Updates 2025-11-11

Posted on November 11, 2025 by Shawn K. Hall

Happy Veteran’s Day, Folks!

Today is Patch Tuesday for November, 2025.

If your Windows 10 computer can not be upgraded to Windows 11 then you should either replace your device or use the Windows 10 ESU program to get another year out of it.

Windows 11 25H2 is now available and Windows 11 23H2 and older are no longer supported. Treat Windows 11 25H2 as beta software and wait a few months before upgrading.

macOS 26 Tahoe is now available and macOS 13 Ventura and older are no longer supported. Treat macOS 26 as beta software and wait a few months before upgrading.

There were 750+ major hacks, and over 650 application updates this month. It’s a relatively small month, with about 4.0 GB of updates for most users.

This Month in Technology

5CA, Abilene Family Medical Associates, Accord Carton, Adichunchanagiri Institute Of Technology, Adobe Commerce, Adobe Experience Manager, Adore Children and Family Services, Advanced Delivery Services, Advanced Installer, Afghan Ministry of Defence, AGFA, Agri-Food and Biosciences Institute (AFBI), (at least) 2/3rds of AI companies, Air Arabia, Al Ahly Leasing & Factoring Company, Al Rimal Group, Albanese Physical Therapy, Albert Heijn, Alibaba Cloud Workspace Client, Alight Solutions, Alios Finance Group, Alissa Group, Alitech, Alpha Omega Winery, LLC, Altimedia, Amazon Smart plugs, AMD CPU VM (RMPocalypse), AMD CPUs (TEE.fail), American Airlines, American PowerNet, Ami Bearings, Anderson-Moore Construction, Android, ANIA KRUK, Ansell, Antigo Construction, Apache OpenOffice, Aphase II, ApleNet, Applied Technology Resources, Aptura Group & Central Indiana Hardware, ArcGIS, Armed Forces of the Philippines, Artistica Rubens, Asahi Group Holdings, Ashlar-Vellum Cobalt, Askul, ASP.NET Core, Assemblée Nationale, Astra Nova, AT&T Careers, Athol Hospital, ATIRG, Atrium Living Centers, Auckland City, Aunt Martha’s Health and Wellness, Aussie Fluid Power, Autodesk AutoCAD, Autodesk On-Demand Install Services, Automated Logistics Systems, Autorotor, Avast, AVG, Axelson, Williamowsky, Bender & Fishman, Badger Popcorn and Concession Supply, BAE Systems SOCET, Balancer, Bank3, BARCO Rent-A-Truck, Batta Fulkerson Law Group, Bay West, Bayu Buana Travel, Beijing Time Systems, Bell Engineering, Bellflower Unified School District, Benda Grace Stulz, Benefitelect, Benworth Capital Partners, Bergman Dacey Goldsmith, Berkeley Research Group, LLC, Bestlog Logistic Solutions, Beta Dyne, Beverly Hills Oncology Medical Group, Bicing, BIND DNS, BK Technologies, Black Hills Bentonite, Blavity Inc, blockchain smart contracts (EtherHiding), Blue Cross Blue Shield of Montana, BMP Worldwide, Boilersource, Bolt Electricity, Oil & Gas, Bovavet, Boyer, BRDSoft, Bridgehead IT, Brihta, Bristol Student Union, Buffalo Games, Edaron, Ceaco, Cabinets 2000, LLC, Canada water and energy facilities, Canadian Tire, Canon imageCLASS MF654Cdw, Cape Dara Resort Pattaya, CapitalPlus Exchange, Castilla, Cavalry Consulting, CCI Tax Pros, CDS, CentOS Web Panel, Central Jersey Medical Center, Central Plate Services Limited, CESO, CEVA Logistics, CHDFS, Chi Rho Chiropractic, Chiapas Health Secretariat, Christina Development, Cisco ASA firewalls, Cisco FTD firewalls, Cisco IOS XE, Cisco networking devices (SNMP), Cisco Snort, Cisco Unified Contact Center Express (UCCX), City of Gloversville, NY, City of Houston Fire Department, TX, City of La Vergne, TN, City of Ottawa, Canada, City of Riviera Beach, FL, City of Sugar Land, TX, Clackamas Community College, Claimlinx, Clarion Safety Systems, Claude Desktop, ClearCare Periodontal & Implant Centre, Co-op Credit Union, Cocamar Cooperativa Agroindustrial, Cohen’s Fashion Optical, Coilplus, Cole Huber, LLP, Collins Aerospace, Colombia’s CNSC, Comcast, Community Unit School District 201, Computer World WLL, Conduent Business Services, LLC, ConnectWise Automate, Consolidated Restaurant Operations, ConvExx, Cooperativa Esercenti Farmacia Scrl, Core Resources Inc, Crave Management, Crenshaw Community Hospital, Crown Automotive Sales, Cursor, CyPark, D Magazine Partners, Dairy Farmers of America, Dakota Dostavka, Darvin Furniture, DataChain, Dayal Metal Containers Factory LLC, DCS Technologies Inc, Deco Dental, Defensoría del Pueblo de Colombia, Dekalb County, GA, Dell BSAFE Crypto-C, Dell CloudLink, Delmia Apriso, Delta Electronics ASDA-Soft, Delta Electronics CNCSoft-G2, Delta Electronics DIAScreen, Delta, Dental Society of La Plata, Dentsu Merkle, Dermatology Associates, Designs for Vision, Desjardin Bank Group, Desjardins, Devolutions, Dilosa Food Companies, Dimarco Group LLC, Disseny Dental, Django, dmwapp, Docker runC, Doctor Alliance, Docurail, Dodo, Doha British School, DomeWatch, Domy, Double Oak Construction, Dublin Airport, DUC App, Dulcich, Dundee City Council, Durvet, E-First Aid Supplies, East Jefferson General Hospital, Eastern Cape Department of Human Settlements, South Africa, Easterseals Arc of Northeast Indiana, Echo Lake Foods, Econo-Pak, Eligibility Tracking Calculators, Elliott Tax Service, Elmcrest Children’s Center, Encore Repair Services, ENEA, Enem Nostrum Remedies, Enessance Holdings, Engineered Profiles, Entr’ouvert Lasso, Envoy Air, Episource, LLC, Ernst & Young, Essential Cabinetry Group, Essilor of America, Eticex Hosting, evernote-mcp-server, Evogence, Evolve Mortgage Services, over 266,000 F5 BIG-IP instances, FA Servers, Fast Freight, Fatih Turizm, Fellou browser, Fidelity Pension Managers, Nigeria, Figment POS, FinWise, Fleet Landing, Flegenheimer International, Flock, Florida Marking Products, Florida-Spectrum Environmental Services, Form Energy, Inc, Fort Wayne Medical Education Program, Fouad Alghanim & Sons Group of Companies Holding, Fountains Condominium Operations, Framework Secure Boot, Francehopital, Fujifilm Biotechnologies, Fédération Internationale de l’Automobile (FIA), G & H Distributing, G-Plans, G-Xchange, Inc, G. Hauswirth Architects, Galine, Frye, Fitting & Frangos, LLP, Gardiners Solicitors, Garvin Promotion Group, Gas Generator Solutions, Gateworks Corporation, GB Mail, GCC Productions Inc. Fade In, GeBePro, Gemini Group, General Micro Systems (GMS), George E. Weems Memorial Hospital, Gerar, Gericke AG, Gerson & Schwartz Accident & Injury Lawyers, GIMP, Gittens Healthcare, Gladinet CentreStack, Gladinet Triofox, Global Go, GlobalLogic Inc, Goglia Nutrition LLC, Goodfellow & Schuettlaw, Google Chrome, Google’s Find Hub, Grande Prairie Public Library, Greater Mental Health of New York, Gulf Warranties LLC, Gullco International, Gun Accessory Supply, Habib Bank AG Zurich, Hall Estill, Harmony Brands, Harvard University, Health and Vitality Center, Health Dimensions Group, Healthy Living Market and Café, Heart South Cardiovascular Group, Heartland Health Center, Heimbrock, Heimdall Data, HeiTech Padu Berhad, Hello Cake, Hematology Oncology Consultants, Henrietta Ezeoke Law Firm, Henry Raymond & Thompson, Heywood Hospital, Hikvision iSecure Center, Hitzinger, HMP Global, Holtz Office Support, Home Assistant Green, Hometown Credit Union, Hongji Metal, Hosteur, HSBC USA, Huber, Erickson & Bowman, Huddle01, Hyundai AutoEver America, I-Tek Medical Technologies, IBEW Local 697, iCare Software, ICET Studios, ICTBroadcast, IKAD, Il Manifesto, Imagicle, Indian Spring Country Club, ING Bank, Instituto Nacional de Oftalmologia, Peru, Integrated Silicon Solution, Inc, Intel CPUs (TEE.fail), International Social Survey Programme (ISSP), International.com, Invacare, Ioxo & Stream Computers, IPrimus, Iran’s Ravin Academy, Iraqi Electoral Commission, IREM companies, Irwin Car, Izaki Group Investments, J & S Electrical And Lighting Supply, JA Jennings, Jack’s Family Restaurants, JavaScript expr-eval, Jazeera Airways, JC Auto Accident Law Firm, Jean-Georges, Jewett-Cameron, JFS Wealth Advisors, Kansas City Police Department, KS, Karnes Electric Cooperative, Kasmawi, Kaufman & Stigger, Kaufman County, Texas (twice), Kearney Public Schools, NE, Kelowna airport, BC, Kettering Health, Khan and Associates CPA, Khatami Law, KHL Printing, Kipp & Christian, Kirby Corporation, KIS Asset Evaluation, KISS FM, Kitchen Design Concepts, KLA Instruments, Klae Construction, Kobayashi, Koch & Co, Koch & White Heating & Cooling, Koncise Company, Kottster Server, Krita, KT Corp, Kubernetes runC, Kudela & Weinheimer, Kumwell, Kwik Mix Materials, LaBonne, Land Title Guaranty, Lanscope Endpoint Manager, LaRosa’s Pizzeria, Latona Trucking, 42 Latvian municipalities, Laxmi Niwas Palace, Legacy Health, Legacy Manufacturing, Legal Aid Agency, Lexmark CX532adwe, LG U+, LGAA LLC, Lidera Network, LifeBridge Health, Limocar, Lincoln University, LMHT Associates, LNER, Logitech, Long Island Weight Loss Institute, Lorber, Greenfield & Polito, LLP, Louvre Museum, LP Insurance, LuBian, Ludwigshafen, Germany, Luis Garratón, Lumma Stealer, Luxury Escapes, Lüks Artvin Seyahat, M-TIBA, Mack Energy, Magna Hospitality Group, Mailing.com, Maine Course Hospitality Group, Mainetti UK, Maki Building Centers, Malibu Boats Australia, Manassas City Public Schools, Mango, Mango’s Tropical Cafe, Manko Window Systems, Marine Turbine Technologies, Marmotech, Matlusky, Max.ru, Mayco International, McDonald Building, McIntosh Labs, Mciver Engineering & Controls, Mecanex USA, MedImpact, Meinhardt Group, Meritage Hospitality, Metal Pros, Methodist Homes of Alabama & Northwest Florida, MetroWest Community FCU, Mexican Bank Debtor, Michael R. Schwartz, MD, FACS, Microbix Biosystems, Microsoft SharePoint, Microsoft Teams, Microsoft Windows, Middlesex Appraisal Associates, Middlesex Endodontics, Miljödata, Mission City Community Network, Inc, Modernizing Medicine (ModMed), Mold In Graphic Systems, Monsta FTP, Montage Marketing Services, Moonlight Basin, More Than Gourmet, Morris Communications Company LLC, Motex Lanscope Endpoint Manager, Mountain West, Moxa security appliances, MS Metal Solutions, MSC-Wireless, Mt. Baker Imaging, Muji, MusikComputer GmbH, MyCardiologist, MyVidster, NAHGA Claims Services, NasDem Party, National Coatings, National Informatics Centre (NIC) Kavach, National Institute of Administration, Navigator Business Solutions, Nelligan White Architects, NetcoreCloud, Netgate pfSense CE, New Toyo International Holdings Ltd, Newk, Newmark Healthcare Services, Nikkei, Nintendo, NJ Lenders Corp, Noble Compaña de Seguros, Nobu Restaurants, Noroaco, Northern Light Technologies, Northern Montana Health Care (NMHC), Northwest Radiologists, NurseSpring, NVIDIA CPUs (TEE.fail), OB-GYN Associates, OCI International Holdings, Oglethorpe, OMS, One Agency Eastlakes, oobabooga, OpenAI Assistants API, OpenAI Atlas browser, OpenEyes Technologies, Opera Neon, Oracle E-Business Suite, Oracle VirtualBox, Origin Energy, Origin, Oscars Group, Ouranos, Outcomes One, Inc, OYO Hotel & Casino Las Vegas, Palacios Marine Industrial (PMI), Palomar Health Medical Group, Pan-American, Pangea, Paris Rétina Vision, Paterson & Dowding, Patron Insurance, Patterson-Schwartz & Associates, Inc, PCB Uitvaartzorg, People’s Postcode Lottery, PeopleGuru Holdings, Inc, Peppermint Properties, Peraso, Perplexity Comet, Phia Group, Phillips Hue Bridge, Phillips Printing Company, Phoenix Village Dental, PHP CGI, PHPUnit, Pine Pharmaceuticals, Pinto Coates Kyre & Bowers, Pittsburgh Gastroenterology Associates, Pixar OpenUSD, Plastics Extrusion Machinery, Platinum Wines & Spirits, PLP SoCal, Pocatello Ready Mix, Polymarket, Ponzini SPA, Post Ranch Inn, PQCNC Hospitals, Precision Machined Products, Prime Dental, Pritchard Brown & Chillicothe Metal, Productive Tool Products, Professional’s Choice Sports, Propertyfinder / PropSpace CRM, Prosper, Prova, Provincial Department of Health Services Sri Lanka, Pruksa Holding, PT Kalimantan Prima Persada, Pulse Urgent Care Center, Punjab Forensic Science Agency, Qatar Gas and Tar Company, Iran, QNAP Qhora-322, QNAP TS-453E, Radiant Capital, Ravin Academy, React Native CLI, Real Estate Specialists, Reese Group, Regency Specialist Hospital, Resana, Revive Adserver, Rex-Hide, Ribbon Communications, Richmond Behavioral Health Authority, Riddell Law Group, Right at Home, Ringmor, Rios Espinosa, Ritz, Clark & Ben-Asher, River City Eye Care, RKA Consulting Group, Roblox, Rockhill Women’s Care, Rockstar, Rogers Mechanical, Romanian National Penitentiary Association (ANP), Ronemus & Vilensky, Royal Thai, RPI Roofing, Sai Mai Hospital, Saigon Industrial Service, Samera Health, Samsung Android, Samsung Galaxy S25, San Benito County, CA, San Bernard Electric Cooperative, San Diego Automotive Museum, Santander Bank, SAP Solution Manager, Sarulla Operation, Saturday Spotlight, Saturn Machine, Sauter Modulo, Saxun, Scales Sales & Service, Scouts Canada, Seasons Federal Credit Union, Sedgebrook, Selig Enterprises, Sellars Absorbent Materials, Sensational Teeth, Sensory, Servicios del Valle del Fuerte, Mexico, Seward County, KS, Shadrix & Parmer, Shands Elbert, Shaparak, Shelbyville Police Department, Shollenberger Januzzi & Wolfe, SHRM New Mexico, SIAD, Sierra Vista Hospital & Clinics, Signet Armorlite, Silverado Contractors, Inc, Silverlake Axis, Simon Property Group, Sincros Lab, SK Shieldus, SK-Telecom, Snipe-IT, Soapy Joe’s Car Wash, Soft Serve, Software Unlimited Corp, Sold Real Estate, SonicWall, Sonos Era 300, Sotheby’s, SourceOne Corporation, South African Revenue Service (SARS), South Alabama Regional Planning Commission, South Atlanta Medical Clinic, Speedmais, Spijkermat, Spindletop Center, Sports Medicine and Orthopaedics, Sprague & Jackson, St Stephen’s International, Stephenson’s Rental Services, Stowaway Storage, Studio Corvo Parma, Sullivan Interests, Summit Golf Brands, Summit Hotel Properties, Sunnyvale Elementary School District, Super Quik, Super Value, SuperGrosz, Superior Air Parts, Superior Court of California for the County of San Joaquin, Superior Linen Service, Svenska Kraftnät, Sydney Centre for Ear, Nose & Throat, Sylvester Roofing, SymbolTransport, Synnovis, Synology ActiveProtect Appliance DP320, Synology BeeStation Plus, Synology CC400W, Synology DiskStation DS925+, Systems Integrated, Tass Meister Patent Firm, Tavo Packaging Inc, TBM Service Group, TELACU Property Management, Inc, TENAX Law Group PC, Tenryu America, Tex-Tube, Thailand’s Department of Agricultural Extension (DOAE), The Blood and Marrow Transplant Group of Georgia, The Fence People, The Gerson, The Job Shop, The Laxmi Niwas Palace, The Phia Group, The Thayer Hotel, The Union League of Philadelphia, ThinkPHP, Thompson Dorfman Sweatman, Time Equities, TISZA Világ, TMF Logistics, Toys R Us Canada, TP-Link Festa routers, TP-Link Omada gateways, Trans7, Travere Therapeutics, Tri City Foods, Tri-Century Eye Care, Trojan Construction & Holding Group, Truffle Security Co. TruffleHog, Truro Cannabis, Tryon Distributing, Ubiquiti AI Pro, 8 UK Ministry of Defence bases, UK National Health Service (NHS), UniCursos, Unigym Gatineau, UnitedLayer, University of Cádiz, University of Pennsylvania, UrbanX, US Attorneys Office (USAO), US Congressional Budget Office (CBO), US Department of Homeland Security (DHS), US Department of Justice (DOJ/FBI), US Federal Aviation Authority (FAA), US Immigration and Customs Enforcement (ICE), US National Security Administration (NSA), USB Memory Direct, UScraft, Vanan Online Services, Vascara, Vietnam, Veeam Agent, Verdugo Hills Dental, Verisure, Vertikal Systems, Vexels, Vibra Hospital, Victorian Chemical, Victory Christian Center, Village of New Lenox, Ville de MontLaurier, Vinomofo, Vitalmex, VIZ Media, Volkswagen, Vrata Tech, VZW Avalon, Wakefield & Associates, WarmBlue, Washington Post, WatchGuard Firebox, WatchGuard Fireware, Watsonville Community Hospital, Waveny LifeCare, We R Family Foundation, Weber, Weintraub Traub Tracy & Virk Cra’s LLP, West Welch Reed Engineers, Western Sydney University, WhatsApp, Wheale Law Firm, Windows Server Update Service (WSUS), Windsurf, Winholt Equipment Group, Wisconsin Department Of Corrections, Wits University, Wood PLC, WordPress Anti-Malware Security and Brute-Force Firewall plugin, WordPress Gravity Forms plugin, WordPress GutenKit plugin, WordPress Hunk Companion plugin, WordPress JobMonster theme, WordPress King Addons for Elementor plugin, WordPress Post SMTP plugin, WordPress Slider Revolution plugin, Workers Compensation Insurance Rating Bureau of California, Wright Tool, Wright-Gardner Insurance, X.Org Server, Xortec, Xubuntu website, XWiki, Yaesu, Yas Takaful Dubai Insurance, Zacho-Lind, Zierick Manufacturing Corporation, Zoho ManageEngine, Zoom Workplace, and ZZ Dats have reported hacking or compromises this month.

Amazon Web Services (AWS US-EAST-1), Microsoft 365, Microsoft Azure (more than once), Microsoft Security Response Center, and YouTube have suffered from outages this month.

Internet access throughout Bermuda, Cameroon, Dominican Republic, Italy, Jamaica, Kenya, Pakistan, Philippines, Tanzania, and Ukraine has been blocked our down for extended periods.

Last months updates broke Cisco Duo, HP OneAgent / Microsoft Entra ID, Microsoft Internet Information Server (IIS), Microsoft Outlook, smart card authentication, sprotect.sys compatibility, USB mouse and keyboard in WinRE, wallpaper managers, Windows 11 Media Creation Tool, Windows Task Manager and Start menu, and the Windows Update Hotpatch service.

