaint.net/

Calibre 6.12.0 adds read-aloud, updates libraries, and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Kindle for PC 1.40.65415 doesn’t provide a changelog so should be treated as a security update.
https://www.amazon.com/kindleforpc

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 2.3.1 resolves a panic bug. This is not a security update.
https://github.com/countercept/chainsaw

DNSQuerySniffer 1.91 resolves stability bug. This is not a security update.
https://www.nirsoft.net/utils/dns_query_sniffer.html

HTTP Toolkit 1.12.3 doesn’t provide a changelog so should be treated as a security update.
https://httptoolkit.tech/

KeePass 2.53.1 resolves several bugs. This is not a security update.
https://keepass.info/

MalwareBytes Anti-Malware 4.5.22 resolves several bugs. This is not a security update.
https://www.malwarebytes.org/antimalware/

MalwareBytes Anti-Malware Mac 4.18.11 resolves a couple bugs and removes the built-in browser. This is a security update.
https://www.malwarebytes.com/mac/

OpenSSL 1.1.1t is a security update.
https://www.openssl.org/source/

OpenSSL 3.0.8 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN (macOS) 3.0.13 resolves several bugs. This is not a security update.
https://protonvpn.com/download

RogueKiller 15.8.0 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Tails 5.9 is a security update.
https://tails.boum.org/install/dvd/index.en.html

uBlock Origin 1.47.0 resolves several bugs and improves performance. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

Camtasia 22.5.0 adds several new transitions, improved recorder, and several other tools. This is not a security update.
https://www.techsmith.com/video-editor.html

Open Broadcaster Software 29.0.2 resolves several bugs. This is not a security update.
https://obsproject.com/

ScreenToGif 2.37.2 adds translations. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

SnagIt 23.0.3 resolves a couple bugs. This is not a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.0.9.9 adds support for new encodings, improves compatibility and resolves a couple bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

HandBrake 1.6.1 resolves several bugs. This is not a security update.
https://handbrake.fr/

iMazing HEIC Converter 2.0.5 doesn’t provide a changelog so should be treated as a security update.
https://imazing.com/heic

MakeMKV 1.17.3 adds support for new encodings and improves reliability. This is not a security update.
https://www.makemkv.com/download/

StreamFab 6.1.0.7 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 1.0.1.2 resolves a couple bugs and adds support to merge. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 6.0.20 improves performance and resolves several bugs. This is a security update.
https://www.zotero.org/

Zotero (macOS) 6.0.21 resolves several bugs. This is a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 8.9.15 improves compatibility. This is not a security update.
https://1password.com/downloads/mac/

1Password for Windows 8.9.14 adds support to import directly from LastPass. This is not a security update.
https://1password.com/downloads/windows/

8GadgetPack 36.0 updates outdated gadgets. This is not a security update.
https://8gadgetpack.net/

Agent Ransack 2022.3366 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

Beyond Compare 4.4.5.27371 improves performance and resolves several bugs. This is not a security update.
https://www.scootersoftware.com/download.php?zz=dl4

Bitwarden 2023.1.1 resolves several bugs. This is not a security update.
https://bitwarden.com/

CCleaner 6.09.10300 resolves several bugs. This is not a security update.
https://www.ccleaner.com/

CPU-Z Installer 2.04 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

CurrPorts 2.66 improves stability. This is not a security update.
https://www.nirsoft.net/utils/cports.html

Cygwin 3.4.6 improves compatibility and stability. This should be treated as a security update.
https://cygwin.com/

Dell Command Update 4.8.0 improves BIOS update, self-update, and toast behaviors. This is a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

DesktopOK 10.66 improves auto save icons feature. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

Etcher 1.14.3 improves compatibility and resolves several bugs. This is not a security update.
https://www.balena.io/etcher/

Everything Toolbar 1.0.2 improves performance, reliability and cosmetics. This is a security update.
https://github.com/stnkl/EverythingToolbar/

Fido 1.43 adds BITS transfer support. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3366 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Git SCM 2.39.1 is a security update.
https://git-scm.com/

Go 1.20.1 updates the toolchain and improves performance. This is a security update.
https://go.dev/

GoodSync 12.1.7 resolves several bugs and improves compatibility. This is not a security update.
https://www.goodsync.com/

grepWin 2.0.13 adds ability to copy column content, and resolves a couple bugs. This is not a security update.
https://github.com/stefankueng/grepWin/releases/latest

HWMonitor 1.49 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

Memtest86+ 6.10 adds support for Secure Boot signing, headless EFI, various command line options, new hardware and resolves several bugs. This should be treated as a security update.
https://www.memtest.org/

NetworkTrafficView 2.43 improves stability. This is not a security update.
https://www.nirsoft.net/utils/network_traffic_view.html

NTLite 2.3.9.9039 updates components and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 10.0.1007 improves case management, VM reporting, and resolves dozens of bugs. This is not a security update.
https://www.osforensics.com/download.html

AOMEI Partition Assistant 9.14.0 improves safety of move/resize, resolves several bugs, and improves reliability. This is not a security update.
https://www.diskpart.com/

PointerStick 6.22 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.67.1 improves stability. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

PSAppDeploy 3.9.2 resolves several bugs. This is a security update.
https://psappdeploytoolkit.com/

ScreenConnect 23.1.1.8423 improves compatibility, adds several cosmetic changes, and resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

SearchMyFiles 3.23 resolves a couple bugs. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

