Updates 2011-10-11

Hi, Folks!

Patch Tuesday is here again, and is a relatively light series overall, considering.

Microsoft released updates to address 8 vulnerabilities today in Windows, .NET, Silverlight, and Internet Explorer. These are security updates. A reboot is required.
http://update.microsoft.com/

iTunes 10.5 is a security update, correcting almost 80 distinct vulnerabilities.
Use Apple Software Updater to get the most current version.

Adobe AIR 3.0 adds 64-bit support and security updates. This is a security update.
https://12pd.com/click?air

Adobe Flash Player 11.0.1.152 is a major version update, and incorporates security updates. Flash is no longer available at a single URL, so you’ll need to visit the following webpage from EACH of your browsers, one at a time, to install this update. Uncheck any offers, toolbars and crapware offered during download AND installation.
http://get.adobe.com/flashplayer/

Driver Updates

If you’re using this hardware – these updates are for you.

ATI Catalyst 11.9 updates application profiles and adds support for new hardware. This is not a security update.
http://game.amd.com/us-en/drivers_catalyst.aspx

Browser Updates

One or more of these are likely to be of interest to everyone.

Firefox 7.0 and 7.0.1 provide several performance and standards updates, as well as fix a rare issue where some users could find one or more of their add-ons hidden after a Firefox update. This also corrects stability and security issues. This is a security update. Use Help, About to install the most current version.

SeaMonkey 2.4 and 2.4.1 provide several performance, standards, stability and security improvements. This is a security update. Use Help, About to install the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

Incredimail 6.29.5006 incorporates a number of minor bug fixes. This is not a security update. If you use incredimail, download the update from:
http://www.incredimail.com/english/

OutlookAttachView 1.85 adds features to help control message selection. This is not a security update.
http://www.nirsoft.net/utils/outlook_attachment.html

Thunderbird 7.0 and Thunderbird 7.0.1 provide several performance, standards, stability and security improvements. This is a security update. Use Help, About to install the most current version.

Internet Updates

One or more of these are likely to be of interest to everyone.

Skype 5.5.0.119 adds Firefox 7 support, and fixes several bugs. This is not a security update.
http://www.skype.com/intl/en/home

Trillian Astra for Windows 5.1.11 fixes several Skype-related bugs and a handful of other issues. This is not a security update.
http://www.trillian.im/

uTorrent 3.0 Build 25756 fixes a bug with uTorrent Remote. This is not a security update.
http://www.utorrent.com/

Codec Updates

One or more of these are likely to be of interest to everyone.

Win7 Codec Package 3.1.0 updates included codecs. To install the update, you must uninstall and reinstall the application.
http://shark007.net/win7codecs.html

Win x64 Codec Support 3.1.0 updates included codecs. This update applies only to 64-bit computers, and requires either the Win7 Codec Package or the Windows Vista Codec package.
http://shark007.net/x64components.html

Media Updates

These are unlikely to be of interest to most people.

ImgBurn 2.5.6.0 corrects a few dozen bugs, and improves the user interface. This is not a security update.
http://imgburn.com/

Office Updates

One or more of these are likely to be of interest to most people.

Paint.net 3.5.10 corrects a handful of minor bugs. This is not a security update.
http://www.getpaint.net/

Kindle for PC 1.8.0 Build 36124 adds multicolumn support, dictionary support, and list view support. This is not a security update.
https://12pd.com/click?kindle4pc

Capture Updates

These are unlikely to be of interest to most people.

VideoCacheView 2.00 adds drag and drop, and explorer copy options. This is not a security update.
http://www.nirsoft.net/utils/video_cache_view.html

WebVideoCap 1.41 fixes capture for certain streaming sites. This is not a security update.
http://www.nirsoft.net/utils/web_video_capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 8.1.2.5 adds a much improved profile editor, and support for new copy protection mechanisms. This is not a security update.
http://www.dvdfab.com/download.htm

Utility Updates

These are unlikely to be of interest to most people.

