Updates 2020-02-20

Welcome back, Folks!

It’s not Patch Tuesday, but security updates from Google, Mozilla, Apple and Adobe have triggered an out-of-cycle update.

This Month Week in Technology

According to one of Tumblr’s engineers, Apple’s iOS is adware.

Even great computers are no match for the human brain in perceiving what the typical human consider obvious. Exploiting this fact, evildoers are extorting Google Adsense users by threatening to fraudulently click ads in violation of the Adsense terms unless they get paid off.

If your site is still running an older version of TLS or SSL it’s about to get spanked by the browsers and search engines. Upgrade your HTTPS security policies to use only the latest methods (even if older devices can no longer visit your site).

This month brings even more Blutooth design and implementation vulnerabilities, and reassurance that keeping your mouth shut may eventually pay off, a relatively minor bug in Firefox allows CSS to be abused to (slowly) extract data from secure sites, and a change to the CCPA (California Consumer Privacy Act) now allows business to keep certain information you’ve requested to be removed so they can…prove…it was…removed…huh? LOL

Finally, a scientific study demonstrates that sound-bite socialization and catch-phrase culture have ruined our ability to have an educated conversation. The real question should be, is anyone surprised?

Let’s Get Busy

The typical computer should see approximately 600 MB of updates. Let’s get started.

watchOS 6.1.3 and 5.3.5 are security updates. Use your updated iPhone to install the most current version through the Watch app.
https://support.apple.com/en-us/HT204641

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Logitech Options 8.10.84 adds support for new hardware and resolves several bugs. This is not a security update.
https://www.logitech.com/en-us/product/options

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 80.0.3987.116 is a security update. Use Menu, Help, About to install the current version.

Firefox 73.0.1 resolves several crash bugs. This is not a security update. Use Menu, Help, About to install the current version.

Vivaldi 2.11.1811.38 is a security update. Use Menu, Help, About to install the current version.

Internet Updates

One or more of these are likely to be of interest to everyone.

FreeFileSync 10.20 adds email notification support, HTML logging, sync error detection, and more. This is not a security update.
https://www.freefilesync.org/download.php

IPNetInfo 1.95 adds improved command-line support. This is not a security update.
https://www.nirsoft.net/utils/ipnetinfo.html

WinSCP 5.17 resolves several bugs and adds new features. This is not a security update.
https://winscp.net/eng/index.php

Media Updates

These are unlikely to be of interest to most people.

MyPaint 2.0.0 is a major new update with new layer and compositing features, new brush controls, and dozens more. This is not a security update.
http://mypaint.org/downloads/

Picard 2.3 resolves dozens of bugs and improves reliability. This is not a security update.
https://picard.musicbrainz.org/

Game Updates

These are unlikely to be of interest to most people.

Steam 2020.02.12 resolves several bugs. This is not a security update.

Office Updates

One or more of these are likely to be of interest to most people.

LibreOffice Still 6.3.5 resolves about 85, including stability and reliability fixes. This is not a security update.
https://www.libreoffice.org/

Paint.net 4.2.10 resolves several bugs, notably with those using MSI deployment (yay!). This is not a security update.
https://www.getpaint.net/

Adobe Media Encoder 14.0.2 is a security update.
https://helpx.adobe.com/security/products/media-encoder/apsb20-10.html

Adobe After Effects 17.0.3 is a security update.
https://helpx.adobe.com/security/products/after_effects/apsb20-09.html

Adobe FrameMaker 2019.0.5 resolves several bugs. This is not a security update.
64-bit: https://supportdownloads.adobe.com/detail.jsp?ftpID=6851
32-bit: https://supportdownloads.adobe.com/detail.jsp?ftpID=6849

Capture Updates

These are unlikely to be of interest to most people.

ScreenToGif 2.20.3 resolves a compatibility bug. This is not a security update.
https://www.fosshub.com/ScreenToGif.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 11.0.7.4 adds support for new encodings and resolves a crash bug. This is not a security update.
https://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

RoboForm 8.6.7 resolves several bugs and improves compatibility. This is not a security update.
https://12pd.com/click?rf

Cygwin 3.1.4 resolves a couple bugs and improves compatibility with symlinks and junctions. This is not a security update.
https://cygwin.com/

Etcher 1.5.79 improves user experience. This is not a security update.
https://www.balena.io/etcher/

GoodSync 10.10.24 resolves several bugs. This is not a security update.
https://12pd.com/click?goodsync

PointerStick 3.81 resolves several bugs and improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

Developer Updates

These are unlikely to be of interest to most people.

Node.js 13.9.0 resolves over 200 issues. This is not a security update.
https://nodejs.org/en/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 6.1.4-136177 resolves several bugs and improves EFI support. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Nextcloud Server 18.0.1 resolves dozens of bugs. This is not a security update.
https://nextcloud.com/

HumHub 1.4.1 resolves several bugs. This is not a security update.
https://www.humhub.com/en/download

myStickymenu 2.3.5 updates license rates and terms. This is not a security update.

Postie 1.9.43 begins the migration of shortcodes into the main module. This is not a security update.

Raw HTML 1.6.2 resolves a compatibility bug. This is not a security update.

Redirection 4.7 adds domain relocation with exceptions, site aliases, www/wwwithout controls, and content-type. This is not a security update.

NextScripts Social Networks Auto-Poster 4.3.12 improves Blogger and Facebook compatibility. This is not a security update.

Sucuri Security 1.8.24 resolves two bugs. This is not a security update.

WooCommerce 3.9.2 resolves several bugs. This is a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2020-02-11

Welcome back, Folks!

Today is Patch Tuesday for February 2020.

Microsoft blinked and released three updates to Windows 7 this month, however two of the issues that were resolved were actually caused by their EOL updates released last month. It’s no longer trustworthy, so do not let Windows 7 touch the Internet!

Windows 7 is officially end-of-life (EOL). If you’re still running it, shame on you, and if you are running a licensed version of Windows 7 or 8 you can still upgrade to Windows 10 and have a supported version of Windows for the foreseeable future. Don’t want to do it yourself? Call me!
https://saferpc.info/contact/

The Windows Update engine relies upon a file called “wsusscn2.cab” which is currently choking on download. While there are several Windows updates available today, it looks like the time just to check for updates will be over 2 hours for most devices today. Have patience or wait to start patching until later when they resolve this issue. There’s plenty of other stuff to patch anyway.

This Month in Technology

macOS finally fixes the Sudo bug (after 9 years), but this pales in comparison to the ease at which Mac users are infected through social engineering tactics. If you still think Mac’s are more secure than Windows, you need to see the numbers from MalwareBytes which show the typical Mac is targeted by nearly double the malware that Windows devices are. One special note here is that the users trusted the names of the websites that were involved, mostly a result of allowing domains to expire (a common concept within the broad scheme of domain hijacking).

While we’re on the subject of renewing domains, don’t forget your certificates! TLS/SSL certificates are often an enterprise’s weakest point of failure, especially when they’re not renewed on time. This will become even more important as TLS 1.0 and 1.1 are deprecated over the next couple months, which will prevent most older devices from being able to safely use the Internet at all. How important is certificate trust? Last months certificate hijacking bug allowed a researcher to replicate NSA and Github certificates in less than 24 hours which could be used immediately in MitM and DNS cache poisoning attacks with no effort from the attacker and as little as 10 lines of browser-based code.

