Updates 2025-12-09

Posted on December 9, 2025 by Shawn K. Hall

Merry Christmas, Folks!

Today is Patch Tuesday for December, 2025.

If your Windows 10 computer can not be upgraded to Windows 11 then you should either replace your device or use the Windows 10 ESU program to get another year out of it.

Windows 11 25H2 is now available and Windows 11 23H2 and older are no longer supported. Treat Windows 11 25H2 as beta software and wait a few months before upgrading.

macOS 26 Tahoe is now available and macOS 13 Ventura and older are no longer supported. Treat macOS 26 as beta software and wait a few months before upgrading.

There were 975+ major hacks, and over 525 application updates this month. It’s an average month, with about 3.5 GB of updates for most users.

This Month in Technology

1Panel, 3S Group, 3S Software, 7-Zip, 700Credit, A-B Communications, A10 Networks, Abbott, ABC Home & Commercial Services, Abdulhadi Hospital, Abhe & Svoboda, Access Search, ACE Forwarding, Acoustical Control, Acroni, Acu Trans Solutions, ADC Aerospace, ADDA, ADEPT, Advanced Power, Advantage 360, Aero Precision, Afternic, AG Displays, AGS, Ahome, Ahtna, Inc, Air Design Systems, Air Miles España, AJ Jersey, Akehurst Landscape Service, AkroStar Technology, Al Quraishi Marketing, Al-Ettifag Academy, Aljomaih Automotive, AllerVie Health, Alma Realty, Almaviva, Alpha Omega Winery, Alshaya Group, Amcore, American Associated Pharmacies, American Israel Public Affairs Committee (AIPAC), American Pools & Spas, American Public Television, American Soccer Company Inc, American Trust Administrators, AMH Philippines, Anchorage Neighborhood Health Center, Anderson Bancshares, Android, Ansible Community, Anthem, Inc, Anywhere RE, Anywhere Real Estate, Apache Struts, Apache Syncope, Apache Tika, Appalachian Community Federal Credit Union, Apple macOS, Apple Safari, Appleton UPSMON-Pro, Applied Energy Systems, Arabia Holding, Arabian Escapes, Archer Health, ARH Associates, Arista NG Firewall, ARKo, Armis Group, Array AG Series VPN, Artesian Insurance, Artists & Clients, Asahi Kasei Microdevices, Asia Condominium Association, ASL HR Solutions, Aspen Distribution, Astrofein, over 50,000 ASUS routers, ASUS AiCloud routers, ASUS DSL routers, ASUS MyASUS, ATIC TS, Atrium Living Centers, AudioCodes Fax/IVR Appliance, Avery Dennison, AVR Industries, AvtechTyee, B&J Rocket Sales, B2BE, Badan Pengelola Keuangan Haji, Badr Airlines, Bais Yaakov Elementary School, Balkrishna Paper Mills, Baltimore City Fire and Police Employees’ Retirement System, BanBan Play, Bangkok Eagle Wings, Bank of Cyprus Oncology Centre, Barbizon Lighting, Barnhart, Barts Health NHS Trust, Basecamp, Basin Harbor, Basra Transports, Battaglioli, Baxter Life 2000 Ventilation System, BayFirst, Bechtel, Beckett Collectibles, Becks Group Australia, Bel Fuse, Bellwether Community Credit Union, Benchmark Connector, Bergeson, Berjaya Air, BestAdsOnTV, Betterhomes, Big Lar, Bilsam, BioPharma Services, Bison Family Medical Clinics, BK Precision, Bleyl Engineering, Blossom Cloud, Blue Projects, BMS HS, Bo Beuckman Ford, Bodegas San Huberto, Bodhi Media Corp, BOLD Furniture, Bomchil, Bosch Choice Welfare Benefit Plan, Boutin Jones, Brahma Kumaris Columbia, Brenda Richardson Memorial Care Home, Brian-Kyles Construction, Broadcom, Brodosplit, Brsk, Brumfield Construction, Burnham Brown, Byzfunder NY LLC, Cabify, Cache Valley ENT, Cadman Power Equipment, Cal-Comp Electronics de México, Caldwell & Company Accounting, California Casualty Indemnity Exchange, Calmec, Camomilla Italia, Canno Design, Canon, Canvas Church, Capital Star Oil & Gas Inc, Capo Brothers, Capp Shupak, Carbon Graphics Group, Cardinal Services, CareTracker, Cargus, Carlton Fields, Caros, Cartones Villa Marina, Castel, Casting House, Cayuga Milk Ingredients, CC Johnson & Malhotra, CDU Beauty Medical Center, Center for Urologic Care, Cera Stribley, Chairmans Foods, Changepond Technologies, Charles Rutenberg Realty, Checkout, Chenango Valley Technologies, China Software Developer Network (CSDN), Chinese Military, ChristianaCare, Christofle, Church of the Ascension, Cimertex, Citi, City of Attleboro, MA, City of La Vergne, TN, City of Leavenworth, KS, City of Nuenen, NL, City of Urbana, IL, CJW, Clark & Sullivan Constructors, Claude AI, Clayco Solar, Clemar Assessoria e Logística em Comércio Internacional, Cleveland County Sheriff’s Office, Clipim, Cloudeka, Cloudflare, Clínica Villa Zaita, CodeStepByStep, Coldwell Banker UAE, Columbia Medical Practice, Comansco, Community 1st, Companjon, Complexo Hospitalar Municipal de Sao Bernardo do Campo, Comune di Balmuccia, Conasems, Concord Academy, Conduent Business Services, LLC, ConfortChem, Consero Global Solutions, LLC, Consolidated Sterilizer Systems, Copper Steel Fabricators, Coral, Cornerstone Staffing Solutions, Cottage Hospital, Country Club Enterprises, Coupang, CoVantage Credit Union, Cox Enterprises, Crisis24, Croft, CrowdStrike, Crucible Industries, Cryo Pur, CST Coal, CT Dent, Curtis Investment Group, Custom Engineered Wheels, Cytiva, D-Link DIR-878 routers, Dartmouth College, Dartmouth, Data Enterprises of the Northwest, Datenlotsen, David M. Schwarz Architects, Davies, McFarland & Carroll LLC, Davis Kitchens, DealMed Medical Supplies, Dell ControlVault3, Delta Coast Consultants, Delta Dental of Virginia, Demi Group, Dentsu, Dermatology Associates of Concord, Design Team Sign Company, Devereux Advanced Behavioral Health, DeWalch Technologies, DHK Architects, DIE, Diesel Electric, Discord Inc, Disston, Division 10, Django, Dobco, Doctor Alliance, Doka, Dooney & Bourke, DoorDash, Dover Area School District, Dr Isaac Gertz, DreamFactory, Drivestream, DTG Consulting Solutions, Dubois Wood, Dubroff, Easley, & Lovell, LLP, Duhabex, Dulay & Dulay, Eagle Oil & Gas, Eakas, Eastek International, Echo Design Group, ECI, EDIS, Edmunds, Eggelhof, Egovframe, Eighteen, Electricidad Panamericana, Electronic Products Shop, Elite Flower, Elundini Local Municipality, Elysian Real Estate, Emby Server, Emerson Movicon, Emond Publishing, ENEA, Enerre Pharma Lda, Ennoble Care & Circa Health, Enovis, EnQuest, Entrust, Envirotech Services, Episource, LLC, Ermat Grup, Ernest Käslin, ERR Raumplaner, ES Synergy, ESH7Enly, Espaço Casa, Eurofiber France, Eurofiber, Everbiz Industrial, Evytra, Exegy, ExeVision, F-W-S Countertops, Family Farm and Home, Fargo Park District, Farmers Insurance Exchange, Farmers Group, Inc, Fayette County, FDC Interiors, Felixvet, Fianzas Avanza, Fieldtex Products, FiinGate, Fineline Architectural Millwork, First Fruits Farms, Fishbowl Solutions, FIT, Fix Tecnologia, Fleet Management, Flock license readers, FloorHeat, Florida District 1 Medical Examiner, Forbes Marshall, Force Brokerage, Forensic Medical Management Services, Form Energy, Inc, Fortinet FortiWeb, Foster & Eldridge, Four Points by Sheraton, Foxconn Interconnect Technology, FR Express, France terre d’asile, Franklin County Engineer, OH, FreedL Group, Freedom Mobile, French Football Federation, Frontrol, Fruit of the Loom, FS Italiane Group, Fueling Solutions, Fuji Vegetable Oil, Fulgar, Fulkocha College, FullBeauty Brands, Fun For Less Tours, Fundidora de Cananea, Futureal, Gainesville Regional Airport, Galesi Group, Gana Payment, Garden of Life, Garland ISD Schools, Garrett Taylor, DDS, Gemeinde Untereisesheim, General Distributing, Genrose Stone + Tile, GeoHealthResearch, Gershow Recycling, Gl Veneer, Inc, GL0Inet GL-AXT1800, Gladinet’s Triofox, Glendale Obstetrics and Gynecology, GlobalLogic, GlobalProtect VPN portals, Globatech, Gmarket, Gold Coast Health Plan, Golden Artist Colors, Goldenrod, Goldhorse Capital, Goodman Air Conditioning & Heating, Google Chrome, Gopher Industrial, Government of Argentina, Government of Bangladesh, Government of Bolivia, Government of Brazil, Government of Columbia, Government of Ecuador, Government of Ethiopia, Government of Honduras, Government of India, Government of Indonesia, Government of Iran, Government of Jordan, Government of Kenya, Government of Malaysia, Government of Mexico, Government of Nigeria, Government of Pakistan, Government of Peru, Government of Philippines, Government of South Africa, Government of Syria, Government of Thailand, Government of Timor Leste, Government of Viet Nam, Goyal Books, Grafana, Granjas 4 Irmãos, Greater Cleveland Regional Transit Authority, Greenball, GreenBest, Grinding & Dicing Services, Gruenberg Kelly Della, Grupo Via Argentina, GSCCCA, GuestTek, GV Service, Habib Bank AG Zurich, Hall Aluminum Products, Hamilton Construction, Harbor Real Estate, Harbor Regional Center, Harvard Alumni Affairs, Harvard University, HASCO Hasenclever, Hazel Mercantile, HCMS Partners, Healthcare Interactive, Inc, Healthcare Retroactive Audits, Helix Energy Solutions, Heritage Communities, Herman & Chamow, HESCO Foodservice, HG Reynolds, Highmark, Hitech, Holiday Palace, HollySys Asia Pacific, Homes 4 Life, Homestead Museum, Horst Realty, HostingFest, House of Hope, Humana Inc, Hunt & Harris Real Estate, Hydroscand, Hyperdome Medical Centre, HYTORC, Hyundai AutoEver America, Hyundai Nishat Motor, Iberia, iBizSoft, IBM AIX, ILCA Targhe, ILM College, Ilustre Colegio de la Abogacia de Barcelona, Immling Festival, ImunifyAV, Incentive Concepts, Incolease, Information Communication Board of the Sarawak Chinese Annual Conference (ICBSCAC), Ingenieurbüro Laudi, Innomotive Solutions Group, Innovex International, Inotiv, Inspire Communities, Institutional & Supermarket Equipment, Integra Life, Intellexa, IntelliVIX, Interlink Trade Services, International Kiteboarding Organization, Interoil, Inventive IT, 120,000 Korean IP cameras, Irwin Car, Iscot Italia, Issaqueena Pediatric Dentistry & Orthodontics, Istituto Comprensivo di Cavaglià, ITL Systemhaus, Jack Levine, Japan Exchange Group, Japan Financial Investment Education Association, JASCO Applied Sciences, Jason Finch & Associates, Jefferson Enterprises, LLC, Jeffrey W. Krol & Associates, Jewell Engineering, JingHang Network Technology, Jobbers Moving & Storage, JPMorgan Chase, JR Engineering, Julius Koch, multiple jury systems across the US and Canada, K3G Solutions LTDA, Kaan Cronenberg & Partners Law, Kaener Personal, Kajima Europe, Kana Pipeline, Kane’s Furniture, Kansas City Behavioral Health Center, Kasapreko, Kaslin, Katch Kan, Kaufman County, KDR Real Estate Services, Kelly Wearstler Gallery, Kensington and Chelsea, Kensington Court, Kern Oil & Refining Co, Kettle, Sánchez & Co, Kewaunee Scientific, Keystone Fabricating, Khazzan Logistics Management Services, Kids & Company, Killingly Public Schools, Kimber Manufacturing, King City Lumber, Kingsford Group, KinoKong, Klüber Elektroanlagenbau, Knex Technology, Koha Foods, KohaFoods Hawaii, Korean Air C&D Service, KorPath, Kröger, Rehmann & Partner, Kudun & Partners, Kulturrådet, L&L Products, La Costa Dental Excellence, LA Injury Attorneys, Lake Superior State University, LAMAICA, Egypt, Landis, LatamLex, Law Office of Ronald W Hillberg, Lawyers’ Mutual Insurance Company of California, Legacy Classic, lemlist, Leroy Merlin, Lesker, LG, LG Energy Solution, Liat Gallery, Liberty Gold Fruit, Liberty Resources, Liberty Shoes, Life Fitness, Lincoln IT, Lithographix, Live Auctioneers, LL Products, LMG Holdings, Logitech, Lone Rock Timber, Lotus Powergear, Lows Orkney, LSA, Lynx+ Gateway, M&BM, Inc, M&Y Personal Injury Lawyers, MacTavish, Macy’s, Madison Square Garden, Mae Krathing Power Company, Mae Krating Power, MAG Aerospace, MagicSeller, Maheu & Maheu, Mainetti UK, Makro, Manusos General Contracting, Maresa Logística, MariaDB, Marlex Human Capital, Marquis Software Solutions, Maset, McKay Empire, McManes Law, MD Manouel Insurance Agency, Mechanical Systems, Medidores Industriales, Medisend College, Medsi Group, Meena Health, Mehri & Skalet, PLLC, Memorial Hospital and Manor, Metrocare Services, Metropolitan Adjustment Bureau, MFE Formwork Technology, Michelin Group, Microsoft’s Visual Studio Code Marketplace, Milano Ristorazione, Millicom, Miromar Development, Mishan, Mister Guns, MITACHI, Mitchell Silberberg & Knupp, MMC Studios, MOBI Technologies, Mobilelink USA, Modern Display, Money Mart, Morgan Stanley, Morton LTC, Motors City Center, Motorsportmarkt, Moyes, Mqd, Mr Christmas, MSP360 Free Backup, mToilet, MultistateTax Inc, Murphy, Pearson, Bradley & Feeney, APC, Muskoka Brewery, N15 Technology, Nadel Architects, Naffco, Nahant, Nasajon, National Health Insurance Management Authority, National University of Natural Medicine, Nationwide Legal LLC, NC Machinery, NetScaler ADC and Gateway, NETTTS, New England Tractor Trailer Training School, New Haven Public Schools, New Horizons Medical, Newgen Digital Works, Newline Cloud, Next Generation Logistics, Nickman’s Drug, Ninas Jewellery, Nita Transfert, NKC Health, Noment, NONC, North Kansas City Hospital, Northcroft, Norway Savings Bank, Nottingham Village, NovAtel, Nugent Supply, Numalliance, NVIDIA AIStore, NVIDIA Isaac-GROOT, NVIDIA Megatron, Oakland Museum of California, Omega Tool, Omnium International, OncoHealth, One Broker Group, One Source Associates, OnSolve CodeRED, OpenAI ChatGPT API, Optima Tax Relief, LLC, Orchid Island Golf and Beach Club, Oriental Castle Group, Oscars Group, Outback Pharmacies, Paal, Paccar, Pajemploi, Pan-O-Gold Baking, Panini Kabob Grill, Parallels Toolbox, Parrish Tire, Parsirang, Pathmaker Group, PDF-XChange, Pearl River Valley Electric Power Association, Pennsylvania Attorney General, PEPE, Perry Brothers Oil, Persante Health Care, Persianas Canet, Personic, Petco Animal Supplies Stores, Inc (“Petco”), Peter Meijer Architect, Petra, Petro Environmental, Petrobras Campos, PFMI, PH Molds, PHA Body Systems, Phillipine Department of the Interior and Local Government, Physiothletics, Pilgrim Packaging, Pioneer Ocean Freight Co, Pipeline Inc, Pixtura, PJSI Consultants, Platinum Healthcare Staffing, PlatinumOne Business Services, Playroll, PM Plastics, Poe’s Accounting Services, Point Construction Advisory Group, Poland’s military, Polidano Group, Poliserv, Portal Emploi, Portland’s Living Room Theater, Poyntell, Precision Compounding Pharmacy, Princeton University, Prismier, Privia Medical Group, Pro Medicus, ProAgro Seguros, ProCure Proton Therapy, Profondia, Propeller Industries, Protei, Providence Academy, Puerto Rico government agencies, Puerto Rico Warehousing, QPrint Digital, QuaLex Manufacturing, Quality Companies, Quality Engineered Homes, Quasar Inc, Quinn Jay Patent, Radio Sound, RaidForums, Ralph McKay Industries, Rama Judicial de Colombia, Rasen Insaat Ve Yatirim Ticaret, Ravand Cybertech, Ray Clusters, React Server (at least 30 organizations), Reading Elevator Service, Redi Carpet, Reed Pope Law, Refer Life, Regional Business Systems, Reliable Van & Storage, Remarket Space, Rempe Construction, Renesas Electronics, Repka, Reporters Without Borders, Revive Adserver, Revnomix, Rhodes Young Black & Duncan, Ripley Academy, Risk & Insurance Education Alliance, Riyadh Airports, RJ Walker, Roblox Developers Conference, Rochester Philharmonic Orchestra, Rockhill Women’s Care, Roebbelen Contracting, Inc, Rogitex, Rollingertec, Rose Displays, Roseburrough Tool, Rosland Capital, Rossit, Rouse Frets White Goss Gentile Rhodes, RR Lalan College, RUEZ, Running Aces, Saca Industrie SpA, SAExploration, Sakol Energy Public, Salesforce, Samsung, San Miguel, Sanko Air Plant, Sansala, Santa Paula, Sarmap, Savills Middle East, SBLM Architects, Scalextric, Schlenker & Cantwell, Schmidt’s, Scientology, Scrap Market, Search, Inc, Secure Network Solutions, SecureTeen, Security First Bank, Seipi, SEKISUI Aerospace, Sellers Publishing, SEPE-USET, Serratelli Hat, SES Société Energies Services, SEV-CI, SGK INC, Shelbra International, Shumate Mechanical, Sieger Design, Siemens SINEC NMS, Simmons Electrical, Simsekas, Singapore City Development, SitusAMC, SLA, Slimsoft, SmartTube YouTube client for Android TV, Smith Fire Systems, Smith Gardner, Smoll & Banning, Snyder Cohn, Socomec DIRIS Digiware, Soderstrom Architects, Sodise, SOKOL, Sol Trading, Soleol, SomnoSleep Consultants, SonicWall SonicOS, Sorbonne Université, Sotheby’s International Realty, South Island Public Service District, Southern Lion, Spark Innovation, Spark Power, Spoleta Construction, SSA Holdings, LLC, Stacey L Tokunaga, Standing Chapter 13 Trustee, Stark Shipping, StatMedPlus LLC, Sterling Biotech, Stoss Landscape Urbanism, SuKarne, Sumitomo Chemical, Summit Hotel Properties, SUNAFIL, Sunny Go, Svenska kraftnät, Swan Bitcoin, Swift Filters, Synergy (no public disclosure), Synnovis, Söllner, TAJMAC-ZPS, Takeuchi, Talarico, Talbot & Associates, Tami J. Dunham, CPA, Tawasol Solution & Services, TBC Consoles, TCG, TEAM Companies, Tencent Hunyuan3D, Tencent HunyuanDiT, Tencent HunyuanVideo, Tencent MedicalNet, Tencent NeuralNLP, Tencent PatrickStar, Tencent TFace, TFC Poultry, The American School Foundation, The Foot Doctors, The Hunnicutt Law Group, The InterTech Group, The Landreau Group, The Minor Firm, The Smith Companies, The TEAM Companies, LLC, The University of Pennsylvania, The Westin San Diego, ThinkMarkets, Thob Al Aseel, Thomas Davies, DPM, Thomas Safran & Associates, Tlusty & Kennedy, TMC Transformers, TOC Building, Toledo Transducers, Towerstream, TPI Composites, Tracsa Cat, Trane Technologies, Tranimpex, Transpedrosa, Treet, Treetop, Tri-Century Eye Care, Trigg Laboratories, Trolec, Tru Universe, Truenorth Corporation, Trumbull County, Tuan Le Construction, Tulane University, Turknet, Turkstra Trusses, Twonky, TypeCase Marketing Resource, UAM, UNDER ARMOUR, UniqueTech Engineering, United Food & Commercial Workers Local No. 7, United Volleyball Supply, Universidade Municipal de São Caetano, University Loft, University of Gävle, University of Pennsylvania, University of Phoenix, University of St. Thomas, UNOde50, Upbit, multiple US government agencies, Valley Banks, Valley Eye Associates, Valley Plains Equipment, Vanguard Business Information & Risk Management, Vantec Europe, Vennerhus Weine, VENZI & PAGANINI AG, Veton Ai, Viabizzuno, Victor Insulators, Vikor Scientific, VIP Apps Consulting, VIPRE Advanced Security, Virtualware Solutions, Visage Imaging, Vitamix, VITAS Hospice Services, LLC, VoiceTeam Call, Volkswagen Mandi, VS Gandía Palace Hotel, Vultr, Wachtmann Rohstoffhandel, Wachusett Regional School District, Wakefield & Associates, Walgreens Boots Alliance, Washington Post, Watson Clinic, Waukegan Steel, Webseeds, Wedge Holdings, Weiss, WEL Companies, Inc, West Donegal Credit Union, WhatsApp, Whitinger Strategic Services, Wibu-Systems WibuKey, Williams & Sparages, Williamson County, TX, Wiltshire Police, UK, Windows CLFS, Wisconsin Knife Works, WLR Precision Engineering, Woom GmbH, WordPress King Addons for Elementor plugin, WordPress W3 Total Cache plugin, Workflow Concepts, World Liberty Financial, WR Comercial, Wright Architectural Millwork, Wyandot Center, Wynn & Wynn, XOX Mobile, XWiki, Yearn Finance, Yellow Cab of Columbus, Yutong electric buses, Zadro, Zecher, Ziglin Signs, Zilvia, ZITADEL, Znojma Czechia, Zoetis, Zoya, Zuber Aussenwelten, and Şimşek have reported hacking or compromises this month.