Sysmon 14.14 resolves a timeout detected deleted files. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

TeamViewer 15.38.3 resolves a file resume bug. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

Unified Remote Server 3.13.0.2501 doesn’t provide a changelog so should be treated as a security update.
https://www.unifiedremote.com/

Unity 2022.2.6 resolves several bugs. This is not a security update.
https://unity3d.com/get-unity/download/archive

Ventoy 1.0.88 resolves several bugs and improves compatibility. This is not a security update.
https://www.ventoy.net/en/index.html

WhyNotWin11 2.5.0.4 updates hardware compatibility lists. This is not a security update.
https://github.com/rcmaehl/WhyNotWin11

WinGet 1.4.10173 resolves over a hundred bugs and improves stability. This is a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinRAR 6.20 resolves over 20 bugs. This is not a security update.
https://www.rarlab.com/

ZoomIt 6.12 resolves a cosmetic artifact bug when zooming. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/zoomit

Developer Updates

These are unlikely to be of interest to most people.

ADB 34.0.0 resolves several bugs. This is not a security update.
https://developer.android.com/studio/releases/platform-tools

Android Studio 2022.1.1.1 resolves several bugs. This is not a security update.
https://developer.android.com/studio

GitHub Desktop 3.1.6 updates libraries, resolves several bugs, and improves compatibility. This is a security update.
https://desktop.github.com/

GitHub includefragment 6.1.1 adds refetch API. This is not a security update.
https://github.github.io/include-fragment-element/

MySQL Server 8.0.32 resolves several bugs. This is not a security update.
https://dev.mysql.com/downloads/installer/

MySQL ConnectorNet 8.0.32 resolves several bugs. This is not a security update.
https://dev.mysql.com/downloads/connector/net/

Node.js 19.6.0 updates libraries and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Node.js 18.14.0 updates libraries and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Redemption 6.3.0.6164 resolves several bugs. This is not a security update.
https://www.dimastr.com/redemption/

Rustup 1.25.2 adds SHA-1 support again. This is not a security update.
https://www.rust-lang.org/

TortoiseGit 2.14.0 updates libraries and resolves several bugs. This is a security update.
https://tortoisegit.org/

Visual Studio Code 1.75.1 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.0.6 resolves several bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Drupal 9.4.11 is a security update.
https://drupal.org/download

Joomla 4.2.7 is a security update.
https://www.joomla.org/

ownCloud Client 3.1.0.9872 resolves several bugs. This is not a security update.
https://owncloud.com/desktop-app/

phpList 3.6.12 updates dependencies and resolves several bugs. This is not a security update.
https://www.phplist.org/

phpMyAdmin 5.2.1 is a security update.
https://www.phpmyadmin.net/

Piwigo 13.5.0 is a security update.
https://piwigo.org/

Antispam Bee 2.11.2 resolves several bugs and improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/antispam-bee/

Autoptimize 3.1.5 improves compatibility and resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/autoptimize/

Contact Form 7 5.7.3 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.2.1 improves compatibility and resolves several bugs. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers

myStickymenu 2.6.2 improves flow. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

Postie 1.9.65 removes uname support. This is not a security update.
https://wordpress.org/extend/plugins/postie/

Redirection 5.3.9 is a security update.
https://wordpress.org/extend/plugins/redirection/

W3 Total Cache 2.3.0 improves compatibility and resolves over a dozen bugs. This is not a security update.
https://wordpress.org/extend/plugins/w3-total-cache/

WooCommerce 7.3.0 resolves almost 100 bugs. This is a security update.
https://wordpress.org/extend/plugins/woocommerce/

WPtouch 4.3.48 is a security update.
https://wordpress.org/extend/plugins/wptouch/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2022-02-08

Posted on February 8, 2022 by Shawn K. Hall

Welcome back, Folks!

Today is Patch Tuesday for February, 2022.

It’s only the beginning. February tends to be “patch it once, whoops, patch it again” month most years, so expect another cycle later in the month.

This Month in Technology

Abington Memorial Hospital (dba Jefferson Abington Hospital), dozens of WordPress Themes and Plugins by AccessPress, Aditya Birla Fashion and Retail, Advocates, Inc., Albany Family Dentistry, Albuquerque Public Schools, Allegheny Health Network Home Infusion, LLC, Argo CD, Arnprior Regional Health, AWS Glue, Box, BTC-Alpha, Caring Communities, Chico State, Cisco StarOS, Colorado Department of Human Services, County of Kings (CA), Crypto.com, Delta Electronics, Digital Insurance, LLC doing business as OneDigital, Evos in the Netherlands, Fiondella, Milone & LaSaracina, LLP, Global Affairs Canada, Golden State Dermatology, Goodwill, Greensward Academy, Griggsville-Perry School District, Hensoldt, IDEMIA biometric ID hardware, Independence Blue Cross, International Committee of the Red Cross, iRise Florida Spine and Joint Institute, LLC, KP Snacks, Lympo, McAfee Enterprise (Trellix), various medical devices, Medical Healthcare Solutions, Inc., Medical Review Institute of America, Memorial Health System, Meter, Midland University, Millennium Eye Care LLC, Moncler, Motorola, Multichain, News Corp, publisher of The Wall Street Journal, Nobel Foundation, Oiltanking in Germany, Olympic Games App, OpenSubtitles, Oscar Buckeye State Insurance Corporation, Oscar Health Plan of California, Oscar Insurance Company of Florida, Oscar Insurance Corporation of Ohio, Pace Center for Girls, Panasonic, Pellissippi State Community College in Tennessee, Pennsbury School District, Philadelphia FIGHT Community Health Centers, Polkit, Practolytics LLC, Puma, R.R. Donnelly, Raveco Medical, RedDoorz, SEA-Invest in Belgium, Securitas, Segway, Seneca Family of Agencies, South City Hospital, Spencer Gifts LLC Health and Welfare Benefit Plan, St. Lucie County’s Drug Screening Lab, Swiss Federal Railways, Swissport, Taylor Regional Hospital, Thai University Central Admission System, Thomas Jefferson University Hospital, Inc., Ubiquiti’s UniFi Network, University of Arkansas for Medical Sciences, Upstox, Vantage Holding Company, LLC, Volunteers of America Southwest California, Walgreen Co., Washington Department of Licensing, Wormhole, and Zimbra have been hacked.