Microsoft has decided to end it’s own ad platform within UWP apps, which will seriously hurt the entire UWP ecosystem and likely their users, by encouraging less security- and privacy-concerned third-party platforms to take their place.

This month we’ve seen data dumps from Twitter user details (shortly before a Twitter outage), Trello, Google, half a million servers, routers, and IoT devices, a major cannabis dispensary POS vendor, THSuite, WhatsApp had a major vulnerability (since patched), a Zoom vulnerability allowed hackers to eavesdrop on your calls, Mitsubishi was hacked via their enterprise security software, Trend Micro OfficeScan, and the United Nations was hacked through an unpatched server.

Is your privacy important? Apple bowed to the FBI to prevent fully-encrypted backups, ICE is using cellphone location data to track immigrants, but Avast has decided to stop selling it’s user data and they’re “sorry”, so at least there’s some good news.

Of course, any account can be hacked, even Facebook’s Twitter and Instagram accounts, and the NFL, and this month the City of Oshkosh (WI) and Duplin County (NC) join the “yet another government network hijacked” club.

It’s one thing to be incompetent when it comes to security, but Blizzard doesn’t even understand their users. This month they’re asserting total copyright ownership of any mods their users create and they released Warcraft: Reforged, which is the first game to ever be reviewed this poorly by the userbase. You might give Blizzard some credit for this – after all, they did build the engine that allowed the third-party “Dota” to flourish. LastPass, however, built their own system but accidentally removed their own extension from the Chrome Web Store!

In IoT news, more than 2/3rds of corporate and government entities were compromised with endpoint attacks in 2019, the weakest link might be the building itself or any of tens of millions of devices on a typical corporate or government network, though, as expected, many Huawei IoT devices have a backdoor. A serious public key exposure in Fortinet SIEM allows evildoers to kill your security appliance, and a critial zero-day in SolarWinds RMM allows attackers to hijack your network. Supply chain attacks targeting EOL Windows 7 devices remind us why we should avoid EOL hardware and software, and Phillips Hue lightbulbs are still proving that they weren’t well though-out security-wise. Thousand of WordPress-based websites have been hijacked to redirect visitors to evil sites, and there is always more to security than patching.

Let’s end my soapbox on a happy note: The best news this month might just be that Netflix finally offers an option to disable those #@$& autoplay previews. It’s about time.

Let’s Get Busy

Now back to our regularly scheduled program. The typical computer should see roughly 2.2 GB in updates today. Let’s get started.

Microsoft released updates for Windows, Internet Explorer, .NET, Flash, Servicing Stack, and MSRT (~1.2 GB). This includes security updates. A reboot is required.

Apple released updates for macOS Catalina 10.15.3, Security Update 2020-001 Mojave, Security Update 2020-001 High Sierra, iCloud for Windows 10.9.2, iCloud for Windows 7.17, iOS 13.3.1, iPadOS 13.3.1, iTunes for Windows 12.10.4, Safari 13.0.5, tvOS 13.3.1, and watchOS 6.1.2. These are security updates. Use Apple Software Update to install the most current versions.

iOS 13.3.1 and 12.4.5 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 13.3.1 is a security update. Use Settings, General, Software Update to install the most current update.

watchOS 6.1.2 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 13.3.1 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 79.0.3945.123 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Adobe Flash Player 32.0.0.330 is a security update. Take comfort knowing that Flash will be EOL in only 10 months.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Catalina (10.15) means that macOS Sierra (10.12) and older are no longer supported. If you can not install at least macOS High Sierra (10.13) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (1909) is a pretty small update so will install quickly. Windows 10 pushes you to get the latest Windows 10 release every 6 months. If you don’t let it finish and you’re on a slow connection, this process kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.2.2 resolves several issues and improves removal procedure. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

BullZip PDF Printer 11.12.0.2816 improves compatibility with Chrome 80+. This is not a security update.
https://www.bullzip.com/products/pdf/info.php#download

Intel Driver and Support Assistant 20.1.5 improves user interface, performance, uninstall, and resolves several bugs. This is not a security update.
https://www.intel.com/p/en_US/support/detect

nVidia 442.19 adds framerate capping, performance improvements for certain games, VRSS controls, and support for newer hardware. This is not a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Garmin Express 6.20 doesn’t provide a changelog so should be treated as a security update.
https://www.garmin.com/en-US/software/express/

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 80.0.3987.100 is a security update. This version is also the predecessor to the new samesite cookie handling behavior that will cause problems for various industries, including ad-services. Use Menu, Help, About to install the most current version.

Firefox 73.0 is a security update. Use Menu, Help, About to install the most current version.

Firefox ESR 68.5.0 is a security update. Use Menu, Help, About to install the most current version.

Iridium 2019.11.78 is a security update. Use Menu, Help, About to install the most current version.

Vivaldi 2.10.1745.27 is a security update. Use Menu, Help, About to install the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 68.5.0 is a security update. Use Menu, Help, About to install the most current version.

Internet Updates

One or more of these are likely to be of interest to everyone.

MaxMind GeoLite: Due to their interpretation of the CCPA (California Consumer Privacy Act), MaxMind has opted to no longer provide direct downloads of their IP information databases. An account and agreement to perform updates immediately upon publishing new releases and removal of all existing copies is now required. Due to this we will no longer be listing MaxMind on SaferPC. I suggest you integrate their automatic update service into your existing platform to ensure that you can comply with their new usage agreement.

Prosody 0.11.4 improves performance and resolves several bugs. This is not a security update.
https://prosody.im/download/start

BrowsingHistoryView 2.36 adds option to delete Chrome and Firefox history records. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

FreeNAS 11.3 is a major update offering improved performance, security controls, community plugin integration, improved granularity of alerts and more. This is not a security update.
https://www.freenas.org/download-freenas-release/

Npcap 0.9987 is a security update.
https://nmap.org/npcap/

Media Updates

These are unlikely to be of interest to most people.

iTunes 12.10.4 is a security update. Use Apple Software Update to install the most current version.

Game Updates

These are unlikely to be of interest to most people.

Steam 2020.01.20 resolves several bugs and improves reliability of Remote Play. This is not a security update.

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 20.006.20034 is a security update. Use Help, Check for Updates to get the most current version.