ChatGPT, City of Leavenworth, Kansas, Cloudflare (quite a few times), Microsoft Defender portal, Microsoft Exchange Online, Royal Borough of Kensington and Chelsea, Westminster City Council, and X (repeatedly) have suffered from outages this month.

Internet access throughout Darwin, Australia, Dominican Republic, Donetsk Oblast, Ukraine, Russia, Sri Lanka, Sumy, Ukraine, Thailand, Ukraine (many times), Wyoming and South Dakota has been blocked our down for extended periods.

Last months updates broke Dell video packages, Microsoft 365 desktop, Microsoft Outlook desktop, “new” Outlook, Nvidia drivers, Windows 10 ESU enrollment, Windows 11 login button, Windows 11 Start Menu & File Explorer, Windows File Explorer, and X.

The Germans are now silencing US-based first-amendment protected content across the world through Cloudflare.

Code “beautifiers” (and other anonymous free services) have been publicly sharing secrets of unwitting users for years.

Sigh. The FCC has rolled back their new security requirements for US telecommunications operators that were imposed after they fell victim to the Salt Typhoon attack that exploited a weakness that has been in use for over 20 years.

Now for the good news:

Google has changed course on their draconian requirements that would have prevented all non-corporate developers from releasing software for Android.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is average this month. The typical computer should see roughly 3.5 GB in updates today. Let’s get started.

Microsoft released 34 updates to address 69 vulnerabilities in Application Information Services, Azure Monitor Agent, Copilot, Microsoft Brokering File System, Microsoft Edge, Microsoft Edge for iOS, Microsoft Exchange Server, Microsoft Graphics Component, Microsoft Office, Microsoft Office Access, Microsoft Office Excel, Microsoft Office Outlook, Microsoft Office SharePoint, Microsoft Office Word, Storvsp.sys Driver, Windows Camera Frame Server Monitor, Windows Client-Side Caching (CSC) Service, Windows Cloud Files Mini Filter Driver, Windows Common Log File System Driver, Windows Defender Firewall Service, Windows DirectX, Windows DWM Core Library, Windows Hyper-V, Windows Installer, Windows Message Queuing, Windows PowerShell, Windows Projected File System, Windows Projected File System Filter Driver, Windows Remote Access Connection Manager, Windows Resilient File System (ReFS), Windows Routing and Remote Access Service (RRAS), Windows Shell, Windows Storage VSP Driver, Windows Win32K – GRFX, and MSRT. This includes security updates. A reboot is required.

Apple released updates for Compressor 4.11.1. This is a security update. Use Apple Software Update to install the most current versions.

Google ChromeOS 142.0.7444.220 and ChromeOS LTS 138.0.7204.298 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Tahoe (26.x) means that macOS Ventura (13.x) and older are no longer supported. If you can not install at least macOS Sonoma (14) on your Mac then you should immediately remove your device from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The current — and final — release of the Windows 10 (v22H2) is end of life (EOL). All non-LTS versions of Windows 10 without ESU are now out of support, with the sole alternatives being to upgrade to Windows 11 or enable Extended Service Updates (ESU). If you aren’t sure whether you are using LTS, you aren’t. Enable the ESU now.

The current release of the Windows 11 (v25H2) is very large (30% larger than any previous release) so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it. If not, switch to Linux (Mint is nice) or replace your computer.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, drivers for hardware you’re not using (like old printers), and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with a SaferPC Subscription and we will install updates each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 25.11.1 resolves several bugs and improves stability. This is not a security update.
https://www.amd.com/en/support

Crucial Storage Executive 11.11 does not provide a change log so should be treated as a security update.
https://www.crucial.com/support/storage-executive

Epson ET-2750 2.100.00 does not provide a detailed change log so should be treated as a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-2750/s/SPT_C11CG22201

Epson ET-2760 2.100.00 does not provide a detailed change log so should be treated as a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-2760/s/SPT_C11CG22203

Epson ET-4760 2.100.00 does not provide a detailed change log so should be treated as a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-4760/s/SPT_C11CG19203

Epson WF-4730 2.100.00 does not provide a detailed change log so should be treated as a security update.
https://epson.com/Support/Printers/All-In-Ones/WorkForce-Series/Epson-WorkForce-Pro-WF-4730/s/SPT_C11CG01201

MTPdrive 5.0.200 updates driver. This is not a security update.
https://www.mtpdrive.com/

Stream Deck 7.1 adds in-app marketplace search, NodeJS sideloading, improved profile management and storage, cosmetic improvements and resolves several bugs. This is not a security update.
https://help.elgato.com/hc/en-us/categories/360001636492-Stream-Deck

TP-Link Archer A6 v3 250716 is a security update.
https://www.tp-link.com/us/support/download/archer-a6/v3/#Firmware

UniFi AC Professional 6.7.35 improves stability and resolves over a dozen bugs. This is not a security update.
https://www.ui.com/download/software/uap-ac-pro

UniFi airMAX NanoStation 5AC Loco 8.7.19 is a security update.
https://www.ui.com/download/software/loco5ac

UniFi Network Server 10.0.160 resolves over a dozen bugs and offers improvements in controls, filters, and reporting. This is a security update.
https://www.ui.com/download/releases/network-server

UniFi U6 Professional 6.7.35 improves stability and resolves over a dozen bugs. This is not a security update.
https://www.ui.com/download/software/u6-pro

VIISAN OfficeCam 7.2.14 does not provide a change log so should be treated as a security update.
https://www.viisan.com/en/download/type1.html

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.85.111 is a security update.
https://brave.com/

Firefox 146.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 140.6.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 143.0.7499.40 is a security update.
https://www.google.com/chrome/

Microsoft Edge 143.0.3650.75 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Vivaldi 7.7.3851.58 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

OutlookAttachView 3.55 resolves a minor cosmetic bug. This is not a security update.
https://www.nirsoft.net/utils/outlook_attachment.html

Spark 3.27.4.124849 resolves several stability bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.27.4.124850 resolves several stability bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 145.0.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 9.6.6 resolves several stability and reliability bugs and improves compatibility. This is a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 9.6.0 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

Discord December 8, 2025 is a security update.
https://discord.com/download

FileZilla Client 3.69.5 updates libraries and resolves a cosmetic bug. This is not a security update.
https://filezilla-project.org/

FileZilla Server 1.12.0 resolves several bugs. This is not a security update.
https://filezilla-project.org/

FreeFileSync 14.6 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 118.0 improves performance. This is not a security update.
https://drive.google.com/start

MeshCentral 1.1.54 updates libraries, resolves dozens of bugs, and improves compatibility and reliability. This is not a security update.
https://meshcentral.com/info/downloads.html

Nextcloud Server 32.0.2 updates libraries and resolves dozens of bugs. This is a security update.
https://nextcloud.com/

Npcap 1.85 is a security update.
https://nmap.org/npcap/

Rclone 1.72.0 updates libraries and resolves dozens of bugs. This is a security update.
https://rclone.org/

Signal 7.81.0 updates gallery previews. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.66.5 adds polling. This is not a security update.
https://signal.org/android/apk/

Syncthing 2.0.12 updates libraries. This is not a security update.
https://syncthing.net/

Technitium DNS Server 14.2 resolves several bugs and improves cluster support. This is not a security update.
https://technitium.com/dns/

Telegram 6.3.6 resolves a couple crash bugs. This is not a security update.
https://telegram.org/

WinSCP 6.5.5 resolves three bugs. This is not a security update.
https://winscp.net/eng/index.php

Zoom 6.6.11.23272 is a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.23 resolves several bugs, improves integration and default behaviors. This is not a security update.
https://en.3tene.com/

Grayjay 355 adds casting, playlist looping, improves update process and resolves several bugs. This is not a security update.
https://grayjay.app/index.html

KaraFun Player 3.10.3 improves performance and responsiveness, audio sync over Bluetooth and resolves several bugs. This is not a security update.
https://www.karafun.com/karaoke-windows/

Plex Desktop 1.112.0.359 updates libraries. Be aware that Plex recently changed their licensing terms to now require subscriptions for anyone viewing shared media.
https://www.plex.tv/media-server-downloads/#plex-app

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.130.42 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Minecraft Server (Java) 1.21.11 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server

Nintendo Switch 21.1.0 improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 2025.111 improves performance and stability. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2025.11.18 resolves over a dozen bugs. This is a security update.
https://store.steampowered.com/news/app/593110

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Acrobat Reader 25.001.20997, 24.001.30307, 24.001.30308, and 20.005.30838 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb25-119.html

Adobe ColdFusion 2025u5, 2023u17, and 2021u23 are security updates.
https://helpx.adobe.com/security/products/coldfusion/apsb25-105.html

Adobe Creative Cloud Desktop 6.8.0.821 is a security update.
https://helpx.adobe.com/security/products/creative-cloud/apsb25-120.html

Adobe DNG SDK 1.7.1 build 2140 is a security update.
https://helpx.adobe.com/security/products/dng-sdk/apsb25-118.html

Adobe Experience Manager 2025.12, 6.5 LTS SP1 61551, and 6.5.24 are security updates.
https://helpx.adobe.com/security/products/experience-manager/apsb25-115.html

Artweaver 8.1 improves cosmetics and resolves several bugs. This is not a security update.
https://www.artweaver.de/

Audiate 2026.0.0 improves avatar generation. This is not a security update.
https://www.techsmith.com/camtasia/audiate/

Calibre 8.16.2 adds AI integration to your library and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

LibreOffice Fresh 25.8.3 resolves over 65 bugs. This is not a security update.
https://www.libreoffice.org/

Nextcloud Desktop 4.0.3 resolves several bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.8.9 is a security update.
https://notepad-plus-plus.org/

PDF-XChange Editor 10.7.6.404 resolves several bugs. This is not a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

Xspouse 2025-2 implements compatibility with recent federal legislative changes. This is not a security update.
https://www.xspouse.com/

Operating System Updates

These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.

Tails 7.2 updates apps and libraries and improves security. This is a security update.
https://tails.net/install/download/index.en.html

Security Software Updates

One or more of these is likely to be of interest to most people.

HTTP Toolkit 1.24.1 doesn’t provide a change log so should be treated as a security update.
https://httptoolkit.tech/

MalwareBytes Anti-Malware Mac 5.19 reduces resource abuse and resolves several bugs. This is not a security update.
https://www.malwarebytes.com/mac/

RogueKiller 16.5.3 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Stinger 13.0.0.571 adds support for new detections. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

uBlock Origin 1.68.0 resolves several bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

Camtasia 2026.0.0 improves integration with Audiate and resolves several bugs. This is not a security update.
https://www.techsmith.com/video-editor.html

SnagIt 2025.4.0 updates libraries and resolves several bugs. This is a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

BookFab 1.2.1.5 adds Audible conversion, Calibre integration, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/kindle-converter.htm

DVDFab 13.0.5.2 adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

IsoBuster 5.7 adds support for several new media formats and improves hardware and file type detection. This is not a security update.
https://www.isobuster.com/download.php

PDF Creator 6.2.0 adds HotFolder integration and resolves several bugs. This is not a security update.
https://www.pdfforge.org/pdfcreator

StreamFab 7.0.0.0 is a major update, adding multithreading support, bookmarks, improved interface and controls. This is not a security update.
https://streamfab.dvdfab.cn/downloader.htm

UniFab 3.0.3.3 adds AI translation, improves stability and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 7.0.30 improves compatibility and resolves several bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.11.22 improves duplicate detection, adds support for new browsers, and resolves several bugs. This is not a security update.
https://1password.com/downloads/

Agent Ransack 2022.3544 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

AOMEI Partition Assistant 10.9.2 adds support for active diagnostics. This is not a security update.
https://www.diskpart.com/

Bitwarden 2025.11.5 resolves several bugs. This is not a security update.
https://bitwarden.com/

CCleaner 7.02.1080 improves settings user interface, adds scheduling, and resolves several bugs. This is not a security update.
https://www.ccleaner.com/

ControlMyMonitor 1.40 improves performance and stability, and adds a column to display supported VCP value range if the monitor provides it. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html

Dell Command Update 5.6 doesn’t provide a change log so should be treated as a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

DesktopOK 12.24 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.6.52.0 adds search/replace swap, string replacements, updates libraries and resolves several bugs. This is not a security update.
https://dngrep.github.io/

FileLocator Pro 2022.3544 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Fing 3.9.3 improves stability and resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

FoneTool 3.3.0 resolves several bugs. This is not a security update.
https://www.fonetool.com/download.html

Free Virtual Serial Ports 7.07.00.1636 resolves a protocol bug. This is not a security update.
https://freevirtualserialports.com/

GoodSync 12.9.18 resolves several bugs. This is not a security update.
https://www.goodsync.com/

Inkchip WIC 1.18 doesn’t provide a change log so should be treated as a security update. This is not a security update.
https://inkchip.net/wic/

Kingston SSD Manager 1.5.6.1 doesn’t provide a change log so should be treated as a security update. This is not a security update.
https://www.kingston.com/us/support/technical/ssdmanager

LessMSI 2.11.2 improves language support. This is not a security update.
https://lessmsi.activescott.com/

Memtest86+ 8.00 adds support for new hardware, improves performance and stability, and resolves several bugs. This is not a security update.
https://www.memtest.org/

NTLite 2025.11.10675 resolves a couple bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 11.1.1013 improves stability and resolves several bugs. This is not a security update.
https://www.osforensics.com/download.html

osquery 5.20.0 updates libraries and resolves several bugs. This is not a security update.
https://osquery.io/downloads

PowerToys 0.96.1 resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Process Explorer 17.08 reenables the Image field in the process Properties dialog. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/process-explorer

Remotly 1.36.2 resolves a couple bugs. This is not a security update.
https://remotly.com/

Remotly Android 2.2 resolves a couple bugs. This is not a security update.
https://remotly.com/

RoboForm 9.8.4 updates logo and resolves stability bugs. This is not a security update.
https://www.roboform.com/

SetUserFTA 2.7.2 improves UCPD handling. This is not a security update.
https://setuserfta.com/download-setuserfta/

Synergy 1.20.0 resolves several stability and reliability bugs. This is not a security update.
https://symless.com/synergy/

Ventoy 1.1.08 adds support for FreeBSD v15 and iVentoy. This is not a security update.
https://www.ventoy.net/en/index.html

WakeMeOnLan 1.95 adds annotation in custom columns with caption controls. This is not a security update.
https://www.nirsoft.net/utils/wake_on_lan.html

WinScan2PDF 9.46 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 4.28 improves performance and resolves several bugs. This is not a security update.
https://www.diskanalyzer.com/

ZoomIt 9.21 resolves several bugs. This is not a security update.
https://learn.microsoft.com/en-us/sysinternals/downloads/zoomit

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 2025.2.2 us a security update.
https://developer.android.com/studio

cx_Freeze 8.5 updates libraries and resolves dozens of bugs. This is not a security update.
https://cx-freeze.readthedocs.io/en/latest/index.html

GameMaker Studio 2024.14.1.210 resolves dozens of bugs. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.6.249 adds real-time 3D editing and resolves a couple bugs. This is not a security update.
https://gdevelop.io/download

Go 1.25.5 is a security update.
https://go.dev/

Inno Setup 6.6.1 improves storage and improves workflow. This is not a security update.
https://www.jrsoftware.org/isdl.php

Node.js 20.19.6 updates libraries and resolves several bugs. This is a security update.
https://nodejs.org/en/

Node.js 24.11.1 updates libraries and resolves several bugs. This is a security update.
https://nodejs.org/en/

Node.js 25.2.1 updates libraries and resolves several bugs. This is a security update.
https://nodejs.org/en/

Python 3.14.2 is a security update.
https://www.python.org/downloads/macos/

SQLite 3.51.1 resolves a reliability bug. This is not a security update.
https://www.sqlite.org/download.html

Unreal Engine 5.7 is a major update offering many new features and improvements. This is not a security update.
https://unrealengine.com/en-US/

Visual Studio Code 1.106.3 is a security update.
https://code.visualstudio.com/

WinMerge 2.16.52.2 resolves several bugs. This is not a security update.
https://winmerge.org/

Web Package Updates

These are likely to be of interest only to web developers.

Joomla 6.0.1 & 5.4.1 resolves several bugs. These are not a security updates.
https://www.joomla.org/

Piwigo 16.1.0 is a major update adding new controls and features. This is a security update.
https://piwigo.org/

WordPress 6.9 adds visibility controls, datasets, and resolves several bugs. This is not a security update.
https://wordpress.org/

Autoptimize 3.1.14 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/autoptimize/

Contact Form 7 6.1.4 improves internationalization. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

My Sticky Bar 2.8.5 resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

WP Mail SMTP 4.7.1 resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/wp-mail-smtp/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2025-05-13

Posted on May 13, 2025 by Shawn K. Hall

Welcome back, Folks!

Today is Patch Tuesday for May, 2025.

It’s as safe as it’s going to be to upgrade to Windows 11 24H2 or macOS 15/Sequoia.

If your Windows 10 (or older) computer can not be upgraded to Windows 11, or if you used a registry or installation bypass to install an older version of Windows 11 on it that is no longer supported, then it’s time for you to start looking for a replacement computer. Actually, the time was months ago. Pickin’s are thin right now. 🙁

However… if you do need to replace your laptop there’s an awesome Lenovo laptop available at Costco right now for $600 (plus tax & shipping).

There were 495+ major hacks, and over 600 application updates this month. It’s an insanely large month, with about 6 GB of updates for most users.