There’s a new type of worm out there. GlassWorm uses a combination of Solana, UTF-concealed code, and remote access trojans to ensure that it’s impossible to shut down or kill from the top-down while still being fully manageable by the people behind it. In addition, it uses compromised developer accounts to propagate by uploading itself to their repositories in order to grow the botnet to new audiences. This signals the first major use of these three aspects in combination and the first software of its kind to operate with no centralized command-and-control server. This evolution is going to cause a massive change in how we deal with security incidents and how we protect our devices.

Half of all the satellites in orbit are exposing your information in clear text.

Nearly 2 billion accounts from hundreds of thousands of different platforms have been disclosed in a credential stuffing database (Synthient). While this appears to mostly be the result of stealer logs (the result of hacked devices), there is a lot of duplication in the data which demonstrates a lot of password re-use and thus a high chance of other accounts being abused as a result.

The boss of a defense contractor, Trenchant, has been selling exploits to foreign governments.

The Louvre Museum security system was “hacked” in order to enable thieves to steal the crown jewels. It’s hardly hacking when the password was so stupid.

“Beware that, when fighting monsters,
you yourself do not become a monster.”
— Friedrich Nietzsche

Now for the good news:

SpaceX disabled 2,500 Starlink terminals in Asia to curb their use by scammers.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is relatively small this month. The typical computer should see roughly 4.0 GB in updates today. Let’s get started.

Microsoft released 41 updates to address 68 vulnerabilities in Azure Monitor Agent, Customer Experience Improvement Program (CEIP), Dynamics 365 Field Service (online), GitHub Copilot and Visual Studio Code, Host Process for Windows Tasks, Microsoft Configuration Manager, Microsoft Dynamics 365 (on-premises), Microsoft Edge, Microsoft Graphics Component, Microsoft Office, Microsoft Office Excel, Microsoft Office SharePoint, Microsoft Office Word, Microsoft Streaming Service, Microsoft Wireless Provisioning System, Multimedia Class Scheduler Service (MMCSS), Nuance PowerScribe, OneDrive for Android, SQL Server, Storvsp.sys Driver, Visual Studio, Visual Studio Code CoPilot Chat Extension, Windows Administrator Protection, Windows Ancillary Function Driver for WinSock, Windows Bluetooth RFCOM Protocol Driver, Windows Broadcast DVR User Service, Windows Client-Side Caching (CSC) Service, Windows Common Log File System Driver, Windows DirectX, Windows Hyper-V, Windows Kerberos, Windows Kernel, Windows License Manager, Windows OLE, Windows Remote Desktop, Windows Routing and Remote Access Service (RRAS), Windows Smart Card, Windows Speech, Windows Subsystem for Linux GUI, Windows TDX.sys, Windows WLAN Service, and MSRT. This includes security updates. A reboot is required.

Oracle released 374 security updates this quarter to address 170 vulnerabilities in 29 product lines.

Apple released updates for iOS 18.7.2, iOS 26.1, iPadOS 18.7.2, iPadOS 26.1, macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1, Safari 26.1, tvOS 26.1, visionOS 26.1, watchOS 26.1, and Xcode 26.1. This includes security updates. Use Apple Software Update to install the most current versions.

iOS 18.7.2 and 26.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 18.7.2 and 26.1 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 26.1 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 26.1 is a security update. Use System, Software Update to install the most current version.

visionOS 26.1 is a security update. Use System, Software Update to install the most current version.

Google ChromeOS 141.0.7390.115 and ChromeOS LTS 138.0.7204.296 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Fedora 43 updates libraries, adds Hare support, changes UEFI+MBR requirements, and enables automatic updates. This is not a security update.
https://getfedora.org/en/workstation/download/

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Tahoe (26.x) means that macOS Ventura (13.x) and older are no longer supported. If you can not install at least macOS Sonoma (14) on your Mac then you should immediately remove your device from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The current — and final — release of the Windows 10 (v22H2) is end of life (EOL). All non-LTS versions of Windows 10 without ESU are now out of support, with the sole alternatives being to upgrade to Windows 11 or enable Extended Service Updates (ESU). If you aren’t sure whether you are using LTS, you aren’t. Enable the ESU now.

The current release of the Windows 11 (v25H2) is very large (30% larger than any previous release) so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it. If not, switch to Linux (Mint is nice) or replace your computer.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, drivers for hardware you’re not using (like old printers), and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with a SaferPC Subscription and we will install updates each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 25.10.2 is a security update.
https://www.amd.com/en/support

BullZip PDF Printer 2025.2.0.2990 is a security update.
https://www.bullzip.com/products/pdf/info.php#download

Epson ET-2720 2.100.00 is a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-2720/s/SPT_C11CH42201?review-filter=Windows+10+64-bit

Epson ET-2988 3.60.00 is a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-2988/s/SPT_C11CL41203?review-filter=Windows+11

Epson ET-15000 3.60.00 is a security update.
https://epson.com/Support/Printers/All-In-Ones/ET-Series/Epson-ET-15000/s/SPT_C11CH96201?review-filter=Windows%2010%2064-bit

MTPdrive 4.5.179 resolves a stability bug. This is not a security update.
https://www.mtpdrive.com/

Plustek ePhoto Z300 6.7.0.5 resolves a couple bugs. This is not a security update.
https://plustek.com/us/products/film-photo-scanners/ephoto-z300/support.php

TP-Link Archer A6 v3 250718 improves stability and PPPoE support. This is not a security update.
https://www.tp-link.com/us/support/download/archer-a6/v3/#Firmware

TP-Link Archer AX72 v1.60 250814 is a security update.
https://www.tp-link.com/us/support/download/archer-ax72-pro/#Firmware

UniFi U6 Professional 6.7.33 adds packet capture, Roaming Assistant, 5GHz channel selection, mesh improvements, and resolves a dozen bugs. This is not a security update.
https://www.ui.com/download/software/u6-pro

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.84.132 is a security update.
https://brave.com/

Firefox 145.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 140.5.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 142.0.7444.134 is a security update.
https://www.google.com/chrome/

Microsoft Edge 142.0.3595.69 is a security update.
https://www.microsoft.com/en-us/edge/business/download

SeaMonkey 2.53.22 is a security update.
https://www.seamonkey-project.org/

Email Updates

One or more of these are likely to be of interest to everyone.

DavMail Gateway 6.5.1 resolves several bugs. This is not a security update.
https://davmail.sourceforge.net/

Spark 3.27.2.122708 ramps up the AI integration. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.27.2.122707 ramps up the AI integration. This is not a security update.
https://sparkmailapp.com/

Thunderbird 144.0.1 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 9.6.4 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 9.5.1 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

curl 8.17.0 resolves dozens of bugs. This is a security update.
https://curl.haxx.se/windows/

Discord November 4, 2025 resolves dozens of bugs. This is not a security update.
https://discord.com/download

Dropbox 236.4.5918 resolves several bugs and improves stability. This is not a security update.
https://www.dropbox.com/

Google Drive 117.0 is a security update.
https://drive.google.com/start

MeshCentral 1.1.53 resolves a couple bugs and improves UI controls. This is not a security update.
https://meshcentral.com/info/downloads.html

Mumble 1.5.857 is a security update.
https://www.mumble.info/

Nextcloud Server 32.0.1 updates libraries and resolves dozens of bugs. This is a security update.
https://nextcloud.com/

OneDrive 25.184.0921.0004 adds Copilot actions, improves offline mode, renames binaries, and adds the ability to cleanly opt out of the OneDrive Backup service. This is not a security update.
https://support.microsoft.com/en-us/onedrive

Rclone 1.71.2 updates libraries and resolves several bugs. This is a security update.
https://rclone.org/

Signal 7.78.0 resolves a couple bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.63.3 adds split-screen support, improves performance and resolves many bugs. This is not a security update.
https://signal.org/android/apk/

Syncthing 2.0.11 migrates database to SQLite, improves log structure, changes CLI syntax, and resolves several bugs. This is not a security update.
https://syncthing.net/

Technitium DNS Server 14.0.1 is a security update.
https://technitium.com/dns/

Telegram 6.2.4 makes a couple minor changes in the UI and resolves crash bugs. This is not a security update.
https://telegram.org/

WinSCP 6.5.4 is a security update.
https://winscp.net/eng/index.php

Zoom 6.6.6.19875 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.22 resolves several bugs related to facial tracking. This is not a security update.
https://en.3tene.com/

Grayjay 342 resolves a couple bugs. This is not a security update.
https://grayjay.app/index.html

iTunes 12.13.9.1 is a security update.
https://www.apple.com/itunes/download/

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.122.2 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Nintendo Switch 21.0.0 updates cosmetics and cloud settings, and resolves a couple bugs. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 2025.101 displays more hardware details and messaging. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

SteamOS SteamDeck Update 2025.11.06 improves UI and resolves a couple bugs. This is not a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Format Plugins 1.1.2 is a security update.
https://helpx.adobe.com/security/products/formatplugins/apsb25-114.html

Adobe Illustrator 29.8.3 and 30.0 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb25-109.html

Adobe Illustrator Mobile 3.0.10 is a security update.
https://helpx.adobe.com/security/products/illustrator-mobile-ios/apsb25-111.html

Adobe InCopy 21.0 and 20.5.1 are security updates.
https://helpx.adobe.com/security/products/incopy/apsb25-107.html

Adobe InDesign ID21.0 and ID20.5.1 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb25-106.html

Adobe Pass 3.8.0 is a security update.
https://helpx.adobe.com/security/products/pass/apsb25-112.html

Adobe Photoshop 26.9 is a security update.
https://helpx.adobe.com/security/products/photoshop/apsb25-108.html

Adobe Reader DC 25.001.20844 resolves stability bugs. This is not a security update.
https://get.adobe.com/reader

Adobe Substance 3D Stager 3.1.6 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb25-113.html

Calibre 8.14.0 resolves several bugs. This is a security update.
https://calibre-ebook.com/

Columns++ 1.3 resolves several bugs and improves compatibility. This is not a security update.
https://github.com/Coises/ColumnsPlusPlus

LibreOffice 25.2.7 resolves over 40 bugs. This is not a security update.
https://www.libreoffice.org/

Nextcloud Desktop 4.0.1 resolves several bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.8.7 adds a publisher certificate for the installation packages and resolves several bugs. This is a security update.
https://notepad-plus-plus.org/

OpenOffice 4.1.16 is a security update.
https://www.openoffice.org/download/

Paint.net 5.1.11 resolves several bugs. This is not a security update.
https://www.getpaint.net/

PDF-XChange Editor 10.7.5.403 updates libraries and resolves several bugs. This is a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

Operating System Updates

These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.

Fedora 43 updates libraries, adds Hare support, changes UEFI+MBR requirements, and enables automatic updates. This is not a security update.
https://getfedora.org/en/workstation/download/

Google ChromeOS 141.0.7390.115 is a security update. Use Help, About to install this update.

Google ChromeOS LTS 138.0.7204.296 is a security update. Use Help, About to install this update.

iOS 18.7.2 and 26.1 are security updates.
https://support.apple.com/en-us/100100

iPadOS 18.7.2 and 26.1 are security updates.
https://support.apple.com/en-us/100100

macOS Tahoe 26.1 is a security update.
https://support.apple.com/en-us/100100

macOS Sequoia 15.7.2 is a security update.
https://support.apple.com/en-us/100100

macOS Sonoma 14.8.2 is a security update.
https://support.apple.com/en-us/100100

tvOS 26.1 is a security update.
https://support.apple.com/en-us/100100

visionOS 26.1 is a security update.
https://support.apple.com/en-us/100100

watchOS 26.1 is a security update.
https://support.apple.com/en-us/100100

Security Software Updates

One or more of these is likely to be of interest to most people.

KeePass 2.60 adds group path search, consistent shortcuts and hot keys, improved import options, and improves several other UI and integration features. This is not a security update.
https://keepass.info/

ProtonVPN 4.3.5 resolves several bugs and adds FIDO2 security key support. This is not a security update.
https://github.com/ProtonVPN/win-app/releases/latest

RogueKiller 16.5.1 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

SanDisk PrivateAccess 6.4.14.0 adds messaging signaling that the software is now end of life and should be removed as soon as possible. Migrate your data out of PrivateAccess and remove it.
https://support-en.wd.com/app/answers/detailweb/a_id/48025

Stinger 13.0.0.562 adds support for new detections. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

uBlock Origin 1.67.0 resolves a couple bugs and improves various features. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

WebBrowserPassView 2.18 improves compatibility. This is not a security update.
https://www.nirsoft.net/utils/web_browser_password.html

YARA 4.5.5 resolves several bugs. This is not a security update.
https://github.com/VirusTotal/yara/

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 32.0.2 resolves a couple crash bugs. This is not a security update.
https://obsproject.com/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.5.1 adds support for new encodings and improves menu editing. This is not a security update.
https://www.dvdfab.cn/download.htm

StreamFab 6.2.6.2 adds multithreading, improves compatibility, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 3.0.3.1 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 7.0.27 resolves several bugs. This is not a security update.
https://www.zotero.org/

Zotero (macOS) 7.0.29 resolves Safari and Word clipboard issues. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.11.18 resolves several bugs. This is not a security update.
https://1password.com/downloads/

Beyond Compare 5.1.6.31527 resolves several bugs. This is not a security update.
https://www.scootersoftware.com/download

Bitwarden 2025.10.0 improves observation of data ownership policies, adds direct importer for Chromium browser accounts, and resolves several bugs. This is not a security update.
https://bitwarden.com/

BulkFileChanger 1.74 resolves a field copy bug. This is not a security update.
https://www.nirsoft.net/utils/bulk_file_changer.html

CCleaner 7.01.1042 resolves several bugs and renames several features. This is not a security update.
https://www.ccleaner.com/

Cygwin 3.6.5 resolves several bugs. This is a security update.
https://cygwin.com/

DesktopOK 12.21 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.6.39.0 resolves several bugs. This is a security update.
https://dngrep.github.io/

Everything 1.4.1.1030 is a security update.
https://www.voidtools.com/

Everything SDK 1.4.1.1030 is a security update.
https://www.voidtools.com/support/everything/sdk/

Everything Toolbar 2.1.1 resolves a couple bugs. This is a security update.
https://github.com/stnkl/EverythingToolbar/

ExplorerPatcher 26100.4946.69.6 improves compatibility and resolves several bugs. This is not a security update.
https://github.com/valinet/ExplorerPatcher/

Fing 3.9.2 adds PDF reporting and resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

Git SCM 2.51.2 resolves several bugs. This is not a security update.
https://git-scm.com/

GoodSync 12.9.14 resolves several bugs. This is not a security update.
https://www.goodsync.com/

Homedale 2.22 improves filtering. This is not a security update.
https://www.the-sz.com/products/homedale/

LessMSI 2.10.4 resolves a selection bug. This is not a security update.
https://lessmsi.activescott.com/

MPAM 1.441.121.0 adds support for new detections. This is not a security update.
https://www.microsoft.com/en-us/wdsi/defenderupdates

MultiMonitorTool 2.21 resolves a stability bug. This is not a security update.
https://www.nirsoft.net/utils/multi_monitor_tool.html

NTLite 2025.11.10669 adds support for Windows 24H1 and updates component support. This is not a security update.
https://www.ntlite.com/download/

PolicyPlus October 2025 updates included policies. This is not a security update.
https://github.com/Fleex255/PolicyPlus/releases

PowerToys 0.95.1 resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Process Explorer 17.07 adds strings for Arm64 binaries and fixes a notification bug. This is not a security update.
https://learn.microsoft.com/sysinternals/downloads/process-explorer

PSAppDeploy 4.1.7 resolves several bugs and improves compatibility. This is not a security update.
https://psappdeploytoolkit.com/

Remotly 1.35.0 adds UPnP port forwarding. This is not a security update.
https://remotly.com/

RDCMan 3.11 enables Entra ID login. This is not a security update.
https://learn.microsoft.com/sysinternals/downloads/rdcman

ripgrep 15.1.0 resolves a bug with line buffering. This is not a security update.
https://github.com/BurntSushi/ripgrep/releases/latest

RoboForm 9.8.3 resolves a security bug. This is a security update.
https://www.roboform.com/

WinGet 1.12.350 improves compatibility and resolves several bugs. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinScan2PDF 9.44 adds support for newer hardware. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

ZoomIt 9.20 adds ability to export to MP4 and GIF. This is not a security update.
https://learn.microsoft.com/sysinternals/downloads/zoomit

Developer Updates

These are unlikely to be of interest to most people.

.NET Runtime 9.0.10 and 10.0.0 are security updates.
https://dotnet.microsoft.com/en-us/download/dotnet

Android Studio 2025.2.1.7 resolves several bugs. This is not a security update.
https://developer.android.com/studio

DB Browser for SQLite 3.13.1 resolves several bugs and improves compatibility. This is not a security update.
https://sqlitebrowser.org/

GameMaker Studio 2024.14.0.207 is a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.5.245 adds new templates and resolves several bugs. This is not a security update.
https://gdevelop.io/download

GitHub Desktop 3.5.4 is a security update.
https://desktop.github.com/

Go 1.25.4 resolves several bugs. This is not a security update.
https://go.dev/

Inno Setup 6.6.0 improves dark mode, custom styling support, and pascal scripting. This is a security update.
https://www.jrsoftware.org/isdl.php

Java 8u471 is a security update.
https://www.java.com/en/download/manual.jsp

Node.js 22.21.1 resolves several bugs. This is not a security update.
https://nodejs.org/en/

Node.js 24.11.0 marks the transition to LTS. This is not a security update.
https://nodejs.org/en/

Node.js 25.1.0 updates libraries and resolves several bugs. This is not a security update.
https://nodejs.org/en/

SQLite 3.51.0 adds a couple new macros, improves JSON support and CLI capabilities, and resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

TortoiseGit 2.18.0 updates libraries and resolves several bugs. This is not a security update.
https://tortoisegit.org/

Visual Studio Code 1.105.1 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.52 resolves several bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.2.4 resolves several bugs and improves compatibility. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

HumHub 1.17.4 adds a nonce for OEmbeds and resolves several bugs. This is a security update.
https://www.humhub.com/en

MailEnable 10.54 resolves several bugs and improves logging. This is a security update.
https://www.mailenable.com/

ownCloud Client 6.0.2.17506 is a security update.
https://owncloud.com/desktop-app/

Piwigo 15.7.0 is a security update.
https://piwigo.org/

Contact Form 7 6.1.3 resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Email Log 2.62 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/email-log/

WordPress Importer 0.9.5 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/wordpress-importer/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2025-10-14

Posted on October 14, 2025 by Shawn K. Hall

Welcome back, Folks!

Today is Patch Tuesday for October, 2025.

If your Windows 10 computer can not be upgraded to Windows 11 then you should either replace your device or use the Windows 10 ESU program to get another year out of it.

Windows 11 25H2 is now available and Windows 11 23H2 and older are no longer supported. Treat Windows 11 25H2 as beta software and wait a few months before upgrading.

macOS 26 Tahoe is now available and macOS 13 Ventura and older are no longer supported. Treat macOS 26 as beta software and wait a few months before upgrading.

There were 560+ major hacks, and over 390 application updates this month. It’s a very large month, with about 4.5 GB of updates for most users.

