Updates 2022-09-13

Welcome back, Folks!

Today is Patch Tuesday for September, 2022. This month brings new major versions of iOS, tvOS, watchOS, and impending new versions of Windows 11 and Windows 10. That’s on top of the 120 major hacks, and over 150 application updates this month. Even with all that, it’s actually a pretty light month, with only about 3 GB of updates for most users.

This Month in Technology

Advanced (NHS MSP), Akamai, Akasa Air, Albanian government, Ally Bank, Amazon, Argentina’s Judiciary of Córdoba, Armed Forces General Staff agency of Portugal (EMGFA), Atlantic Dialysis Management Services, Atlassian Bitbucket Server, an “automotive supplier“, Avamere Health Services LLC, Baker & Taylor, Banorte, Block, BOGA Group, Bombardier Recreational Products (BRP), BrandNewTube, BSA Hospice of the Southwest, California Department of Corrections and Rehabilitation (CDCR), Celanese Medical Plan, Center Hospitalier Sud Francilien (CHSF), Cerebral Medical Group, P.A., Chester Upland School District, Chile Consumer Protection Agency, Chile’s government, Cisco (more), Common Ground Healthcare Cooperative, Conifer Revenue Cycle Solutions, CorrectHealth, CS.MONEY, Damart, DaVita Inc., DESFA, DigitalOcean, Dominican Republic’s Instituto Agrario Dominicano, DoorDash, EmergeOrtho, energy providers worldwide, Entrust, Eurocell, Family Medicine Centers, Farmville Internal Medicine, First Street Family Health, Forsyth County medical office, Franklin College, General Bytes, General Health System, Gestore dei Servizi Energetici SpA (GSE), Go-Ahead, Health Advantage, Henderson & Walton Women’s Center, P.C., Holdcroft Motor Group, HP Support Assistant, Hyundai, InterContinental Hotels Group PLC (IHG), IRS, Japan government, KeyBank, Kickstarter (?), LA USD (more), Lamoille Health Partners, LastPass, Lee County Emergency Medical Services, Liberty Counsel, MailChimp, Major Cineplex, Major Development PCL, Medical Mutual of Ohio, Methodist Craig Ranch Surgical Center, Methodist McKinney Hospital, Microsoft Teams, Montenegro government (and lied about it), Mossad, Nelnet Serving, Neopets, Nereus Finance, New Free DAO, NorthStar HealthCare Consulting LLC, Northwestern Medical Center, Novant Health, over 130 organizations via Okta, OMNI Healthcare, INC, OneTouchPoint, Onyx Technology LLC, Orange Cyberdefense, Overlake Medical Center & Clinics, Plex, Practice Resources LLC, Priti Patel Physician PC, Prowers  County Hospital District, PT Jasamarga Tollroad Operator, QNAP Photo Station, QuestionPro, Rug Pull Finder, Samsung, San Diego American Indian Health Center, San Francisco 49ers, Sando, Savannah College of Art and Design, Sephora, SFERRA, Sheppard Robson, Shipyaari, ShitExpress, Signal, SitePoint, South Staffordshire Water, Specialized Treatment Facility, Sri Lanka Department of Examinations, Starlink’s Dishy McFlatface, START.ru, Stratford University, TAP Air Portugal, Tesla cars, The North Face, TikTok, Trinity Health, Tulsa Tech, Twilio, Twitter, U-Haul, UK’s National Health Service, USAble Mutual Insurance Company, Valley Baptist Medical Center – Brownsville, Valley Baptist Medical Center – Harlingen, Warner Norcross & Judd, Xinai Electronics, and Zimbra Collaboration Suite have reportedly been hacked or compromised this month.

75% of retailers and 52% of supply chains report being hacked in 2021. Those numbers don’t reflect well on the security state of the nation. 🙁

Patreon fired their entire security department. What this means for you: if you’re still using Patreon, now is the best time to stop.  The Zoom installer can get you hacked. Facebook and Twitter will soon be shunning the CIA. (/sarc)

After updates last month, MS Office would crash if you floated your mouse over Outlook contacts. The version was pulled, but a new version wasn’t released until today. Microsoft released a virus definitions update that falsely identified every Electron app as malware on September 4th (the Labor Day holiday weekend). While it took only 13 hours before they released a fix, it was 13 hours too long for many who thought their browsers had been compromised. Edge 105 wouldn’t start if you had policies enabled relating to data reporting. Completely removing the policies was the only workaround. Tabs are coming to Windows Explorer in a “Moment.” I think they should probably call them Hot Flashes. Or Whims.

The only significant outages this month were Microsoft Azure and Microsoft 365.

End-of-life (EOL) means end-of-life. Don’t expect vendors to fix critical vulnerabilities in EOL hardware or software. Usually. This is a win for Apple. This isn’t. And this is just sad.

Google finished their purchase of Mandiant. Even Lloyd’s of London is taking a page out of the terrorism handbook. The IoT (Internet of Things) is far less secure than they claim. In an approach that could only be described as inevitable, the anti-cheat software used to prevent cheating in a video game is being abused to hack computers with it installed.

The concept of software “permissions” is fatally flawed. While this article only demonstrates how it effected the clipboard, it’s a timely reminder to keep your camera and mic physically disabled whenever possible.

When the Federal government has no respect for the law, is it any surprise that law enforcement are tracking you without warrants. Duh.

Now for the good news:

While there’s not a lot of good news in tech, we can at least have some fun with it. Check out these barcode ponies.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is about average this month. The typical computer should see roughly 3 GB in updates today. Let’s get started.

Microsoft released updates to address 64 vulnerabilities in .NET and Visual Studio, .NET Framework, Azure Arc, Cache Speculation, HTTP.sys, Microsoft Dynamics, Microsoft Edge (Chromium-based), Microsoft Graphics Component, Microsoft Office, Microsoft Office SharePoint, Microsoft Office Visio, Microsoft Windows ALPC, Microsoft Windows Codecs Library, Network Device Enrollment Service (NDES), SPNEGO Extended Negotiation, Visual Studio Code, Windows Common Log File System Driver, Windows Credential Roaming Service, Windows Defender, Windows Distributed File System (DFS), Windows DPAPI (Data Protection Application Programming Interface), Windows Enterprise App Management, Windows Event Tracing, Windows Group Policy, Windows IKE Extension, Windows Kerberos, Windows Kernel, Windows LDAP – Lightweight Directory Access Protocol, Windows ODBC Driver, Windows OLE, Windows Photo Import API, Windows Print Spooler Components, Windows Remote Access Connection Manager, Windows Remote Procedure Call, Windows TCP/IP, Windows Transport Security Layer (TLS), and MSRT (~3 GB). This includes security updates. A reboot is required.

Apple released updates for iOS 12.5.6 and 16.0, iPadOS 15.6.1, macOS Big Sur 11.7, macOS Monterey 12.5.1 and 12.6, Safari 15.6.1 and 16.0. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 12.5.6 and 16.0 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.6.1 is a security update. Use Settings, General, Software Update to install the most current update.

tvOS 16.0 is a security update. Use System, Software Update to install the most current version.

watchOS 9.0 is a security update. Use the Watch app on your iPhone to install the most current version.

Google Chrome OS 105.0.5195.112 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The new versions of Windows 10 and Windows 11 are expected within the next month. This release is the first in Microsoft’s new “Moments” behavior. We knew this would eventually happen last year when they threw in the towel on their 6-month OS release cadence and switch to a 1-year cadence, then last month announced that they would instead release a new major build every 3 years but release smaller feature updates (called “Moments”) whenever they wanted to. I think they missed their chance to call them “Whims”. If their recent cadence changes demonstrate anything, it’s that it’s all on a Windows Whim anyway. 🙂

The release of macOS Monterey (12.x) means that macOS Mojave (10.14) and older are no longer supported. If you can not install at least macOS Catalina (10.15) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v21H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 12 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v21H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 22.8.2 resolves several bugs and improves compatibility. This is not a security update.
https://www.amd.com/en/support

BullZip PDF Printer 14.0.0.2944 removes features. This is not a security update.
https://www.bullzip.com/products/pdf/info.php#download

Dymo Connect for Desktop 1.3.2.18 improves compatibility, but still not supported on Windows 11. This is not a security update.
https://www.dymo.com/label-makers-printers/labelwriter-label-printers/dymo-labelwriter-450-duo-thermal-label-printer/SAP_1752267.html

Intel Driver and Support Assistant 22.5.34 improves stability and resolves several bugs. This is not a security update.
https://www.intel.com/p/en_US/support/detect

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.43.89 is a security update.
https://brave.com/

Google Chrome 105.0.5195.102 is a security update.
https://www.google.com/chrome/

Microsoft Edge 105.0.1343.33 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 104.0.2 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 102.2.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Vivaldi 5.4.2753.47 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.10.5 is a security update.
https://getmailspring.com/