Recuva 1.41.534 adds content search, and support for Windows 8. This is not a security update.
http://www.piriform.com/recuva

Speccy 1.12.265 adds newer hardware support, wildcard search, and several stability improvements. This is not a security update.
http://www.piriform.com/speccy

LogMeIn Win 4.1.1868 fixes performance and stability issues. Right-click on the LogMeIn icon in your tray and select “Open LogMeIn”, click “About”, then “Check for Updates”. After a few minutes of downloading, the updater will start. You’ll be prompted to click “Update”, approve installation and finally “close” the installer when done. While not a security update, this should be considered an urgent update for all users.

Goodsync 8.8.1.5 fixes some crash and stability issues. This is not a security update.
https://12pd.com/click?goodsync

RoboForm 7.5.0 through 7.5.5 are almost exclusively related to Firefox problems, though 7.5.0 does improve Everywhere capabilities. This is not a security update
https://12pd.com/click?rf

WakeMeOnLan 1.12 adds sorting capabilities. This is not a security update.
http://www.nirsoft.net/utils/wake_on_lan.html

Wireless Network Watcher 1.31 adds sorting capabilities. This is not a security update.
http://www.nirsoft.net/utils/wireless_network_watcher.html

Developer Updates

These are unlikely to be of interest to most people.

MySQL ConnectorNet 6.4.4 adds native Windows Authentication support, and corrects several stability bugs. This is not a security update.
http://dev.mysql.com/downloads/connector/net/

Redemption 5.2.0.2482 adds iCal/vCal import, credential management, improves attachment automation, and corrects a number of bugs, particularly with performance. This is not a security update.
http://www.dimastr.com/redemption/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 4.1.4-74291 fixes a number of bugs. This is not a security update.
http://www.virtualbox.org/wiki/Downloads

VMware Player 4.0.0 is a major update, improving hardware support, significantly more resources, bluetooth passthru and other features. This version also requires more robust hardware. This is not a security update.
http://www.vmware.com/products/player/

Web Package Updates

These are likely to be of interest only to web developers.

SMF 2.0.1 is a security update.
http://download.simplemachines.org/

Dada Mail 4.8.1 is a security update.
http://dadamailproject.com/

DotNetNuke 06.00.02 fixes a number of bugs, updates included components to their latest versions. This is not a security update.
http://dotnetnuke.codeplex.com/

OpenCart 1.5.1.3.1 is a security update.
http://www.opencart.com/

BuddyStream 2.1.6 fixes some issues for BuddyPress 1.5, double Tweets, user setting pages, sitewide activitystream and other minor bugs. This is not a security update.
http://wordpress.org/extend/plugins/buddystream/

Redirection 2.2.10 fixes a security issue. This is a security update.
http://wordpress.org/extend/plugins/redirection/

Register IP – Multisite 1.3 adds WP 3.3 compatibility. This is not a security update.
http://wordpress.org/extend/plugins/register-ip-multisite/

Zemanta 0.8.1 incorporates the WP upload functionality instead of a dedicated media manager. This has security ramifications.
http://wordpress.org/extend/plugins/zemanta/

That’s all for now folks. Keep it clean out there.

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

Updates 2011-03-22

Hey folks!

Adobe chose to wait until I was “power-less” to release a number of security updates yesterday. These are all critical updates, and are currently being used by malware/viruses to do “bad things”.

Adobe Flash Player 10.2.153.1 is a security update. This update fixes a vulnerability that has been widely exploited over the last couple weeks. Download the two files below, close all browser windows, then install both updates. This is a security update.
  https://12pd.com/click?flash
  https://12pd.com/click?flashie

Adobe AIR 2.6 is a security update. This update fixes the same vulnerability found in the previous builds of Flash. This is a security update.
  https://12pd.com/click?air

Adobe Reader X (10.0.2) is a security update. This update provides a fix to a significant security issue within Adobe Reader. Use Help, Check for Updates to obtain this update. If you’re told that the update is not available, try again every few hours until it allows you to install the update. If you’re unsure if it’s installed or not, use Help, About Adobe Reader X, and then look in the bottom-left corner (in dark text) for the installed version number. It SHOULD be 10.0.2, if not, then you still need to updte. This is a security update.

Security updates are also released for all current version of Adobe Acrobat. Use Help, Check for Updates to obtain this update. If you’re told that the update is not available, try again every few hours until it allows you to install the update. This is a security update.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Browser Updates

One or more of these are likely to be of interest to everyone.