GitHub, Discord, and Telegram have suffered major outages.

Phishing is proving to be even more effective against multi-factor authentication (MFA), as I’ve warned for decades. UPnP is still the worst network design feature. Buy an expensive GPU, gift your identity. Firefox’s “private” email relay service has been added to disposable email blacklists. As expected. Target, the premier member of the “hacked every month club“, is releasing the source code for some of their security software. Google Drive is flagging files containing the number “1” as violating copyrights. VPN companies Nord and Surfshark will merge. 11th and 12th generation Intel CPUs will not be able to play Blu-ray UHD disks.

The IRS is now mandating the use of a private third-party in order to access your own IRS information online. But wait, there’s more! The company, id.me, conceals their own identity and hides their WHOIS data. Tax-filers are already being phished with a threat of refunds being cancelled. The worst news: Nvidia has called off its efforts to acquire Arm.

Now for the good news:

The US Department of Justice has indicted 6 India Call Centers for Scams Targeting Seniors. Maybe the amount of scam calls we get will decrease? I doubt it though, considering the vast increase I’ve received in the last month. 🙁

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday this month is almost back to normal. Well, for now. The typical computer should see roughly 1.8 GB in updates today. Let’s get started.

Microsoft released updates for .NET, Windows, Azure Data Explorer, Kestrel Web Server, Microsoft DNS Server, Microsoft Dynamics, Microsoft Edge, Microsoft Office, Microsoft Office Excel, Microsoft Office Outlook, Microsoft Office SharePoint, Microsoft Office Visio, Microsoft OneDrive, Microsoft Teams, Microsoft Windows Codecs Library, Power BI, Roaming Security Rights Management Services, SQL Server, Visual Studio Code, Windows Common Log File System Driver, Windows DWM Core Library, Windows Hyper-V, Windows Kernel, Windows Kernel-Mode Drivers, Windows Named Pipe File System, Windows Print Spooler Components, Windows Remote Access Connection Manager, Windows Remote Procedure Call Runtime, Windows User Account Profile, Windows Win32K, and MSRT (~1.4 GB). This includes security updates. A reboot is required.

Apple released updates for iOS 15.3 and 15.2.1, iPadOS 15.3 and 15.2.1, tvOS 15.3, watchOS 8.4.1, Safari 15.3, macOS Monterey 12.2, macOS Big Sur 11.6.3, and Security Update 2022-001 Catalina. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 15.3 and 15.2.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.3 and 15.2.1 are security updates. Use Settings, General, Software Update to install the most current update.

tvOS 15.3 is a security update. Use System, Software Update to install the most current version.

watchOS 8.4.1 is a security update. Use the Watch app on your iPhone to install the most current version.

Google Chrome OS 98.0.4758.91 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

The release of macOS Monterey (12.x) means that macOS Mojave (10.14) and older are no longer supported. If you can not install at least macOS Catalina (10.15) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v21H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 6 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v21H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 6 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.4.8 is a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Daemon Tools Lite 11.0.0 adds new image support, DD write, and resolves several other bugs. This is a security update.
https://www.daemon-tools.cc/products/dtLite

Logi Bolt App 1.2.6024 adds support for the Logitech Unifying Adapter and resolves several bugs. This is not a security update.
https://support.logi.com/hc/en-us/articles/4418089333655

Logitech Options 9.50.269 is a security update.
https://support.logi.com/hc/en-us/articles/360025297893

Nvidia 473.04 is a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.35.100 is a security update.
https://brave.com/

Google Chrome 98.0.4758.80 is a security update.
https://www.google.com/chrome/

Microsoft Edge 98.0.1108.43 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 97 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 91.6 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Vivaldi 5.0.2497.48 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 91.5.1 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

Mumble 1.4.230 is a major update resolving dozens of bugs, adding many new features and introducing true plugin support. This is not a security update.
https://www.mumble.info/downloads/

Prosody 0.11.13 is a security update.
https://prosody.im/download/start

Telegram 3.5.2 resolves several bugs and improves reactions. This is not a security update.
https://telegram.org/

Trillian Mac 6.4.0.4 improves compatibility and resolves several bugs. This is not a security update.
https://www.trillian.im/

BrowsingHistoryView 2.51 adds Visit Duration and improves Visited From. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

Dropbox 141.4.3299 doesn’t provide a changelog so should be treated as a security update.
https://www.dropbox.com/

FreeFileSync 11.17 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 55.0 adds integrated desktop search, resolves several bugs and improves performance. This is not a security update.
https://drive.google.com/start

Omada Software Controller 5.0.30 adds newer hardware support, 2FA for Cloud Access, DHCP reservations in Services, and resolves dozens of bugs. This is a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Syncthing 1.19.0 resolves a bug and improves ignore patterns. This is not a security update.
https://syncthing.net/

Zoom 5.9.3.3169 resolves several bugs, adds new features (and requirements) and controls. This is a security update.
https://zoom.us/

Java 8u321 is a security update.
https://www.java.com/en/download/manual.jsp

Media Updates

These are unlikely to be of interest to most people.

