Updates 2025-11-11

Posted on November 11, 2025 by Shawn K. Hall

Happy Veteran’s Day, Folks!

Today is Patch Tuesday for November, 2025.

If your Windows 10 computer can not be upgraded to Windows 11 then you should either replace your device or use the Windows 10 ESU program to get another year out of it.

Windows 11 25H2 is now available and Windows 11 23H2 and older are no longer supported. Treat Windows 11 25H2 as beta software and wait a few months before upgrading.

macOS 26 Tahoe is now available and macOS 13 Ventura and older are no longer supported. Treat macOS 26 as beta software and wait a few months before upgrading.

There were 750+ major hacks, and over 650 application updates this month. It’s a relatively small month, with about 4.0 GB of updates for most users.

This Month in Technology

5CA, Abilene Family Medical Associates, Accord Carton, Adichunchanagiri Institute Of Technology, Adobe Commerce, Adobe Experience Manager, Adore Children and Family Services, Advanced Delivery Services, Advanced Installer, Afghan Ministry of Defence, AGFA, Agri-Food and Biosciences Institute (AFBI), (at least) 2/3rds of AI companies, Air Arabia, Al Ahly Leasing & Factoring Company, Al Rimal Group, Albanese Physical Therapy, Albert Heijn, Alibaba Cloud Workspace Client, Alight Solutions, Alios Finance Group, Alissa Group, Alitech, Alpha Omega Winery, LLC, Altimedia, Amazon Smart plugs, AMD CPU VM (RMPocalypse), AMD CPUs (TEE.fail), American Airlines, American PowerNet, Ami Bearings, Anderson-Moore Construction, Android, ANIA KRUK, Ansell, Antigo Construction, Apache OpenOffice, Aphase II, ApleNet, Applied Technology Resources, Aptura Group & Central Indiana Hardware, ArcGIS, Armed Forces of the Philippines, Artistica Rubens, Asahi Group Holdings, Ashlar-Vellum Cobalt, Askul, ASP.NET Core, Assemblée Nationale, Astra Nova, AT&T Careers, Athol Hospital, ATIRG, Atrium Living Centers, Auckland City, Aunt Martha’s Health and Wellness, Aussie Fluid Power, Autodesk AutoCAD, Autodesk On-Demand Install Services, Automated Logistics Systems, Autorotor, Avast, AVG, Axelson, Williamowsky, Bender & Fishman, Badger Popcorn and Concession Supply, BAE Systems SOCET, Balancer, Bank3, BARCO Rent-A-Truck, Batta Fulkerson Law Group, Bay West, Bayu Buana Travel, Beijing Time Systems, Bell Engineering, Bellflower Unified School District, Benda Grace Stulz, Benefitelect, Benworth Capital Partners, Bergman Dacey Goldsmith, Berkeley Research Group, LLC, Bestlog Logistic Solutions, Beta Dyne, Beverly Hills Oncology Medical Group, Bicing, BIND DNS, BK Technologies, Black Hills Bentonite, Blavity Inc, blockchain smart contracts (EtherHiding), Blue Cross Blue Shield of Montana, BMP Worldwide, Boilersource, Bolt Electricity, Oil & Gas, Bovavet, Boyer, BRDSoft, Bridgehead IT, Brihta, Bristol Student Union, Buffalo Games, Edaron, Ceaco, Cabinets 2000, LLC, Canada water and energy facilities, Canadian Tire, Canon imageCLASS MF654Cdw, Cape Dara Resort Pattaya, CapitalPlus Exchange, Castilla, Cavalry Consulting, CCI Tax Pros, CDS, CentOS Web Panel, Central Jersey Medical Center, Central Plate Services Limited, CESO, CEVA Logistics, CHDFS, Chi Rho Chiropractic, Chiapas Health Secretariat, Christina Development, Cisco ASA firewalls, Cisco FTD firewalls, Cisco IOS XE, Cisco networking devices (SNMP), Cisco Snort, Cisco Unified Contact Center Express (UCCX), City of Gloversville, NY, City of Houston Fire Department, TX, City of La Vergne, TN, City of Ottawa, Canada, City of Riviera Beach, FL, City of Sugar Land, TX, Clackamas Community College, Claimlinx, Clarion Safety Systems, Claude Desktop, ClearCare Periodontal & Implant Centre, Co-op Credit Union, Cocamar Cooperativa Agroindustrial, Cohen’s Fashion Optical, Coilplus, Cole Huber, LLP, Collins Aerospace, Colombia’s CNSC, Comcast, Community Unit School District 201, Computer World WLL, Conduent Business Services, LLC, ConnectWise Automate, Consolidated Restaurant Operations, ConvExx, Cooperativa Esercenti Farmacia Scrl, Core Resources Inc, Crave Management, Crenshaw Community Hospital, Crown Automotive Sales, Cursor, CyPark, D Magazine Partners, Dairy Farmers of America, Dakota Dostavka, Darvin Furniture, DataChain, Dayal Metal Containers Factory LLC, DCS Technologies Inc, Deco Dental, Defensoría del Pueblo de Colombia, Dekalb County, GA, Dell BSAFE Crypto-C, Dell CloudLink, Delmia Apriso, Delta Electronics ASDA-Soft, Delta Electronics CNCSoft-G2, Delta Electronics DIAScreen, Delta, Dental Society of La Plata, Dentsu Merkle, Dermatology Associates, Designs for Vision, Desjardin Bank Group, Desjardins, Devolutions, Dilosa Food Companies, Dimarco Group LLC, Disseny Dental, Django, dmwapp, Docker runC, Doctor Alliance, Docurail, Dodo, Doha British School, DomeWatch, Domy, Double Oak Construction, Dublin Airport, DUC App, Dulcich, Dundee City Council, Durvet, E-First Aid Supplies, East Jefferson General Hospital, Eastern Cape Department of Human Settlements, South Africa, Easterseals Arc of Northeast Indiana, Echo Lake Foods, Econo-Pak, Eligibility Tracking Calculators, Elliott Tax Service, Elmcrest Children’s Center, Encore Repair Services, ENEA, Enem Nostrum Remedies, Enessance Holdings, Engineered Profiles, Entr’ouvert Lasso, Envoy Air, Episource, LLC, Ernst & Young, Essential Cabinetry Group, Essilor of America, Eticex Hosting, evernote-mcp-server, Evogence, Evolve Mortgage Services, over 266,000 F5 BIG-IP instances, FA Servers, Fast Freight, Fatih Turizm, Fellou browser, Fidelity Pension Managers, Nigeria, Figment POS, FinWise, Fleet Landing, Flegenheimer International, Flock, Florida Marking Products, Florida-Spectrum Environmental Services, Form Energy, Inc, Fort Wayne Medical Education Program, Fouad Alghanim & Sons Group of Companies Holding, Fountains Condominium Operations, Framework Secure Boot, Francehopital, Fujifilm Biotechnologies, Fédération Internationale de l’Automobile (FIA), G & H Distributing, G-Plans, G-Xchange, Inc, G. Hauswirth Architects, Galine, Frye, Fitting & Frangos, LLP, Gardiners Solicitors, Garvin Promotion Group, Gas Generator Solutions, Gateworks Corporation, GB Mail, GCC Productions Inc. Fade In, GeBePro, Gemini Group, General Micro Systems (GMS), George E. Weems Memorial Hospital, Gerar, Gericke AG, Gerson & Schwartz Accident & Injury Lawyers, GIMP, Gittens Healthcare, Gladinet CentreStack, Gladinet Triofox, Global Go, GlobalLogic Inc, Goglia Nutrition LLC, Goodfellow & Schuettlaw, Google Chrome, Google’s Find Hub, Grande Prairie Public Library, Greater Mental Health of New York, Gulf Warranties LLC, Gullco International, Gun Accessory Supply, Habib Bank AG Zurich, Hall Estill, Harmony Brands, Harvard University, Health and Vitality Center, Health Dimensions Group, Healthy Living Market and Café, Heart South Cardiovascular Group, Heartland Health Center, Heimbrock, Heimdall Data, HeiTech Padu Berhad, Hello Cake, Hematology Oncology Consultants, Henrietta Ezeoke Law Firm, Henry Raymond & Thompson, Heywood Hospital, Hikvision iSecure Center, Hitzinger, HMP Global, Holtz Office Support, Home Assistant Green, Hometown Credit Union, Hongji Metal, Hosteur, HSBC USA, Huber, Erickson & Bowman, Huddle01, Hyundai AutoEver America, I-Tek Medical Technologies, IBEW Local 697, iCare Software, ICET Studios, ICTBroadcast, IKAD, Il Manifesto, Imagicle, Indian Spring Country Club, ING Bank, Instituto Nacional de Oftalmologia, Peru, Integrated Silicon Solution, Inc, Intel CPUs (TEE.fail), International Social Survey Programme (ISSP), International.com, Invacare, Ioxo & Stream Computers, IPrimus, Iran’s Ravin Academy, Iraqi Electoral Commission, IREM companies, Irwin Car, Izaki Group Investments, J & S Electrical And Lighting Supply, JA Jennings, Jack’s Family Restaurants, JavaScript expr-eval, Jazeera Airways, JC Auto Accident Law Firm, Jean-Georges, Jewett-Cameron, JFS Wealth Advisors, Kansas City Police Department, KS, Karnes Electric Cooperative, Kasmawi, Kaufman & Stigger, Kaufman County, Texas (twice), Kearney Public Schools, NE, Kelowna airport, BC, Kettering Health, Khan and Associates CPA, Khatami Law, KHL Printing, Kipp & Christian, Kirby Corporation, KIS Asset Evaluation, KISS FM, Kitchen Design Concepts, KLA Instruments, Klae Construction, Kobayashi, Koch & Co, Koch & White Heating & Cooling, Koncise Company, Kottster Server, Krita, KT Corp, Kubernetes runC, Kudela & Weinheimer, Kumwell, Kwik Mix Materials, LaBonne, Land Title Guaranty, Lanscope Endpoint Manager, LaRosa’s Pizzeria, Latona Trucking, 42 Latvian municipalities, Laxmi Niwas Palace, Legacy Health, Legacy Manufacturing, Legal Aid Agency, Lexmark CX532adwe, LG U+, LGAA LLC, Lidera Network, LifeBridge Health, Limocar, Lincoln University, LMHT Associates, LNER, Logitech, Long Island Weight Loss Institute, Lorber, Greenfield & Polito, LLP, Louvre Museum, LP Insurance, LuBian, Ludwigshafen, Germany, Luis Garratón, Lumma Stealer, Luxury Escapes, Lüks Artvin Seyahat, M-TIBA, Mack Energy, Magna Hospitality Group, Mailing.com, Maine Course Hospitality Group, Mainetti UK, Maki Building Centers, Malibu Boats Australia, Manassas City Public Schools, Mango, Mango’s Tropical Cafe, Manko Window Systems, Marine Turbine Technologies, Marmotech, Matlusky, Max.ru, Mayco International, McDonald Building, McIntosh Labs, Mciver Engineering & Controls, Mecanex USA, MedImpact, Meinhardt Group, Meritage Hospitality, Metal Pros, Methodist Homes of Alabama & Northwest Florida, MetroWest Community FCU, Mexican Bank Debtor, Michael R. Schwartz, MD, FACS, Microbix Biosystems, Microsoft SharePoint, Microsoft Teams, Microsoft Windows, Middlesex Appraisal Associates, Middlesex Endodontics, Miljödata, Mission City Community Network, Inc, Modernizing Medicine (ModMed), Mold In Graphic Systems, Monsta FTP, Montage Marketing Services, Moonlight Basin, More Than Gourmet, Morris Communications Company LLC, Motex Lanscope Endpoint Manager, Mountain West, Moxa security appliances, MS Metal Solutions, MSC-Wireless, Mt. Baker Imaging, Muji, MusikComputer GmbH, MyCardiologist, MyVidster, NAHGA Claims Services, NasDem Party, National Coatings, National Informatics Centre (NIC) Kavach, National Institute of Administration, Navigator Business Solutions, Nelligan White Architects, NetcoreCloud, Netgate pfSense CE, New Toyo International Holdings Ltd, Newk, Newmark Healthcare Services, Nikkei, Nintendo, NJ Lenders Corp, Noble Compaña de Seguros, Nobu Restaurants, Noroaco, Northern Light Technologies, Northern Montana Health Care (NMHC), Northwest Radiologists, NurseSpring, NVIDIA CPUs (TEE.fail), OB-GYN Associates, OCI International Holdings, Oglethorpe, OMS, One Agency Eastlakes, oobabooga, OpenAI Assistants API, OpenAI Atlas browser, OpenEyes Technologies, Opera Neon, Oracle E-Business Suite, Oracle VirtualBox, Origin Energy, Origin, Oscars Group, Ouranos, Outcomes One, Inc, OYO Hotel & Casino Las Vegas, Palacios Marine Industrial (PMI), Palomar Health Medical Group, Pan-American, Pangea, Paris Rétina Vision, Paterson & Dowding, Patron Insurance, Patterson-Schwartz & Associates, Inc, PCB Uitvaartzorg, People’s Postcode Lottery, PeopleGuru Holdings, Inc, Peppermint Properties, Peraso, Perplexity Comet, Phia Group, Phillips Hue Bridge, Phillips Printing Company, Phoenix Village Dental, PHP CGI, PHPUnit, Pine Pharmaceuticals, Pinto Coates Kyre & Bowers, Pittsburgh Gastroenterology Associates, Pixar OpenUSD, Plastics Extrusion Machinery, Platinum Wines & Spirits, PLP SoCal, Pocatello Ready Mix, Polymarket, Ponzini SPA, Post Ranch Inn, PQCNC Hospitals, Precision Machined Products, Prime Dental, Pritchard Brown & Chillicothe Metal, Productive Tool Products, Professional’s Choice Sports, Propertyfinder / PropSpace CRM, Prosper, Prova, Provincial Department of Health Services Sri Lanka, Pruksa Holding, PT Kalimantan Prima Persada, Pulse Urgent Care Center, Punjab Forensic Science Agency, Qatar Gas and Tar Company, Iran, QNAP Qhora-322, QNAP TS-453E, Radiant Capital, Ravin Academy, React Native CLI, Real Estate Specialists, Reese Group, Regency Specialist Hospital, Resana, Revive Adserver, Rex-Hide, Ribbon Communications, Richmond Behavioral Health Authority, Riddell Law Group, Right at Home, Ringmor, Rios Espinosa, Ritz, Clark & Ben-Asher, River City Eye Care, RKA Consulting Group, Roblox, Rockhill Women’s Care, Rockstar, Rogers Mechanical, Romanian National Penitentiary Association (ANP), Ronemus & Vilensky, Royal Thai, RPI Roofing, Sai Mai Hospital, Saigon Industrial Service, Samera Health, Samsung Android, Samsung Galaxy S25, San Benito County, CA, San Bernard Electric Cooperative, San Diego Automotive Museum, Santander Bank, SAP Solution Manager, Sarulla Operation, Saturday Spotlight, Saturn Machine, Sauter Modulo, Saxun, Scales Sales & Service, Scouts Canada, Seasons Federal Credit Union, Sedgebrook, Selig Enterprises, Sellars Absorbent Materials, Sensational Teeth, Sensory, Servicios del Valle del Fuerte, Mexico, Seward County, KS, Shadrix & Parmer, Shands Elbert, Shaparak, Shelbyville Police Department, Shollenberger Januzzi & Wolfe, SHRM New Mexico, SIAD, Sierra Vista Hospital & Clinics, Signet Armorlite, Silverado Contractors, Inc, Silverlake Axis, Simon Property Group, Sincros Lab, SK Shieldus, SK-Telecom, Snipe-IT, Soapy Joe’s Car Wash, Soft Serve, Software Unlimited Corp, Sold Real Estate, SonicWall, Sonos Era 300, Sotheby’s, SourceOne Corporation, South African Revenue Service (SARS), South Alabama Regional Planning Commission, South Atlanta Medical Clinic, Speedmais, Spijkermat, Spindletop Center, Sports Medicine and Orthopaedics, Sprague & Jackson, St Stephen’s International, Stephenson’s Rental Services, Stowaway Storage, Studio Corvo Parma, Sullivan Interests, Summit Golf Brands, Summit Hotel Properties, Sunnyvale Elementary School District, Super Quik, Super Value, SuperGrosz, Superior Air Parts, Superior Court of California for the County of San Joaquin, Superior Linen Service, Svenska Kraftnät, Sydney Centre for Ear, Nose & Throat, Sylvester Roofing, SymbolTransport, Synnovis, Synology ActiveProtect Appliance DP320, Synology BeeStation Plus, Synology CC400W, Synology DiskStation DS925+, Systems Integrated, Tass Meister Patent Firm, Tavo Packaging Inc, TBM Service Group, TELACU Property Management, Inc, TENAX Law Group PC, Tenryu America, Tex-Tube, Thailand’s Department of Agricultural Extension (DOAE), The Blood and Marrow Transplant Group of Georgia, The Fence People, The Gerson, The Job Shop, The Laxmi Niwas Palace, The Phia Group, The Thayer Hotel, The Union League of Philadelphia, ThinkPHP, Thompson Dorfman Sweatman, Time Equities, TISZA Világ, TMF Logistics, Toys R Us Canada, TP-Link Festa routers, TP-Link Omada gateways, Trans7, Travere Therapeutics, Tri City Foods, Tri-Century Eye Care, Trojan Construction & Holding Group, Truffle Security Co. TruffleHog, Truro Cannabis, Tryon Distributing, Ubiquiti AI Pro, 8 UK Ministry of Defence bases, UK National Health Service (NHS), UniCursos, Unigym Gatineau, UnitedLayer, University of Cádiz, University of Pennsylvania, UrbanX, US Attorneys Office (USAO), US Congressional Budget Office (CBO), US Department of Homeland Security (DHS), US Department of Justice (DOJ/FBI), US Federal Aviation Authority (FAA), US Immigration and Customs Enforcement (ICE), US National Security Administration (NSA), USB Memory Direct, UScraft, Vanan Online Services, Vascara, Vietnam, Veeam Agent, Verdugo Hills Dental, Verisure, Vertikal Systems, Vexels, Vibra Hospital, Victorian Chemical, Victory Christian Center, Village of New Lenox, Ville de MontLaurier, Vinomofo, Vitalmex, VIZ Media, Volkswagen, Vrata Tech, VZW Avalon, Wakefield & Associates, WarmBlue, Washington Post, WatchGuard Firebox, WatchGuard Fireware, Watsonville Community Hospital, Waveny LifeCare, We R Family Foundation, Weber, Weintraub Traub Tracy & Virk Cra’s LLP, West Welch Reed Engineers, Western Sydney University, WhatsApp, Wheale Law Firm, Windows Server Update Service (WSUS), Windsurf, Winholt Equipment Group, Wisconsin Department Of Corrections, Wits University, Wood PLC, WordPress Anti-Malware Security and Brute-Force Firewall plugin, WordPress Gravity Forms plugin, WordPress GutenKit plugin, WordPress Hunk Companion plugin, WordPress JobMonster theme, WordPress King Addons for Elementor plugin, WordPress Post SMTP plugin, WordPress Slider Revolution plugin, Workers Compensation Insurance Rating Bureau of California, Wright Tool, Wright-Gardner Insurance, X.Org Server, Xortec, Xubuntu website, XWiki, Yaesu, Yas Takaful Dubai Insurance, Zacho-Lind, Zierick Manufacturing Corporation, Zoho ManageEngine, Zoom Workplace, and ZZ Dats have reported hacking or compromises this month.

Amazon Web Services (AWS US-EAST-1), Microsoft 365, Microsoft Azure (more than once), Microsoft Security Response Center, and YouTube have suffered from outages this month.

Internet access throughout Bermuda, Cameroon, Dominican Republic, Italy, Jamaica, Kenya, Pakistan, Philippines, Tanzania, and Ukraine has been blocked our down for extended periods.

Last months updates broke Cisco Duo, HP OneAgent / Microsoft Entra ID, Microsoft Internet Information Server (IIS), Microsoft Outlook, smart card authentication, sprotect.sys compatibility, USB mouse and keyboard in WinRE, wallpaper managers, Windows 11 Media Creation Tool, Windows Task Manager and Start menu, and the Windows Update Hotpatch service.