Adobe DNG 12.2 adds support for new hardware. This is not a security update.
Mac: https://supportdownloads.adobe.com/detail.jsp?ftpID=6879
Win: https://supportdownloads.adobe.com/detail.jsp?ftpID=6881

Adobe Experience Manager 6.5.0-31870 and 6.4.0-31868 are security updates.
https://helpx.adobe.com/security/products/experience-manager/apsb20-08.html

Adobe Digital Editions 4.5.11 is a security update.
https://helpx.adobe.com/security/products/Digital-Editions/apsb20-07.html

Adobe Framemaker 2019.0.5 is a security update.
https://helpx.adobe.com/security/products/framemaker/apsb20-04.html

Adobe Illustrator CC 24.0.2 is a security update.
https://helpx.adobe.com/security/products/illustrator/apsb20-03.html

Artweaver 7.0.4 resolves several bugs and improves performance with impasto and PSD text layers. This is not a security update.
https://www.artweaver.de/

Atom 1.44.0 resolves several bugs. This is not a security update.
https://atom.io/

LibreOffice Still 6.3.4 is a major update adding a wide variety of new features and performance improvements. This is not a security update.
https://www.libreoffice.org/

LibreOffice Fresh 6.4.0 resolves almost 500 bugs, including security issues. The typical user should run LibreOffice Still (stable), not Fresh (beta).
https://www.libreoffice.org/

Lightworks NLE 14.5 adds dozens of new features, export options, media codecs, and over a hundred bugs. This should be treated as a security update.
https://www.lwks.com/

Notepad++ 7.8.4 adds JSON and Workspace improvements, and resolves a crash bug. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 4.2.9 resolves several bugs and improves performance. This is not a security update.
https://www.getpaint.net/

Security Software Updates

One or more of these is likely to be of interest to most people.

QubesOS 4.0.3 is a security update.
https://www.qubes-os.org/downloads/

elementaryOS 5.1.2 is a security update.
https://elementary.io/

RogueKiller 14.1.1 resolves several bugs. This is a security update.
https://www.adlice.com/download/roguekiller/

TinyWall 3.0 improves reliability, user interface, exception controls, and resolves several bugs. This is not a security update.
https://tinywall.pados.hu/

Capture Updates

These are unlikely to be of interest to most people.

ScreenToGif 2.20.2 resolves several bugs. This is not a security update.
https://www.fosshub.com/ScreenToGif.html

Converter Updates

These are unlikely to be of interest to most people.

MKVToolnix 43.0.0 resolves several bugs and improves user interface defaults options from command line. This is not a security update.
https://www.fosshub.com/MKVToolNix.html

DVDFab 11.0.7.1 resolves several bugs and adds support for newer encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

RoboForm 8.6.6 improves compatibility and resolves several bugs. This is not a security update.
https://www.roboform.com/

Easy2Boot 1.B8A improves compatibility and user-interface. This is not a security update.
https://www.fosshub.com/Easy2Boot.html

1Password for Mac 7.4.2 improves compatibility and resolves several bugs. This is not a security update.
https://1password.com/downloads/mac/

ControlMyMonitor 1.25 adds option to put icon in tray. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html

DesktopOK 6.84 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

DevManView 1.66 adds Class GUID column. This is not a security update.
https://www.nirsoft.net/utils/device_manager_view.html

Etcher 1.5.76 updates libraries and resolves several bugs. This is not a security update.
https://www.balena.io/etcher/

Everything CLI 1.1.0.18 doesn’t provide a changelog, so should be treated as a security update.
https://www.voidtools.com/

FileLocator Pro 8.5.2944 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Fing 8.8.2 improves user interaction and resolves several bugs. This is not a security update.
https://community.fing.com/

GoodSync 10.10.21 improves performance and reliability, resolves several bugs. This is not a security update.
https://www.goodsync.com/

MS ISO Downloader 8.31 adds support for new media. This is not a security update.
https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool

OSFMount 3.0.1005 adds command-line options to load physical or logical emulation only, and resolves a permissions bug. This is not a security update.
https://www.osforensics.com/tools/mount-disk-images.html

SetDefaultBrowser 1.4 adds support for Chromium-based Edge. This is not a security update.
https://kolbi.cz/blog/2017/11/10/setdefaultbrowser-set-the-default-browser-per-user-on-windows-10-and-server-2016-build-1607/

TaskSchedulerView 1.54 adds options to select/deselect all to column chooser. This is not a security update.
https://www.nirsoft.net/utils/task_scheduler_view.html

USBDeview 2.86 adds mode option for Regedit call, to support opening with or without elevation.
https://www.nirsoft.net/utils/usb_devices_view.html

WinScan2PDF 5.21 improves WIA compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 3.32 resolves several bugs, adds options to export file types to CSV, filterexclude, and command-line supporter activation. This is not a security update. On the note of Supporters – this software is amazing. Use it. And donate.
https://antibody-software.com/web/software/software/wiztree-finds-the-files-and-folders-using-the-most-disk-space-on-your-hard-drive/

Developer Updates

These are unlikely to be of interest to most people.

Godot 3.2 improves reliability, performance, stability and resolves almost 2,000 bugs. This should be treated as a security update.
https://godotengine.org/

Node.js 13.8.0 is a security update.
https://nodejs.org/en/

SQLite 3.31.1 adds generated columns, hard heap limits, improved pragma, dbstat aggregated mode support, open nofollow, and resolves an internal schema compatibility issue. This compatibility fix is temporary, so fix your applications if you currently rely on parsing the data structure via internal schema. This is a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.42 resolves several bugs, improves user interface, additional preference controls, task management, and more. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 6.1.2-135663 resolves several bugs and improves compatibility. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Adminer 4.7.6 resolves several bugs. This is not a security update.
https://www.adminer.org/en/

Drupal 8.8.2 resolves dozens of bugs. This is not a security update.
https://drupal.org/download

HumHub 1.4.0 updates libraries and resolves dozens of bugs. This is not a security update.
https://www.humhub.com/en/download

Joomla 3.9.15 is a security update.
https://www.joomla.org/

Magento 2.3.4, 2.2.11, 1.14.4.4, 1.9.4.4 are security updates.
https://helpx.adobe.com/security/products/magento/apsb20-02.html

Nextcloud Hub 18.0.0 is a major update adding improved file, flow, photos, calendar, mail, and talk integration, and ONLYOFFICE support. This is not a security update.
https://nextcloud.com/

ScreenConnect 19.6.26659.7340 is a security update.
https://www.connectwise.com/software/control/download

SpamAssassin 3.4.4 is a security update.
http://spamassassin.apache.org/downloads.cgi

YOURLS 1.7.6 is a security update.
https://yourls.org/

bbPress 2.6.4 is a security update.

Interactive World Map 3.1.4 is a major update that resolves several issues. This is not a security update.

myStickymenu 2.3.4 resolves several bugs. This is not a security update.

Postie 1.9.41 resolves regex bug and now attempts to process only 1 email at a time. This is not a security update.

Sucuri Security 1.8.23 updates key updater and improves user interface. This is not a security update.

W3 Total Cache 0.13.1 resolves several bugs. This is not a security update.

WooCommerce 3.9.1 resolves several bugs. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2017-07-11

Hi, Folks!

It’s Patch Tuesday. It’s pretty quiet this month: no major ransomware events and no major new infection vectors. I hate to say it, but it feels like it’s the calm before the storm.

The typical computer should see roughly 1gb in updates today. Let’s get started.

Microsoft released updates to Windows, Internet Explorer, .NET, Flash, POSReader, and MSRT (~900mb). This includes security updates. A reboot is required.