This Month in Technology

1st Health Inc, 30 London Job Centres, 4chan, 90 Degree Benefits, Inc – MN/WI Office, Abergavenny, Abilene, Texas, Active! Mail, Adelaide’s Women’s and Children’s Hospital, Adobe Acrobat Reader DC, Advanced Simulation Technology, Adyen, Agencia Browne y Espinoza, Ahold Delhaize, Alabama government, Alabama Ophthalmology Associates, Allegra, Allied Telesis, Inc, AllTrust, Alternate Solutions Health Network, Altior Healthcare, Alvin Independent School, Amazon ElastiCache, American Eagle Logistics, American Express Travel Related Services Co, Amethyst Group, Amtech Software, Andy Frain Services, Anfarm Hellas, Apache ActiveMQ, Apache Parquet, Apache Roller, Apache Tomcat, Apple AirPlay, Apple iPhone, Apple iPhone Messages, Apple macOS, Arizona Arthritis and Rheumatology Associates, Arkansas Primary Care, Ascension Health, Associated Wholesale Grocers, Astra Products, ASUS AiCloud, ASUS AMI, ASUS DriverHub, Avast Free Antivirus, Balance Diagnostics, Baltimore City Public Schools, Bangalore Water Supply and Sewerage Board (BWSSB), Barnstable County Sheriff’s Office, Barr Dermatopathology, Bartlesville Public Schools, BayMark Health Services, Bell Ambulance, Berkeley Research Group, Bertie, NC Schools, Bervar and Jones, Bigfork Valley Hospital, Bilbie Faraday Harrison, Bindi SpA, Bio-Clima Service, Bloom Family Eye Surgeons, Blue Shield of California (to Google!), Bluestone Bank, Bolivar Insulation, Boudreaux’s Specialty Compounding Pharmacy, Boulanger, Brainard Surgery Center LLC, British Columbia Health Authority, Broadcom Fabric OS, Brunswick Medical Center, Brydens Lawyers, Business Functions, Cabot Medical Care, California Correctional Health Care Services, Caltrol Inc, Cambridge University Press & Assessment, Canada Revenue Agency, CAPTCHA systems on 400,000+ websites (AkiraBot), Caritas Catholic charities, Carlton County Public Health and Human Services, Carrefour Mobile, Cato Networks Cato Client, Cell C, Central Texas Pediatric Orthopedics, Chang Shen Hospital, Charleston Fire Department, Chepstow, Chicano Federation of San Diego County, Cisco IOS XE, Cisco Webex, City of Bristol, TN, City of Grove, City of Long Beach, CA, Cloudera Hue Ace Editor, CMC Corporation, Co-op Group, Cobb County, GA, Colorado River Adventures, Community Dental Care, Commvault Command Center, Commvault, Complete Payroll Solutions, Compliance Consulting Group, Comport Technology Solutions, Conduent, Conrey Insurance Brokers & Risk Managers, Corporate Flight, Cortez Resources, Cosmos, Couples Learn, CPUs, Craft CMS, Culinary Services of America Inc, Curve Finance, Custom Paper, D’Granel, Dale Partners Architects, Dameron Hospital, Daniels & Taylor, PC, DaVita, six DDoS-for-hire platforms, Dedicated Web Consultants, DermCare Management, Destination Toronto, Diedrich Coffee, Dior, Discord, Disney, Dominion Lending Centres, Drug and Alcohol Treatment Services, Inc, Dutch Ministry of Climate Policy and Green Growth, Dutch Ministry of Economic Affairs, Dutch Ministry of the Interior and Kingdom Relations, DYNAMIS Insurance, East Central Missouri Behavioral Health Services, eCharge Hardy Barth, Eclipse ThreadX NetX Duo, ECOM America, Edinburgh schools, Ehlers Inc, EIZO Rugged Solutions, EMX Enterprises, Endue Software, Enflame Technology, Erlang/OTP SSH, Erlanger Health, ESP Associates, Esse Health, Everest Bank, eXch, Extreme Fire, Family Christian Health Center, Feldman & Lopez, Fleet Canada, Fogelman Management Group, Forsyth County Schools, 16,000 Fortinet devices, FortiSwitch, Fowler Elementary School District, Framlingham College, France’s Municipality of Ardon, Franklin Nursing Home, Frederick Health Medical Group, FreeType 2, Frisco Chamber, Galvatech, Gardena Honda, GeoLogics Corporation, German Association for East European Studies, Gistic Research, Gladinet CentreStack, Gladinet Triofox, Global Media Group, GlobalX, GMA Network, Google Chrome DevTools, Google Sites, Government of Peru, Great Plains Transport, GStreamer, Hacienda La Puente Unified School District, Hamilton County, TN, Hamrah Aval, Harman Becker MGU21, Harrods, Hayward Quartz Technology, HC Sheriff, HealthEquity, Inc, Heinz Hammer Vertragswerkstatt, Helix Tools, Hertz Corporation, Highland Rivers Behavioral Health, Hitachi Energy MicroSCADA Pro/X SYS600, Hong Kong Science and Technology Parks, HOPI, Horizon Behavioral Health, Hyalogic, Hyundai Motor Group, IBM Cloud, IBM Portal, iClicker, iHeartMedia + Entertainment, IKEA, Impact Canada, Inaba Denki Sangyo CHOCO TEI WATCHER, Independent Financial Services, Independent Title Agency, Indian Air Force (IAF) aircraft, Indian government defence websites, 1.5+ million Indian websites, Inductors Inc, Insight Partners, Insight Pipe Contracting, Interior Health, Internet Initiative Japan, Iowa County, WI, Iris ID, Isle of Man government, Ivanti Endpoint Manager, J. Banks Design, Jackpot Junction, Jacksonville Medical Care, James & Sons Fine Jewelers, Jamjoom Pharma, Janco Steel, Jani-King International, Inc, Jet Ice, Jordan Kuwait Bank, Ju Percussion Group, Julia Evans Accountants, Just Concrete & Masonry, Karachi Port Trust, Kasb Bank, Kaye Lifestyle Homes, Kelly & Associates Insurance Group, Kenworth Del Sur, Khan Academy, Kickidler, KiloEx, King Industries Inc, Kintetsu World Express, Kittrich Corporation, Korea Land and Housing Corporation, KraftKisarna, Kuala Lumpur International Airport, Kyiv Notaries, LabHost, Laboratory Services Cooperative, Lake HVAC, Lake Shore Paving, Lamberti Group, Landmark Admin, Langer & Langer, Langflow, Law Firm of Rochelle McCullough, Law Offices of Chris M. Ingram, Lee Valley Tools, Ltd, Legends International, Lemonade, Lexmark CX331adwe, Limestone District School Board, Lincoln Financial, Lithium Americas, LockBit Ransomware Group, Long Beach Convention and Entertainment Center, Loretto Hospital, Luxion KeyShot, Machu Picchu Foods, Madison School District, Magento, Malaysia Airports Holdings Berhad, Manchester Credit Union, Marc Irwin Sharfman, MD, PA, Marks & Spencer, Marsicovetere & Levine Law Group, Mashburn Construction, Masimo Corporation, Mataró Water Utility Company, MATE Desktop, McElwee Firm, MedDream PACS Server, MedDream WEB DICOM Viewer, MedEx Ambulance, Medical Express Ambulance Service, Megachem Singapore, Mercer County Joint Township Community Hospital, Merri-Makers, Microsoft 365 OAuth, Minyard Morris LLP, Mission Laguna Pathology Medical Group, Monongalia Health System, Mountain View Mushrooms, Movistar Venezuela, Mt. Baker Imaging and Northwest Radiologists, MTN Group, Munich Re, Municipality of Pisa, N8XT, Nagios Log Server, NASCAR, National Social Security Fund (CNSS) of Morocco, Nationwide Recovery Services, Nelson University, Neurological Institute of Savannah & Center for Spine, Nevada Ready Mix, New York Post, Newport Advisory, LLC, Nintendo, Nippon Life Mutual Fund, Nixon, Inc, North Kitsap School District, Northeast Georgia Health System, Northern California Children’s Therapy Center, Nova Scotia Power, Nth Degree, O’Brien & Ryan, OCH Regional Medical Center, Oettinger Brewery, Omni Healthcare Financial Holdings, OnRPG, Onsite Mammography, Oracle, Oracle VirtualBox, Orange County Medical Group Pathology, Oregon Department of Environmental Quality, Orthopaedic Specialists of Connecticut, OttoKit WordPress plugin, Output Messenger, Oversea Casing, Pacific Metallurgical, Palo Verde Hospital, Pawnee Heights Unified School District, Pearson, PESEL, Pharma Force, Pienaar Brothers, Planet Technology Industrial Switches, Planned Parenthood, Plastic Surgery Specialists of Lawrence, PlayStation, Port of Seattle, PR TIMES, Pratt Homes, Premier Meats South Africa, Prestonwood Baptist Church, Inc, Promenade Village Dental, Pryor Morrow, Pulse Urgent Care Center, Qraved, R&N Manufacturing, Radford University, Radware Cloud Web Application Firewall, Raw, Rayle Electric Membership Corporation, Red Chamber, RFID, Richmond СPA, Roblox, Rockwell Automation Industrial Data Center, Rocky View Schools, Roman Catholic Bishop of San Diego, Ruby Servers, Russell Child Development Center, Saint James Hospital Group, Sally B Gold, Salus Group, Samsung phones, Samsung Galaxy S24, Samsung Germany, Samsung MagicINFO 9 Server, San Francisco Campus for Jewish Living, San Francisco crosswalk system, Santa Cruz Properties, SAP NetWeaver, SavantCare, Scharnhorst Ast Kennard Griffin PC, Schultz Industries Inc, Scrubs & Beyond LLC, SeaCMS, Seneca Gaming, Sensata Technologies, Sentara Health, SentinelOne, Setpoint Systems, Seydel Companies, Shinko Shoji, Shopify, Shrader Law, Silgan Containers, SIMCO Electronics, Sinalisa Segurança Viária Ltda, SK Inc, SK Telecom, SogoTrade, Inc, SonicWALL Connect, SonicWall SMA, Sonos Era 300, Sonrisas Dental Health, South African Airways, South African IT, Southern Fidelity, Springer & Steinberg, St Anthony Hospital, St Clair Orthopaedics & Sports Medicine, St James Hospital, Study Hotels, Sunsweet Growers Inc, Sweet Shop USA, Synology BeeStation BST150-4T, Synology DiskStation DS1823xs+, Synology TC500, SysAid, T-Mobile, Takeda, TehetségKapu, TeleMessage, Tenda AC9, Tesla Model 3, Tesla Model S, Texas Health and Human Services Commission, The City of Long Beach, CA, The Fortune Society, The Michelson Organization, Thompson Coburn LLP, Thrive Physical Therapy Partners, TicketToCash, TikTok, TMA Group, Toppan Next, Toronto District School Board, Town of Orangeville, Traefik, Trend Micro Apex Central, Trend Micro Deep Security, Troicare College, True Dental Care for Kids and Adults, TrussWorks International, Tänzer GmbH, Ubiquity UniFi Protect Cameras, UK Department of Work and Pensions, UK Legal Aid Agency, Union Health System, Inc, UniTrak, Universal Window, Urban One, Urban Renewal Authority, US Claims Capital, Inc, US Office of the Comptroller of the Currency (OCC), Vanni and Humphrey, Vastaamo, VeriSource Services, Inc, Verrex, Versa Networks, Via Credit Union, Vicarage Court Solicitors, Victure RX1800, Virtuvian Health, Voigt-Abernathy Company, Wan Hai, Wazuh server, WDEF-TV, Webmin, Weil Construction, Weir Canyon Honda, West Lothian Council, Western New Mexico University, Western Sydney University, Whiteboard Technologies Pvt Ltd, Whitman County Public Hospital District No 3, Wilmington Personal Injury Lawyer – DPLAW, Windows Common Log File System, Windows NTLM hashes, Wisconsin Supreme Court, Wizz Air, Wolters Kluwer, WooCommerce, WordPress AIHub theme, WordPress BuddyBoss Platform Pro plugin, WordPress Flynax Bridge plugin, WordPress InstaWP Connect plugin, WordPress Smart Product Review plugin, WordPress UrbanGo Membership plugin, WorkComposer, WPM Pathology Laboratory, Chartered, XP Investimentos, XRP Ledger NPM Package (xrpl.js), Yale New Haven Health, Yankee Trails, Yodogawa Steel, Yokogawa Recorder, Young Consulting LLC, ZKsync, and Zoom remote control have reported hacking or compromises this month.

4chan, Atlassian Jira, Coinbase 2FA, Exchange Admin Center, Microsoft 365, and pretty much all of Spain (and some neighboring countries) less than a week after bragging about how they were finally able to run on 100% renewable energy, have suffered from outages this month.

By the way, did you know that 4chan was mostly run by the US government? Duh.

Last months updates broke
Broadcom Brocade Fabric OS, Classic Outlook calendar, Classic Outlook typing, Hitachi Vantara, Microsoft 365 “paste special”, Microsoft Entra ID, Microsoft Office, Microsoft Office 2016, Microsoft Outlook online, SAP NetWeaver, SharePoint Online, Windows 10 Start Menu, Windows 11 24H2 upgrades, Windows Domain Controllers, Windows Hello for Business (WHfB) Key Trust, Windows kernel, Windows Remote Desktop, Windows Server 2025, and the Win Recovery Environment (WinRE).

A Florida bill that would have required backdoors to any encryption for social media accounts has failed.

AT&T will be the first of the big telcos to drop their email-to-sms gateway – in only about a month. You’ll still be able to send emails to email addresses and text to and from cell numbers, but their gateway that allows you to send messages between email and text will be disabled in mid June. This should have a massive impact on the amount of spam received by AT&T mobile customers. It will not stop it, of course.

Broadcom is threatening to sue their own customers for installing security updates in VMware.

Your heated car seats (among other features) are exposing you to law enforcement tracking.

IPv6 makes MitM easy.

Kali Linux lost their repo signing key, requiring manual end-user intervention to install security updates.

CISA is “trimming the fat” by removing some of their communication methods (even though I’m sure they were fully automated). This is going to disrupt important intelligence resources for those in the tech industry.

Skype is dead. Microsoft will finally start killing off ActiveX in Office and Microsoft 365. All new Microsoft accounts will now be “passwordless” by default.

I’ve been warning about the Copilot AI storage access risks since they changed their Terms of Service in October. My fears were justified. Microsoft will no longer “accidentally” flag all Gmail messages as spam. Or Adobe.

In the wake of a study that demonstrates how easy it was for AI to manipulate Reddit users, Reddit is considering legal action to protect their victims, I mean, users.

Android and Apple both now have auto-reboot to reduce the effectiveness of brute force attacks.

Apple is getting spanked for violating the letter and the intent of the judge’s order following the Apple v Epic Games lawsuit from a couple years ago.

BIG NEWS: US Attorney for the District of Columbia, Ed Martin, calls out Wikimedia Foundation (Wikipedia) for violating 501(c)(3) status by allowing propagandists to flood platform. He gave them until May 15th to turn over documents.

Google is finally consolidating all of it’s country TLDs to use “google.com“. Google will pay $1.4 billion to Texas to settle claims the company collected users’ data without permission. Google’s updated Local Services Ads Terms have sparked privacy fears and threaten confidentiality in medical and legal sectors. Google would never really harvest all of your medical data though, right? LOL.

Now for the good news:

T-Mobile has added satellite-based 5G support to their lineup. While currently in beta, this signals a huge improvement to coast to coast, and in fact world-wide, phone support using Starlink’s satellites to back up your 5G service when no towers are available (like when there’s a power outage or localized service issue or when you live in the middle of nowhere).

I suspect this mean Elon will soon be buying T-Mobile.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is insane this month. The typical computer should see roughly 6 GB in updates today. Let’s get started.

Microsoft released 48 updates to address 83 vulnerabilities in .NET, Active Directory Certificate Services, Azure, Azure Automation, Azure DevOps, Azure File Sync, Azure Storage Resource Provider, Build Tools for Visual Studio, Microsoft Brokering File System, Microsoft Dataverse, Microsoft Defender for Endpoint, Microsoft Defender for Identity, Microsoft Edge, Microsoft Office, Microsoft Office Excel, Microsoft Office Outlook, Microsoft Office PowerPoint, Microsoft Office SharePoint, Microsoft PC Manager, Microsoft Power Apps, Microsoft Scripting Engine, Remote Desktop Gateway Service, Universal Print Management Service, UrlMon, Visual Studio, Visual Studio Code, Web Threat Defense, Windows Ancillary Function Driver for WinSock, Windows Common Log File System Driver, Windows Deployment Services, Windows Drivers, Windows DWM, Windows File Server, Windows Fundamentals, Windows Hardware Lab Kit, Windows Hyper-V, Windows Installer, Windows Kernel, Windows LDAP, Windows Media, Windows NTFS, Windows Remote Desktop, Windows Routing and Remote Access Service, Windows Secure Kernel Mode, Windows SMB, Windows Trusted Runtime Interface Driver, Windows Virtual Machine Bus, Windows Win32K – GRFX, and MSRT. This includes security updates. A reboot is required.

Oracle released 378 security updates this quarter to address vulnerabilities in 117 products.

Apple released updates for macOS Sequoia 15.4.1, macOS Sequoia 15.5, macOS Sonoma 14.7.6, macOS Ventura 13.7.6, Safari 18.5, iOS 18.4.1, iOS 18.5, iPadOS 17.7.7, iPadOS 18.4.1, iPadOS 18.5, tvOS 18.4.1, tvOS 18.5, visionOS 2.4.1, visionOS 2.5, and watchOS 11.5. This includes security updates. Use Apple Software Update to install the most current versions.

iOS 18.4.1 and 18.5 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 17.7.7, 18.4.1 and 18.5 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 11.5 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 18.4.1 and 18.5 are security updates. Use System, Software Update to install the most current version.

visionOS 2.4.1 and 2.5 are security updates. Use System, Software Update to install the most current version.

Google ChromeOS 134.0.6998.198, ChromeOS 135.0.7049.120, and ChromeOS LTS 132.0.6834.223 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Fedora 42.0 is a major update (leaning hard into “42”), with changes to the installer, updates to libraries, defaults and now offering COSMIC. This is not a security update.
https://getfedora.org/en/workstation/download/

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

The release of macOS Sequoia (15.x) means that macOS Monterey (12.x) and older are no longer supported. If you can not install at least macOS Ventura (13) on your Mac then you should immediately remove your device from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v24H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it. If not, switch to Linux (Mint is nice) or replace your computer.

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 25.5.1 adds support for newer hardware, improves performance and resolves several bugs. This is not a security update.
https://www.amd.com/en/support

Crucial Storage Executive 11.03 doesn’t provide a change log so should be treated as a security update.
https://www.crucial.com/support/storage-executive

Daemon Tools Lite 12.3.0 resolves several bugs. This is not a security update.
https://www.daemon-tools.cc/products/dtLite

GoXLR Utility 1.2.2 resolves several bugs. This is not a security update.
https://github.com/GoXLR-on-Linux/goxlr-utility/

Intel Driver and Support Assistant 25.2.15.9 is a security update.
https://www.intel.com/p/en_US/support/detect

UniFi Network Server 9.1.120 is a security update.
https://www.ui.com/download/releases/network-server

VIISAN OfficeCam 7.2.8.1 doesn’t provide a change log so should be treated as a security update.
https://www.viisan.com/en/download/type1.html

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.78.97 is a security update.
https://brave.com/

Google Chrome 136.0.7103.92 is a security update.
https://www.google.com/chrome/

Firefox 138.0.3 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 128.10.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Vivaldi 7.3.3635.12 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

OutlookAttachView 3.54 adds black background support. This is not a security update.
https://www.nirsoft.net/utils/outlook_attachment.html

Spark 3.22.9.106186 improves Team support and resolves a couple bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.22.9.106183 improves Team support and resolves a couple bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 138.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 9.5.4 resolves several bugs. This should be treated as a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 9.0.2 resolves several bugs. This should be treated as a security update.
https://anydesk.com/en/downloads

Discord May 1, 2025 resolves dozens of bugs. This is not a security update.
https://discord.com/download

Dropbox 223.4.4909 resolves several bugs. This is not a security update.
https://www.dropbox.com/

FileZilla Client 3.69.1 resolves several bugs. This is not a security update.
https://filezilla-project.org/

FileZilla Server 1.10.3 resolves several bugs. This is not a security update.
https://filezilla-project.org/

Google Drive 108.0 doesn’t provide a detailed change log so should be treated as a security update.
https://drive.google.com/start

MeshCentral 1.1.44 resolves dozens of bugs. This is not a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.8.00.9760 improves GUI and resolves several bugs. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 31.0.4 resolves dozens of bugs. This should be treated as a security update.
https://nextcloud.com/

Nmap 7.97 is a security update.
https://nmap.org/

Npcap 1.82 resolves several bugs. This is not a security update.
https://nmap.org/npcap/

Pocketnet-Core 0.22.17 resolves several bugs. This is not a security update.
https://pocketnet.app/

Pocketnet-GUI 0.9.119 resolves several bugs. This is not a security update.
https://pocketnet.app/

Rclone 1.69.2 is a security update.
https://rclone.org/

Signal 7.53.0 adds new device attachment transfer and resolves several bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.41.3 doesn’t provide a detailed change log so should be treated as a security update.
https://signal.org/android/apk/

Syncthing 1.29.6 resolves several bugs. This is not a security update.
https://syncthing.net/

Technitium DNS Server 13.6 resolves several bugs. This is not a security update.
https://technitium.com/dns/

Telegram 5.14.2 resolves a compatibility bug and adds marketplace sales. This is not a security update.
https://telegram.org/

WinSCP 6.5.1 resolves several bugs. This is not a security update.
https://winscp.net/eng/index.php

Zoom 6.4.6.64360 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.17 resolves several bugs. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.3.8 resolves a series of crash bugs. This is not a security update.
https://www.bitwig.com/download/