There’s a new type of worm out there. GlassWorm uses a combination of Solana, UTF-concealed code, and remote access trojans to ensure that it’s impossible to shut down or kill from the top-down while still being fully manageable by the people behind it. In addition, it uses compromised developer accounts to propagate by uploading itself to their repositories in order to grow the botnet to new audiences. This signals the first major use of these three aspects in combination and the first software of its kind to operate with no centralized command-and-control server. This evolution is going to cause a massive change in how we deal with security incidents and how we protect our devices.

Half of all the satellites in orbit are exposing your information in clear text.

Nearly 2 billion accounts from hundreds of thousands of different platforms have been disclosed in a credential stuffing database (Synthient). While this appears to mostly be the result of stealer logs (the result of hacked devices), there is a lot of duplication in the data which demonstrates a lot of password re-use and thus a high chance of other accounts being abused as a result.

The boss of a defense contractor, Trenchant, has been selling exploits to foreign governments.

The Louvre Museum security system was “hacked” in order to enable thieves to steal the crown jewels. It’s hardly hacking when the password was so stupid.

“Beware that, when fighting monsters,
you yourself do not become a monster.”
— Friedrich Nietzsche

Now for the good news:

SpaceX disabled 2,500 Starlink terminals in Asia to curb their use by scammers.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is relatively small this month. The typical computer should see roughly 4.0 GB in updates today. Let’s get started.

Microsoft released 41 updates to address 68 vulnerabilities in Azure Monitor Agent, Customer Experience Improvement Program (CEIP), Dynamics 365 Field Service (online), GitHub Copilot and Visual Studio Code, Host Process for Windows Tasks, Microsoft Configuration Manager, Microsoft Dynamics 365 (on-premises), Microsoft Edge, Microsoft Graphics Component, Microsoft Office, Microsoft Office Excel, Microsoft Office SharePoint, Microsoft Office Word, Microsoft Streaming Service, Microsoft Wireless Provisioning System, Multimedia Class Scheduler Service (MMCSS), Nuance PowerScribe, OneDrive for Android, SQL Server, Storvsp.sys Driver, Visual Studio, Visual Studio Code CoPilot Chat Extension, Windows Administrator Protection, Windows Ancillary Function Driver for WinSock, Windows Bluetooth RFCOM Protocol Driver, Windows Broadcast DVR User Service, Windows Client-Side Caching (CSC) Service, Windows Common Log File System Driver, Windows DirectX, Windows Hyper-V, Windows Kerberos, Windows Kernel, Windows License Manager, Windows OLE, Windows Remote Desktop, Windows Routing and Remote Access Service (RRAS), Windows Smart Card, Windows Speech, Windows Subsystem for Linux GUI, Windows TDX.sys, Windows WLAN Service, and MSRT. This includes security updates. A reboot is required.

Oracle released 374 security updates this quarter to address 170 vulnerabilities in 29 product lines.

Apple released updates for iOS 18.7.2, iOS 26.1, iPadOS 18.7.2, iPadOS 26.1, macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1, Safari 26.1, tvOS 26.1, visionOS 26.1, watchOS 26.1, and Xcode 26.1. This includes security updates. Use Apple Software Update to install the most current versions.

iOS 18.7.2 and 26.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 18.7.2 and 26.1 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 26.1 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 26.1 is a security update. Use System, Software Update to install the most current version.

visionOS 26.1 is a security update. Use System, Software Update to install the most current version.

Google ChromeOS 141.0.7390.115 and ChromeOS LTS 138.0.7204.296 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Fedora 43 updates libraries, adds Hare support, changes UEFI+MBR requirements, and enables automatic updates. This is not a security update.
https://getfedora.org/en/workstation/download/

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Tahoe (26.x) means that macOS Ventura (13.x) and older are no longer supported. If you can not install at least macOS Sonoma (14) on your Mac then you should immediately remove your device from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The current — and final — release of the Windows 10 (v22H2) is end of life (EOL). All non-LTS versions of Windows 10 without ESU are now out of support, with the sole alternatives being to upgrade to Windows 11 or enable Extended Service Updates (ESU). If you aren’t sure whether you are using LTS, you aren’t. Enable the ESU now.

The current release of the Windows 11 (v25H2) is very large (30% larger than any previous release) so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it. If not, switch to Linux (Mint is nice) or replace your computer.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, drivers for hardware you’re not using (like old printers), and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with a SaferPC Subscription and we will install updates each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 25.10.2 is a security update.
https://www.amd.com/en/support

BullZip PDF Printer 2025.2.0.2990 is a security update.
https://www.bullzip.com/products/pdf/info.php#download

Epson ET-2720 2.100.00 is a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-2720/s/SPT_C11CH42201?review-filter=Windows+10+64-bit

Epson ET-2988 3.60.00 is a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-2988/s/SPT_C11CL41203?review-filter=Windows+11

Epson ET-15000 3.60.00 is a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-15000/s/SPT_C11CH96201?review-filter=Windows%2010%2064-bit

MTPdrive 4.5.179 resolves a stability bug. This is not a security update.
https://www.mtpdrive.com/

Plustek ePhoto Z300 6.7.0.5 resolves a couple bugs. This is not a security update.
https://plustek.com/us/products/film-photo-scanners/ephoto-z300/support.php

TP-Link Archer A6 v3 250718 improves stability and PPPoE support. This is not a security update.
https://www.tp-link.com/us/support/download/archer-a6/v3/#Firmware

TP-Link Archer AX72 v1.60 250814 is a security update.
https://www.tp-link.com/us/support/download/archer-ax72-pro/#Firmware

UniFi U6 Professional 6.7.33 adds packet capture, Roaming Assistant, 5GHz channel selection, mesh improvements, and resolves a dozen bugs. This is not a security update.
https://www.ui.com/download/software/u6-pro

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.84.132 is a security update.
https://brave.com/

Firefox 145.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 140.5.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 142.0.7444.134 is a security update.
https://www.google.com/chrome/

Microsoft Edge 142.0.3595.69 is a security update.
https://www.microsoft.com/en-us/edge/business/download

SeaMonkey 2.53.22 is a security update.
https://www.seamonkey-project.org/

Email Updates

One or more of these are likely to be of interest to everyone.

DavMail Gateway 6.5.1 resolves several bugs. This is not a security update.
https://davmail.sourceforge.net/

Spark 3.27.2.122708 ramps up the AI integration. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.27.2.122707 ramps up the AI integration. This is not a security update.
https://sparkmailapp.com/

Thunderbird 144.0.1 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 9.6.4 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 9.5.1 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

curl 8.17.0 resolves dozens of bugs. This is a security update.
https://curl.haxx.se/windows/

Discord November 4, 2025 resolves dozens of bugs. This is not a security update.
https://discord.com/download

Dropbox 236.4.5918 resolves several bugs and improves stability. This is not a security update.
https://www.dropbox.com/

Google Drive 117.0 is a security update.
https://drive.google.com/start

MeshCentral 1.1.53 resolves a couple bugs and improves UI controls. This is not a security update.
https://meshcentral.com/info/downloads.html

Mumble 1.5.857 is a security update.
https://www.mumble.info/

Nextcloud Server 32.0.1 updates libraries and resolves dozens of bugs. This is a security update.
https://nextcloud.com/

OneDrive 25.184.0921.0004 adds Copilot actions, improves offline mode, renames binaries, and adds the ability to cleanly opt out of the OneDrive Backup service. This is not a security update.
https://support.microsoft.com/en-us/onedrive

Rclone 1.71.2 updates libraries and resolves several bugs. This is a security update.
https://rclone.org/

Signal 7.78.0 resolves a couple bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.63.3 adds split-screen support, improves performance and resolves many bugs. This is not a security update.
https://signal.org/android/apk/

Syncthing 2.0.11 migrates database to SQLite, improves log structure, changes CLI syntax, and resolves several bugs. This is not a security update.
https://syncthing.net/

Technitium DNS Server 14.0.1 is a security update.
https://technitium.com/dns/

Telegram 6.2.4 makes a couple minor changes in the UI and resolves crash bugs. This is not a security update.
https://telegram.org/

WinSCP 6.5.4 is a security update.
https://winscp.net/eng/index.php

Zoom 6.6.6.19875 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.22 resolves several bugs related to facial tracking. This is not a security update.
https://en.3tene.com/

Grayjay 342 resolves a couple bugs. This is not a security update.
https://grayjay.app/index.html

iTunes 12.13.9.1 is a security update.
https://www.apple.com/itunes/download/

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.122.2 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Nintendo Switch 21.0.0 updates cosmetics and cloud settings, and resolves a couple bugs. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 2025.101 displays more hardware details and messaging. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

SteamOS SteamDeck Update 2025.11.06 improves UI and resolves a couple bugs. This is not a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Format Plugins 1.1.2 is a security update.
https://helpx.adobe.com/security/products/formatplugins/apsb25-114.html

Adobe Illustrator 29.8.3 and 30.0 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb25-109.html

Adobe Illustrator Mobile 3.0.10 is a security update.
https://helpx.adobe.com/security/products/illustrator-mobile-ios/apsb25-111.html

Adobe InCopy 21.0 and 20.5.1 are security updates.
https://helpx.adobe.com/security/products/incopy/apsb25-107.html

Adobe InDesign ID21.0 and ID20.5.1 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb25-106.html

Adobe Pass 3.8.0 is a security update.
https://helpx.adobe.com/security/products/pass/apsb25-112.html

Adobe Photoshop 26.9 is a security update.
https://helpx.adobe.com/security/products/photoshop/apsb25-108.html

Adobe Reader DC 25.001.20844 resolves stability bugs. This is not a security update.
https://get.adobe.com/reader

Adobe Substance 3D Stager 3.1.6 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb25-113.html

Calibre 8.14.0 resolves several bugs. This is a security update.
https://calibre-ebook.com/

Columns++ 1.3 resolves several bugs and improves compatibility. This is not a security update.
https://github.com/Coises/ColumnsPlusPlus

LibreOffice 25.2.7 resolves over 40 bugs. This is not a security update.
https://www.libreoffice.org/

Nextcloud Desktop 4.0.1 resolves several bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.8.7 adds a publisher certificate for the installation packages and resolves several bugs. This is a security update.
https://notepad-plus-plus.org/

OpenOffice 4.1.16 is a security update.
https://www.openoffice.org/download/

Paint.net 5.1.11 resolves several bugs. This is not a security update.
https://www.getpaint.net/

PDF-XChange Editor 10.7.5.403 updates libraries and resolves several bugs. This is a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

Operating System Updates

These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.

Fedora 43 updates libraries, adds Hare support, changes UEFI+MBR requirements, and enables automatic updates. This is not a security update.
https://getfedora.org/en/workstation/download/

Google ChromeOS 141.0.7390.115 is a security update. Use Help, About to install this update.

Google ChromeOS LTS 138.0.7204.296 is a security update. Use Help, About to install this update.

iOS 18.7.2 and 26.1 are security updates.
https://support.apple.com/en-us/100100

iPadOS 18.7.2 and 26.1 are security updates.
https://support.apple.com/en-us/100100

macOS Tahoe 26.1 is a security update.
https://support.apple.com/en-us/100100

macOS Sequoia 15.7.2 is a security update.
https://support.apple.com/en-us/100100

macOS Sonoma 14.8.2 is a security update.
https://support.apple.com/en-us/100100

tvOS 26.1 is a security update.
https://support.apple.com/en-us/100100

visionOS 26.1 is a security update.
https://support.apple.com/en-us/100100

watchOS 26.1 is a security update.
https://support.apple.com/en-us/100100

Security Software Updates

One or more of these is likely to be of interest to most people.

KeePass 2.60 adds group path search, consistent shortcuts and hot keys, improved import options, and improves several other UI and integration features. This is not a security update.
https://keepass.info/

ProtonVPN 4.3.5 resolves several bugs and adds FIDO2 security key support. This is not a security update.
https://github.com/ProtonVPN/win-app/releases/latest

RogueKiller 16.5.1 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

SanDisk PrivateAccess 6.4.14.0 adds messaging signaling that the software is now end of life and should be removed as soon as possible. Migrate your data out of PrivateAccess and remove it.
https://support-en.wd.com/app/answers/detailweb/a_id/48025

Stinger 13.0.0.562 adds support for new detections. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

uBlock Origin 1.67.0 resolves a couple bugs and improves various features. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

WebBrowserPassView 2.18 improves compatibility. This is not a security update.
https://www.nirsoft.net/utils/web_browser_password.html

YARA 4.5.5 resolves several bugs. This is not a security update.
https://github.com/VirusTotal/yara/

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 32.0.2 resolves a couple crash bugs. This is not a security update.
https://obsproject.com/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.5.1 adds support for new encodings and improves menu editing. This is not a security update.
https://www.dvdfab.cn/download.htm

StreamFab 6.2.6.2 adds multithreading, improves compatibility, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 3.0.3.1 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 7.0.27 resolves several bugs. This is not a security update.
https://www.zotero.org/

Zotero (macOS) 7.0.29 resolves Safari and Word clipboard issues. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.11.18 resolves several bugs. This is not a security update.
https://1password.com/downloads/

Beyond Compare 5.1.6.31527 resolves several bugs. This is not a security update.
https://www.scootersoftware.com/download

Bitwarden 2025.10.0 improves observation of data ownership policies, adds direct importer for Chromium browser accounts, and resolves several bugs. This is not a security update.
https://bitwarden.com/

BulkFileChanger 1.74 resolves a field copy bug. This is not a security update.
https://www.nirsoft.net/utils/bulk_file_changer.html

CCleaner 7.01.1042 resolves several bugs and renames several features. This is not a security update.
https://www.ccleaner.com/

Cygwin 3.6.5 resolves several bugs. This is a security update.
https://cygwin.com/

DesktopOK 12.21 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.6.39.0 resolves several bugs. This is a security update.
https://dngrep.github.io/

Everything 1.4.1.1030 is a security update.
https://www.voidtools.com/

Everything SDK 1.4.1.1030 is a security update.
https://www.voidtools.com/support/everything/sdk/

Everything Toolbar 2.1.1 resolves a couple bugs. This is a security update.
https://github.com/stnkl/EverythingToolbar/

ExplorerPatcher 26100.4946.69.6 improves compatibility and resolves several bugs. This is not a security update.
https://github.com/valinet/ExplorerPatcher/

Fing 3.9.2 adds PDF reporting and resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

Git SCM 2.51.2 resolves several bugs. This is not a security update.
https://git-scm.com/

GoodSync 12.9.14 resolves several bugs. This is not a security update.
https://www.goodsync.com/

Homedale 2.22 improves filtering. This is not a security update.
https://www.the-sz.com/products/homedale/

LessMSI 2.10.4 resolves a selection bug. This is not a security update.
https://lessmsi.activescott.com/

MPAM 1.441.121.0 adds support for new detections. This is not a security update.
https://www.microsoft.com/en-us/wdsi/defenderupdates

MultiMonitorTool 2.21 resolves a stability bug. This is not a security update.
https://www.nirsoft.net/utils/multi_monitor_tool.html

NTLite 2025.11.10669 adds support for Windows 24H1 and updates component support. This is not a security update.
https://www.ntlite.com/download/

PolicyPlus October 2025 updates included policies. This is not a security update.
https://github.com/Fleex255/PolicyPlus/releases

PowerToys 0.95.1 resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Process Explorer 17.07 adds strings for Arm64 binaries and fixes a notification bug. This is not a security update.
https://learn.microsoft.com/sysinternals/downloads/process-explorer

PSAppDeploy 4.1.7 resolves several bugs and improves compatibility. This is not a security update.
https://psappdeploytoolkit.com/

Remotly 1.35.0 adds UPnP port forwarding. This is not a security update.
https://remotly.com/

RDCMan 3.11 enables Entra ID login. This is not a security update.
https://learn.microsoft.com/sysinternals/downloads/rdcman

ripgrep 15.1.0 resolves a bug with line buffering. This is not a security update.
https://github.com/BurntSushi/ripgrep/releases/latest

RoboForm 9.8.3 resolves a security bug. This is a security update.
https://www.roboform.com/

WinGet 1.12.350 improves compatibility and resolves several bugs. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinScan2PDF 9.44 adds support for newer hardware. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

ZoomIt 9.20 adds ability to export to MP4 and GIF. This is not a security update.
https://learn.microsoft.com/sysinternals/downloads/zoomit

Developer Updates

These are unlikely to be of interest to most people.

.NET Runtime 9.0.10 and 10.0.0 are security updates.
https://dotnet.microsoft.com/en-us/download/dotnet

Android Studio 2025.2.1.7 resolves several bugs. This is not a security update.
https://developer.android.com/studio

DB Browser for SQLite 3.13.1 resolves several bugs and improves compatibility. This is not a security update.
https://sqlitebrowser.org/

GameMaker Studio 2024.14.0.207 is a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.5.245 adds new templates and resolves several bugs. This is not a security update.
https://gdevelop.io/download

GitHub Desktop 3.5.4 is a security update.
https://desktop.github.com/

Go 1.25.4 resolves several bugs. This is not a security update.
https://go.dev/

Inno Setup 6.6.0 improves dark mode, custom styling support, and pascal scripting. This is a security update.
https://www.jrsoftware.org/isdl.php

Java 8u471 is a security update.
https://www.java.com/en/download/manual.jsp

Node.js 22.21.1 resolves several bugs. This is not a security update.
https://nodejs.org/en/

Node.js 24.11.0 marks the transition to LTS. This is not a security update.
https://nodejs.org/en/

Node.js 25.1.0 updates libraries and resolves several bugs. This is not a security update.
https://nodejs.org/en/

SQLite 3.51.0 adds a couple new macros, improves JSON support and CLI capabilities, and resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

TortoiseGit 2.18.0 updates libraries and resolves several bugs. This is not a security update.
https://tortoisegit.org/

Visual Studio Code 1.105.1 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.52 resolves several bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.2.4 resolves several bugs and improves compatibility. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

HumHub 1.17.4 adds a nonce for OEmbeds and resolves several bugs. This is a security update.
https://www.humhub.com/en

MailEnable 10.54 resolves several bugs and improves logging. This is a security update.
https://www.mailenable.com/

ownCloud Client 6.0.2.17506 is a security update.
https://owncloud.com/desktop-app/

Piwigo 15.7.0 is a security update.
https://piwigo.org/

Contact Form 7 6.1.3 resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Email Log 2.62 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/email-log/

WordPress Importer 0.9.5 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/wordpress-importer/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2025-10-14

Posted on October 14, 2025 by Shawn K. Hall

Welcome back, Folks!

Today is Patch Tuesday for October, 2025.

If your Windows 10 computer can not be upgraded to Windows 11 then you should either replace your device or use the Windows 10 ESU program to get another year out of it.

Windows 11 25H2 is now available and Windows 11 23H2 and older are no longer supported. Treat Windows 11 25H2 as beta software and wait a few months before upgrading.

macOS 26 Tahoe is now available and macOS 13 Ventura and older are no longer supported. Treat macOS 26 as beta software and wait a few months before upgrading.

There were 560+ major hacks, and over 390 application updates this month. It’s a very large month, with about 4.5 GB of updates for most users.