Apple released updates for various printer and scanner drivers, and Apple Remote Desktop Client. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

Adobe AIR 26.0.0.127 is a security update.
Win: http://12pd.com/click?air
Mac: http://12pd.com/click?airmac

Adobe Flash Player 26.0.0.137 is a security update. Flash is being actively replaced with HTML5 on most sites and services, however, so unless you’re 110% positive you need it for critical functions, you should remove it instead. And, within those browsers that have it embedded (Chrome, Edge, Internet Explorer 11+) your best option is to disable it. It’s just not worth the risk.
Win: http://12pd.com/click?flash
Win: http://12pd.com/click?flashie
Mac: http://12pd.com/click?flashmac

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
http://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 17.0.6.9 adds a timeout for service actions and improves GPU detection. This is not a security update.
http://www.wagnardsoft.com/display-driver-uninstaller-ddu

Intel Driver Update 2.8.1 resolves bugs and improves detection. This is not a security update.
https://www.intel.com/p/en_US/support/detect

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 59.0.3071.115 is a security update. Use Menu, Help, About to get the most current version.

Google Chrome for Android 59.0.3071.125 is a security update. Use the Play store to install this update.

Firefox 54.0.1 resolves several bugs, improves stability, and improves cross-platform reliability. This is not a security update. Use Menu, Help, About to get the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

NK2Edit 3.30 improves SMTP preference assignments, adds WaitAutoClose and EXToSMTP script commands. This is not a security update.
http://www.nirsoft.net/utils/outlook_nk2_edit.html

OutlookAttachView 3.02 allows resizing the properties window. This is not a security update.
http://www.nirsoft.net/utils/outlook_attachment.html

Thunderbird 52.2.0 is a security update. Use Menu, Help, About to get the most current version.
http://www.mozilla.org/en-US/thunderbird/

Internet Updates

One or more of these are likely to be of interest to everyone.

Skype 7.38.0.101 resolves several bugs. This is not a security update.

Line 7.6.0 adds in-chat message search. This is not a security update.
http://line.me/update

Trillian 6.0.0.60 resolves several bugs. This is not a security update.
https://www.trillian.im/

Silverlight 5.1.50907 is a security update.
http://www.microsoft.com/getsilverlight/Get-Started/Install/Default.aspx

WinSCP 5.9.6 is a security update.
http://winscp.net/eng/index.php

uTorrent 3.5.0 Build 43916 improves AV detections for Pro version, warn before executing files with masked extensions. This is a security update.
http://www.utorrent.com/downloads

FreeFileSync 9.2 resolves several bugs, improves reliability and security. This is a security update.
https://www.freefilesync.org/download.php

MaxMind GeoIP 201707 is a data refresh. This is not a security update.
http://dev.maxmind.com/geoip/geolite

IPNetInfo 1.76 now filters duplicate IPv6 addresses, improves tabbing. This is not a security update.
http://www.nirsoft.net/utils/ipnetinfo.html

Nmap 7.50 adds dozens of new fingerprints and scripts. Updates libraries. This is a security update.
http://nmap.org/

PuTTY 0.70 is a security update.
https://www.chiark.greenend.org.uk/~sgtatham/putty/download.html

Game Updates

These are unlikely to be of interest to most people.

EA Origin 10.4.13.6637 adds speed throttling controls, FPS meter, interface improvements, improved networking, and resolves bugs. This is not a security update.
https://www.origin.com/en-us/download

Steam 2017.07.10 improves performance, reliability, and resolves many bugs. This is not a security update.
http://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

PS4 4.71 improves system performance. This is not a security update.
http://us.playstation.com/support/systemupdates/ps4/pc_update/index.htm

Office Updates

One or more of these are likely to be of interest to most people.

Artweaver 6.0.4 resolves several bugs. This is not a security update.
http://www.artweaver.de/

LibreOffice 5.3.4 resolves well over a hundred bugs. This is a security update.
http://www.libreoffice.org/

Notepad++ 7.4.2 improves find and replace, SWIFT language support. This is not a security update.
http://12pd.com/click?npp

Adobe Reader DC 17.009.20058 is a security update.
http://get.adobe.com/reader

Adobe FrameMaker 2017.0.2 is a security update.
http://supportdownloads.adobe.com/detail.jsp?ftpID=6173

Adobe Connect 9.5.7 is a security update.
https://helpx.adobe.com/security/products/connect/apsb16-35.html

Security Software Updates

One or more of these is likely to be of interest to most people.

Fedora 26-1.5 is a security update.
https://getfedora.org/en/workstation/download/

MSRT 5.50 is a security update.
http://www.microsoft.com/en-us/download/malicious-software-removal-tool-details.aspx

Tails 3.0.1 is a security update. Note that version 3.0 also removes 32-bit support.
https://tails.boum.org/install/index.en.html

Avast! Home Edition 17.5.2302 adds a new warning system, redesigned popups, and counter on tray icon. This is a security update.
http://www.avast.com/free-antivirus-download

Gpg4win 2.3.4 is a security update.
https://www.gpg4win.org/download.html

Hashcat 3.6.0 adds several new algorithms. This is not a security update.
http://hashcat.net/hashcat/#downloadlatest

DNSQuerySniffer 1.65 adds ‘Quick Filter’ feature. This is not a security update.
http://www.nirsoft.net/utils/dns_query_sniffer.html

RogueKiller 12.11.6 adds detections. This is not a security update.
http://www.adlice.com/softwares/roguekiller/

Capture Updates

These are unlikely to be of interest to most people.

XSplit Broadcaster 3.0.1705.3117 resolves several bugs. This is not a security update.
http://www.xsplit.com/get/

XSplit Gamecaster 3.0.1705.3131 resolves dozens of bugs. This is not a security update.
http://www.xsplit.com/get/

Converter Updates

These are unlikely to be of interest to most people.

CDex 1.87 improves stability and resolves several bugs. This is not a security update.
http://cdex.mu/?q=download

DVDFab 10.0.4.6 adds support for new encodings, several tools, and resolves bugs. This is not a security update.
http://www.dvdfab.cn/download.htm

IsoBuster 4.0 improves performances, major cosmetic changes, advanced search functionality, block analysis, history browsing, and more. This is not a security update.
https://www.isobuster.com/download.php

Utility Updates

These are unlikely to be of interest to most people.

GoodSync 10.5.2 resolves several bugs, improves action auditing, and defaults to use SNI for SSL traffic. This is a security update.
http://www.goodsync.com/

RoboForm 8.3.7 adds support for the new Firefox extension platform, resolves bugs and improves performance. This is not a security update.
http://12pd.com/click?rf

1Password for Windows 6.6.439 is a major update, adding duplicate detection, favorites, trash support, and native automatic-when-idle updates. This is not a security update.
https://1password.com/downloads/

Bitcoin 0.14.2 improves performance and resolves bugs. This is not a security update.
http://bitcoin.org/en/download

CCleaner 5.32.6129 improves cleaning. This is not a security update.
http://12pd.com/click?ccleaner

CintaNotes 3.8.1 improves attachment support and resolves several bugs. This is not a security update.
http://cintanotes.com/download

Cygwin 2.8.1 now allows unpriviliged symlink creation in Windows 10, adds two new APIs. This is not a security update.
http://cygwin.com/

DesktopOK 4.72 improves Windows 10 support. This is not a security update.
http://www.softwareok.com/?seite=Freeware/DesktopOK