Thunderbird 102.2.2 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 7.0.14 is a security update.
https://anydesk.com/en/downloads

curl 7.85.0 resolves over a hundred bugs. This is a security update.
https://curl.haxx.se/windows/

Dropbox 156.4.4908 improves context menu behavior. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 159.0.0.23.221 is a security update.
https://www.messenger.com/download

FreeFileSync 11.25 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 63.0 is a security update.
https://drive.google.com/start

Mumble 1.4.274 resolves over a dozen bugs. This is not a security update.
https://www.mumble.info/

Nextcloud Server 24.0.5 updates libraries and resolves dozens of bugs. This is not a security update.
https://nextcloud.com/

Nmap 7.93 is a security update.
https://nmap.org/

Npcap 1.71 is a security update.
https://nmap.org/npcap/

Omada Software Controller 5.5.6 improves reliability, compatibility, and resolves an access bug. This is not a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Pocketnet-GUI 0.8.11 resolves several bugs. This is not a security update.
https://pocketnet.app/

Signal 5.58.0 doesn’t provide a detailed changelog so should be treated as a security update.
https://signal.org/download/windows/

Skype 8.87.0.406 resolves several bugs and adds quoting for all content types. This is not a security update.
https://www.skype.com/

Syncthing 1.21.0 resolves two bugs and adds several new features. This is not a security update.
https://syncthing.net/

Telegram 4.1.1 resolves several bugs. This is not a security update.
https://telegram.org/

Trillian 6.5.0.24 improves reliability, media and diagnostics. This is not a security update.
https://www.trillian.im/

WinSCP 5.21.3 resolves a couple bugs. This is not a security update.
https://winscp.net/eng/index.php

Zoom 5.11.11.8425 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 3.0.4 resolves several bugs. This is not a security update.
https://en.3tene.com/

iTunes 12.12.5.1 is a security update.
https://www.apple.com/itunes/download/

Picard 2.8.3 resolves a crash bug. This is not a security update.
https://picard.musicbrainz.org/

Plex Desktop 1.53.1.3225 improves watchlist, resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.25.1.3248 resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.28.2.6151 resolves a stability bug. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Epic Games 14.2.1 resolves several bugs. This is not a security update.
https://www.epicgames.com/

GameMaker Studio 2022.8.1.37 adds several new features, removes redundant and unused features, and resolves over 150 bugs. This is not a security update.
https://www.yoyogames.com/en/gamemaker

Lego Studio 2.22.8.1 resolves several bugs. This is not a security update.
https://www.lego.com/en-us/ldd

PS4 10.0 adds zoom and magnify options in the browser, and improves Remote Play. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps4/system-software/

PS5 22.02-06.00.00 adds dozens of new features and bug fixes. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2022.08.18 resolves several bugs. This is not a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Animate 21.0.12 and 22.0.8 are security updates.
https://helpx.adobe.com/security/products/animate/apsb22-54.html

Adobe Bridge 12.0.3 and 11.1.4 are security updates.
https://helpx.adobe.com/security/products/bridge/apsb22-49.html

Adobe Experience Manager 6.5.14.0 is a security update.
https://helpx.adobe.com/security/products/experience-manager/apsb22-40.html

Adobe Illustrator 23.5 and 25.4.8 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb22-55.html

Adobe InCopy 17.4 and 16.4.3 are security updates.
https://helpx.adobe.com/security/products/incopy/apsb22-53.html

Adobe InDesign 17.4 and 16.4.3 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb22-50.html

Adobe Photoshop 22.5.9 and 23.5 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb22-52.html

Adobe Reader DC 22.002.20212 is a security update.
https://get.adobe.com/reader

Calibre 6.4.0 adds several new management and organizational features, and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Krita 5.1.0 resolves dozens of bugs. This is not a security update.
https://krita.org/en/download/krita-desktop/

LibreOffice Fresh 7.4.1 adds over 500 bug fixes and features changes. This is a security update. Please remember that LibreOffice Fresh is beta software. Most users should use LibreOffice Still.
https://www.libreoffice.org/

LibreOffice 7.3.6 resolves over 50 bugs. This is not a security update.
https://www.libreoffice.org/

Nextcloud Desktop 3.6.0 resolves dozens of bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.4.5 updates libraries and resolves a dozen bugs. This should be treated as a security update.
https://notepad-plus-plus.org/

Paint.net 4.3.12 resolves several bugs. This is not a security update.
https://www.getpaint.net/

PDF-XChange Editor 9.4.363.0 resolves several stability and reliability bugs. This is not a security update.
https://www.tracker-software.com/product/pdf-xchange-editor

Security Software Updates

One or more of these is likely to be of interest to most people.

.NET Framework 4.8.1 adds native support for Arm64, forms, and tooltips improvements. This is not a security update.
https://dotnet.microsoft.com/en-us/download/dotnet-framework/net481

Hashcat 6.2.6 adds a return code for self-test failure. This is not a security update.
http://hashcat.net/hashcat/#downloadlatest

Johnny 2.2 adds several new modes, file formats, export options and resolves several bugs. This is not a security update.
https://openwall.info/wiki/john/johnny

KeePass 2.52 adds several new features, improves GUI and automation, and resolves a couple bugs. This is not a security update.
https://keepass.info/

ProtonVPN 2.0.6 improves DNS resolution. This is not a security update.
https://protonvpn.com/download

ProtonVPN (macOS) 3.0.2 now automatically logs you in when visiting the ProtonVPN website. This is not a security update.
https://protonvpn.com/download

RogueKiller 15.6.1 updates core, adds clipboard protection, and resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

SanDisk PrivateAccess 6.3.10 doesn’t provide a changelog so should be treated as a security update.
https://kb.sandisk.com/app/answersweb/detailweb/a_id/21996

Tails 5.4 is a security update.
https://tails.boum.org/install/dvd/index.en.html

uBlock Origin 1.44.2 resolves several bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Velociraptor 0.6.6 resolves several bugs. This is not a security update.
https://github.com/Velocidex/velociraptor/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 28.0.1 adds dozens of new features, bug fixes, and performance improvements. This is not a security update.
https://obsproject.com/

ScreenToGif 2.37.1 resolves a couple bugs. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.0.8.6 adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

StreamFab 5.0.5.2 improves reliability and performance with some websites. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 6.0.13 resolves several bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 8.9.4 resolves dozens of bugs. This is not a security update.
https://1password.com/downloads/mac/

1Password for Windows 8.9.5 resolves dozens of bugs. This is not a security update.
https://1password.com/downloads/windows/

AOMEI Partition Assistant 9.10.0 resolves several bugs and adds ability to delete large files. This is not a security update.
https://www.diskpart.com/

Agent Ransack 2022.3341 updates libraries and resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

CCleaner 6.03.10002 increases the nag factor and resolves several crash bugs. This is not a security update.
https://www.ccleaner.com/

ControlMyMonitor 1.36 adds option to start as hidden. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html

Coreinfo 3.53 now handles NUMA nodes with more than 64 processors. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/coreinfo

CPU-Z Installer 2.02 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

Cygwin 3.3.6 resolves a dozen bugs. This is not a security update.
https://cygwin.com/

DesktopOK 10.16 resolves a couple bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 3.0.154.0 resolves several bugs. This is not a security update.
https://dngrep.github.io/

Drive Snapshot 1.50 adds SFTP support and support for newer operating systems. This is not a security update.
http://www.drivesnapshot.de/en/

Everything 1.4.1.1020 is a security update.
https://www.voidtools.com/

Fido 1.31 improves compatibility. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3341 updates libraries and resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Git SCM 2.37.3 resolves several bugs. This is not a security update.
https://git-scm.com/

GoodSync 12.0.2 resolves dozens of bugs and improves compatibility. This is a security update.
https://www.goodsync.com/

NTLite 2.3.8.8890 improves compatibility. This is not a security update.
https://www.ntlite.com/download/

osquery 5.5.1 adds and updates several new tables, and resolves several bugs. This is not a security update.
https://osquery.io/downloads

PointerStick 5.95 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.62.0 adds Screen Ruler, Quick Accent, Text Extractor (OCR), and resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

ScreenConnect 22.7.8783.8255 resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

SearchMyFiles 3.22 resolves a couple bugs. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

SimpleWMIView 1.52 adds option to show milliseconds. This is not a security update.
https://www.nirsoft.net/utils/simple_wmi_view.html

Ookla Speedtest CLI 1.2.0
https://www.speedtest.net/apps/cli

Sysmon 14.0 adds a new event type, FileBlockExecutable, that prevents processes from creating executable files in specified locations, and includes several performance improvements and bug fixes. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

TcpLogView 1.36 is a security update.
https://www.nirsoft.net/utils/tcp_log_view.html

TeamViewer 15.33.7 resolves several bugs. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

TraceRouteOK 3.13 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK

Unity 2022.1.16 updates libraries and resolves dozens of bugs. This is not a security update.
https://unity3d.com/get-unity/download/archive

USBDeview 3.06 resolves several bugs. This is not a security update.
https://www.nirsoft.net/utils/usb_devices_view.html

WhyNotWin11 2.5.0.3 resolves several bugs. This is not a security update.
https://github.com/rcmaehl/WhyNotWin11

WinScan2PDF 8.22 adds reverse scan order. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 4.10 resolves several bugs. This is not a security update.
https://www.diskanalyzer.com/

Developer Updates

These are unlikely to be of interest to most people.