This Month in Technology

2GO Group, 7-Zip, Action Property Management, Inc, Acuna Fombona, Adobe Acrobat Reader, Adobe Analytics, Adpost, AES Clean Technology, AGETIC Bolivia, AIP Asset Management, Airspan Networks, Akulaku, Albany Gastroenterology Consultants, Alexander McQueen, Allegra DatabaseBackupBL, Allgäu Stern Hotel, Allianz Life Insurance Company of North America, Allied Services Division Welfare Fund, Altos, AMD SEV-SNP, Amelia Overhead Doors, American Archive of Public Broadcasting, American First Finance, American Income Life Insurance, Amos Space, AMS Fulfillment, Anchorage Neighborhood Health Center, Animeify, Ansell, António Belém & António Gonçalve, AOS, Inc, ApolloMD Business Services, AppFolio, Inc, Apple, Apple macOS, Aquarium of the Pacific, Archer Health, Archway Cookies, ARINC, Armalife, Artists&Clients, Asahi, Assaf Harofeh Medical Center, Asserson, Assisted Living Pharmacy Service, Astra Otoparts, AT&T, Atlas Pressed Metals, Aurora Emergency Physicians, Australia NSW Reconstruction Authority, Autodesk AutoCAD, Autodesk Revit, AutohausMalin, AV Services Barcelona, Avalara, Inc, Avira Prime, Avnet, AZpro Group, Bader Gruppe, Balenciaga, BAM, BancoCapital Ecuador, Batesky Law Office, BBOT, BCR Recouvrement, Belkorp Ag, LLC, Benworth Capital Partners, Bignault & Carter, BK Technologies, Black Hills Regional Eye Institute, BMW Group, BNB Chain, Bortolazzo Group, Bouygues Telecom, Boyd Gaming Corporation, Brancosoft, Braun Electric Company, Inc, Brightstar Lottery, Brunei Postal Services Department, Burlingame School District, Business Integra, BW-RF, Bykea, California Golf Club of San Francisco, California International Bank, NA, Cancel the Hate, Cardinal Machinery, Cascade Pacific Pulp LLC, Cayetano Heredia National Hospital of Peru, CCI Financial, Inc, CCleaner, CCMC, Cell Journal, Centers Laboratory, Central Valley Regional Center, Cesanta Mongoose, Chapter 13 Texas, ChatGPT Deep Research, Chess.com, Chicago Botanic, China’s Great Firewall, Chroma ATE, CIC Vietnam, Cineplanet, Circle K, Cisco Adaptive Security Appliance, City of Pittsburg, California, City of St Joseph, MO Health Department, City of Sugar Land, Texas, ClaimPix, Clarins, Clifford Paper Inc, CNH Industrial, Cobra Rolamentos, Cofiex Asesoría de Empresas, Coinbase, College Hometown Pharmacy, College Parkside Pharmacy, Collins Aerospace, Collins Systems, Comcast, Community Health Network, ComTec Systems, Conduent Business Services, LLC, Cookeville Regional Medical Center, Corban OneSource, Cornwall Council, Cornwell Quality Tools, County of Orange Office of Care Coordination, County of Stanislaus, CA, Credera, Crenshaw Community Hospital, occupied Crimea, Crypto.com, Cultura, Cyprus Post, Daily Printing, Dana-Farber Cancer Institute, Dassault Systèmes eDrawings Viewer, Dataforth, DDR5 Memory (Phoenix RowHammer), Decisely Insurance, Delek Group, Delta Electronics COMMGR, Delta Electronics DIALink, Department of Information and Communications Technology, Derriford Hospital, Digilent WaveForms, Digital Charging Solutions, Dimensional Control Systems, Discord, Django, DNC, Doctors Imaging Group, Dorset Council, DraftKings, DrayTek Vigor routers, E3 Site Supervisor, Earthadelic, EBA Engineering, eCapital Corp, Eckerd Connects, Edro Real Estate, Electoral Court of Uruguay, ELS Surveying, Emergency Responders Health Center, EMPIRE Distribution Inc, Episource, LLC, European airports, FAI Aviation Group, Fairmont Federal Credit Union, Falco Electronics, Family & Community Services, Fast Track, Feathers.ae, Ferus Smit, Field and Goldberg, FinWise Bank, Five Star Mechanical Inc, Flowise, Fort Wayne Medical Education Program, Fortra GoAnywhere MFT, Franklin Dermatology Group, PLC, FreeOnes, FreshRSS, Friedrich-Alexander-Universität, Friends of National Rifle Association of America (NRA), FTCS Forage, Fuji Electric FRENIC-Loader, Fundline Finance Corporation of the Philippines, Future Generali, FysioRoadmap, Gaylord Specialty Healthcare, General Directorate of Taxes and Estates, Generali Central Life Insurance, GIMP, GitHub Copilot, GitHub, GITSIT Solutions, LLC, Gladinet CentreStack and Triofox, Glenwood Management, Global Sumud Flotilla, GloboTech Communications, Google Chrome, Google Gemini, Google Law Enforcement Request System (LERS), Goosehead Insurance Agency, LLC, Goshen Medical Center, Grupo Serex, Gucci, Hacienda La Puente Unified School District, Hamdard Pakistan, Hampton Regional Medical Center, Hana Financial Inc, Harbor Diesel & Equipment, Harris Health, Harrods, Harvard University, Hathijobs, Hauts-de-France, HE Parks, Healthcare Interactive, Helity Copter Airlines, Hello Cake, Inc, HIEC, Hillside Library, Hitachi HTA, HomeRefill, Huawei Technologies, Hub Asset Management, Ideal Bathrooms, IMSS, Indian government’s tax authority, Indonesia Ministry of Education, Indonesian National Police, Insight Partners, Insightin Health, Insightly, Institute of Culinary Education, Integrity Testing & Safety Administrators, Intelliloan, Invoicely, IONODES, Israeli Nuclear Program, Ivanti Endpoint Manager, J E Stacey & Co, J Lorber, JASCO Applied Sciences, Jaspersoft Jasper Reports, K Shipbuilding, Kanal ZERO, Kering, Kevmor Trade Supplies, Key 4 Energy, Keys Pathology Associates, KFC Venezuela, Khan Academy, Kido nurseries, KillSec, Kiple, Kitevuc, Kronospan, Kstati, KT Corp, Kubernetes elections.k8s.io, a major Kuwaiti Construction Firm, La Perouse Medical Billing, Lake Haven, LAMMCO, Latest Pilot Jobs, Lautrec, Law Offices of James Scott Farrin, Lawrence Berkeley National Laboratory, Legacy 5, Legal Practice Board of Western Australia, Leprohon, LGB, Liberty Dental Town, Libraesva, LIC India, Linux Kernel, Linxx Global Solutions, Lipapromet, LiteLLM, Liverpool City Council, LNER, Lorain Emergency Physicians, Loteria de Medellin, Lotte Card, Ludlow Construction, Lux Actuaries & Consultants, LWG Inc, Maida.health, Main Electric Supply Company, Marshall County Schools, Maruji & Raines, Maryland Transit Administration, Mavis Tire Supply, MCBS, LLC, McDonald’s, Mecklenburg County Public Schools, Medical Associates of Brevard, Medicare Compare, Medkar, Medstar Health, Melis Platform CMS, Memphis Millwork, Meridian Valley Laboratories, MetalSoft, Methodist University, MFO ITALIA, Michael Strain Builders, Michigan City, Indiana, Microsoft, Microsoft .NET, Microsoft Entra ID, Microsoft IE mode, Mid South Rehab Services, Migración Colombia, Milesight Industrial Cellular Routers, Miljödata, Mill Bay Marine Group, Milliman Financial Risk Management LLC, MindManager, Mission City Community Network, MLflow, Mobydick Asset Management, Monero, Monterey Mushrooms, LLC, Motility Software Solutions, MPM Imports, MSB, MyHomemadePorn, Naftali Group, Namibia Student Financial Assistance Fund, Natoli Engineering, Neon, New York Blood Center Enterprises, News-Press & Gazette, Nintendo, Normandy, North America Construction (NAC), North Oaks Health System, Northern Rivers Resilient Homes Program, Northwest Medical Specialties, NP3 Benefícios, Nurture Care, Nvidia Merlin, OC Maine, Olive Branch Emergency Physicians, Omise, OneBlood, OneLogin, OnePlus OxygenOS, Open Practice Solutions, LTD, OpenPLC, Oracle E-Business Suite, Organon, Orion Engineering, Orwell Housing Association, OutcomesOne, Panama’s Ministry of Economy and Finance, Pangborn, Parivesh, Passaic Hospitalist Services, Passaic River Physicians, Paul Rossi Law Offices, Payactiv, Inc, Pays de la Loire, Peavey Electronics Corporation, Pediatric Otolaryngology Head & Neck Surgery Associates, Pennsylvania Attorney General’s Office, Pennsylvania Hospitalist Group, Pensacola Hospitalist, People Encouraging People, Perennial, Perplexity’s Comet AI browser, Perth Operationnal Technology, Pestbusters, Petro-Diamond, PGA Development, Inc, Pharmacie.ma, PHI Centre, Philippine Department of the Interior and Local Government, Philippine Land Transportation Office, Planet WGR-500, Plex, Podo Asset Management, PortSwigger Burp Suite MCP, PowerSchool, Preccs, Print Media Association, Professional Trust Company, Promchimexport, Prospect, Prosper, PS&KP Motor, PTR Asset Management, Pulkovo Airport, Pyramid Global Hospitality, R3 Consulting, Radiology Associates of San Luis Obispo, Razer Synapse 3, Red Coats Inc, Red Hat, Redis, Regal Mold, RemoteCOM, Renault, Reportage Empire Properties, Retina Group, River Learning Trust, Rocket TRUfusion Enterprise, Rockhill Women’s Care, Rockstar Games, Rogue Valley Door, Rosco Vision Systems, Roush Fenway Keselowski Racing, LLC, RTX Corporation, S&P Global, Sacada, Salesforce AgentForce, SalesLoft, Salud Consultorios, Samsung devices, Sanatorio Esperanza, Sanatorio Privado Punilla, Sapp Bros, SD Soluciones Digitales, Shamir Medical Center, Sharp Community Medical Group (SCMG), Sheheen, Hancock & Godwin, LLP, Sher Tremonte LLP, Shibarium, Shondeck, Shuffle, SI-Bone, Inc, Siemens Simcenter, SimonMed, Singburi Hospital, Sky Airline, SMP Europe, Software Unlimited Corp, SolarWinds Web Help Desk, SonicWall Firewalls, SonicWall SSLVPN, South Lyon Schools, Sri Lanka Ministry of Finance, SSA Group, St. John Ambulance Canada, Standard Fiber, State Bank of Vietnam, State of California, Department of Industrial Relations, Statewide Enterprises, Inc, Stellantis, Steve Basso Plumbing Heating, STMicroelectronics, Studio Legale Tisot Iuris, Study Gate, Sturgis Hospital, Suffolk County Council, Sunnyvale Elementary School District, SuperEd, Superior Vision Benefit Provider, Superior Vision Service, Survival Flight, Systeme AG, T Choithram And Sons, T-Mobile, Teamsters Union 25 Health Services & Insurance Plan, Tekni-Plex, Inc, Telstra, Texas Center for Infectious Disease Associates, Thai Future, The Daily Sentinel, The Institute of Culinary Education, The Job Shop, The Methodist Church of Southern Africa, The Moinian Group, The Property Business Australia, The Science Fiction Forum, Thomas M Hughes, Tiffany & Co, TLD Law, TOTOLINK X6000R, TransUnion, TraxNYC, Treasure Coast Hospice, Trinity Emergency Physicians, True World Group, Trustar Capital Management, Trusteed Plans Service Corporation, Tucows, Twin Cities Pain Clinic, UAE Society of Engineers, UHL, UNC Hospitals, Union County, Ohio, Unity game engine, University of North Carolina at Chapel Hill – School of Medicine, Uruguayan Government, US Air Force, US Customs and Border Protection (CBP), US Defense Advanced Research Projects Agency (DARPA), US Department of Homeland Security (DHS), US Federal Emergency Management Agency (FEMA), US Firms Heritage Growth Partners, US GeoServer, US HealthConnect, Uvalde Consolidated Independent School District, Valparaiso University, Vantage Finance, Vastaamo psychotherapy, Veradigm, Verily, Victor A. Campanile Insurance Agency, Viessmann Vitogate, Vietnam Airlines, VIM Technologies, VIR, Virtual Projects, VIVA Health, VMware NSX, Volvo Group North America, Vtenext, Vurbis Interactive, WagnerTech UG, Washington Prime Group, WatchGuard Firebox firewalls, Waterborne Environmental, Watsonville Community Hospital, Wayne Memorial Hospital, Webville, WEST Inc, Western Digital My Cloud NAS, Western Orthopaedics, Western Skies Wellness LLC, WestJet, WhatsApp, Williams & Connolly, win-cli-mcp-server, Wondershare Repairit, WordPress bbPress plugin, WordPress Community Events plugin, WordPress Ovatheme Events Manager plugin, WordPress RestroPress plugin, WordPress Service Finder theme, WordPress WooCommerce Designer Pro plugin, WordPress WP Freeio plugin, WordPress WP Travel Engine plugin, X (Twitter), XCAssociates, XChief, Yooshin Engineering Corporation and Zimbra Collaboration Suite have reported hacking or compromises this month.

Azure, Belgorod, Russia, Bermuda, Gaza, Palestine, Guinea, Kandahar, Afghanistan, Kyiv, Ukraine, Mexico, Microsoft 365 (more than once), Oblast, Ukraine, Odessa, Ukraine, Outlook encrypted messages, Spectrum, Starlink, Truth Social, Uttar Pradesh, India and Vodafone UK have suffered from outages this month.

Last months updates broke DRM video playback, Windows 11 Media Creation Tool, Windows Server 2025 Active Directory trust relationships, Windows SMVv1 shares (a good thing).

Michigan is trying to make it illegal for people to kiss on television.

Microsoft will be force-installing Microsoft 365 Copilot this month. Microsoft will be providing the ESU to everyone in the EU without requiring action on their part. Microsoft has confirmed that running multiple Office applications will cause problems with Copilot. Microsoft Office 2016 and 2019 are now end of life. Microsoft Exchange 2016 and 2019 are also now end of life.

Steam is going to end support for 32-bit hardware in January 2026.

A company refuses to do what their techs and consultants recommend (blaming costs, labor and training), then they get hacked, and ultimately the insurance company sues the techs instead of the executives? Dude. Just…dude.

Now for the good news:

Brave now has over 100 million active users. If you haven’t switched yet, you should.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is very large this month. The typical computer should see roughly
GB in updates today. Let’s get started.

Microsoft released 101 updates to address 196 vulnerabilities in .NET, .NET Framework, Visual Studio, Active Directory Federation Services, Agere Windows Modem Driver, AMD Restricted Memory Page, ASP.NET Core, Azure Connected Machine Agent, Azure Entra ID, Azure Local, Azure Monitor, Azure Monitor Agent, Azure PlayFab, Confidential Azure Container Instances, Connected Devices Platform Service (Cdpsvc), Copilot, Data Sharing Service Client, Games, GitHub, Inbox COM Objects, Internet Explorer, JDBC Driver for SQL Server, Microsoft Brokering File System, Microsoft Configuration Manager, Microsoft Defender for Linux, Microsoft Edge, Microsoft Exchange Server, Microsoft Failover Cluster Virtual Driver, Microsoft Graphics Component, Microsoft Office, Microsoft Office Excel, Microsoft Office PowerPoint, Microsoft Office SharePoint, Microsoft Office Visio, Microsoft Office Word, Microsoft PowerShell, Microsoft Windows, Microsoft Windows Codecs Library, Microsoft Windows Search Component, Microsoft Windows Speech, Network Connection Status Indicator (NCSI), NtQueryInformation Token function (ntifs.h), Redis Enterprise, Remote Desktop Client, Software Protection Platform (SPP), Storport.sys Driver, TCG TPM2.0, Virtual Secure Mode, Visual Studio, Windows Ancillary Function Driver for WinSock, Windows Authentication Methods, Windows BitLocker, Windows Bluetooth Service, Windows Cloud Files Mini Filter Driver, Windows COM, Windows Connected Devices Platform Service, Windows Core Shell, Windows Cryptographic Services, Windows Device Association Broker service, Windows Digital Media, Windows DirectX, Windows DWM, Windows DWM Core Library, Windows Error Reporting, Windows ETL Channel, Windows Failover Cluster, Windows File Explorer, Windows Health and Optimized Experiences Service, Windows Hello, Windows High Availability Services, Windows Hyper-V, Windows Kernel, Windows Local Session Manager (LSM), Windows Management Services, Windows MapUrlToZone, Windows NDIS, Windows NTFS, Windows NTLM, Windows PrintWorkflowUserSvc, Windows Push Notification Core, Windows Remote Access Connection Manager, Windows Remote Desktop, Windows Remote Desktop Protocol, Windows Remote Desktop Services, Windows Remote Procedure Call, Windows Resilient File System (ReFS), Windows Resilient File System (ReFS) Deduplication Service, Windows Routing and Remote Access Service (RRAS), Windows Secure Boot, Windows Server Update Service, Windows SMB Client, Windows SMB Server, Windows SSDP Service, Windows StateRepository API, Windows Storage Management Provider, Windows Taskbar Live, Windows USB Video Driver, Windows Virtualization-Based Security (VBS) Enclave, Windows WLAN Auto Config Service, Xbox, XBox Gaming Services, and MSRT. This includes security updates. A reboot is required.

Apple released updates for iTunes 12.13.8.3, iOS 15.8.5, iOS 16.7.12, iOS 18.7.1, iOS 26.0.1, iPadOS 15.8.5, iPadOS 16.7.12, iPadOS 18.7.1, iPadOS 26.0.1, macOS Sequoia 15.7.1, macOS Sonoma 14.8.1, macOS Tahoe 26.0.1, Safari 26, tvOS 26.0.1, visionOS 26.0.1, watchOS 26.0.2, and Xcode 26. This includes security updates. Use Apple Software Update to install the most current versions.

iOS 15.8.5, 16.7.12, 18.7.1, and 26.0.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.8.5, 16.7.12, 18.7.1, and 26.0.1 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 26.0.2 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 26.0.1 is a security update. Use System, Software Update to install the most current version.

visionOS 26.0.1 is a security update. Use System, Software Update to install the most current version.

Google ChromeOS 140.0.7339.242, ChromeOS LTC 138.0.7204.293, and ChromeOS LTS 132.0.6834.245 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Windows 11 is now stable and can be upgraded to if your hardware supports it. If not, switch to Linux (Mint is nice) or replace your computer.

Driver Updates

If you’re using this hardware – these updates are for you.

GoXLR Utility 1.2.3 resolves several bugs and improves sampling and hardware support. This is not a security update.
https://github.com/GoXLR-on-Linux/goxlr-utility/

Plustek ePhoto Z300 6.7.0.4 resolves a Google Drive upload bug. This is not a security update.
https://plustek.com/us/products/film-photo-scanners/ephoto-z300/support.php

RICOH IM C4510 1.4.0.0 resolves a minor bug. This is not a security update.
https://support.ricoh.com/bb/html/dr_ut_e/rc3/model/imc4510/imc4510.htm

TP-Link Archer AX21 v1.20 250424 is a security update.
https://www.tp-link.com/us/support/download/archer-ax21/v1.20/#Firmware

UniFi Network Server 9.5.21 adds channel AI, multicast filtering, VLAN bridging, improved port management, and resolves several bugs. This is not a security update.
https://www.ui.com/download/releases/network-server

Xerox Smart Start 2.1.23.0 doesn’t provide a change log so should be treated as a security update.
https://www.support.xerox.com/en-us/content/143617

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.83.112 is a security update.
https://brave.com/

Firefox 144.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 140.4.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 141.0.7390.76 is a security update.
https://www.google.com/chrome/

Microsoft Edge 141.0.3537.71 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Vivaldi 7.6.3797.63 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Spark 3.26.0.117234 adds Slack, Outlook, and Microsoft 365 integration, resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.26.0.117233 adds Slack, Outlook, and Microsoft 365 integration, resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 143.0.1 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 9.6.2 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

curl 8.16.0 adds a couple new features, updates libraries and dependencies, and resolves over 250 bugs. This is a security update.
https://curl.haxx.se/windows/

Discord October 7, 2025 slows the forced update cycle and resolves dozens of bugs. This is not a security update.
https://discord.com/download

Dropbox 234.4.5591 resolves several stability bugs. This is not a security update.
https://www.dropbox.com/

FileZilla Server 1.11.1 resolves several bugs. This is not a security update.
https://filezilla-project.org/

FreeFileSync 14.5 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 115.0 doesn’t provide a detailed change log so should be treated as a security update.
https://drive.google.com/start

MeshCentral 1.1.51 resolves several bugs. This is not a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.8.00.27654 adds slide controls, threading improvements and rich query for search. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 32.0.0 is a major update that makes almost 3,000 changes to the server, including new features, improved responsiveness, and updating libraries and dependencies. This is a security update.
https://nextcloud.com/

Npcap 1.84 resolves several bugs. This is not a security update.
https://nmap.org/npcap/

OneDrive 25.159.0817.0003 improves reliability and performance, and renames the offline mode process. This is not a security update.
https://support.microsoft.com/en-us/onedrive

Rclone 1.71.1 resolves several bugs and improves stability. This is not a security update.
https://rclone.org/

Signal 7.74.0 improves performance and resolves several bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.58.2 improves performance. This is not a security update.
https://signal.org/android/apk/

Syncthing 2.0.10 resolves several bugs. This is not a security update.
https://syncthing.net/

Telegram 6.2.3 resolves over a dozen bugs including stability issues. This is not a security update.
https://telegram.org/

Zoom 6.6.1.15968 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

Grayjay 340 resolves several reliability bugs. This is not a security update.
https://grayjay.app/index.html

iTunes 12.13.8.3 doesn’t provide a change log so should be treated as a security update.
https://www.apple.com/itunes/download/

Plex Media Server 1.42.2.10156 resolves several bugs (including credit detection) and improves transcoding options. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.113.1 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Minecraft Server (Java) 1.21.10 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server

Nintendo Switch 20.5.0 improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 2025.924 is a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2025.10.03 is a security update.
https://store.steampowered.com/news/app/593110

SteamOS SteamDeck Update 2025.10.01 is a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 25.001.20756 resolves integration bugs. This is a security update.
https://get.adobe.com/reader

Calibre 8.12.0 adds support for newer hardware, resolves several bugs, and adds optional AI integration. This is not a security update.
https://calibre-ebook.com/

GIMP 3.0.6 resolves over a dozen bugs. This is a security update.
https://www.gimp.org/

GnuCash 5.13 resolves several bugs. This is not a security update.
https://www.gnucash.org/

Kindle for PC 2.8.70980 doesn’t provide a change log so should be treated as a security update.
https://www.amazon.com/kindleforpc

Krita 5.2.13 resolves several bugs. This is a security update.
https://krita.org/en/download/

LibreOffice Fresh 25.8.2 resolves 70 bugs. This is a security update.
https://www.libreoffice.org/

Nextcloud Desktop 3.17.3 resolves over a dozen bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.8.6 resolves over a dozen bugs. This is a security update.
https://notepad-plus-plus.org/

PDF-XChange Editor 10.7.3.401 resolves several bugs. This is not a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

Operating System Updates

These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.