This Month in Technology

2GO Group, 7-Zip, Action Property Management, Inc, Acuna Fombona, Adobe Acrobat Reader, Adobe Analytics, Adpost, AES Clean Technology, AGETIC Bolivia, AIP Asset Management, Airspan Networks, Akulaku, Albany Gastroenterology Consultants, Alexander McQueen, Allegra DatabaseBackupBL, Allgäu Stern Hotel, Allianz Life Insurance Company of North America, Allied Services Division Welfare Fund, Altos, AMD SEV-SNP, Amelia Overhead Doors, American Archive of Public Broadcasting, American First Finance, American Income Life Insurance, Amos Space, AMS Fulfillment, Anchorage Neighborhood Health Center, Animeify, Ansell, António Belém & António Gonçalve, AOS, Inc, ApolloMD Business Services, AppFolio, Inc, Apple, Apple macOS, Aquarium of the Pacific, Archer Health, Archway Cookies, ARINC, Armalife, Artists&Clients, Asahi, Assaf Harofeh Medical Center, Asserson, Assisted Living Pharmacy Service, Astra Otoparts, AT&T, Atlas Pressed Metals, Aurora Emergency Physicians, Australia NSW Reconstruction Authority, Autodesk AutoCAD, Autodesk Revit, AutohausMalin, AV Services Barcelona, Avalara, Inc, Avira Prime, Avnet, AZpro Group, Bader Gruppe, Balenciaga, BAM, BancoCapital Ecuador, Batesky Law Office, BBOT, BCR Recouvrement, Belkorp Ag, LLC, Benworth Capital Partners, Bignault & Carter, BK Technologies, Black Hills Regional Eye Institute, BMW Group, BNB Chain, Bortolazzo Group, Bouygues Telecom, Boyd Gaming Corporation, Brancosoft, Braun Electric Company, Inc, Brightstar Lottery, Brunei Postal Services Department, Burlingame School District, Business Integra, BW-RF, Bykea, California Golf Club of San Francisco, California International Bank, NA, Cancel the Hate, Cardinal Machinery, Cascade Pacific Pulp LLC, Cayetano Heredia National Hospital of Peru, CCI Financial, Inc, CCleaner, CCMC, Cell Journal, Centers Laboratory, Central Valley Regional Center, Cesanta Mongoose, Chapter 13 Texas, ChatGPT Deep Research, Chess.com, Chicago Botanic, China’s Great Firewall, Chroma ATE, CIC Vietnam, Cineplanet, Circle K, Cisco Adaptive Security Appliance, City of Pittsburg, California, City of St Joseph, MO Health Department, City of Sugar Land, Texas, ClaimPix, Clarins, Clifford Paper Inc, CNH Industrial, Cobra Rolamentos, Cofiex Asesoría de Empresas, Coinbase, College Hometown Pharmacy, College Parkside Pharmacy, Collins Aerospace, Collins Systems, Comcast, Community Health Network, ComTec Systems, Conduent Business Services, LLC, Cookeville Regional Medical Center, Corban OneSource, Cornwall Council, Cornwell Quality Tools, County of Orange Office of Care Coordination, County of Stanislaus, CA, Credera, Crenshaw Community Hospital, occupied Crimea, Crypto.com, Cultura, Cyprus Post, Daily Printing, Dana-Farber Cancer Institute, Dassault Systèmes eDrawings Viewer, Dataforth, DDR5 Memory (Phoenix RowHammer), Decisely Insurance, Delek Group, Delta Electronics COMMGR, Delta Electronics DIALink, Department of Information and Communications Technology, Derriford Hospital, Digilent WaveForms, Digital Charging Solutions, Dimensional Control Systems, Discord, Django, DNC, Doctors Imaging Group, Dorset Council, DraftKings, DrayTek Vigor routers, E3 Site Supervisor, Earthadelic, EBA Engineering, eCapital Corp, Eckerd Connects, Edro Real Estate, Electoral Court of Uruguay, ELS Surveying, Emergency Responders Health Center, EMPIRE Distribution Inc, Episource, LLC, European airports, FAI Aviation Group, Fairmont Federal Credit Union, Falco Electronics, Family & Community Services, Fast Track, Feathers.ae, Ferus Smit, Field and Goldberg, FinWise Bank, Five Star Mechanical Inc, Flowise, Fort Wayne Medical Education Program, Fortra GoAnywhere MFT, Franklin Dermatology Group, PLC, FreeOnes, FreshRSS, Friedrich-Alexander-Universität, Friends of National Rifle Association of America (NRA), FTCS Forage, Fuji Electric FRENIC-Loader, Fundline Finance Corporation of the Philippines, Future Generali, FysioRoadmap, Gaylord Specialty Healthcare, General Directorate of Taxes and Estates, Generali Central Life Insurance, GIMP, GitHub Copilot, GitHub, GITSIT Solutions, LLC, Gladinet CentreStack and Triofox, Glenwood Management, Global Sumud Flotilla, GloboTech Communications, Google Chrome, Google Gemini, Google Law Enforcement Request System (LERS), Goosehead Insurance Agency, LLC, Goshen Medical Center, Grupo Serex, Gucci, Hacienda La Puente Unified School District, Hamdard Pakistan, Hampton Regional Medical Center, Hana Financial Inc, Harbor Diesel & Equipment, Harris Health, Harrods, Harvard University, Hathijobs, Hauts-de-France, HE Parks, Healthcare Interactive, Helity Copter Airlines, Hello Cake, Inc, HIEC, Hillside Library, Hitachi HTA, HomeRefill, Huawei Technologies, Hub Asset Management, Ideal Bathrooms, IMSS, Indian government’s tax authority, Indonesia Ministry of Education, Indonesian National Police, Insight Partners, Insightin Health, Insightly, Institute of Culinary Education, Integrity Testing & Safety Administrators, Intelliloan, Invoicely, IONODES, Israeli Nuclear Program, Ivanti Endpoint Manager, J E Stacey & Co, J Lorber, JASCO Applied Sciences, Jaspersoft Jasper Reports, K Shipbuilding, Kanal ZERO, Kering, Kevmor Trade Supplies, Key 4 Energy, Keys Pathology Associates, KFC Venezuela, Khan Academy, Kido nurseries, KillSec, Kiple, Kitevuc, Kronospan, Kstati, KT Corp, Kubernetes elections.k8s.io, a major Kuwaiti Construction Firm, La Perouse Medical Billing, Lake Haven, LAMMCO, Latest Pilot Jobs, Lautrec, Law Offices of James Scott Farrin, Lawrence Berkeley National Laboratory, Legacy 5, Legal Practice Board of Western Australia, Leprohon, LGB, Liberty Dental Town, Libraesva, LIC India, Linux Kernel, Linxx Global Solutions, Lipapromet, LiteLLM, Liverpool City Council, LNER, Lorain Emergency Physicians, Loteria de Medellin, Lotte Card, Ludlow Construction, Lux Actuaries & Consultants, LWG Inc, Maida.health, Main Electric Supply Company, Marshall County Schools, Maruji & Raines, Maryland Transit Administration, Mavis Tire Supply, MCBS, LLC, McDonald’s, Mecklenburg County Public Schools, Medical Associates of Brevard, Medicare Compare, Medkar, Medstar Health, Melis Platform CMS, Memphis Millwork, Meridian Valley Laboratories, MetalSoft, Methodist University, MFO ITALIA, Michael Strain Builders, Michigan City, Indiana, Microsoft, Microsoft .NET, Microsoft Entra ID, Microsoft IE mode, Mid South Rehab Services, Migración Colombia, Milesight Industrial Cellular Routers, Miljödata, Mill Bay Marine Group, Milliman Financial Risk Management LLC, MindManager, Mission City Community Network, MLflow, Mobydick Asset Management, Monero, Monterey Mushrooms, LLC, Motility Software Solutions, MPM Imports, MSB, MyHomemadePorn, Naftali Group, Namibia Student Financial Assistance Fund, Natoli Engineering, Neon, New York Blood Center Enterprises, News-Press & Gazette, Nintendo, Normandy, North America Construction (NAC), North Oaks Health System, Northern Rivers Resilient Homes Program, Northwest Medical Specialties, NP3 Benefícios, Nurture Care, Nvidia Merlin, OC Maine, Olive Branch Emergency Physicians, Omise, OneBlood, OneLogin, OnePlus OxygenOS, Open Practice Solutions, LTD, OpenPLC, Oracle E-Business Suite, Organon, Orion Engineering, Orwell Housing Association, OutcomesOne, Panama’s Ministry of Economy and Finance, Pangborn, Parivesh, Passaic Hospitalist Services, Passaic River Physicians, Paul Rossi Law Offices, Payactiv, Inc, Pays de la Loire, Peavey Electronics Corporation, Pediatric Otolaryngology Head & Neck Surgery Associates, Pennsylvania Attorney General’s Office, Pennsylvania Hospitalist Group, Pensacola Hospitalist, People Encouraging People, Perennial, Perplexity’s Comet AI browser, Perth Operationnal Technology, Pestbusters, Petro-Diamond, PGA Development, Inc, Pharmacie.ma, PHI Centre, Philippine Department of the Interior and Local Government, Philippine Land Transportation Office, Planet WGR-500, Plex, Podo Asset Management, PortSwigger Burp Suite MCP, PowerSchool, Preccs, Print Media Association, Professional Trust Company, Promchimexport, Prospect, Prosper, PS&KP Motor, PTR Asset Management, Pulkovo Airport, Pyramid Global Hospitality, R3 Consulting, Radiology Associates of San Luis Obispo, Razer Synapse 3, Red Coats Inc, Red Hat, Redis, Regal Mold, RemoteCOM, Renault, Reportage Empire Properties, Retina Group, River Learning Trust, Rocket TRUfusion Enterprise, Rockhill Women’s Care, Rockstar Games, Rogue Valley Door, Rosco Vision Systems, Roush Fenway Keselowski Racing, LLC, RTX Corporation, S&P Global, Sacada, Salesforce AgentForce, SalesLoft, Salud Consultorios, Samsung devices, Sanatorio Esperanza, Sanatorio Privado Punilla, Sapp Bros, SD Soluciones Digitales, Shamir Medical Center, Sharp Community Medical Group (SCMG), Sheheen, Hancock & Godwin, LLP, Sher Tremonte LLP, Shibarium, Shondeck, Shuffle, SI-Bone, Inc, Siemens Simcenter, SimonMed, Singburi Hospital, Sky Airline, SMP Europe, Software Unlimited Corp, SolarWinds Web Help Desk, SonicWall Firewalls, SonicWall SSLVPN, South Lyon Schools, Sri Lanka Ministry of Finance, SSA Group, St. John Ambulance Canada, Standard Fiber, State Bank of Vietnam, State of California, Department of Industrial Relations, Statewide Enterprises, Inc, Stellantis, Steve Basso Plumbing Heating, STMicroelectronics, Studio Legale Tisot Iuris, Study Gate, Sturgis Hospital, Suffolk County Council, Sunnyvale Elementary School District, SuperEd, Superior Vision Benefit Provider, Superior Vision Service, Survival Flight, Systeme AG, T Choithram And Sons, T-Mobile, Teamsters Union 25 Health Services & Insurance Plan, Tekni-Plex, Inc, Telstra, Texas Center for Infectious Disease Associates, Thai Future, The Daily Sentinel, The Institute of Culinary Education, The Job Shop, The Methodist Church of Southern Africa, The Moinian Group, The Property Business Australia, The Science Fiction Forum, Thomas M Hughes, Tiffany & Co, TLD Law, TOTOLINK X6000R, TransUnion, TraxNYC, Treasure Coast Hospice, Trinity Emergency Physicians, True World Group, Trustar Capital Management, Trusteed Plans Service Corporation, Tucows, Twin Cities Pain Clinic, UAE Society of Engineers, UHL, UNC Hospitals, Union County, Ohio, Unity game engine, University of North Carolina at Chapel Hill – School of Medicine, Uruguayan Government, US Air Force, US Customs and Border Protection (CBP), US Defense Advanced Research Projects Agency (DARPA), US Department of Homeland Security (DHS), US Federal Emergency Management Agency (FEMA), US Firms Heritage Growth Partners, US GeoServer, US HealthConnect, Uvalde Consolidated Independent School District, Valparaiso University, Vantage Finance, Vastaamo psychotherapy, Veradigm, Verily, Victor A. Campanile Insurance Agency, Viessmann Vitogate, Vietnam Airlines, VIM Technologies, VIR, Virtual Projects, VIVA Health, VMware NSX, Volvo Group North America, Vtenext, Vurbis Interactive, WagnerTech UG, Washington Prime Group, WatchGuard Firebox firewalls, Waterborne Environmental, Watsonville Community Hospital, Wayne Memorial Hospital, Webville, WEST Inc, Western Digital My Cloud NAS, Western Orthopaedics, Western Skies Wellness LLC, WestJet, WhatsApp, Williams & Connolly, win-cli-mcp-server, Wondershare Repairit, WordPress bbPress plugin, WordPress Community Events plugin, WordPress Ovatheme Events Manager plugin, WordPress RestroPress plugin, WordPress Service Finder theme, WordPress WooCommerce Designer Pro plugin, WordPress WP Freeio plugin, WordPress WP Travel Engine plugin, X (Twitter), XCAssociates, XChief, Yooshin Engineering Corporation and Zimbra Collaboration Suite have reported hacking or compromises this month.

Azure, Belgorod, Russia, Bermuda, Gaza, Palestine, Guinea, Kandahar, Afghanistan, Kyiv, Ukraine, Mexico, Microsoft 365 (more than once), Oblast, Ukraine, Odessa, Ukraine, Outlook encrypted messages, Spectrum, Starlink, Truth Social, Uttar Pradesh, India and Vodafone UK have suffered from outages this month.

Last months updates broke DRM video playback, Windows 11 Media Creation Tool, Windows Server 2025 Active Directory trust relationships, Windows SMVv1 shares (a good thing).

Michigan is trying to make it illegal for people to kiss on television.

Microsoft will be force-installing Microsoft 365 Copilot this month. Microsoft will be providing the ESU to everyone in the EU without requiring action on their part. Microsoft has confirmed that running multiple Office applications will cause problems with Copilot. Microsoft Office 2016 and 2019 are now end of life. Microsoft Exchange 2016 and 2019 are also now end of life.

Steam is going to end support for 32-bit hardware in January 2026.

A company refuses to do what their techs and consultants recommend (blaming costs, labor and training), then they get hacked, and ultimately the insurance company sues the techs instead of the executives? Dude. Just…dude.

Now for the good news:

Brave now has over 100 million active users. If you haven’t switched yet, you should.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is very large this month. The typical computer should see roughly
GB in updates today. Let’s get started.

Microsoft released 101 updates to address 196 vulnerabilities in .NET, .NET Framework, Visual Studio, Active Directory Federation Services, Agere Windows Modem Driver, AMD Restricted Memory Page, ASP.NET Core, Azure Connected Machine Agent, Azure Entra ID, Azure Local, Azure Monitor, Azure Monitor Agent, Azure PlayFab, Confidential Azure Container Instances, Connected Devices Platform Service (Cdpsvc), Copilot, Data Sharing Service Client, Games, GitHub, Inbox COM Objects, Internet Explorer, JDBC Driver for SQL Server, Microsoft Brokering File System, Microsoft Configuration Manager, Microsoft Defender for Linux, Microsoft Edge, Microsoft Exchange Server, Microsoft Failover Cluster Virtual Driver, Microsoft Graphics Component, Microsoft Office, Microsoft Office Excel, Microsoft Office PowerPoint, Microsoft Office SharePoint, Microsoft Office Visio, Microsoft Office Word, Microsoft PowerShell, Microsoft Windows, Microsoft Windows Codecs Library, Microsoft Windows Search Component, Microsoft Windows Speech, Network Connection Status Indicator (NCSI), NtQueryInformation Token function (ntifs.h), Redis Enterprise, Remote Desktop Client, Software Protection Platform (SPP), Storport.sys Driver, TCG TPM2.0, Virtual Secure Mode, Visual Studio, Windows Ancillary Function Driver for WinSock, Windows Authentication Methods, Windows BitLocker, Windows Bluetooth Service, Windows Cloud Files Mini Filter Driver, Windows COM, Windows Connected Devices Platform Service, Windows Core Shell, Windows Cryptographic Services, Windows Device Association Broker service, Windows Digital Media, Windows DirectX, Windows DWM, Windows DWM Core Library, Windows Error Reporting, Windows ETL Channel, Windows Failover Cluster, Windows File Explorer, Windows Health and Optimized Experiences Service, Windows Hello, Windows High Availability Services, Windows Hyper-V, Windows Kernel, Windows Local Session Manager (LSM), Windows Management Services, Windows MapUrlToZone, Windows NDIS, Windows NTFS, Windows NTLM, Windows PrintWorkflowUserSvc, Windows Push Notification Core, Windows Remote Access Connection Manager, Windows Remote Desktop, Windows Remote Desktop Protocol, Windows Remote Desktop Services, Windows Remote Procedure Call, Windows Resilient File System (ReFS), Windows Resilient File System (ReFS) Deduplication Service, Windows Routing and Remote Access Service (RRAS), Windows Secure Boot, Windows Server Update Service, Windows SMB Client, Windows SMB Server, Windows SSDP Service, Windows StateRepository API, Windows Storage Management Provider, Windows Taskbar Live, Windows USB Video Driver, Windows Virtualization-Based Security (VBS) Enclave, Windows WLAN Auto Config Service, Xbox, XBox Gaming Services, and MSRT. This includes security updates. A reboot is required.

Apple released updates for iTunes 12.13.8.3, iOS 15.8.5, iOS 16.7.12, iOS 18.7.1, iOS 26.0.1, iPadOS 15.8.5, iPadOS 16.7.12, iPadOS 18.7.1, iPadOS 26.0.1, macOS Sequoia 15.7.1, macOS Sonoma 14.8.1, macOS Tahoe 26.0.1, Safari 26, tvOS 26.0.1, visionOS 26.0.1, watchOS 26.0.2, and Xcode 26. This includes security updates. Use Apple Software Update to install the most current versions.

iOS 15.8.5, 16.7.12, 18.7.1, and 26.0.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.8.5, 16.7.12, 18.7.1, and 26.0.1 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 26.0.2 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 26.0.1 is a security update. Use System, Software Update to install the most current version.

visionOS 26.0.1 is a security update. Use System, Software Update to install the most current version.

Google ChromeOS 140.0.7339.242, ChromeOS LTC 138.0.7204.293, and ChromeOS LTS 132.0.6834.245 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Windows 11 is now stable and can be upgraded to if your hardware supports it. If not, switch to Linux (Mint is nice) or replace your computer.

Driver Updates

If you’re using this hardware – these updates are for you.

GoXLR Utility 1.2.3 resolves several bugs and improves sampling and hardware support. This is not a security update.
https://github.com/GoXLR-on-Linux/goxlr-utility/

Plustek ePhoto Z300 6.7.0.4 resolves a Google Drive upload bug. This is not a security update.
https://plustek.com/us/products/film-photo-scanners/ephoto-z300/support.php

RICOH IM C4510 1.4.0.0 resolves a minor bug. This is not a security update.
https://support.ricoh.com/bb/html/dr_ut_e/rc3/model/imc4510/imc4510.htm

TP-Link Archer AX21 v1.20 250424 is a security update.
https://www.tp-link.com/us/support/download/archer-ax21/v1.20/#Firmware

UniFi Network Server 9.5.21 adds channel AI, multicast filtering, VLAN bridging, improved port management, and resolves several bugs. This is not a security update.
https://www.ui.com/download/releases/network-server

Xerox Smart Start 2.1.23.0 doesn’t provide a change log so should be treated as a security update.
https://www.support.xerox.com/en-us/content/143617

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.83.112 is a security update.
https://brave.com/

Firefox 144.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 140.4.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 141.0.7390.76 is a security update.
https://www.google.com/chrome/

Microsoft Edge 141.0.3537.71 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Vivaldi 7.6.3797.63 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Spark 3.26.0.117234 adds Slack, Outlook, and Microsoft 365 integration, resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.26.0.117233 adds Slack, Outlook, and Microsoft 365 integration, resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 143.0.1 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 9.6.2 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

curl 8.16.0 adds a couple new features, updates libraries and dependencies, and resolves over 250 bugs. This is a security update.
https://curl.haxx.se/windows/

Discord October 7, 2025 slows the forced update cycle and resolves dozens of bugs. This is not a security update.
https://discord.com/download

Dropbox 234.4.5591 resolves several stability bugs. This is not a security update.
https://www.dropbox.com/

FileZilla Server 1.11.1 resolves several bugs. This is not a security update.
https://filezilla-project.org/

FreeFileSync 14.5 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 115.0 doesn’t provide a detailed change log so should be treated as a security update.
https://drive.google.com/start

MeshCentral 1.1.51 resolves several bugs. This is not a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.8.00.27654 adds slide controls, threading improvements and rich query for search. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 32.0.0 is a major update that makes almost 3,000 changes to the server, including new features, improved responsiveness, and updating libraries and dependencies. This is a security update.
https://nextcloud.com/

Npcap 1.84 resolves several bugs. This is not a security update.
https://nmap.org/npcap/

OneDrive 25.159.0817.0003 improves reliability and performance, and renames the offline mode process. This is not a security update.
https://support.microsoft.com/en-us/onedrive

Rclone 1.71.1 resolves several bugs and improves stability. This is not a security update.
https://rclone.org/

Signal 7.74.0 improves performance and resolves several bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.58.2 improves performance. This is not a security update.
https://signal.org/android/apk/

Syncthing 2.0.10 resolves several bugs. This is not a security update.
https://syncthing.net/

Telegram 6.2.3 resolves over a dozen bugs including stability issues. This is not a security update.
https://telegram.org/

Zoom 6.6.1.15968 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

Grayjay 340 resolves several reliability bugs. This is not a security update.
https://grayjay.app/index.html

iTunes 12.13.8.3 doesn’t provide a change log so should be treated as a security update.
https://www.apple.com/itunes/download/

Plex Media Server 1.42.2.10156 resolves several bugs (including credit detection) and improves transcoding options. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.113.1 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Minecraft Server (Java) 1.21.10 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server

Nintendo Switch 20.5.0 improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 2025.924 is a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2025.10.03 is a security update.
https://store.steampowered.com/news/app/593110

SteamOS SteamDeck Update 2025.10.01 is a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 25.001.20756 resolves integration bugs. This is a security update.
https://get.adobe.com/reader

Calibre 8.12.0 adds support for newer hardware, resolves several bugs, and adds optional AI integration. This is not a security update.
https://calibre-ebook.com/

GIMP 3.0.6 resolves over a dozen bugs. This is a security update.
https://www.gimp.org/

GnuCash 5.13 resolves several bugs. This is not a security update.
https://www.gnucash.org/

Kindle for PC 2.8.70980 doesn’t provide a change log so should be treated as a security update.
https://www.amazon.com/kindleforpc

Krita 5.2.13 resolves several bugs. This is a security update.
https://krita.org/en/download/

LibreOffice Fresh 25.8.2 resolves 70 bugs. This is a security update.
https://www.libreoffice.org/

Nextcloud Desktop 3.17.3 resolves over a dozen bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.8.6 resolves over a dozen bugs. This is a security update.
https://notepad-plus-plus.org/

PDF-XChange Editor 10.7.3.401 resolves several bugs. This is not a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

Operating System Updates

These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.