Firefox 4.0 is released! This major version update adds intercomputer settings synchronization, a rewritten (and much faster) javascript library, “Do Not Track” privacy option, hardware optimization, vastly improved HTML5 and CSS3 support, and support for the HSTS security protocol, which enables websites to tell Firefox to only ever load them via SSL. This is not a security update.
  http://www.mozilla.com/en-US/firefox/

Email Updates

One or more of these are likely to be of interest to everyone.

Incredimail 2.6.26.4922 is a bugfix release. This is not a security update.
  http://www.incredimail.com/english/

OutlookAttachView 1.61 adds an inline attachment display option. This is not a security update.
  http://www.nirsoft.net/utils/outlook_attachment.html

Internet Updates

One or more of these are likely to be of interest to everyone.

Skype 5.2.60.113 improves presence awareness, active monitoring, and cosmetic changes. This is not a security update.
  http://www.skype.com/intl/en/home

Capture Updates

These are unlikely to be of interest to most people.

Fraps 3.3.3 fixes the mouse not responding bug. This is not a security update.
  http://www.fraps.com/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 8.0.8.5 Fixes a crash bug, as well as a couple other reliability bugs. This is not a security update.
  http://www.dvdfab.com/en/download.htm

Utility Updates

These are unlikely to be of interest to most people.

GPU-Z 0.5.2 adds support for newer hardware, improves voltage monitoring and several other bugfixes. This is not a security update.
  http://www.techpowerup.com/downloads/SysInfo/GPU-Z/

Developer Updates

These are unlikely to be of interest to most people.

Inno Setup and QuickStart 5.4.2 adds icon handling, and several bugfixes. This is not a security update.
  http://www.jrsoftware.org/isdl.php

TortoiseSVN 1.6.14 corrects side-by-side dependency issues and a memory leak. This should be treated as a security update.
  http://tortoisesvn.net/downloads

Web Package Updates

These are likely to be of interest only to web developers.

phpMyAdmin 3.3.10 provides several bugfixes, including two security updates. This is a security update.
  http://www.phpmyadmin.net/home_page/news.php

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2010-09-21

Hey folks!

Apple has released security updates to OSX. Use the Apple Updater to obtain the most recent version.

QuickTime Player 7.68.75.0 is a security update. Use the Apple Updater to obtain the most recent version.

Adobe Flash Player 10.1.85.3 is a security update. Please download both of the following files, CLOSE all browsers and run both installers to update the Flash packages. This is a security update.
  https://12pd.com/click?flash
  https://12pd.com/click?flashie

Microsoft has released a new free security tool, Enhanced Mitigation Experience Toolkit (EMET), that adds the ability to apply better security handling for many applications that were developed without two major recent security improvements, ASLR and DEP. The initial installation is linked below. Download, install, then use the “Configure Apps” option to add specific insecure applications to the EMET protection.
  https://12pointdesign.com/click?emet

Adobe is planning to release an update for the current spate of security issues in Adobe Reader and Acrobat on October 4th. Meanwhile, for Windows users, the best protection is to install EMET above, and map the Adobe Reader and Acrobat executables to add ASLR and DEP protection.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Driver Updates

If you’re using this hardware – these updates are for you.

BullZip PDF Printer 7.1.0.1212 improves scripting functionality, and session handling. This is not a security update.
  http://www.bullzip.com/products/pdf/info.php

Browser Updates

One or more of these are likely to be of interest to everyone.

Firefox 3.6.10 “fixes a single stability issue affecting a limited number of users”, which prevents Firefox from loading at all. A rogue plugin is also added to the blocklist. This is not a security update. Use Help, Check for Updates to install the update.

SeaMonkey 2.0.8 adds the stability fix as above. This is not a security update. Use Help, Check for Updates to install the update.

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 3.1.4 corrects several stability and crash issues, and adds a rogue program to the blacklist. This is not a security update. Use Help, Check for Updates to obtain the update.

Incredimail 2.6.22.4750 adds Facebook integration to Incredimail, so you can upload photos and share links. This is not a security update.
  http://www.incredimail.com/english/

Media Updates

These are unlikely to be of interest to most people.

Picasa 3.8.115.53 is a stability and bug-fix update. This is not a security update. Use Help, Check for Updates, or use the link below:
  http://picasa.google.com/

Utility Updates

These are unlikely to be of interest to most people.