ChromeOS 140.0.7339.242 is a security update.
https://chromereleases.googleblog.com/search/label/Stable%20updates+ChromeOS

iOS 15.8.5, 16.7.12, 18.7.1, and 26.0.1 are security updates. Use Settings, General, Software Update to install the most current version.

iPadOS 15.8.5, 16.7.12, 18.7.1, and 26.0.1 are security updates. Use Settings, General, Software Update to install the most current version.

macOS Sequoia 15.7.1 is a security update. Use Settings, General, Software Update to install the most current version.

macOS Sonoma 14.8.1 is a security update. Use Settings, General, Software Update to install the most current version.

macOS Tahoe 26.0.1 is a security update. Use Settings, General, Software Update to install the most current version.

Tails 7.1 is a major update. This version improves startup and performance, and updates all included software and libraries. Hardware requirements have also changed. This is a security update.
https://tails.net/install/download/index.en.html

tvOS 26.0.1 is a security update. Use Settings, General, Software Update to install the most current version.

visionOS 26.0.1 is a security update. Use Settings, General, Software Update to install the most current version.

watchOS 26.0.2 is a security update. Use Settings, General, Software Update to install the most current version.

Zorin OS 18.0 is a major update offering cosmetic improvements, window arrangement and tiling options, web app support, M365 and OneDrive support (yuck!), and more. This is not a security update.
https://zorin.com/os/mirrors/

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 2.13.1 resolves several bugs. This is not a security update.
https://github.com/countercept/chainsaw

OpenSSL 3.6.0 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN 4.3.1 improves compatibility and reliability. This is not a security update.
https://github.com/ProtonVPN/win-app/releases/latest

Radmin VPN 2.0.4899.9 doesn’t provide a change log so should be treated as a security update.
https://www.radmin-vpn.com/

RogueKiller 16.4.1 is a security update.
https://www.adlice.com/download/roguekiller/

Stinger 13.0.0.547 improves detection. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

uBlock Origin 1.66.4 resolves a resource bug. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

VT-CLI 1.2.0 adds “–private” syntax option. This is not a security update.
https://github.com/VirusTotal/vt-cli/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 32.0.1 resolves several bugs and improves performance. This is not a security update.
https://obsproject.com/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.4.9 adds support for new encodings and improves UHD Creator design. This is not a security update.
https://www.dvdfab.cn/download.htm

MakeMKV 1.18.2 improves reliability and resolves several bugs. This is not a security update.
https://www.makemkv.com/download/

StreamFab 6.2.5.7 improves reliability and compatibility, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 3.0.2.9 improves performance and hardware compatibility. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 7.0.26 resolves a bug in plugin installation. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.11.14 resolves several bugs and improves biometrics, QR code scanning and JSON parsing. This is not a security update.
https://1password.com/downloads/

Agent Ransack 2022.3536 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

AOMEI Partition Assistant 10.9.1 adds virtual disk support and resolves several bugs. This is not a security update.
https://www.diskpart.com/

Bitwarden 2025.9.0 improves performance, adds support for organization keys, and biometrics improvements. This is a security update.
https://bitwarden.com/

CCleaner 7.00.984 adds package uninstaller support, ARM64 support and improved duplicate identification. This is not a security update.
https://www.ccleaner.com/

CPU-Z Installer 2.17 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

DesktopOK 12.14 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.6.7.0 improves CLI and search result copy. This is a security update.
https://dngrep.github.io/

email-oauth2-proxy 2025-10-04 resolves several bugs. This is not a security update.
https://github.com/simonrob/email-oauth2-proxy

ESEDatabaseView 1.79 adds option to perform case sensitive searches. This is not a security update.
https://www.nirsoft.net/utils/ese_database_view.html

Everything 1.4.1.1029 improves msi installation, shell extension compatibility and localization. This is not a security update.
https://www.voidtools.com/

Everything SDK 1.4.1.1029 improves shell extension compatibility. This is not a security update.
https://www.voidtools.com/support/everything/sdk/

Everything Toolbar 2.1.0 adds ARM64 support and resolves several bugs. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

ExplorerPatcher 26100.4946.69.4 resolves over a dozen bugs and improves compatibility. This is not a security update.
https://github.com/valinet/ExplorerPatcher/

Fido 1.66 adds support for Windows 11 25H2. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3536 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Free Virtual Serial Ports 7.05.00.1623 adds the CLI app the distribution and improves stability. This is not a security update.
https://freevirtualserialports.com/

GadgetPack 39.0 updated outdated gadgets and resolves several bugs. This is not a security update.
https://8gadgetpack.net/

Git SCM 2.51 improves compatibility and resolves a dozen bugs. This is not a security update.
https://git-scm.com/

GoodSync 12.9.11 resolves several bugs. This is not a security update.
https://www.goodsync.com/

grepWin 2.1.12 resolves context menu bug. This is not a security update.
https://github.com/stefankueng/grepWin/releases/latest

Homedale 2.21 improves user interface. This is not a security update.
https://www.the-sz.com/products/homedale/

HWMonitor 1.60 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

IsMyHdOK 4.44 updates language files. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

Kingston SSD Manager 1.5.6.0
https://www.kingston.com/us/support/technical/ssdmanager

LessMSI 2.10.3 improves help, layout, and adds Japanese translation. This is not a security update.
https://lessmsi.activescott.com/

NTLite 2025.10.10631 resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 11.1.1011 enables forensic image creation, password collection, and resolves a couple bugs. This is not a security update.
https://www.osforensics.com/download.html

PowerToys 0.94.2 resolves stability issues. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Remotly Android 2.0 improves connectivity and controls, adds hardware support, and adds Multi-Join support. This is not a security update.
https://remotly.com/

RoboForm 9.8.2 resolves several bugs and improves import. This is not a security update.
https://www.roboform.com/

Rufus 4.11 adds support for Windows 11 25H2, adds dark mode support, drive conversion, UEFI improvements and resolves several bugs. This is not a security update.
https://rufus.ie/en_US/

SpaceSniffer 2.0.5.18 improves cosmetics and Hi-DPI support, improved OS integration, and resolves several bugs. This is not a security update.
https://www.uderzo.it/main_products/space_sniffer/

WhyNotWin11 2.7.0 improves hardware detection and resolves several bugs. This is not a security update.
https://github.com/rcmaehl/WhyNotWin11

WinGet 1.11.510 removes 32-bit ARM support, adds Microsoft DSC v3 support, and resolves a couple bugs. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinScan2PDF 9.41 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

XnConvert 1.106.0 doesn’t provide a detailed change log so should be treated as a security update.
https://www.xnview.com/en/xnconvert/

ZoomIt 9.10 adds image smoothing. This is not a security update.
https://learn.microsoft.com/en-us/sysinternals/downloads/zoomit

Developer Updates

These are unlikely to be of interest to most people.

Android 2025.1.4.8 resolves large APK redeployment and resolves several bugs. This is not a security update.
https://developer.android.com/studio

Docker Desktop 4.48.0 updates libraries and resolves several bugs. This is a security update.
https://www.docker.com/products/docker-desktop

GDevelop 5.5.243 resolves several bugs. This is not a security update.
https://gdevelop.io/download

GitHub Desktop 3.5.3 adds support for Ptyxis shell, upgrades libraries and resolves several bugs. This is not a security update.
https://desktop.github.com/

Go 1.25.3 is a security update.
https://go.dev/

Godot 4.5 improves accessibility, precomposition, backtracing, logging and more. This is not a security update.
https://godotengine.org/

Inno Setup 6.5.4 resolves several bugs. This is not a security update.
https://www.jrsoftware.org/isdl.php

NASM 3.01 is a major update adding support for APX, preprocessing and resolves more than a dozen bugs. This is not a security update.
https://www.nasm.us/index.php

Node.js 22.20.0 updates libraries and resolves dozens of bugs. This is a security update.
https://nodejs.org/en/

Node.js 24.10.0 updates libraries and resolves dozens of bugs. This is a security update.
https://nodejs.org/en/

Python 3.14.0 is a security update.
https://www.python.org/downloads/macos/

Visual Studio Code 1.105 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.2.2 resolves over a dozen bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Adminer 5.4.1 resolves several bugs. This is not a security update.
https://www.adminer.org/en/

Joomla 5.4 is a security update.
https://www.joomla.org/

Joomla 6.0.0 is a new major release with many new features, options and controls. This is not a security update.
https://www.joomla.org/

phpMyAdmin 5.2.3 resolves several bugs. This is not a security update.
https://www.phpmyadmin.net/

WordPress 6.8.3 is a security update.
https://wordpress.org/

BuddyPress 14.4.0 is a security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 6.1.2 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.14 improves settings layout. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers

My Sticky Bar 2.8.3 resolves a cosmetic bug. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

Postie 1.9.73 improves error handling. This is not a security update.
https://wordpress.org/extend/plugins/postie/

Sucuri Security 2.5 adds support for 2FA, QR code generation, and updates ignore list. This should be treated as a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

Theme My Login 7.1.14 resolves a bug. This is not a security update.
https://wordpress.org/extend/plugins/theme-my-login/

WordPress Importer 0.9.4 resolves a coupls bugs. This is not a security update.
https://wordpress.org/extend/plugins/wordpress-importer/

WP Cerber Security 9.6.10 resolves a couple bugs. This is not a security update.
https://wpcerber.com/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2024-10-08

Posted on October 8, 2024 by Shawn K. Hall

Welcome back, Folks!

Today is Patch Tuesday for October, 2024.

Windows 11 24H2 is out. So is macOS 15/Sequoia. iOS 18, iPadOS 18, tvOS 18, watchOS 11, and visionOS 11 are out now. The first set of security updates for each of these are released now, too.

All versions of Windows 11 prior to 23H2 are no longer be supported. Upgrade to 23H2 now, then do not upgrade to 24H2, yet. Let everyone else be the guinea pigs. It’s already showing quite a few issues.

All versions of macOS prior to 13/Ventura are no longer supported. If you can’t upgrade your Mac to Ventura you need to permanently take it offline and/or replace it.

Windows 10 now has only 12 months of support left. If your computer can not be upgraded to Windows 11 either start planning now for a switch to Linux or replacing your computer.

There were 505+ major hacks, and over 395 application updates this month. It’s an enormous month, with about 4 GB of updates for most users.

This Month in Technology

4B Components, 5.11 Tactical, A1 Mobile Locksmith, Access Ambulatory Surgery Center, LLC, Access Sports, Accurate Railroad Construction Ltd, Acuity Advisor, Adobe Acrobat Reader DC, Adobe After Effects, Adobe Audition, Adobe Commerce & Magento stores (5% of all their commerce sites!!!), Adobe Media Encoder, Adobe Photoshop, Adobe Premiere Pro, ADT, Advanced Sterilization Products, Inc, Affirm Agency, AFP, air-gapped government systems, Akromold, Al Rajhi Bank, Albany College of Pharmacy, Alliance, Ally Bank, Alshaya Group, Altman Plants, Alvan Blanch, American Water Works, Amgen Inc, Amplitude Laser, Andamen, Andantex USA, Anniversary Holding, Apache Avro, Apache HugeGraph-Server, Apex Softcell, Aramark myPay, Arc browser, Arelance Group, Around the Clock Companies, Asheville Arthritis and Osteoporosis Center, PA, AT&T, ATG Communications Group, Atrium Health, Autel Maxicharger, Auto Recyclers, AutoCanada, Autodesk Navisworks Freedom DWF, automatic storage tank gauge (ATG) systems (6 models), Avi Resort & Casino, Avis, Balboa Bay Club Ventures LLC, Banana Gun, Bangladeshi government, Barbados Revenue Authority, Barnes & Cohen, Batcom, Battle Lumber Co, Bay Ridge Automotive Management Group, Bazooka, Bel-Air Bay Club, BELL DATA, Inc, Benny Gantz, Bethalto Community Unit School District, Betterhalf, Bharat Petroleum, BingX, Bloom Hearing Specialists, Blundstone USA Inc, BNBuilders, BotSpace, Branhaven Chrysler Dodge Jeep Ram, Brechbuhler Scales Inc, BroadGrain Commodities, Broward Realty Corp, Brown Bottling Group, Brown Integrated Logistics, Brunswick Hospital Center, BSH Soft, BudTrader, C&L Ward, CaleyWray, Calibrated Healthcare, LLC, California Department of Social Services, Cameroon’s pension fund, Canstar Restorations, Capgemini, Capital Printing, Carlile Group, Cascade Columbia Distribution, Casino Fandango, Casio, Caterpillar Inc, Cellular Plus, CentralTickets, CF Medical, Charles Darwin School, Chernan Technology, ChiceDNA, Chinese government, a Chinese government botnet, Chrome, Chunghwa Telecom Data, Cincinnati Public Schools, City of Aberdeen, WA, City of Forest Park, City of Pleasanton, CA, City of Richardson, TX, CK Associates, CKS Packaging, Classic Business Products, CobelPlast, Cohesive Networks VNS3, Comcast Cable Communications, Community Clinic of Maui, Inc, Community Hospital of Anaconda, Compass Group, Concord Management Services, Condere IP, Conductive Containers, Inc, Connally Memorial Medical Center, Control Panels USA, CopySmart LLC, Corantioquia, Creative Consumer Concepts, Creative Playthings, CrediHealth, Crown Mortgage Company, CSG Consultants, D-Link routers, DATASUS, Daughterly Care, David’s Bridal, Del Valle Independent School District, Delaware Library system, Dell (twice in a week), Deloitte, Delta Prime, Department of Foreign Affairs (DFA), Philippines, DETRAN, Detroit Public TV, Diamond Contracting, LLC, Didi Chuxing, digiDirect, Dimensional Merchandising, DINAS Corp, Divine Interprises INC, DJH Jugendherberge, Domain Industries, DotPe, DPC DATA, Dr. Web, DrayTek routers, Dreyfuss + Blackford Architecture, Duopharma Biotech, Dutch Police, EasyMPS, Edge Imaging, eFile.com, EigenLayer, Elgin Separation Solutions, Elitecare Emergency Hospital, Elitecare, Empereon Marketing, English Football League, Enterprise Outsourcing, EnviroNET Inc, Environmental Code Consultants Inc, Erasmus+, ETC Companies, Ethena Labs, Eurobulk, Evans Distribution Systems, Experience Engine, Express Services, Fabrica Industrial Machinery & Equipment, FastStone Imave Viewer, Fazenda Brazil government, FBCS, Fedbank Financial Services, Feeld, Feldstein & Stewart, Fireworks Software, First Choice, Fleet Equipment, FoccoERP, Forshey Prostok LLP, Fortinet, Fortive, Foundation, Foxit PDF Reader, Freshstart Credit Repair, Frigocenter, Fritzøe Engros, FTV Employment Services LLC, Fylde Coast Academy Trust, G/S Solutions, Galloway MacLeod, Games Box, GameVN, Garvey, GenPro Inc, GitLab, GNOME Project G, GoDaddy, Golden Age Nursing Home, Gough Construction, Graminex, Graybill Medical Group, Greene Acres Nursing Home, Guerriere & Halnon, GW Mechanical, Hair Club for Men, Hamel Cranial Chiropractic & Wellness INC, Harvard Pilgrim Health Care, Harvey Nichols, HDI, Hertz, Hezbollah, Hindle Group, Holmes & Brakel, Howard CPAs, HPE Aruba Networking, Hughes Gill Cochrane Tinetti, Hunter Dickinson Inc, HuntStand, I-MED, Ibermutuamur, ICBC London, IDEALEASE INC, Idre Fjäll, Indian Supreme Court, Indodax, Infosys McCamish Systems, Instituto Nacional de Deportes de Chile, Insurance Agency Marketing Services, Inc, InteriorWorx Commercial Flooring, iOS Password Manager, 260,000 IoT devices (Raptor Train), Iron Metals, Isola, Israel Defense Minister, Israel Foreign Affairs Minister, Israel Harel Insurance, Israel Prime Minister, an Israeli analytics company, Israeli defense companies, Israeli Industrial Batteries, Istrail, Italian Ministry, Ivanti Cloud Services Appliance, Ivanti Endpoint Manager, Ivanti Workspace Control, Jackson Paper Manufacturing, Jacobsen Construction Co, Inc Health Plan, Joe Swartz Electric, Johnson & Wales University, JTaylor & Associates LLC, Juice Generation, Kawasaki Motors Europe, Keller Williams Realty Group, Kennedy Funding, Keuka College, Keya Accounting and Tax Services LLC, Kia dealer portal, Kia vehicles (again), KintApp, Kravit, Hovel & Krawczyk SC, KukuFM, Kuwait Health Ministry, LA Financial Federal Credit Union, Labib Funk Associates, Ladov Law Firm, Lakeland Chamber, Lancaster Royal Grammar, three-quarters of law firms (which explains a lot of the hacks this month), Law Offices of Michael J Gurfinkel, Inc, Lawrie Insurance Group, Lee Hoffoss Injury Lawyers, LEGO, Lenovo Service Bridge, Liberty First Credit Union, Local 1964 ILA Health & Insurance Fund, Lumen Technologies, Luso Cuanzа, Lyomark Pharma, MacGillivray Law, macOS graphics driver, macOS video decoder, Magenta Photo Studio, Malwarebytes Antimalware, Markdom Plastic Products, Maryville Academy, Mattson Technology, Inc, Max Shop, MC2 Data, McAbee Construction, Inc, McCarty Company, MCNA Dental, MDSi INC, MediCheck, MedReview, Messe C, Miami Dolphins Forum, Michigan Masonic Home, Michigan Medicine, Microsoft Azure API Management, Microsoft C++ redistributable, Microsoft Pragmatic General Multicast Server, Microsoft SharePoint, Microsoft Windows, Microsoft Windows 10 AllJoyn Router Service, Microsoft Windows Internet Explorer, Microsoft Windows SmartScreen, Mile Hi Foods, MIPS Holding, Inc, Mobility Compare, Model Engineering, Moeller Door and Window, MoneyGram, Mozambique Election System, Mt. Carmel Behavioral Healthcare, Muskogee City County Enhanced 911 Trust Authority, mySCADA myPRO, NASA, New Electric, New River Electrical, New York Sports Club, Noble Environmental, North American Breaker, Nova Sinseg, Nusser Mineralöl GmbH, NVIDIA Container Toolkit, Octapharma Plasma, OffRoadAction, Omega Industries, One Point HR Solutions, Onyx, OpenAI, OpenPLC_v3 Runtime, Optigo Networks ONS-S8, Oracle WebLogic, Pacific Coast Building Products, Pacific Islands Forum, Fiji, Pacific Scientific Energetic Materials Company LLC, Palomar Medical Group, PaperCut NG, Partners Air, Patelco Credit Union, Patrick Sanders Company, PDF-XChange Editor, Pearl Cohen, Peerless Umbrella, Performance Food Centers, Performance Therapies, PetEdge, Pete’s Road Service, PetroChina, Physical Medicine & Rehabilitation Center, Piggly Wiggly, Plaisted Companies, Plastics Plus, Plumbers Stock, Port of Seattle/Seattle-Tacoma International Airport (SEA), Power Torque Services, PRC-Saltillo, Premier Packaging, Prentke Romich Company, Progress Software WhatsUp Gold, Pureform Radiology Center, Qualcomm DSP, Quantum Healthcare, Raaga, Rackspace, Radio Geretsried, 19 UK railway stations, Ranveer Allahbadia, Reading Train Station, Red Barrels, Repsol, Research Electronics International, Reutter, Richland County, WI, Richmond Auto Mall, Richmond Community Schools, Riley Gear Corporation, Rim Country Health and Rehabilitation, Ring Power, River Delta Unified School District, River Region Cardiology Associates, Riverside Resort Casino, Rob Levine & Associates, Robson Planning Group Inc, Rockwell Automation PLC Software, Sacred Heart Catholic School, Sage Home Loans Corporation, SaniRent, Satia Group, Savannah Candy, Schäfer, dein Bäcker GmbH & Co KG, Scranton School District, Sellafield, ServiceNow, Shenango Area School District, Sherr Puttmann Akins Lamb PC, Shezmu, Shin Bet, ShoreMaster, Signature Healthcare Services LLC, siParadigm LLC, Slim CD, Smart Buy, Smart Source, Inc, 2,700 “smart” devices in the Netherlands, SolarWinds Access Rights Manager, Solutii Sistemas, Sono Bello, Southeast Cooler, Southern Bone, SpaceX, Spectrum Industries, Sportstech, spWETH Wallet, Star Blizzard, Star Health (India), Stillwater Mining Company, Storck-Baugesellschaft mbH, Structural Concepts, Sub-Zero, Wolf, and Cove, Sunrise Farms, Synnovis, TANYA Creations, TeamViewer, TeleHealth Center (India), Temu, Tewkesbury Borough Council, Thai Honda Manufacturing, The Gill Corporation, The Maids International, The Rubber Resources, The Superior Court of California, The Tech Interactive, Theresa Gordon Tax Services, Inc, Think Simple, Thomas Lloyd, Thompson Construction Supply, TIAA, Title Financial Corporation, Total Electronics, TOTVS, Toyota, TradeZero America Inc, Transport for London, Transtec SAS, TransUnion Risk and Alternative Data Solutions, Inc, Travel Alberta, TRC Worldwide Engineering, Trend Micro Deep Discovery Inspector, True Family Enterprises, Truflation, Truist Bank, Trump campaign, Tuttle-Click Automotive Group, Twilio, Uber Eats, UCC Retreivals, United Animal Health, Universal Music Group, University Medical Center, University of Minnesota Orthodontics, US Centers for Medicare and Medicaid Services, US Congress, US Dermatology Partners, UT Southwestern Medical Center, Uttarakhand (India) government, Veertu Anka Build, Verizon, Vermilion Parish Schools, Versa Director, VGTRK, Vickers Engineering, Vidisco, Virginia Dare Extract Co, Visionary Homes, Visteon Infotainment System, VMware vCenter Server, Ward Transport, Wayne County, MI, WazirX, We Level Up Treatment Lake Worth, Weiser Memorial Hospital, Weldco-Beales Manufacturing, Wells Fargo, Western Digital MyCloud PR4100, WhatsApp, Wichita Police, Wilmington Convention Center, Wilson & Lafleur, Wisconsin Physicians Service Insurance Corp, Woodard, Hernandez, Roth & Day, WordPress Houzez Login Register plugin, WordPress Houzez theme, WordPress LiteSpeed Cache Plugin, Wright, Moore, DeHart, Dupuis & Hutchinson, LLC, Young Consulting LLC, and Zimbra email servers have reported hacking or compromises this month.

