Updates 2024-02-13

Happy Valentine’s Day, Folks!

Today is Patch Tuesday for February, 2024. There were 230+ major hacks and over 200 application updates this month. It’s a big month, with about 3.5 GB of updates for most users.

This Month in Technology

23andMe, Inc., Academy Mortgage Corporation, AHS Management Company, Inc., Air Methods, LLC, Alkem Laboratories, AlmerysAlpine Halo9 iLX-F509, American Meat Companies, Android TV and eCos set-top boxes, Android, Ann & Robert H. Lurie Children’s Hospital, AnyDesk, Apple iPhone, Apple Mac, Apple Vision Pro, Apple Watch, AppleTV, Ashford, Inc., Autel MaxiCharger AC Wallbox Commercial, Automotive Grade Linux, Azura Vascular Care, Azusa Unified School District, Bake ‘N Joy Foods, Inc., Bank of America, Bankers Life and Casualty Company, Blink Mobility, Bosch Thermostats, Brady Martz & Associates PC, 3 million Breathless toothbrushes, BrightStar Care, Buildkit, Burr & Forman LLP, Cadence Bank, California Public Employees Retirement System (CalPERS), Calvià City Council, Canterbury County Council, Carnegie Mellon University, Catholic Charities of the Archdiocese of Miami, Inc., ChargePoint Home Flex, a China-based financial MNC, Chuze Fitness, Citrix Netscaler, Cloudflare, CNO ACE, Coastal Hospice & Palliative Care, Coastal Plains Community Mental Health Mental Retardation Center, Colorado Ophthalmology Associates, PC, Columbus Life Insurance Company, Columbus Regional Healthcare System, Concentra Health Services, Concord Music Group, Inc., Connecticut College, Coppola Physical Therapy and Fitness Gyms, Covenant Care California, LLC, Coventry school, Crace Medical Centre, Des Moines Orthopaedic Surgeons, P.C., Dickinson County Health Department, Docker, Dover District Council, Dutch Ministry of Defence, ElGuindy, Meyer & Koegel, APC, Emmanuel College, EMPORIA EV Charger Level 2, EquiLend Holdings, Europcar, ExpressVPN, Family Healthcare Center, FedEx  Corporation Group Health Plan, Fidelity National Financial, First Financial Security, Inc.,
FortinetFortiOS SSL VPN, FortiSIEM, Fortra GoAnywhere MFT, Framework Computer, Freehold Township schools, Fullerton Joint Union High School District, Gamma Strategies, GEICO Corporation, Georgia’s Fulton County, 5,300+ GitLab instances, Glendale Unified School District, Global Affairs CanadaGlow, Goledo Finance, Google Bazel, Google Chrome, Hair Club for Men, Ltd., Inc., Halara, Hampton-Newport News Community Services Board, Hanmi Bank, Hathway, Health Alliance Medical Plans, Hewlett Packard Enterprise (HPE), Hipocrate Information System, HMG Healthcare, HopSkipDrive, HORNE, LLP, HP ink cartridges, Hyundai Motor Europe, Infosys McCamish Systems LLC, InHealth Technologies, INTEGRIS Health, Islamic Charity in Saudi Arabia, ITITAN Hosting, Ivanti Avalanche, Ivanti Connect Secure VPN, Ivanti Policy Secure Gateway, J.D. Gilmour, Jason’s Deli, 45,000+ Jenkins instances, JetBrains TeamCity, 65 job listing sites, JuiceBox 40 Smart EV Charging Station, Juniper, Kansas City Area Transportation Authority, Kansas State University, Keenan & Associates, Kern Regional Center, Kyocera printers, Liberty Hospital, Lineage, Inc, Livall, LoanDepot, Lutheran World Federation, Marywood Nursing Care Center, Mastodon, McCarthy & Holthus, LLP, Medical Eye Services, Inc., Mercedes-Benz, Microbe & Lab, Microsoft (again!), Microsoft SharePoint, Microsoft SQL servers, Multi-Fineline Electronix, Inc., Musick, Peeler & Garrett LLP, MyPertamina, Nabholz Construction Company Employee Welfare Health Plan, NASCO, National Advisors Holdings, Inc., Nautic Partners, LLC, Navvis & Company, LLC, Naz.API, Oak View Group, Omaha Firefighters Healthcare Trust, Orange Spain, Orange Unified School District, OrthoArkansas, PA Employee Benefit Plan, Ozys, Parkovy, Payoneer, Pennsylvania Emergency Dispatch, Perry Johnson & Associates, Inc., Phoenix Contact CHARX SEC-3100, Pioneer DMH-WT7600NEX, Planet Home Lending, Planeta, PLUS FIVE FIVE, Prestige Care, Inc., Radiant Capital, Rajasthan government (India), Rebekah Children’s Services, Ripple, Romanian Chamber of Deputies, Roundcube email server, Saint Anthony Hospital, Schneider Electric Sustainability, SendGrid, Singing River Gulfport, Singing River Health System, SinglePoint Outsourcing, Inc., Socket, Somesing, SonicWall next-generation firewalls, Sony XAV-AX5500, Spoutible, Summit Medical Group, PLLC, Sun Pain Management, LLC, Tesla Infotainment System, Tesla Modem, Tesla, TGI Direct, Thanet District Council, The Burton Corporation, TIC Hosting, Tietoevry, Tigo, Torchbyte, TP-Link Omada, Trello, Trezor, Trinity Universal Insurance Company, TRISTAR Insurance  Group, U.S. Renal Care, Inc., Ubiquiti Connect EV Station, UEFI Firmware, United Regional Health Care System, Unitronics PLCs, US Department of Health and Human Services, US GSA, US military, Ventura County Credit Union, Veolia North America, Verizon Communications Inc., Verizon, Viamedis, VMware vCenter Server, Walker Therapeutic & Educational Programs, Washington National Insurance Company, Webber Chiropractic Sports Clinic, Inc., Weslend Financial, Windows SmartScreen, WinStar, Wise Lending, and WPS Office have reported hacking or compromises this month.

Atlassian Jira, Microsoft Teams (twice), Parkovy, Tietoevry, and T-Mobile have suffered from outages this month.

Last months updates broke spellcheck in Microsoft Teams, the ability to install updates directly for Microsoft Teams without enabling Delivery Optimization, search in OutlookGoogle Pixel phones, Outlook.com via Outlook, Windows Sysprep, Windows updates.

There is a new “flaw” in the Windows 11 installer, which allows incompatible hardware to be installed to and activated. The Microsoft ms-appinstaller protocol handler is being exploited again to install malware.

The German railway system still uses MS-DOS and Windows 3.11 to manage their displays. Wrenches and toothbrushes are the latest victims in hijacking efforts. A new study demonstrates that the new trend of using AI to write code generates less secure code. SIM swapping is still quite popular.

Google is resuming their migration to Manifest V3, which will result in many content and ad filters failing, as well as many other browser extensions, in only 5 short months.

Amazon AWS is now charging for IPv4 addresses.

While unlikely to make a difference, CA is now suing streaming media services for violating the CCPA. The UN is pushing for a “cybercrime” treaty designed to criminalize all efforts to research malware, security, and vulnerability testing, even when the target of the research has requested it. The treaty would also allow international courts to be used to target anyone using encryption for private communication channels, such as PGP, Telegram, or Signal.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is a big one this month. The typical computer should see roughly 3.5 GB in updates today. Let’s get started.

Microsoft released updates to address 79 vulnerabilities in .NET, .NET Framework, ASP.NET, Azure Active Directory, Azure Connected Machine Agent, Azure DevOps, Azure File Sync, Azure Site Recovery, Azure Stack, Internet Connection Sharing (ICS), Internet Shortcut Files, Microsoft ActiveX, Microsoft Azure Kubernetes Service, Microsoft Defender for Endpoint, Microsoft Dynamics 365, Microsoft Dynamics, Microsoft Edge, Microsoft Entra Jira, Microsoft Exchange Server, Microsoft Message Queuing (MSMQ), Microsoft ODBC Driver, Microsoft Office OneNote, Microsoft Office Outlook, Microsoft Office Word, Microsoft Office, Microsoft Power Platform Connector, Microsoft SQL Data Provider, Microsoft Teams for Android, Microsoft WDAC ODBC Driver, Microsoft WDAC OLE DB provider for SQL, Microsoft Windows DNS, Microsoft Windows, Servicing Stack Update, Skype for Business, SQL Server, Trusted Compute Base, Visual Studio, Win32k, Windows AppX, Windows DNS Client, Windows DNS Server, Windows Hyper-V, Windows Kernel, Windows LDAP, Windows Network Address Translation (NAT), Windows OLE, Windows Pragmatic General Multicast (PGM), Windows Printing Service, Windows SmartScreen, Windows USB Generic Parent Driver, Windows USB Serial Driver, and MSRT (~ 2.0 GB). This includes security updates. A reboot is required.

Apple released updates for iOS 15.8.1, iOS 16.7.5, iOS 17.3, iOS 17.3.1, iPadOS 15.8.1, iPadOS 16.7.5, iPadOS 17.3, iPadOS 17.3.1, macOS 14.3, macOS 14.3.1, macOS Monterey 12.7.3, macOS Sonoma 14.3, macOS Ventura 13.6.4, Magic Keyboard Firmware 2.0.6, Safari 17.3.1, tvOS 17.3, visionOS 1.0.3, watchOS 10.3, and watchOS 10.3.1. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 15.8.1, 16.7.5 and 17.3.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.8.1, 16.7.5 and 17.3.1 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 10.3.1 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 17.3 is a security update. Use System, Software Update to install the most current version.

visionOS 1.0.3 is a security update. Use Settings, General, Software Update to install the most current version.