Grayjay 306 adds remote sync and resolves several bugs. This is not a security update.
https://grayjay.app/index.html

Plex Media Server 1.41.6.9685 adds DOVI filter and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.80.3 should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Nintendo Switch 20.0.1 improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 2025.429 adds audio focus and new themes. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2025.05.10 resolves several bugs. This is not a security update.
https://store.steampowered.com/news/app/593110

SteamOS SteamDeck Update 2025.05.06 improves compatibility, resolves several bugs, and updates libraries. This is not a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Animate 23.0.12 and 24.0.9 are security updates.
https://helpx.adobe.com/security/products/animate/apsb25-42.html

Adobe Bridge 14.1.7 and 15.0.4 are security updates.
https://helpx.adobe.com/security/products/bridge/apsb25-44.html

Adobe ColdFusion 2021.20, 2023.14, and 2025.2 are security updates.
https://helpx.adobe.com/security/products/coldfusion/apsb25-52.html

Adobe Connect 12.9 is a security update.
https://helpx.adobe.com/security/products/connect/apsb25-36.html

Adobe Dimension 4.1.2 is a security update.
https://helpx.adobe.com/security/products/dimension/apsb25-45.html

Adobe Dreamweaver 21.5 is a security update.
https://helpx.adobe.com/security/products/dreamweaver/apsb25-35.html

Adobe Illustrator 28.7.6 and 29.4 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb25-43.html

Adobe InDesign 19.5.3 and 20.3 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb25-37.html

Adobe Lightroom 8.3 is a security update.
https://helpx.adobe.com/security/products/lightroom/apsb25-29.html

Adobe Photoshop 25.12.3 and 26.6 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb25-40.html

Adobe Reader DC 25.001.20467 resolves several bugs. This is not a security update.
https://get.adobe.com/reader

Adobe Substance 3D Modeler 1.22.0 is a security update.
https://helpx.adobe.com/security/products/substance3d-modeler/apsb25-51.html

Adobe Substance 3D Painter 11.0.1 is a security update.
https://helpx.adobe.com/security/products/substance3d_painter/apsb25-38.html

Adobe Substance 3D Stager 3.1.2 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb25-46.html

Artweaver 8.0.4 resolves several bugs. This is not a security update.
https://www.artweaver.de/

Calibre 8.4.0 resolves several bugs and improves compatibility. This is not a security update.
https://calibre-ebook.com/

Ghostscript 10.05.1 is a security update.
https://www.ghostscript.com/releases/gsdnld.html

Inkscape 1.4.2 resolves dozens of bugs. This is not a security update.
https://inkscape.org/release/

LibreOffice 24.8.7 resolves over a dozen bugs. This is not a security update.
https://www.libreoffice.org/

LibreOffice Fresh 25.2.3 resolves over sixty bugs. This is not a security update.
https://www.libreoffice.org/

Manager 25.5.8.2317 does not provide a detailed change log so should be treated as a security update.
https://www.manager.io/

Nextcloud Desktop 3.16.4 resolves several bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.8.1 resolves over a dozen bugs and improves colorization. This is not a security update.
https://notepad-plus-plus.org/

PDF-XChange Editor 10.6.0.396 is a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

Scribus 1.6.4 resolves several bugs. This is not a security update.
https://www.scribus.net/

Operating System Updates

These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.

ChromeOS 134.0.6998.198 and ChromeOS 135.0.7049.120 are security updates.

iOS 18.4.1 and 18.5 are security updates.
https://support.apple.com/kb/HT204204

iPadOS 17.7.7, iPadOS 18.4.1, and iPadOS 18.5 are security updates.
https://support.apple.com/kb/HT204204

macOS Sequoia 15.4.1, macOS Sequoia 15.5, macOS Sonoma 14.7.6, and macOS Ventura 13.7.6 are security updates.
https://support.apple.com/kb/HT201541

Tails 6.14.2 and Tails 6.15 are security updates.
https://tails.net/install/download/index.en.html

tvOS 18.4.1 and tvOS 18.5 are security updates.
https://support.apple.com/kb/HT202716

visionOS 2.4.1 and visionOS 2.5 are security updates.
https://support.apple.com/en-us/122721

watchOS 11.5 is a security update.
https://support.apple.com/en-us/122722

Security Software Updates

One or more of these is likely to be of interest to most people.

FRSTx64 2025.5.9 doesn’t provide a detailed change log so should be treated as a security update.
https://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/

HTTP Toolkit 1.20.1 doesn’t provide a detailed change log so should be treated as a security update.
https://httptoolkit.tech/

JShelter 0.20.2 improves privacy and resolves several bugs. This is not a security update.
https://jshelter.org/install/

MalwareBytes Desktop Security 5.3.0.186 resolves several bugs. This is not a security update.
https://www.malwarebytes.org/antimalware/

OpenSSL 3.5.0 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

PassRec 3.65 updates included apps. This is not a security update.
https://www.nirsoft.net/password_recovery_tools.html

RogueKiller 16.1.3 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Stinger 13.0.0.347 adds and improves detections. This should be treated as a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

uBlock Origin 1.64.0 resolves a couple bugs and adds several new scriptlets and controls. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

WebBrowserPassView 2.15 adds support for app-bound encryption in recent Chrome releases. This is not a security update.
https://www.nirsoft.net/utils/web_browser_password.html

Capture Updates

These are unlikely to be of interest to most people.

Camtasia 25.1.1 resolves a startup crash. This is not a security update.
https://www.techsmith.com/video-editor.html

SnagIt 25.1.1 resolves several bugs and improves compatibility. This is not a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.4.0 adds support for newer encodings and adds an AI upscaler. This is not a security update.
https://www.dvdfab.cn/download.htm

IsoBuster 5.6 adds support for new media formats, a new Preview mode, and resolves several bugs. This is not a security update.
https://www.isobuster.com/download.php

PDF Creator 6.0.0 is a major update, switching to newer libraries, adds document previews, SharePoint integration, and resolves a couple bugs. This is not a security update.
https://www.pdfforge.org/pdfcreator

StreamFab 6.2.3.5 improves compatibility, adds support to download from several new sources, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 3.0.1.6 adds SDR and new output formats, resolves several bugs and improves subtitle and Face Enhancer. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.76 resolves a couple bugs and improves error messages.
https://1password.com/downloads/

Agent Ransack 2022.3517 improves favorites list, cosmetics and resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

Beyond Compare 5.0.7.30840 improves cosmetics, updates libraries, and resolves several bugs. This is not a security update.
https://www.scootersoftware.com/download

Bitwarden 2025.4.2 resolves several bugs. This is not a security update.
https://bitwarden.com/

CalyxOS Device Flasher 1.1.1 is a security upate.
https://calyxos.org/install/

CrucialScan 20250424 doesn’t provide a change log so should be treated as a security update.
https://www.crucial.com/store/systemscanner

Cygwin 3.6.1 resolves several bugs. This is not a security update.
https://cygwin.com/

DesktopOK 11.81 improves cosmetics. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.5.8.0 updates libraries. This is a security update.
https://dngrep.github.io/

Etcher 2.1.2 removes analytics. This is not a security update.
https://www.balena.io/etcher/

FileLocator Pro 2022.3517 improves favorites list, cosmetics and resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

FoneTool 3.0.0 is a major update that adds a new “My Devices” interface, improves iPhone to PC interface, and resolves a couple bugs. This is not a security update.
https://www.fonetool.com/download.html

Free Virtual Serial Ports 6.22.00.1498 resolves several bugs. This is not a security update.
https://freevirtualserialports.com/

GoodSync 12.8.8 improves compatibility and resolves several bugs. This is not a security update.
https://www.goodsync.com/

HWiNFO 8.26 improves hardware detection and reporting. This is not a security update.
https://www.hwinfo.com/download/

HWMonitor 1.57 adds support for newer hardware and resolves a couple bugs. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

Kingston SSD Manager 1.5.5.3 doesn’t provide a change log so should be treated as a security update.
https://www.kingston.com/us/support/technical/ssdmanager

NTLite 2025.04.10406 adds Power Plan integration support, improves registry writes, updates components and resolves a bug. This is not a security update.
https://www.ntlite.com/download/

OSForensics 11.1.1007 improves performance and resolves a couple bugs. This is not a security update.
https://www.osforensics.com/download.html

osquery 5.17.0 resolves over a dozen bugs and updates libraries. This is not a security update.
https://osquery.io/downloads

Password Security Scanner 1.63 adds support for app-bound passwords in recent Chrome releases. This is not a security update.
https://www.nirsoft.net/utils/password_security_scanner.html

PowerToys 0.90.1 resolves several bugs and updates libraries. This is a security update.
https://github.com/microsoft/PowerToys/releases/latest

RoboForm 9.6.8 improves update process and adds support for Google Workspace SSO. This is not a security update.
https://www.roboform.com/

Rufus 4.7 resolves several bugs and improves UEFI detection and download. This should be treated as a security update.
https://rufus.ie/en_US/

ScreenConnect 25.2.4.9229 is a security update. Updates were released for other “recent” versions as well so you’re not forced to upgrade to the Canary version that breaks several other features.
https://screenconnect.connectwise.com/download

SimpleWMIView 1.56 adds Black Background support. This is not a security update.
https://www.nirsoft.net/utils/simple_wmi_view.html

SmartMonTools 7.5 adds dozens of new diagnostic objects and reporting elements and improves reliability and performance. This is not a security update.
https://smartmontools.org/

Starwind V2V Converter 9.755 adds CLI conversion support. This is not a security update.
https://www.starwindsoftware.com/starwind-v2v-converter

SysinternalsSuite 2025.5.5 updates RDCMan. This is a security update.
https://docs.microsoft.com/en-us/sysinternals/

TeamViewer 15.65.6 resolves a bug. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

WinGet 1.10.390 improves end-to-end support for Entra ID, configuration file controls, and resolves several bugs. This is a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinScan2PDF 9.33 improves hardware support and resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

XnConvert 1.105.0 doesn’t provide a change log so should be treated as a security update.
https://www.xnview.com/en/xnconvert/

ZoomText 2025 2025.2504.25.400 improves performance, multi-monitor support, and resolves several bugs.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

.NET Runtime 9.0.4 is a security update.
https://dotnet.microsoft.com/en-us/download/dotnet

ADB 36.0.0 resolves several bugs. This is not a security update.
https://developer.android.com/studio/releases/platform-tools

Android Studio 2024.3.2.14 resolves several bugs. This is not a security update.
https://developer.android.com/studio

cx_Freeze 8.3 updates libraries. This is not a security update.
https://cx-freeze.readthedocs.io/en/latest/index.html

GameMaker Studio 2024.13.1.193 resolves several bugs. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.5.230 resolves several bugs. This is not a security update.
https://gdevelop.io/download

GitHub Desktop 3.4.19 resolves over a dozen bugs. This is not a security update.
https://desktop.github.com/

Go 1.24.3 is a security update.
https://go.dev/

Inno Setup 6.4.3 improves restore operations, resolves seeral bugs, and adds a new tool for ECDSA P-256 support. This is not a security update.
https://www.jrsoftware.org/isdl.php

Java 8u451 is a security update.
https://www.java.com/en/download/manual.jsp

Node.js 20.19.1 updates libraries. This is not a security update.
https://nodejs.org/en/

Node.js 22.15.0 updates libraries and resolves several bugs. This is a security update.
https://nodejs.org/en/

Rustup 1.28.2 improves download stack and management controls. This is not a security update.
https://www.rust-lang.org/

SQLite 3.49.2 resolves several bugs. This should be treated as a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.100.1 is a security update.
https://code.visualstudio.com/

WinMerge 2.16.48.2 resolves several bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.1.8 resolves over a dozen bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Adminer 5.3.0 resolves over a dozen bugs and improves compatibility. This is not a security update.
https://www.adminer.org/en/

Joomla 5.3.0 improves email templates, media management, scheduled tasks, read more, accessibility and compatibility. This is not a security update.
https://www.joomla.org/

YOURLS 1.10.1 resolves several bugs. This is not a security update.
https://yourls.org/

WordPress 6.8.1 resolves over a dozen bugs. This is not a security update.
https://wordpress.org/

bbPress 2.6.13 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/bbpress/

Contact Form 7 6.0.6 is a security update.
https://wordpress.org/extend/plugins/contact-form-7/

My Sticky Bar 2.8.1 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

Show IDs 1.1.11 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/wpsite-show-ids/

Sucuri Security 2.1 resolves a couple bugs and adds support for several new scanners. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2025-02-11

Posted on February 11, 2025 by Shawn K. Hall

Happy Valentines, Folks!

Today is Patch Tuesday for February, 2025.

It’s as safe as it’s going to be to upgrade to Windows 11 24H2 or macOS 15/Sequoia.

If your Windows 10 (or older) computer can not be upgraded to Windows 11, or if you used a registry or installation bypass to install an older version of Windows 11 on it that is no longer supported, then it’s time for you to start looking for a replacement computer. Actually, that time was about 5 weeks ago. Pickin’s are thin right now. 🙁

There were 275+ major hacks, and over 640 application updates this month. It shouldn’t be that bad though, with about 3.5 GB of updates for most users.

This Month in Technology

1win, 9Lives, Addison Northwest School District, Adobe Photoshop, Adopt Me Trading Values, an airline travel integration service, Allegheny Health Network, Alltours, Alpine iLX-507, Alpine IVI, AMD CPUs, American National Insurance Company, Android, AngelSense, Aoki Holdings, Apex Custom Software, Apple Core Media, Apple CPUs, Apple iPad, Apple iPhone, Apple macOS, Apple WebKit, Aprendamos Intervention Team, Arab Civil Aviation Organization, Arlington Westend Dental, Ascension Health, Asheville Eye Associates, AT&T, Autel MaxiCharger, AuthoraCare Collective, Automotive Grade Linux, Avery Products Corporation, AVTECH cameras, Bank Central Asia, Bankers Cooperative Group, Bayhealth Medical Center, BCP Council, Behavioral Health Resources, Benefits Management Group, Berman & Rabin, PA, Big Cheese Studio, Biomedical Caledonia Medical Laboratory Limited, Bitbucket Server, Blacon High School, Cabrillo College, Cacti, Canon imageCLASS MF656Cdw, Casio UK, Catholic Charities of Southern Nevada, ChargePoint EV charger, ChargePoint HomeFlex, Chicago Department of Public Health, Christian Community Aid, Circle K, Cisco, Cisco Identity Services Engine (ISE), City of Hayward, City of McKinney, City of Tarrant, City of Ulster, Cityworks, ClamAV, ClearML, Cleo, Comhairle nan Eilean Siar, Communicare, Community Health Center, Conduent, CR&R Incorporated, Cracked.io, Craft CMS, Crayfish, Crunchyroll, Daytrip, DeepSeek, Delaware Valley School District, Delta County Memorial Hospital District, Dignity Health Lassen Medical Clinic, Django, DogWifTools, Doxbin, DragonNest, E-Benefit Solution, Econet Wireless, Endo Group, ENGlobal, Ethereum, FC Barcelona, FortiOS and FortiProxy, Fota Wildlife Park, Frame & Optic, Frederick Health, Garden of Life, LLC, GeoTools, GitHub Copilot, Globe Life, Google Chrome, Google Gemini AI, Google’s OAuth, Gravy Analytics, GrubHub, H&M, Hakko Corporation, Han Van Duong, MD, Hanover County Public Schools, Harmonyland, Harrison County Schools, Harvard Pilgrim Health Care, HCF Management, Heart Centre, HeatGames, Hewlett Packard Enterprise (HPE), Hikari Seiko, Holdrege Memorial Homes, Hospital El Cruce, Hospital Sisters Health System, Huawei HG532 routers, Iannuzzi Manetta & Co, IMI plc, InterCon Construction, International AIDS Vaccine Initiative, IntraSystems, IPany VPN, Israel Police Systems, Ivanti Avalanche, Ivanti Endpoint Manager, Jefferson School District, Juniper VPN gateways, Kafene, Inc, Kenwood DMX958XR, Kenwood IVI, Kenya’s Business Registration Service, 12,000+ KerioControl firewalls, KraftCPAs, LandAirSea, Laravel Voyager, LCPtracker, Inc, Le Coq Sportif Columbia, Let’s Secure Insurance Brokers Pvt Ltd, LifeBridge Health, Lightning AI, Logsign Unified SecOps, Lucent Health, Magento, Malaysia’s National Tuberculosis Registry, Marina Family Medical, Matagorda County, MedSave Health Insurance, Microsoft Edge, Microsoft Office Word, Microsoft Outlook, Microsoft Windows Installer Service, 13,000 MikroTik routers, Mintty Sixel, Mission Bank, Mity, Inc, Mizuno USA, Mongoose, Moniepoint, Mortgage Investors Group, MSI, NASAMS, Nash County Public Schools, Netgear WiFi routers, New York Blood Center, NI Vision Builder, NoMachine, NorthBay Health, Nulled.to, OneBlood, OnePoint Patient Care, OpenAI ChatGPT, OpenMRS, Oppo, OrthoMinds, Otelier, OU Medicine, over 660,000 Rsync servers, Oxfam Hong Kong, O’Connor Corporation, Palo Alto firewalls, Parallels Desktop, PDF-XChange Editor, PFS Investments, Phemex, Philippines National Bureau of Investigation, Phoenix Contact CHARX SEC-3150, Planet Technology WGS-804HPT, PoinCampus, Portola Valley School District, PowerSchool Group LLC, Puroland, QNAP NAS, Ramona Unified School District, Rebound Orthopedics & Neurosurgery, Regence BlueShield, Republic of Georgia, Rhode Island Health Information Exchange, River Region Cardiology, RM Group of Education, Rochester City School District, Salinas City Elementary School District, San Francisco-Marin Food Bank, Sanrio Entertainment, Sante PACS Server, Santee School District, SAP NetWeaver, Scholastic, Self Esteem Brands, LLC, Siemens Tecnomatix, SimpleHelp RMM, SkilloVilla, Smiths Group, SonicWall SMA1000, Sony IVI, Sony XAV-AX8500, South African Weather Service, Speedio, Spring River Mental Health & Wellness, Square Medical Group, Stark AeroSpace, Sterling Bank, Subaru’s Starlink service, SuperDraft, the Taliban, TalkTalk, Tata Technologies, TD Bank, TeamViewer, Telefónica, Tesla Wall Connector, Texas Health and Human Services, Texas Tech University Health Sciences Center, The O’farrell Charter School, The Reshaping and Nutritional Company LLC, Thermomix Recipe World Forum, Tokio Marine HCC, Tornillo Independent School District, Trump Hotels, Tycon Medical Systems, Ubiquiti charger, UEFI, UFCW Local 135, University Diagnostic Medical Imaging, University of Notre Dame, Upper Canada District School Board, Valio, Valley News Live, Veeam, VMware Avi Load Balancer, VSCode SSH Agent, W3 Total Cache, Wacom, Wavlink AC3000, Welhof, Westend Dental, Wetaskiwin Regional Public Schools, WhoDB, Willow Pays, WinZip, Wolf Haldenstein, WOLFBOX EV charger, WOLFBOX Level 2 EV Charger, WordPress ASE Plugin, Ya-Moon, Yazoo Valley Electric Power Association, YesWiki, York Region District School Board, Young Consulting LLC, Youthmanual, Yubico pam-u2f, ZAR rehab clinics, Zendesk, Zimbra, Zyxel CPE routers, and Zyxel USG Flex and ATP firewalls, have reported hacking or compromises this month.

Bitbucket, Bohemia Interactive (DayZ and Arma Reforger), Cloudflare’s R2 object storage, Conduent, Garmin GPS watches, GitHub, Lee Enterprises, Microsoft 365, and PlayStation Network have suffered from outages this month.

Last months updates broke Microsoft 365 on Windows Server OS, “New” Outlook, Outlook email composition, Outlook search, USB audio drivers, Windows Activation, and Windows Server 2022.

Microsoft is now force-installing “new” Outlook (“Outlook Fred” for those in the know). Recently, Microsoft has been changing the management methods to prevent installation faster than they release updates to the software or tell their customers of the new policy changes, making it an administrative nightmare. I figure it will be either a class-action lawsuit, a federal (or EU) racketeering case, or an enterprise-wide wake-up to switch to Thunderbird that will finally get Microsoft to (briefly) start respecting their customers that have (oft repeatedly) expressly signalled their desire to opt out of this crap.

Microsoft is saying they’re going to stop supporting installing updates for Office apps on Windows 10 after it reaches end-of-life in October. This is probably BS, since they’ve never prevented installing Office updates on previous operating systems when they reached end-of-life, but you should switch from Windows 10 by then for other reasons anyway.