AFP, AT&T, Cloudflare, Confidant Health, Dr. Web, Google CloudImposer, Highline Public Schools, MoneyGram, PlayStation Network, Port of Seattle, Providence Public Schools, State Data Center (India), Verizon, and WP Engine have suffered from outages this month.

Last months updates broke M4 iPad Pro devices, macOS Sequoia VPN & antivirus software, Microsoft 365 apps, Microsoft Outlook mail vs nested folders, Microsoft Word (serious – Word deletes your files if they have mixed case extensions!), Windows 11 24H2 BSODs, Windows 11 24H2 gaming performance, Windows 11 24H2 license activation, Windows reboots, and Windows USB & Bluetooth.

In other news

The Internet backdoor mandated by US federal law has been hijacked by China (Salt Typhoon) and is being actively exploited again across several phone providers. It’s not good.

Almost 3 in 5 of breached UK firms admit to paying ransom on demand. An insane 92% of healthcare firms in the US were hit by cyberattacks this year.

Now that “exploding pagers” (and more) are a thing, will people start to take supply chain and physical security seriously?

Fearing exposure of weak security processes, Apple has moved to dismiss their lawsuit against NSO Group.

Now for the good news

Discord has added end-to-end encryption for audio & video calls.

NIST has finally scrapped their complexity and change frequency recommendations. The math on these recommendations simply doesn’t add up.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is enormous this month. The typical computer should see roughly 4 GB in updates today. Let’s get started.

Microsoft released 65 updates to address 121 vulnerabilities in .NET Framework, .NET, Azure CLI, Azure Monitor, Azure Stack, BranchCache, Code Integrity Guard, DeepSpeed, Internet Small Computer Systems Interface (iSCSI), Microsoft ActiveX, Microsoft Configuration Manager, Microsoft Defender for Endpoint, Microsoft Edge (Chromium-based), Microsoft Graphics Component, Microsoft Management Console, Microsoft Office Excel, Microsoft Office SharePoint, Microsoft Office Visio, Microsoft Office, Microsoft Simple Certificate Enrollment Protocol, Microsoft WDAC OLE DB provider for SQL, Microsoft Windows Speech, OpenSSH for Windows, Outlook for Android, Power BI, Remote Desktop Client, RPC Endpoint Mapper Service, Service Fabric, Sudo for Windows, Visual C++ Redistributable Installer, Visual Studio Code, Visual Studio, Windows Ancillary Function Driver for WinSock, Windows BitLocker, Windows Common Log File System Driver, Windows Cryptographic Services, Windows cURL Implementation, Windows EFI Partition, Windows Hyper-V, Windows Kerberos, Windows Kernel, Windows Kernel-Mode Drivers, Windows Local Security Authority (LSA), Windows Mobile Broadband, Windows MSHTML Platform, Windows Netlogon, Windows Network Address Translation (NAT), Windows NT OS Kernel, Windows NTFS, Windows Online Certificate Status Protocol (OCSP), Windows Print Spooler Components, Windows Remote Desktop Licensing Service, Windows Remote Desktop Services, Windows Remote Desktop, Windows Resilient File System (ReFS), Windows Routing and Remote Access Service (RRAS), Windows Scripting, Windows Secure Channel, Windows Secure Kernel Mode, Windows Shell, Windows Standards-Based Storage Management Service, Windows Storage Port Driver, Windows Storage, Windows Telephony Server, Winlogon, and MSRT. This includes security updates. A reboot is required.

Apple released updates for Apple TV 1.5.0.152 for Windows, iOS 17.7, iOS 18, iOS 18.0.1, iPadOS 17.7, iPadOS 18, iPadOS 18.0.1, macOS Sequoia 15.0.1, macOS Sonoma 14.7, macOS Ventura 13.7, Safari 18, Safari 18.0.1, tvOS 17.6.1, tvOS 18, visionOS 2, visionOS 2.0.1, watchOS 10.6.1, watchOS 11, watchOS 11.0.1, and Xcode 16. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 17.7, 18, and 18.0.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 17.7, 18, and 18.0.1 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 10.6.1, 11, and 11.0.1 are security updates. Use the Watch app on your iPhone to install the most current version.

tvOS 18 is a security update. Use System, Software Update to install the most current version.

visionOS 2 and 2.0.1 are security updates. Use System, Software Update to install the most current version.

Google Chrome OS 128.0.6613.163, 129.0.6668.80, and ChromeOS LTS 126.0.6478.254 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

The release of macOS Sequoia (15.x) means that macOS Monterey (12.x) and older are no longer supported. If you can not install at least macOS Ventura (13) on your Mac then you should immediately remove your device from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 11 (v24H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 24.9.1 improves hardware compatibility, game support, resolves several bugs and expands Vulkan extensions. This is not a security update.
https://www.amd.com/en/support

TP-Link Archer AX55 v1 240628 improves mesh and configuration controls. This is not a security update.
https://www.tp-link.com/us/support/download/archer-ax55/v1/#Firmware

goxlr-utility 1.1.4 resolves several compatibility and reliability bugs. This is not a security update.
https://github.com/GoXLR-on-Linux/goxlr-utility/

UniFi Network Server 8.4.62 resolves several bugs. This is not a security update.
https://www.ui.com/download/releases/network-server

VIISAN OfficeCam 7.2.2.0 doesn’t provide a change log so should be treated as a security update.
https://www.viisan.com/en/download/type1.html

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.70.123 is a security update. Use Help, About to install the most current version.
https://brave.com/

Google Chrome 129.0.6668.100 is a security update. Use Help, About to install the most current version.
https://www.google.com/chrome/

Microsoft Edge 129.0.2792.79 is a security update. Use Help, About to install the most current version.
https://www.microsoft.com/en-us/edge/business/download

Firefox 131.0 is a security update. Use Help, About to install the most current version.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 128.3.0 is a security update. Use Help, About to install the most current version.
https://www.mozilla.org/en-US/firefox/organizations/all/

Vivaldi 6.9.3447.51 is a security update. Use Help, About to install the most current version.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.14.0 is a security update.
https://getmailspring.com/

ProtonMail (Android) 4.0.22.1 resolves a major stability bug. This is not a security update.
https://proton.me/mail/download

Spark 3.17.9.86866 resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.17.9.86865 resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 128.3.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 8.1.0 resolves dozens of bugs and improves stability. This is a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 8.1.2 is a security update.
https://anydesk.com/en/downloads

BrowsingHistoryView 2.58 resolves an export bug. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

curl 8.10.1 resolves over a dozen bugs. This is not a security update.
https://curl.haxx.se/windows/

Dropbox 209.4.3661 does not provide a detailed change log so should be treated as a security update.
https://www.dropbox.com/

Facebook Messenger 215.6.0.24.211 is a security update.
https://www.messenger.com/download

FileZilla Server 1.9.2 resolves a bug in the update engine. This is not a security update.
https://filezilla-project.org/

Google Drive 98.0 is a security update.
https://drive.google.com/start

MeshCentral 1.1.32 is a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.7.00.26062 improves onboarding flow and allows external presenters to join from mobile platforms. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 30.0.0 is a major update, updating libraries, minimum requirements, and resolving more than a hundred bugs. This is a security update.
https://nextcloud.com/

Npcap 1.80 resolves several bugs. This is not a security update.
https://nmap.org/npcap/

Rclone 1.68.1 improves compatibility and resolves several bugs. This is not a security update.
https://rclone.org/

Signal 7.27.0 adds several new display options for media, groups and restores ability to search stored messages from groups you’re no longer part of. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.18.2 adds ability to search for emoji. This is not a security update.
https://signal.org/android/apk/

Technitium DNS Server 13.0.2 resolves protocol bugs. v13 adds several other new DNS features and controls including ZONEMD, RP, Catalog Zones and improved logging. This is not a security update.
https://technitium.com/dns/

Telegram 5.6.1 resolves dozens of bugs. This is not a security update.
https://telegram.org/

Telegram (Android) 11.1.3 resolves dozens of bugs. This is not a security update.
https://telegram.org/apps

Zoom 6.2.3.47507 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.10 resolves a couple bugs and improves lip sync. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.2.4 resolves over 20 bugs. This is not a security update.
https://www.bitwig.com/download/

Grayjay 264 adds auto-play toggle, allows you to control rotation sensitivity, reverse rotation, and resolves several bugs and compatibility issues. This is not a security update.
https://grayjay.app/index.html

iTunes 12.13.3.2 is a security update.
https://www.apple.com/itunes/download/

Plex Desktop 1.102.0.230 resolves a couple bugs and adds an advertising consent notice. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.67.1.233 updates web engine. This should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.41.0.8994 adds support for external subtitles, improved ad detection, and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.31.04 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Nintendo Switch 19.0.0 improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 2024.920 improves stability. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2024.09.17 changes the terms of use and resolves several bugs. This is not a security update.
https://store.steampowered.com/news/app/593110

SteamOS SteamDeck Update 2024.10.03 improves Wi-Fi 7 compatibility. This is not a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Animate 23.0.8 and 24.0.5 are security updates.
https://helpx.adobe.com/security/products/animate/apsb24-76.html

Adobe Commerce 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11, 1.4.2-p3, 1.3.5-p8, 1.3.4-p10, and 1.3.3-p11 are security updates.
https://helpx.adobe.com/security/products/magento/apsb24-73.html

Magento Open Source 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, and 2.4.4-p11 are security updates.
https://helpx.adobe.com/security/products/magento/apsb24-73.html

Adobe Dimension 4.0.4 is a security update.
https://helpx.adobe.com/security/products/dimension/apsb24-74.html

Adobe FrameMaker 2020.7 and 2022.5 are security updates.
https://helpx.adobe.com/security/products/framemaker/apsb24-82.html

Adobe InCopy 19.5 and 18.5.4 are security updates.
https://helpx.adobe.com/security/products/incopy/apsb24-79.html

Adobe InDesign 19.5 and 18.5.4 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb24-80.html

Adobe Lightroom 7.5, 13.5.1, and 12.5.2 are security updates.
https://helpx.adobe.com/security/products/lightroom/apsb24-78.html

Adobe Substance 3D Painter 10.1.0 is a security update.
https://helpx.adobe.com/security/products/substance3d_painter/apsb24-52.html

Adobe Substance 3D Stager 3.0.4 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb24-81.html

Audacity 3.6.4 doesn’t have a change log so should be treated as a security update.
https://www.audacityteam.org/download/

Blender 4.2.2 resolves dozens of bugs. This is a security update.
https://www.blender.org/download/

Calibre 7.19.0 improves performance and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Ghostscript 10.04.0 is a security update.
https://www.ghostscript.com/releases/gsdnld.html

GnuCash 5.9 resolves several bugs. This is not a security update.
https://www.gnucash.org/

Kdenlive 24.08.1 resolves dozens of bugs. This is not a security update.
https://kdenlive.org/

Krita 5.2.6 resolves over 50 bugs and improves reliability and stability. This is not a security update.
https://krita.org/en/download/

LibreOffice Fresh 24.8.2 resolves almost 200 bugs. This is a security update.
https://www.libreoffice.org/

Manager 24.10.8.1879 adds business templates, FDX support, and resolves several bugs. This is not a security update.
https://www.manager.io/

Nextcloud Desktop 3.14.1 resolves a dozen bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.7 updates libraries, resolves over a dozen bugs. This is a security update.
https://notepad-plus-plus.org/

PDF Candy Desktop 3.13 doesn’t provide a change log so should be treated as a security update.
https://pdfcandy.com/

PDF-XChange Editor 10.4.1.389 is a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

QuickBooks Pro 2022 20240726-R17_34 doesn’t provide a change log so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

QuickBooks Pro 2023 20240726-R14_39 doesn’t provide a change log so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

Security Software Updates

One or more of these is likely to be of interest to most people.

JShelter 0.19.1 improves Manifest V3 compatibility and performance. This is not a security update.
https://jshelter.org/install/

KeePass 2.57.1 is a security update.
https://keepass.info/

MalwareBytes Anti-Malware 5.5.4 doesn’t provide a change log so should be treated as a security update.
https://www.malwarebytes.org/antimalware/

RogueKiller 15.18.3 updates libraries and resolves several bugs. This should be treated as a security update.
https://www.adlice.com/download/roguekiller/

SecurityCheck 2024.9.22 doesn’t provide a change log so should be treated as a security update.
https://www.bleepingcomputer.com/download/securitycheck/dl/123/

Stinger 13.0.0.197 is a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

SuperAntiSpyware 10.0.1268 adds support for new browsers, applications, unicode compatibility and resolves several bugs. This is a security update.
https://www.superantispyware.com/download.html

uBlock Origin 1.60.0 adds several new features and resolves a couple bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Operating System Updates

These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.

QubesOS 4.2.3 is a security update.
https://www.qubes-os.org/downloads/

Tails 6.8 is a security update. 6.8 also signals the merger of Tails and the Tor Project.
https://tails.net/install/download/index.en.html

Zorin OS 17.2 improves customization, updates libraries, and resolves several bugs. This is not a security update.
https://zorin.com/os/mirrors/

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 24.2.4 resolves stability bugs. This is not a security update. This is not a security update.
https://www.techsmith.com/screen-capture.html

VideoCacheView 3.10 improves compatibility with Google Chrome. This is not a security update.
https://www.nirsoft.net/utils/video_cache_view.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.2.7 adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

MakeMKV 1.17.8 improves defect tolerance and resolves several bugs. This is not a security update.
https://www.makemkv.com/download/

StreamFab 6.2.0.0 improves compatibility and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 2.0.3.5 adds FLAC support and resolves sseveral bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 7.0.7 resolves several bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.46 adds QR code authentication, Wi-Fi QR code sharing, accessibility improvements, and resolved several bugs. This is not a security update.
https://1password.com/downloads/

AOMEI Partition Assistant 10.5.0 adds Boot Repair, improves Migrate OS and resolves bugs in the optical media creation flow. This is not a security update.
https://www.diskpart.com/

Bitwarden 2024.9.2 improves PDF attachment handling and improves Secrets Manager. This is not a security update.
https://bitwarden.com/

CCleaner 6.28.11297 adds support for new applications. This is not a security update.
https://www.ccleaner.com/

CPU-Z Installer 2.11 improves mainboard detection and adds new hardware support. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

Deskflow 1.17.0 is a complete rebrand of the upstream Synergy source, pushing the public code base into a useful utility. This is the first one, though, so I’d hold off a little while. This is not a security update.
https://deskflow.org/

DesktopOK 11.44 improves copmatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.2.84.0 improves cache plug-in to use hash data to reduce network chatter, encoding improvements, and resolves several bugs. This is not a security update.
https://dngrep.github.io/

email-oauth2-proxy 2024-09-12 adds option to use password as credentials, improves documentation and resolves several bugs. This is not a security update.
https://github.com/simonrob/email-oauth2-proxy

Everything Toolbar 1.5.1 improves compatibility, adds RTL support, keyboard shortcuts and resolves several bugs. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

ExplorerPatcher 22621.3880.66.6 improves compatibility and adds support for Windows 11 v24H2. This is not a security update.
https://github.com/valinet/ExplorerPatcher/

Fido 1.60 adds support for Windows 11 v24H2 and removes v23H2. This is not a security update.
https://github.com/pbatard/Fido/releases

Fing 3.7.1 improves Network Insights and resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

FoneTool 2.9.0 resolves several bugs. This is not a security update.
https://www.fonetool.com/download.html

Git SCM 2.46.1 resolves several bugs and improves documentation. This is not a security update.
https://git-scm.com/

GoodSync 12.7.6 improves logging and compatibility. This is not a security update.
https://www.goodsync.com/

Homedale 2.13 adds channel utilization reporting, Wi-Fi 7 (802.11be) support and filtering improvements. This is not a security update.
https://www.the-sz.com/products/homedale/

HWiNFO 8.12 adds support for newer hardware and resolves several bugs. This is not a security update.
https://www.hwinfo.com/download/

HWMonitor 1.55 adds support for newer hardware and battery information. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

IsMyHdOK 4.11 adds support improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

Kingston SSD Manager 1.5.4.9 doesn’t provide a change log so should be treated as a security update.
https://www.kingston.com/us/support/technical/ssdmanager

LessMSI 2.2.0 adds Italian language support. This is not a security update.
https://lessmsi.activescott.com/

MultiMonitorTool 2.11 resolves a mapping bug. This is not a security update.
https://www.nirsoft.net/utils/multi_monitor_tool.html

NTLite 2024.9.10073 resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 11.0.1014 resolves over a dozen bugs including performance and reliability issues. This is not a security update.
https://www.osforensics.com/download.html

PointerStick 6.44 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.85.1 improves stability. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

ScreenConnect 24.2 should be avoided. It has had rollout “paused” due to stability issues four times already. Just wait for 24.3 or 24.4 to be stable.
https://screenconnect.connectwise.com/download

TeamViewer 15.58.5 resolves several bugs and implements new cosmetics. This is a security update.
https://www.teamviewer.com/en-us/download/windows/

TestDisk 7.3 doesn’t provide a change log so should be treated as a security update.
https://www.cgsecurity.org/wiki/TestDisk_Download

XnConvert 1.101.0 doesn’t provide a change log so should be treated as a security update.
https://www.xnview.com/en/xnconvert/

Developer Updates

These are unlikely to be of interest to most people.