Google Chrome OS 120.0.6099.235 and 121.0.6167.159 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Sonoma (14.x) means that macOS Big Sur (11.x) and older are no longer supported. If you can not install at least macOS Monterey (12) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v23H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 24.1.1 adds support for new hardware, AFMF and upscaling improvements, and resolves several bugs. AMD Link is being discontinued with this version. This is not a security update.
https://www.amd.com/en/support

Display Driver Uninstaller 18.0.7.2 improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Wacom Driver 6.4.5-5 improves reliability. This is not a security update.
https://www.wacom.com/en-us/support/product-support/drivers

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.62.162 is a security update. Use Menu, Help, About to install the most current version.
https://brave.com/

Firefox 122.0.1 is a security update. Use Menu, Help, About to install the most current version.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 115.7.0 is a security update. Use Menu, Help, About to install the most current version.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 121.0.6167.160 is a security update. Use Menu, Help, About to install the most current version.
https://www.google.com/chrome/

Microsoft Edge 121.0.2277.113 is a security update. Use Menu, Help, About to install the most current version.
https://www.microsoft.com/en-us/edge/business/download

SeaMonkey 2.53.18.1 is a security update. Use Menu, Help, About to install the most current version.
https://www.seamonkey-project.org/

Vivaldi 6.5.3206.61 is a security update. Use Menu, Help, About to install the most current version.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

DavMail Gateway 6.2.1 is a security update.
https://davmail.sourceforge.net/

Spark 3.13.4.66391 adds deep link email sharing and resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Spark for macOS 3.13.4.66401 adds deep link email sharing and resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 115.7.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 8.0.8 is a security update.
https://anydesk.com/en/downloads

AnyDesk 8.0.0 for macOS is a security update.
https://anydesk.com/en/downloads

curl 8.6.0 resolves over 100 bugs. This is a security update.
https://curl.haxx.se/windows/

Dropbox 192.4.4605 resolves several bugs. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 205.0.0.11.228 is a security update.
https://www.messenger.com/download

FileZilla Client 3.66.5 is a security update.
https://filezilla-project.org/

FileZilla Server 1.8.1 is a security update.
https://filezilla-project.org/

Google Drive 86.0 resolves several bugs. This is not a security update.
https://drive.google.com/start

Grocy Desktop 2.9.0 updates library and resolves several bugs. This is not a security update.
https://github.com/grocy/grocy-desktop

MeshCentral 1.1.20 resolves over a dozen bugs. This is not a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.7.00.1864 adds several new features, including improved domain & email integration. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 28.0.2 resolves more than 100 bugs. This is a security update.

Homepage

Npcap 1.79 resolves a couple reliability bugs. This is not a security update.
https://nmap.org/npcap/

Omada Software Controller 5.13.23 resolves several bugs. This is not a security udpate.
https://www.tp-link.com/us/support/download/omada-software-controller/

Pocketnet-Core 0.22.1 resolves over a dozen bugs. This is not a security update.
https://pocketnet.app/

Pocketnet-GUI 0.8.77 resolves several bugs. This is not a security update.
https://pocketnet.app/

Rclone 1.65.2 updates libraries and resolves a couple important reliability bugs. This should be treated as a security update.
https://rclone.org/

Signal 6.47.0 makes several improvements to emoji and emoticon support. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 6.46.7 doesn’t have a detailed changelog so should be treated as a security update.
https://signal.org/android/apk/

Skype 8.110.0.218 improves stability and resolves several bugs. This is not a security update.
https://www.skype.com/

Syncthing 1.27.3 resolves several bugs and improves CLI complettion. This is not a security update.
https://syncthing.net/

Technitium DNS Server 12.0.1 moves to .NET 8, resolves more than a dozen bugs. This is a security update.
https://technitium.com/dns/

Telegram 4.14.15 resolves several bugs. This is not a security update.
https://telegram.org/

Telegram (Android) 10.6.1 resolves several bugs. This is not a security update.
https://telegram.org/apps

Tigase Server 8.3.1 resolves several bugs. This is not a security update.
https://github.com/tigase/tigase-server/releases/latest

Trillian 6.5.0.38 resolves a mute bug. This should be treated as a security update.
https://www.trillian.im/

Zoom 5.17.7.31859 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.1 improves tracking, compatibility, and resolves several bugs. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.1.3 adds a few new filters and modules, and resolves several bugs. This is not a security update.
https://www.bitwig.com/download/

Grayjay 233 resolves several crashes and improves stability. This is not a security update.
https://grayjay.app/index.html

Kodi 20.4 resolves dozens of bugs and improves compatibility. This is a security update.
https://kodi.tv/

MediaMonkey 5.2 resolves a cosmetic bug. This is not a security update.
https://www.mediamonkey.com/windows#download

Plex Desktop 1.86.1.4076 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.55.1.4084 updates libraries. This should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.40.0.7998 improves native tagging, music filtering, resolves several bugs. This should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

GDevelop 5.3.189 resolves over 20 bugs. This is not a security update.
https://gdevelop.io/download

Minecraft Server (Bedrock) 1.20.61.01 doesn’t provide a changelog so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

PS5 2024.206 is a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2024-01-13 resolves dozens of bugs. This is not a security update.
https://store.steampowered.com/news/app/593110

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 23.008.20533 is a security update.
https://get.adobe.com/reader

Adobe Commerce 2.4.6-p4, 2.4.5-p6, 2.4.4-p7, 2.4.3-ext-6, 2.4.2-ext-6, 2.4.1-ext-6, 2.4.0-ext-6, and 2.3.7-p4-ext-6 are security updates.
https://helpx.adobe.com/security/products/magento/apsb24-03.html

Magento Open Source 2.4.6-p4, 2.4.5-p6, and 2.4.4-p7 are security updates.
https://helpx.adobe.com/security/products/magento/apsb24-03.html

Adobe Substance 3D Painter 9.1.2 is a security update.
https://helpx.adobe.com/security/products/substance3d_painter/apsb24-04.html

Adobe Acrobat 23.008.20533 and 20.005.30574 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb24-07.html

Adobe FrameMaker Publishing Server 2022.2 is a security update.
https://helpx.adobe.com/security/products/framemaker-publishing-server/apsb24-10.html

Adobe Audition 24.2 and 23.6.4 are security updates.
https://helpx.adobe.com/security/products/audition/apsb24-11.html

Adobe Substance 3D Designer 13.1.1 iis a security update.
https://helpx.adobe.com/security/products/substance3d_designer/apsb24-13.html

Calibre 7.5.1 resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Columns++ 1.0.2 resolves a critical stability bug. This should be treated as a security update.
https://github.com/Coises/ColumnsPlusPlus

ImageMagick 7.1.1-28 updates libraries and resolves over a dozen bugs. This should be treated as a security update.
https://imagemagick.org/

Kindle for PC 2.3.70682 doesn’t provide a changelog so should be treated as a security update.
https://www.amazon.com/kindleforpc

LibreOffice Fresh 24.2.0 is the first version released with the new numbering scheme (year and month of release). This version resolves almost 300 bugs. This is a security update. The “Fresh” line is beta software and should be avoided by most people.
https://www.libreoffice.org/

Manager 24.2.13.1295 doesn’t have any detailed changes in the changelog for the most recent several versions over the last month, so this should be treated as a security update.
https://www.manager.io/

Nextcloud Desktop 3.11.1 updates libraries and resolves over a dozen bugs. This is a security update.

Homepage

Notepad++ 8.6.2 resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

PDF-XChange Editor 10.2.1.385 resolves over a dozen bugs. This is not a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

QuickBooks Pro 2022 20231120-R13_63 doesn’t provide a detailed changelog so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

QuickBooks Pro 2023 20231107-R9_121 doesn’t provide a detailed changelog so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

uniCenta oPOS 5.0 doesn’t provide a detailed changelog so should be treated as a security update.
https://unicenta.com/

Security Software Updates

One or more of these is likely to be of interest to most people.

Gpg4win 4.3.0 resolves dozens of bugs. This is a security update.
https://www.gpg4win.org/download.html

Java 8u401 is a security update.
https://www.java.com/en/download/manual.jsp

KeePass 2.56 improves integration and search feature, resolves more than a dozen bugs. This is not a security update.
https://keepass.info/

MalwareBytes Anti-Malware 4.6.8.311 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.malwarebytes.org/antimalware/

Microsoft Edge Policy 2024.02.06 adds blocklist for extension install types and the ability to preserve Manifest v2 availability. This is not a security update.
https://github.com/MicrosoftDocs/Edge-Enterprise/blob/public/edgeenterprise/microsoft-edge-policies.md

OpenSSL 3.2.1 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN 3.3.5 improves stability. This is not a security update.
https://protonvpn.com/download

RogueKiller 15.14.0 is a security update.
https://www.adlice.com/download/roguekiller/

Stinger 13.0.0.64 is a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

Symantec Norton Removal Tool 20240206 improves removal. This is not a security update.
https://support.norton.com/sp/en/us/home/current/solutions/v60392881

Tails 5.22 updates libraries, included apps, and resolves several bugs. This is a security update.
https://tails.net/install/download/index.en.html

YARA 4.5.0 resolves a dozen bugs. This is not a security update.
https://github.com/VirusTotal/yara/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.1.1 adds support for new encodings and resolves a couple bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

HandBrake 1.7.3 resolves over a dozen bugs. This is not a security update.
https://handbrake.fr/

MakeMKV 1.17.6 improves tolerance and resolves several bugs. This is not a security update.
https://www.makemkv.com/download/

StreamFab 6.1.6.5 improves compatibility and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 2.0.1.1 adds support for denoise, improves upscaling performance, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.24 resolves several bugs, improves idle behavior, and improves integration. This should be treated as a security update.
https://1password.com/downloads/mac/
https://1password.com/downloads/windows/

Agent Ransack 2022.3420 resolves several bugs. This is not a security update.

Agent Ransack – Download

AMD Ryzen Master 2.13.0.2908 adds support for new hardware and improves Curve Optimizer settings. This is not a security update.
https://www.amd.com/en/technologies/ryzen-master

AOMEI Partition Assistant 10.3.0 adds Bitlocker support and resolves several bugs. This is not a security update.
https://www.diskpart.com/

Autoruns 14.11 fixes a parameter parsing bug. This is a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/autoruns

balenaEtcher 1.18.11 resolves a couple bugs. This is not a security update.
https://etcher.balena.io/

Bitwarden 2024.2.0 improves self-hosting controls, TOTP capture and import. This is not a security update.
https://bitwarden.com/

CCleaner 6.20.10897 improves cleaning, adds bookmark backup removal, and improves compatibility. This is not a security update.
https://www.ccleaner.com/

CPU-Z Installer 2.09 adds support for new hardware and adds the ability to benchmark a single coreset/cluster. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

Cygwin 3.5.0 drops support for older Windows versions, adds several new raw maps, API calls, and mixer control. This is not a security update.
https://cygwin.com/

Dell Command Update 5.2.0 improves controls and notifications. This is not a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

DesktopOK 11.16 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.1.7.0 improves PDF search, date-time display, adds mutliple custom editor support, and resolves several bugs. This is not a security update.
https://dngrep.github.io/

email-oauth2-proxy 2024-01-20 adds support for GWS Cloud Service accounts, and resolves several bugs. This is a security update.
https://github.com/simonrob/email-oauth2-proxy

Everything CLI 1.1.0.27 improves performance and adds x64 build. This is not a security update.
https://www.voidtools.com/

Fido 1.55 improves compatibility. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3420 resolves several bugs. This is not a security update.

FileLocator Pro – Download

Fing 3.6.1 resolves a couple bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

Go 1.22.0 adds several new language constructs, improved auditing and performance, adds go/version, and enhanced routing. This is not a security update.
https://go.dev/

GoodSync 12.5.5 improves compatibility and resolves more than a dozen bugs. This is not a security update.
https://www.goodsync.com/

Hiren’s BootCD PE 1.0.4 adds several new utilities, updates libraries and applications, adds hundreds of new drives, and resolves several bugs. This is a security update.