This doesn’t bode well for Let’s Secure Insurance. Ouch.

A year after announcing that it would be imposing a new UEFI signature and mere months before mandatory enforcement, Microsoft has finally released a script to create media that can boot using the new requirements.

Amazon has (finally) improved the default settings for Redshift to reduce the number of data leaks using their platforms.

The FTC has ordered GM to stop selling OnStar customer data (such as precise geolocation and driving behavior) without obtaining express consent.

In a surprise to literally nobody, security researchers learned that if you install bad things on your device, bad things can happen!

Now for the good news:

A lawsuit against automatic license plate readers is allowed to proceed.

Brave now allows you to inject custom JavaScript to tweak websites without an extension. 🙂 This comes only weeks after adding the ability to Rerank websites in the Brave Search engine.

Most importantly: Ross Ulbricht is free.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is not that bad this month. The typical computer should see roughly 3.5 GB in updates today. Let’s get started.

Microsoft released 41 updates to address 67 vulnerabilities in Active Directory Domain Services, Azure Network Watcher, Microsoft AutoUpdate (MAU), Microsoft Digest Authentication, Microsoft Dynamics 365 Sales, Microsoft Edge (Chromium-based), Microsoft Edge for iOS and Android, Microsoft High Performance Compute Pack (HPC) Linux Node Agent, Microsoft Office, Microsoft Office Excel, Microsoft Office SharePoint, Microsoft PC Manager, Microsoft Streaming Service, Microsoft Surface, Microsoft Windows, Open Source Software, Outlook for Android, Visual Studio, Visual Studio Code, Windows Ancillary Function Driver for WinSock, Windows CoreMessaging, Windows DHCP Client, Windows DHCP Server, Windows Disk Cleanup Tool, Windows DWM Core Library, Windows Installer, Windows Internet Connection Sharing (ICS), Windows Kerberos, Windows Kernel, Windows LDAP, Windows Message Queuing, Windows NTLM, Windows Remote Desktop Services, Windows Resilient File System (ReFS) Deduplication Service, Windows Routing and Remote Access Service (RRAS), Windows Setup Files Cleanup, Windows Storage, Windows Telephony Server, Windows Telephony Service, Windows Update Stack, Windows Win32 Kernel Subsystem, and MSRT. This includes security updates. A reboot is required.

Oracle released 301 security updates this quarter to address vulnerabilities in 109 applications.

Apple released updates for GarageBand 10.4.12, iOS 18.3, iOS 18.3.1, iPadOS 17.7.4, iPadOS 17.7.5, iPadOS 18.3, iPadOS 18.3.1, macOS Sequoia 15.3, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, Safari 18.3, tvOS 18.3, visionOS 2.3, and watchOS 11.3. This includes security updates. Use Apple Software Update to install the most current versions.

iOS 18.3 and 18.3.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 17.7.4, 17.7.5, 18.3 and 18.3.1 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 11.3.1 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 18.3 is a security update. Use System, Software Update to install the most current version.

visionOS 2.3.1 is a security update. Use System, Software Update to install the most current version.

Google ChromeOS 132.0.6834.98 and Google ChromeOS LTS 126.0.6478.264 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Windows 11 is now stable and can be upgraded to if your hardware supports it. If not, switch to Linux (Mint is nice) or replace your computer.

Driver Updates

If you’re using this hardware – these updates are for you.

Epson ET-2750 2.71.00 doesn’t provide a change log so should be treated as a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-2750/s/SPT_C11CG22201

Epson ET-3760 2.68.02 doesn’t provide a change log so should be treated as a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-3760/s/SPT_C11CG20203

Epson ET-3850 3.01 doesn’t provide a change log so should be treated as a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-3850/s/SPT_C11CJ61201

Epson ET-4800 3.05 doesn’t provide a change log so should be treated as a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-4800/s/SPT_C11CJ65201

Epson ET-5880 3.04.00 doesn’t provide a change log so should be treated as a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-5880/s/SPT_C11CJ28201

UniFi Network Server 9.0.114 resolves over a dozen bugs and improves Zone controls. This is not a security update.
https://www.ui.com/download/releases/network-server

VIISAN OfficeCam 7.2.6.0 doesn’t provide a change log so should be treated as a security update.
https://www.viisan.com/en/download/type1.html

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.75.175 is a security update.
https://brave.com/

Google Chrome 133.0.6943.53 is a security update.
https://www.google.com/chrome/

Firefox 135.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 128.7.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Vivaldi 7.1.3570.48 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.15.1 resolves several bugs. This is not a security update.
https://getmailspring.com/

Spark 3.20.4 resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 128.7.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 9.0.2 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

curl 8.12.0 is a security update.
https://curl.haxx.se/windows/

Discord February 3, 2025 adds several new performance improvements and privacy controls, as well as cosmetic and stability improvements. This is not a security update.
https://discord.com/download

Dropbox 217.4.4417 doesn’t provide a detailed change log so should be treated as a security update.
https://www.dropbox.com/

FreeFileSync 14.0 adds dark mode support, improves cosmetics and resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 104.0 is a security update.
https://drive.google.com/start

Grocy Desktop 2.12.1 updates the Grocy release and fixes dependencies. This is not a security update.
https://github.com/grocy/grocy-desktop

Microsoft Teams 1.8.00.1362 adds several new management and organizational features. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 30.0.5 resolves dozens of bugs. This should be treated as a security update.
https://nextcloud.com/

PuTTY 0.83 resolves several bugs. This is not a security update.
https://www.chiark.greenend.org.uk/~sgtatham/putty/latest.html

Signal 7.41.0 resolves several bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.32.3 improves organization. This is not a security update.
https://signal.org/android/apk/

Technitium DNS Server 13.4.1 should be treated as a security update.
https://technitium.com/dns/

Telegram 5.10.7 resolves several bugs. This is not a security update.
https://telegram.org/

Zoom 6.3.6.56144 adds a “new and improved” sidebar and resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.13 improves rigging motions. This is not a security update.
https://en.3tene.com/

Grayjay 281 resolves compatibility issues. This is not a security update.
https://grayjay.app/index.html

KaraFun Player 3.4.6 improves stability and performance, ARM compatibility, and resolves several bugs. This is not a security update.
https://www.karafun.com/karaoke-windows/

Kodi 21.2 resolves dozens of bugs. This is a security update.
https://kodi.tv/

Plex Desktop 1.107.2.300 resolves a compatibility bug. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.70.1.303 updates libraries and now improves privacy on Linux. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.60.10 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

PS5 2025.115 improves performance and usability. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2025.01.28 resolves several bugs. This is not a security update.
https://store.steampowered.com/news/app/593110

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Commerce 2.4.8-beta2, 2.4.7-p4, 2.4.6-p9, 2.4.5-p11, 2.4.4-p12, 1.5.1, 1.4.2-p4, 1.3.5-p9, 1.3.4-p11, 1.3.3-p12, 2.4.8-beta2, 2.4.7-p4, 2.4.6-p9, 2.4.5-p11, 2.4.4-p12 are security updates.
https://helpx.adobe.com/security/products/magento/apsb25-08.html

Adobe Illustrator 28.7.4 and 29.2.1 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb25-11.html

Adobe InCopy 19.5.2 and 20.1 are security updates.
https://helpx.adobe.com/security/products/incopy/apsb25-10.html

Adobe InDesign 19.5.2 and 20.1 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb25-01.html

Adobe Photoshop Elements 2025.1 is a security update.
https://helpx.adobe.com/security/products/photoshop_elements/apsb25-13.html

Adobe Substance 3D Designer 14.1 is a security update.
https://helpx.adobe.com/security/products/substance3d_designer/apsb25-12.html

Adobe Reader DC 24.005.20399 resolves several crash bugs. This is not a security update.
https://get.adobe.com/reader

Adobe Substance 3D Stager 3.1.1 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb25-09.html

Artweaver 8.0.2 resolves several bugs. This is not a security update.
https://www.artweaver.de/

Calibre 7.25.0 resolves several bugs and improves compatibility. This is not a security update.
https://calibre-ebook.com/

Columns++ 1.1.5 improves compatibility. This is not a security update.
https://github.com/Coises/ColumnsPlusPlus

Krita 5.2.9 massively improves text support. This is not a security update.
https://krita.org/en/download/

LibreOffice Fresh 25.2.0 resolves almost 300 bugs. This is a security update. Please do not use the “Fresh” line – use the stable release instead.
https://www.libreoffice.org/

Manager 25.2.9.2075 improves inventory controls. This is not a security update.
https://www.manager.io/

Notepad++ 8.7.7 resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 5.1.3 resolves over a dozen bugs. This is not a security update.
https://www.getpaint.net/

PDF-XChange Editor 10.5.1.394 improves cosmetics and resolves over a dozen bugs. This is not a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

Operating System Updates

These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.

iOS 18.3.1 is a security update. Use Settings, General, Software Update to get the most current version.

iPadOS 17.7.5 and iPadOS 18.3.1 are security updates. Use Settings, General, Software Update to get the most current version.

macOS 15.3.1 is a security update. Use Settings, General, Software Update to get the most current version.

Tails 6.12 is a security update.
https://tails.net/install/download/index.en.html

tvOS 18.2.1 and tvOS 18.3 are security updates. Use Settings, General, Software Update to get the most current version.

watchOS 11.3.1 is a security update. Use the Watch app from your iPhone to install the current version.

Security Software Updates

One or more of these is likely to be of interest to most people.

.NET Runtime 9.0.1 is a security update.
https://dotnet.microsoft.com/en-us/download/dotnet

Java 8u441 is a security update.
https://www.java.com/en/download/manual.jsp

MalwareBytes Desktop Security 5.2.6.163 resolves a quarantine bug. This should be treated as a security update.
https://www.malwarebytes.org/antimalware/

ProtonVPN 3.5.1 improves stability and performance. This is not a security update.
https://github.com/ProtonVPN/win-app/releases/latest

RogueKiller 16.0.2 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Stinger 13.0.0.283 adds support for new detections. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

SuperAntiSpyware 10.0.1272 adds a new Browser Protection feature and resolves several bugs. This should be treated as a security update.
https://www.superantispyware.com/download.html

Windows Defender Offline 20250119 doesn’t provide a change log so should be treated as a security update.
https://windows.microsoft.com/en-us/windows/what-is-windows-defender-offline

Wireless Network Watcher 2.42 updates the internal MAC addresses database. This is not a security update.
https://www.nirsoft.net/utils/wireless_network_watcher.html

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 31.0.1 resolves several crash and stability bugs. This is not a security update.
https://obsproject.com/

SnagIt 24.3.2 is a security update.
https://www.techsmith.com/screen-capture.html

VideoCacheView 3.11 improves support for newer Chrome (v132+) cache structure. This is not a security update.
https://www.nirsoft.net/utils/video_cache_view.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.3.5 adds support for MP4/MKV AV1 output, improved hardware acceleration and resolves an audio quality bug. This is not a security update.
https://www.dvdfab.cn/download.htm

FFmpeg 20250204 resolves an SVT-AV1 API compatibility issue. This is not a security update.
https://ffmpeg.org/ffmpeg.html

IsoBuster 5.5.2 resolves compatibility issues with CD-i and macOS generated media, and special characters in file and folder names. This is not a security update.
https://www.isobuster.com/download.php

MakeMKV 1.17.9 changes only the version number. This is not a security update.
https://www.makemkv.com/download/

PDF Creator 5.3.3 resolves several bugs. This is not a security update.
https://www.pdfforge.org/pdfcreator

StreamFab 6.2.2.0 improves compatibility. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 3.0.0.5 adds Colorizer support and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.60 resolves several bugs. This is not a security update.
https://1password.com/downloads/

Beyond Compare 5.0.5.30614 updates libraries and resolves several bugs. This is not a security update.
https://www.scootersoftware.com/download

Bitwarden 2025.1.4 now imposes 2FA for new sessions and unknown locations, adds ability to generate SSH keys, and resolves several bugs. This is not a security update.
https://bitwarden.com/

CCleaner 6.32.11432 resolves several bugs. This is not a security update.
https://www.ccleaner.com/

CPU-Z Installer 2.14 adds support for newer hardware and resolves a cosmetic bug. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

Cygwin 3.5.7 resolves several bugs. This is not a security update.
https://cygwin.com/

Dell OS Recovery Tool 2.4.2.2193 doesn’t provide a change log so should be treated as a security update.
https://www.dell.com/support/home/uk/en/ukbsdt1/drivers/osiso/recoverytool

DesktopOK 11.57 improves uninstall and automatic update. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.3.3.0 updates libraries, adds several new features (Show Replacements, Minimize & Restore, Replace dialog layout) and updates translations. This is a security update.
https://dngrep.github.io/

GoodSync 12.8.2 adds a new @file filter, improves compatibility and rearranges job options. This is not a security update.
https://www.goodsync.com/

GUIPropView 1.31 adds several new columns to the display. This is not a security update.
https://www.nirsoft.net/utils/gui_prop_view.html

Homedale 2.16 adds a Japanese translation. This is not a security update.
https://www.the-sz.com/products/homedale/

HWMonitor 1.56 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

LessMSI 2.5.0 adds ability to change languages in the GUI. This is not a security update.
https://lessmsi.activescott.com/

ManageWirelessNetworks 1.15 adds dark mode support. This is not a security update.
https://www.nirsoft.net/utils/manage_wireless_networks.html

NTLite 2025.01.10293 modifies more than a dozen Components features and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 11.1.1001 resolves several bugs. This should be treated as a security update.
https://www.osforensics.com/download.html

osquery 5.15.0 resolves several bugs and improves data collection and display. This is not a security update.
https://osquery.io/downloads

PowerToys 0.88.0 updates libraries and resolves several bugs. This is a security update.
https://github.com/microsoft/PowerToys/releases/latest

PSAppDeploy 4.0.5 resolves dozens of bugs. This is not a security update.
https://psappdeploytoolkit.com/

TeamViewer 15.62.4 is a security update.
https://www.teamviewer.com/en-us/download/windows/

TraceRouteOK 3.46 improves uninstall and automatic update. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK

Ventoy 1.1.01 adds native remounting capability to support all Linux distros and resolves a couple bugs. This is not a security update.
https://www.ventoy.net/en/index.html

WakeMeOnLan 1.92 updates the internal MAC addresses database. This is not a security update.
https://www.nirsoft.net/utils/wake_on_lan.html

WinScan2PDF 9.25 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 4.24 adds several administrative features and cosmetic improvements. This is not a security update.
https://www.diskanalyzer.com/

Developer Updates

These are unlikely to be of interest to most people.

AutoHotkey 2.0.19 resolves several bugs. This is a security update.
https://www.autohotkey.com/download/

GDevelop 5.5.224 improves cosmetics and resolves several bugs. This is not a security update.
https://gdevelop.io/download

GitHub Desktop 3.4.16 resolves several bugs. This is not a security update.
https://desktop.github.com/

Go 1.23.6 is a security update.
https://go.dev/

MySQL ConnectorNet 9.2.0 resolves several bugs. This should be treated as a security update.
https://dev.mysql.com/downloads/connector/net/

Node.js 18.20.6 is a security update.
https://nodejs.org/en/

Node.js 20.18.3 is a security update.
https://nodejs.org/en/

Node.js 22.14.0 is a security update.
https://nodejs.org/en/

Node.js 23.7.0 is a security update.
https://nodejs.org/en/

Python 3.13.2 is a security update.
https://www.python.org/downloads/windows/

SQLite 3.49.0 resolves several bugs and improves performance. This is not a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.97.1 is a security update.
https://code.visualstudio.com/

WinMerge 2.16.46 resolves several bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.1.6 adds support for Linux kernel 6.13 and resolves dozens of bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Invision Community 4.7.20 adds Postmark, Bluesky and Backblaze B2 support. This is not a security update.
https://invisioncommunity.com/

Grocy 4.4.1 adds support for Open Food Facts barcode lookup and resolves several bugs. This is not a security update.
https://github.com/grocy/grocy

MailEnable 10.51 is a security update.
https://www.mailenable.com/

ownCloud Client 5.3.2.15463 is a security update.
https://owncloud.com/desktop-app/

phpMyAdmin 5.2.2 is a security update.
https://www.phpmyadmin.net/

WordPress 6.7.2 resolves 35 bugs. This is not a security update.
https://wordpress.org/

Really Simple CAPTCHA 2.4 improves hash strength and compatibility. This is not a security update.
https://wordpress.org/extend/plugins/really-simple-captcha/

Sucuri Security 1.9.8 adds CORS configuration. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

WP Cerber Security 9.6.6 resolves several bugs. This is not a security update.
https://wpcerber.com/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2025-01-14

Posted on January 14, 2025 by Shawn K. Hall

Happy New Year, Folks!

Today is Patch Tuesday for January, 2025.

It’s as safe as it’s going to be to upgrade to Windows 11 24H2 or macOS 15/Sequoia.

If your Windows 10 (or older) computer can not be upgraded to Windows 11, or if you used a registry or installation bypass to install an older version of Windows 11 on it that is no longer supported, then it’s time for you to start looking for a replacement computer.
Windows 10 now has only 9 months of support left and I am already seeing availability issues for new computers.

There were 600+ major hacks, and over 300 application updates this month. It’s a “normal” month, with about 4 GB of updates for most users.