.NET Runtime 8.0.10 is a security update.
https://dotnet.microsoft.com/en-us/download/dotnet

Android Studio 2024.2.1.9 resolves dozens of bugs. This is not a security update.
https://developer.android.com/studio

GDevelop 5.4.213 adds ability to change opacity within properties panel, tilemap improvements, and resolves several bugs. This is not a security update.
https://gdevelop.io/download

GitHub Desktop 3.4.6 resolves several bugs. This is not a security update.
https://desktop.github.com/

Go 1.23.2 resolves several bugs. This is not a security update.
https://go.dev/

Node.js 20.18.0 updates libraries, resovles several bugs and adds experimental support for network inspection. This is not a security update.
https://nodejs.org/en/

Node.js 22.9.0 updates libraries, adds support for stack trace, disables V8, and resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

Python 3.13.0 resolves over a dozen bugs. This is a security update.
https://www.python.org/downloads/windows/

Visual Studio Code 1.94 improves Explorer Find, adds filtering options to Source Control Graph, and resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.1.2 is a major update, changing style, performance, stability, hardware compatibility and adding many options. It also initially broke older guests and this release fixes that as well as a dozen other bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Duplicator 1.5.11 improves compatibility and resolves several bugs. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers

Sucuri Security 1.9.5 improves analysis. This should be treated as a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2024-08-13

Posted on August 13, 2024 by Shawn K. Hall

Today is Patch Tuesday for August, 2024.

There were 436+ major hacks, and over 372 application updates this month.
It’s an enormous month, with about 4 GB of updates for most users.

This Month in Technology

1Password, 1Tx.io, 40 French Museums, 5G baseband, A-Line Staffing Solutions, a16z, Acadian Ambulance, Accelon Technologies Private, Acronis, Adreno, ADT, Advance Stores Company, Inc, Advantage Orthopedic & Sports Medicine, LLP, AirAsia Group, AirsoftC3, Al-Karam Textile Mills Pvt, Alabama Cardiovascular Group, Alabama Department Of Education, Allcare Medical Management, Alternate Energy, Amazon India, Amazon Web Services (AWS), AMD (SinkClose), American Golf Corporation, an “undisclosed ISP”, Angel One, AnimeLeague, Ankitects Anki, Anniversary Holding Company, Apache HugeGraph, Apache InLong, Apache OFBiz, Argentina Citizen Data, Arisa Health, Astra Daihatsu Motor, AT&T, Augusta Orthopedic, Aveanna Healthcare, LLC, Aviben, B&G Foods, Bandolier, BangBros, Barrett Eye Care, Bassett Furniture Industries, Bausch Health, Baxter International, Bayhealth, Bazaar, Berkshire Hathaway Home Services, Betances Health Center, BIND 9, BioMatrix Specialty Pharmacy, BlackCat, Bluewater Health, BMW Hong Kong, Bosque Animal Rescue Kennels, Brazil FGTS, Brevard Alzheimer’s Foundation, Brownell Travel, Inc, Bunkhouse Group, Business Insider, Cadre Holdings, Calibrated Healthcare, Cambridgeshire schools, Care Vision UK, Cartier, CCM Health, Celcom Axiata Berhad, Cencora, Central Bedfordshire Council, Central Contra Costa Transit Authority, Central Texas 911 service, Change Healthcare Inc, Chilean Government, Chrome, Cisco Small Business SPA 300 and SPA 500, Cisco Smart Install, Cisco Smart Manager software, City of Cold Lake, Alberta, City of Columbus, OH, City of Philadelphia, PA, City of Victorville, CA, Clay County, IN, ClickBalance, Co-op Banks, CoinStats, Columbus Regional Healthcare System, Community Care Alliance, Compex Legal Services Inc, Compound Finance, Condo.com, Congoleum, Convergence, Credible Group, Crescent Point Energy, Crimson Wine Group, Croatia’s Split Airport, CSC ServiceWorks, Cyepro Solutions, Dallas County, DaVita, Deep Sea Electronics DSE855, Dell & Dean PLLC, Delta County Memorial Hospital District (Delta Health), Designed Receivable Solutions, Deye, Digitalstress, Directional Aviation, Disney’s Slack, Docker Engine, Dorset Council, Dough Finance, Dr Bronner’s, Dubai Municipality, dYdX, East Valley Institute of Technology (evit), easySim.global, Econolite, Ecovacs home robots, Edward Flynn, LMHC, EgBill India, Embily Crypto, Embotits Espina, SLU, EMS Department for the Kansas City, Kansas Fire Department, Energo, Evening Post Publishing Inc, Everest, Evolution Mining, Evolve Bank & Trust, Exco Solutions, Exim, Explore Talent, FacilityBills, Fairfax Radiological Consultants, Family Dynamics Counseling Services, Inc, FCDG Management LLC, Federacion Española de Padel, Fidelity Investments Life Insurance Company, FilterBaby, LLC, Financial Business and Consumer Solutions, Inc, Firefox, First Choice Dental, Flexible, Florence Cement Company, Inc, Football Federations of Tenerife and Las Palmas, Fractal ID, Franklin County, Kansas, Fresnillo PLC, Freudenberg Medical, Fujitsu, Gateway Extrusions, GCA Global Cargo Alliance, Gemini, Gendron & Gendron, GeoServer GeoTools, Ghayar, GitLab Community and Enterprise, Glendale Unified School District, Golden Business Machines, Good Smile Company, Google Cloud Platform, Google Quick Share, Google Workspace, Gramercy Surgery Center, Granit Design, Graphic Solutions Group Inc, Greece’s Land Registry, Green Investment Management, Inc, Greenlight Biosciences, Grupo Jal, Guaranteed Supply Company, Guardian Analytics, Guhring, Hair Club for Men, Ltd, Inc, Hajj and Pilgrimage Organization of Iran, Harry Perkins Institute of Medical Research, Hayden Power Group, HealthCare.gov, Healthed, HealthEquity, Help PDF, Hit Promotional Products, Hokushinko Co, Ltd, Horizon View Medical Center, Hospital Auxilio Mutuo, Hotjar, Hyperice, Indian Ministry of Defence, Indonesian government, Infomedika, Ingo Money, Inc, Ingresse, InHouse Physicians, Injectable Therapy Services, Inc, Insula Group, Intelight X-1, iRacing, Iseto Corp, Island Transportation Corp, Israeli Intelligence, Israeli Security Ministry, ISTA International GmbH, Janna Pharmacy LLC, Jefferson County, KY, Jersey Financial Services Commission (JFSC), JG Summit, Jim Ellis Automotive Group, Joe’s Club, Kadokawa, Kaiser Foundation Hospitals, Karvo Companies, Inc, Kerman Unified, Keytronic, KinetX, KnowBe4, Kofile Technologies, Korean National Police Agency (KNPA), KuiperCompagnons, Kusum Group of Companies, La Salle University, Lago Group Spa, Lake Washington Institute of Technology, LangChain, Laurentian University, Law Office of Omar O Vargas PC, LCS and Partners, Lebanon Ministry of Health, Leicester City Council, Leidos, LI.FI, Life360, Linux Kernel (SLUBStick), LITE-ON, LivaNova USA, Inc, Liverpool Football Club, Loretto, Los Angeles Superior Court, Loumar, LS Networks, LuLu, Lvivteploenergo, L’Oréal, Macau government, Majestic Metals, Mallox, Manila Health Department, MarineMax, Maybank2u, McDowall Affleck, McLaren Health Care (again), MediSecure, Melchers Singapore, Meridian Internal Medicine, PA, Meta Prompt Guard, Microsoft (several times), Microsoft 365, Microsoft BITS, Microsoft Copilot, Microsoft Windows (Downgrade), Microsoft Windows Update, MIPS Technologies, Mississippi Blood Services, MNGI Digestive Health, Mobex, Mobile Guardian, Monte Nido, Moonly app, mSpy, Multiplayer.it, multiple VPN services, Mykukun/USBank, Nainital Bank, National Curry Awards, National Payments Corporation of India, National Public Data/Jerico Pictures, Neiman Marcus, Netflix, Netgear Orbi, Netgear WiFi 6 routers, NetOne, Netshoes, Neuro Rehab Associates, Inc, New Jersey City University, New Jersey Oral & Maxillofacial Surgery Associates, Nexera, Nexperia, Nidec Corporation, Nigerian Cloud Service, Nilorngruppen AB, Nokia, Norfolk and Norwich University Hospitals, North Texas Municipal Water District, Northeast Rehabilitation Hospital Network, Northern Ireland Department of Education, Northwest Arkansas Community College, NSA SkillTree, NVIDIA GPU, OakBend Medical, Odyssey Fitness Center, OfficeOps, Ohio School Boards Association, Olympus Financial, OneBlood, OpenAI, Oxfam Hong Kong, Pacific Oaks College, Palo Alto Networks Expedition Migration Tool, PAN, Patelco Credit Union, PDF Pro, Peco Foods, Peruvian Government, Peterson Holding Company, Philippine Department of Migrant Workers, Philips Vue PACS, PHL Variable Insurance Company in Rehabilitation, phpBB, Pick n Pay Group, Pinnacle Bank, Piramal Group, Playa Vista Job Opportunities and Business Services, PlayNow, Port of Tyne, Portuguese Government, Preferred IT Group, PRI, Principal Life Insurance, Proofpoint, Pueblo County School District 70, Pure Storage, Q-Cells, RADIUS, Recology Inc, Recruit Co, Red Art Games, Rencontre-Ados, REPLIGEN, Resolian, Rhode Island Wyatt Detention Facility, RISC-V CPU (GhostWrite), Rite Aid, RiverSoft, Roberts HVAC, Rockwell Automation Logix Controllers, Romanian Government, Ronglian Group, Ronin Network, Roseland Community Hospital Association, Sable International, Samsung Galaxy Secure Vault, SAP AI Core, Saudi FarmGo App, Schlatter Group, Sede Electrónica de la DGT, ServiceNow, SFR, SH Pension, Shadow, Shoe Zone, Shorenstein Realty Services, Sibanye-Stillwater, Singapore Moneylenders Credit Bureau (MLCB), Solarman, SolarWinds Access Rights Manager, Sonic Automotive, South Korean Military, South Suburban College, South Western Communications, Inc, SouthCoast Medical Group, Special Health Resources of Texas, Inc, Splunk, Spytech, Student Transportation of America, Sumter County Sheriff, Sun City Pediatrics, PA, Superior Court of Justice of Mexico City, Surgery Center of Mid Florida, Sutton Dental Arts, SUUMO, Synnovis, Taiyo Kogyo Co, Ltd, TC Capital Asia Limited, Telerik Report Server, TelPro, Texas Alcohol & Drug Testing Service, Texas Electric Cooperatives, The 21st Century Energy Group, The Coffee Bean & Tea Leaf, The Computer Merchant, The Heritage Foundation, The Lutheran Foundation, Therapeutic Health Services, Thompson Creek, Thousands of Ubiquiti cameras and routers, TopNet, Topserve Service Solutions, TPCI, Trello, Tri-Star Display, Trib Total Media, Tribunal Superior de Justicia CDMX, True Blue Environmental, Trump Campaign, TV SAT 364, U Mobile, UAB School of Nursing, uBook, UEFI SecureBoot (PKfail), UK Home Office, United of Omaha Life Insurance Company, United Seating and Mobility LLC, Universitas Indonesia, University of Michigan/Michigan Medicine, US Voter Data, Valisana, Venezuelan Military, Veren Inc, Victoria’s Royal Brighton Yacht Club, Vivamax, Walmart, WazirX, WebTPA Employer Services, LLC, Western Sydney University, Western Wyoming Beverages, WhatsApp, Williams Construction, Windows Smart App Control and SmartScreen, Wise US Inc, Woodstock Hospital, WordPress Modern Events Calendar plugin, WordPress Time Capsule plugin, ZB Financial Holdings, Zeroed-In Technologies, Zoppo, and Zotac have reported hacking or compromises this month.

CrowdStrike published a buggy definition file to Windows-based devices, causing literally tens of millions of devices from Microsoft Azure, Airlines, Hospitals, Media, Banks and much more. The damage from this “update” can not be overstated: they released an untested, defective, definition to all devices within a 87 minute window and the “fix” to restore access on modern hardware requires a complex process involving decrypting the drive and removing the defective definition file from a system folder. This is already being called the largest IT outage in history. Locally, it even hit Chicken Ranch Casino.

Delta Air Lines, Google Ads, iCloud Private Relay, iRacing, Microsoft Azure, Microsoft 365, and Microsoft 365 Admin Center have suffered from outages this month.

Last months updates broke signed WDAC policies, Office Click-to-Run updates, tens of millions of computers (CrowdStrike), Google Password Manager, Bitlocker-encrypted devices, Remote Desktop, Microsoft Connected Cache, Microsoft Photos app, Microsoft 365 Defender, and Windows Update.

Stop using Zelle. The fraud risk is too high, and banks don’t care if you’re defrauded. Robots are not your friends. The US Postal Service has been sharing your private information with Meta, LinkedIn and Snap. Microsoft – the organization primarily behind mandating DMARC – is sending Data Breach Notifications that fail their own DMARC rules.

DigiCert is still breaking trust with the world by allowing malicious certificates to be preserved, in the name of ensuring maximum availability…for maliciously created certificates?

Hackers are much faster at exploiting vulnerabilities than vendors are in discovering and patching them. The US federal agency tasked with tracking known vulnerabilities (NIST) is seeing a growing backlog which could exceed 30,000 records in only a few short months.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is enormous this month. The typical computer should see roughly 4 GB in updates today. Let’s get started.

Microsoft released 56 updates to address 102 vulnerabilities in .NET and Visual Studio, Azure Connected Machine Agent, Azure CycleCloud, Azure Health Bot, Azure IoT SDK, Azure Stack, Line Printer Daemon Service (LPD), Microsoft Bluetooth Driver, Microsoft Copilot Studio, Microsoft Dynamics, Microsoft Edge, Microsoft Local Security Authority Server (lsasrv), Microsoft Office, Microsoft Office Excel, Microsoft Office Outlook, Microsoft Office PowerPoint, Microsoft Office Project, Microsoft Office Visio, Microsoft Streaming Service, Microsoft Teams, Microsoft WDAC OLE DB provider for SQL, Microsoft Windows DNS, Reliable Multicast Transport Driver (RMCAST), Windows Ancillary Function Driver for WinSock, Windows App Installer, Windows Clipboard Virtual Channel Extension, Windows Cloud Files Mini Filter Driver, Windows Common Log File System Driver, Windows Compressed Folder, Windows Deployment Services, Windows DWM Core Library, Windows Initial Machine Configuration, Windows IP Routing Management Snapin, Windows Kerberos, Windows Kernel, Windows Kernel-Mode Drivers, Windows Layer-2 Bridge Network Driver, Windows Mark of the Web (MOTW), Windows Mobile Broadband, Windows Network Address Translation (NAT), Windows Network Virtualization, Windows NT OS Kernel, Windows NTFS, Windows Power Dependency Coordinator, Windows Print Spooler Components, Windows Resource Manager, Windows Routing and Remote Access Service (RRAS), Windows Scripting, Windows Secure Boot, Windows Secure Kernel Mode, Windows Security Center, Windows SmartScreen, Windows TCP/IP, Windows Transport Security Layer (TLS), Windows Update Stack, Windows WLAN Auto Config Service, and MSRT. This includes security updates. A reboot is required.

Apple released updates for macOS Sonoma 14.6.1, macOS Ventura 13.6.9, macOS Monterey 12.7.6, iOS 17.6.1, iOS 16.7.10, iPadOS 17.6.1, iPadOS 16.7.10, tvOS 17.6, watchOS 10.6, visionOS 1.3, and Safari 17.6. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 17.6.1 and 16.7.10 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 17.6.1 and 16.7.10 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 10.6 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 17.6 is a security update. Use System, Software Update to install the most current version.

visionOS 1.3 is a security update. Use Settings, General, Software Update to install the most current version.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

The release of macOS Sonoma (14.x) means that macOS Big Sur (11.x) and older are no longer supported. If you can not install at least macOS Monterey (12) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 11 (v23H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 24.7.1 resolves several bugs and incompatibility issues, improves performance and introduces AntiLag 2. This is not a security update.
https://www.amd.com/en/support

BullZip PDF Printer 14.5.0.2974 is a security update.
https://www.bullzip.com/products/pdf/info.php#download

Nearly every Epson ET Series (EcoTank) and WF Series (WorkForce) printer has received an update to their firmware in the last week, with no details on what is included. Instead of listing them all here, assume it applies to your device, too. This should be treated as a security update. Use the Epson Software Updater to install the current firmware on your Epson ET printer.
https://epson.com/Support/Printers/

goxlr-utility 1.1.2 resolves several bugs and improves stability and reliability. This is not a security update.
https://github.com/GoXLR-on-Linux/goxlr-utility/

GSLite 20240711 is a security update.
https://www.bullzip.com/products/pdf/download.php

MTPdrive 4.4.166 resolves a couple bugs. This is not a security update.
https://www.mtpdrive.com/

UniFi Network Server 8.3.32 adds support for customer NAT rules, feature and control improvements and resolves several bugs. This is not a security update.
https://www.ui.com/download/releases/network-server

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.68.137 is a security update.
https://brave.com/

Google Chrome 127.0.6533.99 is a security update.
https://www.google.com/chrome/

Microsoft Edge 127.0.2651.98 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 129.0.1 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Vivaldi 6.8.3381.53 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

ProtonMail (Android) 4.0.17 resolves several bugs. This is not a security update.
https://proton.me/mail/download

Spark 3.17.0.82433 introduces Meet with and resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.17.0.82432 introduces Meet with and resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 128.1.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 8.0.13 fixes a crash bug and improves licensing behavior. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 8.1.1 resolves several bugs and adds heirarchical tag support. This is not a security update.
https://anydesk.com/en/downloads

curl 8.9.1 resolves several bugs and improves input sanitization. This should be treated as a security update.
https://curl.haxx.se/windows/

DNSDataView 1.75 adds support for loading domains from a file. This is not a security update.
https://www.nirsoft.net/utils/dns_records_viewer.html

Dropbox 205.4.5765 doesn’t provide a change log so should be treated as a security update.
https://www.dropbox.com/

Facebook Messenger 215.3.0.13.211 is a security update.
https://www.messenger.com/desktop

FileZilla Client 3.67.1 resolves a confirmation dialog bug and updates library. This is not a security update.
https://filezilla-project.org/

Google Drive 95.0 doesn’t provide a detailed change log so should be treated as a security update.
https://drive.google.com/start

MeshCentral 1.1.27 resolves several bugs. This is not a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.7.00.19353 implements new virtualization behavior. This should be treated as a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 29.0.4 resolves dozens of bugs and updates dependencies. This is a security update.
https://nextcloud.com/

Omada Software Controller 5.14.26.1 resolves several bugs and implements new configuration and statistical options. This is not a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Pocketnet-Core 0.22.5 implements several network changes for privacy and security. This is a security update.
https://pocketnet.app/

Pocketnet-GUI 0.8.93 resolves several bugs. This is not a security update.
https://pocketnet.app/

Signal (Android) 7.13.3 adds landscape support. This is not a security update.
https://signal.org/android/apk/

Signal 7.19.1 resolves several bugs. This is not a security update.
https://signal.org/download/windows/

Syncthing 1.27.10 resolves a couple bugs. This is not a security update.
https://syncthing.net/

Telegram 5.3.2 resolves a crash bug. This is not a security update.
https://telegram.org/

Trillian 6.5.0.42 resolves almost a dozen bugs and updates emoji. This is not a security update.
https://www.trillian.im/