Download

Homedale 2.10 adds support for MU-MIMO detection. This is not a security update.
https://www.the-sz.com/products/homedale/

HWiNFO 7.72 doesn’t provide a detailed changelog so should be treated as a security update.

Download HWiNFO

Inkchip WIC 1.17 doesn’t provide a changelog so should be treated as a security update.
https://inkchip.net/wic/

Kingston SSD Manager 1.5.3.6 doesn’t provide a changelog so should be treated as a security update.
https://www.kingston.com/us/support/technical/ssdmanager

MS Printer Metadata Troubleshooter 1.0.0.1 is a security update.
https://support.microsoft.com/en-us/topic/kb5034510-microsoft-printer-metadata-troubleshooter-tool-december-2023-b3197f24-fd25-430d-96d2-70f2044ce6a1

OSForensics 11.0.1004 improves compatibility and resolves dozens of bugs. This is not a security update.
https://www.osforensics.com/download.html

osquery 5.11.0 updates libraries, adds support for new tables, and resolves several bugs. This is a security update.
https://osquery.io/downloads

PowerToys 0.78.0 updates libraries and resolves several bugs. This is a security update.
https://github.com/microsoft/PowerToys/releases/latest

Rufus 4.4 updates libraries and resolves several bugs. This is not a security update.
https://rufus.ie/en_US/

ScreenConnect 23.9.7.8804 is a security update.
https://www.connectwise.com/software/control/download

SearchMyFiles 3.24 resolves several bugs. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

Sysmon 15.12 resolves several stability and reliability bugs. This is a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

Ventoy 1.0.97 adds support for FreeBSD 14.0 and resolves several bugs. This is not a security update.
https://www.ventoy.net/en/index.html

WhyNotWin11 2.6.0.0 improves detection and resolves several bugs. This is not a security update.
https://github.com/rcmaehl/WhyNotWin11

WizTree 4.18 improves scan performance and filter behavior, improves Copy/Cut/Delete, progress bar and resolves several bugs. This is not a security update.
https://www.diskanalyzer.com/

ZoomIt 8.01 adds DemoType (autotyping) support and fixes a crash. This is not a security update.
https://learn.microsoft.com/en-us/sysinternals/downloads/zoomit

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 2023.1.1.28 resolves several bugs. This is not a security update.
https://developer.android.com/studio

GitHub Desktop 3.3.8 resolves more than a dozen bugs. This is not a security update.
https://desktop.github.com/

Microsoft Visual C++ 2022 Redistributable 14.38.33135.0 doesn’t provide a changelog so should be treated as a security update.
https://learn.microsoft.com/en-us/cpp/windows/latest-supported-vc-redist

MySQL ConnectorNet 8.3.0 is a security update.
https://dev.mysql.com/downloads/connector/net/

MySQL Server 8.0.36 is a security update.
https://dev.mysql.com/downloads/installer/

Node.js 21.6.1 updates libraries and resolves several bugs. This should be treated as a security update.
https://nodejs.org/en/

Node.js 20.11.0 is a security update.
https://nodejs.org/en/

Python 3.12.2 is a security update.
https://www.python.org/downloads/windows/

SQLite 3.45.1 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.86.1 resolves dozens of bugs. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.38 improves BOM detection and resolves several bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

PPSSPP 1.17.1 improves compatibility and resolves several bugs. This is not a security update.
https://www.ppsspp.org/download/

VirtualBox 7.0.14 resolves more than a dozen bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Coppermine Gallery 1.6.26 improves compatibility. This is not a security update.
https://coppermine-gallery.net/

Grocy 4.1.0 updates library and resolves several bugs. This is not a security update.
https://github.com/grocy/grocy

HumHub 1.15.3 resolves several bugs. This is not a security update.

Home

Invision Community 4.7.15 resolves over 50 bugs. This is a security update.
https://invisioncommunity.com/

MailEnable 10.48 resolves more than a dozen bugs. This is not a security update.
https://www.mailenable.com/

ownCloud Client 5.2.1.13040 resolves several bugs. This is not a security update.
https://owncloud.com/desktop-app/

Piwigo 14.2.0 resolves several bugs. This is not a security update.
https://piwigo.org/

WordPress 6.4.3 is a security update.
https://wordpress.org/

Akismet 5.3.1 resolves several bugs and improves reliability. This is not a security update.
https://wordpress.org/extend/plugins/akismet/

BuddyPress 12.2.0 is a minor security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 5.8.7 improves compatibility and resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.8.1 resolves a couple bugs. This is not a security update.

Duplicator – WordPress Migration & Backup Plugin

Email Log 2.4.9 adds controls to limit actions. This is a security update.
https://wordpress.org/extend/plugins/email-log/

Redirection 5.4.2 removes Geo IP and resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/redirection/

Social Post Feed 4.2.2 is a security update.
https://wordpress.org/extend/plugins/custom-facebook-feed/

Sucuri Security 1.8.41 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

WooCommerce 8.5.2 resolves a dozen bugs. This is a security update.
https://wordpress.org/extend/plugins/woocommerce/

WordPress Importer 0.8.2 updates documentation and improves workflow. This is not a security update.
https://wordpress.org/extend/plugins/wordpress-importer/

WP Cerber Security 9.6.2 updates design, adds event insights, and resolves a couple bugs. This is not a security update.
https://wpcerber.com/

WP Mail SMTP 3.11.1 resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/wp-mail-smtp/

WPBakery 7.4 adds built-in SEO toolkit and improves social media controls. This is not a security update.
https://wpbakery.com/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

Updates 2023-10-10

Welcome back, Folks!

Today is Patch Tuesday for October, 2023.

This month brings a new version of macOS, version 14.0/Sonoma, an impending new Windows 11 build, and several very high profile vulnerabilities in shared code that affect thousands of applications. Vendors for some will not even discover that they’re vulnerable until their applications are used in mass hacks. The next few months are going to be ugly as this plays out.

There were 153 major hacks, and over 200 application updates this month. It’s an insane month, with about 6 GB of updates for most users.

This Month in Technology

23andMe, Accusoft ImageGear, Activision, Actors Fund Home, Air Canada, Airbus, Allegheny County, Pennsylvania, Amazon, Amerita, Android, ApexSMS, Apple iOS/iPadOS (several times), Aretis Health LLC, Arkansas Total Care, Inc., Arm chips, Arm Mali GPU drivers, Asian National Power Grid, Atlassian Confluence Data Center and Server, Atrium Health, Auckland Transport, Bermuda, Bienville Orthopaedic Specialists LLC, Bluegrass Care Navigators, BORN Ontario, Bureau van Dijk, Caesars Entertainment, Cascade Family Dental, Catawba Valley Medical Center, Charlotte Radiology, ChildFund New Zealand, Cisco Catalyst SD-WAN Manager, Cisco Emergency Responder, Cisco IOS, Citrix NetScaler, City of Dallas, Texas, Clover Health LLC, CoinEx, Colombian Government, Community First Medical Center, Cyberport, D-Link DAP-X1860 WiFi 6 range extenders, dBforums, Delta Dental of California, District of Columbia Board of Elections, DLP Central Carolina Medical Center, Donald Trump Jr.’s X account, Dr. Patty DiBlasio, PC, Duke University Health System, ECU Health, Erlanger Health, Inc., Exim, FirstHealth, Flagstar Bank, Florida’s First Judicial Circuit Court, Founder Project Rx, Inc., GitLab, glibc ld.so – standard in all modern Linux flavors, GNOME, Google Chrome (again!), all modern GPUs, Health First, Inc., Horse Isle, hotels, booking sites, and travel agencies, hundreds of known apps using Electron due to the webp vulnerability, HWL Ebsworth, indeed.com, India’s National Logistics Portal-Marine, Indiana University Health, International Criminal Court (ICC), JetBrains’ TeamCity, Johnson Controls, Jordan Valley Community Health Center, Juniper SRX firewalls and EX switches, Just Kids Dental, LabCorp, Lakeland Community College,
Lakeview Clinic, libwebp, Linux GNU C library (Looney Tunables), Lone Star Alliance, Inc, Lyca Mobile, MalindoAir, McLaren Health Care, MGM Resorts, Microsoft AI-powered Bing Chat, Microsoft AI, Microsoft Edge, Microsoft Outlook, Microsoft SharePoint Server, Microsoft Skype, Microsoft SQL Servers, Microsoft Teams, Microsoft XboxMission Health System, Mixin Network, MNGI Digestive Health, Mosaic Mental Health, Motel One Group, MOVEit (again), Mt. Graham Regional Medical Center, Nansen, National Student Clearinghouse, Navvis & Company, LLC, New Hanover Regional Medical Center, NorthStar Anesthesia, Northwestern Polytechnical University, Novant Health, NTT Docomo, Nuance Communications, Oak Valley Hospital District, Omnicell Specialty Pharmacy Services (OSPS), Openfire messaging servers, ORBCOMM, OrthoAlaska, LLC, Parkers Chapel School District, PaySystem.tech, Peach State Health Plan, Pharm-Pacc Corporation, Physical Therapy, PLLC, Physicians Insurance Company, Physio Logic Chiropractic, Piilopuoti, Pizza Hut Australia, Prospect Medical Holdings, Inc., Qualcomm GPU and Compute DSP drivers, Retool, Rock County Health Department, Rollbar, Roseman University of Health Sciences, Ryders Health Management LLC, See Tickets, Skype for Desktop, Sony Interactive Entertainment, South Florida Behavioral Health Network, Sutter North Surgery Center, T-Mobile, multiple telecommunication service providers in the Middle East, Western Europe, and South Asia, Temple University Health System, Inc., Texas Medical Insurance Company, Texas Medical Liability Trust, The Hospital for Sick Children (SickKids), TissuPath, TorchServe AI, TransUnion, Trend Micro Apex One, UNC Health, United Healthcare Services, Inc. Single Affiliated Covered Entity, United Kingdom’s Greater Manchester Police, VA Dept. of Medical Assistance Services, Vitalik Buterin’s X account, Wake Radiology Diagnostic Imaging, WakeMed Health & Hospitals, Walmart, Inc. Associates Health and Welfare Plan, WebP, Wellstar Health System, Windows 11 Theme system, 17,000 WordPress sites, and WS_FTP Servers have reportedly been hacked or compromised this month.

Auckland Transport, Bing Chat AI, Caesars, Canadian airports, Discord, Lyca Mobile, MGM, Microsoft Teams, and the Royal Family website have suffered from outages this month.

Google, Amazon, and CloudFlare have been seeing record-breaking numbers of attacks using a weakness in the HTTP/2 protocol.

Last months updates broke BitLocker, Excel, faith in Windows (forcing an incompatible application), Outlook (twice), and USB printing.

The Magecart skimming malware is now abusing online store error pages.