ADB 33.0.3 resolves several bugs. This is a security update.
https://developer.android.com/studio/releases/platform-tools

AutoHotkey 1.1.34.04 resolves several bugs. This is a security update.
https://www.autohotkey.com/download/

Docker Desktop 4.12.0 upgrades libraries and fixes dozens of bugs. This is a security update.
https://www.docker.com/products/docker-desktop

Get-IMAPAccessToken 2022.9.1 improves consistency and updates documentation. This is not a security update.
https://github.com/DanijelkMSFT/ThisandThat/blob/main/Get-IMAPAccessToken.ps1

Go 1.19.1 is a security update.
https://go.dev/

GitHub Desktop 3.0.8 resolves several bugs. This is not a security update.
https://desktop.github.com/

Node.js 18.9.0 updates libraries and resolves several bugs. This should be treated as a security update.
https://nodejs.org/en/

Node.js 16.17.0 updates libraries and resolves several bugs. This should be treated as a security update.
https://nodejs.org/en/

SQLite 3.39.3 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.71.1 is a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

PPSSPP 1.13.2 resolves several bugs. This is not a security update.
https://ppsspp.org/downloads.html

VirtualBox 6.1.38 resolves several bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Dada Mail 11.19.0 resolves several bugs, adds new features, and updates libraries. This is a security update.
https://dadamailproject.com/

HumHub 1.12.1 resolves several bugs. This is not a security update.
https://www.humhub.com/en/download

Joomla 4.2.2 is a security update.
https://www.joomla.org/

jQuery 3.6.1 resolves several bugs. This is not a security update.
https://code.jquery.com/

MailEnable 10.41 updates utilities, and resolves over a dozen bugs. This is not a security update.
https://www.mailenable.com/

OpenCart 4.0.1.1 resolves several bugs. This should be treated as a security update.
https://www.opencart.com/

ownCloud Client 2.11.1.8438 resolves several bugs. This is not a security update.
https://owncloud.com/desktop-app/

WordPress 6.0.2 is a security update.
https://wordpress.org/

Autoptimize 3.1.1.1 resolves a stability bug. This is not a security update.
https://wordpress.org/extend/plugins/autoptimize/

BuddyPress 10.4.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 5.6.3 adds new validation features. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.0 resolves several bugs and adds new options within the installer. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers

myStickymenu 2.6 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

Redirection 5.3.3 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/redirection/

Simple Lightbox 2.9.1 adds support for new media formats, improves compatibility, and resolves a validation bug. This is not a security update.
https://wordpress.org/extend/plugins/simple-lightbox/

Slider Revolution 6.5.31 resolves a minor bug. This is not a security update.
https://revolution.themepunch.com/

Sucuri Security 1.8.35 resolves a referer bug. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

WooCommerce 6.8.2 resolves dozens of bugs, improves reliability, compatibility and adds several new tests and flows. This is a security update.
https://wordpress.org/extend/plugins/woocommerce/

WP Mail SMTP 3.5.2 resolves a self-diagnostic bug. This is not a security update.
https://wordpress.org/extend/plugins/wp-mail-smtp/

WPtouch 4.3.44 is a security update.
https://wordpress.org/extend/plugins/wptouch/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

 

Updates 2022-07-12

Welcome back, Folks!

Today is Patch Tuesday for July, 2022. You know how you say something like “biggest update series in well over a year” and the next month just blows that out of the water? We’re there now.

This Month in Technology

Advocates, Inc., Aerojet Rocketdyne, Alabama Eye & Cataract, P.C., Alameda Health System, Aloha Laser Vision, Amagasaki, Japan, Amazon Photos, AMD, Anker Eufy, Aon, Aruba Networks Switches, ATC Healthcare, Bangladeshi government, Bank of the West, Baptist Medical Center and Resolute Health Hospital, Bayhealth Medical Center, Inc., BeanVPN, Benefit Plan Administrators, Inc., Bookchor, Bourse des Vols, Capital Economics, Carnival Corporation, Carolina Behavioral Health Alliance, Carolina Eyecare Physicians, LLC, Catholic Health System, Center for Sight, Inc., Central Florida Inpatient Medicine, Charlotte Radiology, Cherry Creek Eye Physicians and Surgeons, P.C., CHRISTUS Spohn Health System Corporation, Cisco Secure Email, Cisco VPN routers, Citrix Application Delivery Management, CoDeSys Automation Software, Community of Hope D.C., Crema Finance, Customer.io, Disneyland’s Facebook and Instagram accounts, DivX SubTitles, Django, DTEK Group, ExpressLRS, Fast Shop, Flagstar Bank, Florida Birth-Related Neurological Injury Compensation Association, Foxhall Ob Gyn Associates, Geographic Solutions, Gol Tours LTD, Grab, Harmony, Hillrom Medical, Honda cars, Hudson Regional Hospital, IBM, Ignitis Group, Indian Flood Monitors, Indian government, thousands of industrial devices, Israeli Defense, Kaiser Foundation Health Plan of Washington, Kaiser Permanente, Kernersville Eye Surgeons, P.C., Khouzestan Steel Company, almost a million Kubernetes clusters, La Poste Mobile, Latvian government, Lithuanian government, Long Vision Center, Macmillan Publishing, Mangatoon, Marriott International, Massachusetts Child and Family Services, Inc., Mattax Neu Prater Eye Center, Inc., MCG Health and Eye Care Leaders, Medical University of Innsbruck, MEGA, Michigan Avenue Immediate Care, Microsoft Azure FabricScape, Microsoft Exchange, Microsoft Windows Domain Servers, Mitel VoIP, New Jersey Health Information Management, Nichirin-Flex U.S.A., North American Spine Society, Norway govt sites, OpenSea, OrthoNebraska, Phelps Care Regional Medical Center, Preferred Hospital Leasing Coleman Inc., Professional Finance Company, Renton School District, Resolute Health Hospital, Rodeo Pharmacy Inc, Shanghai National Police, Sharper Vision P.A., SHI International, Shoprite, Sight Partners Physicians, P.C., Sophos Firewall, Southwest Health Center, St Joseph Heritage Health, Stanford University, Stokes Regional Eye Centers, TB Kawashima, The People Concern, The Vicksburg Clinic, LLC, Tosoh America, Inc., UK Army’s Twitter & YouTube, UNC Lenoir Health Care, University of Pisa, University Pediatric Dentistry, US Bank, Walmart, WellDyneRx, LLC, Wiltshire Farm Foods, Yodel, Yuma Regional Medical Center, and Zimbra reportedly been hacked or compromised this month.

Some vendors, like CafePress, simply don’t care about security – and do their best to conceal when they’re hacked. I contacted them to report when they were hacked back in 2014 and they ignored me. Sigh.

Microsoft 365, Cloudflare, Microsoft Teams, Rogers (it was a big one), and Microsoft Office / OneDrive had widespread outages.

Facebook is collecting the patient data of millions, and is also blocking the link to the Facebook settlement class action website. You think they would have learned.

Attackers are using Google Chrome Extension fingerprinting to uniquely identify you. This method works in any Chromium browser.

Spam is still the #1 method of exploiting users. Whether it is a fake renewal notice, fake copyright complaints, or fake invoice, most spams will include a fake login form or a fake support number. In both cases they depend on the user to actually enter the login details or call the scammer to fall prey to their attacks. Online development environments are even being used for these attacks.

Counterfeit hardware can be far more dangerous than the real thing. Even though some vendors only support their hardware a few years before you have to replace it,  counterfeits are never supported and often have malicious implants.

Microsoft has rolled back (temporarily) their decision to block macros by default.

MITRE staff didn’t understand that publishing vulnerable sites, not just vulnerability information was bad, while a HackerOne employee was selling exploits before they were published, and an Amazon employee installed cryptominers on Capital One servers. Adobe is using malware traits to block antivirus software from scanning PDF files. How quickly these organizations can shatter their trust.

Here’s a great example of how a single vulnerability will be used to get far deeper into your network and hardware.

Storing your password directly in the browser is dangerous. Use a password manager.