Zoom 6.1.6.43767 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

Grayjay 253 resolves several bugs. This is not a security update.
https://grayjay.app/index.html

3tene 4.0.8 resolves a couple cosmetic bugs. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.2.1 adds new compression options, EQ improvements and improves keyboard shortcuts, in addition to dozens of resolved bugs. This is not a security update.
https://www.bitwig.com/download/

darktable 4.8.1 resolves several bugs. This is not a security update.
https://www.darktable.org/

Plex Desktop 1.99.0.210 resolves sevveral bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.65.4.206 updates libraries. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.40.4.8679 improves TVDB support and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Lego Studio 5.6 resolves a stability bug. This is not a security update.
https://www.lego.com/en-us/ldd

Minecraft Server (Bedrock) 1.21.20.03 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Minecraft Server (Java) 1.21.1 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server

PS5 2024.723 adds option to share links to public games and resolves several bugs. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2024.07.17 resolves a couple bugs. This is not a security update.
https://store.steampowered.com/news/app/593110

SteamOS SteamDeck Update 2024.08.09 improves update engine and resolves over 20 bugs. This is not a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Acrobat Reader 24.002.21005 and 24.001.30159 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb24-57.html

Adobe Bridge 13.0.9 and 14.1.2 are security updates.
https://helpx.adobe.com/security/products/bridge/apsb24-59.html

Adobe Commerce 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, and 2.4.4-p10 are security updates.
https://helpx.adobe.com/security/products/magento/apsb24-61.html

Magento Open Source 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, and 2.4.4-p10 are security updates.
https://helpx.adobe.com/security/products/magento/apsb24-61.html

Adobe Dimension 4.0.2 is a security update.
https://helpx.adobe.com/security/products/dimension/apsb24-47.html

Adobe Illustrator 28.6 and 27.9.5 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb24-45.html

Adobe InCopy 19.5 and 18.5.3 are security updates.
https://helpx.adobe.com/security/products/incopy/apsb24-64.html

Adobe InDesign ID19.5 and ID18.5.3 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb24-56.html

Adobe Photoshop 24.7.4 and 25.11 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb24-49.html

Adobe Substance 3D Designer 14.0 is a security update.
https://helpx.adobe.com/security/products/substance3d_designer/apsb24-67.html

Adobe Substance 3D Sampler 4.5.1 is a security update.
https://helpx.adobe.com/security/products/substance3d-sampler/apsb24-65.html

Adobe Substance 3D Stager 3.0.3 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb24-60.html

Audacity 3.6.1 adds new themes, FFmpeg 7 support, new compressor, limiter, master effects, improved performance and resolves several bugs. This is not a security update.
https://www.audacityteam.org/download/

Calibre 7.16.0 is a security update.
https://calibre-ebook.com/

Kindle for PC 2.4.70946 doesn’t provide a change log so should be treated as a security update.
https://www.amazon.com/kindleforpc

LibreOffice Fresh 24.2.5 resolves over 80 bugs. This is a security update.
https://www.libreoffice.org/

Manager 24.8.11.1812 adds ability to send emails via HTTP and changes Freight-in behavior. This is not a security update.
https://www.manager.io/

Nextcloud Desktop 3.12.7 resolves several bugs. This should be treated as a security update.
https://nextcloud.com/

Notepad++ 8.6.9 improves installer and resolves over 25 bugs. This not a security update.
https://notepad-plus-plus.org/

PDF Candy Desktop 3.09 doesn’t provide a change log so should be treated as a security update.
https://pdfcandy.com/

QuickBooks Pro 2022 20240529-R16_30 doesn’t provide a change log so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

QuickBooks Pro 2023 20240529-R13_30 doesn’t provide a change log so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

Security Software Updates

One or more of these is likely to be of interest to most people.

.NET Runtime 8.0.8 is a security update.
https://dotnet.microsoft.com/en-us/download/dotnet

Chainsaw 2.9.2 improves amcache hive processing. This should be treated as a security update.
https://github.com/countercept/chainsaw

FSS 2024.8.12 doesn’t provide a detailed change log so should be treated as a security update.
https://www.bleepingcomputer.com/download/farbar-service-scanner/dl/62/

Java 8u421 is a security update.
https://www.java.com/en/download/manual.jsp

JShelter 0.19 weakens security implementation in order to comply with Manifest v3. This is not a security update.
https://jshelter.org/install/

Microsoft Edge Policy 2024.08.07 adds several new policies and obsoletes two. This is not a security update.
https://github.com/MicrosoftDocs/Edge-Enterprise/blob/public/edgeenterprise/microsoft-edge-policies.md

QubesOS 4.2.2 is a security update.
https://www.qubes-os.org/downloads/

RogueKiller 15.18.0 updates engine and theme platform, resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

SmartSniff 2.30 adds support for the SAPICS geo data. This is not a security update.
https://www.nirsoft.net/utils/smsniff.html

Stinger 13.0.0.155 adds new detections. This should be treated as a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

Tails 6.6 adds support for Dangerzone, updates libraries and resolves several bugs. This is a security update.
https://tails.net/install/download/index.en.html

uBlock Origin 1.59.0 resolves several bugs and improves perforamnce and reliability. This may be the last version to support Chromium-based browsers due to the Manifest v3 changes that limit much of the very capabilities that uBlock Origin requires. Time for Firefox.
https://github.com/gorhill/uBlock/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 30.2.2 resolves several bugs. This is not a security update.
https://obsproject.com/

SnagIt 24.2.1 improves video recorder, performance, automated installation and resolves several bugs. This is not a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.2.4 resolves several bugs and adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

Exact Audio Copy 1.8 resolves a metadata parsing problem. This is not a security update.
https://www.exactaudiocopy.de/en/

HandBrake 1.8.2 updates libraries and resolves several bugs. This is not a security update.
https://handbrake.fr/

StreamFab 6.1.9.3 improves compatibility and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 2.0.3.0 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

e-Sword 14.1 improves mobile integration and adds ability to convert Topic Notes to a Reference Book and export notes. This is not a security update.
https://www.e-sword.net/

Zotero 7.0 is a major update and adds several new features, performance improvements, cosmetic improvements and resolves dozens of bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.39 resolves a dozen bugs and disables the option to reset settings. This is a security update.
https://1password.com/downloads/

7-Zip 24.08 resolves several bugs. This is not a security update.
https://www.7-zip.org/

Beyond Compare 5.0.1.29877 resolves over a dozen bugs. This is not a security updte.
https://www.scootersoftware.com/download

Bitwarden 2024.7.3 improves secrets manager and provider portal controls, and adds vault item keys for each item. This is a security update.
https://bitwarden.com/

CCleaner 6.26.11169 resolves several bugs. This is not a security update.
https://www.ccleaner.com/

Dell OS Recovery Tool 2.4.0.7813 doesn’t provide a change log so should be treated as a security update.
https://www.dell.com/support/home/uk/en/ukbsdt1/drivers/osiso/recoverytool

DesktopOK 11.32.1 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

DMDE 4.2.0.814 adds Btrfs and large cluster NTFS support, increases file limits, and resolves several bugs. This is not a security update.
https://dmde.com/

dnGrep 4.2.46.0 resolves several bugs, improves display behavior, and updates libraries. This is a security update.
https://dngrep.github.io/

DriverView 1.51 adds support for Windows 11 24H2. This is not a security update.
https://www.nirsoft.net/utils/driverview.html

Eraser 6.2.0.2994 doesn’t provide a change log so should be treated as a security update.
https://eraser.heidi.ie/download/

Everything 1.4.1.1026 updates localization. This is not a security update.
https://www.voidtools.com/

Fing 3.7.0 resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

Free Virtual Serial Ports 6.03.00.1321 resolves several bugs. This is not a security update.
https://freevirtualserialports.com/

Git SCM 2.46.0 resolves dozens of bugs. This should be treated as a security update.
https://git-scm.com/

grepWin 2.1.5 resolves several bugs. This is not a security update.
https://github.com/stefankueng/grepWin/releases/latest

Homedale 2.12 improves cosmetics. This is not a security update.
https://www.the-sz.com/products/homedale/

HWiNFO 8.06 resolves several bugs and updates hardware support. This is not a security update.
https://www.hwinfo.com/download/

HWMonitor 1.54 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

Inkchip WIC 1.18 doesn’t provide a change log so should be treated as a security update.
https://inkchip.net/wic/

IsMyHdOK 3.99 resolves a couple bugs and improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

LessMSI 2.1.1 improves extraction behavior. This is not a security update.
https://lessmsi.activescott.com/

LiveTcpUdpWatch 1.55 adds custom context menu, new columns and resolves a clipboard bug. This is not a security update.
https://www.nirsoft.net/utils/live_tcp_udp_watch.html

MobileFileSearch 1.49 adds option to export all items. This is not a security update.
https://www.nirsoft.net/utils/mobile_device_file_search.html

NetworkOpenedFiles 1.63 adds number of open files to the tray tooltip. This is not a security update.
https://www.nirsoft.net/utils/network_opened_files.html

NTLite 2024.7.10001 resolves two crash bugs. This is not a security update.
https://www.ntlite.com/download/

PointerStick 6.41 updates language support and compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.83.0 resolves dozens of bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Process Monitor 4.01 adds process start timestamp and improves cosmetics. This is not a security update.
https://learn.microsoft.com/en-us/sysinternals/downloads/procmon

QuickSetDNS 1.36 adds an indicator in the tray tooltip for the current DNS service. This is not a security update.
https://www.nirsoft.net/utils/quick_set_dns.html

RoboForm 9.6.2 resolves several bugs. This is not a security update.
https://www.roboform.com/

ScreenConnect 24.2.8.8987 resolves several bugs, including those that broke instances and prevented interacting with older devices. This is not a security update.
https://screenconnect.connectwise.com/download

Sysmon 15.15 resolves a stability bug. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

TraceRouteOK 3.44 updates language support and compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK

WinGet 1.8.1911 improves compatibility. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinScan2PDF 8.91 updates language support and compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 4.20 improves performance and resolves several bugs. This is not a security update.
https://www.diskanalyzer.com/

Developer Updates

These are unlikely to be of interest to most people.

ADB 35.0.2 resolves several bugs. This is not a security update.
https://developer.android.com/studio/releases/platform-tools

Android Studio 2024.1.1.13 improves compatibility. This is not a security update.
https://developer.android.com/studio

cx_Freeze 7.2 resolves dozens of bugs and updates libraries. This is not a security update.
https://cx-freeze.readthedocs.io/en/latest/index.html

DB Browser for SQLite 3.13.0 adds new features including tab support, updates libraries, and resolves several bugs. This is a security update.
https://sqlitebrowser.org/

GameMaker Studio 2024.06.2.162 resolves a crash bug. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.4.208 resolves several bugs. This is not a security update.
https://gdevelop.io/download

GitHub Desktop 3.4.3 resolves several bugs. This is not a security update.
https://desktop.github.com/

Go 1.23.0 introduces telemetry, improves env, tidy, and list commands, as well as modifying behavior for several modules and libraries. This is not a security update.
https://go.dev/

Inno Setup 6.3.3 improves support for ASLR. This should be treated as a security update.
https://www.jrsoftware.org/isdl.php

Node.js 20.16.0 updates libraries and resolves dozens of bugs. This should be treated as a security update.
https://nodejs.org/en/

Node.js 22.6.0 updates libraries and resolves dozens of bugs. This should be treated as a security update.
https://nodejs.org/en/

Python 3.12.5 resolves dozens of bugs. This is a security update.
https://www.python.org/downloads/windows/

SQLite 3.46.1 improves tokenization, query planner, error reporting and resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.92.1 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.42.1 resolves several bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.0.20 improves compatibility and resolves several bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Invision Community 4.7.18 resolves dozens of bugs. This is not a security update.
https://invisioncommunity.com/

Piwigo 14.5.0 resolves several bugs. This is not a security update.
https://piwigo.org/

WordPress 6.6.1 resolves dozens of bugs and adds many new features and cosmetic controls. This is not a security update.
https://wordpress.org/

Autoptimize 3.1.12 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/autoptimize/

BuddyPress 14.0.0 resolves dozens of bugs. This is not a security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 5.9.8 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.10.2 improves compatibility. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers

Multisite Enhancements 1.7.1 improves stability. This is not a security update.
https://wordpress.org/extend/plugins/multisite-enhancements/

Redirection 5.5.0 adds support for multiple URL and WP page type redirects. This is not a security update.
https://wordpress.org/extend/plugins/redirection/

My Sticky Bar 2.7.5 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

Sucuri Security 1.9.2 improves cosmetics. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

WPBakery 7.8 resolves several bugs. This is a security update.
https://wpbakery.com/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2024-06-11

Posted on June 11, 2024 by Shawn K. Hall

Welcome back, Folks!

Today is Patch Tuesday for June, 2024.

There were 460+ major hacks, and over 270 application updates this month.
It’s an average month, with about 2.5 GB of updates for most users.

This Month in Technology

4LEAF, Inc, A123Systems, Abbott, AbbVie Inc, ABN Amro, ABS-CBN Broadcasting, Absolute Telecom, AC Financial, AC Propulsion, Inc, Acadia Pharmaceuticals Inc, Access Sports Medicine & Orthopaedics, Accounting Professionals LLC Price Breazeale Chastang, ADCOM911, Adobe Acrobat Reader, Advance Auto Parts, Advance Press, Adventist Health Tulare, Affiliated Dermatologists, Agrani Bank, AirAsia Group, Akdenizchemson, Al-Rajhi Bank, Allied Mechanical Services Inc, Allied Telesis, ALN Medical Management, ALO diamonds, Aloft, Alpha Capital Group, Amazon, AmerisourceBergen Specialty Group, Amgen Inc, Amsterdam Schools, Anchorage Daily News, Anderson Mikos Architects, Android, Archi Hives, Architecture Lejeune Giovanelli, Ardenbrook, ARRL, Ascension Healthcare Network, Association of California School Administrators, Asst Rhodense, Astagiudiziaria, Aston Villa, Astra Daihatsu Motor, Atlas Oil, Atlassian Confluence, Audubon Nature Institute, Ausgrid, Aussizz Group, Avelina, Ayoub Associates CPA Firm, B&G Foods, Banco de Crédito del Perú, Barclays, Bausch Health Companies Inc, Bayer Corporation, BBC Pension Scheme, Berge Bulk, Billericay School, Birmingham Children’s Trust, BlockTower Capital, Bluewater Health, BNB Chain, BreachForums, BreingAir, Brett Slater Solicitors, Brick Court Chambers, Bring Me the Horizon’s website, Bristol Myers Squibb, British Columbia Government, Brockton Area Multi-Services, Brovedani Group, Bruno generators, Bulgarian Ports Infrastructure Company, Café Soluble, California Highway Patrol, California Northstate University, Call 4 Health, Inc, Catch News, CDU, Cencora (11 big pharma companies), Center Line schools, Central Contra Costa Transit Authority, CentroMed, Centurion University, Check Point VPN, Chicago Fire Football Club, Christie’s, Cinterion Modems, Cisco Webex, City of Clarksville, City of Helsinki, City of St. Cloud, Clevo, CoinGecko, College Ahuntsic, Columbus Regional Healthcare System, Comwave Networks, Continuing Healthcare Solutions, Cooler Master, Coplosa, Corr Corr, Corse GSM, Cortina Watch, Costa Edutainment SpA, Cox WiFi routers, Crandall ISD, Credit Central, Crescent Point Energy, Cressex Community School, Crooker, Crossroads Equipment Lease & Finance, LLC, Cryptonary, Cushman Contracting Corporation, Cylance, D-Link EXO AX4800 routers, Daniel E. Fitzgerald, CPA, Decathlon, Delano Adult School, Dendreon Pharmaceuticals LLC, DFINITY, DG3 North America, Inc, DGT traffic authority, Digital Pix & Composites, Discovery Insure, Disney, Dkhoon Emirates, DMM, Dohman, Akerlund & Eddy, Dollmar, Doral, Florida, Dota2, DreamWall, Drive Sally, LLC, Driver Group, DRMS, Dubai government, Dynasafe, E-T-A, Easterseals Central Illinois, Eden Project Ltd, Egyptian Universities, Eigen crypto, Electronic Arts, Elk Grove Unified School District, Elmhurst Group, Elutia, EmailGPT, Embellir, Endo Pharmaceuticals Inc, Ernest Health Facilities, ES Pack Euro, Especialistas Contacto Directo, EU Parliament, Everbridge, Ewing Marion Kauffman School, Excel Security Corp, Experis Technology Group, Facebook, Family Guardian, Faultless Brands, FEI Systems, Fic Expertise, Financial Business and Consumer Solutions (FBCS), Fincasrevuelta, First American, FIRST Heritage Co-operative Credit Union, First Nations Health Authority, First Priority Restoration, Firstmac, Fiskars, Fluent Bit, Form I-9 Compliance, Formosa Plastics, Foxit PDF Reader, FPL Food, France Solar, Frontier Communications, Frotcom International, Fulcrum, Gala Games, Gantan Beauty Industry, Gapbuster Worldwide Pty Ltd, GE HealthCare ultrasound devices, Genentech, Inc, Georgia University System, Gestion Kronos, GitLab, GlaxoSmithKline Patient Health, Google (thousands of times), Google Chrome, Google Document AI Warehouse, Granville Food Care Limited, Graphic Solutions Group Inc, Gravetye Manor, Greater Amsterdam School District, Grupo Cadarso, Guardian Analytics, Guardian Childcare Victoria, Gulp, Hamburg Airport, Hatari Electric Co, HawkEye, Hedbergs, Heineken, Helapet Ltd, Heron Therapeutics, Inc, Hit Promotional Products, HopSkipDrive, Hotel Kiosks, HSBC, Hugging Face Spaces, Iberdrola, IBM Cloud, IBM Neural Compressor AI, Illinois Secretary of State, Incyte Corporation, Indigo ENT Group, Interactive Brokers, Inventum Øst, Iranian Hajj, Iranian Pilgrims, Iress, Isaacs Odinocki, Iseto Corporation, Islamabad’s Safe City Authority, Israel-made industrial devices, Israeli Government and Military Infrastructure, ISTA International GmbH, Ivanti EPMM, IZOMAT Praha, J & N Stone, JAVS Courtroom Recording Software, Johnson & Johnson Patient Assistance Foundation, Inc, Johnson & Johnson Services, Inc, Jordano’s Inc, Jumbo Group, Kaiser Permanente, Keytronic, Klein ISD, Knowmad Mood, Kyber Post-Quantum Key Encapsulation Mechanism (KEM), Lactanet, Lane Gorman Trubitt, Lash Group, Laxmi Capital, Lee Shau Kee School of Creativity, LEMKEN, LenelS2 NetBox, Les Miroirs St Antoine Inc, Levin Porter Associates, Lintas Nusa, LivaNova, Live Nation, London Drugs, London Hospitals, Los Angeles Department of Mental Health (LACDMH), Los Angeles Unified School District (LAUSD), M2EConsulting Engineers, MagicLand, MAH Machine, Mainline Health Systems, Malaysia’s Railway Assets Corporation (RAC), Malone & Co, Malouf Companies, Manurewa Marae, NZ census, Marathon Pharmaceuticals, LLC, Marigin, Mariposa Landscapes Inc, Matusima, McLean Hospital, MediSecure, medQ, Inc, MF Group, Microsoft Exchange Server, Microsoft India, Microsoft Quick Assist, Midwest Covenant Home, Morton Williams, My Daily Choice, Inc, Myersville, Maryland, Mālama I Ke Ola Health Center, National Records of Scotland, Native American Health Center, NATO, Natsume Tax Accountant Corporation, Navvis & Company, LLC, Neovia Company, Netflix Genie, New Boston Dental Care, New Hampshire Public Radio, New York Times, Newfoundland Broadcasting Company Limited, Newman Ferrara, Nidec Motor Corporation, Nissan North America, Inc, Normie Meme Coin, North Texas Municipal Water District, Northeast Rehabilitation Hospital Network, Northern Minerals, Novartis Pharmaceuticals Corporation, Ntv, OakBend Medical, OmniVision, OneVue, OpenSea, Oracle WebLogic Server, Osaka Motorcycle Business Cooperative, OTR, Otsuka America Pharmaceutical, Inc, Oxford Global Resources, LLC, PAN-OS, Panasonic Australia, PandaBuy, Panorama Eyecare, Pantana CPA, Patriot Mobile, Patties Foods, pcTattletale, Peak Design, Pendle Token, PepsiCo, Pezesha, Pfizer Inc, Philippine National Police (PNP), Philips Respironics, PHP, Pope & Conner Consulting, Inc, Providence Hospital, PSG Banatski Dvor, Pulse Connect Secure VPN, QNAP NAS, QNAP QTS, Qualitas, QuoteWizard, R3 Education Inc, Rayner Surgical Inc, RDI-USA, Real Madrid CF, Red Bull, Red Cross, Regeneron Pharmaceuticals, Inc, Regional Obstetrical Consultants, Rex Signature Services, LLC, Richland, Washington, Rio Technology, Riyadh Airport, Robinsons Land, Robson, Rockford Public Schools, Rockwell Automation ICS, Royal Star & Garter, Räddningstjänsten Vä stra Blekinge, Samco, Sandoz Inc, Sanok Rubber Company Spólka Akcyjna, Santa Barbara Systems, Santander, Sav-Rx, Scanda, Schuette Metals, Science Po Paris, Seattle Public Library, Semicore Equipment, Service public de Wallonie, Servicio Móvil, Shirasaki, Shore Regional High School District, Sigmund Espeland AS, SLB Transit Inc, Smith and Caughey’s, Snchez-Betances Sifre & Muñoz-Noya, Snowflake, Solana Meme Coin, SonicWALL SSL-VPN, Sonne Finance, Southwark hospitals, Specialty Market Managers, Sree Hotels, SSI World, St. Landry Parish School, State Grid Corporation of China (SGCC), Sterling Transportation Services, Sumitomo Pharma America, Inc, Sumo, Superior Air-Ground Ambulance Service, Sysmex America, Takeda Pharmaceuticals USA, Inc, Talalay Global, Talley Group, Tamil Nadu, Tech in Asia, Telangana Police, Telefónica, Tesla’s Ultra-Wideband, Thayer Academy, The Egyptian-Sudanese Company, The Kelly Group, ThinkPHP, Ticketek Australia, Ticketmaster, Tietoevry, TikTok, Tinyproxy, Tobii Dynavox, Toshiba America, Town of Westlock, Toyota Philippines, TP-Link Archer C5400X, TRC Talent Solutions, Trib Total Media, TriLiteral, Trionfo Solutions, TruGreen, TSCOP App, UAE Ministry of Education, UK Armed Forces, United Urology Group, Universidad Nacional de Entre Ríos, University of Chicago Medical Center, University of Delhi, University of Hyderabad, University of Siena, US Environmental Protection Agency (EPA), Vannguard Utility Partners, Vasitam, Veeam Backup Enterprise Manager, Velocore, Victoria Eye Center, Victorian Freight Specialists, Vietnam Post, Visa Lighting, VIT Bhopal University, VWholesaleTour, Walmart pension plan, Walser Automotive Group, Walton County, Watt Carmicheal, WD Associates, Wealth Depot LLC, WebTPA, Welsh Rugby Union, Western Dovetail, Western Saw Inc, Western Sydney University, William S Hein & Co, Windows Defender, WIS Sicherheit, WordPress, WP Copymatic, WP Country State City Dropdown CF7 Plugin, WP Dessky Snippets, WP Easy Listing Directories, WP Fluent Forms Contact Form, WP Hash Form Drag & Drop Form Builder, WP LiteSpeed Cache, WP Meta SEO, WP Pie Register, WP Slider Revolution, WP Statistics, WP UserPro Plugin, WP Web Directory Free, WP WooCommerce, WPZOOM, XLink Bitcoin Bridge, Zuber Gardner CPA, and Zyxel NAS have reported hacking or compromises this month.