The UK passed the “Online Safety Bill” which, among other things, grants government (and those with an ax to grind – like LOVEINT) mandated access to all private internet conversations.

Microsoft is pushing Edge and Bing in violation of their own policies. If they treated themselves with the same rules they treat others, then microsoft.com would be blocked for distributing the BGAUpsell crapware.

PayPal is finally making news for their complicity in the latest rash of invoice scams. Netcraft is playing it off as PayPal being the victim, but they can hardly be held blameless. They’ve been supporting these scams for years.

Google will be retiring the Basic HTML view in January. Half of the ISPs in Tuolumne County will suffer as a result. Google is also now pushing Passkeys as their default authentication platform, meaning that instead of knowledge of your password, all it will take for new logins to your Google account is possession of one of your devices.

Apple iPhone 12 violates French health laws for exceeding allowable EF radiation. Apple is planning to release an update to reduce the emissions in order to comply.

Even staff in military and defense organizations can’t be trusted to use good passwords.

CISA has been slapped yet again for their government-sponsored censorship. Maybe this time it will take?

Now for the good news:

Google is now (finally!) treating unauthenticated Microsoft 365 email as spam (it is).

Google announced they’ll be supporting all Chromebooks for 10 years — twice as long as was promised before. This should massively reduce e-waste.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is huge this month. The typical computer should see roughly 6 GB in updates today. Let’s get started.

Microsoft released updates to address 105 vulnerabilities in Active Directory Domain Services, Azure, Azure DevOps, Azure Real Time Operating System, Azure SDK, Client Server Run-time Subsystem (CSRSS), HTTP/2, Microsoft Common Data Model SDK, Microsoft Dynamics, Microsoft Edge (Chromium-based), Microsoft Exchange Server, Microsoft Graphics Component, Microsoft Office, Microsoft QUIC, Microsoft WDAC OLE DB provider for SQL, Microsoft Windows Media Foundation, Microsoft Windows Search Component, Microsoft WordPad, Skype for Business, SQL Server, Windows Active Template Library, Windows AllJoyn API, Windows Client/Server Runtime Subsystem, Windows Common Log File System Driver, Windows Container Manager Service, Windows Deployment Services, Windows DHCP Server, Windows Error Reporting, Windows HTML Platform, Windows IIS, Windows IKE Extension, Windows Kernel, Windows Layer 2 Tunneling Protocol, Windows Mark of the Web (MOTW), Windows Message Queuing, Windows Microsoft DirectMusic, Windows Mixed Reality Developer Tools, Windows Named Pipe File System, Windows NT OS Kernel, Windows Power Management Service, Windows RDP, Windows Remote Procedure Call, Windows Resilient File System (ReFS), Windows Runtime C++ Template Library, Windows Setup Files Cleanup, Windows TCP/IP, Windows TPM, Windows Virtual Trusted Platform Module, Windows Win32K, and MSRT (~ 1.5 GB). This includes security updates. A reboot is required.

Apple released updates for macOS Sonoma 14.0, macOS Ventura 13.6, macOS Monterey 12.7, iOS 16.7.1, iOS 17.0.3, iPadOS 16.7.1, iPadOS 17.0.3, Safari 16.6.1, Safari 17.0, tvOS 17.0, watchOS 10.0.2, watchOS 9.6.3, Xcode 15.0, Apple Service Utility, and Pro Video Formats 2.2.7. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 16.7.1 and 17.0.3 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 16.7.1 and 17.0.3 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 9.6.3 and 10.0.2 are security updates. Use the Watch app on your iPhone to install the most current version.

tvOS 17.0 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 117.0.5938.157 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Sonoma (14.x) means that macOS Big Sur (11.x) and older are no longer supported. If you can not install at least macOS Monterey (12) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v22H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 23.9.3 improves game support and resolves several bugs. This is not a security update.
https://www.amd.com/en/support

Display Driver Uninstaller 18.0.6.8 resolves several bugs. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

DS4Windows 3.2.17 resolves several bugs. This is not a security update.
https://github.com/Ryochan7/DS4Windows/releases/latest

Garmin Express 7.18.3 doesn’t provide a changelog so should be treated as a security update.
https://www.garmin.com/en-US/software/express/

GnuCash 5.4 resolves dozens of bugs. This is not a security update.
https://www.gnucash.org/

TP-Link Archer AX73 v2.0 230829 is a security update.
https://www.tp-link.com/us/support/download/archer-ax73/v2.0/#Firmware

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.58.137 is a security update.
https://brave.com/

Firefox 118.0.2 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 115.3.1 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 109.0.5414.168 is a security update.
https://www.google.com/chrome/

Google Chrome 117.0.5938.149 is a security update.
https://www.google.com/chrome/

Microsoft Edge 117.0.2045.60 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Microsoft Edge WebView2 117.0.2045.60 is a security update.
https://developer.microsoft.com/en-us/microsoft-edge/webview2/

SeaMonkey 2.53.17.1 is a security update.
https://www.seamonkey-project.org/

Vivaldi 6.2.3105.58 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Spark 3.9.0.57590 adds group invitations and resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.9.0.57684 adds group invitations and resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 115.3.1 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 8.0.3 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 7.2.2 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

curl 8.3.0 resolves dozens of bugs. This is a security update.
https://curl.haxx.se/windows/

Dropbox 184.4.6543 is a security update.
https://www.dropbox.com/

Facebook Messenger 196.0.0.4.210 is a security update.
https://www.messenger.com/download

Google Drive 82.0 increases nags and resolves several bugs. This is not a security update.
https://drive.google.com/start

Microsoft Teams 1.6.00.27573 improves app controls. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 27.1.2 is a security update.
https://nextcloud.com/

Npcap 1.77 resolves several bugs. This is not a security update.
https://nmap.org/npcap/

Omada Software Controller 5.12.7 adds IDS/IPS, support for newer hardware, and resolves dozens of bugs. This is a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Signal 6.33.0 adds the ability to edit messages. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 6.35.3 improves performance. This is not a security update.
https://signal.org/android/apk/

Skype 8.104.0.207 improves performance. This is not a security update.
https://www.skype.com/

Syncthing 1.25.0 resolves several bugs. This is not a security update.
https://syncthing.net/

Telegram 4.10.3 improves stability. This is not a security update.
https://telegram.org/

Telegram (Android) 10.1.0 doesn’t provide a changelog so should be treated as a security update.
https://telegram.org/apps

Trillian 6.5.0.33 is a security update.
https://www.trillian.im/

WinSCP 6.1.2 is a security update.
https://winscp.net/eng/index.php

Zoom 5.16.2.22807 is a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

Bitwig Studio 5.0.9 improves DAWproject mapping, export, and import, and resolves a couple bugs. This is not a security update.
https://www.bitwig.com/download/

iTunes 12.12.10.1 is a security update.
https://www.apple.com/itunes/download/

Plex Desktop 1.79.1.3984 is a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.48.1.3982 resolves a stability bug. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.32.6.7557 resolves a dozen bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

GameMaker Studio 2023.8.2.106 resolves several bugs. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.2.175 adds collaboration for Cloud projects, simplified variable syntax. This is not a security update.
https://gdevelop.io/download

Minecraft Server (Bedrock) 1.20.32.03 doesn’t provide a changelog so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Minecraft Server (Java) 1.20.2 doesn’t provide a changelog so should be treated as a security update.
https://www.minecraft.net/en-us/download/server

PlayStation PS4 11.00 resolves several bugs. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps4/system-software/

PlayStation PS5 2023.101 adds Dolby Atmos support, increased M.2 SSD size support, and resolves several bugs. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

SteamOS SteamDeck Update 2023-10-06 resolves several bugs. This is not a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Bridge 13.0.4 and 14.0.0 are security updates.
https://helpx.adobe.com/security/products/bridge/apsb23-49.html

Adobe Commerce and Magento Open Source 2.4.7-beta2, 2.4.6-p3, 2.4.5-p5, 2.4.4-p6, 2.4.3-ext-5, 2.4.2-ext-5, 2.4.1-ext-5, 2.4.0-ext-5, and 2.3.7-p4-ext-5 are security updates.
https://helpx.adobe.com/security/products/magento/apsb23-50.html

Adobe Photoshop 24.7.1 and 25.0 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb23-51.html

Blender 3.6.4 is a security update.
https://www.blender.org/download/

Calibre 6.28.1 resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Ghostscript 10.02.0 is a security update.
https://www.ghostscript.com/releases/gsdnld.html

IcoFX 3.9 resolves several bugs, adds support for PNG, and adds several export options. This is a security update.
https://icofx.ro/

ImageMagick 7.1.1-20 is a security update.
https://imagemagick.org/

Kdenlive 23.08.1 resolves several bugs. This is not a security update.
https://kdenlive.org/

Kindle for PC 2.0.70350 doesn’t provide a changelog so should be treated as a security update.
https://www.amazon.com/kindleforpc

LibreOffice 7.5.7 is a security update.
https://www.libreoffice.org/

LibreOffice Fresh 7.6.2 is a security update. The Fresh line is beta software so most people should avoid it in favor of the Still line.
https://www.libreoffice.org/

Nextcloud Desktop 3.10.0 resolves dozens of bugs. This is a security update.
https://nextcloud.com/

Paint.net 5.0.10 is a security update.
https://www.getpaint.net/

PDF-XChange Editor 10.1.1.381 is a security update.
https://www.tracker-software.com/product/pdf-xchange-editor

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 2.8.0 adds support for parsing ESE and SRUM databases, new rules and support for aggregated reports. This is not a security update.
https://github.com/countercept/chainsaw

JShelter 0.16 resolves several bugs. This is not a security update.
https://jshelter.org/install/

LibreJS 7.21.1 is a security update.
https://www.gnu.org/software/librejs/

MalwareBytes Anti-Malware 4.6.4 resolves several bugs. This is not a security update.
https://www.malwarebytes.org/antimalware/

MalwareBytes Anti-Malware Mac 4.21 adds support for macOS Sonoma. This is not a security update.
https://www.malwarebytes.com/mac/

OpenSSL 3.1.3 is a security update.
https://www.openssl.org/source/

ProtonVPN (macOS) 3.3.3 resolves a couple bugs and improves user interface. This is not a security update.
https://protonvpn.com/download

RogueKiller 15.12.1 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Stinger 12.2.0.659 adds support for new detections. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

uBlock Origin 1.52.2 resolves several bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

elementary OS 7.1 improves privacy, color blindness, and keyboard controls, personalization, sideloading, and adds new hardware support. This is not a security update.
https://elementary.io/

Tails 5.18 is a security update.
https://tails.boum.org/install/dvd/index.en.html

Capture Updates

These are unlikely to be of interest to most people.