Flickr Downloadr 3.4.5.1 only updates the packager. This is not a security update.
https://flickrdownloadr.com/downloads/

Picard 2.7.3 resolves the launcher bug. This is not a security update.
https://picard.musicbrainz.org/

Plex Desktop 1.40.1.2823 resolves a packaging error in the installer. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.10.0.2819 resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.25.5.5492 resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Epic Games 13.1.7 resolves a couple bugs and prepares for feature changes. This is not a security update.
https://www.epicgames.com/

GameMaker Studio 2022.1.1.610 resolves several bugs. This is not a security update.
https://www.yoyogames.com/en/gamemaker

Nintendo Switch 13.2.1 improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

Steam 2022.01.20 resolves several bugs. This is not a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Office Updates

One or more of these are likely to be of interest to most people.

Adobe After Effects 22.2 and 18.4.4 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb22-09.html

Adobe Creative Cloud Desktop 2.7.0.15 is a security update.
https://helpx.adobe.com/security/products/creative-cloud/apsb22-11.html

Adobe Illustrator 26.0.3 and 25.4.4 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb22-07.html

Adobe Photoshop 22.5.5 and 23.1.1 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb22-08.html

Adobe Premiere Rush 2.3 is a security update.
https://helpx.adobe.com/security/products/premiere_rush/apsb22-06.html

Artweaver 7.0.11 is a security update.
https://www.artweaver.de/

Atom 1.59.0 resolves several bugs. This is not a security update.
https://atom.io/

Blender 3.0.1 doesn’t provide a changelog so should be treated as a security update.
https://www.blender.org/download/

Inkscape 1.1.2 resolves over 40 bugs, improves stability and reliability. This is not a security update.
https://inkscape.org/release/

LibreOffice Fresh 7.3.0 resolves hundreds of bugs. This is not a security update. The “Fresh” line is beta software and should be avoided in favor of the “Still” line whenever possible.
https://www.libreoffice.org/

LibreOffice Still 7.2.5 resolves almost a hundred bugs. This is not a security update.
https://www.libreoffice.org/

Nextcloud Desktop 3.4.2 resolves several bugs. This should be treated as a security update.
https://nextcloud.com/

Notepad++ 8.3 improves support for large files and resolves several bugs. Be aware there may be plugin stability issues for the near future. This is not a security update.
https://notepad-plus-plus.org/

Scribus 1.5.8 improves dark mode, import, PDF export, and resolves several bugs. This is not a security update.
https://www.scribus.net/

Calibre 5.36.0 improves metadata parsing and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Kindle for PC 1.34.63103 doesn’t provide a changelog so should be treated as a security update.
https://www.amazon.com/kindleforpc

Security Software Updates

One or more of these is likely to be of interest to most people.

MalwareBytes Anti-Malware 4.5.2 resolves several bugs. This is not a security update.
https://www.malwarebytes.org/antimalware/

MalwareBytes Anti-Malware Mac 4.14 improves up-sell ability. This is not a security update.
https://www.malwarebytes.com/mac/

OnionShare 2.5 is a security update.
https://onionshare.org/

RogueKiller 15.2.0 adds several new features and cosmetics. This is not a security update.
https://www.adlice.com/download/roguekiller/

Tails 4.27 updates components and libraries. This is a security update.
https://tails.boum.org/install/dvd-download/index.en.html

uBlock Origin 1.41.0 adds dark mode and resolves several bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

QubesOS 4.1.0 is a major update, with updated components, improved granular controls, new features and resolves many bugs. This is a security update.
https://www.qubes-os.org/downloads/

Capture Updates

These are unlikely to be of interest to most people.

VideoCacheView 3.09 improves compatibility with new Chromium-based browsers. This is not a security update.
https://www.nirsoft.net/utils/video_cache_view.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.0.6.0 resolves several crash bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

Agent Ransack 2022.3294 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

Autoruns 14.08 resolves several bugs. This should be treated as a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/autoruns

ControlMyMonitor 1.35 adds display filter options. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html

Cygwin 3.3.4 resolves several bugs. This is not a security update.
https://cygwin.com/

DesktopOK 9.61 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 3.0.0 improves the build process and now generates signed packages, and resolves several bugs. This is not a security update.
https://dngrep.github.io/

Everything CLI 1.1.0.23 adds support for long file names. This is not a security update.
https://www.voidtools.com/

Everything Toolbar 0.7.4 resolves a first-boot filter bug. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

Fido 1.28 adds support for Windows 11 21H2 v1. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3294 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Git SCM 2.35.1 resolves dozens of bugs. This is not a security update.
https://git-scm.com/

GoodSync 11.10.3 resolves several compatibility bugs. This is not a security update.
https://www.goodsync.com/