Now for the good news:

 

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is huge this month. The typical computer should see roughly 3 GB in updates today. Let’s get started.

Microsoft released updates to address 74 vulnerabilities in Azure Site Recovery, Azure Storage Library, DNS Server, Microsoft Defender for Endpoint, Microsoft Edge, Microsoft Graphics Component, Microsoft Lync, Microsoft Office, Open Source Software, Skype for Business, Windows Active Directory, Windows Advanced Local Procedure Call, Windows BitLocker, Windows Boot Manager, Windows Client/Server Runtime Subsystem, Windows Connected Devices Platform Service, Windows Credential Guard, Windows Fast FAT Driver, Windows Fax and Scan Service, Windows Fax Service, Windows Group Policy, Windows Hyper-V, Windows IIS, Windows Kernel, Windows Media, Windows Network File System, Windows Performance Counters, Windows Point-to-Point Tunneling Protocol, Windows Portable Device Enumerator Service, Windows Print Spooler Components, Windows Remote Procedure Call Runtime, Windows Security Account Manager, Windows Server Service, Windows Shell, Windows Storage, XBox, and MSRT (~3 GB). This includes security updates. A reboot is required.

Google Chrome OS 103.0.5060.114 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Monterey (12.x) means that macOS Mojave (10.14) and older are no longer supported. If you can not install at least macOS Catalina (10.15) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v21H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 12 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v21H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 22.6.1 adds support for newer hardware. This is not a security update.
https://www.amd.com/en/support

Crucial Storage Executive 7.12 doesn’t provide a changelog so should be treated as a security update.
https://www.crucial.com/support/storage-executive

Display Driver Uninstaller 18.0.5.2 improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Intel Driver and Support Assistant 22.4.26 improves user interface. This is not a security update.
https://www.intel.com/p/en_US/support/detect

Samsung DeX 2.4.0.29 doesn’t provide a changelog so should be treated as a security update.
https://www.samsung.com/us/apps/dex/

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.41.96 is a security update.
https://brave.com/

SeaMonkey 2.53.13 is a security update.
https://www.seamonkey-project.org/

Google Chrome 103.0.5060.114 is a security update.
https://www.google.com/chrome/

Microsoft Edge 103.0.1264.51 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 102.0.1 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 91.11.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Vivaldi 5.3.2679.68 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

OutlookAttachView 3.45 adds a command-line option to control columns in exports. This is not a security update.
https://www.nirsoft.net/utils/outlook_attachment.html

Thunderbird 102.0.2 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

curl 7.84.0 resolves over a hundred bugs. This is a security update.
https://curl.haxx.se/windows/

Dropbox 152.4.4880 resolves several bugs. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 153.0.0.19.110 is a security update.
https://www.messenger.com/download

FreeFileSync 11.22 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 60.0 resolves several bugs. This is not a security update.
https://drive.google.com/start

Nextcloud Server 24.0.2 updates libraries, and resolves over 50 bugs. This is a security update.
https://nextcloud.com/

Npcap 1.70 resolves several bugs. This is not a security update.
https://nmap.org/npcap/

Rclone 1.59.0 adds support for new backends, metadata framework, resolves several bugs, and updates libraries. This is not a security update.
https://rclone.org/

Signal 5.49.0 doesn’t provide a detailed changelog so should be treated as a security update.
https://signal.org/download/windows/

Skype 8.85.0.409 improves their propaganda tools and resolves several bugs. This is not a security update.
https://www.skype.com/

Syncthing 1.20.3 resolves several bugs. This is not a security update.
https://syncthing.net/

Technitium DNS Server 8.1.4 resolves several bugs. This is not a security update.
https://technitium.com/dns/

Telegram 4.0.2 resolves several bugs. This is not a security update.
https://telegram.org/

WinSCP 5.21.2 is a security update.
https://winscp.net/eng/index.php

Zoom 5.11.1.6602 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 3.0.2 updates libraries and resolves several bugs. This is not a security update.
https://en.3tene.com/

darktable 4.0.0 is a major update. This version improves color space, exposure, contrast controls and hundreds of other features, as well as resolving over 100 issues. This should be treated as a security update.
https://www.darktable.org/

Picard 2.8.2 resolves several bugs. This is not a security update.
https://picard.musicbrainz.org/

Plex Desktop 1.48.2.3124 adds option to disable some Discover features, resolves several bugs with Search and Watchlist. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.20.2.3110 resolves a stability bug. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.27.2.5929 improves logging, adds support for Musicbrainz tags, and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Epic Games 14.1.2 resolves several bugs. This is not a security update.
https://www.epicgames.com/

GameMaker Studio 2022.6.0.23 adds Feather support, room editor filters, additional extension features, and resolves dozens of bugs. This is not a security update.
https://www.yoyogames.com/en/gamemaker

Lego Studio 2.22.6.1 resolves several bugs. This is not a security update.
https://www.lego.com/en-us/ldd

PlayStation PS5 22.01-05.50.00 resolves several bugs and improves performance. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

PlayStation PS4 9.60 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps4/system-software/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe RoboHelp RH2020.0.8 is a security update.
https://www.adobe.com/support/robohelp/downloads.html

Adobe Acrobat and Reader 22.001.20169, 20.005.30362, and 17.012.30249 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb22-32.html

Adobe Character Animator 22.5 is a security update.
https://www.adobe.com/creativecloud/catalog/desktop.html

Adobe Photoshop 22.5.8 and 23.4.1 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb22-35.html

Artweaver 7.0.13 resolves several bugs. This is not a security update.
https://www.artweaver.de/

Calibre 6.0 is a major update. This version adds full text search, new hardware support and performance improvements, a new URL scheme, and read-aloud support. It also removed 32-bit support. This is not a security update.
https://calibre-ebook.com/

Gimp 2.10.32 adds HiDPI, high bit-depth and multi-threading support, dark theme, improved color control, masking, and warp. This is not a security update.
https://www.gimp.org/

Kindle for PC 1.37.65274 doesn’t provide a changelog so should be treated as a security update.
https://www.amazon.com/kindleforpc

Nextcloud Desktop 3.5.2 resolves over a dozen bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.4.3 adds option to limit search results to one line per file, adds EOL customization, adds new document shortcuts, and resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

Security Software Updates

One or more of these is likely to be of interest to most people.

Intel CSMEVDT 7.0.2.0 resolves a documentation error. This is not a security update.
https://www.intel.com/content/www/us/en/download/19392/28632/intel-converged-security-and-management-engine-version-detection-tool-intel-csmevdt.html

FSS 2022.6.14 doesn’t provide a changelog so should be treated as a security update.
https://www.bleepingcomputer.com/download/farbar-service-scanner/dl/62/

Gpg4win 4.0.3 is a security update.
https://www.gpg4win.org/download.html

HTTP Toolkit 1.9.0 improves issue tracking and feedback. This is not a security update.
https://httptoolkit.tech/

MalwareBytes Anti-Malware 4.5.10.200 is a security update.
https://www.malwarebytes.org/antimalware/

OpenSSL (SLP) 3.0.5 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

OpenSSL 1.1.1q is a security update.
https://www.openssl.org/source/

ProtonVPN 2.0.3 resolves several bugs. This is not a security update.
https://protonvpn.com/download

ProtonVPN (macOS) 3.0.1 resolves several bugs. This is not a security update.
https://protonvpn.com/download

SanDisk PrivateAccess 6.3.10 does not provide a changelog so should be considered a security update.
https://kb.sandisk.com/app/answersweb/detailweb/a_id/21996

Tails 5.2 is a security update.
https://tails.boum.org/install/dvd/index.en.html

YARA 4.2.2 is a security update.
https://github.com/VirusTotal/yara/

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 22.1.0 adds several new features, improves performance, and resolves several bugs. This is not a security update.
https://download.techsmith.com/snagit/releases/snagit.msi

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.0.7.8 adds support for new encodings and resolves several stability bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

iMazing HEIC Converter 2.0.0 doesn’t provide a changelog so should be considered a security update.
https://imazing.com/heic

IsoBuster 5.0 is a major update that adds a 64-bit version, high-DPI scaling, themes, improved media support and resolves several bugs. This is not a security update.
https://www.isobuster.com/download.php

MakeMKV 1.17.0 improves reliability, adds support for new encodings, and resolves several bugs. This is not a security update.
https://www.makemkv.com/download/

Education updates

One or more of these are likely to be of interest to most people.