ScreenToGif 2.39 resolves several bugs and improves compatibility. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

SnagIt 24.0.0 is a major update adding ability to combine videos, click animations, capture pinning, and updated stamps. This is not a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

MakeMKV 1.17.5 improves reliability and resolves a couple bugs. This is not a security update.
https://www.makemkv.com/download/

StreamFab 6.1.4.4 improves compatibility. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero (macOS) 6.0.27 adds macOS Sonoma compatibility and resolves a couple bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.16 resolves dozens of bugs. This is not a security update.
https://1password.com/downloads/

Bitwarden 2023.9.1 is a security update.
https://bitwarden.com/

CCleaner 6.16.10662 changes Health Check interface. This is not a security update.
https://www.ccleaner.com/

CPU-Z Installer 2.08 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

DesktopOK 11.12 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.0.115.0 adds support for Filters, including *.ignore files, and resolves several bugs. This is a security update.
https://dngrep.github.io/

Fing 3.4.1 is a security update.
https://www.fing.com/products/fing-desktop-download-windows
https://www.fing.com/products/fing-desktop-download-mac

FullEventLogView 1.80 adds dark background and resolves a bug with export data. This is not a security update.
https://www.nirsoft.net/utils/full_event_log_view.html

Go 1.21.3 is a security update.
https://go.dev/

GoodSync 12.4.1 resolves several bugs. This is not a security update.
https://www.goodsync.com/

GUIPropView 1.26 adds a WindowsCount action and the ability to run as administrator. This is not a security update.
https://www.nirsoft.net/utils/gui_prop_view.html

Homedale 2.08 adds stream count column and per-monitor DPI support. This is not a security update.
https://www.the-sz.com/products/homedale/

IsMyHdOK 3.93 improves performance. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

Mac Migration Assistant 2.4.4.0 adds support for macOS Sonoma. This is not a security update.
https://support.apple.com/en-us/HT204087

MobileFileSearch 1.47 resolves a couple bugs. This is not a security update.
https://www.nirsoft.net/utils/mobile_device_file_search.html

NConvert 7.161 doesn’t provide a changelog so should be treated as a security update.
https://www.xnview.com/en/nconvert/

NTLite 2023.9.9419 adds new controls. This is not a security update.
https://www.ntlite.com/download/

OSFMount 3.1.1002 resolves network access issues. This is not a security update.
https://www.osforensics.com/tools/mount-disk-images.html

OSForensics 10.0.1016 resolves several bugs. This is a security update.
https://www.osforensics.com/download.html

AOMEI Partition Assistant 10.2.0 adds duplicate file finder and resolves several bugs. This is not a security update.
https://www.diskpart.com/

PointerStick 6.33 adds keyboard shortcuts. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.74.1 resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

ProcDump 2.2 for Linux resolves memory leaks and adds support for Azure Linux. This is not a security update.
https://sysinternals.com/

ProcessMonitor 3.96 is a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/procmon

ScreenConnect 23.7.8.8676 is a security update.
https://www.connectwise.com/software/control/download

SDelete 2.05 improves command line reliability and output. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sdelete

Sysmon 1.3.1 for Linux resolves a hash bug. This is not a security update.
https://github.com/Sysinternals/SysmonForLinux/releases/

TaskSchedulerView 1.74 adds dark background support and resolves a data export bug. This is not a security update.
https://www.nirsoft.net/utils/task_scheduler_view.html

Unity 2023.1.16 adds several new features and resolves dozens of bugs. Unity also announced that they’re changing their licensing model to charge developers for each installation, even pirated installations, so this is going to end up causing a major upset in the industry, then reversed course after the outcry. This is not a security update.
https://unity3d.com/get-unity/download/archive

USBDeview 3.07 adds toolbar sorting and resolves a data export bug. This is not a security update.
https://www.nirsoft.net/utils/usb_devices_view.html

Ventoy 1.0.96 resolves several bugs. This is not a security update.
https://www.ventoy.net/en/index.html

WinGet 1.6.2771 resolves a couple bugs. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinRAR 6.24 is a security update.
https://www.rarlab.com/

WinScan2PDF 8.67 resolves a couple bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

Developer Updates

These are unlikely to be of interest to most people.

.NET Runtime 7.0.12 is a security update.
https://dotnet.microsoft.com/en-us/download/dotnet

AutoHotkey 2.0.10 resolves several bugs. This is not a security update.
https://www.autohotkey.com/download/

Android Studio 2022.3.1.2 resolves several bugs. This is not a security update.
https://developer.android.com/studio

GitHub Desktop 3.3.3 is a security update.
https://desktop.github.com/

Godot 4.1.2 resolves over a hundred bugs. This is not a security update.
https://godotengine.org/

Node.js 18.18.1 is a security update.
https://nodejs.org/en/

Node.js 20.8.0 is a security update.
https://nodejs.org/en/

Python 3.12.0 is a security update.
https://www.python.org/downloads/windows/

SQLite 3.43.2 resolves a couple bugs. This is not a security update.
https://www.sqlite.org/download.html

TortoiseGit 2.15.0 updates libraries and resolves several bugs. This is a security update.
https://tortoisegit.org/

Visual Studio Code 1.83 adds several new features. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

PPSSPP 1.16.5 resolves a crash bug. This is not a security update.
https://www.ppsspp.org/download/

Web Package Updates

These are likely to be of interest only to web developers.

Drupal 9.5.11 is a security update.
https://drupal.org/download

HumHub 1.14.4 resolves a dozen bugs. This is not a security update.
https://www.humhub.com/en

OpenCart 4.0.2.3 updates libraries and resolves dozens of bugs. This is not a security update.
https://www.opencart.com/

ownCloud Server 10.13.2 resolves several bugs. This is not a security update.
https://owncloud.com/download-server/

phpList 3.6.14 is a security update.
https://www.phplist.org/

Akismet 5.3 improves compatibility and resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/akismet/

Antispam Bee 2.11.5 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/antispam-bee/

Contact Form 7 5.8.1 improves validation, email templates, and adds action hooks. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.6 fixes a couple bugs. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers

W3 Total Cache 2.5.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/w3-total-cache/

WooCommerce 8.1.1 resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/woocommerce/

WPBakery 7.1 resolves several bugs. This is not a security update.
https://wpbakery.com/

WP Cerber Security 9.5.8 resolves a couple bugs and adds support for auditing password resets. This is not a security update.
https://wpcerber.com/

WPtouch 4.3.54 resolves several bugs and improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/wptouch/

That’s all for now folks. Keep it clean out there. 😉

Happy Anniversary, my Love. I will miss you more than you’ll ever know.

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2023-06-13

Welcome back, Folks!

Today is Patch Tuesday for June, 2023.

This month brings critical security updates for all supported Apple products, the end of all non-LTS versions of Windows 10 other than v22H2 (if you aren’t sure whether you are using LTS, you aren’t), and new security updates for every browser every single week since last month. That’s on top of the 180+ major hacks, and over 220 application updates this month.

Prepare yourself, there will be about 4.5 GB of updates for most devices this month.

This Month in Technology

Accellion FTA, Aer Lingus, airBaltic, Albany ENT & Allergy Services, Alvaria, Inc., Android, 60,000 malicious Android apps, millions of Android-based devices have been  pre-infected, Apria Healthcare, ASAS Health, Ascension Providence, Ascension Seton, Asian Health Services, Atomic Wallet, Augusta, Georgia, Bank Syariah Indonesia, Barracuda Email Security Gateway appliances (since 2022), BBC, Bluefield University, Boots, Brightline, Inc., Brightly Software SchoolDude, British Airways, Builders FirstSource Flex Plan, Bukkit and CurseForge Minecraft mods, Burton Snowboards, Capita, Casepoint (used by SEC, DOD and Pentagon), Celer, Children’s Health Insurance Program, Chilean army, Cisco Secure Client (formerly AnyConnect), Cisco Small Business Series Switches, City of Dallas, Texas, Clarke County Hospital, Credit Control Corp, Culbertson Memorial Hospital, D-Link D-View 8, Discord, Earlens Corporation, thousands of eCommerce sites, Eisai, Elgon Information Systems, Emby, Enzo Biochem, Essen Medical Associates, Extreme Networks, Farmalink, Fertility Specialists Medical Group, FortiOS, Franklin Templeton Canada, Franklin, Tennessee, GIGABYTE PCs, GitLab, Globalcaja, Goodwill Industries of Greater New York and Northern NJ, Inc., Google Chrome, over 30 Chrome extensions, Grant Regional Health Center, Great Expressions Dental Centers, Harvard Pilgrim Health Care, Hillsborough County Supervisors of Elections Office, Honda, HWL Ebsworth, Idaho Falls Community Hospital, Illinois Department of Healthcare and Family Services, Illinois Department of Human Services, IMA Financial Group, Inc., Infotel JSC, Intellihartx, iOS, Iowa Department of Health and Human Services (again!), iPhones, iSpace, Inc., Israeli organizations, ITx Companies, JD Group, Jimbos Protocol, Kaspersky, KeePass, Kiddowares Parental Control – Kids Place, L3Harris, Lacroix, Lancaster Orthopedic Group, Latitude Financial Services, Lehigh Valley Health Network, Luxottica, macOS, Madhya Pradesh Power Management Co, Managed Care of North America (MCNA) Dental, Marshall Information Services, LLC dba Primary Solutions, Martinique, MedInform, Inc., MEO, Mercy Home, Mercy Medical Center – Clinton, Inc., Microsoft Azure, Microsoft Exchange, Microsoft Visual Studio, Minnesota Department of Education, Mountain View Hospital, Mountain View RediCare, MOVEit Transfer (since 2021 – and more coming almost daily), MSI, NextGen Healthcare, North Shore Medical Labs, Norton Healthcare, Nova Scotia government, Onix Group LLC, Orbiter Finance, Oyate Health Center, Pacific Union College, thousands of PaperCut servers, PartsSource, Inc. Welfare Benefit Plan, Pearland ISD, Texas, PharMerica, Amazon PillPack, Pioneer Valley Ophthalmic Consultants, PC, 30 Portuguese financial institutions, R&B Corporation of Virginia, the defunct RaidForums, RenderDoc, RentoMojo, ReportLab, Rheinmetall AG, Ruckus Wireless Admin, Sacramento County, Salesforce ‘Ghost Sites’, Samsung mobile devices, Scandinavian Airlines, ScanSource, Seoul National University Hospital, Sesame, Inc., Shell Recharge, SimpleTire, Skolkovo Foundation, Solutran, South and Southeast Asia government, aviation, and telecommunication organizations, South East Regional Organised Crime Unit, Sparta Community Hospital District, State of Illinois, Strava, Swiss government, Synergy Hematology Oncology Medical Associates, T. Rowe Price Group, Inc., Tennessee Orthopaedic Clinics, The CSC Generation Holdings, Inc. Health and Welfare Plan, The Philadelphia Inquirer, Topcon Healthcare Solutions, Inc., Tornado Cash, Toyota Motor Corporation (over a decade), TP-Link routers, Trezor T Hardware Wallet, Tron, UI Community Home Care, Uintah Basin Healthcare, United Healthcare Services, Inc. Single Affiliated Covered Entity, University of Manchester, University of Rochester, Uranium Finance, “critical US infrastructure” since 2021, US communications infrastructure, US Department of Transportation, US government contractor ABB, Valley Orthopaedic Specialists, Vascular Center of Intervention, VMware Aria Operations for Networks, VMware ESXi servers, WhizComms, Windows 10 WordPad, Windows Internet Information Services, Windows XP activation, WordPress Advanced Custom Fields, WordPress Beautiful Cookie Consent Banner, WordPress Essential Addons for Elementor, WordPress Gravity Forms, WordPress Jetpack, Zacks Investment Research, Zellis, Zimbra, and Zyxel have reportedly been hacked or compromised this month.