Goodsync and Goodsync2Go 8.3.5.5 increases performance during cleanup. This is not a security update.
  http://www.goodsync.com/download/affs/goodsync-x12pd.exe

Developer Updates

These are unlikely to be of interest to most people.

Inno Setup 5.3.11 now creates shortcuts with a specified working directory, to help mitigate the potential for DLL hijacking exploits of installed applications using Inno as the release tool, and adds several other security improvements, as well as a few cosmetic, compression and menu changes. This should be treated as a security update.
  http://www.jrsoftware.org/isdl.php

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2010-06-17

Hey folks!

Apple released updates for OSX 10.6.4 for all current platforms, including servers and devices. This corrects multiple stability and security issues. Apple also released Security Update 2010-004. These are security updates. Use the Apple Updater to obtain the most recent updates. A reboot is necessary.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Driver Updates

If you’re using this hardware – these updates are for you.

ATI Catalyst 10.6 adds additional hardware support, GPU acceleration for Flash, noise and artifact reduction, support for the newest versions of OpenGL and performance improvements within various applications and games. This is not a security update.
  http://game.amd.com/us-en/drivers_catalyst.aspx

nVidia 257.21 adds Blu-Ray 3D support, additional hardware support, latest OpenGL version support, performance improvements in various applications
  http://www.nvidia.com/Download/index5.aspx?lang=en-us

Internet Updates

One or more of these are likely to be of interest to everyone.

Connectify 2.0.0.15387 minimizes manual setup, adds banning and support for additional devices. This is not a security update.
  http://www.connectify.me/index.html

FileZilla 3.3.3 fixes several cosmetic issues. This is not a security update.
  http://filezilla-project.org/download.php?type=client

Incredimail 2.6.10.4631 improves email account setup wizard. This is not a security update.
  http://www.incredimail.com/english/

Mozilla Thunderbird 3.0.5 improves network performance, indexing and GUI changes, advanced filtering, IMAP improvements and over 60 bugs. This is not a security update.
  http://www.mozillamessaging.com/en-US/thunderbird/

Media updates

These are unlikely to be of interest to most people.

iTunes 9.2 and MobileMe 1.6 adds support for iOS4. iTunes 9.2 also provides faster sync, performance and security improvements. This is a security update. Use the Apple Updater, or the URL below.
  http://apple.com/itunes/

CDBurnerXP 4.3.2.2212 corrects UI and reliability issues, and adds pre-processing checks.
  http://cdburnerxp.se/

Security Software Updates

One or more of these is likely to be of interest to most people.

SuperAntiSpyware 4.39.1002 fixes automatic update under 64-bit, accelerates ‘quick scan’ and improves detection for certain types of content. This is a security update.
  http://www.superantispyware.com/download.html

Capture Updates

These are unlikely to be of interest to most people.

Fraps 3.2.3 adds intelligent cache handling, and corrects several stability problems. This is not a security update.
  http://www.fraps.com/download.php

VideoCacheView 1.70 adds performance improvements and minor UI changes. This is not a security update.
  http://www.nirsoft.net/utils/video_cache_view.html

Utility Updates

These are unlikely to be of interest to most people.

Autoruns 10.01 corrects an issue with jumping to a registry key in the HKCU hive. This is not a security update.
  http://sysinternals.com/

Developer updates

These are unlikely to be of interest to most people.

MySQL 5.1.48 corrects issues with replication, partitioning and incorrect handling of JOIN and buffering. This also corrects potential crash situations when using certain SQL structures. This is not a security update, but the stability improvements justify an immediate upgrade.
  http://www.mysql.com/downloads/mysql/

Inno Setup 5.3.10 adds .net 4 support, as well as a half dozen other bug fixes and changes. This is not a security update.
  http://www.jrsoftware.org/isdl.php

Web Package Updates

These are likely to be of interest only to web developers.

WordPress 3.0 incorporates almost 1,500 changes, including over a thousand bug fixes, GUI changes, and core code improvements. This is not a security update. While I normally recommend updating core web applications immediately, WP typically releases a security bugfix update shortly after all major and minor releases, so I recommend delaying installation of this update for about a week. Since this version does not incorporate any security updates, the delay does not put you at any additional risk.
  http://wordpress.org/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/