Zotero 6.0.9 adds PDF rotation and resolves several bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Windows 8.7.3 is a major update adding several new cosmetic and integration improvements, and search and filter options. This is a security update.
https://1password.com/downloads/windows/

1Password for Mac 8.7.3 is a major update adding several new cosmetic and integration improvements, and search and filter options. This is a security update.
https://1password.com/downloads/mac/

7-Zip 22.00 adds support for APFS, pax, adds zone.id, and resolves several bugs. This is not a security update.
https://www.7-zip.org/

8GadgetPack 35.0 improves compatibility, adds keyboard shortcuts, and resolves several bugs. This is not a security update.
https://8gadgetpack.net/

Agent Ransack 2022.3335 adds new columns, improves view state restoration, and resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

CCleaner 6.01.9825 adds support for new apps and resolves several bugs. This is not a security update.
https://www.ccleaner.com/

Dell OS Recovery Tool 2.3.7012.0 doesn’t provide a changelog so should be treated as a security update.
https://www.dell.com/support/home/uk/en/ukbsdt1/drivers/osiso/recoverytool

DesktopOK 9.97 expands toolset. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 3.0.84.0 adds personalization, search statistics, Excel row numbers, and resolves several bugs. This is not a security update.
https://dngrep.github.io/

dupeGuru 4.3.1 resolves a false duplication detection bug. This should be treated as a security update if you use dupeGuru to remove duplicate files.
https://dupeguru.voltaicideas.net/

FileLocator Pro 2022.3335 adds new columns, improves view state restoration, and resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Git SCM 2.37.0 resolves several bugs and improves CLI support. This is a security update.
https://git-scm.com/

GoodSync 11.11.5 resolves dozens of bugs. This is a security update.
https://www.goodsync.com/

Intel CPU Diagnostic 4.1.7.39 adds tests for newer hardware, resolves several bugs, and updates components. This is not a security update.
https://www.intel.com/content/www/us/en/download/15951/intel-processor-diagnostic-tool.html

IsMyHdOK 3.66 improves compatibility and SSD/SSHD detection. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

NTLite 2.3.6.8804 resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

PointerStick 5.88 improves support for virtual desktops and multiple screens. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.60.0 resolves several bugs and improves compatibility. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

RoboForm 9.3.3 adds (and resolves bugs within) OTP feature, improves search, and resolves several bugs. This is not a security update.
https://www.roboform.com/

Rufus 3.19 adds an option for setup customization, updates drivers, and resolves several bugs. This is not a security update.
https://rufus.ie/en_US/

SearchMyFiles 3.20 adds filename length filter. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

Synergy 1.14.5 resolves several bugs. This is not a security update.
https://symless.com/synergy/

TeamViewer 15.31.5 improves video experience and adds remote terminal to the Computers & Contacts list. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

Unity 2022.1.8 updates libraries and resolves dozens of bugs. This is not a security update.
https://unity3d.com/get-unity/download/archive

WhyNotWin11 2.5.0.1 resovles several bugs. This is not a security update.
https://github.com/rcmaehl/WhyNotWin11

WifiInfoView 2.77 improves high-DPI support. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

ZoomText 2022.2206.7.400 adds languages and resolves several bugs. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

GitHub Desktop 3.0.3 resolves several bugs. This is not a security update.
https://desktop.github.com/

Node.js 18.5.0 is a security update.
https://nodejs.org/en/

Node.js 16.16.0 is a security update.
https://nodejs.org/en/

Node.js 14.20.0 is a security update.
https://nodejs.org/en/

Rustup 1.25.0 adds support for arm64, improved integration and resolves several bugs. This is not a security update.
https://www.rust-lang.org/

Redemption 6.2.0.6122 resolves several bugs. This is not a security update.
https://www.dimastr.com/redemption/

SQLite 3.39.0 adds support for right and full outer join, distinct from, and resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.69.1 adds 3-way merge, improved command center UI for search, DND mode, and resolves several bugs. This is a security update.
https://code.visualstudio.com/

Web Package Updates

These are likely to be of interest only to web developers.

Drupal 9.3.18 is a security update.
https://drupal.org/download

Drupal 9.4.0 is a security update.
https://drupal.org/download

HumHub 1.11.4 is a security update.
https://www.humhub.com/en/download

Joomla 4.1.5 resolves several bugs. This is the last of the 4.1 series. This is not a security update.
https://www.joomla.org/

jQuery 3.6.0
https://code.jquery.com/

MailEnable 10.40 updates libraries and resolves over a dozen bugs. This is a security update.
https://www.mailenable.com/

Piwigo 12.3.0 resolves several bugs. This is not a security update.
https://piwigo.org/

WordPress 6.0.1 resolves over two dozen bugs. This is not a security update.
https://wordpress.org/

Akismet 4.2.5 resolves a bug. This is not a security update.
https://wordpress.org/extend/plugins/akismet/

Antispam Bee 2.11.1 cleans up code. This is not a security update.
https://wordpress.org/extend/plugins/antispam-bee/

Contact Form 7 5.6 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.4.7 improves compatibility. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers

Interactive World Map 3.2.0 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/interactive-world-map/

Postie 1.9.61 resolves a MIME warning. This is not a security update.
https://wordpress.org/extend/plugins/postie/

NextScripts Social Networks Auto-Poster 4.3.26 is a security update.
https://wordpress.org/extend/plugins/social-networks-auto-poster-facebook-twitter-g/

Slider Revolution 6.5.25 resolves a dozen bugs. This is not a security update.
https://revolution.themepunch.com/

Sucuri Security 1.8.32 is a critical security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

W3 Total Cache 2.2.3 is a security update.
https://wordpress.org/extend/plugins/w3-total-cache/

WooCommerce 6.6.1 resolves dozens of bugs. This is a security update.
https://wordpress.org/extend/plugins/woocommerce/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

Updates 2016-06-14

Hi, Folks!

It’s Patch Tuesday. Quite often you’ll read my posts about what needs to be updated and when, but this month I’d like to take the opportunity to remind you to remove stuff. If you’re not using it, remove it. If you don’t need it, remove it. If you aren’t sure whether you need something, chances are good you don’t, so remove it. You can almost always reinstall whatever you remove, so if you’re not sure, ask your IT guy (or me) and *then* you can remove it.

One of the primary principles of security is to “reduce the attack surface.” What this means is to make yourself a smaller target for attackers in order to avoid at least some of the attacks that might otherwise get through. Installing regular updates is the most important thing you can do, but removing unsupported software is a very close second. Beyond these two principles are several other behavioral changes (user education) which can make the difference between victim and victor.

Here’s a couple examples of recent software where the vendor will no longer support it, and the risk of leaving it on is too great:

IBM/Lenovo has discovered a security vulnerability in their Lenovo Accelerator Application, and instead of releasing an update to it they advise all users remove it immediately.
https://support.lenovo.com/us/en/product_security/len_6718

This is a good time to remind you that Apple QuickTime for Windows is also unsupported and has known security vulnerabilities. If you have it installed, remove it, now!
https://saferpc.info/2016/04/on_the_death_of_quicktime/

Now back to Patch Tuesday…

The typical computer should see roughly 1.5gb in updates today. Let’s get started.

Microsoft released updates to Windows, Office, Edge, Internet Explorer, .NET, DNS, Group Policy, SMB Server, Netlogon, WPAD, Kernel drivers, Exchange, Windows PDF, Active Directory, Windows Diagnostic Hub, and Windows Search (~1.2gb). This includes security updates. A reboot is required.
http://update.microsoft.com/

Apple released updates for OS X El Capitan 10.11.5, Safari 9.1.1, tvOS 9.2.1, watchOS 2.2.1, iOS 9.3.2, iTunes 12.4.1, AirPort Base Station 7.7.7 and Brother Printer drivers. These are security updates. Use Apple Software Update to install these updates. A reboot is required.

Be aware that while iOS 9.3.2 is released, there are known problems with it bricking certain hardware. Caveat Emptor!
http://www.forbes.com/sites/gordonkelly/2016/05/16/apple-ios-9-3-2-ipad-pro-problems/#6646f5f05db7

Adobe AIR 21.0.0.215 is a security update.
Win: https://12pd.com/click?air
Mac: https://12pd.com/click?airmac

Adobe Flash Player 21.0.0.242 is a security update. Another Flash security update will be released this week.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 16.0.0.2 fixes a couple bugs. This is not a security update.
http://www.wagnardmobile.com/DDU/

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 51.0.2704.84 is a security update. Use Menu, Help, About to get the most current version.

Firefox 47.0 is a security update. Use Menu, Help, About to install the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

NK2Edit 3.21 is a cosmetic update. This is not a security update.
http://www.nirsoft.net/utils/outlook_nk2_edit.html

OutlookAttachView 2.93 is a cosmetic update. This is not a security update.
http://www.nirsoft.net/utils/outlook_attachment.html

Thunderbird 45.1.0 is a security update. Use Menu, Help, About to get the most current version.

Internet Updates

One or more of these are likely to be of interest to everyone.