This Month in Technology

A Bar A Ranch, A Sensitive Touch Home Health, AAA Environmental, Abrasive Supply Corporation, Access TeleCare, Accolent ERP Software, AEP Texas, Aetna ACE, Akantha, Akumin, Inc, Albert Paper Company, Albion College, Alexandria University, Allen Carr’s Easyway, Allendale Long-Term Care Home, Alliance for Creativity and Entertainment, Allianz Life Insurance Company, Allied Packing And Rubber Inc, AllyScripts, LLC, Alphastar Home Health Care, Alta Resources Corp, American Addiction Centers, American Associated Pharmacies, American Trust Company, Americhek, Anna Jaques Hospital, AnnieMac, AnyDesk, Aosense, Apache HugeGraph-Server, Apache MINA, Apache Tomcat, Apache Traffic Control, ApolloGames, Apple macOS camera, Archie Cochrane Ford, Ardyss, Arena Technical Resources, Argentina Airport, Arista NG Firewall, Arixa Capital Advisors LLC, Arrotex Pharmaceuticals, Artistic Family Dental, Artivion, Ascension Health, Ascension Living, Asheville City Schools, Ashlar-Vellum Graphite, Astaphans, AT&T, Atos, AudioPrints, Autodesk Navisworks Freedom, AutomationDirect C-More, Auxis, Avana Electrotek, Aviatrix Controller, Avira Prime, Avstar Fuel Systems, 4,000 backdoored backdoors, Badger Popcorn And Concession Supply Company, Bangkok Medical Software HOSxP XE, Bank of America, Bank Rakyat Indonesia, Barber Specialties, Bartholomew Consolidated School Corporation, BASC.edu.ph, BayMark Health Services, BCM One, Belen Consolidated Schools, Betterdoor.com, Bettisworth North, Beverly, BeyondTrust, BigCommerce, Billet Precision, Biomedical Caledonia, Bitdefender Virus Scanner, BitView, Black Oak Casino Resort (yes, that one), Blome International, Bluegrass Ingredients, BlueZ Classic HID, Bonneville School District 93, Boone County School District, Borrego Health, Boston University Framingham Heart Study, Brant Catholic school board, Brazilian government, Brighton Jones, Brockton Neighborhood Health Center, Brooklyn Art Library, BrownPacking, Byte Federal Bitcoin ATM platform, Cairo Governorate Education Portal, California Correctional Health Care Services, Cariad, Carrollton Orthopaedic Clinic, Casio, CED Solutions Computer IT Training Centers, Cell C, Center for Child Development, INC, Central Valley Meat Co Inc, Chain And Rope Suppliers LTD, Charlie’s Tax Service, Charter, Christ The Redeemer School, CIRCA, Cisco, City of Corvallis, City of Noblesville, City of West Haven, City of Winston-Salem, Cleo Harmony, Cleo LexiCom, Cleo VLTrader, College Hospital Costa Mesa, Collezione, Colombia court system, Community Alliance, Compliance Solutions Inc, Conceptions Reproductive Associates of Colorado, ConnectOnCall, COROB, Costex, Cottrell Fletcher & Cottrell PC, CR&R Environmental Services, CREFSP, Crimson Wine Group, Crown Mortgage Company, Cyberhaven, D&G Enviro-Group, D-7 Roofing, 250,000 Danish consumer records, DAP Health, Davis Products Company Inc, DBM Global Inc, Delap & Waller, Delhi Public Primary School Itarsi, Dell Avamar, Dell’s Update Package Framework, Delta Electronics CNCSoft-G2, Delta Electronics DRASimuCAD, DEphoto, DigiEver DS-2105 Pro DVRs, Dignity Health Lassen Medical Clinic, Discord, District 65, DMM Bitcoin, Dobie Road, Douglas County Department of Health and Human Services, Downey Hospital, Dragonfly Health, Drivestream, Drupal, Drywall Partitions, Duke Energy, DuxHumanHealth, Dynasty Healthcare Company, E-Tank, Eastern Idaho Public Health, Economy Restaurant Equipment And Supply Company, Effortless Office, Eindhoven University of Technology, Ekonika, Energy Capital Credit Union, Enugu State Government, EPS-MTOSB, Espreso TV, European Space Agency, EVAS Group, Evidn, Ex-Times, Exostar, Facebook, Family Help & Wellness, Farline, Farnesina, Federal Bank of India, Fireproof Contractors Inc, Flamco, FlashFiber, FoodMap, Fortinet Wireless Manager, Forum Architecture & Interior Design, Four-Faith routers, Foxit PDF Reader, Frameworks, Fraunhofer IAO, Free Telecom Raises, Freightliner of Savannah, French Citizens, French Tennis Federation, Fukoku Co, Fullmer Construction, FunFun688, Gammal Tech, Geisinger, General Digital, General Dynamics, Genie Healthcare, GeoVision GV-ASManager, Gerber Life Insurance, GFI Archiver, GFI KerioControl, Gilbarco Veeder-Root Orpak, Giordano, DelCollo, Werb & Gagne, LLC, GLAMIRA, Golden Age Home Health Inc, Golden Hills School, Good Neighbors Credit Union, Good Samaritan Hospital, Google Chrome, GPM Lawn Sprinkler Supply, Granite School District, Gravy Analytics, Great Star Tools USA, Green Bay Packers store, Greene Supply Company, Grocy, Grupo Buddemeyer, Guardian.com, Gunnar Prefab, Habib’s, Halton Long Term Care, Hammons Supply Company, Hapn, Happy Magic Trick Shop, Harley-Davidson, Hartson-Kennedy Inc Group Benefit Plan, HealthEquity, Inc, Heavy Construction Systems Specialists, LLC, Helena Public Schools, HemenBahis, Heritage Bank, Hi-Raise Constructions Holding, Hide-A-Way Lake Club, Holton Public Schools, Hong Kong Food and Environmental Hygiene Department, Hong Kong Insurance Authority, Hong Kong Urban Renewal Authority, Hopamedia, Horizon Oil, Howell Township Public Schools, HRB Tax Group, Inc, Huaxia School, Hunter Taubman Fischer & Li, Huntington Hotel Group, Hyperice, I, Librarian, IHIO, Ikav Global Energy, Illinois Bone & Joint Institute, LLC, Illinois Department of Human Services, Illumina’s iSeq 100 DNA gene sequencer, Imperial Valley Respite, In-Home Attendant Services, INBAL, Indian government websites, 3.69 million Indian property records, Indianapolis Public Schools, Indonesia Government, InfoCert, Informaticarecoleta, Instagram, Insured Recovery, International Coffee & Tea, LLC, Internxt VPN, Inverclyde Council, Israel Defense Forces, Italian banks and government agencies, Italian Foreign Ministry, Ivanti Avalanche, Ivanti Connect Secure, Izmocars, Japan Airlines, Jared Beschel and Associates, Jay Enn Corporation, Jet Edge, Jim Thompson, JRT Automatisation, Kadokawa Corporation, Kadokawa, Kaizen Pharmaceuticals, Kansas City Hospice, Inc, KBanknow, Keeco, LLC, Kenton County School District, Kern Services, Khalil Center, Kilgore Industries, Kiswire, Kitsap Mental Health Services, global Know Your Customer (KYC) account data, Krispy Kreme, Kyndryl, LA Financial Federal Credit Union, Lake Shore Public Schools, Lancaster City Schools, Laramie County Library System, Las Palmas Del Sol Healthcare, Latitude, LCPtracker, Inc, Le Coq Sportif, Lebanese Intelligence Dept, LegalNurse, Lelivrescolaire, Lexington Diagnostic Center, Leyman Manufacturing, Linux Kernel Bluetooth, LKQ Corporation, Lokdal, Luxion KeyShot Viewer, Luxury Yacht Group, Lyons Specialty Co, macOS SIP, Madhya Pradesh’s child welfare agency, over 3,000,000 mail servers, ManageEngine Analytics Plus, Manens-Tifs SpA, Manitou Springs School District, Martin Sprocket & Gear, Inc, Maverick Constructors, MC2 Data, McCormick & Priore, McCray Lumber, McDonald’s, McFarlane, Medusind, Meezan Bank, Megaexit, Menorah Life, Inc, Metalmatrix Clamps, MetLife, mi.edu, Microsoft Azure Data Factory, Microsoft Azure MFA, Microsoft Edge, Microsoft PC Manager, Microsoft Purview, Microvision, Mission Bancorp, MLP Tax & Financial Services, Modern Automotive Network, Modern Dental Group Limited, Mohawk Valley Cardiology, Moneytor, Montreal North, Mossad, Moxa, MSI, MyGiftCardSupply, Nara, Nash Brothers Construction, Nathan American Academy, National Atomic Energy Commission, National Commission of Markets (Spain), National Library of Peru, Natomas Unified School District, Nikki-Universal, Nirjai, Niva Bupa Insurance Group, Nodex, Nominet, North Los Angeles County Regional Center, Northern Lights Electric, Northwest Asthma & Allergy Center, Norwalk La Mirada Unified School District, Norwex USA, Inc, Novati Constructions, Nuclei, NY & WY Orthpaedics Specialists, Obltelecom, OL Products, Omaha Surgical Center, OmniRide, Omnitravel, One Airline, OneBlood, Onecare, OpenWrt, Oppo, Ott Cone & Redpath, PA, Pacific Pulmonary Medical Group, Paessler PRTG Network Monitor, Palo Alto Networks Expedition, Panda Security Dome, ParrotTalks, Path of Exile 2, Patriarche Office of Architecture, Peikko, Pembina Trails School Division, Peruvian University of Applied Sciences, Peugeot Dealership, PharmaNewsOnline, PHG CPAs, Philippine Statistical Association Inc, PhoneMondo, PIH Health, Pinger USA, PingMoney, Pinno Construction, Pittsburgh Regional Transit, Platinum Celebs, Positive Behavior Supports Corporation, PowerSchool (this affects potentially millions of school districts across the globe), PracticeSuite, Press Color, ProCaps Laboratories, Progress Software WhatsUp Gold, Psychogen, PT Pertamina, PT PINS Indonesia, Qualcomm chips, Qualinet, Rainy River public school, Ramos Law, Rancho Santa Fe School District, Randolph Brooks Federal Credit Union, Randys Transmissions, Rapido, Realme, Regional Care, Inc, Relate Infotech, Reliance Connects, Rent-2-Own, ReutOne, Revolution Beauty, Rhode Island’s RIBridges, Richmond University Medical Center, River Region Cardiology, Riverina Medical, Rivers Casino Philadelphia, RM Group, Rockwell Automation Arena Simulation, Rocky Mountain Gastroenterology Associates, RocSearch, Rosreestr, Rozavam, Rspack, Ruby, Ruijie Networks, Rumpke Consolidated Companies, Inc & Affiliates Benefits Plan, Rutherford County Schools, Rydox, SAIC in Brazil, Samsung Devices, schenkYOU, Schneider Electric, Scholastic, Scottish rail network, SeaLandAire Technologies, Self Esteem Brands, LLC, SENATI, Senior Citizens, Inc, Senior Dating, SERGAS Group, Sheyenne Tooling & Manufacturing, Sidney Health Center, Siemens User Management Component, Simcoe Muskoka Catholic School, Skoda cars, Skopos, Slawson Companies, Slovakian land registry, SmartLynx Airlines SIA, Smith Tank & Steel, Solaris Pharma, SolGeo AG Baugelogie and Geotechnik, SonicWALL NSv, Sony XAV-AX8500, Sophos Firewall, Sparkling Smiles Family Dentistry, Spectrum, SpeedLine Solutions, Spelpaus, Sri Lanka Government Printing Department, Sri Lanka Police, SRP Federal Credit Union, Stanford University, Starbucks, Starkville-Oktibbeha Consolidated School District (SOCSD), State Registers of Ukraine, STIIIZY, Stillwater Area Public Schools, Summit Medical Group, PLLC, Sunflower Medical Group, Suno India, SuperDraft, Supreme Court of India, Surface Combustion, Swedish Gambling Authority, Synology, T Smiles Dental, T.Hasegawa USA, T1, Tahoe Truckee Sierra Disposal Co Inc, Talentely, Tarnaise des Panneaux SAS, Tayfa Denizcilik, Tecta America Corporation, Teedy, Telcel, Telecom Namibia, Telefónica, Tenable Nessus update system, Tesla Wall, Teton Orthopaedics, Texas Tech University Health Sciences Center, Thailand Department of Mineral Fuels, Tharisa, The Baker Center for Children and Families, The Coffee Bean & Tea Leaf, Thomas Cook, Thomas J. Henry Law, Tibber, Tibbo Aggregate Network Manager, Toscano Law, Total Patient Care LLC, Town of Ponoka, Town of Webster, Trend Micro Apex One, Trend Micro Deep Security, Trev Deeley Motorcycles, Trifecta, TruBridge, Inc, True World Holdings LLC, Trussville City Schools, Try.gov.hk, Tumeny Payments Limited, Tungsten Automation Power PDF, Turks and Caicos, Tycon Medical Systems, UGKK, Unisource Information Services, United Nations International Civil Aviation Organization (ICAO), University of Baghdad, University of Tasmania, US Committee on Foreign Investments, US EPA, 261,000 US insurance agents, 350,000 US mobile homeowners, US SSA, US Treasury, US Veteran Affairs, UT Southwestern Medical Center (fourth time in 18 months), Uvoice, Valio, Vallianz, Value Dental Center, Vaultwarden, Venki Supravizio BPM, Venntel, Veritas Enterprise, Verizon, Verosa LLC, VESD, Vickers Engineering, Village Community School, Village Fertility Pharmacy Group, VIP, VisionPoint Eye Center, VO Baker, VPNCity, VW Group, Wacom Center WTabletServicePro, Walker County Schools, Warid Telecom, Water Utilities Corporation, Waterstones, Watertown Public Schools, Watsonville Community Hospital, Webmin, Weininger Metall System GmbH, Western Montana Mental Health Center, Westerville City Schools, WhatsApp, Whittier Hospital, WilsonSD, Windows Active Directory Domain Controllers, Windstream, WireGuard Portal, Wood County, Word & Brown Insurance Administrators, Inc, World Leadership Academy, WSO2 API Manager, WY88 Casino, Xanthops, Xstrahl eBt Therapy Equipment, Xtream, XWiki, Yaaka, Yat Siu, Yonéma, YorkTest Laboratories, Young Life, Young Living Essential Oils, Youngs Counseling, PLLC, Youth Eastside Services, ZAGG Inc, and Zeifmans have reported hacking or compromises this month.

Docomo, Facebook, Instagram, MI6, Microsoft Multi-Factor Authentication (MFA) – effectively blocking access to MS 365, Proton, Threads, and WhatsApp have suffered from outages this month.

Last months updates broke Windows updates on new installations, Windows 11 Start Menu, Office 365 activation system, Windows 11 HDR, and Windows Bitlocker.

Microsoft is going to force-install “new” Outlook on Windows PCs within the next month.

“When exposing a crime is treated as committing a crime, you are being ruled by criminals.” — Edward Snowden

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is not that bad this month. The typical computer should see roughly 4 GB in updates today. Let’s get started.

Microsoft released 70 updates to address 164 vulnerabilities in .NET, .NET Framework, Active Directory Domain Services, Active Directory Federation Services, Azure Marketplace SaaS Resources, BranchCache, Internet Explorer, IP Helper, Line Printer Daemon Service (LPD), Microsoft AutoUpdate (MAU), Microsoft Azure Gateway Manager, Microsoft Brokering File System, Microsoft Digest Authentication, Microsoft Edge, Microsoft Graphics Component, Microsoft Office, Microsoft Office Access, Microsoft Office Excel, Microsoft Office OneNote, Microsoft Office Outlook, Microsoft Office Outlook for Mac, Microsoft Office SharePoint, Microsoft Office Visio, Microsoft Office Word, Microsoft Purview, Microsoft Windows Search Component, Power Automate, Reliable Multicast Transport Driver (RMCAST), Servicing Stack Updates, System Center, Visual Studio, Windows BitLocker, Windows Boot Loader, Windows Boot Manager, Windows Client-Side Caching (CSC) Service, Windows Cloud Files Mini Filter Driver, Windows COM, Windows Connected Devices Platform Service, Windows Cryptographic Services, Windows Digital Media, Windows Direct Show, Windows DWM Core Library, Windows Event Tracing, Windows Geolocation Service, Windows Hello, Windows Hyper-V NT Kernel Integration VSP, Windows Installer, Windows Kerberos, Windows Kernel Memory, Windows MapUrlToZone, Windows Mark of the Web (MOTW), Windows Message Queuing, Windows NTLM, Windows OLE, Windows PrintWorkflowUserSvc, Windows Recovery Environment Agent, Windows Remote Desktop Services, Windows Secure Boot, Windows Security Account Manager, Windows Smart Card, Windows SmartScreen, Windows SPNEGO Extended Negotiation, Windows Telephony Service, Windows Themes, Windows UPnP Device Host, Windows Virtual Trusted Platform Module, Windows Virtualization-Based Security (VBS) Enclave, Windows Web Threat Defense User Service, Windows Win32K – GRFX, Windows WLAN Auto Config Service, and MSRT. This includes security updates. A reboot is required.

Apple released updates for iOS 18.2, iOS 18.2.1, iPadOS 17.7.3, iPadOS 18.2, iPadOS 18.2.1, macOS 15.2, macOS Sequoia 15.2, macOS Sonoma 14.7.2, macOS Ventura 13.7.2, Safari 18.2, tvOS 18.2, visionOS 2.2 and watchOS 11.2. This includes security updates. Use Apple Software Update to install the most current versions.

iOS 18.2.1 is a security update. Use Settings, General, Software Update to install the most current update.

iPadOS 17.7.3 and 18.2.1 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 11.2 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 18.2 is a security update. Use System, Software Update to install the most current version.

visionOS 2.2 is a security update. Use System, Software Update to install the most current version.

Google ChromeOS 131.0.6778.241 and Google ChromeOS LTS 126.0.6478.261 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Driver Updates

If you’re using this hardware – these updates are for you.

Daemon Tools Lite 12.2.0 resolves several bugs. This is not a security update.
https://www.daemon-tools.cc/products/dtLite

UniFi airMAX NanoStation 5AC Loco 8.7.15 is a security update.
https://www.ui.com/download/software/loco5ac

UniFi Network Server 9.0.108 adds zone-based firewall, CyberSecure, Network Application API and resolves several bugs. Thsi is not a security update.
https://www.ui.com/download/releases/network-server

VIISAN OfficeCam 7.2.5.0 doesn’t provide a change log so should be treated as a security update.
https://www.viisan.com/en/download/type1.html

Wacom Driver 6.4.8-6 improves compatibility and resolves several bugs. This is not a security update.
https://www.wacom.com/en-us/support/product-support/drivers

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.73.105 is a security update.
https://brave.com/

Google Chrome 131.0.6778.264 is a security update.
https://www.google.com/chrome/

Firefox 134.0.1 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 128.6.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

SeaMonkey 2.53.20 is a security update.
https://www.seamonkey-project.org/

Vivaldi 7.0.3495.29 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.15.0 is a security update.
https://getmailspring.com/

Spark 3.19.2.94903 improves AI controls, user interface improvements and resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.19.2.94902 improves AI controls, user interface improvements and resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 128.6.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

curl 8.11.1 resolves dozens of bugs. This is not a security update.
https://curl.haxx.se/windows/

DNSDataView 1.76 adds DMARC support. This is not a security update.
https://www.nirsoft.net/utils/dns_records_viewer.html

Dropbox 214.4.5217 resolves several bugs. This is not a security update.
https://www.dropbox.com/

Google Drive 102.0 resolves several bugs. This is not a security update.
https://drive.google.com/start

Grocy Desktop 2.11.0 updates Grocy and Barcode Buddy to their latest releases and resolves several bugs. This is not a security update.
https://github.com/grocy/grocy-desktop

MeshCentral 1.1.38 resolves several bugs. This is not a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.7.00.33761 adds brand filtering and web-based screen controls. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 30.0.4 updates libraries and resolves several bugs. This is not a security update.
https://nextcloud.com/

Omada Software Controller 5.15.6.7 adds support for additional hardware, SAML SSO support, DSL Gateway configuration and improvces RADIUS support. This is not a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Pocketnet-Core 0.22.11 improves jury and moderation, and resolves several bugs. This is not a security update.
https://pocketnet.app/

Pocketnet-GUI 0.9.107 resolves a dozen bugs. This is not a security update.
https://pocketnet.app/

Rclone 1.69.0 is a security update.
https://rclone.org/

Signal 7.37.0 improves visual feedback and macOS compatibility. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.28.4 adds chat folders and group grouping. This is not a security update.
https://signal.org/android/apk/

Syncthing 1.29.2 improves stability and resolves several bugs. This is not a security update.
https://syncthing.net/

Technitium DNS Server 13.3 resolves several bugs, including stability and denial of service. This should be treated as a security update.
https://technitium.com/dns/

Telegram 5.10.3 resolves several bugs. This is not a security update.
https://telegram.org/

Zoom 6.3.6 resolves several bugs, including a fix for a defect in the automatic update system, and makes cosmetic changes. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

darktable 5.0.0 is a major update, including over 1,700 changes, 500 camera model improvements, user interface improvements, performance improvements and much more. This is not a security update.
https://www.darktable.org/

Grayjay 278 adds and removes Apple Podcasts, and resolves several several bugs. This is not a security update.
https://grayjay.app/index.html

KaraFun Player 3.4.6.81 improves stability and resolves several bugs. This is not a security update.
https://www.karafun.com/karaoke-windows/

Plex Desktop 1.106.0.276 adds Share button and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.69.0.264 updates libraries. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.41.3.9314 is a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.51.02 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

SteamOS SteamDeck Update 2024.12.12 is a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Animate 23.0.10 and 24.0.7 are security updates.
https://helpx.adobe.com/security/products/animate/apsb25-05.html

Adobe Illustrator for iPad 3.0.8 is a security update.
https://helpx.adobe.com/security/products/illustrator-mobile-ios/apsb25-04.html

Adobe Photoshop 26.2 and 25.12.1 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb25-02.html

Adobe Reader DC (Mac) 24.004.20272 resolves several bugs. This is not a security update.
https://get.adobe.com/reader

Adobe Reader DC 24.005.20320 is a security update.
https://get.adobe.com/reader

Adobe Substance3D Designer 14.1 is a security update.
https://helpx.adobe.com/security/products/substance3d_designer/apsb25-06.html

Adobe Substance3D Stager 3.1.0 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb25-03.html

Audacity 3.7.1 doesn’t provide a change log so should be treated as a security update.
https://www.audacityteam.org/download/

Calibre 7.24.0 adds read-aloud and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

ColdFusion 2021.18 and ColdFusion 2023.12 are security updates.
https://helpx.adobe.com/security/products/coldfusion/apsb24-107.html

GnuCash 5.10 resolves dozens of bugs. This is not a security update.
https://www.gnucash.org/

Kdenlive 24.12.1 adds ASS subtitle support, resolves a bunch of bugs, and updates libraries and dependencies. This is not a security update.
https://kdenlive.org/

LibreOffice 24.8.4 resolves over 50 bugs. This is a security update.
https://www.libreoffice.org/

LibreOffice Fresh 24.8.4 resolves over 50 bugs. This is a security update.
https://www.libreoffice.org/

Manager 25.1.14.2025 improves inventory costing and controls. This is not a security update.
https://www.manager.io/

Nextcloud Desktop 3.15.3 resolves several bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.7.5 resolves over a dozen bugs and regressions. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 5.1.2 improves performance and reduces resource requirements, resolves several bugs. This is not a security update.
https://www.getpaint.net/

PDF-XChange Editor 10.5.0.393 resolves dozens of bugs. This is a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

QuickBooks Pro 2022 20241217-R18_40 resolves a crash bug. This is not a security update.
https://downloads.quickbooks.com/app/qbdt/products

QuickBooks Pro 2023 20241217-R15_29 resolves a crash bug. This is not a security update.
https://downloads.quickbooks.com/app/qbdt/products

Scribus 1.6.3 resolves over a dozen bugs. This is not a security update.
https://www.scribus.net/

Operating System Updates

These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.