ChromeOS 140.0.7339.242 is a security update.
https://chromereleases.googleblog.com/search/label/Stable%20updates+ChromeOS

iOS 15.8.5, 16.7.12, 18.7.1, and 26.0.1 are security updates. Use Settings, General, Software Update to install the most current version.

iPadOS 15.8.5, 16.7.12, 18.7.1, and 26.0.1 are security updates. Use Settings, General, Software Update to install the most current version.

macOS Sequoia 15.7.1 is a security update. Use Settings, General, Software Update to install the most current version.

macOS Sonoma 14.8.1 is a security update. Use Settings, General, Software Update to install the most current version.

macOS Tahoe 26.0.1 is a security update. Use Settings, General, Software Update to install the most current version.

Tails 7.1 is a major update. This version improves startup and performance, and updates all included software and libraries. Hardware requirements have also changed. This is a security update.
https://tails.net/install/download/index.en.html

tvOS 26.0.1 is a security update. Use Settings, General, Software Update to install the most current version.

visionOS 26.0.1 is a security update. Use Settings, General, Software Update to install the most current version.

watchOS 26.0.2 is a security update. Use Settings, General, Software Update to install the most current version.

Zorin OS 18.0 is a major update offering cosmetic improvements, window arrangement and tiling options, web app support, M365 and OneDrive support (yuck!), and more. This is not a security update.
https://zorin.com/os/mirrors/

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 2.13.1 resolves several bugs. This is not a security update.
https://github.com/countercept/chainsaw

OpenSSL 3.6.0 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN 4.3.1 improves compatibility and reliability. This is not a security update.
https://github.com/ProtonVPN/win-app/releases/latest

Radmin VPN 2.0.4899.9 doesn’t provide a change log so should be treated as a security update.
https://www.radmin-vpn.com/

RogueKiller 16.4.1 is a security update.
https://www.adlice.com/download/roguekiller/

Stinger 13.0.0.547 improves detection. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

uBlock Origin 1.66.4 resolves a resource bug. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

VT-CLI 1.2.0 adds “–private” syntax option. This is not a security update.
https://github.com/VirusTotal/vt-cli/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 32.0.1 resolves several bugs and improves performance. This is not a security update.
https://obsproject.com/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.4.9 adds support for new encodings and improves UHD Creator design. This is not a security update.
https://www.dvdfab.cn/download.htm

MakeMKV 1.18.2 improves reliability and resolves several bugs. This is not a security update.
https://www.makemkv.com/download/

StreamFab 6.2.5.7 improves reliability and compatibility, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 3.0.2.9 improves performance and hardware compatibility. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 7.0.26 resolves a bug in plugin installation. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.11.14 resolves several bugs and improves biometrics, QR code scanning and JSON parsing. This is not a security update.
https://1password.com/downloads/

Agent Ransack 2022.3536 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

AOMEI Partition Assistant 10.9.1 adds virtual disk support and resolves several bugs. This is not a security update.
https://www.diskpart.com/

Bitwarden 2025.9.0 improves performance, adds support for organization keys, and biometrics improvements. This is a security update.
https://bitwarden.com/

CCleaner 7.00.984 adds package uninstaller support, ARM64 support and improved duplicate identification. This is not a security update.
https://www.ccleaner.com/

CPU-Z Installer 2.17 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

DesktopOK 12.14 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.6.7.0 improves CLI and search result copy. This is a security update.
https://dngrep.github.io/

email-oauth2-proxy 2025-10-04 resolves several bugs. This is not a security update.
https://github.com/simonrob/email-oauth2-proxy

ESEDatabaseView 1.79 adds option to perform case sensitive searches. This is not a security update.
https://www.nirsoft.net/utils/ese_database_view.html

Everything 1.4.1.1029 improves msi installation, shell extension compatibility and localization. This is not a security update.
https://www.voidtools.com/

Everything SDK 1.4.1.1029 improves shell extension compatibility. This is not a security update.
https://www.voidtools.com/support/everything/sdk/

Everything Toolbar 2.1.0 adds ARM64 support and resolves several bugs. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

ExplorerPatcher 26100.4946.69.4 resolves over a dozen bugs and improves compatibility. This is not a security update.
https://github.com/valinet/ExplorerPatcher/

Fido 1.66 adds support for Windows 11 25H2. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3536 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Free Virtual Serial Ports 7.05.00.1623 adds the CLI app the distribution and improves stability. This is not a security update.
https://freevirtualserialports.com/

GadgetPack 39.0 updated outdated gadgets and resolves several bugs. This is not a security update.
https://8gadgetpack.net/

Git SCM 2.51 improves compatibility and resolves a dozen bugs. This is not a security update.
https://git-scm.com/

GoodSync 12.9.11 resolves several bugs. This is not a security update.
https://www.goodsync.com/

grepWin 2.1.12 resolves context menu bug. This is not a security update.
https://github.com/stefankueng/grepWin/releases/latest

Homedale 2.21 improves user interface. This is not a security update.
https://www.the-sz.com/products/homedale/

HWMonitor 1.60 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

IsMyHdOK 4.44 updates language files. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

Kingston SSD Manager 1.5.6.0
https://www.kingston.com/us/support/technical/ssdmanager

LessMSI 2.10.3 improves help, layout, and adds Japanese translation. This is not a security update.
https://lessmsi.activescott.com/

NTLite 2025.10.10631 resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 11.1.1011 enables forensic image creation, password collection, and resolves a couple bugs. This is not a security update.
https://www.osforensics.com/download.html

PowerToys 0.94.2 resolves stability issues. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Remotly Android 2.0 improves connectivity and controls, adds hardware support, and adds Multi-Join support. This is not a security update.
https://remotly.com/

RoboForm 9.8.2 resolves several bugs and improves import. This is not a security update.
https://www.roboform.com/

Rufus 4.11 adds support for Windows 11 25H2, adds dark mode support, drive conversion, UEFI improvements and resolves several bugs. This is not a security update.
https://rufus.ie/en_US/

SpaceSniffer 2.0.5.18 improves cosmetics and Hi-DPI support, improved OS integration, and resolves several bugs. This is not a security update.
https://www.uderzo.it/main_products/space_sniffer/

WhyNotWin11 2.7.0 improves hardware detection and resolves several bugs. This is not a security update.
https://github.com/rcmaehl/WhyNotWin11

WinGet 1.11.510 removes 32-bit ARM support, adds Microsoft DSC v3 support, and resolves a couple bugs. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinScan2PDF 9.41 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

XnConvert 1.106.0 doesn’t provide a detailed change log so should be treated as a security update.
https://www.xnview.com/en/xnconvert/

ZoomIt 9.10 adds image smoothing. This is not a security update.
https://learn.microsoft.com/en-us/sysinternals/downloads/zoomit

Developer Updates

These are unlikely to be of interest to most people.

Android 2025.1.4.8 resolves large APK redeployment and resolves several bugs. This is not a security update.
https://developer.android.com/studio

Docker Desktop 4.48.0 updates libraries and resolves several bugs. This is a security update.
https://www.docker.com/products/docker-desktop

GDevelop 5.5.243 resolves several bugs. This is not a security update.
https://gdevelop.io/download

GitHub Desktop 3.5.3 adds support for Ptyxis shell, upgrades libraries and resolves several bugs. This is not a security update.
https://desktop.github.com/

Go 1.25.3 is a security update.
https://go.dev/

Godot 4.5 improves accessibility, precomposition, backtracing, logging and more. This is not a security update.
https://godotengine.org/

Inno Setup 6.5.4 resolves several bugs. This is not a security update.
https://www.jrsoftware.org/isdl.php

NASM 3.01 is a major update adding support for APX, preprocessing and resolves more than a dozen bugs. This is not a security update.
https://www.nasm.us/index.php

Node.js 22.20.0 updates libraries and resolves dozens of bugs. This is a security update.
https://nodejs.org/en/

Node.js 24.10.0 updates libraries and resolves dozens of bugs. This is a security update.
https://nodejs.org/en/

Python 3.14.0 is a security update.
https://www.python.org/downloads/macos/

Visual Studio Code 1.105 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.2.2 resolves over a dozen bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Adminer 5.4.1 resolves several bugs. This is not a security update.
https://www.adminer.org/en/

Joomla 5.4 is a security update.
https://www.joomla.org/

Joomla 6.0.0 is a new major release with many new features, options and controls. This is not a security update.
https://www.joomla.org/

phpMyAdmin 5.2.3 resolves several bugs. This is not a security update.
https://www.phpmyadmin.net/

WordPress 6.8.3 is a security update.
https://wordpress.org/

BuddyPress 14.4.0 is a security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 6.1.2 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.14 improves settings layout. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers

My Sticky Bar 2.8.3 resolves a cosmetic bug. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

Postie 1.9.73 improves error handling. This is not a security update.
https://wordpress.org/extend/plugins/postie/

Sucuri Security 2.5 adds support for 2FA, QR code generation, and updates ignore list. This should be treated as a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

Theme My Login 7.1.14 resolves a bug. This is not a security update.
https://wordpress.org/extend/plugins/theme-my-login/

WordPress Importer 0.9.4 resolves a coupls bugs. This is not a security update.
https://wordpress.org/extend/plugins/wordpress-importer/

WP Cerber Security 9.6.10 resolves a couple bugs. This is not a security update.
https://wpcerber.com/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2025-09-09

Posted on September 9, 2025 by Shawn K. Hall

Welcome back, Folks!

Today is Patch Tuesday for September, 2025.

Time is now running short to upgrade to Windows 11 24H2 or macOS 15/Sequoia. The next release of each OS will be available within the next month and should be treated as beta software – Win11 and macOS 15/Sequoia are as close to stable as they will ever be. Upgrade now.

If your Windows 10 computer can not be upgraded to Windows 11 then you should either replace your device or use the Windows 10 ESU program to get another year out of it.

There were 490+ major hacks, and over 260 application updates this month. It’s a mild month, with about 2.5 GB of updates for most users.

This Month in Technology

10DESIGN, 32 Pearls, Absolute Dental Group, LLC, Academic Urology & Urogynecology of Arizona, Academy Software Foundation OpenEXR, Access Personal Checking Services (APCS), Accident Injury Solicitors, Advanced Security Systems, Afghan Relocations and Assistance Policy, Aflac Inc, AgeGO, Airfast Indonesia, AIS InfoSource, Alcàsser City Council, Aldagi, Alera Group, Inc, Algérie Poste, All States Materials Group, All Truck Transportation, Ambitek, American Association of Critical-Care Nurses, Android, Anuvu, Apex Class Action, LLC, Apple iOS, Apple macOS, Apple macOS Keychain, Arboris, Argo CD, Arkansas Primary Care Clinic, Aroeira Salles Advogados, Artists&Clients, Aspire Rural Health System, Assisted Living Pharmacy, AT&T, Auchan, Austrian Interior Ministry, Autodesk, Awes.me, Inc, Axis Communications Autodesk Plugin, Banville Wine Merchants, BAR Architects & Interiors, Baycoat, BDO Perú, Beech Acres, Behavioral Health Group, Belle Vernon Schools, Bemac-Merivale, Benworth Capital, Ben’s Asphalt, Berkshire Health Systems, BFC Solutions, Bizcom Electronics, Black Hills Regional Eye Institute, Blazer Building, Blenders in the Grass, Bolt Nut Manufacturing, Borghese Contemporary Hotel, Bouvier Insurance, Box Elder County, Bragg Gaming Group, Bridgestone, Brightpoint, BtcTurk, Burger & Brown Engineering, Burger King, Burt Process Equipment, Business Council of New York State (BCNYS), Canadian House of Commons, Canadian Investment Regulatory Organization (CIRO), Cancer Care Center of North Florida, CareTracker, Inc, Carmichael Engineering, Carter Credit Union, Carter Federal Credit Union, CB1 Medical, CBG Surveying Texas, CData API Server, CEI Vision Partners, Center for Disability Services (NY), Central Florida Hand Specialists, Charak Center for Health, ChatGPT, Chess.com, Children’s Center of Hamden, Chung Shan Institute of Science and Technology, Church of England, CI Engineering, Cisco Secure Firewall Management Center, City of Baltimore, MD, City of Batavia, City of Lubbock, TX, City of St. Paul, MN, Clicknget, CloudFlare (as well as a certificate issuance thing), Cockroach Labs cockroach-k8s-request-cert, College Hometown Pharmacy, College Parkside Pharmacy, Colt Technology Services, Columbia University, Commonwealth Business Bank, Community Connections, Community Treatment Solutions, Compass Counseling Services, Comprehensive Pain Centers, Connex Credit Union, Copilot, CPAP Medical Supplies and Services Inc, CPH Corp, CPK Interior Products, Crawford Gives, Credix, Cunningham Group, D. Visser & Zonen BV, Data I/O, DaVita, DBM Global, Delta Electronics DIAView, Delta Electronics ISPSoft, Denray Tire, Digilent DASYLab, DIGO, Diversified CPC, Django, Docker Desktop, Doctors Memorial Hospital, DOGE, Dr. Doug’s Pediatric Dentistry, Dubai Pharmacy College for Girls, DUC App, Dynacast, ECM Consultants, EG4 Electronics solar inverters, Electricity Authority of Cyprus, Elektro-Buder, Elkhart Independent School District, Episource, LLC, Epperson Law Group, Erdy McHenry Architecture, eShipGlobal, Eurofins, European Commissioner Ursula von der Leyen’s plane, Ewald Consulting, LLC, Excelsior Orthopaedics, Exel Composites, Expert E-commerce GmbH, Faltner, Family Counseling Services of the Finger Lakes, Fannava, Farmers Group, Inc, Farmers Insurance, Farmers Insurance Exchange, Farmers New World Life Insurance Company, Farmers Rice Cooperative, Ferienwohnungen.de, Ferplast, Firebird SQL Database Server, FirstLight, Flavor & Fragrance Specialties, Florarte, FortiWeb, Foxit PDF Reader, FreePBX Servers, Friesen Group, FTX Creditor, Fullerton Surgical Center, Fundamental Administrative Services, Galaxy Freightline, Garner Trucking, GEA Consulting Engineers, George Haney & Son, Ghana Postal Service, Giglio, GitHub (s1ngularity), Glen Falls Hospital, Google Workspace, Gosive, Grand Rapids Controls, Graphite Construction Group, Greenville, Texas, Grupo DIRIA, Guerrero Mears, HackerOne, Haeger & Schmidt Logistics, Hanson Chambers, Hardwick Tactical, Healthcare Services Group, Inc, HighDoc, HK Hardware & Engineering, Hogan Construction Group, Humanists.org, Huntwood Industries, Hydrometrics, Hygrade Components, iCloud Calendar, iiNet, IMDataCenter, Indian Institute of Technology Roorkee, InEar, Infoniqa, Inotiv, Inox Laghi, Insight Partners, Insightly, Integrated Orthopedics of Arizona, Intel, International Freight & Commerce, Internet Archive, Internet Rimon, Israel Railways, Ivanti Avalanche, Ivanti Connect Secure, Ivanti Policy Secure, Ivanti ZTA, J Derenzo Co, Jack’s Lawn Service, Jaguar Land Rover, Jamaican Office of the Registrar, James H Cunningham Insurance Agency Inc, Jet Centre, Johann-Peter-Hebel Realschule, Juggernaut, K Strategies Marketing and Public Relations, Kafka Conveyors, Karachi American School, Karndean International LLC, Kazmunay Gas, Kennedys Law LLP, Keys Pathology Associates, Kirkpatrick Partners LLC, Kofax, Inc, Kokomo24/7, Krewett, Kuwait’s Ministry of Electricity & Water, Lake City Cancer Care, LLC, LandWorks, Langdon & Company, Lee & Associates, Legacy Treatment Services, Lewis Baach Kaufmann Middlemiss PLLC, Lipigas, Litchfield Cavo LLP, LJ Falcon Holdings, Inc – Hiller Companies, Logan & Mencuccini, Louis Vuitton North America, Inc, LoveSac, LPL Financial, Lundberg Design, Luxembourg National Lottery, Manesa, Manpower, Mark Edward Partners, Marlborough Partners, McDonald’s, McEwen & Associates, MDLand International Corporation, Mediate Management, MedicareCompareUSA, Medway Plastics, Meridian Valley Labs, Metro Technology Centers, Michigan Medicine, Microsoft Windows, Mid America Health, Miljödata (200 Swedish government agencies), Miracle Ear, Miraflores, Peru, MJets, Moniz Silva International, Morgenstern AG, Morocco’s Social Security Fund, Motor Controls Inc, Mower County, MN, Mower County Health and Human Services, MPOWERHealth, Mutual of America Life Insurance Company, My Psychiatrist (FL), MyVisaJobs, 800 N-able N-central servers, NASCAR, NAST DOST, NATO, Navy Federal Credit Union, NC Dynamics LLC, Nelnet, Nemo Protocol, NetScaler ADC, NetScaler Gateway, New York Blood Center Enterprises, New Zealand Cruise Association, NextLabs, Nigeria Customs Service, Nike USA, Nissan CBI, Nissan Japan, NoMachine, Northern Construction, Northwest Medical Specialties PLLC, Norwest Venture Partners, NVIDIA Isaac-GR00T, NVIDIA Transformers4Rec, NVIDIA Triton Inference Server, OB-GYN Associates, Ocean Edge Resort & Golf Club, Odin.fun, Ohio Medical Alliance, Omani Email Server, Omega Global Technologies, Ona Hotels, One Way Solutions, Onno Center, OnTrac Final Mile, OpenPrinting ippusbxd, Optima Tax Relief, LLC, Optivosa, Orange Belgium, Orleans Parish jail, Oxford Instruments Imaris Viewer, PagerDuty, Pakistan Petroleum, Palo Alto Networks, Panorama, Parkside Group, PassportScan, Passwordstate, PathoQuest, Paul Wilkinson Law Firm, Pediatric Otolaryngology Head & Neck Surgery Associates, Peggy Sage, Pena Briones McDaniel, Pennsylvania AG, Pequannock Township School District, Perplexity Comet AI browser, Pesado Construction, Philadelphia Investment Partners, Philippine Amusement and Gaming Corporation, Phillips 66 Lubricants, Pincong, Plex, Pocono Farms Country Club, Precision Endodontics of Raleigh, Premier Realty Group, pREST, Primax, PROVAIL, QEMU, QNAP QHora-322, Quadrangle Imaging Center, Qualys, RA Services, Rapper Bot, RAVEN Mechanical, Realtek rtl81xx Wi-Fi Driver, Reimagine Network, Revere Health PC, Risevatnet Dam, Risk Management Services LLC, Riverton Cabinets, Roche Underground, Rockwell Automation Arena Simulation, Rose Acre Farms, Royal Enfield, Royal Health Inc, Rusin Law, Ruđer Bošković Institute, Sabine County Hospital, SAIL Image Decoding Library, Salesforce, Salesian University, Salesloft, Sangoma FreePBX, Sansone Group, Santa Fe County, SAP S/4HANA, Schliessmeyer, School District Five of Lexington & Richland Counties, SC, Seasons Living, Securam ProLogic safe locks (used on at least 10 brands of safes), Security First Credit Union, Seguros América, Selartex, Seoul Guarantee Insurance, SFA Engineering, SGI, Shafer Partners, Sherman, Silverstein, Kohl, Rose & Podolsky, Shopify, Siemens Simcenter, Signit Online, Sika Footwear, Simmons Boardman, Sinqia SA, Sitecore, Six Guns LLC, Som Mobilitat, Sonitrol Security Solutions, South Coast Pediatrics, South Korean Intelligence, South Yorkshire Police, Southern Graphics, Spiffy Bin, Springs Christian Academy, State of Maryland, State of Nevada, Steel Encounters, Step2Education, Sterlings Accountancy Solutions, Stewart Home School, Sun Pacific Solar Electric Inc, Sunsweet Growers Inc, SVDP Management Inc, SYNCADD, SystemExec Co, Tallaght University Hospital, Tea Dating Advice, Inc, TeamstersCare, TeamViewer, TechSourceOne IT Solutions, TELACU College, TeleMessage, Tenable, Tenda AC6, TeslaMate, The Biosig Project libbiosig, The Computer Merchant (TCM), The Farmer’s Dog, The Smile Spa, TheSqua.re, TheTruthSpy, Togolese Republic Government, Tomb Multimedia Productions, Town of Vienna, VA, TP-Link routers, TransUnion, Trinity News, True World Group LLC, Tucows, Twin Cities Pain Clinic, Uganda Electricity Transmission Company Limited, UI Community HomeCare, Umeå University, United Domestic Workers of America (UDW), Universal Group For Engineering and Consulting, University of Iowa Health Care, University of Southeastern Philippines, University of the Philippines Tacloban College, US Homeland Security, Uzbekistan Airways, Van Hook Dental Studio, Vanderpool Construction, Venice Biennale, Venture Credit Union, Venus Protocol, VerifTools, Vistra Group, Vital Imaging Medical Diagnostic Centers, Volanno, Voltus GmbH, WaitWhatWeb, Washington Gastroenterology, water utilities across Europe, Waterford Surgical Center, Wayne Memorial Hospital, Wealthsimple, Weathercraft Companies, Welcome Dentistry, West Chester Township, OH, West Texas Oral Facial Surgery, WestJet, WhatsApp, Whitepages, Wier Boerner Allin, Wine Works Australia, WinRAR, Woodlawn Hospital, WordPress Doccure theme, WordPress Inspiro theme, WordPress Paid Memberships plugin, Workday, Workiva, Wyong Rugby League Club, Xerox, Xperthair, XWiki Blog, YES24, Zeelab, Ziegler-Design, Zions Bancorporation, NA, Zizzl LLC, Zoom, and Zscaler have reported hacking or compromises this month.