Easy2Boot 1.93A adds offline CHOCO support, and works around a Windows Creator bug to assign a drive letter for USB drives that are not given them by Windows. This is not a security update.
http://www.easy2boot.com/download/

Kingston SSD Manager 1.1.0.0 does not provide a changelog, so should be treated as a security update.
http://www.kingston.com/us/support/technical/ssdmanager

NetworkTrafficView 2.10 adds logging on timer support. This is not a security update.
http://www.nirsoft.net/utils/network_traffic_view.html

RegFileExport 1.08 fixes a reliability bug. This is not a security update.
http://www.nirsoft.net/utils/registry_file_offline_export.html

WifiInfoView 2.26 improves filtering, adds select/deselect all, and resolves a CLI vs options bug. This is not a security update.
http://www.nirsoft.net/utils/wifi_information_view.html

OSForensics 5.1.1001 resolves dozens of bugs. This is not a security update.
http://www.osforensics.com/download.html

Speccy 1.31.732 improves Windows compatibility, updated hardware detection, 32-bit compatibility and resolves bugs. This is not a security update.
http://12pd.com/click?speccy

PointerStick 2.82 improves reliability in Windows 10 Creators Update. This is not a security update.
http://www.softwareok.com/?seite=Freeware/PointerStick

TeamViewer 12.0.78716 improves reliability in Windows 10 Creators Update. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

WinScan2PDF 3.51 improves Epson and Brother scanner support. This is not a security update.
http://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WSUS Offline 11.0 removes Vista support, updates scripts and libraries, and improves update detection. This is not a security update.
http://download.wsusoffline.net/

WSUS Offline 9.2.2 (ESR) adds support for the post-EOL updates for XP, Vista, Windows Server 2003, and Windows 8, updates scripts and libraries, and improves update detection. This is not a security update.
http://download.wsusoffline.net/

Sysmon 6.03 fixes a bug that prevented imageload include filters from working in some configurations. This is not a security update.
https://sysinternals.com/

Developer Updates

These are unlikely to be of interest to most people.

TortoiseSVN 1.9.6 resolves several bugs. This is not a security update.
http://tortoisesvn.net/downloads.html

SQLite 3.18.2 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Virtual Machine Updates

These are unlikely to be of interest to most people.

VMware Player 12.5.7 is a security update.
http://www.vmware.com/products/player/

Web Package Updates

These are likely to be of interest only to web developers.

Piwigo 2.9.1 is a security update.
http://piwigo.org/

Drupal 8.3.5 resolves dozens of bugs. This is not a security update.
http://drupal.org/download

HumHub 1.2.1 resolves dozens of bugs. This is not a security update.
https://www.humhub.org/en/download

MailEnable 9.75 resolves seeral bugs. This is not a security update.
http://www.mailenable.com/

phpMyAdmin 4.7.2 resolves several bugs. This is not a security update.
http://www.phpmyadmin.net/home_page/news.php

ScreenConnect 6.3.13446.6374 resolves dozens of bugs, and improves performance and reliability. This is not a security update.
https://www.screenconnect.com/Download

Joomla 3.7.3 is a security update.
http://www.joomla.org/

Autoptimize 2.2.2 resolves several bugs. This is a security update.

BuddyPress 2.8.2 adds several new features. This is a security update.

myStickymenu 1.8.9 adds ability to disable on certain posts and pages. This is not a security update.

Postie 1.9.1 resolves several bugs. This is not a security update.

Redirection 2.6.4 resolves several bugs. This is not a security update.

Sucuri Security 1.8.7 improves performance and resolves several bugs. This should be treated as a security update.

Top Commentators Widget 1.5.3 fixes an icon bug. This is not a security update.

WooCommerce 3.1.0 resolves dozens of bugs, improves style and setup. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

Updates 2017-05-09

Hi, Folks!

It’s Patch Tuesday.

This month brings some downright scary news in the security world.

Intel announced they made a “minor coding error” in their CPUs designed for Enterprise deployment, which allows unauthenticated third parties to control pretty much every aspect of their computers. Oops.

Microsoft released a critical out-of-band security update yesterday, the day before Patch Tuesday, due to the severity of the bug in the Microsoft Malware Protection Engine (a component used by Microsoft firewalls, Windows Defender, Microsoft Security Essentials and other Microsoft security products). If you’re running Windows 10 the update should be have been installed automatically for you during the definition update process. If running an older version of Windows, it’ll be installed for you today when you install the rest of Windows Updates. You are going to install updates today, right?

Have I Been Pwned announced that another billion (with a B) accounts have been released on the web. If nothing else, consider this a reminder that if you haven’t started using a password manager yet, you’re really only hurting yourself.

The Windows 10 Creators Update (aka 1703, aka TH4) has been out about a month now and is remarkably stable. This major upgrade takes a few hours to install but improves responsiveness and corrects the app reinstall bug that has plagued previous builds of Windows 10. Windows 10 version 1507 (aka 10240) is now End-of-Life, which means that it will no longer receive important security updates. If you’re still running this version of Windows you must upgrade to at least version 1511 (10586) to continue to receive security updates. Use the installer here to get the most current version:
https://12pd.com/click?win10upgrade

Like Win10 1507, Windows Vista is dead. Really. It won’t be missed. If you’re still running Vista, take the machine off the Internet (forever) or switch to Fedora or any other supported operating system:
https://getfedora.org/
If you need help, contact me.

Now back to our regularly scheduled program.

The typical computer should see roughly 1gb in updates today. Let’s get started.

Microsoft released updates to Windows, .NET, Windows Defender, Internet Explorer, Edge, WEPOS, and MSRT (~800mb). This includes security updates. A reboot is required.

Google Chrome OS 58.0.3029.89 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Adobe Flash Player 25.0.0.171 is a security update. Flash is being actively replaced with HTML5 on most sites and services, however, so unless you’re 110% positive you need it for critical functions, you should remove it instead. And, within those browsers that have it embedded (Chrome, Edge, Internet Explorer 11+) your best option is to disable it. It’s just not worth the risk.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 17.0.6.4 improves update checking, and is now digitally signed. This should be treated as a security update.
http://www.wagnardsoft.com/display-driver-uninstaller-ddu

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 58.0.3029.96 is a security update. Use Menu, Help, About to install the most current version.

Firefox 53.0.2 is a security update. Use Menu, Help, About to install the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 52.1.0 is a security update. Use Menu, Help, About to install the most current version.

Internet Updates

One or more of these are likely to be of interest to everyone.

.NET Framework 4.7 is a major feature update. This should be treated as a security update. Use Windows Update to get the most current version.