ChromeOS 131.0.6778.241 is a security update.
https://chromereleases.googleblog.com/search/label/Stable%20updates+ChromeOS

iOS 18.2 and iOS 18.2.1 are security updates.
https://support.apple.com/kb/HT204204

iPadOS 18.2 and iPadOS 18.2.1 are security updates.
https://support.apple.com/kb/HT204204

macOS 15.2 is a security update.
https://support.apple.com/kb/HT201541

Tails 6.11 is a security update.
https://tails.net/install/download/index.en.html

tvOS 18.2 is a security update.
https://support.apple.com/kb/HT202716

watchOS 11.2 is a security update.
https://support.apple.com/kb/HT204641

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 2.11.0 improves MFT parsing. This is not a security update.
https://github.com/countercept/chainsaw

MalwareBytes Desktop Security 5.2.4.157 rebrands from “Anti-Malware,” improves notification behavior, and now requires autorun for the VPN Kill Switch capability. This is not a security update.
https://www.malwarebytes.org/antimalware/

ProtonVPN 3.5.0 improves stability and reliability in censored countries. Thsi is not a security update.
https://github.com/ProtonVPN/win-app/releases/latest

Stinger 13.0.0.254 improves detection. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

uBlock Origin 1.62.0 improves syntax and reliability and resovles several bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.3.4 improves NVIDIA AI conversion. This is not a security update.
https://www.dvdfab.cn/download.htm

IsoBuster 5.5.1 adds dozens of new features, new media formats and mappings, and resolves several bugs. This is not a security update.
https://www.isobuster.com/download.php

StreamFab 6.2.1.3 updates engine, improves compatibility, and resolves several bugs. Thsi is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 3.0.0.1 is a major update and improves upscaling, performance and resolves a couple bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.56 resolves over a dozen bugs. This is not a security update.
https://1password.com/downloads/

GadgetPack 38.0 rebrands from 8GadgetPack, adds Windows 11 support, updates graphics and cosmetics, and resolves a couple bugs. This is not a security update.
https://gadgetpack.net/

Agent Ransack 2022.3503 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

AOMEI Partition Assistant 10.7.0 adds 1-click space fix and resolves several bugs. This is not a security update.
https://www.diskpart.com/

BatteryHistoryView 1.06 improves compatibility. This is not a security update.
https://www.nirsoft.net/utils/battery_history_view.html

Bitwarden 2024.12.1 resolves several bugs and improves compatibility. This is not a security update.
https://bitwarden.com/

CCleaner 6.31.11415 improves cleanup. Thsi is not a security update.
https://www.ccleaner.com/

CPU-Z Installer 2.13 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

Cygwin 3.5.5 resolves over a dozen bugs. Thsi si not a security update.
https://cygwin.com/

DesktopOK 11.51 updates definition file options and resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.2.121.0 updates libraries and resolves a couple bugs. This is not a security update.
https://dngrep.github.io/

ESEDatabaseView 1.76 resolves several bugs. This is not a security update.
https://www.nirsoft.net/utils/ese_database_view.html

FileLocator Pro 2022.3503 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Fing 3.8.0 improves Network Insights feature and resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

GoodSync 12.8.0 resolves several bugs. This is not a security update.
https://www.goodsync.com/

HWiNFO 8.20 improves hardware support and resolves several bugs. This is not a security update.
https://www.hwinfo.com/download/

LessMSI 2.4.0 adds xo option to extract and overwrite. This is not a security update.
https://lessmsi.activescott.com/

NTLite 2025.01.10258 updates Windows 11 24H2 support and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

Open-Shell 4.4.195 improves Windows 11 24H2 support and resolves several bugs. This is not a security update.
https://github.com/Open-Shell/Open-Shell-Menu

PingInfoView 3.20 adds dark background support and alternating row colors. This is not a security update.
https://www.nirsoft.net/utils/multiple_ping_tool.html

PointerStick 6.46 adds a new pointer option and resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.87.1 improves stability and resolves issues in many of the included tools. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

PSAppDeploy 4.0.4 resolves dozens of bugs. This is not a security update.
https://psappdeploytoolkit.com/

TeamViewer 15.61.4 resolves several bugs. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

WifiInfoView 2.96 updates the internal MAC database. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

WinScan2PDF 9.19 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

ZoomIt 9.0 adds live draw support. This is not a security update.
https://learn.microsoft.com/en-us/sysinternals/downloads/zoomit

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 2024.2.2.13 resolves dozens of bugs. This is not a security update.
https://developer.android.com/studio

GDevelop 5.5.221 improves 3D physics tracking and resolves several bugs. This is not a security update.
https://gdevelop.io/download

GitHub Desktop 3.4.12 resolves a merge bug. This is not a security update.
https://desktop.github.com/

Inno Setup 6.4.0 updates libraries and resolves dozens of bugs. This is not a security update.
https://www.jrsoftware.org/isdl.php

Node.js 22.13.0 updates dependencies and resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

Node.js 23.6.0 updates dependencies and resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

SQLite 3.48.0 adds several new features, syntax support, and performance and memory improvements. This is not a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.96.2 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Web Package Updates

These are likely to be of interest only to web developers.

Grocy 4.3.0 improves stock management, grouping, recipes, userfields, and resolves several bugs. This is not a security update.
https://github.com/grocy/grocy

HumHub 1.17.0 resolves over a dozen bugs. This is not a security update.
https://www.humhub.com/en

Joomla 5.2.3 is a security update.
https://www.joomla.org/

OpenCart 4.1.0.0 makes over six hundred changes and updates libraries. This should be treated as a security update.
https://www.opencart.com/

Piwigo 15.3.0 resolves a stability bug. This is not a security update.
https://piwigo.org/

Autoptimize 3.1.13 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/autoptimize/

Contact Form 7 6.0.3 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Sucuri Security 1.9.7 adds CSP reporting header support. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

Theme My Login 7.1.10 resolves several bugs, including a nonce issue. This should be treated as a security update.
https://wordpress.org/extend/plugins/theme-my-login/

WP Cerber Security 9.6.5 removes dependency on wordpress.org, adds several new widgets and improves role support. This is not a security update.
https://wpcerber.com/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2024-12-10

Posted on December 10, 2024 by Shawn K. Hall

Merry Christmas, Folks!

Today is Patch Tuesday for December, 2024.

I recommend waiting one more month before upgrading to Windows 11 24H2 or macOS 15/Sequoia.

Windows 10 will be end-of-life in only 10 months. If your Windows 10 (or older) computer can not be upgraded to Windows 11, or if you used a registry or installation bypass to install an older version of Windows 11 on it that is no longer supported, then it’s time for you to start looking for a replacement computer. Windows 10 now has only 10 months of support left and by April it will be challenging to find a good and inexpensive replacement computer that will be supported for Windows 11. Christmas sales are on now. There’s not going to be any better time in the next year.

There were 730+ major hacks, and over 270 application updates this month. It’s a small month with about 2.0 GB of updates for most users.

This Month in Technology

.NET, 1547 Critical Systems Realty, 2014-2021 Mazda infotainment system, 3M, 4QuartersIT, 7-Zip, A & L Auto Recyclers, A&O IT Group, A-1 Mobile Lock & Key, ABC Group, Aberdeen, Acadia Pharmaceuticals Inc, ACao.org, Ace Laboratories Limited, Adams Homes, Adobe InDesign, ADT Freight Services Australia Pty Lt, Advanced Chemical Industries, Advantech’s EKI-6333AC series wireless access points, AdventHealth, AEAT, Aeris Energy, AHN, Ahold Delhaize, Airbnb, Albazaar, Albertsons, Alder Hey Children’s Hospital, All Construction Group WV, Allegheny Contract, Allegheny Millwork & Lumber, Alliance Industries, LLC, Alliance Sports Group, ALLTUB Group, Alna-Bioscience, Alpine Ear Nose & Throat, Amazon, American Addiction Centers, Inc, American Associated Pharmacies, AMGtime, Amherstburg Family Health, Anderson Miller LTD, Andrew Tate’s The Real World, Anex Baby, Anna Jacques Hospital, AnnieMac Home Mortgage, Apache ActiveMQ, Apache Tomcat, Aperion Care Marseilles, LLC, Apple iOS, Apple iPadOS, Apple macOS, Apple Pay, Apple Safari, Apple visionOS, Applied Materials, Arc Community Services Inc, Ardon Health, LLC, Array Networks SSL VPN, Arrowe Park Hospital, Artistic Family Dental, Artivion, Asaro Dental Aesthetics, Ascend Packaging Systems, ASM Global, Aspen Healthcare Services, AT&T, ATD-American, Athens County Bd of Dev Disabilities, Atlantic Orthopaedic Specialists, Atrium Health, Auchan, Automation Tool & Die, Avast Anti-Rootkit, Avico Spice, Axpr Valve Science, BackChecked, LLC, Barneek Safety Consultancies, BBS Financial Services, LLC, BBVA Bank, Beach Guide, Bedminster School, Bells Tax Service, Bendheim, Berexco LLC, Bergeron LLC, Berkshire Nursing & Rehab Center, LLC, BIC, Billaud Segeba, Bio-Clima Service Srl, Birdair, Bishop Ireton High School, BJ’s Wholesale Club, Black Creek Community Health Centre, Blue Yonder, BluMed Health, BMW Chile, Bob’s Discount Furniture, Boksha, Bologna Football Club 1909, Bolton Walk-In Clinic, Bonpoint, Borah, Goldstein, Altschuler, Nahins & Goidel, PC, Boston Chinatown Neighborhood Center, Brazilian databases, Bridge Valley Community & Technical College, Bristol-Myers Squibb, British Army, Brodsky Renehan Pearlstein & Bouquet, Brueck Golosow Kim & Associates, BT Group, Buddy Loan, Bulbrite Industries, Burkburnett Independent School District, Burmeister & Wain Scandinavian Contractor, Business Systems House FZ-LLC, Buyoplace, Cabot Financial, Calgary’s Fueling Brains Academy, Calibrated Healthcare, LLC, CalSTRS, Campinas City Government, Canada Post, Cardinal Health, Cardiology Associates of Mobile, Cargill, Carnegie Hill Imaging for Women, Carnegie Women’s Health, CarSwitch.com, Cate Equipment, CC Senior Services, CelPlan Technologies, Central Bank of Uganda, Central Group, Centrex, Chanas Assurances SA, Charles Schwab, ChatGPT, Chema Per, Chemonics, Cherry Hill School District, CHS Plumbing, Cian.ru, Cipla, Cisco, Citadel of Northbrook, Citrix’s Session Recording Manager, City National Bank, City of Coppell, CK Power Public Manufacturing, Claro, Clipper DEX, Closelly, Club Fit Software, CMC Construction Material, CNHW Landscape Design, Ltd, CO-VER Power Technology SpA, Colombian Government, Colonial Behavioral Health, Colwell Colour, Complete Control, Complete Recycling Services, Compra LTD Aruba, Concord Orthopaedics, Conlin’s Pharmacy, Connecticut GI, Consumers Builders Supply, Contrack Facilities Management, Coppell, TX, Corman Leigh, Costa Rica’s RECOPE, Cottles Asphalt Maintenance Inc, CP Construplan, CPanel, Crate & Barrel, Cundinamarca Colombia, CURVC Corp, Dairy Farmers of Canada, Darlington EMS, Dassault Systèmes eDrawings Viewer, Data Campos Sistemas, Datamaxx Applied Technologies, Datron World Communications, David’s Bridal, Dell India, Delmar International, Deloitte UK, Delta Air Lines, Delta Dental, DeltaPrime, DemandScience, Dennis Kirk, Destatis, Deutsche Industrie VideoSystem, Dewan Farooque Motors Limited, DFA NY, Diamond Brand Gear, DieTech North America, Dillons, DIRSAPOL, Django, DMF Lighting, DMM Bitcoin, DocuSign, Dohman, Akerlund & Eddy, Dolton Nursing & Rehab, LLC, Dome Construction Corporation, Dominican Republic, Don’s Mobile Glass, Dorner Law & Title Services, Down East Granite, Dragon Capital, Drupal, Dumont Printing, Eagle Bank, Eassy Life, East Central Missouri Behavioral Health Services, Inc, East Paris Internal Medicine Associates, Eastgate Auto, EazyDiner, ECBM, Ecobank Ghana, Edizionidottrinari.it, Edwardsburg Schools Foundation, El Dorado Stores and Supermarkets, El Dorado Union High School District, Electrica, Empower Settlement Services, Empowerers, Emserpa, ENGlobal, Enso Counseling Group, PLLC, EP:Schuller, Epic Games Launcher, Equentis Wealth, Equinox Inc, ESHA, Inc, Evening Post Publishing Inc, Everything Breaks, Express Employment Professionals, Familylinks Inc, Fancy Foods, Farmers Insurance, Feronow, FF Steel, Fidelity Investments, Financial Business and Consumer Solutions, Finastra, Find Great People1, Finsure, Firmenich, Fleet Equipment Center, FlipaClip, Followup CRM, Ford, Fortinet VPN servers, Fortinet’s FortiClient Windows VPN, Fred Meyer, Fuji Electric Monitouch V-SFT, Fujian Provincial Government, Fuju Electric Tellus Lite V-Simulator, FunkLocker, Fylde Coast Academy Trust, G Adventures Inc, G DATA Total Security, Gallos MetalSolutions Inc, Gastroenterology Associates of Fairfield, Gazprombank, GC Custom Metal Fabrication, GeoVision devices, Giggle Finance, Globe Telecom, GMG, GoCast, GoCloud Router, Godot game engine, Goethe University Frankfurt, GoFormz, Goldsmith & Hull, Goodwill North Central Texas, Google Pay, Gough Construction, Grand Forks Public Schools, Grandview School District, Great Plains Regional Medical Center, Great Star Tools USA, Gregory Poole, Gruber Tool & Die, Guard1, Gulf Energy Maritime, Gulf Petrochemical Services & Trading, H2OBX Waterpark, Hackus Mail Checker, Hadwins Volkswagen, Hager Group, Harel Insurance, HDFC Life Insurance, HealthFund Solutions, Henderson Stamping & Production, Highland Park ISD, Hillandale Farms, Hive Power Engineering, HM Environmental Services, Hoboken, NJ, Hogan Mfg, Holstrom, Block & Parke APLC, Horsa, Hosting.co.uk, Hotels.co.il, Houston Housing Authority, HP, HPE Insight, HSBC, Hugging Face Transformers, Hypertype, I-O Data routers, IAС, IFA Paris, IGT, iLearningEngines, Immobilière Essaouira, Indian Government Volunteer Database, IndicaOnline, Instinct Pet Food, Intel Computing Improvement Program, Intel Driver & Support Assistant, InterCon Construction, IPE Engwicht, IrfanView, Irr Supply Centers, Island Photo, Israel’s Ministry of National Security, IT Networks, ITO EN, Ivanhoe Club, Ivanti Avalanche, Ivanti Endpoint Manager, Ivanti Secure Access Client Pulse Secure, IVC Technologies, James H Maloy, Jefferson Dental Center, Inc, Jergens Piping, Jewel-Osco, JF Zengyoren, Jones & Mayer, Jones Lang LaSalle, JTEKT North America, Jupyter servers, K-State College of Veterinary Medicine, Karl Malone Toyota, Kash Patel’s Emails, Kashin App, KCI Aviation, Keable & Brown, Keesal, Young & Logan, Keizer’s Collision CSN & Automotive, Kela Health, Kellerhals Ferguson Kroblin PLLC, Kelowna Springs, Kenmore, Kennedy Funding, Kenwood DMX958XR, Kingswood Park, Kmart Australia, Kroger, KTBS Law LLP, Kulicke and Soffa Industries, LA Financial Federal Credit Union, LA LUCKY Brand, Laboratory Services Cooperative, Ladies.com, Lazz Hotel, LBCO Contracting LTD, LCPtracker, Inc, Lebak Regency, Leidos, LenelS2, Lenovo, LePoint.fr, LevelOne WBR-6012, Levicoff Law Firm, PC, Liberty Endo, Liberty First Credit Union, Lima Puluh Kota Regency, LINDOSTAR, LinkedIn, Linux nftables, LiquiTech, Live Aquaria, Liverpool Heart and Chest Hospital, LIXIL, LLama Factory, Lottie-Player, Lotus Concepts Management, LTI Trucking Services, Lubbock County Hospital District, Lucid Corp, Luka Rijeka, Luxion KeyShot, macOS, Madison Home, Magguilli Law Firm, Mantinga, Marine Stores Guide, Marketing Incentives, Massachusetts Department of Developmental Services, Maternal Fetal Medicine Associates, Matlock Security Services, MATRIX, Max Trans, Maxar Space Systems, Maxeon, Maxus Group, MC Technologies MC LR Router, McDonald’s, McKibbin, McLean Mortgage, McLeod Russel India, MDLand International, MediBoard, Medical Board of California, Medical Technology Industries, Inc, Members Trust Company, MetLife, Metroline, Mexican Government, Microlise, Microsoft 365 Admin Portal, Microsoft Office PowerPoint, Microsoft Power Pages, Microsoft SharePoint Server, Microsoft Windows, Mid-Ohio Psychological Services, Midland Tool, Miller & Smith, Minneapolis Parks, Minuteman Press, Misionero Vegetables, Mitel MiCollab, Mizuno USA, Mobigator Technology Group, Monster Electrical, Moodle, Morehead State University, Morrisons, Mullen Wylie, LLC, Nanosoft, NatAlliance Securities, Nationwide Legal, NCISM NEET, New Age Micro, Newpark Resources, Nicholsons Solicitors, Nokia, Norauto.fr, Northeast Spine and Sports Medicine, Northern Schools and Academy, NTrust, Numocity, NVIDIA UFM, Ocean Beauty Seafoods, Ocean Park Mechanical, OfficeZilla, Oklahoma Medical Center, Omnicom Group, OnePoint Patient Care, OpenWrt, Optical Cable Corporation, Option Care Health, Oracle Agile Product Lifecycle Management, Orange County Pathology Medical Group, Orshan, Spann & Fernandez-Mesa, Orthopedics Rhode Island, Otsego Public Schools, over 2,000 Palo Alto Networks firewalls, Overseas Shipholding Group, Inc, Oxford Auto Insurance, Pacific Pulmonary Medical Group, Pallet Logistics of America, Palm Facility Services, Pan Gulf Holding, Panda Security Dome, Panzer Solutions LLC, Pastor Real Estate, Patrick Sanders and Company, PC, Pavilion of Bridgeview, PC AfterHours, Pemberton Fabricators, Inc, Pensacola, Perfection Plus Services Inc, Performance Health & Fitness, Peruvian Army Military School, Philippines GCash, Physicians’ Primary Care of Southwest Florida, PIH Health, Pincu Barkan, Law Office and Notary, Pine Belt Cars, Pinnacle Claims Management, Pinnacle Plastic Products, Pioneer Urban Land & Infrastructure, PK Mulyo, Planned Parenthood of Montana, PoinCampus, PointClickCare, Polter Finance, Popular Life Insurance, Port of Rijeka, PostgreSQL, Precision Walls, Premier Packaging, Premier Tax Services, Privat Spitex, Programs Improving Public Safety, Progress Kemp LoadMaster, ProjectSend, QNAP, Quality Billing Service, Radiologic Medical Services, PC, Ralphs, RBN Insurance Services, Rclone, RDC, RDS Electric, Refinadora Costarricense de Petróleo, RemoteStaff.com.au, Rengo Packaging, REV Engineering, Rex Signature Services, LLC, RiverRestHome, RJM Marketing, Roblox, Rockford Gastroenterology Associates, Rocky Mountain Gastroenterology, Romanian Permanent Electoral Authority, Royal Liverpool University Hospital, Royce Corporation, RRCA Accounts Management, RSA Security SecureID, Rush University, S-Zdorovie, Safaricom, Safeway, SAG-AFTRA Health Plan, SailPoint IdentityIQ, Sainsbury’s, Saint Andrews Bureau, SalonBiz, San Francisco Ballet, Sanford Behavioral Health, Sango Family Dentistry, 240,000 satellite receivers, Schneider Electric, Schuck-Gruppe, SCM GROUP, Sea Level Inc, SEAT SA, SelectBlinds, Senior Dating, Sercomm, Shaw’s, Sheboygan, WI, Ship Services, Siemens Tecnomatix Plant Simulation, Signal Health Washington, Signzy, SILKNET COMPANY, Silver Springs, Silverback Exploration, SK Gas, SKS Bottle & Packaging, SL Data Services, SmartDimensions, Smith’s, Snelling Paper & Sanitation, Solana JavaScript SDK, South Africa’s CSIR, South West Family Medicine Associates, Southern Oregon Veterinary Specialty Center, Specialty Bolt And Screw, Spotify, Spring EQ LLC, Sri Lanka Meteorological Department, SRP Federal Credit Union, SSGMCE, SSV Blockchain Network, Stalcop Metal Forming LLC, Standard Bank, Standard Calibrations, Star Shuttle Inc, Starbucks, Start-Rite, State of Arizona, Stauberstahl, STIIIZY, Surgical Associates, Symantric IT, Sécurité Nationale Systems, T&M Equipment, T-Mobile, Tacoma Engineers, Tamil Nadu GovMail, Tampa State Bank, Targus, TBM Consulting Group, TEAM Software, Tech Electronics, TechGuard, Tennis Canada, Terra Energy, Terrace of Hialeah, Texanscan, Texas Tech, Thala, Thames Water, The 1 Co, The Arbors Operator, LLC, The Mitchell Partnership, The PHOENIX, The Recycler Core, The Tech Interactive, Think Simple, Thunderbird Country Club, TIAA, Tillamook Country Smoker, Tinxy App, Toshiba Global Commerce Solutions, Total Patient Care LLC, Totally Promotional, TourPay App, Town of Whitestown NY Highway Department, Trace3, TravelSale, Travis Pruitt & Associates, Trell.co, Tribelsky, TriHealth Physician Partners, Trimble SketchUp, Trinity Petroleum Management, LLC, Tripura Gramin Bank, True World Holdings LLC, TrueNAS, Trust Seeds, Tully’s Coffee Japan, Turf Paradise, TWRU CPAs & Financial Advisors, U.S. Bank, U.S. Department of Veterans Affairs, U.S. Library of Congress, UATF, UBS, Ubuntu Linux, UCC Retrievals, UK England and Wales prisons, Ultralytics YOLO11, UMC Health System, Unilever Brazil, United Bakery Equipment, United Seating and Mobility, UniversalPegasus International, Universidad Peruana de Ciencias Aplicadas, URBN, URL-Log-Pass, Uruguay’s Partido Nacional, USA Network, USA2ME, USAID, Valley Planing Mill, Value Dental Center, VBÜ, Veeam Backup Enterprise Manager, Ventana Micro Systems, Verizon, Vermilion Parish School System, Veterans Health Administration, VIA Health Partners, Village Pharmacy Group, ViralPitch, Visiting Physician Services of Michigan, Vista Point Mortgage, LLC, VMware vCenter Server, Vogue Homes, Volgograd State Medical University, Vox Printing, VozoHealth, VPS of MI PLLC, VRSEC, VTB Bank, vTech Solution, Walae Cristal, Walsworth Publishing Company, Washington State Court systems, Waters Truck and Tractor, Watsonville Community Hospital, Weld Racing, Wellfleet Group, LLC, West Bank Corp, Western Montana Mental Health Center, Westinghouse, WhatsUp Gold, Wheeler Associates, White Lake Township Hall, Wiley Metal Fabricating, WIN Empresas, Windows Server 2012, Wirral University Teaching Hospital, WolfBox E40, Word Check Sanctions, 500,000 WordPress sites,WordPress CleanTalk plugin, WordPress Really Simple Security/SSL plugin, WordPress WPLMS Learning Management System theme, WPM Pathology Laboratory, Wright Engineers, WTI, X-Cart Automotive, XnView, Xobin, Yakuza Helpline, Yazoo Valley Electric Power Association, York County, Yorozu Corporation, Zabbix, Zane Benefits, Zello, zero5, Zillertal Bier, Zimmerei Buder, Zimmerman & Frachtman PA Law Firm, and Zyloware have reported hacking or compromises this month.