Copilot, Google search, Microsoft Teams, Nintendo store (blame Silksong), Office.com, PlayStation store (blame Silksong), Starlink, Steam (blame Silksong), X, Xbox store (blame Silksong), and YouTube have suffered from outages this month.

Internet access throughout Gotland, India, Iraq, Pakistan, Starlink, Turkey, Ukraine, United Arab Emirates, Venezuela, Vietnam, and Yemen has been blocked our down for extended periods.

Last months updates broke AutoCAD, Enterprise updates for Windows, Firefox, SAP, solid state drives (SSDs) from various vendors (then fixed it without telling anyone), streaming, and Windows Recovery & Reset options.

Yes, EMF is bad for you. You knew that. It’s also really bad for your children.

Epochalypse is closer than you think.

Microsoft Word is now saving your documents in the cloud by default. Apple has removed native encryption (Advanced Data Protection (ADP)) from devices in the UK while reports repeatedly claim otherwise. License plate reader company Flock Safety is teaming up with Nexar to access your dashcam video (and everyone else’s).

The absurd:

PayPal will no longer allow you to purchase Steam games in many native currencies. “Science” has decided that “science” is best served by lying to the public. The unforeseen side-effects of gatekeeping the Internet. The UK has found a novel way of saving water during their current drought: delete your emails!

Now for the good news:

FFmpeg now offers AV1 encoding.

Chromium manifest V2 is now disabled everywhere in the Chrome browser. This means that all fully featured ad-blocking (and security extensions) will no longer work. Switch to Brave. Need help? Call me.tel:+1-209-565-1273

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is pretty mild this month. The typical computer should see roughly 2.5 GB in updates today. Let’s get started.

Microsoft released 44 updates to address 86 vulnerabilities in Azure Arc, Azure Windows Virtual Machine Agent, Capability Access Management Service (camsvc), Graphics Kernel, Microsoft AutoUpdate (MAU), Microsoft Brokering File System, Microsoft Edge, Microsoft Edge (Chromium-based), Microsoft Graphics Component, Microsoft High Performance Compute Pack (HPC), Microsoft Office, Microsoft Office Excel, Microsoft Office PowerPoint, Microsoft Office SharePoint, Microsoft Office Visio, Microsoft Office Word, Microsoft Virtual Hard Drive, SQL Server, Windows Ancillary Function Driver for WinSock, Windows BitLocker, Windows Bluetooth Service, Windows Connected Devices Platform Service, Windows Defender Firewall Service, Windows DWM, Windows Hyper-V, Windows Imaging Component, Windows Internet Information Services, Windows Kernel, Windows Local Security Authority Subsystem Service (LSASS), Windows Management Services, Windows MapUrlToZone, Windows MultiPoint Services, Windows NTFS, Windows NTLM, Windows PowerShell, Windows Routing and Remote Access Service (RRAS), Windows SMB, Windows SMBv3 Client, Windows SPNEGO Extended Negotiation, Windows TCP/IP, Windows UI XAML Maps MapControlSettings, Windows UI XAML Phone DatePickerFlyout, Windows Win32K – GRFX, Xbox, and MSRT. This includes security updates. A reboot is required.

Apple released updates for iOS 18.6.2, iPadOS 18.6.2, iPadOS 17.7.10, macOS Sequoia 15.6.1, macOS Sonoma 14.7.8, macOS Ventura 13.7.8, and watchOS 11.6.1. This includes security updates. Use Apple Software Update to install the most current versions.

iOS 18.6.2 is a security update. Use Settings, General, Software Update to install the most current update.

iPadOS 18.6.2 and 17.7.10 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 11.6.1 is a security update. Use the Watch app on your iPhone to install the most current version.

Google ChromeOS 139.0.7258.164, ChromeOS LTC 138.0.7204.255, and ChromeOS LTS 132.0.6834.242 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

The release of macOS Sequoia (15.x) means that macOS Monterey (12.x) and older are no longer supported. If you can not install at least macOS Ventura (13) on your Mac then you should immediately remove your device from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v24H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it. If not, switch to Linux (Mint is nice) or replace your computer.

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 25.9.1 resolves several bugs. This is not a security update.
https://www.amd.com/en/support

BullZip PDF Printer 2025.1.0.2985 adds ARM support and updates libraries. This is a security update.
https://www.bullzip.com/products/pdf/info.php#download

Crucial Storage Executive 11.08 is a security update.
https://www.crucial.com/support/storage-executive

Intel Driver and Support Assistant 25.4.36.6 improves hardware detection. This is not a security update.
https://www.intel.com/p/en_US/support/detect

UniFi Network Server 9.4.19 is a security update.
https://www.ui.com/download/releases/network-server

VIISAN OfficeCam 7.2.12 doesn’t provide a change log so should be treated as a security update.
https://www.viisan.com/en/download/type1.html

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.82.165 is a security update.
https://brave.com/

Firefox 142.0.1 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Google Chrome 140.0.7339.80 is a security update.
https://www.google.com/chrome/

Microsoft Edge 140.0.3485.54 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Vivaldi 7.5.3735.66 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

DavMail Gateway 6.4.0 resolves dozens of bugs. This is a security update.
https://davmail.sourceforge.net/

Spark 3.25.2.115680 resolves several bugs and improves the user interface. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.25.2.115679 resolves several bugs and improves the user interface. This is not a security update.
https://sparkmailapp.com/

Thunderbird 142.0.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 9.6.0 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 9.5.0 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

Discord September 3, 2025 resolves over a hundred bugs and vastly improves server capabilities and performance. This is not a security update.
https://discord.com/download

Dropbox 231.4.5770 resolves an installation bug. This is not a security update.
https://www.dropbox.com/

FileZilla Server 1.11.0 adds optional pattern matching and resolves several bugs. This is a security update.
https://filezilla-project.org/

Google Drive 114.0 resolves several bugs. This is not a security update.
https://drive.google.com/start

MeshCentral 1.1.49 resolves a dozen bugs. This is not a security update.
https://meshcentral.com/info/downloads.html

Nextcloud Server 31.0.8 updates libraries and resolves dozens of bugs. This is a security update.
https://nextcloud.com/

Nmap 7.98 is a security update.
https://nmap.org/

Pocketnet-GUI 0.9.129 resolves several bugs. This is not a security update.
https://pocketnet.app/

Rclone 1.71.0 updates libraries and resolves dozens of bugs. This is a security update.
https://rclone.org/

Signal 7.69.0 resolves several bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.54.1 improves scrolling performance. This is not a security update.
https://signal.org/android/apk/

Syncthing 2.0.8 is the eighth bugfix release for v2 with dozens of changes and improvements. This is not a security update.
https://syncthing.net/

Telegram 6.1.3 resolves several bugs. This is not a security update.
https://telegram.org/

Zoom 6.5.12.14128 doesn’t provide a detailed change log so should be treated as a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.21 resolves several bugs. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.3.13 adds support and fixes for new controllers and resolves several bugs. This is not a security update.
https://www.bitwig.com/download/

Grayjay 336 resolves several bugs and improves controls. This should be treated as a security update.
https://grayjay.app/index.html

KaraFun Player 3.9.0 resolves several bugs and improves the user interface. This is not a security update.
https://www.karafun.com/karaoke-windows/

Plex Desktop 1.110.0.351 is a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Game Updates
These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.102.1 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Nintendo Switch 20.4.0 improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 2025.902 improves performance and stability. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

SteamOS SteamDeck Update 2025.09.04 is a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe 3D Substance Modeler 1.22.4 is a security update.
https://helpx.adobe.com/security/products/substance3d-modeler/apsb25-92.html

Adobe Acrobat 25.001.20693, 24.001.30264, 20.005.30793, and 20.005.30791 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb25-85.html

Adobe After Effects 25.4 and 24.6.8 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb25-86.html

Adobe ColdFusion 2025.4, 2023.16, and 2021.22 are security updates.
https://helpx.adobe.com/security/products/coldfusion/apsb25-93.html

Adobe Commerce Hotfix for CVE-2025-54236 (applies to all *current* builds of Adobe Commerce) is a security update.
https://helpx.adobe.com/security/products/magento/apsb25-88.html

Adobe Dreamweaver 21.6 is a security update.
https://helpx.adobe.com/security/products/dreamweaver/apsb25-91.html

Adobe Experience Manager 2025.9, 6.5 LTS SP1 (GRANITE-61551 Hotfix), 6.5.23 (GRANITE-61551 Hotfix) are security updates.
https://helpx.adobe.com/security/products/experience-manager/apsb25-90.html

Adobe Magento Open Source Hotfix for CVE-2025-54236 (applies to all *current* builds of Magento Open Source) is a security update.
https://helpx.adobe.com/security/products/magento/apsb25-88.html

Adobe Premiere Pro 25.4 and 24.6.8 are security updates.
https://helpx.adobe.com/security/products/premiere_pro/apsb25-87.html

Adobe Substance 3D Viewer 0.25.2 is a security update.
https://helpx.adobe.com/security/products/substance3d-viewer/apsb25-89.html

Calibre 8.10.0 resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Ghostscript 10.06.0 is a security update.
https://www.ghostscript.com/releases/gsdnld.html

LibreOffice 25.2.6 resolves over 30 bugs. This is a security update.
https://www.libreoffice.org/

LibreOffice Fresh 25.8.1 resolves nearly a hundred bugs. This is a security update. The “Fresh” line is beta software and should be avoided by most users for the stable “Still” branch.
https://www.libreoffice.org/

Manager 25.8.19.2622 doesn’t provide a current change log so should be treated as a security update.
https://www.manager.io/

Nextcloud Desktop 3.17.1 updates libraries and resolves dozens of bugs. This should be treated as a security update.
https://nextcloud.com/

PDF Candy Desktop 3.15 doesn’t provide a change log so should be treated as a security update.
https://pdfcandy.com/

PDF-XChange Editor 10.7.2.400 resolves dozens of bugs and adds new user interface options and documents controls. This is not a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

Operating System Updates

These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.

ChromeOS 139.0.7258.164 is a security update.
https://chromereleases.googleblog.com/search/label/Stable%20updates+ChromeOS

ChromeOS LTC 138.0.7204.255 is a security update.
https://chromereleases.googleblog.com/search/label/Stable%20updates+ChromeOS

ChromeOS LTS 132.0.6834.242 is a security update.
https://chromereleases.googleblog.com/search/label/Stable%20updates+ChromeOS

iOS 18.6.2 is a security update.
https://support.apple.com/kb/HT204204

iPadOS 18.6.2 is a security update.
https://support.apple.com/kb/HT204204

Linux Mint 22.2 is a security update.
https://www.linuxmint.com/download.php

macOS 15.6.1 is a security update.
https://support.apple.com/kb/HT201541

Tails 6.19 is a security update.
https://tails.net/install/download/index.en.html

watchOS 11.6.1 is a security update.
https://support.apple.com/kb/HT204641

Security Software Updates

One or more of these is likely to be of interest to most people.

.NET Runtime 9.0.9 resolves several bugs and improves compatibility. This is not a security update.
https://dotnet.microsoft.com/en-us/download/dotnet

FRST 2025.8.22 doesn’t provide a change log so should be treated as a security update.
https://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/

Hashcat 7.1.2 resolves several bugs and adds dozens of new modes and features. This is not a security update.
http://hashcat.net/hashcat/#downloadlatest

HTTP Toolkit 1.22.1 doesn’t provide a change log so should be treated as a security update.
https://httptoolkit.tech/

RogueKiller 16.3.0 adds disk monitoring and improves performance. This is not a security update.
https://www.adlice.com/download/roguekiller/

Stinger 13.0.0.455 improves detections.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

uBlock Origin 1.66.2 resolves several bugs and improves defaults. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Velociraptor 0.75 adds multiselect, tagging, improved keyboard navigation and controls, optional compression, “continue” support, improves server permissions, and resolves several bugs. This is not a security update.
https://github.com/Velocidex/velociraptor/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 25.3.1 resolves several bugs and improves keyboard navigation. This is not a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.4.7 adds support for new encodings and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

FFmpeg 20250909 adds support for new hardware, encoding and decoding profiles, improves performance and additional filters. This is not a security update.
https://ffmpeg.org/ffmpeg.html

HandBrake 1.10.2 updates libraries and resolves several bugs. This is not a security update.
https://handbrake.fr/

StreamFab 6.2.5.3 improves compatibility and resolves dozens of bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 3.0.2.7 adds support for newer hardware, improves logic and performance, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

e-Sword 14.5, updates libraries, resolves several bugs, and improves user interface. This is not a security update.
https://www.e-sword.net/

Zotero 7.0.24 improves compatibility and resolves several bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.11.8 resolves several bugs. This is not a security update.
https://1password.com/downloads/

Agent Ransack 2022.3530 updates libraries, resolves several bugs, and now splits the search library into a separate download in order to avoid false antivirus detections. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

Beyond Compare 5.1.5.31310 updates libraries and resolves several bugs. This is a security update.
https://www.scootersoftware.com/download

Bitwarden 2025.8.3 updates libraries and resolves several bugs. This should be treated as a security update.
https://bitwarden.com/

CCleaner 6.39.11548 resolves several bugs. This is not a security update.
https://www.ccleaner.com/

DesktopOK 11.98 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.5.66.0 updates libraries and translations. This is a security update.
https://dngrep.github.io/

Everything Toolbar 2.0.4 updates installer to let you switch between launcher and deskband behavior. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

FileLocator Pro 2022.3530 updates libraries, resolves several bugs, and now splits the search library into a separate download in order to avoid false antivirus detections. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Fing 3.9.1 resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

GoodSync 12.9.8 resolves several bugs and improves compatibility. This should be treated as a security update.
https://www.goodsync.com/

HWMonitor 1.59 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

Kingston SSD Manager 1.5.5.7 doesn’t provide a change log so should be treated as a security update.
https://www.kingston.com/us/support/technical/ssdmanager

LessMSI 2.8.1 resolves a language bug. This is not a security update.
https://lessmsi.activescott.com/

ManageWirelessNetworks 1.17 adds ability to set language encoding for exports. This is not a security update.
https://www.nirsoft.net/utils/manage_wireless_networks.html

MPAM 1.435.674.0 updates detections. This is not a security update.
https://www.microsoft.com/en-us/wdsi/defenderupdates

osquery 5.19.0 updates libraries and resolves several bugs. This is not a security update.
https://osquery.io/downloads

PointerStick 6.79 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.94.0 resolves several bugs and improves compatibility. This is a security update.
https://github.com/microsoft/PowerToys/releases/latest

PSAppDeploy 4.1.5 improves diagnostics and resolves several bugs. This is not a security update.
https://psappdeploytoolkit.com/

Remotly 1.34.1 expands connectivity options, improves hardware support, and resolves over a dozen bugs.
https://remotly.com/

SpaceSniffer 2.0.3.12 adds high-DPI support, Unicode support, CLI improvements, and resolves several bugs. This is not a security update.
http://www.uderzo.it/main_products/space_sniffer/

Ventoy 1.1.07 resolves a compatibility bug. This is not a security update.
https://www.ventoy.net/en/index.html

WizTree 4.27 adds QuickLook and Seer support, improves filtering syntax, and resolves several bugs. This is not a security update.
https://www.diskanalyzer.com/

ZoomText 2025 2025.2508.35.400 improves performance, multi-monitor controls, and resolves several bugs. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 2025.1.3.7 resolves dozens of bugs. This is a security update.
https://developer.android.com/studio

GDevelop 5.5.239 adds a training course, GPT-5 integration, new controls and several bugs fixes. This is not a security update.
https://gdevelop.io/download

GitHub includefragment 6.4.1 improves content-type detection. This is not a security update.
https://github.github.io/include-fragment-element/

Go 1.25.1 is a security update.
https://go.dev/

Inno Setup 6.5.1 adds threading support for downloads to improve responsiveness and resolves several bugs. This is not a security update.
https://www.jrsoftware.org/isdl.php

Node.js 20.19.5 updates libraries and resolves several bugs. This is a security update.
https://nodejs.org/en/

Node.js 22.19.0 updates libraries and resolves several bugs. This is a security update.
https://nodejs.org/en/

Node.js 24.7.0 updates libraries and resolves several bugs. This is a security update.
https://nodejs.org/en/

Python 3.13.7 resolves several bugs. This is a security update.
https://www.python.org/downloads/macos/

Visual Studio Code 1.103.2 adds GPT-5 support and resolves several bugs. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.50.2 resolves several bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.2.0 improves performance resolves several bugs. This is a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Adminer 5.4.0 resolves several bugs and adds new display, selection and export options. This is not a security update.
https://www.adminer.org/en/

Joomla 5.3.3 resolves a couple bugs. This is not a security update.
https://www.joomla.org/

SpamAssassin 4.0.2 improves compatibility and resolves several bugs. This is not a security update.
https://spamassassin.apache.org/downloads.cgi

Duplicator 1.5.13.2 resolves a script bug. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers

Email Log 2.61 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/email-log/

Postie 1.9.72 resolves several bugs. This is a security update.
https://wordpress.org/extend/plugins/postie/

WordPress Importer 0.9.0 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/wordpress-importer/

WP Add Custom CSS 1.2.1 resolves a couple bugs and improves compatibility. This should be treated as a security update.
https://wordpress.org/extend/plugins/wp-add-custom-css/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2025-06-10

Posted on June 10, 2025 by Shawn K. Hall

Welcome back, Folks!