ASUS routers, ChatGPT, GitHub, Microsoft 365, Microsoft Azure Portal, Microsoft OneDrive, Microsoft’s Outlook.com, Reddit, and ScanSource have suffered from outages this month.

Last months updates broke HP Office Jet printers, Surface laptop cameras, VPN performance, Windows Defender, Windows file copy, and Windows printing and audio playback.

30% of all internet traffic is malicious. Is anyone really surprised? Facebook has actually made progress against phishing by suing a registrar used primarily to create phishing domains.  The .zip TLD was released this month and it is already being used for malicious purposesMozilla was pushing full-screen ads for their VPN service. Google Ads remain one of the most common sources for malware.

Amazon has been fined $30 million over Ring and Alexa privacy violations. Microsoft will pay a mere $20 million for illegally collecting data on children in violation of COPPA. Meta (Facebook) has been fined $1.3 billion for moving data to US servers.

Call of Duty players can be identified on any platform violating their privacy. The American Hospital Association (AHA) doesn’t respect your privacy. People are sacrificing their tech, crypto and privacy in hopes of 15 minutes of fame.

Ford is so concerned about their spontaneous combustion issues, they’re advising owners of their vehicles to park outside.

While I’m not a big fan of Reddit, their new API rates and policies are going to be the death of many subreddits, since they’ll result in less automation by the good guys while not reducing the automation used by the bad guys.

Apple introduced Rapid Security Response (fast patching for security issues) last month, and have already caused panic among users.

The FDA has once-again expanded its own authority in what can only result in shrinking the food supply.

As expected, OAuth provides a fancy new “watering hole” target for attackers.

Now for the good news:

Microsoft will be killing Cortana later this year.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is huge this month. The typical computer should see roughly 4.5 GB in updates today. Let’s get started.

Windows 10 and Windows 11 versions 22H2 should now be installed on all supported hardware as all prior non-LTS versions are no longer supported.

Microsoft released updates to address 1,378 bugs including 73 vulnerabilities in .NET and Visual Studio, .NET Core, .NET Framework, ASP .NET, Azure DevOps, Microsoft Dynamics, Microsoft Edge (Chromium-based), Microsoft Exchange Server, Microsoft Office, Microsoft Office Excel, Microsoft Office OneNote, Microsoft Office Outlook, Microsoft Office SharePoint, Microsoft Power Apps, Microsoft Printer Drivers, Microsoft WDAC OLE DB provider for SQL, Microsoft Windows Codecs Library, NuGet Client, Remote Desktop Client, Role: DNS Server, SysInternals, Visual Studio, Visual Studio Code, Windows Authentication Methods, Windows Bus Filter Driver, Windows Cloud Files Mini Filter Driver, Windows Collaborative Translation Framework, Windows Container Manager Service, Windows CryptoAPI, Windows DHCP Server, Windows Filtering, Windows GDI, Windows Geolocation Service, Windows Group Policy, Windows Hello, Windows Hyper-V, Windows Installer, Windows iSCSI, Windows Kernel, Windows NTFS, Windows ODBC Driver, Windows OLE, Windows PGM, Windows Remote Procedure Call Runtime, Windows Resilient File System (ReFS), Windows Server Service, Windows SMB, Windows TPM Device Driver, Windows Win32K, and MSRT (~2 GB). This includes security updates. A reboot is required.

Apple released updates for macOS Ventura 13.4, macOS Monterey 12.6.6, macOS Big Sur 11.7.7, iOS 15.7.6, iOS 16.5, iPadOS 15.7.6, iPadOS 16.5, tvOS 16.5, watchOS 9.5.1, Safari 16.5, iTunes 12.12.9 for Windows, and Pro Video Formats 2.2.5. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 15.7.6 and 16.5 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.7.6 and 16.5 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 9.5.1 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 16.5 is a security update. Use System, Software Update to install the most current version.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Ventura (13.x) means that macOS Catalina (10.15) and older are no longer supported. If you can not install at least macOS Big Sur (11) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v22H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 23.5.2 resolves several bugs and improves reliability. This is not a security update.
https://www.amd.com/en/support

Crucial Storage Executive 9.01 doesn’t provide a changelog so should be treated as a security update.
https://www.crucial.com/support/storage-executive

Display Driver Uninstaller 18.0.6.4 adds command-line arguments to optimize removal and improves cleanup for AMD. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

DS4Windows 3.2.11 resolves several bugs and updates libraries. This should be treated as a security update.
https://github.com/Ryochan7/DS4Windows/releases/latest

Garmin Express 7.17.2 doesn’t provide a changelog so should be treated as a security update.
https://www.garmin.com/en-US/software/express/

Wacom Driver 6.4.2-3 adds training, help bar tips, and resolves several bugs. This is not a security update.
https://www.wacom.com/en-us/support/product-support/drivers

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.52.122 is a security update.
https://brave.com/

Google Chrome 114.0.5735.133 is a security update.
https://www.google.com/chrome/

Google Chrome 109.0.5414.149 (for Windows Server 2012) is a security update.
https://www.google.com/chrome/

Microsoft Edge 113.0.1774.57 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Microsoft Edge 109.0.1518.100 (for Windows Server 2012) is a security update.
https://www.microsoft.com/en-us/edge/business/download

Microsoft Edge WebView2 114.0.1823.43 is a security update.
https://developer.microsoft.com/en-us/microsoft-edge/webview2/

Firefox 114.0.1 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Vivaldi 6.1.3035.75 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

ProtonMail (Android) 3.0.15 is a security update.
https://proton.me/mail/download

Spark 3.6.0.50235 improves stability and resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.6.0.50236 improves stability and resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 102.12.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 7.1.12 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 7.1.0 adds User Account support. This is not a security update.
https://anydesk.com/en/downloads

curl 8.1.2 resolves dozens of bugs. This is not a security update.
https://curl.haxx.se/windows/

DNSDataView 1.71 resolves a cosmetic bug. This is not a security update.
https://www.nirsoft.net/utils/dns_records_viewer.html

Dropbox 175.4.5569 resolves several bugs. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 188.0.11.164 is a security update.
https://www.messenger.com/download

FileZilla Server 1.7.2 resolves several bugs and improves Let’s Encrypt compatibility. This is not a security update.
https://filezilla-project.org/

FreeFileSync 12.3 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 76.0 is a security update.
https://drive.google.com/start

IPInfoOffline 1.70 adds support for additional IP location databases. This is not a security update.
https://www.nirsoft.net/utils/ip_country_info_offline.html

MailEnable 10.46 is a security update.
https://www.mailenable.com/

MeshCentral 2.11.7849.20089 resolves several bugs and updates libraries. This is not a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.6.00.12455 resolves several bugs and adds lobby bypass, virtual front desk, and QR code sign-in for hotdesks. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 27.0 is a major update, with updates to libraries and resolves several bugs. This is a security update.
https://nextcloud.com/

Nmap 7.94 resolves several bugs, updates libraries, and adds dozens of new signatures. This is a security update.
https://nmap.org/

Pocketnet-GUI 0.8.49 improves IPFS support, adds option to purge local storage, and resolves several bugs. This is not a security update.
https://pocketnet.app/

PushBullet 501 doesn’t provide a changelog so should be treated as a security update.
https://www.pushbullet.com/

Signal 6.20.2 improves stability and adds scroll-to for mentions. This is not a security update.
https://signal.org/download/windows/
https://signal.org/download/macos/

Signal (Android) 6.22.8 doesn’t provide a changelog so should be treated as a security update.
https://signal.org/android/apk/

Skype 8.97.0.204 resolves several bugs. This is not a security update.
https://www.skype.com/

Syncthing 1.23.5 resolves several bugs. This is not a security update.
https://syncthing.net/

Technitium DNS Server 11.2 adds support for SVCB and HTTPS and unknown record types, PTR App, Weighted Round Robin App and resolves several bugs. This is not a security update.
https://technitium.com/dns/

Telegram 4.8.3 resolves several bugs. This is not a security update.
https://telegram.org/

USB Drive Log 1.12 adds sort-by. This is not a security update.
https://www.nirsoft.net/utils/usb_drive_log.html

Wget 1.21.4 is a security update.
https://eternallybored.org/misc/wget/

WinSCP 6.1 is a major update. This adds many features and resolves several bugs. This is a security update.
https://winscp.net/eng/index.php

Zoom 5.14.11.17466 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 3.0.9 resolves several bugs and improves tracking and interaction controls. This is not a security update.
https://en.3tene.com/

iTunes 12.12.9.4 is a security update.
https://www.apple.com/itunes/download/

Plex Desktop 1.70.2.3845 resolves several bugs and adds discover together. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.39.2.3822 adds sign-out and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.32.3.7192 adds support for new hardware and resolves several bugs. This is a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

GDevelop 5.1.164 resolves several bugs. This is not a security update.
https://gdevelop.io/download

Lego Studio 2.23.5.1 resolves several bugs. This is not a security update.
https://www.lego.com/en-us/ldd

PS5 23.01-07.40.00 resolves several bugs and improves stability. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Animate 22.0.10 and 23.0.2 are security updates.
https://helpx.adobe.com/security/products/animate/apsb23-36.html

Adobe Commerce and Magento Commerce 2.3.7-p4-ext-3, 2.4.0-ext-3, 2.4.1-ext-3, 2.4.2-ext-3, 2.4.3-ext-3, 2.4.4-p4, 2.4.5-p3, and 2.4.6-p1 are security updates.
https://helpx.adobe.com/security/products/magento/apsb23-35.html

Adobe Experience Manager 2023.4 and 6.5.17.0 are security updates.
https://helpx.adobe.com/security/products/experience-manager/apsb23-31.html

Adobe Substance 3D Designer 13.0.0 is a security update.
https://helpx.adobe.com/security/products/substance3d_designer/apsb23-39.html

Audacity 3.3.3 resolves several bugs. This is not a security update.
https://www.audacityteam.org/download/