Adobe Shockwave 12.2.8.198 is a security update. Shockwave is not required for most users, so you’re better off removing it than updating. If you find that you do require it later on, you can always install the update then.
https://12pd.com/click?shockwave

Silverlight 5.1.50906 is a security update.
http://www.microsoft.com/getsilverlight/Get-Started/Install/Default.aspx

Java 8u131 is a security update. Java is *not* JavaScript, and most computers do not require it. You’re better off removing it unless you are 100% sure you do require it. You can always install it later if you discover an application requires Java.
http://www.java.com/en/download/manual.jsp

Skype 7.35.0.102 improves stability and reliability. This is not a security update.
https://12pd.com/click?skype

Line 7.3.0 adds Ladder Shuffle and Relay. This is not a security update.
http://line.me/update

WinSCP 5.9.5 is a security update.
http://winscp.net/eng/index.php

Evernote 6.5.4.4720 fixes several bugs. This is not a security update.
http://www.evernote.com/

Nmap 7.40 adds several new scripts, updates libraries, and adds new features. This is a security update.
http://nmap.org/

uTorrent 3.5.0 Build 43580 is a security update.
http://www.utorrent.com/downloads

FileZilla 3.25.2 is a security update.
http://filezilla-project.org/

MaxMind GeoIP Data 201705 is a data refresh.
http://dev.maxmind.com/geoip/

Media Updates

These are unlikely to be of interest to most people.

CDBurnerXP 4.5.7.6623 resolves several bugs. This is not a security update.
http://cdburnerxp.se/

MusicBrainz Picard 1.4.2 resolves several bugs. This is not a security update.
http://musicbrainz.org/doc/MusicBrainz_Picard

Game Updates

These are unlikely to be of interest to most people.

EA Origin 10.4.9.38188 updates the interface and resolves several bugs. This is not a security update.
https://www.origin.com/en-us/download

Office Updates

One or more of these are likely to be of interest to most people.

Paint.net 4.0.16 resolves a crash bug. This is not a security update.
http://www.getpaint.net/

IcoFX 3.0.3 fixes scaling issues on high-DPI displays. This is not a security update.
http://icofx.ro/

Kindle for PC 1.20.1 Build 47037 does not provide a changelog, so should be treated as a security update.
https://12pd.com/click?kindle4pc

Security Software Updates

One or more of these is likely to be of interest to most people.

Tails 2.12 is a security update.
https://tails.boum.org/install/index.en.html

Norton Power Eraser 20170412 is a security update.
https://support.norton.com/sp/en/us/home/current/solutions/kb20100824120155EN_EndUserProfile_en_us

Avast! Home Edition 17.4.2294 resolves several bugs and updates the GUI. This is a security update.
http://www.avast.com/free-antivirus-download

KeePass 1.32 improves several features, fixes bugs and updates libraries. This is a security update.
http://keepass.sourceforge.net/

Wireshark 2.2.6 is a security update.
http://www.wireshark.org/

DNSQuerySniffer 1.61 adds ability to show only failed DNS queries. This is not a security update.
http://www.nirsoft.net/utils/dns_query_sniffer.html

MSRT 5.48 is a security update.
http://www.microsoft.com/en-us/download/malicious-software-removal-tool-details.aspx

Wireless Network Watcher 2.11 updates the internal MAC databae. This is not a security update.
http://www.nirsoft.net/utils/wireless_network_watcher.html

RogueKiller 12.10.8 is a security update.
http://www.adlice.com/softwares/roguekiller/

TDSSKiller 3.1.0.15 is a security update.
http://support.kaspersky.com/viruses/utility#TDSSKiller

Capture Updates

These are unlikely to be of interest to most people.

XSplit Broadcaster 2.9.1701.1640 improves stability on Windows 10 Creators Update. This is not a securty update.
http://www.xsplit.com/get/

XSplit Gamecaster 2.9.1701.1621 improves stability on Windows 10 Creators Update. This is not a securty update.
http://www.xsplit.com/get/

Converter Updates

These are unlikely to be of interest to most people.

FFmpeg 3.3 doesn’t provide a changelog, so should be treated as a security update.
http://ffmpeg.org/ffmpeg.html

DVDFab 10.0.3.6 improves stability and compatibility. This is not a security update.
http://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

NTLite 1.3.0.5024 improves compatibility with Windows 10 Creators Update. This is not a security update.
https://www.ntlite.com/download/

GoodSync 10.4.4 improves stability and compatibility. This is not a security update.
https://12pd.com/click?goodsync

RoboForm 8.3.3 improves stability. This is not a security update.
https://12pd.com/click?rf

Bitcoin 0.14.1 improves performance, fixes several bugs and stability issues. This is not a security update.
http://bitcoin.org/en/download

CintaNotes 3.7 adds drag & drop from any application, improves printing and stability, and resolves several bugs. This is not a security update.
http://cintanotes.com/download

DesktopOK 4.69 improves compatibility. This is not a security update.
http://www.softwareok.com/?seite=Freeware/DesktopOK

AS SSD Benchmark 1.9.5986 improves stability and compatibility within Windows 10. This is not a security update.
http://alex-is.de/PHP/fusion/downloads.php?cat_id=4&download_id=9

LessMSI 1.6.1 improves stability. This is not a security update.
http://lessmsi.activescott.com/

NetworkTrafficView 2.06 adds ability to map source IP address. This is not a security update.
http://www.nirsoft.net/utils/network_traffic_view.html

SearchMyFiles 2.82 adds ability to exclude folders by name without path. This is not a security update.
http://www.nirsoft.net/utils/search_my_files.html

USBDeview 2.66 adds the ability to start the remote registry service even if it’s disabled. This is not a security update.
http://www.nirsoft.net/utils/usb_devices_view.html

WakeMeOnLan 1.79 adds a 64-bit version and updates the MAC address list. This is not a security update.
http://www.nirsoft.net/utils/wake_on_lan.html

WifiChannelMonitor 1.48 updates the internal MAC address list. This is not a security update.
http://www.nirsoft.net/utils/wifi_channel_monitor.html

TaskSchedulerView 1.30 adds quick-filter capability. This is not a security update.
http://www.nirsoft.net/utils/task_scheduler_view.html

CCleaner 5.29.6033 improves compatibility and application support. This is not a security update.
https://12pd.com/click?ccleaner

RapidEE 9.1 build 936 updates translations. This is not a security update.
http://www.rapidee.com/en/download

TeamViewer 12.0.77242 resolves several bugs. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

WinScan2PDF 3.43 improves compatibility with Windows 10 Creators Update. This is not a security update.
http://www.softwareok.com/?seite=Microsoft/WinScan2PDF

Developer Updates

These are unlikely to be of interest to most people.

Redemption 5.14.0.4776 adds several new objects, and resolves several bugs. This is not a security update.
http://www.dimastr.com/redemption/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VMware Player 12.5.5 is a security update.
http://www.vmware.com/products/player/

VirtualBox 5.1.22-115126 resolves several bugs. This is not a security update.
http://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Adminer 4.3.1 resolves several bugs. This is not a security update.
http://www.adminer.org/en/

Piwigo 2.9.0 is a major update that adds several new features. This is not a security update.
http://piwigo.org/

TinyMCE 4.6.0 adds several features and fixes several bugs. This is not a security update.
http://www.tinymce.com/download/

Drupal 8.3.2 resolves dozens of bugs. This is not a security update.
http://drupal.org/download

HumHub 1.2.0 resolves several bugs. This is not a security update.
https://www.humhub.org/en/download

MailEnable 9.74 resolves several bugs. This is not a security update.
http://www.mailenable.com/

ownCloud Client 2.3.2 resolves several stability and reliability bugs. This is not a security update.
https://owncloud.org/install/

ScreenConnect 6.2.12963.6312 resolves several bugs, and improves compatibility. This is not a security update.
http://www.screenconnect.com/Download

WordPress 4.7.4 resolves dozens of bugs. This is not a security update.
http://wordpress.org/

YOURLS 1.7.2 improves stability and GUI, updates libraries, resolves several bugs. This is not a security update.
http://yourls.org/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

Updates 2016-12-13

Hi, Folks!