Today is Patch Tuesday for June, 2025.

It’s as safe as it’s going to be to upgrade to Windows 11 24H2 or macOS 15/Sequoia.

If your Windows 10 (or older) computer can not be upgraded to Windows 11, or if you used a registry or installation bypass to install an older version of Windows 11 on it that is no longer supported, then it’s time for you to start looking for a replacement computer.

There were 418+ major hacks, and over 260 application updates this month. It’s a mild month, with only about 2 GB of updates for most users.

This Month in Technology

2BrightSparks SyncBackFree, 3P Corporation, A+ Machining, Abu Dhabi Department of Culture and Tourism, Access2Day Health, Action1, Adidas, Adobe Dreamweaver, Al Tadawi Specialty Hospital, Alera Group, Inc, Alliance Healthcare IT, ALN Medical Management, Amazon Spain, American Hospital in Dubai, American National Bank & Trust, AMI Group, Anne Arundel County Department of Health, AntFarm, Anyproxy, over 1 million consumer AOSP devices, Apache InLong, Apache Tomcat, Apple iMessage, Apple macOS, Apple XNU, Apple’s Safari web browser, Apro, Arla Foods, Arrowhead Evaluation Services, Ascension Health, over 9,000 ASUS routers, AT&T, Austin Small Business Group Health Insurance, Australian Human Rights Commission, Australian Taxation Office, Auto-ici, Autodesk Revit, AVCheck, AXT, Inc, Bailey’s, Balance Autism, Bank Street College of Education, Better Business Bureau Serving the Pacific Southwest, Central & Inland California (BBB), BidenCash, BitoPro, Blaine, MN, Brackett & Ellis, Bradford Health Services, British Horseracing Authority, Broadcom, Bronx Pro Group, Bumfords, Business Systems House, Cahaba Center for Mental Health, Canadian Rocky Mountain Resorts, Canon imageCLASS MF656Cdw, Cape Robbin, Capital Trade, CareNexa, LLC, Carpenter, McCadden & Lane, Carrera Chevrolet, Cartier, Catdoc, Cator Ruma & Associates, Cellcom, Central Maine Healthcare, Central Point School District 6, OR, Cetus Protocol, Channel Islands YMCA, Choice AG, Chroma, Cisco Customer Collaboration Platform (CCP), Cisco Identity Services Engine ISE),Cisco IOS XE, City of Belvedere, City of San Clemente, City of Sheboygan, CNHI LLC, Cobb County, GA, Coca-Cola, Cocospy, Cody Law Firm, Coinbase, Inc, ColoCrossing, Colombia National ID, Community Choice Credit Union, Community Counseling of Bristol County, Community Hospital of Anaconda, Compassion Health Care, Inc, Connections for Kids, ConnectWise, ConnectWise ScreenConnect, CookUnity, Cooper Health System, Covenant Health, Covenant Surgical Partners, Inc, Crystal Hotels, Cumberland County Hospital, Cyprus Airways, Czech Republic Ministry of Foreign Affairs, DanaBot, Dassault Systèmes eDrawings Viewer, Dior, Disk Union, Docker Desktop, Doctors Hospital at Renaissance, LTD, DSI Tech, EB Archbald & Associates, Effortel, Eight8Ate Holdings, Eindhoven University of Technology, El Dorado Irrigation District, Elit Avia, Epworth Healthcare, EsSalud, Etsy, Everest Bank, Excelsior Springs School District, eXch, Executive Jet Support, Facebook, Family Health Services, Inc, Family Health Specialists, Flagship Bank, FLOE International, Florida Lung, Force Bridge, Fortinet FortiWeb, FORTÉ, Frederick’s Machine & Tool Shop, Free (ISP), French Government, French Ministry of Education, Fujipoly, FWD Vietnam, Fédération Francaise de Rugby, Gargle, Gateway Community Services, Gearhiser Peters Elliott & Cannon, Ghana Insurance Database, GIMP, GitLab Duo, Gloucester County, CA, Google, Google Chrome, GovDelivery, Government of Spain, Greater Seattle Concrete, Hacendado, Haowang Guarantee, Harbin Clinic, Hartwig Mechanical, HealthEquity, Inc (twice), High Grade Materials, High-Logic FontCreator, HMRC, Homestead Gardens, HopeWay Foundation, Horde, Horizon Blue Cross Blue Shield NJ, Hostinger, HP Enterprise Insight Remote Support, HP Enterprise StoreOnce, Hudson River Housing, Humboldt County Office of Education, Humboldt Independent Practice Association, Hunter Health Clinic, iCloud, In’Tech Industries, Indian Navy, Indigo Group SA, Indonesian Nuclear Energy Regulator BAPETEN, Indonesian Polytechnic Politeknik Tonggak Equator, Ingonyama Trust Board, Inns of Aurora, Instituto de Ojos de Puerto Rico, Insulet Corporation, Interactive Brokers LLC, Iowa County, IA, ITinSell, Ivanti Endpoint Manager Mobile, Ivanti Workspace Control, Jackson Health System, JDC Air & Sea Freight, JetBrains TeamCity, Jordan Kuwait Bank, JPMorgan Chase, Kalamazoo Public Schools District, Kansas City Aviation Center, Katie Jo Sider, Kelly & Associates Insurance Group, KENAI DRILLING LIMITED, Kenneth Wong, CPA, Kettering Health, KiranaPro, Kittery Police Department, Kronick Moskovitz Tiedemann & Girard, Lafayette Federal Credit Union, Landmark Properties, Lasercam, Lee Enterprises, Legal Practice Board of Western Australia, LexisNexis Risk Solutions, Liberty Tax, Lila, Linux Kernel, Logan University, Lower Merion School District, Lumma, MailEnable Webmail, MainStreet Bancshares, Making Tech Happen, Mantis Creative, Marlboro-Chesterfield Pathology, Marriott International, Maruichi Leavitt Pipe & Tube, Masimo, Mastery Schools, MathWorks/MATLAB, McKenzie Commercial Contractors, MDaemon, Mediclinic Group, Mercer Capital, Mercy Surgical Dressing Group, Inc, Microsoft OneDrive, Microsoft PC Manager, Microsoft SharePoint, Microsoft Windows Installer Service, Missouri Conservation Department, Morgan County 911 service, Mozilla Firefox, Mozilla Firefox Accounts API, Myer Auto, Naper Grove Vision Care, NASA, Nationwide Recovery Service, Naukri, Nepal Police, Next Step Healthcare, NHPP Physical Medicine and Rehabilitation, Nokota Packers, North Shore University Hospital Sleep Disorders Center, North Sulawesi Provincial Government, Northwest Territories Health and Social Services Authority, Northwestern Community Services Board, Nottingham Construction, Nova Scotia Power, Nucor Corporation Steel, Nunez Dental, NVIDIA cuobjdump, NVIDIA Triton, Odoo, Olympus Aero, Operation Endgame 2.0, Opexus, Optima Tax Relief, Oracle VirtualBox, Origin PC, OurBus, Output Messenger Server Manager, OxBykes, Oxford Life Insurance Company, Pacific Summit Energy, Parallels Desktop, Passion.io, Payne County, OK, Payne County Sheriff’s Office, PDI Health, Pearson, Petroquim Chile, Pierce County Library, Planet IT, PPM Industries, Precision Tax Relief, Prenovost, Normandin, Dawe & Rocha, APC, PrepHero, Procolored, Promises2Kids, QuadMiners, Qualcomm Adreno GPU driver, Quick Frames USA, Radiology Chartered, Rajkot Municipal Corporation, RE/MAX, Rechler Equity Partners, Red Hat Enterprise Linux, Redis, Regents Capital, Renkim Corporation, RIBridges, RISE Racing, Riverdell Construction, Rivers Academy West London, Rockwell Automation PowerMonitor 1000, Rockwell Automation ThinManager ThinServer, Rommel Harley-Davidson, Roundcube webmail, Royal Chemical, Royal Moroccan Football Federation, S5 Agency World, Safalata, Samlify, Samsung MagicINFO, San Jose Country Club, Sandhills Medical Foundation, Sante DICOM Viewer, SAP NetWeaver, Schneider Electric Home Devices, Semple & Cooper, Sensata Technologies, Sequoia Capital, Serviceaide, SF Humane Society, Shopify, Shore Medical Center, Siena Hotel, Smartfren, Solar City Tyre Service, SolarWinds DameWare, Sonos Era 300, South African Airways, South Atlantic Federal Credit Union, South Bay Credit Union, Southeast Series of Lockton Companies, Spain’s DGT & CNMC, Sports Physical Therapy, Occupational Therapy and Rehabilitation Services of the North Shore, Sri Lanka’s Pensions Department, State of Indiana, STC Kuwait, Steam supply chain, Straits Construction, Sturdevant’s Auto Parts, SunMoon University, Swedish Edmonds Hospital, Sylvania, Syrian Army, Tata Consultancy Services, TBK DVR-4104 and DVR-4216, TD Bank, Texas Department of Transportation, Texas Digestive Specialists, Texas Health and Human Services Commission, The Epoch Times, The Green Flame Gas Co, The Habesha, The Haymond Law Firm, The Holiday Adult Care Community & Retirement Homes, The Salvation Army, The Smith Institute for Urology, The Vascular Experts, Ticketmaster, Tien Tuan Pharmaceutical Machinery, Tiffany & Co, TOP Ships Inc, Town of North Providence Rhode Island, Tradgo, Trend Micro Apex Central, Tri-City Cardiology Consultants, Trimble Cityworks, Triumph Construction, Tupolev, US Dermatology Partners, UAE Government, UChicago Medicine Medical Group, UK Legal Aid Agency (LAA), Ukrainian critical infrastructure, UNFI, Unigaz, Union County Children and Youth Services, Union Health System, Universidad Técnica del Norte Ecuador, Universitas Udayana Bali, University College London Hospitals, University Hospital Southampton, University of Chile, Uruguay’s National Vehicle System SUCIVE, US Center for Disease Control (CDC), the US telecom systems hack (Salt Typhoon) goes back a year earlier han they claimed, USA Credit Control, Valentin Hotels, Valiant Energy Solutions, Vanta, vBulletin, Vernon Milling, Versa Concerto, Victoria’s Secret, Virgin Islands Lottery, Virgin Media, VMware ESXi, Volkswagen Group, VS One Technology, Wadma Network, Wazuh Servers, Weis Markets, Weiser Memorial Hospital, West Lothian Council, Western Insurance Marketing Corporation, Williams Patent Crusher & Pulverizer, Windows 11, WiredBucks, WOLFBOX Level 2 EV Charger, WordPress Crawlomatic plugin, WordPress Motors theme, WordPress PayU CommercePro plugin, WordPress RomethemeKit for Elementor, WordPress Wishlist plugin, Worldline Yomani XR credit card readers, Xenoblade Chronicles X, YES24, York County, PA, Yuantong Express, Zhihu, Zimbra, Zlgoon, and Zoho ManageEngine Exchange Reporter have reported hacking or compromises this month. An interesting article published recently shows you how long it takes for companies to report that they’ve been compromised if they find out.

Cellcom, ChatGPT, Heroku, Kettering Health, MathWorks/MATLAB, Microsoft 365, NZ Internet (read that, it’s hilarious), Reddit, and SentinelOne have suffered from outages this month.

Last months updates broke Bitlocker on Windows 10, boot on Windows 11, Google Workspace Sync for Outlook, and Hyper-V VM.

Microsoft is killing off their Authenticator app shortly. Export your data and switch to another auth app.

Meta (Facebook) is requiring users to opt out of AI a second time, and will only respect it in certain areas.

In the UK, Apple is going to lose more than a billion dollars in revenue due to a comma. In the US, Epic Games has filed a motion alleging Apple violated the court’s injunction by blocking Fortnite’s App Store submission.

Google has released their block of Nextcloud after worldwide uproar.

“President Trump has enlisted Palantir Technologies to build a massive, cross-agency database tracking every American citizen. … Let that sink in. A private company—deciding whose politics are too dangerous to exist?”

CIA-created Palantir is now publicly threatening reporters after being given a $795 million contract to track and report on every American to the government. I don’t understand why we should be paying for this. Hackers compile this data for free!

No, the DMV did not text you. It’s a scam. It’s always a scam.

To literally nobodies surprise, the Pakistani government is disabling IDs and devices of people within protest areas using geofencing methods. Do you still want digital ID?

Now for the good news:

FFmpeg has added a WHIP Muxer for sub-second streaming latency.

The Swiss authoritarian bill that would have all but eliminated the last refuge for privacy has failed.

The Linux Foundation is launching an independent WordPress package manager.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is mild this month. The typical computer should see roughly 2 GB in updates today. Let’s get started.

Microsoft released 41 updates to address 69 vulnerabilities in .NET and Visual Studio, App Control for Business (WDAC), Microsoft AutoUpdate (MAU), Microsoft Edge, Microsoft Local Security Authority Server (lsasrv), Microsoft Office, Microsoft Office Excel, Microsoft Office Outlook, Microsoft Office PowerPoint, Microsoft Office SharePoint, Microsoft Office Word, Nuance Digital Engagement Platform, Power Automate, Remote Desktop Client, Visual Studio, WebDAV, Windows Common Log File System Driver, Windows Cryptographic Services, Windows DHCP Server, Windows DWM Core Library, Windows Hello, Windows Installer, Windows KDC Proxy Service (KPSSVC), Windows Kernel, Windows Local Security Authority (LSA), Windows Local Security Authority Subsystem Service (LSASS), Windows Media, Windows Netlogon, Windows Recovery Driver, Windows Remote Access Connection Manager, Windows Remote Desktop Services, Windows Routing and Remote Access Service (RRAS), Windows SDK, Windows Secure Boot, Windows Security App, Windows Shell, Windows SMB, Windows Standards-Based Storage Management Service, Windows Storage Management Provider, Windows Storage Port Driver, Windows Win32K – GRFX, and MSRT. This includes security updates. A reboot is required.

Apple released updates for iPadOS 17.7.8. This includes security updates. Use Apple Software Update to install the most current versions.

iPadOS 17.7.8 is a security updates. Use Settings, General, Software Update to install the most current update.

Google ChromeOS 136.0.7103.158 and ChromeOS LTS 132.0.6834.225 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Windows 11 is now stable and can be upgraded to if your hardware supports it. If not, switch to Linux (Mint is nice) or replace your computer.

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 25.6.1 adds support for new hardware, improves Vulkan support, improves compatibility and resolves several bugs. This is not a security update.
https://www.amd.com/en/support

Display Driver Uninstaller 18.1.1.4 improves hardware support and translations. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

UniFi Network Server 9.2.87 adds WAN SLA, improved DHCP management, a dozen resolved bugs and many interface and configuration improvements. This is not a security update.
https://www.ui.com/download/releases/network-server

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.79.119 is a security update.
https://brave.com/

Firefox 139.0.4 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 128.11.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 137.0.7151.68
https://www.google.com/chrome/

SeaMonkey 2.53.21 is a security update.
https://www.seamonkey-project.org/

Vivaldi 7.4.3684.46 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Spark 3.23.1.108665 adds Outlook Calendar import support and improves stability. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.23.1.108664 adds Outlook Calendar import support and improves stability. This is not a security update.
https://sparkmailapp.com/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 9.5.5 resolves over a dozen bugs. This should be treated as a security update.
https://anydesk.com/en/downloads

curl 8.14.1 resolves dozens of bugs. This should be treated as a security update.
https://curl.haxx.se/windows/

Discord June 3, 2025 updates libraries and resolves dozens of bugs. This is not a security update.
https://discord.com/download

Dropbox 225.4.4896 resolves several bugs. This is not a security update.
https://www.dropbox.com/

Google Drive 109.0 doesn’t provide a detailed change log so should be treated as a security update.
https://drive.google.com/start

jq 1.8.0 is a security update.
https://jqlang.github.io/jq/

MeshCentral 1.1.45 resolves several bugs. This is not a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.8.00.12555 adds dial-in details to invitations. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 31.0.5 resolves dozens of bugs. This should be treated as a security update.
https://nextcloud.com/

Rclone 1.69.3 is a security update.
https://rclone.org/

Signal 7.56.1 fixes a couple bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.44.2 improves sticker management. This is not a security update.
https://signal.org/android/apk/

Syncthing 1.29.7 resolves several bugs and paves the way for 2.0. This is not a security update.
https://syncthing.net/

Telegram 5.15.3 improves cosmetics. This is not a security update.
https://telegram.org/

Zoom 6.4.13.2309 and 6.4.12.64384 are security updates.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

Grayjay 319 improves playback controls, new engines, improves cosmetics and resolves several bugs. This is not a security update.
https://grayjay.app/index.html

KaraFun Player 3.7.5 doesn’t provide a change log so should be treated as a security update.
https://www.karafun.com/karaoke-windows/

Plex Desktop 1.109.0.329 improves stability. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.41.8.9834 resolves several bugs including performance and stability issues. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.84.1 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Nintendo Switch 20.1.1 improves stability and resolves several bugs. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 2025.522 changes some messaging and cosmetics. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2025.05.20 improves hardware compatibility and resolves several bugs. This is not a security update.
https://store.steampowered.com/news/app/593110

SteamOS 3.7.8 is the first stable release for non-Valve hardware. It’s a major update with dozens of fixes and newer hardware support. This is a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Acrobat DC 25.001.20531 and Adobe Acrobat DC 25.001.20529 (macOS) are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb25-57.html

Adobe Acrobat Reader DC 25.001.20531 and 25.001.20529 (macOS) are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb25-57.html

Adobe Acrobat 2024 24.001.30254 is a security update.
https://helpx.adobe.com/security/products/acrobat/apsb25-57.html

Adobe Acrobat 2020 20.005.30774 is a security update.
https://helpx.adobe.com/security/products/acrobat/apsb25-57.html

Adobe Acrobat Reader 2020 20.005.30774 is a security update.
https://helpx.adobe.com/security/products/acrobat/apsb25-57.html

Adobe Commerce 2.4.9-alpha1, 2.4.8-p1 for 2.4.8, 2.4.7-p6 for 2.4.7-p5 and earlier, 2.4.6-p11 for 2.4.6-p10 and earlier, 2.4.5-p13 for 2.4.5-p12 and earlier, 2.4.4-p14 for 2.4.4-p13 and earlier are security updates.
https://helpx.adobe.com/security/products/magento/apsb25-50.html

Adobe Commerce B2B 1.5.3-alpha1, 1.5.2-p1 for 1.5.2, 1.4.2-p6 for 1.4.2-p5 and earlier, 1.3.4-p13 for 1.3.4-p12 and earlier, 1.3.3-p14 for 1.3.3-p13 and earlier are security updates.
https://helpx.adobe.com/security/products/magento/apsb25-50.html

Magento Open Source 2.4.9-alpha1, 2.4.8-p1 for 2.4.8, 2.4.7-p6 for 2.4.7-p5 and earlier, 2.4.6-p11 for 2.4.6-p10 and earlier, 2.4.5-p13 for 2.4.5-p12 and earlier are security updates.
https://helpx.adobe.com/security/products/magento/apsb25-50.html

Adobe Commerce and Magento Open Source isolated patch for CVE-2025-47110 is a security update.
https://helpx.adobe.com/security/products/magento/apsb25-50.html

Adobe Experience Manager 2025.5 and 6.5.23 are security updates.
https://helpx.adobe.com/security/products/experience-manager/apsb25-48.html

Adobe InCopy 19.5.4 and 20.3 are security updates.
https://helpx.adobe.com/security/products/incopy/apsb25-41.html

Adobe InDesign ID19.5.4 and ID20.3 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb25-53.html

Adobe Substance 3D Painter 11.0.2 is a security update.
https://helpx.adobe.com/security/products/substance3d_painter/apsb25-58.html

Adobe Substance 3D Sampler 5.0.3 is a security update.
https://helpx.adobe.com/security/products/substance3d-sampler/apsb25-55.html

Audacity 3.7.4 resolves several bugs. This is not a security update.
https://www.audacityteam.org/download/

GIMP 3.0.4 resolves several bugs. This is not a security update.
https://www.gimp.org/

LibreOffice Fresh 25.2.4 resolves over 50 bugs. This is not a security update. This is beta software so should not be used by most users.
https://www.libreoffice.org/

Manager 25.6.8.2380 doesn’t provide a detailed change log so should be treated as a security update.
https://www.manager.io/

Nextcloud Desktop 3.16.5 resolves several bugs. This is not a security update.
https://nextcloud.com/

Paint.net 5.1.8 resolves several bugs. This is not a security update.
https://www.getpaint.net/

Operating System Updates

These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.