ARRL, TRAM Barcelona, Internet Archive, Queen Alia International Airport, LastPass, and Copilot have suffered from outages this month.

According to a recent study from Kaspersky, 59% of multi-site business experience monthly outages.

Last months updates broke Windows Taskbar, File Explorer, Windows Server 2019 updates, and Microsoft Outlook again, of course.

AI bots are ridiculously easy to convince to share sensitive information.

Apple is releasing a new password manager for macOS, iOS and iPadOS. But…to get an idea of how concerned Apple is about security, they’ve recently exposed that Wi-Fi on their devices can be used to geolocate any device around the globe.

Google is making it harder and harder to get help.

ICQ, my favorite messaging app from the 90s, has shut down after 28 years.

VBscript is on its deathbed.

FTX paid off whistleblowers.

Now for the good news:

Microsoft has reversed course on Windows Recall and is now making it “optional” even though it isn’t actually resolving most of the security issues or privacy risks.

Let’s Get Busy

Patch Tuesday is about average this month. The typical computer should see roughly 2.5 GB in updates today. Let’s get started.

Microsoft released updates to address 58 vulnerabilities in Azure Data Science Virtual Machines, Azure File Sync, Azure Monitor, Azure SDK, Azure Storage Library, Chrome, Dynamics Business Central, GitHub, Microsoft Dynamics, Microsoft Edge, Microsoft Office, Microsoft Office Outlook, Microsoft Office SharePoint, Microsoft Office Word, Microsoft Streaming Service, Microsoft WDAC OLE DB provider for SQL, Microsoft Windows, Microsoft Windows Speech, Visual Studio, Windows Cloud Files Mini Filter Driver, Windows Container Manager Service, Windows Cryptographic Services, Windows DHCP Server, Windows Distributed File System (DFS), Windows Event Logging Service, Windows Kernel, Windows Kernel-Mode Drivers, Windows Link Layer Topology Discovery Protocol, Windows NT OS Kernel, Windows Perception Service, Windows Remote Access Connection Manager, Windows Routing and Remote Access Service (RRAS), Windows Server Service, Windows Standards-Based Storage Management Service, Windows Storage, Windows Themes, Windows Wi-Fi Driver, Windows Win32 Kernel Subsystem, Windows Win32K – GRFX, Winlogon, and MSRT. This includes security updates. A reboot is required.

Apple released updates for tvOS 17.5.1, iOS 17.5.1, iPadOS 17.5.1, and visionOS 1.2. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 17.5.1 is a security update. Use Settings, General, Software Update to install the most current update.

iPadOS 17.5.1 is a security update. Use Settings, General, Software Update to install the most current update.

tvOS 17.5.1 is a security update. Use System, Software Update to install the most current version.

visionOS 1.2 is a security update. Use Settings, General, Software Update to install the most current version.

Google Chrome OS 125.0.6422.169 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 24.5.1 improves stability and resolves several bugs. This is not a security update.
https://www.amd.com/en/support

Nvidia Driver 475.06 is a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Samsung DeX 2.4.1.23 doesn’t provide a change log so should be treated as a security update.
https://www.samsung.com/us/apps/dex/

UniFi airMAX NanoStation 5AC Loco 8.7.13 resolves several bugs. This is not a security update.
https://www.ui.com/download/software/loco5ac

UniFi Network Server 8.2.93 adds ACL rules, DNS records, MLO, BGP and Inspection support. This is not a security update.
https://www.ui.com/download/releases/network-server

Wacom Driver 6.4.6-2 adds support for newer hardware, improved reliability, and resolves several bugs. This is not a security update.
https://www.wacom.com/en-us/support/product-support/drivers

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.66.118 is a security update.
https://brave.com/

Firefox 127.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 115.12.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 125.0.6422.141 is a security update.
https://www.google.com/chrome/

Microsoft Edge 125.0.2535.92 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Vivaldi 6.7.3329.39 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Spark 3.16.2.75403 adds calendar support. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.16.2.75440 adds calendar support. This is not a security update.
https://sparkmailapp.com/

Thunderbird 115.11.1 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk (macOS) 8.1.0 improves performance and resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

Facebook Messenger 213.0.0.22.228 is a security update.
https://www.messenger.com/download

Microsoft Teams 1.7.00.13456 resolves several bugs and improves user controls. This is not a security update.
https://teams.microsoft.com/downloads

Mumble 1.5.634 adds over a dozen new features and resolves several bugs. This should be treated as a security update.
https://www.mumble.info/

Signal 7.11.1 resolves several bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.8.1 doesn’t provide a detailed change log so should be treated as a security update.
https://signal.org/android/apk/

Telegram 5.1.5 improves stability and resolves several bugs. This is not a security update.
https://telegram.org/

Telegram (Android) 10.13.1 doesn’t provide a detailed change log so should be treated as a security update.
https://telegram.org/apps

Tigase Server 8.4.0 adds RBL support, portable export format, improved user management and resolves dozens of bugs. This should be treated as a security update.
https://github.com/tigase/tigase-server/releases/latest

curl 8.8.0 resolves over 200 bugs. This is not a security update.
https://curl.haxx.se/windows/

Dropbox 200.4.7134 resolves several bugs. This is not a security update.
https://www.dropbox.com/

MeshCentral 1.1.23 resolves dozens of bugs. This should be treated as a security update.
https://meshcentral.com/info/downloads.html

Nextcloud Server 29.0.2 resolves over a dozen bugs. This should be treated as a security update.
https://nextcloud.com/

Omada Software Controller 5.14.20.9 adds several new filters, features and controls. This is not a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Syncthing 1.27.8 resolves a couple bugs. This is not a security update.
https://syncthing.net/

Zoom 6.0.11.39959 is a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.5 improves cosmetics and resolves several bugs. This is not a security update.
https://en.3tene.com/

Grayjay 244 improves compatibility and resolves several bugs.
https://grayjay.app/index.html

Plex Desktop 1.94.1.155 doesn’t provide a detailed change log so should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.62.1.152 doesn’t provide a detailed change log so should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-app

VLC Media Player 3.0.21 improves hardware compatibility and resolves several bugs. This is a security update.
https://www.videolan.org/vlc/

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Java) 1.20.6 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server

Nintendo Switch 18.1.0 removes X/Twitter and social media integration and improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 2024.522 improves performance and stability and resolves several bugs. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2024-05-21 resolves several bugs. This is not a security update.
https://store.steampowered.com/news/app/593110

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Acrobat Android 24.5.0.33694 is a security update.
https://helpx.adobe.com/security/products/acrobat-android/apsb24-50.html

Adobe Audition 23.6.6 and 24.4.1 are security updates.
https://helpx.adobe.com/security/products/audition/apsb24-32.html

Adobe ColdFusion 2021.14 and 2023.8 are security updates.
https://helpx.adobe.com/security/products/coldfusion/apsb24-41.html

Adobe Commerce 2.4.0-ext-8, 2.4.1-ext-8, 2.4.2-ext-8, 2.4.3-ext-8, 2.4.4-p9, 2.4.5-p8, 2.4.6-p6 and 2.4.7-p1 are security updates.
https://helpx.adobe.com/security/products/magento/apsb24-40.html

Adobe Commerce Webhooks Plugin 1.5.0 is a security update.
https://helpx.adobe.com/security/products/magento/apsb24-40.html

Adobe Creative Cloud Desktop 6.2.0.554 is a security update.
https://helpx.adobe.com/security/products/creative-cloud/apsb24-44.html

Adobe Experience Manager 2024.5 and 6.5.21 are security updates.
https://helpx.adobe.com/security/products/experience-manager/apsb24-28.html

Adobe FrameMaker Publishing Server 2022.3 is a security update.
https://helpx.adobe.com/security/products/framemaker-publishing-server/apsb24-38.html

Adobe Media Encoder 23.6.6 and 24.4.1 are security updates.
https://helpx.adobe.com/security/products/media-encoder/apsb24-34.html

Adobe Photoshop 24.7.4 and 25.9 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb24-27.html

Adobe Substance 3D Stager 3.0.2 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb24-43.html

Calibre 7.12.0 improves conversion, media support and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Columns++ 1.1.2 improves performance, stability, and reliability, and adds a Timestamps and resolves a couple bugs. This is not a security update.
https://github.com/Coises/ColumnsPlusPlus

Ghostscript 10.03.1 doesn’t provide a change log so should be treated as a security update.
https://www.ghostscript.com/releases/gsdnld.html

Kdenlive 24.05.0 reimplements audio capture, adds group effects and automatic subtitle translation, performance improvements and resolves several bugs. This is not a security update.
https://kdenlive.org/

LibreOffice Fresh 24.2.4 resolves over 70 bugs. This is not a security update.
https://www.libreoffice.org/

Magento Open Source 2.3.7-p4-ext-8, 2.4.4-p9, 2.4.5-p8, 2.4.6-p6 and 2.4.7-p1 are security updates.
https://helpx.adobe.com/security/products/magento/apsb24-40.html

Manager 24.6.11.1637 resolves several bugs but does not have current release notes so should be treated as a security update.
https://www.manager.io/

Notepad++ 8.6.8 resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

QuickBooks Pro 2022 20240529-R16_8 resolves several bugs. This should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

QuickBooks Pro 2023 20240529-R13_6 doesn’t provide a detailted change log. This should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

Security Software Updates

One or more of these is likely to be of interest to most people.

KeePass 2.57 improves privacy and security or
https://keepass.info/

OpenSSL 3.3.1 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN (macOS) 4.3.0 improves stability and resolves several bugs. This is not a security update.
https://protonvpn.com/download

RogueKiller 15.17.0 improves detection and resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Stinger 13.0.0.127 adds new detections and improves others. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

Tails 6.3 is a security update.
https://tails.net/install/download/index.en.html

uBlock Origin 1.58.0 resolves over a dozen bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

YARA 4.5.1 resolves several bugs. This is not a security update.
https://github.com/VirusTotal/yara/

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 24.1.4 improves compression, video combine, and resolves several bugs. This is not a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.1.9 improves subtitle support and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

HandBrake 1.8.0 updates libraries and resolves dozens of bugs. This is a security update.
https://handbrake.fr/

IsoBuster 5.4.1 adds support for new formats and resolves several bugs. This is not a security update.
https://www.isobuster.com/download.php

MakeMKV 1.17.7 updates license date. This is not a security update.
https://www.makemkv.com/download/

PDF Creator 5.2.2 updates libraries. This is a security update.
https://www.pdfforge.org/pdfcreator

StreamFab 6.1.8.2 improves reliability, compatibility, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 2.0.2.3 improves performance, quality, and AI integration. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.34 resolves over a dozen bugs. This is not a security update.
https://1password.com/downloads/

7-Zip 24.06 improves reliability and resolves several bugs. This is not a security update.
https://www.7-zip.org/

Agent Ransack 2022.3435 resolves a crash bug. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

Bitcoin 27.0 resolves several bugs and improves performance. This is not a security update.
https://bitcoin.org/en/download

Bitwarden 2024.5.0 adds organization item cloning and begins the manifest v3 compatibility roll-out. This is not a security update.
https://bitwarden.com/

CCleaner 6.24.11060 improves cleanup and resolves several bugs. This is not a security update.
https://www.ccleaner.com/

DesktopOK 11.24 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.2.6.0 adds several new features and updates libraries. This is a security update.
https://dngrep.github.io/

email-oauth2-proxy 2024-05-25 adds JWT and resolves a python compatibility bug. This is not a security update.
https://github.com/simonrob/email-oauth2-proxy

Etcher 1.19.21 resolves dependency bugs. This is not a security update.
https://www.balena.io/etcher/

Fido 1.56 adds 24H1 ISO UEFI support. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3435 resolves a crash bug. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Fing 3.6.3 improves compatibility and resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

FoneTool 2.7.0 resolves several bugs. This is not a security update.
https://www.fonetool.com/download.html

Free Virtual Serial Ports 6.01.00.1309 adds several more controls. This is not a security update.
https://freevirtualserialports.com/

Git SCM 2.45.2 is a security update.
https://git-scm.com/

Go 1.22.4 is a security update.
https://go.dev/

GoodSync 12.6.9 resolves several bugs. This is not a security update.
https://www.goodsync.com/

grepWin 2.1.1 resolves several bugs. This is not a security update.
https://github.com/stefankueng/grepWin/releases/latest

GUIPropView 1.30 adds two new action commands. This is not a security update.
https://www.nirsoft.net/utils/gui_prop_view.html

NTLite 2024.5.9946 resolves several bugs and improves compatibility. This is not a security update.
https://www.ntlite.com/download/

osquery 5.12.2 is a security update.
https://osquery.io/downloads

PowerToys 0.81.1 resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

ProcDump 3.3 for Linux improves container support. This is not a security update.
https://github.com/Sysinternals/ProcDump-for-Linux

Process Explorer 17.06 resolves several bugs. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/process-explorer

RoboForm 9.6.1 resolves several bugs. This is not a security update.
https://www.roboform.com/

Rufus 4.5 updates libraries, adds UEFI validation, and resolves several bugs. This is a security update.
https://rufus.ie/en_US/

ScreenConnect 24.1.9.8915 improves compatibility, reliability, and stability, and resolves several bugs. This should be treated as a security update.
https://screenconnect.connectwise.com/download

SetUserFTA 1.8.1 implements a workaround for the new UCPD “security feature”. This is not a security update.
https://kolbi.cz/blog/2017/10/25/setuserfta-userchoice-hash-defeated-set-file-type-associations-per-user/

Ventoy 1.0.99 updates EFI binaries and resolves a couple bugs. This is not a security update.
https://www.ventoy.net/en/index.html

WinRAR 7.01 resolves several bugs. This is not a security update.
https://www.rarlab.com/

WizFile 3.10 adds include and exclude filters, adds more feature controls, and resolves several bugs. This is not a security update.
https://antibody-software.com/wizfile/

Developer Updates

These are unlikely to be of interest to most people.

.NET Runtime 8.0.6 is a security update.
https://dotnet.microsoft.com/en-us/download/dotnet

Android Studio 2023.3.1.20 is a security update.
https://developer.android.com/studio

AutoHotkey 2.0.17 resolves several bugs. This is not a security update.
https://www.autohotkey.com/download/

cx_Freeze 7.1 updates libraries and resolves dozens of bugs. This is not a security update.
https://cx-freeze.readthedocs.io/en/latest/index.html

GitHub Desktop 3.4.1 resolves several bugs. This is not a security update.
https://desktop.github.com/

Inno Setup 6.3.1 improves compatibility and resolves dozens of bugs. This version also removes support for older operating systems. This is not a security update.
https://www.jrsoftware.org/isdl.php

Microsoft Visual C++ 2022 Redistributable 14.40.33810.0 doesn’t provide a change log so should be treated as a security update.
https://learn.microsoft.com/en-us/cpp/windows/latest-supported-vc-redist

Node.js 18.20.3 updates dependencies and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Node.js 20.14.0 updates dependencies and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Node.js 22.2.0 updates dependencies and resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

Python 3.12.4 is a security update.
https://www.python.org/downloads/windows/

SQLite 3.46.0 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.90 adds several new features. This is not a security update.
https://code.visualstudio.com/

Web Package Updates

These are likely to be of interest only to web developers.

HumHub 1.15.6 resolves several bugs. This is not a security update.
https://www.humhub.com/en

Invision Community 4.7.17 resolves dozens of bugs. This is not a security update.
https://invisioncommunity.com/

Joomla 5.1.1 resolves dozens of bugs. This is not a security update.
https://www.joomla.org/

ownCloud Client 5.3.0.13987 resolves several bugs. This is not a security update.
https://owncloud.com/desktop-app/

WordPress 6.5.4 resolves several bugs. This is not a security update.
https://wordpress.org/

BuddyPress 12.5.1 is a security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 5.9.5 is a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Multisite Enhancements 1.7.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/multisite-enhancements/

Social Post Feed 4.2.5 resolves a couple menu bugs. This is not a security update.
https://wordpress.org/extend/plugins/custom-facebook-feed/

WooCommerce 8.9.2 is a security update.
https://wordpress.org/extend/plugins/woocommerce/

WPBakery 7.7 resolves several bugs. This is a security update.
https://wpbakery.com/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

SaferPC

Free security and virus information

Tag Archives: Git SCM

Updates 2024-08-13

This Month in Technology

Let’s Get Busy

Important Notes

Driver Updates

Browser Updates

Email Updates

Internet Updates

Media Updates

Game Updates

Office Updates

Security Software Updates

Capture Updates

Converter Updates

Education updates

Utility Updates

Developer Updates

Virtual Machine Updates

Web Package Updates

Updates 2024-06-11

This Month in Technology

Now for the good news:

Let’s Get Busy

Important Notes

Driver Updates

Browser Updates

Email Updates

Internet Updates

Media Updates

Game Updates

Office Updates

Security Software Updates

Capture Updates

Converter Updates

Utility Updates

Developer Updates

Web Package Updates