Skype 7.24.0.104 is not a security update.
https://12pd.com/click?skype

WGet 1.18 is a security update.
https://eternallybored.org/misc/wget/

aria2 1.23.0 fixes several bugs. This is not a security update.
https://aria2.github.io/

curl 7.49.1 is a security update.
http://winampplugins.co.uk/curl/

DynDNS Updater 5.3.1 fixes a couple bugs. This is not a security update.
https://www.dyndns.com/

Dropbox 4.4.29 is the first stable update in the new major release. Dropbox doesn’t provide a detailed changelog, so this should be treated as a security update.
https://12pd.com/click?dropbox

Evernote 6.1.2.2292 fixes several bugs and adds Quick Search, improved switching and zoom. This is not a security update.
http://www.evernote.com/

FileZilla 3.18.0 fixes several bugs. This is not a security update.
http://filezilla-project.org/

MaxMind GeoIP Data 201606 updates geolocation data. This is not a security update.
http://dev.maxmind.com/geoip/

DNSDataView 1.46 adds select-all support. This is not a security update.
http://www.nirsoft.net/utils/dns_records_viewer.html

Media Updates

These are unlikely to be of interest to most people.

CDBurnerXP 4.5.7.6139 updates libraries, new default behaviors. This is not a security update.
http://cdburnerxp.se/

FastStone Viewer 5.7 fixes several bugs. This is not a security update.
http://www.faststone.org/FSViewerDetail.htm

iTunes 12.4.1 is a security update. Use Apple Software Update to install the most current version.

Game Updates

These are unlikely to be of interest to most people.

Battle.net Client 20160520 removes Windows XP support (!) so be aware that your games will no longer run on your older hardware.
http://us.battle.net/en/app/

Minecraft 1.10 adds polar bear, Husk, Stray, auto-jump, structure blocks, underground fossils, Magma block, Nether Wart and Red Nether bricks, and much more. This is not a security update.
http://www.minecraft.net/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe has released security updates to Creative Cloud Desktop Application, DNG Software Development Kit (SDK), Brackets, and Cold Fusion.
https://helpx.adobe.com/security/products/creative-cloud/apsb16-21.html
https://helpx.adobe.com/security/products/dng-sdk/apsb16-19.html
https://helpx.adobe.com/security/products/brackets/apsb16-20.html

LibreOffice 5.1.3 fixes several bugs. This is not a security update.
http://www.libreoffice.org/

Notepad++ 6.9.2 adds log monitoring. This is not a security update.
https://12pd.com/click?npp

Adobe Reader DC 15.016.20045 is a security update.
http://get.adobe.com/reader

Kindle for PC 1.16.0 Build 44025 doesn’t provide a changelog, so should be treated as a security update.
http://www.amazon.com/kindleforpc

Security Software Updates

One or more of these is likely to be of interest to most people.

Wireshark 2.0.4 fixes several bugs. This is a security update.
http://www.wireshark.org/

RogueKiller 12.3.3 adds themes, detections, and stability problems. This is a security update.
http://www.adlice.com/softwares/roguekiller/

Symantec Anti-Virus 20151.1.1.4 is a security update.

SuperAntiSpyware 6.0.1220 updates detection. This is not a security update.
http://www.superantispyware.com/download.html

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 13.0.0 adds several new features. This is not a security update.
http://download.techsmith.com/snagit/enu/snagit.exe

XSplit Broadcaster 2.7.1602.2244 is a security update.
http://www.xsplit.com/get/

XSplit Gamecaster 2.7.1602.1938 is a security update.
http://www.xsplit.com/get/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 9.3.0.4 is a security update.
http://www.dvdfab.cn/download.htm

MKVToolNix 9.2.0 doesn’t provide a detailed changelog, so should be treated as a security update.
http://www.videohelp.com/software/MKVtoolnix

Utility Updates

These are unlikely to be of interest to most people.

NTLite 1.1.0.3960 updates drivers and fixes bugs. This is not a security update.
https://www.ntlite.com/download/

SpaceSniffer 1.3.0.1 improves performance and fixes bugs. This is not a security update.
http://www.uderzo.it/main_products/space_sniffer/

7-Zip 16.02 add multi-volume zip support and fixes bugs. This is not a security update.
http://www.7-zip.org/

RoboForm 7.9.19 fixes several bugs and improves performance. This is not a security update.
https://12pd.com/click?rf

CintaNotes 3.1.4 fixes several bugs. This is not a security update.
http://cintanotes.com/download

iExplorer 3.9.6.0 fixes several bugs. This is not a security update.
https://www.macroplant.com/iexplorer/

FileLocator Pro 8.0.2657 fixes several bugs. This is not a security update.
http://www.mythicsoft.com/filelocatorpro/download

FolderChangesView 1.90 adds auditory feedback and autocomplete support. This is not a security update.
http://www.nirsoft.net/utils/folder_changes_view.html

NirCmd 2.81 fixes bugs. This is not a security update.
http://www.nirsoft.net/utils/nircmd.html

SearchMyFiles 2.71 fixes several bugs and adds several new features. This is not a security update.
http://www.nirsoft.net/utils/search_my_files.html

SimpleWMIView 1.17 adds several new features. This is not a security update.
http://www.nirsoft.net/utils/simple_wmi_view.html

WifiInfoView 2.05 adds a cosmetic change. This is not a security update.
http://www.nirsoft.net/utils/wifi_information_view.html

CCleaner 5.18.5607 fixes several bugs. This is not a security update.
https://12pd.com/click?ccleaner

Recuva 1.53.1087 improves partition support and fixes bugs. This is not a security update.
https://12pd.com/click?recuva

Rufus 2.9 adds support for new partition structures, fixes several bugs. This is not a security update.
http://rufus.akeo.ie/

SystemRescueCD 4.7.3 is a security update.
http://www.sysresccd.org/

TaskSchedulerView 1.21 adds export encoding support. This is not a security update.
http://www.nirsoft.net/utils/task_scheduler_view.html

TeamViewer 11.0.59518 fixes several bugs. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

WizTree 2.01 fixes a restart loop bug. This is not a security update.
http://antibody-software.com/web/software/software/wiztree-finds-the-files-and-folders-using-the-most-disk-space-on-your-hard-drive/

8GadgetPack 19.0 fixes several bugs. This is not a security update.
http://8gadgetpack.net/

HWMonitor 1.29 adds support for newer hardware. This is not a security update.
http://www.cpuid.com/softwares/hwmonitor.html

Connectify Hotspot 2016.4 is a stability fix. This is not a security update.
http://www.connectify.me/

Developer Updates

These are unlikely to be of interest to most people.

MySQL 5.7.13 is a security update.
http://www.mysql.com/downloads/installer/

StrawberryPerl 5.24.0.1 updates to core Perl and bug fixes. This is not a security update.
http://strawberryperl.com/

Web Package Updates

These are likely to be of interest only to web developers.

Adminer 4.2.5 is a security update.
http://www.adminer.org/en/

Coppermine Gallery 1.5.42 is a security update.
http://coppermine-gallery.net/

ownCloud Client 2.2.1 fixes several bugs. This is not a security update.
https://owncloud.org/install/

ColdFusion 2016.2, 11.9 and 10.20 are security updates.
https://helpx.adobe.com/security/products/coldfusion/apsb16-22.html

phpList 3.2.5 is a security update.
http://www.phplist.com/download

Plupload 2.1.9 is a security update.
http://www.plupload.com/

TinyMCE 4.3.13 fixes several bugs. This is not a security update.
http://www.tinymce.com/download/

WP Update Server 20160611 fixes several bugs. This is not a security update.
https://github.com/YahnisElsts/wp-update-server

Drupal 8.1.2 does not provide a detailed changelog, so should be treated as a security update.
http://drupal.org/download

jQuery 3.0 is a new major release adding several new features and the end-of-life of previous versions 1.12.4 and 2.2.4, which will now only receive critical updates.
http://blog.jquery.com/

MailEnable Enterprise 9.13 fixes several bugs. This is not a security update.
http://www.mailenable.com/

phpMyAdmin 4.6.2 is a security update.
http://www.phpmyadmin.net/home_page/news.php

ScreenConnect 5.6.10870.6001 adds dozens of new features and bug fixes. This is not a security update.
http://www.screenconnect.com/Download

BuddyPress 2.5.3 fixes several bugs. This is not a security update.

Multisite Enhancements 1.3.5 improves site detection. This is not a security update.

Theme My Login 6.4.5 fixes several bugs and updates requirements. This is not a security update.

WP Edit 3.8.1 fixes several bugs. This is not a security update.

WPtouch 4.1.4 fixes several bugs and updates libraries. This is not a security update.

WooCommerce 2.6.0 fixes many bugs, adds new features and improvements. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2016-04-12

Hi, Folks!

It’s Patch Tuesday. The typical computer should see roughly 1gb in updates today (that’s a lot). Let’s get started. Among other things, this month we have the last Chrome update ever to be released for Vista, XP and OS X prior to 10.9, WordPress, Flash, Adobe Creative Cloud, MS Office, as well as vulnerabilities in network sharing, wireless mice, and more.