Tails 6.16 is a security update.
https://tails.net/install/download/index.en.html

Security Software Updates

One or more of these is likely to be of interest to most people.

.NET Runtime 9.0.5 is a security update.
https://dotnet.microsoft.com/en-us/download/dotnet

FRSTx64 2025.6.6 doesn’t provide a change log so should be treated as a security update.
https://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/

Gpg4win 4.4.1 is a security update.
https://www.gpg4win.org/download.html

MalwareBytes Desktop Security 5.3.2.195 resolves several bugs and improves stability. This is not a security update.
https://www.malwarebytes.org/antimalware/

ProtonVPN 4.1.13 improves stability and updates libraries. This is a security update.
https://github.com/ProtonVPN/win-app/releases/latest

RogueKiller 16.2.2 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Stinger 13.0.0.372 updates detections. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

VT-CLI 1.1.1 resolves a bug. This is not a security update.
https://github.com/VirusTotal/vt-cli/releases/latest

WebBrowserPassView 2.16 improves Chrome parsing. This is not a security update.
https://www.nirsoft.net/utils/web_browser_password.html

YARA 4.5.4 resolves several bugs. This should be treated as a security update.
https://github.com/VirusTotal/yara/

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 31.0.3 removes support for older hardware and resolves several bugs. This is not a security update.
https://obsproject.com/

SnagIt 25.2.0 updates libraries, adds support for Camtasia editing, improves step capture, and improves performance. This is a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.4.3 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

StreamFab 6.2.4.0 adds support for new encodings and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 3.0.1.8 improves hardware support, adds subtitle generation and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.80 resolves several bugs. This is not a security update.
https://1password.com/downloads/

AOMEI Partition Assistant 10.8.1 improves USB creation and improves stability. This is not a security update.
https://www.diskpart.com/

Beyond Compare 5.1.0.31016 resolves dozens of bugs. This is not a security update.
https://www.scootersoftware.com/download

Bitwarden 2025.5.1 updates dependencies and resolves several bugs. This is not a security update.
https://bitwarden.com/

CCleaner 6.36.11508 improves reliability. This is not a security update.
https://www.ccleaner.com/

Cygwin 3.6.3 resolves several bugs. This is not a security update.
https://cygwin.com/

DesktopOK 11.83 updates language engine. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.5.30.0 updates libraries and resolves several bugs. This is a security update. Note that dnGrep no longer includes the Everything libraries for native Everything support. You can download them and add them manually. 🙁
https://dngrep.github.io/

Everything 1.4.1.1027 is a security update.
https://www.voidtools.com/

Everything CLI 1.1.0.30 adds a new code-signing certificate. This is not a security update.
https://www.voidtools.com/

Everything Portable 1.4.1.1027 is a security update.
https://www.voidtools.com/

Everything Toolbar 1.5.5 improves reliability and resolves several bugs. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

ExplorerPatcher 22631.5335.68.2 resolves several bugs and improves compatibility. This is not a security update.
https://github.com/valinet/ExplorerPatcher/

Fing 3.9.0 integrates Desktop to Workspaces and resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

GoodSync 12.9.1 resolves several bugs. This should be treated as a security update.
https://www.goodsync.com/

grepWin 2.1.9 resolves a blank popup. This is not a security update.
https://github.com/stefankueng/grepWin/releases/latest

HWMonitor 1.58 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

Kingston SSD Manager 1.5.5.5 doesn’t provide a change log so should be treated as a security update.
https://www.kingston.com/us/support/technical/ssdmanager

LessMSI 2.7.3 resolves several bugs. This is not a security update.
https://lessmsi.activescott.com/

NTLite 2025.06.10460 resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

Open-Shell 4.4.196 adds ARM64 support. This is not a security update.
https://github.com/Open-Shell/Open-Shell-Menu

PointerStick 6.77 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.91.1 resolves dozens of bugs and improves stability. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

RoboForm 9.7.5 integrates new authentication platform and automatic update engine. This is not a security update.
https://www.roboform.com/

ScreenConnect 25.4 is not available yet. Soon…maybe? So the drama, dude. ConnectWise announced that they’ll be releasing this new version (still in Canary status only 4 days ago) to address a “security concern” with only two days notice. The ConnectWise code signing certificate is being revoked due to the way their previous client installations were designed (which, in their defense, is how Microsoft encouraged apps to operate a few years ago), and all builds prior to the bleeding edge version are going to be not merely “unsupported,” but likely not installable and clients may be randomly removed by antivirus, security and client management software, leaving the clients inaccessible for support. ConnectWise will not be patching previous versions. ConnectWise isn’t even answering many support questions. Among other things, this means that many server platforms will no longer be supported, custom and even vendor-published extensions that are not compatible with the new bleeding-edge build will simply not work – possibly for months, if ever – and these “incompatible” extensions may not simply be disabled within ScreenConnect itself if they don’t have the right version attribute, but might take down the ScreenConnect server completely until they’re manually removed (which was my own experience when upgrading to 24.x). The installation process for all clients will change. ConnectWise hasn’t published the new process yet and have not updated much of their documentation for over a year. To say users are in limbo is about as accurate a statement as any. In the last week they published then removed 25.4, and have removed the downloads for all current and previous builds, save one (25.3.4) which they say isn’t even going to be supported later today. Sigh.
https://www.screenconnect.com/download

SetUserFTA 2.5.2 improves compatibility with UCPD 4.2.
https://setuserfta.com/

SpaceSniffer 2.0.2.5 resolves a cosmetic bug. This is not a security update.
http://www.uderzo.it/main_products/space_sniffer/

Synergy 3.3.1 is the first really stable build of v3. This resolves several bugs and improves compatibility. This is not a security update.
https://symless.com/synergy/

Sysmon 1.3.7 for Linux improves compatibility. This is not a security update.
https://github.com/microsoft/SysmonForLinux/releases/tag/1.3.7.0

System Informer 3.2.25011.2103 is a redesign and relaunch of ProcessHacker, adding dozens of features and improved analysis and over 5,000 changes. This is a security update.
https://github.com/winsiderss/systeminformer/

WizFile 3.13 resolves a couple bugs. This is not a security update.
https://antibody-software.com/wizfile/

ZoomText 2025.2505.31.400 improves compatibility. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 2024.3.2.15 resolves several bugs. This is not a security update.
https://developer.android.com/studio

GDevelop 5.5.231 adds 3D physics-based vehicle behavior, Play and Jolt improvements, and resolves several bugs. This is not a security update.
https://gdevelop.io/download

GitHub Desktop 3.4.20 resolves a UNC mapping bug. This is not a security update.
https://desktop.github.com/

GitHub includefragment 6.4.0 updates libraries. This is not a security update.
https://github.github.io/include-fragment-element/

Go 1.24.4 is a security update.
https://go.dev/

Microsoft Visual C++ 2022 Redistributable 14.44.35208.0 is a security update.
https://learn.microsoft.com/en-us/cpp/windows/latest-supported-vc-redist

Node.js 20.19.2 is a security update.
https://nodejs.org/en/

Node.js 22.16.0 updates libraries. This is a security update.
https://nodejs.org/en/

Node.js 23.11.1 is a security update.
https://nodejs.org/en/

Node.js 24.2.0 removes HTTP/2 priority signaling and resolves several bugs.
https://nodejs.org/en/

Python 3.13.4 resolves several bugs. This is a security update.
https://www.python.org/downloads/macos/

SQLite 3.50.1 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Unreal Engine 5.6 improves performance and threading on modern hardware, camera, motion, mapping and other features. This is not a security update.
https://unrealengine.com/en-US/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.1.10 resolves several bugs and improves compatibility. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Invision Community 4.7.21 is a security update.
https://invisioncommunity.com/

Joomla 5.3.1 resolves over a dozen bugs. This is not a security update.
https://www.joomla.org/

phpList 3.6.16 resolves a reliability bug. This is not a security update.
https://www.phplist.org/

Sucuri Security 2.2 resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

My Sticky Bar 2.8.2 improves support flow. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

Theme My Login 7.1.12 resolves an extension bug. This is not a security update.
https://wordpress.org/extend/plugins/theme-my-login/

WP Cerber Security 9.6.9 adds RDAP support, improved settings, htaccess lockdown, and resolves several bugs. This is not a security update.
https://wpcerber.com/

WP Plugin Update Checker 5.6 improves compatibility. This is not a security update.
https://github.com/YahnisElsts/plugin-update-checker/releases/latest

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2025-03-11

Posted on March 11, 2025 by Shawn K. Hall

Happy St. Patrick’s Day, Folks!

Today is Patch Tuesday for March, 2025.

It’s as safe as it’s going to be to upgrade to Windows 11 24H2 or macOS 15/Sequoia.

There were 575+ major hacks, and over 300 application updates this month. Even so, it’s a relatively minor month, with about 2.5 GB of updates for most users.

This Month in Technology

1inch, 1X Internet, 365labs, Access2Jobs, 49,000 Access Management Systems AMS), ACDC Express, Acqua Development, ACTi Corporation, Adrenalina, Adval Tech, Advantage Home Construction Insurance, Aeonsparx, AJ Taylor Electrical Contractors, Alabama Ophthalmology Associates, Albion Online, Alf DaFrè, All4Labels, Allied Tenesis, AllTrust, Allworx, Ally Financial, Almost Famous Clothing, Amalgamated Sugar, Amerman Ginder, an American political action committee (PAC), Andover Family Medicine, Android, Angel One, Anne Arundel County, Apache Atlas, Apache EventMesh, Apache Ignite, Apache Pinot, Apache Tomcat, ¡appa!, Apparel Group, Apple Safari, Archie Cochrane Ford, Arcusin, Armed Forces of the Philippines, Artistic Family Dental, Ashlar-Vellum Cobalt, Aspire Rural Health System, Aurora Boardworks, Aurora Public Schools, Australian National University, Autodesk Navisworks, Autohaus Kießling, Autoschade Pippel, Avery Products Corporation, Aya Healthcare, Azamara Cruises, Baltimore Country Club, Bangladesh Navy, Bank of America, Barhite & Holzinger Inc, Bassford Remele PA, Bay Cove Human Services, Belgium State Security Service (VSSE), Bell Ambulance, BeniPlus, Benjamin Consulting Services, Benton Police Department, Berg Engineering Consultants, Berkeley Research Group, Best Collateral, Bethany Lutheran Church, Better Auth, BH Aircraft Company, Biagi Bros, Inc, Bikur Rofeh, Birch Medical LLC, Birdsall Muller LLC, Bis Industries, Black Basta ransomware gang, Black Star, BluAgent Technologies, Blue & Co, Blue Planet, Blue Shield of California, Bosowa Berlian Motor, Boys and Girls Clubs of the Tennessee Valley, British Virgin Islands London Office, Bulgaria’s Supreme Administrative Court, Bulldog Oilfield Services, Bulverde Glass, Burdick Painting, Burlington Hydro, Bybit, Cache Valley ENT, Cafe Zupas, Callico Distributors, Cardiology of Virginia, Carolina Arthritis Associates, Carruth Compliance Consulting, Castle Rock Construction, CCL Products India, CCT Technologies, CDS in Texas, Central District Health Department, Central New York Cardiology, Central Texas Pediatric Orthopedics, Charleston Area Medical Center, Chicago Doorways, Chicago Public Schools, Chimu Agropecuaria, Ciba Cobertura Medica, City of McKinney, City Of Roseburg, City of Tarrant, City of Van, Turkey, City Plumbing & Electric Supply, Claris Vision Holdings, Clawson Honda, Cleveland Municipal Court, Cocospy, Color Dating, Colorado River Adventures, Columbus Division of Fire, Comercializadora S&E Perú, Command & Conquer Generals: Zero Hour, Community Care Alliance, Commvault Webserver, Compound Solutions, Connekted, Consultants in Pain Medicine, Convert Solar, Couri Insurance Agency, CPS Solutions, Craft CMS, Crayfish, Cricadda, Cronos Europa, Crossroads Trading Company, Cyncly Company, Dacas Argentina, Daniels Homes, Datavant Group, Delta Electronics CNCSoft-G2, Delta Electronics ISPSoft, Detroit PBS, Digital Technology Co, Dinizulu Law Group, DISA Global Solutions, Django, DocsGPT, DOGE, Donna G Rogers, CPA, Doxbin, DRClaims FL, Dynamic Closures, DZL, EAC Consulting, Edesur Dominicana, Edimax IC-7100 IP, El Corte Inglés, Elastic Kibana, Elite Advanced Laser Corporation, Endless Mountains Health Systems, Engikam, Erie Management Group, Essex County OB/GYN Associates, Euranova, Ewald Consulting, Executive Agenda, EzyLegal, F&V Capital Management, Fairhaven Shipyard Companies, FANTIN group, Fickling & Company, Fillmore County Hospital, Financial Services of America, Finastra, Finck Cigar, First Defense Fire Protection, First Federal Savings & Loan, Flat Earth Sun, Moon and Zodiac App, Flightsim Studio, FlowiseAI, Fort St. John, Fortinet FortiWeb, Franklin County, Friendship House, FTECH R&D, G&M Direct Hire, G&S Electric LLC, Gala Tech, Garantex, Genea, Georgian Government, GitLab, Goldstein Law Group, Google Chrome, Google Chrome extension platform, Government of Brazil, Government of Pakistan, Grafitec, Greencastle-Antrim Senior High School, Greenwood Village South, Gregory & Appel Insurance, Grubhub, Grupo Baston Aerossol, GS Retail, Haggin Oaks Golf, Hall Law Group, Hammond Trucking & Excavation, Hancock Public School, Hanson Cold Storage, Hatolna, HCRG Care Group, HealthRev Partners, LLC, Heartland Health Center, Help Me Grow Yolo, Heritage South Credit Union, Hewlett Packard, Hewlett Packard Enterprise, Hickory Law, Hillcrest Convalescent Center, Inc, Hipshipper, Hirsch Enterphone MESH, Hisingstads Bleck, Holiday Comfort Inn, Hollandia Dairy, Home Assistant, HomeTeamNS, Houston Symphony, HP LaserJet Pro MFP 3301fdw, Humboldt Independent Practice Association, iCloud, Indian Ministry of Culture, INDIC Electronics, Indonesian Firefighting Services, Infini, InfoReach, Inland Empire Distribution Systems, Innovative Renal Care, Insight Partners, Insyst GmbH, Interjet, INTERLINK Health Services, Internet Corporation for Assigned Names and Numbers (ICANN), 86,000 Internet of Things devices, InternetWay, Inversiones Clinica Del Meta, InvestHK, Investing.com, IRS, Island Realty, IT-IQ Botswana, Italian Government, iTP Partners, Ivanti Connect Secure (ICS), Ivanti Endpoint Manager, Ivanti Policy Secure (IPS), Ivanti Secure Access Client (ISAC), Jaguar Land Rover, Jaime Schwartz MD, Jefferson Elementary School District, Jerue Companies, Jewish Child Care Association of New York, Jildor Shoes, Johnson’s Nursery, JP Express, Juniper Networks Session Smart Router (SSR) devices, Kelsey-Seybold Clinic, Kendall Auto Group, Kensington Glass Arts, Keystone Pacific Property Management, Kings River Union Elementary, Klesk Metal Stamping, Krisala Developer, Krispy Kreme, Kronick Moskovitz Tiedemann & Girard, Kuwaiti Government, Kyocera International, Inc, La Unión, Label Studio, LandAirSea, LANIT, Laravel, Las Cruces, Laurens School District 56, Law Diary, Leadership Strategies, Leading Edge Specialized Dentistry, Leantime, Leeds United, Legacy Professionals, Legal Aid Society of Salt Lake, Lexmark, Lietvaris, Ligentia, LINKGROUP, LINTEC & LINNHOFF Holdings, Linux Kernel, Lost & Found, Loyola University Maryland, LRT, Lucee, Lucent Health Solutions, Lumen Technologies, Luminus Management, M-1 Toolworks, Mac Jee, Mackay Memorial Hospital, Magnolia Manor, Mainline Information Systems, Makai, Manning Publications, Mars Hydro, Martin Energy Group Services, Matagorda County, Medefer, Medusind, Inc, Meet and Chill, Memorial Hospital and Manor, MercadoLibre, Mercury Paper Inc, Mercy Supply, Merkanti Bank, Meta E2 F, Metro Supply Chain Group, Metropolitan Borough of Gateshead, Microsoft Edge, Microsoft Sharepoint, Microsoft Windows Debugger, Microsoft Windows Installer Service, Microsoft Windows KDC Proxy, Microsoft’s partner website, Minaris Medical America, Ministry of Agriculture, Indonesia, Ministry of Defence, India, Ministry of Foreign Affairs, Ukraine, Ministry of Health of Palau, Minnesota Exteriors, Minnesota Orthodontics, Mission, Texas, Missouri Department of Conservation, MITRE Caldera, MNJ Technologies Direct, Monroe Transportation Services, Moodle, Mosley Glick O’Brien, MOVITOOLS MotionStudio, Moxa PT Switches, MTN Group, Muller Insurance, Mundelein Park & Recreation District, My New Jersey Dentist, mySCADA, Naphix, Naples Heritage Golf & Country Club, NASCAR, National AirVibrator, National Presto Industries, Navien, NBA, Neaton Auto Products Manufacturing, Nebraska Irrigation, Nelson & Townsend, CPA’s, Neopoly, Netcom-World, New Era Enterprises, Inc, New Era Life Insurance Companies, Newton & Associates, Next TI, NHS Tayside, NI DAQExpress, Nichino Ryokka Co, NioCorp Developments Ltd, Nippon Steel, Niva Bupa, North American Fire Hose, Northern Management, NorthWest Arkansas Community College, Novi Community School District, NTT Communications Corporation, Numotion, Nuna Baby Essentials, NVIDIA Container Toolkit, NVW Newco, LLC, Oberlin Cable Co-op, Obex Medical, Omni United, Ondunova, Openreso, OpenSSH, Orange Group Romania, Ottawa Family Physicians, Oxidized Web, PACE, Pacific Honda Company, Pacific Rehabilitation Centers, Paddington Bear, PAN-OS firewalls, Paragon Partition Manager, Parallels Desktop, Paratus, Park Place Pediatric Dentistry, payapps.com, Paysera, PDF-XChange Editor, Pebble, Pedensia Graphics Distribution, Penn-Harris-Madison, Perrin Performance, Persante Health Care, Pervedant, Peter Glenn Ski Sport, Petstop, Phoenix Rehabilitation and Nursing Center, Polish Space Agency (POLSA), Portland Schools, PostgreSQL, PostHog ClickHouse, Pound Road Medical Centre, Power Pages, PPS Services Group, Praxis Eins, Precision Orthopedics and Sports Medicine, Primary Health-SMMPP & U.S. HEALTHWORKS-SMMPP, Princeton Hydro, PS, Pump.fun X account, QBurst, Quality Home Health Care, Radco Industries, Rainbow District School Board, Ray Fogg Corporate Properties, Raymond Lifestyle, Raymond Limited, RCDPRO, Reading Cooperative Bank, Reddit, Regency Media, Rennes University, Renton School District, Restorix Health, RFA Decor, Riverdale Country School, Rivers Casino Philadelphia, a prominent Riyadh-based real estate and construction firm, RJ IT Solutions, ROCK SOLID Stabilization & Reclamation, Roswell Park Comprehensive Cancer Center, Rowe Tactical, Rubrik, Ruby on Rails, RxSight, RZD, S3-Proxy, Safe-Strap Company, Saracen Properties, Sault Ste. Marie Tribe of Chippewa Indians, Schmiedetechnik Plettenberg GmbH & Co, SCLARC, Scott County, Iowa, Scottish Qualifications Authority, Seabank Group, Semyonishna, Shetland Islands Council, Shields Facilities Maintenance, Shinn Fu Company of America, Siegel Group, Signal, SimonMed Imaging, Sittab, SMC Corporation of America, Soco Systems, Solar Data Systems, SolarWinds, Somnia, SonicWall firewalls, Sorare, Sorbonne University, South African Weather Service, SPEED Co, Spring Management OK, LLC, Spyic, Spyzie, SSK Plastic Surgery, St. Andrew’s Resources for Seniors System, Star Solution Services, State Bar of Texas, Stateside Seattle, Sterling BMW, Storenvy, Story Environmental, Stram Center for Integrative Medicine, StubHub, Sublette County, WY, Summit Home Health, Sunflower Medical Group, PA, Sunnking Sustainable Solutions, SushiCo, Synelixis Solutions, System Pavers, T J Machine & Tool, T-Mobile, TensorFlow, Thai Metal Aluminium, The Agency, The Grove at Valhalla Rehabilitation and Nursing Center, The Northwestern Illinois Association, The Pension Specialist, The Phoenix Rehabilitation and Nursing Center, The Siegel Group, The Smeg Group, The Townsley Law Firm, Therma Seal Insulation Systems, Thong Sia, Thornton Engineering, Tie Down Engineering, TikTok, Title 9 Sports, Inc, TOT Mobile, Town Counsel Law & Litigation, TP-Link routers, Transak, Transkid, Trident Maritime Systems LLC, Trimble SketchUp, Tugwell Pump & Supply, Turning Point of Central California, UFCW Local 135, Unimicron, United Community Health Center, US Coast Guard, US Dept Of Defense, US Dept of Housing and Urban Development (HUD), Utsunomiya Central Clinic, Vector Engineering, VectraRx Mail Pharmacy Services, Vela Server, Vermeer Mexico, Versant Technologies, Via Credit Union, Vicky Foods, Virginia Attorney General’s office, Vičiūnai Group, VMware ESX, Volt, Vue, Wayne County, Michigan, WDNA, Webex for BroadWorks, Weed Man Canada, Wendy Wu Tours, Whitman Hospital & Medical Clinics, Wilkinson Rogers, Williamsburg-James City Schools, Window World of Raleigh, WJCC Public Schools, Woman’s Athletic Club of Chicago, WordPress Chaty Pro plugin, WordPress Essential Addons for Elementor plugin, WordPress Jupiter X Core plugin, Workforce Group, Wylie Steel Fabricators, Xactus, Xen hypervisor, Xerox VersaLink C7025, XWiki, Yahoo, Yorke & Curtis, YouTube, Zacks Investment Research, Zimbra, ZITADEL, zkLend, and Zurich Insurance have reported hacking or compromises this month.