ImageMagick 7.1.1-11 resolves dozens of bugs. This is a security update.
https://imagemagick.org/

Kdenlive 23.04.1 resolves several bugs. This is not a security update.
https://kdenlive.org/

LibreOffice Fresh 7.5.4 resolves 80 bugs. This is not a security update. Remember that the “Fresh” line is beta software so should be avoided by most users.
https://www.libreoffice.org/

LibreOffice 7.4.7 resolves over 50 bugs. While the 7.4 “Still” branch is now end of life, this should be used for the next 6 weeks before 7.5 is released as “Still.”
https://www.libreoffice.org/

Nextcloud Desktop 3.9.0 resolves dozens of bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.5.3 resolves over a dozen bugs. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 5.0.6 improves cosmetics and resolves several bugs. This is not a security update.
https://www.getpaint.net/

Calibre 6.21.0 resolves several bugs and adds output formats. This is not a security update.
https://calibre-ebook.com/

Adobe Reader DC 23.003.20201 resolves several bugs. This is not a security update.
https://get.adobe.com/reader

Adobe Reader DC Patch 23.001.20174 resolves a stability bug. This is not a security update.
https://get.adobe.com/reader

Adobe Reader DC Patch (Mac) 23.001.20177 resolves a stability bug. This is not a security update.
https://get.adobe.com/reader

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 2.6.2 resolves a rule parsing bug. This is not a security update.
https://github.com/countercept/chainsaw

KeePass 2.54 adds triggers, global URL overrides, password generator profiles, improvements to exports and reporting, and resolves several bugs. This is not a security update.
https://keepass.info/

OpenSSL 3.1.1 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

OpenSSL 1.1.1u is a security update.
https://www.openssl.org/source/

ProtonVPN (macOS) 3.1.4 resolves several bugs. This should be treated as a security update.
https://protonvpn.com/download

Radmin VPN 1.3.4570.5 doesn’t provide a changelog so should be treated as a security update.
https://www.radmin-vpn.com/

RogueKiller 15.10.0 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

SuperAntiSpyware 10.0.1252 is a security update.
https://www.superantispyware.com/download.html

Stinger 12.2.0.614 should be treated as a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

Tails 5.14 is a security update.
https://tails.boum.org/install/dvd/index.en.html

uBlock Origin 1.50.0 resolves dozens of bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Velociraptor 0.6.9 should be treated as a security update.
https://github.com/Velocidex/velociraptor/releases/latest

YARA 4.3.2 is a security update.
https://github.com/VirusTotal/yara/

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 29.1.2 resolves dozens of bugs. This is not a security update.
https://obsproject.com/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.1.0.8 adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

iMazing HEIC Converter 2.0.9 doesn’t provide a changelog so should be treated as a security update.
https://imazing.com/heic

MakeMKV 1.17.4 adds support for new encodings and resolves several bugs. This is not a security update.
https://www.makemkv.com/download/

PDF Creator 5.1.1 resolves a couple bugs. This is not a security update.
https://www.pdfforge.org/pdfcreator

StreamFab 6.1.2.6 adds support for new sources and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 1.0.2.0 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 8.10.7 resolves dozens of bugs. This is not a security update.
https://1password.com/downloads/mac/

1Password for Windows 8.10.7 resolves dozens of bugs. This is not a security update.
https://1password.com/downloads/windows/

7-Zip 23.00 resolves several bugs and improves performance in some situations. This is not a security update.
https://www.7-zip.org/

AppResourcesUsageView 1.05 adds sort-by option. This is not a security update.
https://www.nirsoft.net/utils/app_resources_usage_view.html

BatteryHistoryView 1.05 adds sort-by option. This is not a security update.
https://www.nirsoft.net/utils/battery_history_view.html

Bitwarden 2023.5.0 resolves several bugs. This is not a security update.
https://bitwarden.com/

CCleaner 6.12.10490 resolves several bugs. This is not a security update.
https://www.ccleaner.com/

ControlMyMonitor 1.37 adds support for abbreviated IDs and improves compatibility. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html

CurrPorts 2.75 adds support for additional IP location databases. This is not a security update.
https://www.nirsoft.net/utils/cports.html

Dell Command Update 4.9.0 resolves several bugs and improves stability. This should be treated as a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

Dell OS Recovery Tool 2.3.7515 doesn’t provide a changelog so should be treated as a security update.
https://www.dell.com/support/home/uk/en/ukbsdt1/drivers/osiso/recoverytool

dnGrep 3.2.330.0 resolves several bugs. This is not a security update.
https://dngrep.github.io/

email-oauth2-proxy 2023-05-18 resolves several bugs. This is not a security update.
https://github.com/simonrob/email-oauth2-proxy

ESEDatabaseView 1.72 adds sort-by and open recent file support. This is not a security update.
https://www.nirsoft.net/utils/ese_database_view.html

Everything 1.4.1.1024 is a security update.
https://www.voidtools.com/

Everything Toolbar 1.1.1 resolves a couple bugs. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

Fido 1.50 removes inactive downloads and adds UEFI Shell 2.2 23H1. This is not a security update.
https://github.com/pbatard/Fido/releases

FileTypesMan 1.97 resolves a support annoyance. This is not a security update.
https://www.nirsoft.net/utils/file_types_manager.html

Fing 3.3.1 resolves several bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

FullEventLogView 1.78 adds full screen mode. This is not a security update.
https://www.nirsoft.net/utils/full_event_log_view.html

Git SCM 2.41.0 resolves dozens of bugs. This is a security update.
https://git-scm.com/

Go 1.20.5 is a security update.
https://go.dev/

GoodSync 12.2.5 resolves several bugs. This is not a security update.
https://www.goodsync.com/

grepWin 2.0.15 resolves several bugs. This is not a security update.
https://github.com/stefankueng/grepWin/releases/latest

GUIPropView 1.25 adds sort-by and black background support. This is not a security update.
https://www.nirsoft.net/utils/gui_prop_view.html

Homedale 2.06 resolves a crash bug. This is not a security update.
https://www.the-sz.com/products/homedale/

HWiNFO 7.46 resolves several bugs. This is not a security update.
https://www.hwinfo.com/download/

InstalledAppView 1.07 adds sort-by support and resolves a high-DPI bug. This is not a security update.
https://www.nirsoft.net/utils/installed_app_view.html

LastActivityView 1.37 resolves a stability bug. This is not a security update.
https://www.nirsoft.net/utils/computer_activity_view.html

LiveTcpUdpWatch 1.50 adds ASN and Organization columns, and support for additional IP location databases. This is not a security update.
https://www.nirsoft.net/utils/live_tcp_udp_watch.html

ManageWirelessNetworks 1.11 adds sort by support. This is not a security update.
https://www.nirsoft.net/utils/manage_wireless_networks.html

MobileFileSearch 1.45 adds the ability to cancel search with Esc. This is not a security update.
https://www.nirsoft.net/utils/mobile_device_file_search.html

MultiMonitorTool 2.10 adds abbreviated ID support. This is not a security update.
https://www.nirsoft.net/utils/multi_monitor_tool.html

NetRouteView 1.40 adds several new columns and option to copy as route. This is not a security update.
https://www.nirsoft.net/utils/network_route_view.html

NetworkOpenedFiles 1.60 adds support for folder, user and computer filters. This is not a security update.
https://www.nirsoft.net/utils/network_opened_files.html

NTLite 2023.5.9257 resolves several bugs and improves compatibility. This is not a security update.
https://www.ntlite.com/download/

OpenToonz 1.7.1 resolves a stability bug. This is not a security update.
https://github.com/opentoonz/opentoonz/

OSForensics 10.0.1013 resolves several bugs. This is not a security update.
https://www.osforensics.com/download.html

AOMEI Partition Assistant 10.0 is a major update with cosmetic and functional changes. This is not a security update.
https://www.diskpart.com/

PingInfoView 2.30 adds high-resolution ping time support and the ability to hide disabled items. This is not a security update.
https://www.nirsoft.net/utils/multiple_ping_tool.html

PointerStick 6.26 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.70.1 improves stability. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Process Monitor 3.94 resolves a stability bug and restores Copy All functionality. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/procmon

PropertySystemView 1.20 adds CopyProperty command-line support. This is not a security update.
https://www.nirsoft.net/utils/windows_property_system_view.html

Recuva 1.53.2096 resolves a detection bug. This is not a security update.
https://www.ccleaner.com/recuva

RoboForm 9.4.8 resolves several bugs. This is not a security update.
https://www.roboform.com/

Rufus 4.1 resolves several bugs. This is not a security update.
https://rufus.ie/en_US/

SimpleWMIView 1.54 adds full screen and sort-by support. This is not a security update.
https://www.nirsoft.net/utils/simple_wmi_view.html

TeamViewer 15.42.7 resolves several bugs. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

Unity 2022.3.1 resolves dozens of bugs. This is a security update.
https://unity3d.com/get-unity/download/archive

WakeMeOnLan 1.91 updates the internal MAC addresses database. This is not a security update.
https://www.nirsoft.net/utils/wake_on_lan.html

WhyNotWin11 2.5.0.5 resolves several bugs and improves compatibility. This is not a security update.
https://github.com/rcmaehl/WhyNotWin11

WinGet 1.4.11071 resolves dozens of bugs and updates libraries. This is a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinRAR 6.22 improves reliability and resolves stability bugs. This is not a security update.
https://www.rarlab.com/

WizTree 4.14.0.1 resolves several bugs. This is not a security update.
https://www.diskanalyzer.com/

ZoomIt 7.0 adds several new features including screen recording, annotation and editing. This is not a security update.
https://learn.microsoft.com/sysinternals/downloads/zoomit

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 2022.2.1.20 resolves several bugs. This is not a security update.
https://developer.android.com/studio

cx_Freeze 6.15 resolves several bugs and improves compatibility. This is not a security update.
https://cx-freeze.readthedocs.io/en/latest/index.html

Get-IMAPAccessToken 2023.5.22 resolves a bug. This is not a security update.
https://github.com/DanijelkMSFT/ThisandThat/blob/main/Get-IMAPAccessToken.ps1

GitHub Desktop 3.2.4 resolves several bugs. This is not a security update.
https://desktop.github.com/

Godot 4.0.3 provides resolution for hundreds of bugs and feature issues. This is not a security update.
https://godotengine.org/

Node.js 20.3.0 updates libraries and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Python 3.11.4 is a security update.
https://www.python.org/downloads/windows/

SQLite 3.42.0 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Unreal Engine 5.2 adds dozens of new features and resolves several bugs. This is not a security update.
https://unrealengine.com/en-US/

Visual Studio Code 1.79.1 adds read-only, automatic copy, Git branch naming, and several other features. This is a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

PPSSPP 1.15.4 resolves several bugs. This is not a security update.
https://www.ppsspp.org/download/

Web Package Updates

These are likely to be of interest only to web developers.