Microsoft released updates to address vulnerabilities in Windows, Edge, .NET, Internet Explorer, Wireless Mouse Input Filtering and MS Office (~1gb). This includes security updates. A reboot is required.
http://update.microsoft.com/

Apple released updates for OS X, iOS 9.3.1, and iBooks Author. These are security updates. Use Apple Software Update to install these updates. A reboot is required.

Adobe AIR 21.0.0.198 is a security update.
Win: https://12pd.com/click?air
Mac: https://12pd.com/click?airmac

Adobe Flash Player 21.0.0.213 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 15.7.5.5 adds Vulkan removal support and bug fixes. This is not a security update.
http://www.wagnardmobile.com/DDU/

Samsung Kies3 201604 does not provide a changelog, so should be treated as a security update.
http://www.samsung.com/us/support/owners/app/kies

Samsung SideSync 4.3.0.92 does not provide a changelog, so should be treated as a security update.
http://www.samsung.com/us/sidesync

Remix OS 2.0.202 fixes bugs, adds 32-bit support, UEFI support, OTA update and a hard drive installer, significantly improving device compatibility. This is still in beta, so caveat emptor.
http://www.jide.com/en/remixos-for-pc#downloadNow

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 49.0.2623.112 is the latest in a series of 4 incremental security updates from the last 2 weeks. Almost all of them are directly related to Flash and the EOL of Chrome on older devices. Use Menu, Help, About to install the most current version. This is also the LAST VERSION of Chrome that will be supported on XP, Vista, and OS X prior to 10.9. If you’re still using one of these operating systems then you’re already unsupported for many other applications, so Chrome should really be the least of your concerns. Either buy another computer, upgrade your operating system to Windows 7/OS X 10.9 or above, or replace your operating system with a supported third party option, such as Ubuntu 14 LTS.

Firefox 45.0.2 is a security update. Use Menu, Help, About to install the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

NK2Edit 3.16 adds executable signing. This should be treated as a security update.
http://www.nirsoft.net/utils/outlook_nk2_edit.html

OutlookAttachView 2.90 improves export file format options. This is not a security update.
http://www.nirsoft.net/utils/outlook_attachment.html

Internet Updates

One or more of these are likely to be of interest to everyone.

Skype 7.22.0.108 adds Skype Bots for automated audio and video responses. This is brought to you by the same people responsible for Nazi Bot.
https://12pd.com/click?skype

Prosody 0.9.10 is a security update.
https://prosody.im/download/start

Dropbox 3.18.1 fixes several bugs. This is not a security update.
https://12pd.com/click?dropbox

Evernote 5.9.9.9915 fixes several bugs. This is not a security update.
http://www.evernote.com/

Nmap 7.12 fixes several bugs, improves detections. This is not a security update.
http://nmap.org/

FreeNAS 9.10 fixes several bugs, improves performance and hardware support, updates libraries. This is a security update.
http://www.freenas.org/download-freenas-release.html

MaxMind GeoIP Data 201604 updates the current GeoIP information. This is not a security update.
http://dev.maxmind.com/geoip/

BrowsingHistoryView 1.86 improves export file format options. This is not a security update.
http://www.nirsoft.net/utils/browsing_history_view.html

DNSDataView 1.45 adds ability to extract domains from raw data. This is not a security update.
http://www.nirsoft.net/utils/dns_records_viewer.html

IPNetInfo 1.71 improves -B handling. This is not a security update.
http://www.nirsoft.net/utils/ipnetinfo.html

Media Updates

These are unlikely to be of interest to most people.

Plex Media Server 0.9.16.4.1911 fixes several bugs, improves transcoding and media optimizer. This is not a security update.
https://plex.tv/downloads/1/archive

Game Updates

These are unlikely to be of interest to most people.

EA Origin 9.12.0.34172 improves handling for add-ons and bonuses, reduces support for older operating systems (XP and Vista), and fixes bugs. This should be treated as a security update.
https://www.origin.com/en-us/download

Office Updates

One or more of these are likely to be of interest to most people.

Adobe RoboHelp Server 9.0.2 is a security update.
https://helpx.adobe.com/security/products/robohelp-server/apsb16-12.html

Adobe Creative Cloud 3.6.0.244 is a security update. Use Creative Cloud to install the most current version.

Artweaver 5.1.3 fixes several bugs. This is not a security update.
http://www.artweaver.de/

LibreOffice 5.1.2 fixes several bugs and improves features. This is not a security update.
http://www.libreoffice.org/

Notepad++ 6.9.1, fixes bugs, improves “folder as a workspace” functionality and adds FORTRAN 77 support. This is not a security update.
https://12pd.com/click?npp

OpenOffice Dictionary 2016.04.01 is not a security update.
http://extensions.openoffice.org/en/project/english-dictionaries-apache-openoffice

Security Software Updates

One or more of these is likely to be of interest to most people.

RKill 2.8.4.0 doesn’t provide a changelog, so should be treated as a security update.
http://www.bleepingcomputer.com/download/rkill/dl/11/

Avast! Home Edition 11.2.2261 adds SafeZone to the free feature list. This is a security update.
http://www.avast.com/free-antivirus-download

RouterPassView 1.65 fixes a bug with certain hardware. This is not a security update.
http://www.nirsoft.net/utils/router_password_recovery.html

Wireless Network Watcher 1.96 adds “save all items” export support. This is not a security update.
http://www.nirsoft.net/utils/wireless_network_watcher.html

OSFClone 1.1.1000 is a security update.
http://www.osforensics.com/tools/create-disk-images.html

RogueKiller 12.1.1 improves detections, and fixes a bug in Chrome scanner. This is a security update.
http://www.adlice.com/softwares/roguekiller/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 9.2.3.7 fixes compatibility and reliability. This is not a security update.
http://www.dvdfab.cn/download.htm

MKVToolNix 9.0.1 fixes subtitle and merge bugs. This is not a security update.
http://www.videohelp.com/software/MKVtoolnix

Utility Updates

These are unlikely to be of interest to most people.

BFGMiner 5.4.2 updates libraries, fixes bugs and improves stability. This is a security update.
https://github.com/luke-jr/bfgminer/

Cygwin 2.5.0 updates support for POSIX, extensions, and APIs. This is not a security update.
http://cygwin.com/

Process Hacker 2.39.124 improves compatibility, inline editing of environment variables, fixes several bugs and performance improvements. This is not a security update.
http://processhacker.sourceforge.net/

FolderChangesView 1.86 improves export file format options. This is not a security update.
http://www.nirsoft.net/utils/folder_changes_view.html

Easy2Boot 1.79 fixes several bugs and updates editors. This is not a security update.
http://www.easy2boot.com/download/

GWX Control Panel 1.7.4.1 improves logic and reliability, fixes several bugs. This is not a security update.
http://ultimateoutsider.com/downloads/

iExplorer 3.9.4.0 fixes a crash bug. This is not a security update.
https://www.macroplant.com/iexplorer/

LicenseCrawler 1.75 build-1329 doesn’t provide a changelog, so should be treated as a security update.
http://www.klinzmann.name/licensecrawler_download.htm

FileLocator Pro 8.0.2646 fixes several bugs. This is not a security update.
http://www.mythicsoft.com/filelocatorpro/download

SearchMyFiles 2.68 adds wildcard support for folder exclusion. This is not a security update.
http://www.nirsoft.net/utils/search_my_files.html

WirelessKeyView 1.76 adds ability to open file in notepad. This is not a security update.
http://www.nirsoft.net/utils/wireless_key.html

OSForensics 3.3.1004 is a security update.
http://www.osforensics.com/download.html

RapidEE 9.0 build 930 updates libraries and reliability. This is not a security update.
http://www.rapidee.com/en/download

SystemRescueCD 4.7.2 is a security update.
http://www.sysresccd.org/

TaskSchedulerView 1.20 adds ability to copy a Task’s XML profile. This is not a security update.
http://www.nirsoft.net/utils/task_scheduler_view.html

Developer Updates

These are unlikely to be of interest to most people.

MySQL 5.7.12 adds rapid plugin support, improvements to stability and performance. This is a security update.
http://www.mysql.com/downloads/installer/

Web Package Updates

These are likely to be of interest only to web developers.

TinyMCE 4.3.9 fixes several bugs, improves keyboarding, style and visual feedback. This is not a security update.
http://www.tinymce.com/download/

Drupal 8.0.6 fixes several bugs. This is not a security update.
http://drupal.org/download

Joomla 3.5.1 fixes several bugs improving stability, reliability and other issues. This is not a security update.
http://www.joomla.org/

jQuery 1.12.3 and 2.2.3 improves version compatibility and fixes bugs. This is not a security update.
http://code.jquery.com/

MailEnable Enterprise 9.11 improves compatibility, fixes protocol stability and adds monitoring. This is not a security update.
http://www.mailenable.com/

WordPress 4.5 fixes several bugs and improves the customizer, editor, comment management, embed templates, inline link editing and media features. This build also generates secret keys locally instead of using a third party service, which improves security. This is a security update.