itch.io (blame AI), PopeyeTools, Blue Yonder, Cloudflare, and Microsoft 365 have suffered from outages this month.

Last months updates broke Microsoft Exchange, TLS/SSL, Google Chrome, Windows Store apps, and Excel Add-ins, and force-installed Copilot.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is pretty small this month. The typical computer should see roughly 2.0 GB in updates today. Let’s get started.

Microsoft released 33 updates to address 73 vulnerabilities in GitHub, Microsoft Defender for Endpoint, Microsoft Edge, Microsoft Office, Microsoft Office Access, Microsoft Office Excel, Microsoft Office Publisher, Microsoft Office SharePoint, Microsoft Office Word, Remote Desktop Client, DNS Server, Windows Hyper-V, System Center Operations Manager, Windows Cloud Files Mini Filter Driver, Windows Common Log File System Driver, Windows File Explorer, Windows IP Routing Management Snapin, Windows Kernel, Windows Kernel-Mode Drivers, Windows LDAP – Lightweight Directory Access Protocol, Windows Local Security Authority Subsystem Service (LSASS), Windows Message Queuing, Windows Mobile Broadband, Windows PrintWorkflowUserSvc, Windows Remote Desktop, Windows Remote Desktop Services, Windows Resilient File System (ReFS), Windows Routing and Remote Access Service (RRAS), Windows Task Scheduler, Windows Virtualization-Based Security (VBS) Enclave, Windows Wireless Wide Area Network Service, WmsRepair Service, and MSRT. This includes security updates. A reboot is required.

Apple released updates for iOS 17.7.2, iOS 18.1.1, iPadOS 17.7.2, iPadOS 18.1.1, macOS Sequoia 15.1.1, Safari 18.1.1, and visionOS 2.1.1. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 17.7.2 and 18.1.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 17.7.2 and iPadOS 18.1.1 are security updates. Use Settings, General, Software Update to install the most current update.

visionOS 2.1.1 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS LTS 126.0.6478.258 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 24.12.1 improves compatibility and resolves several bugs. This is not a security update.
https://www.amd.com/en/support

Intel Driver and Support Assistant 24.6.49.8 is a security update.
https://www.intel.com/p/en_US/support/detect

Samsung DeX 2.4.1.27 doesn’t provide a change log so should be treated as a security update.
https://www.samsung.com/us/apps/dex/

TP-Link Archer A8 v2.26 230824 resolves several bugs. This is not a security update.
https://www.tp-link.com/us/support/download/archer-a8/v2.26/#Firmware

Wacom Driver 6.4.8-2 is a security update.
https://www.wacom.com/en-us/support/product-support/drivers

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.73.97 is a security update.
https://brave.com/

Firefox 133.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 128.5.1 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 131.0.6778.108 is a security update.
https://www.google.com/chrome/

Vivaldi 7.0.3495.23 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Spark 3.18.2.93439 resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.18.2.93438 resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 128.5.1 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 9.0.1 improves stability and resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

Dropbox 211.4.6008 resolves several bugs. This is not a security update.
https://www.dropbox.com/

FileZilla Server 1.9.4 resolves a configuration bug and improves compatibility. This is not a security update.
https://filezilla-project.org/

FreeFileSync 13.9 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 100.0 improves performance on macOS and resolves several bugs. This is not a security update.
https://drive.google.com/start

MeshCentral 1.1.35 improves compatibility and resolves dozens of bugs. This is not a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.7.00.30955 improves export and data recall. This is not a security update.
https://teams.microsoft.com/downloads

Mumble 1.5.735 resolves over a dozen bugs. This is not a security update.
https://www.mumble.info/

Pocketnet-Core 0.22.8 is a security update.
https://pocketnet.app/

Pocketnet-GUI 0.9.103 resolves several bugs. This is not a security update.
https://pocketnet.app/

PuTTY 0.82 resolves several bugs. This is not a security update.
https://www.chiark.greenend.org.uk/~sgtatham/putty/latest.html

Rclone 1.68.2 is a security update.
https://rclone.org/

Signal 7.35.1 improves hardware compatibility and resolves several bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.26.1 adds folders to improve organization. This is not a security update.
https://signal.org/android/apk/

Syncthing 1.28.1 resolves several bugs. This is not a security update.
https://syncthing.net/

Technitium DNS Server 13.2.2 resolves several bugs. This is not a security update.
https://technitium.com/dns/

Telegram 5.9.0 resolves several bugs including stability and display issues, and adds an affiliate program for bots.
https://telegram.org/

Telegram (Android) 11.4.2 doesn’t provide a detailed change log so should be treated as a security update.
https://telegram.org/apps

WinSCP 6.3.6 resolves several bugs. This is not a security update.
https://winscp.net/eng/index.php

Zoom 6.2.11.50939 resolves several bugs. This is a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.12 resolves a couple bugs. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.2.7 resolves a crash bug. This is not a security update.
https://www.bitwig.com/download/

Grayjay 269 adds landscape support, network sync, and resolves dozens of bugs. Thsi is not a security update.
https://grayjay.app/index.html

KaraFun Player 3.3.6.72 improves upgrade and import behaviors, support for CDG and community media, and resolves several bugs. This is not a security update.
https://www.karafun.com/karaoke-windows/

Plex Desktop 1.105.1.257 does not provide a detailed change log so should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.68.2.259 does not provide a detailed change log so should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.41.2.9200 resolves several bugs. This is not a security update, but the next build is.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.50.10 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Minecraft Server (Java) 1.21.4 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server

PS5 2024.111 improves upgrade and migration. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2024.12.04 resolves dozens of bugs. This is not a security update.
https://store.steampowered.com/news/app/593110

Office Updates

One or more of these are likely to be of interest to most people.

Aronium 1.44.0.1 resolves several bugs and improves internationalization. This is not a security update.
https://aronium.com/

Adobe Acrobat 24.005.20320, 24.001.30225 and 20.005.30748 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb24-92.html

Adobe Acrobat Reader 24.005.20320 and 20.005.30748 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb24-92.html

Adobe After Effects 24.6.3 and 25.1 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb24-95.html

Adobe Animate 23.0.9 and 24.0.6 are security updates.
https://helpx.adobe.com/security/products/animate/apsb24-96.html

Adobe Bridge 14.1.4 and 15.0.1 are security updates.
https://helpx.adobe.com/security/products/bridge/apsb24-103.html

Adobe Connect 11.4.9 and 12.7 are security updates.
https://helpx.adobe.com/security/products/connect/apsb24-99.html

Adobe Experience Manager 6.5.22 and 2024.11 are security updates.
https://helpx.adobe.com/security/products/experience-manager/apsb24-69.html

Adobe FrameMaker 2020.7 and 2022.5 are security updates.
https://helpx.adobe.com/security/products/framemaker/apsb24-106.html

Adobe Illustrator 28.7.3 and 29.1 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb24-94.html

Adobe InDesign 19.5.1 and 20.0 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb24-97.html

Adobe Media Encoder 24.6.4 and 25.1 are security updates.
https://helpx.adobe.com/security/products/media-encoder/apsb24-93.html

Adobe PDFL SDK 21.0.0.7 is a security update.
https://helpx.adobe.com/security/products/pdfl-sdk1/apsb24-98.html

Adobe Photoshop 26.1 is a security update.
https://helpx.adobe.com/security/products/photoshop/apsb24-101.html

Adobe Premiere Pro 24.6.3 and 25.0 are security updates.
https://helpx.adobe.com/security/products/premiere_pro/apsb24-104.html

Adobe Substance 3D Modeler 1.15.0 is a security update.
https://helpx.adobe.com/security/products/substance3d-modeler/apsb24-102.html

Adobe Substance 3D Painter 10.1.2 is a security update.
https://helpx.adobe.com/security/products/substance3d_painter/apsb24-105.html

Adobe Substance 3D Sampler 4.5.2 is a security update.
https://helpx.adobe.com/security/products/substance3d-sampler/apsb24-100.html

Blender 4.3 resolves hundreds of bugs and improves hardware performance and compatibility. This is not a security update.
https://www.blender.org/download/

Calibre 7.22.0 resolves several bugs. This is not a security update.
https://calibre-ebook.com/

InDesign 19.5.1 and 20.0.1 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb24-91.html

Kindle for PC 2.6.70964 doesn’t provide a change log so should be treated as a security update.
https://www.amazon.com/kindleforpc

LibreOffice Fresh 24.8.3 resolves over 80 bugs. This is not a security update.
https://www.libreoffice.org/

Manager 24.12.9.1973 doesn’t provide a detailed change log so should be treated as a security update.
https://www.manager.io/

Nextcloud Desktop 3.15.0 resolves dozens of bugs. This should be treated as a security update.
https://nextcloud.com/

Notepad++ 8.7.4 adds tab pinning and resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 5.1.1 resolves dozens of bugs and updates libraries. This a security update.
https://www.getpaint.net/

PDF-XChange Editor 10.4.4.392 is a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

QuickBooks Pro 2022 R18_32.1 adds filtering by prepayments in customer report. This is not a security update.
https://downloads.quickbooks.com/app/qbdt/products

QuickBooks Pro 2023 R14_60 doesn’t provide a change log so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

Operating System Updates

These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.

ChromeOS 130.0.6723.126 is a security update.
https://chromereleases.googleblog.com/search/label/Stable%20updates+ChromeOS

elementary OS 8.0 is a major update adding session management containers, improved permission controls, Flatpack support out of the box, and expanded hardware support. This is not a security update.
https://elementary.io/

iOS 18.1.1 is a security update.
https://support.apple.com/kb/HT204204

iPadOS 18.1.1 is a security update.
https://support.apple.com/kb/HT204204

macOS 15.1.1 is a security update.
https://support.apple.com/kb/HT201541

Tails 6.10 is a security update.
https://tails.net/install/download/index.en.html

Security Software Updates

One or more of these is likely to be of interest to most people.

.NET Runtime 9.0.0 is a major update. This is a security update.
https://dotnet.microsoft.com/en-us/download/dotnet

FSS 2024.11.26 doesn’t provide a change log so should be treated as a security update.
https://www.bleepingcomputer.com/download/farbar-service-scanner/dl/62/

Gpg4win 4.4.0 resolves dozens of bugs. This should be treated as a security update.
https://www.gpg4win.org/download.html

MalwareBytes Anti-Malware 5.2.3.156 resolves several bugs. This is not a security update.
https://www.malwarebytes.org/antimalware/

ProtonVPN 3.4.3 updates libraries and resolves several bugs. This should be treated as a security update.
https://github.com/ProtonVPN/win-app/releases/latest

SanDisk PrivateAccess 6.4.12.0 doesn’t provide a change log so should be treated as a security update.
https://support-en.wd.com/app/answers/detailweb/a_id/48025

Stinger 13.0.0.234 is a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

SuperAntiSpyware 10.0.1270 adds support for several new browsers and resolves several bugs. This is not a security update.
https://www.superantispyware.com/download.html

uBlock Origin 1.61.2 resolves a couple bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 31.0.0 is a major update. This version adds several integrations, updates libraries and resolves over a dozen bugs. This is not a security update.
https://obsproject.com/

SnagIt 24.3.0 adds rounded corners, improves PDF export support, and resolves a couple bugs. This is not a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.3.1 improves compatibility and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

HandBrake 1.9.0 improves hardware support and new encoding capabilities. This is not a security update.
https://handbrake.fr/

IsoBuster 5.5 adds support for new formats, new extension behavior, and resolves several bugs. This is not a security update.
https://www.isobuster.com/download.php

StreamFab 6.2.0.8 adds support for several new sources and resolves compatibility issues with a dozen others. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 2.0.3.8 improves stabilization, upscaling and performance. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 7.0.11 resolves several bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.54 resolves a dozen bugs. This is not a security update.
https://1password.com/downloads/windows/

7-Zip 24.09 increases default dictionary sizes and resolves several bugs. This is not a security update.
https://www.7-zip.org/

Agent Ransack 2022.3499 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

BatteryInfoView 1.26 adds option to sort log on each update and a 64-bit version. This is not a security update.
https://www.nirsoft.net/utils/battery_information_view.html

Beyond Compare 5.0.4.30422 resolves several bugs and improves skew and other controls. This is not a security update.
https://www.scootersoftware.com/download

Bitwarden 2024.11.2 doesn’t provide a detailed change log for this versions so should be treated as a security update.
https://bitwarden.com/

CCleaner 6.30.11385 improves cleaning of cloud services and some browsers and resolves several bugs. This is not a security update.
https://www.ccleaner.com/

DesktopOK 11.47 is a cosmetic change. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.2.113.0 updates libraries and resolves several bugs. This is a security update.
https://dngrep.github.io/

email-oauth2-proxy 2024-11-11 adds support for OAuth 2.0 Device Authorization Grant and improves compatibility. This is not a security update.
https://github.com/simonrob/email-oauth2-proxy

Fido 1.64 adds support for UEFI Shell 24H2 and a PlatformArch switch. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3499 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

FoneTool 2.9.3 resolves a couple bugs. This is not a security update.
https://www.fonetool.com/download.html

GoodSync 12.7.9 improves OAuth2 support and resolves several bugs. This is not a security update.
https://www.goodsync.com/

grepWin 2.1.7 resolves a couple bugs. This is not a security update.
https://github.com/stefankueng/grepWin/releases/latest

GSmartControl 2.0.1 resolves a crash bug. This is not a security update.
https://gsmartcontrol.shaduri.dev/

Homedale 2.14 changes cosmetics. This is not a security update.
https://www.the-sz.com/products/homedale/

IsMyHdOK 4.14 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

HWiNFO 8.16 improves hardware detection and support for newer hardware. This is not a security update.
https://www.hwinfo.com/download/

Memtest86+ 7.20 adds support for newer hardware and resolves several bugs. This is not a security update.
https://www.memtest.org/

NTLite 2024.12.10210 resolves a couple bugs. This is not a security update.
https://www.ntlite.com/download/

PropertySystemView 1.21 adds an always on top option. This is not a security update.
https://www.nirsoft.net/utils/windows_property_system_view.html

PSAppDeploy 4.0.3 resolves dozens of bugs. This is not a security update.
https://psappdeploytoolkit.com/

SearchMyFiles 3.31 resolves a crash bug. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

TeamViewer 15.60.3 improves display, device and user filtering, and resolves several bugs. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

WinGet 1.9.25200 adds Sixel support, self-elevation, and resolves a compatibility bug. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinScan2PDF 9.13 adds alternate page rotation support. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 4.23 resolves several bugs. This is not a security update.
https://www.diskanalyzer.com/

XnConvert 1.102.0 adds filelist support. This is a security update.
https://www.xnview.com/en/xnconvert/

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 2024.2.1.12 resolves several bugs. This is not a security update.
https://developer.android.com/studio

GDevelop 5.4.219 improves layer support, project templates, and resolves over a dozen bugs. This is not a security update.
https://gdevelop.io/download

Go 1.23.4 resolves several bugs. This is not a security update.
https://go.dev/

Microsoft Visual C++ 2022 Redistributable 14.42.34433.0 is a security update.
https://learn.microsoft.com/en-us/cpp/windows/latest-supported-vc-redist

Node.js 18.20.5 updates libraries and resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

Node.js 20.18.1 updates libraries and resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

Node.js 22.12.0 updates root certificates and libraries, and resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

Node.js 23.4.0 updates root certificates and libraries, and resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

Python 3.13.1 is a security update.
https://www.python.org/downloads/windows/

SQLite 3.47.2 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

TortoiseSVN 1.14.9 resolves several bugs. This is not a security update.
https://tortoisesvn.net/downloads.html

Web Package Updates

These are likely to be of interest only to web developers.

Invision Community 4.7.19 is a security update.
https://invisioncommunity.com/

Joomla 5.2.2 is a security update.
https://www.joomla.org/

Piwigo 15.1.0 is a security update.
https://piwigo.org/

WP Update Server 2.0.2 adds a self-identifying version number. This is not a security update.
https://github.com/YahnisElsts/wp-update-server

WordPress 6.7.1 adds a new primary theme, the ability to add blocks and custom fields, improved style controls, and resolves over a dozen bugs. This is not a security update.
https://wordpress.org/

Antispam Bee 2.11.7 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/antispam-bee/

BuddyPress 14.3.3 resolves several bugs. Thsi is not a security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 6.0.1 is a major update, adding several new features and bug fixes. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.11.2 adds database collation to table creation. This should be treated as a security update.
https://wordpress.org/plugins/duplicator/

Redirection 5.5.1 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/redirection/

Widgets on Pages 1.9.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/widgets-on-pages/

WPBakery 8.0.1 is a major update. This version improves compatibility, adds a dozen features and controls, and resolves several bugs. This is not a security update.
https://wpbakery.com/

WP Cerber Security 9.6.4 adds 2FA improvements, detailed cookie information, and regex exceptions. This is not a security update.
https://wpcerber.com/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/