Kingston SSD Manager 1.5.1.6 doesn’t provide a changelog so should be treated as a security update.
https://www.kingston.com/us/support/technical/ssdmanager

NTLite 2.3.3.8585 adds new settings, upgrades components, and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

PowerToys 0.55.1 resolves several bugs and improves reliability. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Process Monitor 3.88 improves stability. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/procmon

Macrium Reflect 8.0.6525 improves media creation, compatibility, and resolves several bugs. This is not a security update.
https://www.macrium.com/reflectfree

RoboForm 9.2.4 improves Basic Auth support and resolves several bugs. This is not a security update.
https://www.roboform.com/

Samsung Magician 7.0.1 doesn’t provide a changelog, so should be treated as a security update.
https://www.samsung.com/semiconductor/minisite/ssd/download/tools/

SmartMonTools 7.2 significantly improves field detection and reporting, offers YAML output, drive database extensions, and other fixes. This is not a security update.
https://smartmontools.org/

Sysmon 13.32 improves compatibility. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

TCPView 4.17 improves stability. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/tcpview

VMMap 3.32 improves stability. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/vmmap

Windows 11 RCT 1.4.0 adds support for newer hardware. This is not a security update.
https://bytejams.com/

WinRAR 6.10 adds support for new formats, improved compatibility, resolves several bugs, and optimizes user interface. This is not a security update.
https://www.rarlab.com/

ZoomIt 5.0 adds support for Windows 11 and resolves several bugs. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/zoomit

Developer Updates

These are unlikely to be of interest to most people.

ADB 32.0.0 adds native M1 support. This is not a security update.
https://developer.android.com/studio/releases/platform-tools

Docker Desktop 4.4.4 is a security update.
https://www.docker.com/products/docker-desktop

MySQL ConnectorNet 8.0.28 is a security update.
https://dev.mysql.com/downloads/connector/net/

Node.js 12.22.10 upgrades libraries and time zone information. This is not a security update.
https://nodejs.org/en/

Node.js 14.19.0 updates time zone information, adds Corepack and updates libraries. This is a security update.
https://nodejs.org/en/

Node.js 17.4.0 resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

TortoiseGit 2.13.0.1 updates requirements, libraries, and resolves dozens of bugs. This is not a security update.
https://tortoisegit.org/

Visual Studio Code 1.64 improves cosmetics, automation, and resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 6.1.32 is a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Drupal 9.2.12 is a security update.
https://drupal.org/download

MailArchiva 8.7.1 improves role functionality and resolves several bugs. This is not a security update.
https://mailarchiva.com/

ownCloud Client 2.10.0.6519 resolves several bugs. This is not a security update.
https://owncloud.com/desktop-app/

ownCloud Server 10.9.1 improves stability and reliability. This is not a security update.
https://owncloud.org/install/

phpMyAdmin 5.1.2 and 4.9.9 are security updates.
https://www.phpmyadmin.net/

ScreenConnect 21.15.6739.8073 improves automation, triggers, auditing, 2FA timeouts, and resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

WordPress 5.9 resolves dozens of bugs and implements front-end editing. This is not a security update.
https://wordpress.org/

Akismet 4.2.2 improves compatibility and resolves several bugs. This is not a security update.

Autoptimize 2.9.5.1 resolves a stability bug. This is not a security update.

BuddyPress 10.0.0 is a major update offering several new features and resolving dozens of bugs. This is not a security update.

Contact Form 7 5.5.4 adds double opt-in support, new action and filter hooks and resolves a bug with the default contact form. This is not a security update.

Duplicator 1.4.4 resolves several bugs. This is not a security update.

Redirection 5.2.3 resolves several bugs. This is not a security update.

Slider Revolution 6.5.15 resolves several bugs. This is not a security update.
https://revolution.themepunch.com/

WooCommerce 6.1.1 resolves dozens of bugs. This is not a security update.

WordPress Zero Spam 5.2.10 is a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2021-11-09

Posted on November 9, 2021 by Shawn K. Hall

Welcome back, Folks!

Today is Patch Tuesday for November, 2021.

This month we’ve got the new macOS (Monterey) which is bricking Macs, Windows 11 (don’t do it!), and a new build of Windows 10 (v21H2) is slated for release within the next few days. If you’re running a version of Windows 10 prior to v20H2 (v2009/19042) then you’ll want to install either Windows 10 v21H1 or prepare to install v21H2 on release, as the older versions will no longer be supported in only a month.