Flight Radar 24,Mastercard, Microsoft 365, Outlook.com, X/Twitter, and ZServers/XHost (yay!) have suffered from outages this month.

Last months updates broke AutoCAD 2022, Classic Outlook (again), Microsoft 365, Outlook Drag & Drop, Windows 11 SSH, and Windows Server 2025. Microsoft did release an out-of-cycle BIOS update to fix crash bugs in ASUS devices that has persisted since October.

In other news…

Apple’s AI sucks at transcription. And they’ve disabled end-to-end encryption for users in the UK.

Microsoft is never going to give up trying to get your files into OneDrive so they can use them to feed their AI. After this, their next step will be to “accidentally” turn it on in a month or two then apologize for it later. “Oops.” Microsoft has announced they’re killing off Skype in only a couple months. An ad-supported version of Microsoft Office/365 is currently in beta.

Microsoft accounts are being targeted by an insane “password spraying” attack over the last month or so. Due to the way their authentication works, where all it takes is your email address to send you an email or text with a passcode to log you in, it’s resulting in hundreds or even thousands of messages to Microsoft account holders with these one time pin numbers.

As Microsoft launches their new 24/7 screen capture and content collection service, Recall, they are removing the Location History feature in Windows.

Many websites are now “fingerprinting” your browser to uniquely identify “you” – and the net effect is that it actually allows malicious actors to impersonate you really well.

ReliaQuest has released information about how a “tsunami of phishing messages” followed by a massive deluge of spam in order to allow hackers the cover they needed to hijack their network. It’s a great birds-eye view of how this kind of thing works. The lesson here: Don’t simply ignore a massive uptick in phishing messages or spam.

A series of vulnerabilities exist in undocumented functions in the Espressif bluetooth chips used in over a billion devices.

YouTubers are being targeted with threats of copyright strikes if they don’t spread malware. And you thought the content was bad already.

Now for the good news:

The EFF has released a tool to detect cellular spying.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is relatively minor this month. The typical computer should see roughly 2.5 GB in updates today. Let’s get started.

Microsoft released 39 updates to address 72 vulnerabilities in .NET, ASP.NET Core & Visual Studio, Azure Agent Installer, Azure Arc, Azure CLI, Azure PromptFlow, Kernel Streaming WOW Thunk Service Driver, Microsoft Edge, Microsoft Local Security Authority Server (lsasrv), Microsoft Management Console, Microsoft Office, Microsoft Office Access, Microsoft Office Excel, Microsoft Office Word, Microsoft Streaming Service, Microsoft Windows, Remote Desktop Client, Synaptics, Inc., Visual Studio, Visual Studio Code, Windows Common Log File System Driver, Windows Cross Device Service, Windows DNS Server, Windows exFAT File System, Windows Fast FAT Driver, Windows File Explorer, Windows Hyper-V, Windows Kernel Memory, Windows Kernel-Mode Drivers, Windows MapUrlToZone, Windows Mark of the Web (MOTW), Windows NTFS, Windows NTLM, Windows Remote Desktop Services, Windows Routing and Remote Access Service (RRAS), Windows Subsystem for Linux, Windows Telephony Server, Windows USB Video Driver, Windows Win32 Kernel Subsystem, and MSRT. This includes security updates. A reboot is required.

Apple released updates for iOS 18.3.2, iPadOS 18.3.2, macOS Sequoia 15.3.2, Safari 18.3.1, tvOS 18.3.1, and visionOS 2.3.2. This includes security updates. Use Apple Software Update to install the most current versions.

iOS 18.3.2 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 18.3.2 are security updates. Use Settings, General, Software Update to install the most current update.

tvOS 18.3.1 is a security update. Use System, Software Update to install the most current version.

visionOS 2.3.2 is a security update. Use System, Software Update to install the most current version.

Google ChromeOS 133.0.6943.146 and Google ChromeOS LTS 126.0.6478.265 and 132.0.6834.211 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Windows 11 is now stable and can be upgraded to if your hardware supports it. If not, switch to Linux (Mint is nice) or replace your computer.

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 25.3.1 adds support for new hardware, feature and performance improvements, and resolves several bugs. This is not a security update.
https://www.amd.com/en/support

Crucial Storage Executive 11.01 does not provide a change log so should be treated as a security update.
https://www.crucial.com/support/storage-executive

Intel Driver and Support Assistant 25.1.9.6 is a security update.
https://www.intel.com/p/en_US/support/detect

VIISAN OfficeCam 7.2.7.0 doesn’t provide a change log so should be treated as a security update.
https://www.viisan.com/en/download/type1.html

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.76.74 is a security update.
https://brave.com/

Google Chrome 134.0.6998.88 is a security update.
https://www.google.com/chrome/

Firefox 136.0.1 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 128.8.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Vivaldi 7.1.3570.60 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

DavMail Gateway 6.3.0 improves compatibility and resolves several bugs. This is a security update.
https://davmail.sourceforge.net/

Spark 3.21.3.100475 resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.21.3.100474 resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 136.0.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 9.0.4 resolves several crash bugs. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 9.0.0 is a major update adding several new features and resolves compatibility and stability bugs. This is not a security update.
https://anydesk.com/en/downloads

curl 8.12.1 improves tests and resolves several bugs. This is not a security update.
https://curl.haxx.se/windows/

Dropbox 219.4.4463 resolves several stability bugs. This is not a security update.
https://www.dropbox.com/

FreeFileSync 14.2 resolves a crash bug. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 105.0 resolves several bugs. This is not a security update.
https://drive.google.com/start

Grocy Desktop 2.13.0 improves compatibility. This is not a security update.
https://github.com/grocy/grocy-desktop

MeshCentral 1.1.42 resolves several bugs. Note that this version has conflicts with Windows 7 and 2008R2 so do not enable update on these platforms. This is not a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.8.00.4966 enables AI by default, feature improvements and now consumes Skype links. Skype is dead. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 31.0.0 updates libraries and resolves dozens of bugs. This should be treated as a security update.
https://nextcloud.com/

Npcap 1.81 adds several new features and performance improvements. This is not a security update.
https://nmap.org/npcap/

Rclone 1.69.1 improves compatibility and resolves several bugs. This is not a security update.
https://rclone.org/

Signal 7.45.1 resolves several bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.36.2 adds chat history migration support. This is not a security update.
https://signal.org/android/apk/

Technitium DNS Server 13.4.3 improves reliability and performance. This is not a security update.
https://technitium.com/dns/

Telegram 5.12.3 resolves several bugs. This is not a security update.
https://telegram.org/

WinSCP 6.3.7 is a security update.
https://winscp.net/eng/index.php

Zoom 6.3.11.60501 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.15 improves clothing and other interactions. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.3.2 resolves several bugs. This should be treated as a security update.
https://www.bitwig.com/download/

darktable 5.0.1 resolves dozens of bugs. This is not a security update.
https://www.darktable.org/

Grayjay 285 improves sync and resolves several bugs. This is not a security update.
https://grayjay.app/index.html

iTunes 12.13.6.1 adds support for new iOS and iPadOS versions. This does not provide a detailed change log so should be treated as a security update.
https://www.apple.com/itunes/download/

KaraFun Player 3.5.3 improves offline mode and remote. This is not a security update.
https://www.karafun.com/karaoke-windows/

Plex Desktop 1.108.1.307 doesn’t provide a change log so should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.41.5.9522 improves ad detection feature, performance and resolves a bunch of bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.62.01 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

PS5 2025.225 improves performance and stability. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2025.03.10 resolves several bugs and improves stability. This is not a security update.
https://store.steampowered.com/news/app/593110

SteamOS SteamDeck Update 2025.03.04 is a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Illustrator 28.7.5 and 29.3 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb25-17.html

Adobe InDesign 19.5.3 and 20.2 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb25-19.html

Adobe Reader DC 25.001.20432, 24.001.30235 and 20.005.30763 are security updates.
https://get.adobe.com/reader

Adobe Substance 3D Designer 14.1.1 is a security update.
https://helpx.adobe.com/security/products/substance3d_designer/apsb25-22.html

Adobe Substance 3D Modeler 1.20.10 is a security update.
https://helpx.adobe.com/security/products/substance3d-modeler/apsb25-21.html

Adobe Substance 3D Painter 11.0 is a security update.
https://helpx.adobe.com/security/products/substance3d_painter/apsb25-18.html

Adobe Substance 3D Sampler 5.0 is a security update.
https://helpx.adobe.com/security/products/substance3d-sampler/apsb25-16.html

Aronium 1.45 resolves several bugs. This is not a security update.
https://aronium.com/

Artweaver 8.0.3 resolves several bugs. This is not a security update.
https://www.artweaver.de/

Audacity 3.7.2 resolves over a dozen bugs. This is not a security update.
https://www.audacityteam.org/download/

Calibre 7.26.0 resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Columns++ 1.2 improves parsing and adds additional escapes and search options. This is not a security update.
https://github.com/Coises/ColumnsPlusPlus

Kdenlive 24.12.3 resolves over a dozen bugs. This is not a security update.
https://kdenlive.org/

Kindle for PC 2.7.70978 doesn’t provide a change log so should be treated as a security update.
https://www.amazon.com/kindleforpc

LibreOffice 24.8.5 resolves over 60 bugs. This is a security update.
https://www.libreoffice.org/

LibreOffice Fresh 25.2.1 resolves over 75 bugs. This is a security update. The “Fresh” line is beta software and should be avoided in favor of the standard release.
https://www.libreoffice.org/

Manager 25.3.11.2151 improves inventory feature. This is not a security update.
https://www.manager.io/

Nextcloud Desktop 3.16.0 resolves dozens of bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.7.8 resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 5.1.5 adds JPEG XL support, updates libraries and resolves several bugs. This is not a security update.
https://www.getpaint.net/

PDF-XChange Editor 10.5.2.395 is a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

Operating System Updates

These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.

Tails 6.13 is a security update.
https://tails.net/install/download/index.en.html

Security Software Updates

One or more of these is likely to be of interest to most people.

IISCrypto 4.0.18 adds support for Windows Server 2025, improved logging, controls, profiles and resolves a couple bugs. This is not a security update.
https://www.nartac.com/Products/IISCrypto/Download

JShelter 0.20 resolves several bugs. This is not a security update.
https://jshelter.org/install/

KeePass 2.58 improves cosmetics, controls and adds several new import and export capabilities. This is not a security update.
https://keepass.info/

MalwareBytes Desktop Security 5.2.7.167 resolves several bugs. This is not a security update.
https://www.malwarebytes.org/antimalware/

OnionShare 2.6.3 updates libraries, resolves several bugs, improves compatibility, and log capability. This is not a security update.
https://onionshare.org/

OpenSSL 3.4.1 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN 3.5.3 improves stability. This is not a security update.
https://github.com/ProtonVPN/win-app/releases/latest

RogueKiller 16.1.1 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Stinger 13.0.0.300 adds new detections. This should be treated as a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 31.0.2 resolves several crash and stability bugs. This is not a security update.
https://obsproject.com/

SnagIt 25.0.0 updates libraries, adds “step capture”, smart redaction, removal of background noise and customizable sharing. Unfortunately, it also now attempts to install SQL Server Compact Edition which has been unsupported for over three years with outstanding security vulnerabilities. It also introduced a crash bug when exporting to PNG format. This is a security update. Kinda sad isn’t it: Fix a few vulnerabilities and intentionally add even more? Sigh.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.3.7 adds support for new hardware and improves stability. This is not a security update.
https://www.dvdfab.cn/download.htm

HandBrake 1.9.2 resolves a couple bugs. This is not a security update.
https://handbrake.fr/

StreamFab 6.2.2.5 resolves several bugs and improves compatibility. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 3.0.1.0 resolves several bugs and adds support for newer hardware. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 7.0.13 resolves a couple bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.64 resolves several bugs and improves default behaviors. This is not a security update.
https://1password.com/downloads/

balenaEtcher 2.1.0 adds support for new platforms and ability to disable analytics. This is not a security update.
https://etcher.balena.io/

Beyond Compare 5.0.6.30713 resolves several bugs. This is not a security update.
https://www.scootersoftware.com/download

BgInfo 4.33 doesn’t provide a change log so should be treated as a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/bginfo

Bitwarden 2025.2.1 improves user interface and adds 2FA for unrecognized devices. This is not a security update.
https://bitwarden.com/

Carbonite 6.5.1 improves compatibility. This is not a security update.
https://account.carbonite.com/

CCleaner 6.33.11465 resolves a couple bugs. This is not a security update.
https://www.ccleaner.com/

DesktopOK 11.63 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.4.2.0 resolves several bugs and improves console support. This is not a security update.
https://dngrep.github.io/

ESEDatabaseView 1.77 improves database reading. This is not a security update.
https://www.nirsoft.net/utils/ese_database_view.html

Fing 3.8.1 resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

GoodSync 12.8.5 resolves several bugs and improves compatibility. This is not a security update.
https://www.goodsync.com/

grepWin 2.1.8 resolves a couple bugs. This is not a security update.
https://github.com/stefankueng/grepWin/releases/latest

GSmartControl 2.0.2 resolves several bugs. This is not a security update.
https://gsmartcontrol.shaduri.dev/

Homedale 2.18 adds Thai language support. This is not a security update.
https://www.the-sz.com/products/homedale/

HWiNFO 8.22 adds support for newer hardware. This is not a security update.
https://www.hwinfo.com/download/

IsMyHdOK 4.21 improves hardware detection and compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

LessMSI 2.7.0 adds several new translations. This is not a security update.
https://lessmsi.activescott.com/

MultiMonitorTool 2.20 adds scaling capabilities. This is not a security update.
https://www.nirsoft.net/utils/multi_monitor_tool.html

NTLite 2025.03.10344 improves component selection and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 11.1.1003 improves triage, hash sets, and other improvements. This is not a security update.
https://www.osforensics.com/download.html

osquery 5.16.0 resolves a couple bugs and improves python, deb and rpm package support. This is not a security update.
https://osquery.io/downloads

PowerToys 0.89.0 adds transcoding to advanced paste, improves stability and resolves over a dozen bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

PSAppDeploy 4.0.6 resolves dozens of bugs. This is not a security update.
https://psappdeploytoolkit.com/

RoboForm 9.6.5 removes Security Center from installed app and resolves several bugs. This is not a security update.
https://www.roboform.com/

Starwind V2V Converter 9.623 improves compatibility and resolves several bugs. This is not a security update.
https://www.starwindsoftware.com/starwind-v2v-converter

TeamViewer 15.63.5 resolves several bugs and improves logging. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

Ventoy 1.1.05 improves compatibility and resolves a couple bugs. This is not a security update.
https://www.ventoy.net/en/index.html

WinGet 1.10.340 improves stability. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinRAR 7.10 resolves over a dozen bugs and improves MOTW propagation. This should be treated as a security update.
https://www.rarlab.com/

WizFile 3.11 improves threading, user interface and resolves several bugs. This is not a security update.
https://antibody-software.com/wizfile/

WizTree 4.25 improves CSV import and export and resolves a 32-bit compatibility bug. This is not a security update.
https://www.diskanalyzer.com/

XnConvert 1.104.0 adds command line file and list options. This is not a security update.
https://www.xnview.com/en/xnconvert/

ZoomText 2025.2502.63.400 adds ARM64 support and live text view. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

.NET Runtime 9.0.3 is a security update.
https://dotnet.microsoft.com/en-us/download/dotnet

Android Studio 2024.3.1.13 resolves dozens of bugs. This is not a security update.
https://developer.android.com/studio

GDevelop 5.5.226 updates libraries and resolves several bugs. This is not a security update.
https://gdevelop.io/download

GitHub Desktop 3.4.18 updates libraries and resolves several bugs. This is not a security update.
https://desktop.github.com/

Go 1.24.1 is a security update.
https://go.dev/

Godot 4.4 adds dozens of new features and improvements. This is not a security update.
https://godotengine.org/

Inno Setup 6.4.1 improves autocompletion and tooltips, and resolves several bugs. This is not a security update.
https://www.jrsoftware.org/isdl.php

Microsoft Visual C++ 2022 Redistributable 14.42.34438.0 is a security update.
https://learn.microsoft.com/en-us/cpp/windows/latest-supported-vc-redist

Node.js 18.20.7 resolves over a dozen bugs. This is not a security update.
https://nodejs.org/en/

Node.js 23.9.0 updates dependencies and resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

Rustup 1.28.1 resolves several bugs. This is not a security update.
https://www.rust-lang.org/

SQLite 3.49.1 resolves several bugs. This should be treated as a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.98.1 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Web Package Updates

These are likely to be of interest only to web developers.

Adminer 5.0.4 resolves dozens of bugs and improves various language integrations. This is not a security update.
https://www.adminer.org/en/

Grocy 4.4.2 improves Open Food Facts integration and resolves several bugs. This is not a security update.
https://github.com/grocy/grocy

HumHub 1.17.1 improves registration controls and resolves several bugs. This is not a security update.
https://www.humhub.com/en

Joomla 4.4.12 is a security update.
https://www.joomla.org/

Joomla 5.2.5 is a security update.
https://www.joomla.org/

Piwigo 15.4.0 resolves over a dozen bugs. This is not a security update.
https://piwigo.org/

bbPress 2.6.12 is a security update.
https://wordpress.org/extend/plugins/bbpress/

Conditional Widgets 3.3 updates documentation and improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/conditional-widgets/

Contact Form 7 6.0.5 resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.12 improves compatibility and resolves several bugs. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers

Redirection 5.5.2 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/redirection/

Sucuri Security 1.9.9 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

WP Cerber Security 9.6.7.3 resolves several bugs and improves performance. This is not a security update.
https://wpcerber.com/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

SaferPC

Free security and virus information

Tag Archives: LessMSI

Updates 2025-03-11

This Month in Technology

In other news…

Now for the good news:

Let’s Get Busy

Important Notes

Driver Updates

Browser Updates

Email Updates

Internet Updates

Media Updates

Game Updates

Office Updates

Operating System Updates

Security Software Updates

Capture Updates

Converter Updates

Education updates

Utility Updates

Developer Updates

Web Package Updates