It’s Patch Tuesday.

The typical computer should see roughly 1.6gb in updates today. The new MS update engine will help if you’re using the peer-to-peer features on *local* networks, or it will kill your performance if it’s touching the ‘net. The new release cycle of 1gb blobs is great for mass distribution, but chews through bandwidth if you’re not peering it for other devices on your LAN. Adobe has released 10 separate security updates today – still not remotely close to Oracle Tuesday last month, but more people use Adobe products than Oracle’s. The other updates run the gamut: every browser and almost everything from Chrome OS to WordPress. Let’s get started.

Microsoft released updates to Windows, Office, .NET, Edge, IE, Flash, Exchange, AAD, TZData, Uniscribe, SSPI and MSRT (~1.25gb). This includes security updates. A reboot is required. NOTE: For some devices a second update+reboot cycle will be necessary!

Apple released updates for OS X, macOS, Safari, iTunes, iCloud for Windows, iOS, Transporter, watchOS, and tvOS. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 10.2 is a security update. Use Settings, General, Software Update to install the most current update.

Google Chrome OS 55.0.2883.87 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Adobe Flash Player 24.0.0.186 is a security update. Flash is being actively replaced with HTML5 on most sites and services, however, so unless you’re 110% positive you need it for critical functions, you should remove it instead. And, within those browsers that have it embedded (Chrome, Edge, Internet Explorer 11+) disable it. It’s just not worth the risk.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Adobe AIR 24.0.0.180 is a security update.
Win: https://12pd.com/click?air
Mac: https://12pd.com/click?airmac
Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 17.0.4.0 adds support for newer hardware. This is not a security update.
http://www.wagnardsoft.com/

Intel Driver Update 2.6.2 adds support for additional hardware, improves performance and fixes several bugs. This is not a security update.
http://www.intel.com/p/en_US/support/detect

Samsung Kies3 201611 doesn’t provide a changelog, so should be treated as a security update.
http://www.samsung.com/us/support/owners/app/kies

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 55.0.2883.87 is a security update. Use Menu, Help, About to install the most current version.

Firefox 50.0.2 is a security update. Use Menu, Help, About to install the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

OutlookAttachView 2.96 resolves a stability bug. This is not a security update.
http://www.nirsoft.net/utils/outlook_attachment.html

Thunderbird 45.5.1 is a security update. Use Menu, Help, About to install the most current version.
http://www.mozilla.org/en-US/thunderbird/

Internet Updates

One or more of these are likely to be of interest to everyone.

Skype 7.30.85.103 adds several new features. This is not a security update.
https://12pd.com/click?skype

iCloud for Windows v6.1 is a security update. Use Apple Software Update to get the most current version.

Mumble 1.2.18 is a security update.
http://wiki.mumble.info/wiki/Main_Page

aria2 1.29.0 fixes several bugs. This is not a security update.
https://aria2.github.io/

WinSCP 5.9.3 is a security update.
http://winscp.net/eng/index.php

uTorrent 3.4.9 Build 42973 fixes several bugs. This is not a security update.
http://www.utorrent.com/downloads

FileZilla 3.23.0.2 fixes several bugs. This is not a security update.
http://filezilla-project.org/

MaxMind GeoIP 201612 is a data refresh. This is not a security update.
http://dev.maxmind.com/geoip/

IPInfoOffline 1.44 updates the internal IP database. This is not a security update.
http://www.nirsoft.net/utils/ip_country_info_offline.html

Flickr Downloadr 2.2.2.3 adds several new features including SSL support, updates libraries, and fixes several bugs. This should be treated as a security update.
https://flickrdownloadr.com/downloads/

Media Updates

These are unlikely to be of interest to most people.

iTunes 12.5.4 adds several new compatibility features. This is not a security update. Use Apple Software Update to get the most current version.

CDBurnerXP 4.5.7.6452 improves logging, GUI fixes, and updates libraries. This should be treated as a security update.
http://cdburnerxp.se/

Game Updates

These are unlikely to be of interest to most people.

EA Origin 10.3.3.1921 adds gifting and security fixes.
https://www.origin.com/en-us/download

Minecraft 1.11 adds several new features and mobs. This is not a security update.
http://www.minecraft.net/

SteamOS 2.98 is a security update and resolves wifi problems for some hardware.
http://store.steampowered.com/steamos/download/?ver=custom

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Animate 16.0.0.112 is a security update.
https://creative.adobe.com/products/download/animate

Adobe Experience Manager Forms 6.2.0.2 is a security update.
https://helpx.adobe.com/security/products/aem-forms/apsb16-40.html

Adobe DNG Converter 9.8 is a security update.
Win: https://www.adobe.com/support/downloads/detail.jsp?ftpID=6108
Mac: https://www.adobe.com/support/downloads/detail.jsp?ftpID=6107

Adobe Experience Manager 6.2.1 is a security update.
https://helpx.adobe.com/security/products/experience-manager/apsb16-42.html

Adobe InDesign 12.0.0 is a security update. Patches to previous versions (<=11.4.1) will *not* be made available.
https://helpx.adobe.com/indesign/release-note/indesign-cc-2017.html

Adobe ColdFusion Builder 2016.3 is a security update.
https://helpx.adobe.com/coldfusion/kb/coldfusion-builder-2016-update-3.html

Adobe Digital Editions 4.5.3 is a security update.
https://www.adobe.com/solutions/ebook/digital-editions/download.html

Adobe RoboHelp 2015.0.4 is a security update.
https://www.adobe.com/support/robohelp/downloads.html

Paint.net 4.0.13 fixes several bugs. This is not a security update.
http://www.getpaint.net/

Krita 3.0.1.1 doesn’t provide a detailed changelog, so should be treated as a security update.
https://krita.org/download/krita-desktop/

Notepad++ 7.2.2 fixes several minor bugs. This is not a security update.
https://12pd.com/click?npp

SketchUp 17.1.174 fixes stability and reliability issues, and adds CDT. This is not a security update.
http://www.sketchup.com/

Security Software Updates

One or more of these is likely to be of interest to most people.

EMET 5.52 should always be treated as a security update.
http://www.microsoft.com/emet

MSRT 5.43 is a security update.
http://www.microsoft.com/en-us/download/malicious-software-removal-tool-details.aspx

Wireshark 2.2.2 is a security update.
http://www.wireshark.org/

Hashcat 3.20 is a major rewrite offering significant security improvements. This is a security update.
http://hashcat.net/hashcat/#downloadlatest

DNSQuerySniffer 1.58 improves logging. This is not a security update.
http://www.nirsoft.net/utils/dns_query_sniffer.html

Wireless Network Watcher 2.03 is a cosmetic improvement. This is not a security update.
http://www.nirsoft.net/utils/wireless_network_watcher.html

OpenSSL Binaries 1.1.0c is a security update.
http://slproweb.com/products/Win32OpenSSL.html

RogueKiller 12.8.5 adds detections and more. This is a security update.
http://www.adlice.com/softwares/roguekiller/

Capture Updates

These are unlikely to be of interest to most people.