This Month in Technology

Acer (a couple times), American Osteopathic Association, Anthem, Inc., Apple iCloud, Argentina’s National Registry of Persons, BillQuick, Blue Cross of California, Bryan Health, bZx, California Physicians’ Services (Blue Shield of California), Canadian province of Newfoundland and Labrador Health Systems, Centara Hotels & Resorts, Clinical Pathology Diagnostics, LLC, CoinMarketCap, Colleton County School District (SC), Community Medical Centers, Cyberserve, Deep 6 AI, Discord CDN (still), Discourse, Doctors Health Group, Inc., Domaining.com, Electronic Warfare (US defense contractor), EU Digital Covid certificate system “Green Pass”, Exterity IPTV, Family of Woodstock, Ferrara Candy Co, Fullerton Health, Gigabyte, GitLab servers, Graff, Hariexpress, Humana Inc, Instagram and TikTok, Kaspersky, Las Vegas Cancer Center, Lavaca Medical Center, Machon Mor, Maxim Healthcare Group, MediaMarkt, many more Microsoft Exchange servers, Missouri Delta Medical Center, MLB, National Iranian Oil Products Distribution Company, Nationwide Laboratory Services, North American Dental Management, a bunch of NPM libraries, NRA, Olympus, OpenSea NFT, Painters District Council No. 30 Health and Welfare Fund, Philips Tasy EMR, Playbook, Practice Max, Premier Patient Healthcare, Professional Dental Alliance, Putnam County Memorial Hospital, QRS, Inc., Quest Diagnostics ReproSource, Quickfox, Robinhood, Russia’s Federal Information System, Scoolio, SCUF Gaming International, Seneca Family of Agencies, Sinclair TV, Società Italiana degli Autori ed Editori, Surecare Specialty Pharmacy, Syracuse ASC, LLC, Tesco, Thingiverse, Throckmorton County Memorial Hospital, tribal casinos, Twitch, Twitter, UK Councils (dude!), UK Labour Party, UNC Hospitals, University of Colorado Boulder, UMass Memorial Health, University of Sunderland, The Urology Center of Colorado, US Immigration and Customs Enforcement’s Homeland Security Investigations, US Water and Wastewater Systems, National Health Service of Ukraine, Venmo used to syphon bank accounts, Visible, Visual Tool DVRs, Viverant PT, LLC, Washington Central Unified Union School District (VT), and, of course, more Zoho ManageEngine servers than you can shake a stick at, have been hacked this month.

Google Chromebook enrollment, Microsoft 365, KT, and Voipfone have suffered outages this month. Microsoft overlooked expired certificates again, and Microsoft is force-installing crapware again, as well.

Pwn2Own this year demonstrated over 60 hacks across dozens of devices. Default password patterns (like your phone number) are sadly and unsurprisingly insecure. Facebook will (supposedly) delete 1 billion faceprints. Yahoo pulled out of China and YouTube is pushing malware. Mozilla has finally removed two malicious add-ons that have been weakening security for half a million users. macOS Monterey is bricking Macs. Canon is being sued for disabling their printers. And McAfee is being purchased by an “investor consortium.”

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday this month is very large. The typical computer should see roughly 3.0 GB in updates today. Let’s get started.

Microsoft released updates for Windows, Edge, .NET, Servicing Stack, Internet Explorer, Windows 7, Windows Server 2008 R2, Server 2012, and MSRT (~2.3 GB). This includes security updates. A reboot is required.

Apple released updates for iOS 14.8.1, iOS 15.1, iPadOS 14.8.1, iPadOS 15.1, Safari 15.1, macOS Big Sur 11.6.1, macOS Monterey 12.0.1, Security Update 2021-007 Catalina, tvOS 15.1, and watchOS 8.1. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 14.8.1 and 15.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 14.8.1 and 15.1 are security updates. Use Settings, General, Software Update to install the most current update.

tvOS 15.1.1 is a security update. Use System, Software Update to install the most current version.

watchOS 8.1 is security updates. Use the Watch app on your iPhone to install the most current version.

Google Chrome OS 94.0.4606.114 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Fedora 35-1.2 is a major update, adding several new configuration and control features, and updates libraries. This is not a security update.
https://getfedora.org/en/workstation/download/

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

The now-current release of the Windows 10 (v21H1) is very large, for the first time it’s actually smaller than the previous release, but it will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 6 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 has been released, but it has only been out a few weeks so should be considered beta software. Give it at least a couple months before you install it on your devices.

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.4.6 improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.31.88 is a security update.
https://brave.com/

Google Chrome 95.0.4638.69 is a security update.
https://www.google.com/chrome/

Iridium 2021.10.95 is a security update.
https://iridiumbrowser.de/

Microsoft Edge 95.0.1020.44 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 94.0.1 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 91.3.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Vivaldi 4.3.2439.65 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 91.3.0 is a security update.
https://www.thunderbird.net/en-US/

OutlookAttachView 3.44 resolves a profile selection bug. This is not a security update.
https://www.nirsoft.net/utils/outlook_attachment.html

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 6.3.5 resolves a couple bugs. This is not a security update.
https://anydesk.com/en/downloads

Dropbox 134.4.4115 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.dropbox.com/

FileZilla Client 3.56.2 resolves several bugs and improves compatibility. This is not a security update.
https://filezilla-project.org/

FileZilla Server 1.1.0 is a security update.
https://filezilla-project.org/

Google Drive 52.0 improves compatibility, no longer respects custom cache location mapping, forcefully overwrites the destination of any link named “Google Drive,” and improves performance. This is not a security update.
https://drive.google.com/start

Rclone 1.57.0 resolves dozens of bugs and improves reliability, compatibility and stability for several platforms and protocols. This is not a secuirty update.
https://rclone.org/

Skype 8.77.0.97 adds background blurring, user pinning, Meet Now improvements, and resolves several bugs. This is not a security update.
https://www.skype.com/

Syncthing 1.18.4 resolves several bugs. This is not a security update.
https://syncthing.net/

Technitium DNS Server 7.1 adds certificate generation, Block Page App, Drop Requests App, Query Logs App, Advanced Blocking App, improves logging, and resolves several other bugs. This is a security update.
https://technitium.com/dns/

Telegram 3.2.3 resolves a couple bugs. This is not a security update.
https://telegram.org/
This month Telegram also added advertising support – a harsh reminder that the platform is run by a Russian company.