BuddyPress 2.5.2 fixes email issues, stability and compatibility. This is not a security update.

Contact Form 7 4.4.1 fixes several bugs, improves language translations. This is not a security update.

FV Top Level Categories 1.8.1 fixes bugs. This is not a security update.

MU Menus 4.3 adds support for WordPress 4.5. This is not a security update.

Raw HTML 1.4.16 adds support for WordPress 4.5. This is not a security update.

Redirection 2.4.4 improves compatibility and language support. This is not a security update.

WPtouch 4.1.1 improves compatibility, stability and fixes bugs. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2016-03-23

Hi, Folks!

It’s not Patch Tuesday, but Microsoft, Apple, Mozilla, Google, Adobe and more released updates today. The typical computer should require approximately 250mb of updates. Let’s get started.

Microsoft released out-of-cycle security updates to address issues in Windows Update (~10mb). This includes security updates. A reboot is required.
http://update.microsoft.com/

Apple released updates for Apple Software Update, Apple Remote Desktop, iOS 9.3, iTunes 12.3.3, OS X, Safari, tvOS, watchOS and Xcode. This includes security updates. Use Apple Software Update (no joke) to install these updates.

Adobe AIR 21.0.0.176 is a security update.
Win: https://12pd.com/click?air
Mac: https://12pd.com/click?airmac

Adobe Flash Player 21.0.0.197 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Cisco Wireless Residential Gateway security updates have been released. Check for your specific hardware through it’s web interface.

Display Driver Uninstaller 15.7.5.2 fixes several bugs and adds newer hardware support. This is not a security update.
http://www.wagnardmobile.com/DDU/downloads.html

Intel Driver Update 2.4 adds support for newer hardware.
http://www.intel.com/p/en_US/support/detect

nVidia 341.95 is a security update.
http://www.nvidia.com/Download/index.aspx?lang=en-us

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 49.0.2623.95 is a security update. Use Menu, About to install the most current update.

Firefox 45.0.1 is a security update. Use Menu, Help, About to install the most current version.

Opera 36 is a security update. Use Menu, About to install the most current version.

SeaMonkey 2.40 is a security update. Use Menu, About to install the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 38.7.0 is a security update. Use Menu, Help, About to install the most current version.

Internet Updates

One or more of these are likely to be of interest to everyone.

Java 8u77 is a security update. I’ll say it as many times as it takes: if you don’t need it (and you probably don’t), you’re far better off removing Java than upgrading. Do it now. If you decide to keep it, make sure you update ALL installed versions and REMOVE all the others.
http://www.java.com/en/download/manual.jsp

BIND 9.9.8-P4, 9.10.3-P4 and 9.9.8-S6 are security updates.

DynDNS Updater 5.2.0 is a security update.
https://help.dyn.com/update-clients/

Dropbox 3.16.1 fixes several bugs. This is not a security update.
https://12pd.com/click?dropbox

Evernote 5.9.8.9906 fixes many bugs. This is not a security update.
http://www.evernote.com/

Nmap 7.10 is a security update.

FileZilla 3.16.1 is a security update.
http://filezilla-project.org/

OpenSSH 7.2p2 is a security update.

Media Updates

These are unlikely to be of interest to most people.

CDBurnerXP 4.5.6.6059 re-signs the code using a higher strength algorithm and fixes a format bug. This is not a security update.
http://cdburnerxp.se/

Plex Media Server 0.9.16.3.1840 fixes several bugs. This is not a security update.
https://plex.tv/downloads/1/archive

iTunes 12.3.3 adds support for newer hardware. This is not a security update. Use Apple Software Update to install the most current version.

iOS 9.3 for iPhone 4s and later, iPod touch (5th generation) and later, and iPad 2 and later is a security update. Use Apple Software Update to install the most current version.

Game Updates

These are unlikely to be of interest to most people.

Battle.net Client 20160319 fixes several bugs. This is not a security update.
http://us.battle.net/en/app/

Lego Digital Designer 4.3.9 doesn’t provide a changelog, so should be treated as a security update.
http://ldd.lego.com/

Security Software Updates

One or more of these is likely to be of interest to most people.

CertData 2016-02-26 is a security update. If you roll your own certificates, re-roll them now.
http://mxr.mozilla.org/mozilla-central/source/security/nss/lib/ckfw/builtins/certdata.txt

KeePass 1.31 adds regex search support, per-user start options, HTML export, rich text conversion and other bug fixes. This is not a security update.
http://keepass.info/.

Junkware Removal Tool 8.0.4 doesn’t provide a changelog, so should be treated as a security update.
https://www.malwarebytes.org/junkwareremovaltool/

MalwareBytes’ Anti-Malware 2.2.1 is a security update.
https://www.malwarebytes.org/antimalware/

Nmap 7.10 with many great improvements! It’s got 12 new NSE scripts, hundreds of new OS/version fingerprints, and dozens if smaller improvements and bug fixes.

Defraggler 2.21.993 fixes several bugs. This is not a security update.
https://12pd.com/click?defraggler

RogueKiller 12.0.3 fixes several bugs. This is not a security update.
http://www.adlice.com/softwares/roguekiller/

Symantec Endpoint Protection 12.1-RU6-MP4 is a security update.

TinyWall 2.1.8 fixes several bugs. This is not a security update.
http://tinywall.pados.hu/

Capture Updates

These are unlikely to be of interest to most people.

XSplit Broadcaster 2.7.1602.2231 fixes several bugs. This is not a security update.
http://www.xsplit.com/get/

XSplit Gamecaster 2.7.1602.1927 fixes several bugs. This is not a security update.
http://www.xsplit.com/get/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 9.2.3.3 fixes several bugs. This is not a security update.
http://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

RoboForm 7.9.18 fixes several bugs and updates signing algorithm. This is not a security update.
https://12pd.com/click?rf

iExplorer 3.9.2.0 fixes a stability bug. This is not a security update.
https://www.macroplant.com/iexplorer/

CurrPorts 2.22 fixes elevation bug. This should be treated as a security update.
http://www.nirsoft.net/utils/cports.html

DevManView 1.48 improves external device display. This is not a security update.
http://www.nirsoft.net/utils/device_manager_view.html

FolderChangesView 1.85 adds summary mode. This is not a security update.
http://www.nirsoft.net/utils/folder_changes_view.html

SimpleWMIView 1.12 adds ability to launch new instances. This is not a security update.
http://www.nirsoft.net/utils/simple_wmi_view.html

WakeMeOnLan 1.75 improves command line interface. This is not a security update.
http://www.nirsoft.net/utils/wake_on_lan.html

TaskSchedulerView 1.17 is a cosmetic update. This is not a security update.
http://www.nirsoft.net/utils/task_scheduler_view.html

OSForensics 3.3.1002 fixes several bugs and improves file system support. This is not a security update.
http://www.osforensics.com/download.html

CCleaner 5.16.5551 fixes several bugs. This is not a security update.
https://12pd.com/click?ccleaner

Rufus 2.8 fixes several bugs. This is not a security update.
http://rufus.akeo.ie/

WSUS Offline 10.6.1 fixes several bugs and updates components. This is a security update.
http://download.wsusoffline.net/

Developer Updates

These are unlikely to be of interest to most people.

StrawberryPerl 5.22.1.3 is a security update.
http://strawberryperl.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

PPSSPP 1.2.2 fixes several bugs. This is not a security update.
http://ppsspp.org/downloads.html

Web Package Updates

These are likely to be of interest only to web developers.

ModSecurity 2.9.1 is a security update.
https://github.com/SpiderLabs/ModSecurity/releases

TinyMCE 4.3.8 fixes several bugs. This is not a security update.
http://www.tinymce.com/download/

jQuery 1.12.2 and 2.2.2 fix several bugs. This is not a security update.
http://jquery.com/download/

phpMyAdmin 4.6.0 fixes dozens of bugs, including security updates.
http://www.phpmyadmin.net/home_page/news.php

Joomla 3.5.0 is a major performance boost and adds over 30 features. This is not a security update.
http://www.joomla.org/

Anti-Splog 2.1.8 is a security update.

Autoptimize 2.0.2 fixes several bugs. This is not a security update.

BuddyPress 2.5.1 fixes several bugs. This is not a security update.

Register IP – Multisite 1.7.1 fixes a minor bug. This is not a security update.

WooCommerce 2.5.5 fixes several bugs. This is not a security update.
That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/