VideoCacheView 2.97 improves reliability. This is not a security update.
http://www.nirsoft.net/utils/video_cache_view.html

XSplit Broadcaster 2.9.1611.1622 adds support for more hardware, improves reliability, and various fixes. This is not a security update.
http://www.xsplit.com/get/

XSplit Gamecaster 2.9.1611.1715 adds several new features, improves reliability, and various fixes. This is not a security update.
http://www.xsplit.com/get/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 10.0.1.5 is a major update, offering a new and improved UI, cloud sync, and adds support for new encodings. This is not a security update.
http://www.dvdfab.cn/download.htm

MakeMKV 1.10.3 fixes the auto-path bug, improves reliability and BD+ engine, adds support for new encodings. This is not a security update.
http://www.makemkv.com/download/

MKVToolNix 9.6.0 fixes several bugs, improves subtitle support, and various stability and GUI improvements. Thsi is not a security update.
http://www.videohelp.com/software/MKVtoolnix

Utility Updates

These are unlikely to be of interest to most people.

NTLite 1.2.0.4550 improves reliability in TH3, and fixes several bugs. This is not a security update.
https://www.ntlite.com/download/

GoodSync2Go 10.2.4 resolves several bugs, improves reliability. This is not a security update.
https://12pd.com/click?goodsync

RoboForm 7.9.25 resolves One Time Password problem and UI issues. This is not a security update. No, v8 still isn’t ready. 🙁
https://12pd.com/click?rf

DMDE 3.2.0.690 adds several new features including RAID detection, VHD and VHDX support, custom file signature support, SMART reading and more. This is not a security update.
https://dmde.com/

dupeGuru 4.0.3 updates picture cache backend and disables automatic updates on macOS. This is not a security update.
http://www.hardcoded.net/dupeguru/

Easy2Boot 1.87 fixes several bugs. This is not a security update.
http://www.easy2boot.com/download/

Everything 1.4.1.809b fixes several bugs and adds filter functions. This is not a security update.
http://www.voidtools.com/

GPU-Z 1.16.0 fixes a parsing bug. This is not a security update.
http://www.techpowerup.com/downloads/SysInfo/GPU-Z/

LessMSI 1.5.1 fixes several bugs. This is not a security update.
http://lessmsi.activescott.com/

FileLocator Pro 8.1.2682 improves cache size, error reporting, fixes several bugs. This is not a security update.
http://www.mythicsoft.com/filelocatorpro/download

DriveLetterView 1.46 now supports stdout. This is not a security update.
http://www.nirsoft.net/utils/drive_letter_view.html

FolderChangesView 2.00 adds improved notification support. This is not a security update.
http://www.nirsoft.net/utils/folder_changes_view.html

SearchMyFiles 2.77 improves error reporting. This is not a security update.
http://www.nirsoft.net/utils/search_my_files.html

SimpleWMIView 1.21 improves logging support. This is not a security update.
http://www.nirsoft.net/utils/simple_wmi_view.html

WhosIP 1.16 improves IPv6 support. This is not a security update.
http://www.nirsoft.net/utils/whosip.html

WirelessKeyView 2.05 adds advanced options to command line support. This is not a security update.
http://www.nirsoft.net/utils/wireless_key.html

OSForensics 4.0.1002 improves task logging, case management, various bug fixes and more. This is not a security update.
http://www.osforensics.com/download.html

CCleaner 5.25.5902 improves browser support, and fixes bugs. This is not a security update.
http://www.piriform.com/ccleaner

Speccy 1.30.730 improves reliability, adds support for new hardware and GUI improvements. This is not a security update.
http://www.piriform.com/speccy

RapidEE 9.1 build 931 fixes several bugs. This is not a security update.
http://www.rapidee.com/en/download

Sysmon 5.0 introduces file create and registry modification logging. This should be treated as a security update.
http://live.sysinternals.com/

Process Explorer 16.20 adds reporting of process Control Flow Guard (CFG) status and dynamically updates to reflect changes to process Data Execution Prevention (DEP) configuration. This is a security update.
http://live.sysinternals.com/

Procdump 8.2 adds a -kill option that terminates a process after its dump completes rather than allowing an exception to pass to Windows Error Reporting (WER), and a -wer switch to copy dumps to the WER queue. This is not a security update.
http://live.sysinternals.com/

LiveKd 5.6 includes a batch-mode option designed for scripted analysis that omits the prompt to re-execute LiveKD after a debugger session terminates. This is not a security update.
http://live.sysinternals.com/

TeamViewer 12.0.71503 fixes several connection problems and crash bugs. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

WSUS Offline 10.8.1 updates libraries and superseded updates. This is a security update.
http://download.wsusoffline.net/

Developer Updates

These are unlikely to be of interest to most people.

TortoiseSVN 1.9.5 fixes many bugs. This is not a security update.
http://tortoisesvn.net/downloads.html

MySQL 5.7.17 is a security update.
http://www.mysql.com/downloads/installer/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VMware Player 12.5.2 is a security update.
http://www.vmware.com/products/player/

VirtualBox 5.1.10-112026 fixes several bugs. This is not a security update.
http://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

phpList 3.2.6 fixes several bugs. This is not a security update.
http://www.phplist.com/download

Piwigo 2.8.3 is a security update.
http://piwigo.org/

Plupload 2.2.1 doesn’t provide a changelog, so should be treated as a security update.
http://www.plupload.com/

TinyMCE 4.5.1 adds several new features and many bug fixes. This should be treated as a security update.
http://www.tinymce.com/download/

Drupal 8.2.4 is a security update.
http://drupal.org/download

HumHub 1.1.2 adds several new features and events, fixes dozens of bugs. This is not a security update.
https://www.humhub.org/en/download

phpMyAdmin 4.6.5.2 is a security update.
http://www.phpmyadmin.net/home_page/news.php

WordPress 4.7 fixes several bugs and adds many new features (including keyboard shortcuts and tooltips). This is not a security update.
http://wordpress.org/

bbPress 2.5.12 fixes a role init bug. This should be treated as a security update.

BuddyPress 2.7.3 fixes several bugs. This is not a security update.

Contact Form 7 4.6 makes several improvements for reliability and maintainability. This is not a security update.

NextScripts Social Networks Auto-Poster 3.7.8 adds several new services, fixes bugs. This is not a security update.

Postie 1.8.22 fixes several bugs. This is not a security update.

Redirection 2.5 fixes several bugs. This is not a security update.

Top Commentators Widget 1.5.2 fixes a bug. This is not a security update.

WooCommerce 2.6.9 fixes several bugs. This is a security update.

WordPress Zero Spam 3.0.4 fixes several bugs. This is not a security update.

WPtouch 4.3.9 fixes several bugs. This is not a security update.

Sovrn (was Zemanta) 1.3.2 is a rebrand. This is not a security update.
That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/