WinSCP 5.19.4 resolves a couple bugs. This is not a security update.
https://winscp.net/eng/index.php

Zoom 5.8.3.1581 adds administrative controls, improvements in Meeting, webinar, chat, and resolves several bugs. This is a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 2.0.18 improves tracking and expression matching reliability. This is not a security update.
https://en.3tene.com/

iTunes 12.12.2 doesn’t provide a changelog so should be considered a security update.
https://www.apple.com/itunes/download/

Plex Home Theater 1.7.0.2676 improves update check and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.24.5.5173 improves database structure, search matching, and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Nintendo Switch 13.1.0 adds support for the new expansion pack. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PlayStation PS5 21.02-04.03.00 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2021.10.14 resolves several bugs. This is not a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Office Updates

One or more of these are likely to be of interest to most people.

Audacity 3.1.0 improves usability, adds clip handle bars, smart clips, and reworks the looping feature. This is not a security update.
https://www.audacityteam.org/download/

LibreOffice Still 7.1.7 resolves 27 bugs. This is not a security update.
https://www.libreoffice.org/

LibreOffice Fresh 7.2.2 resolves almost 70 bugs. This is not a security update. Be aware that the “Fresh” line is beta software and should be avoided in favor of the “Still” line.
https://www.libreoffice.org/

Nextcloud Desktop 3.3.6 resolves several bugs. This is a security update.
https://nextcloud.com/

Notepad++ 8.1.9 resolves several stability bugs. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 4.3.2 improves performance of Tools and plugins, and resolves a reliability bug. This is not a security update.
https://www.getpaint.net/

PDF-XChange Editor 9.2.358.0 resolves several bugs. This is a security update.
https://www.tracker-software.com/product/pdf-xchange-editor

RoboHelp Server RHS2020.0.2 is a security update.
https://helpx.adobe.com/security/products/robohelp-server/apsb21-87.html

Adobe InCopy 17.0 is a security update.
https://helpx.adobe.com/security/products/incopy/apsb21-110.html

Adobe Creative Cloud 5.6 is a security update.
https://helpx.adobe.com/security/products/creative-cloud/apsb21-111.html

Adobe After Effects 18.4.2 and 22.0 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb21-79.html

Adobe Audition 14.4.2 and 22.0 are security updates.
https://helpx.adobe.com/security/products/audition/apsb21-92.html

Adobe Bridge 11.1.2 and 12.0 are security update.
https://helpx.adobe.com/security/products/bridge/apsb21-94.html

Adobe Character Animator 4.4.2 and 22.0 are security updates.
https://helpx.adobe.com/security/products/character_animator/apsb21-95.html

Adobe Prelude 22.0 is a security update.
https://helpx.adobe.com/security/products/prelude/apsb21-96.html

Adobe Lightroom Classic 10.4 and 11.0 are security updates.
https://helpx.adobe.com/security/products/lightroom/apsb21-97.html

Adobe Illustrator 25.4.2 and 26.0 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb21-98.html

Adobe Media Encoder 15.4.2 and 22.0 are security updates.
https://helpx.adobe.com/security/products/media-encoder/apsb21-99.html

Adobe Premiere Pro 15.4.2 and 22.0 are security updates.
https://helpx.adobe.com/security/products/premiere_pro/apsb21-100.html

Adobe Animate 22.0 is a security update.
https://helpx.adobe.com/security/products/animate/apsb21-105.html

Adobe Premiere Elements 19.0 is a security update.
https://helpx.adobe.com/security/products/premiere_elements/apsb21-106.html

Adobe InDesign 17.0 is a security update.
https://helpx.adobe.com/security/products/indesign/apsb21-107.html

Adobe XMP Toolkit SDK 2021.08 is a security update.
https://helpx.adobe.com/security/products/xmpcore/apsb21-108.html

Adobe Photoshop 22.5.2 and 23.0 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb21-109.html

Security Software Updates

One or more of these is likely to be of interest to most people.

RogueKiller 15.1.3 updates engine and resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Tails 4.24 is a security update.
https://tails.boum.org/install/dvd-download/index.en.html

TinyWall 3.2.3 resolves several bugs. This is not a security update.
https://tinywall.pados.hu/

uBlock Origin 1.38.6 resolves compatibility with Twitch. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

YARA 4.1.3 should be treated as a security update.
https://github.com/countercept/chainsaw

Capture Updates

These are unlikely to be of interest to most people.

ScreenToGif 2.34.1 replaces update engine and resolves several bugs. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

Converter Updates

These are unlikely to be of interest to most people.

MakeMKV 1.16.5 improves stability and resolves several bugs. This is not a security update.
https://www.makemkv.com/download/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 7.9.1 adds support for macOS Monterey, and resolves several bugs. This is not a security update.
https://1password.com/downloads/mac/

1Password for Windows 7.9.828 resolves several bugs. This is not a security update.
https://1password.com/downloads/windows/

AccessEnum 1.33 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/accessenum

Autoruns 14.06 resolves several bugs. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/autoruns

BatteryInfoView 1.25 updates tray tooltip to display information on multiple batteries. This is not a security update.
https://www.nirsoft.net/utils/battery_information_view.html

Bitwarden 1.28.3 resolves several bugs. This is not a security update.
https://bitwarden.com/

CacheSet 1.01 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/cacheset

Contig 1.81 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/contig

ControlMyMonitor 1.30 improves error handling. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html

CPU-Z 1.98 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

Cygwin 3.3.1 resolves a compatibility bug. This is not a security update.
https://cygwin.com/

DesktopOK 9.31 adds option to customize DPI values. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

Desktops 2.01 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/desktops

Disk2vhd 2.02 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/disk2vhd

DiskMon 2.02 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/diskmon

dnGrep 2.9.428.0 resolves cancel bug, .gitignore filtering, theme improvements, and PDF association. This is not a security update.
https://dngrep.github.io/

EFSDump 1.03 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/efsdump

Everything Toolbar 0.7.3 adds option to enable or disable thumbnails and hotkey handling. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

Git SCM 2.33.1 improves compatibility and resolves several bugs. This is not a security update.
https://git-scm.com/

GoodSync 11.9.3 resolves dozens of bugs. This is not a security update.
https://www.goodsync.com/

Homedale 2.00 adds new column for Station Count. This is not a security update.
https://www.the-sz.com/products/homedale/

HWMonitor 1.45 adds support for new hardware and disk read/write speeds. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

Java 8u311 is a security update.
https://www.java.com/en/download/manual.jsp

LessMSI 1.10.0 adds support for MSP files, MSI Stream names and resolves a cache bug. This is not a security update.
https://lessmsi.activescott.com/

LoadOrder 1.02 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/loadorder

NTLite 2.3.1.8454 adds new components, settings, and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

Aomei Partition Assistant 9.5.0 adds SMART health checks and improves update behavior. This is not a security update.
https://www.diskpart.com/

PointerStick 5.55 updates languages. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.49.1 resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

ProcessMonitor 3.86 updates icons. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/procmon

PsShutdown 2.53 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/psshutdown

RegJump 1.11 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/regjump

RoboForm 9.2.1 improves compatibility, import, sync performance, and resolves several bugs. This is not a security update.
https://www.roboform.com/

Rufus 3.17 resolves several bugs and updates libraries. This should be treated as a security update.
https://rufus.ie/en_US/

ShareEnum 1.61 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/shareenum

ShellRunas 1.02 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/shellrunas

SimpleWMIView 1.46 adds error handling and improves high-DPI support. This is not a security update.
https://www.nirsoft.net/utils/simple_wmi_view.html

Sysmon 13.30 resolves several bugs, improves stability, and adds user fields for events. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

TCPView 4.16 updates icons. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/tcpview

WinObj 3.13 updates icons. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/tcpview

Windows 11 RCT 1.3.1 improves detection of CPU features and updates languages. This is not a security update.
https://bytejams.com/

WinScan2PDF 7.44 improves hardware compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 4.04 adds support for mobile devices and resolves several bugs. This is not a security update.
https://www.diskanalyzer.com/

ZoomText 2021.2111.2.400 resolves compatibility bugs. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

ZoomText 2022.2110.47.400 resolves several bugs. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

Godot 3.4 improves user interface, input handling, adds large file support, frame delta smoothing, and dozens of other features. This is not a security update.
https://godotengine.org/

MySQL ConnectorNet 8.0.27 resolves several bugs. This is not a security update.
https://dev.mysql.com/downloads/connector/net/

Node.js 16.13.0 updates libraries, resolves several bugs and is promoted to LTS. This is not a security update.
https://nodejs.org/en/

Node.js 17.0.1 is a new major version adding OpenSSL 3.0 support, updates libraries,
https://nodejs.org/en/

Visual Studio Code 1.62 resolves over 4000 issues and adds vscode.dev beta. This should be treated as a security update.
https://code.visualstudio.com/

WinMerge 2.16.16 resolves several bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

PPSSPP 1.12.3 resolves a gamepad bunding bug. This is not a security update.
https://ppsspp.org/downloads.html

VirtualBox 6.1.28 resolves almost two dozen bugs. This should be treated as a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Dada Mail 11.17.1 resolves several bugs and improves the GUI. This is not a security update.
https://dadamailproject.com/

Docker Desktop 4.2.0 adds pause/resume, windows management, updates libraries, and resolves several bugs. This is not a security update.
https://www.docker.com/products/docker-desktop

Drupal 9.2.8 resolves several bugs. This is not a security update.
https://drupal.org/download

HumHub 1.9.2 resolves several bugs. This is not a security update.
https://www.humhub.com/en/download

MailArchiva 8.3.14 resolves several bugs. This is not a security update.
https://mailarchiva.com/

OpenPetra 2021.10 resolves several bugs and improves automation. This is not a security update.
https://www.openpetra.org/

ownCloud Client 2.9.1.5500 resolves several bugs. This is not a security update.
https://owncloud.com/desktop-app/

Piwigo 12.0.0 improves sorting, performance, maintenance, and adds bulk actions and logging. This is not a security update.
https://piwigo.org/

Contact Form 7 5.5.2 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Social Post Feed 4.0.3 resolves several bugs and improves compatibility. This should be treated as a security update.
https://wordpress.org/extend/plugins/custom-facebook-feed/

Email Log 2.4.8 is a security update.
https://wordpress.org/extend/plugins/email-log/

Visual Composer 40.0 resolves several bugs. This is not a security update.
https://visualcomposer.com/

W3 Total Cache 2.1.9 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/w3-total-cache/

WooCommerce 5.9.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/woocommerce/

WordPress Zero Spam 5.1.5 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/zero-spam/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/