Invision Community 4.7.10 adds Courses, improved email bounce handling, and resolves dozens of bugs. This is not a security update.
https://invisioncommunity.com/

HumHub 1.14.2 resolves several bugs. This is not a security update.
https://www.humhub.com/en

ISPConfig 3.2.10p1 resolves several bugs. This is not a security update.
https://www.ispconfig.org/ispconfig/download/

Joomla 4.3.2 is a security update.
https://www.joomla.org/

jQuery 3.7.0 resolves several bugs and integrates Sizzle directly into jQuery. This is not a security update.
https://code.jquery.com/

ownCloud Client 4.0.0.10896 resolves several bugs. This is not a security update.
https://owncloud.com/desktop-app/

phpList 3.6.13 improves updater process and resolves several bugs. This is not a security update.
https://www.phplist.org/

Piwigo 13.7.0 is a security update.
https://piwigo.org/

SMF 2.1.4 updates libraries and resolves several bugs. This is not a security update.
https://www.simplemachines.org/

WordPress 6.2.2 is a security update.
https://wordpress.org/

BuddyPress 11.2.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 5.7.7 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

myStickymenu 2.6.3 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

Really Simple CAPTCHA 2.2 updates minimum requirements and Apache directives. This is not a security update.
https://wordpress.org/extend/plugins/really-simple-captcha/

WooCommerce 7.7.2 resolves dozens of bugs. This is not a security update.
https://wordpress.org/extend/plugins/woocommerce/

WP Plugin Update Checker 5.1 improves GitHub and GitLab parsing and resolves a couple bugs. This is not a security update.
https://github.com/YahnisElsts/plugin-update-checker/releases/latest

WPBakery 6.13.0 is a security update.
https://wpbakery.com/

WPtouch 4.3.53 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/wptouch/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2023-02-14

Happy Valentine’s Day, Folks!

Today is Patch Tuesday for February, 2023.

There are a whopping 150+ major hacks and 200+ application updates this month. It’s a big one, with about 6 GB of updates for most users. Microsoft is also pushing out Windows 22H2 (Win10 and Win11) for all supported devices. If you’re not already on the latest builds, expect to be “upgraded” automatically in the coming days.

This Month in Technology

1020 South Main Street Operations LLC, 1st Franklin Financial Corporation Master Welfare Benefit Plan, 225 Evergreen Road Operations LLC, 90 Degree Benefits, Inc., A10 Networks, Aflac, Alkomprar Technology, AmerisourceBergen, an unnamed medical research company, Arizona Health Advantage, Inc., Arnold Clark, Aspire Surgical, Atlassian’s Jira Service Management Server and Data Center, Audifarma, Autotrader, Bahrain’s international airport, Benefit Administrative Systems, LLC, BonqDAO, Brazilian Government, British PM Stewart McDonald, Cacti, Cardiovascular Associates, Casa Ley, Cedar Oaks Surgery Center, Centro Médico Virgen De La Caridad, CircleCi, Cisco IOx, City Council of Durango, City of London, City of Oakland, Community Health Systems, CommuteAir – exposing the TSA no-fly list, Control Web Panel, Costa Rica’s Ministry of Public Works and Transport, Court of Justice of the State of Pará, Datadog, Diligent Corp, DNV (impacting over 1000 ships worldwide), DotHouse Health Incorporated, DPP II, LLC, Dr. Keith Rundle & Dr. Herman Rundle, Edmonds School District, Eurostar, Exclu, FortiOS SSL-VPN, General Treasury of the Republic of Chile, Git, GitHub Atom, GitHub Desktop, GoAnywhere MFT, 130 organizations using GoAnywhere, Google Fi, GoTo, Grand Theft Auto (GTA) Online, Harmony Horizon, Health Plan of San Mateo, Heritage Provider Network, Hive, Home Care Providers of Texas, Howard Memorial Hospital, Indigo Books & Music, Instituto Federal Do Pará, Intelligent Business Solutions, ION Group, iOS, IT Servicios, Italy, Jackson & Joyce Family Dentistry, JD Sports, Jefferson County Health Center, KeePass, KomplettFritid, Kroger, LastPass, League of Legends, LearnPress, Lexmark firmware, LimeVPN, Liquor Control Board of Ontario, Los Angeles Unified School District, Luaces Asesores, Lutheran Social Services of Illinois, macOS, MailChimp, Maternal and Family Health Services, Microsoft-Verified OAuth Apps, a Midwest specialty medical care clinic, Mindpath Health, Minuteman Senior Services, MKS Instruments, Morgan Hill Unified School District, multiple federal civilian executive branch (FCEB) agenciesNamecheap, Nantucket, Massachusetts, Nissan North America, Norton LifeLock (including their password manager), ODIN Intelligence, One Brooklyn Health System, Packman anti-cheat software, PayPal, Pennsburg Manor, PeopleConnect (TruthFinder and Instant Checkmate), Pepsi, Pharma Gestao, Pitt Meadows School District 42, Planet Ice, Politriz, Puma, QNAP NAS, Qualys, Quintana Roo Attorney General’s Office, Qulliq Energy Corporation, Reddit, Regal Medical Group, Rise Interactive Media & Analytics, LLC, Rostelecom, Royal Mail, Rundle Eye Care, Samsung Galaxy App Store, San Francisco Transit Police, Seguros Equinoccial S.A, Sharp HealthCare, Shell, Sistema Integral De Control Alimentario, Skyview Networks, Solaris, Southeast Colorado Hospital District, St. Rose Hospital, Stanford Medicine, Stroke Scan Inc, T-Mobile, Tallahassee Memorial HealthCare, Technion – Israel Institute of Technology, Teijin Automotive Technologies Welfare Plan, The Guardian, Ticketmaster, Toyota’s GSPIMS, Tucson, Arizona, Ukrainian Computer Emergency Response Team, Ukrinform, University of California, University of Colorado Hospital Authority, University of Colorado, University of Duisburg-Essen, University of Maryland Baltimore, University of Miami, UScellular, VMware OpenSLP, VMware vRealize Log Insight, Weee!, Yum! Brands, Zacks Investment Research, and Zurich have reportedly been hacked or compromised this month.

Most federal agencies ignore the GAO cybersecurity recommendations.

Bankdata, Bermuda, The FAA’s NOTAM, Instagram, Microsoft 365, Microsoft Outlook, Tor, Twitter, Verizon, YouTube, and Zelle suffered from significant outages.

Cloudflare managed to prevent an insane 71 million requests per second attack.

Last months updates broke the Windows Start menu, Windows 10 (if a 365 trial was active), and almost 300 MSI motherboard models.

A whopping 12% (minimum) of online stores expose private data or backups. A new strain of point-of-sale malware prevents contactless payments in order to ensure that the skimmer operates unhindered.

Now for the good news:

Impossible Foods are being hit with patent problems across the globe. Hopefully this will lead to a financial incentive to grow real foods again.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is huge this month. The typical computer should see roughly
6 GB in updates today. Let’s get started.

Like it or not, Windows 10 and Windows 11 versions 22H2 are now being pushed out onto all supported devices, so expect it to be installed in the coming days.

Microsoft released updates to address 72 vulnerabilities in .NET and Visual Studio, .NET Framework, 3D Builder, Azure App Service, Azure Data Box Gateway, Azure DevOps, Azure Machine Learning, HoloLens, Internet Storage Name Service, Microsoft Defender for Endpoint, Microsoft Defender for IoT, Microsoft Dynamics, Microsoft Edge (Chromium-based), Microsoft Exchange Server, Microsoft Graphics Component, Microsoft Office, Microsoft Office OneNote, Microsoft Office Publisher, Microsoft Office SharePoint, Microsoft Office Word, Microsoft PostScript Printer Driver, Microsoft WDAC OLE DB provider for SQL, Microsoft Windows Codecs Library, Power BI, SQL Server, Visual Studio, Windows Active Directory, Windows ALPC, Windows Common Log File System Driver, Windows Cryptographic Services, Windows Distributed File System (DFS), Windows Fax and Scan Service, Windows HTTP.sys, Windows Installer, Windows iSCSI, Windows Kerberos, Windows MSHTML Platform, Windows ODBC Driver, Windows Protected EAP (PEAP), Windows SChannel, Windows Win32K, and MSRT (~2 GB). This includes security updates. A reboot is required.

Apple released updates for macOS Big Sur 11.7.3, macOS Monterey 12.6.3, macOS Ventura 13.2.1, iOS 12.5.7, iOS 15.7.3, iOS 16.3.1, iPadOS 15.7.3, iPadOS 16.3.1, Safari 16.3.1, tvOS 16.3.2 and watchOS 9.3.1. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 12.5.7, 15.7.3, and 16.3.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.7.3 and 16.3.1 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 9.3.1 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 16.3.2 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 109.0.5414.125 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

elementary OS 7.0 is a new major version of elementary OS improving app management, controls, defaults, and many other bug fixes. This is not a security update.
https://elementary.io/

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Ventura (13.x) means that macOS Catalina (10.15) and older are no longer supported. If you can not install at least macOS Big Sur (11) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 12 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v22H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.6.0 updates installer, adds option to update driver source to default, and improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

DS4Windows 3.2.8 resolves over a dozen bugs. This is not a security update.
https://github.com/Ryochan7/DS4Windows/releases/latest

Garmin Express 7.16.1 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.garmin.com/en-US/software/express/

JACK2 1.9.22 improves compatibility, removes example tools, updates dependencies, and resolves a couple bugs. This is a security update.
https://jackaudio.org/downloads/

NVcleanstall 1.15.1 resolves several bugs. This is not a security update.
https://www.techpowerup.com/download/techpowerup-nvcleanstall/

Drivers by Seagull 2023.1 adds support for over 200 new printer models from 20 vendors, RFID unique serial numbers (TID), and updates the license.
https://www.seagullscientific.com/support/downloads/drivers/

Wacom Driver 6.4.1-3 resolves several bugs. This is not a security update.
https://www.wacom.com/en-us/support/product-support/drivers

Xerox Smart Start 1.8.10.0 doesn’t provide a changelog so should be treated as a security update.
https://www.support.xerox.com/en-us/content/143617

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.48.158 is a security update.
https://brave.com/

Google Chrome 110.0.5481.100 is a security update.
https://www.google.com/chrome/

Microsoft Edge 110.0.1587.41 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 110.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

SeaMonkey 2.53.15 is a security update.
https://www.seamonkey-project.org/

Vivaldi 5.6.2867.62 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

ProtonMail (Android) 3.0.11 improves stability. This is not a security update.
https://proton.me/mail/download

Spark 3.3.3.42970 improves stability. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.3.3.42968 improves stability. This is not a security update.
https://sparkmailapp.com/

Thunderbird 102.7.2 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 7.1.8 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 7.0.1 resolves several bugs. This is a security update.
https://anydesk.com/en/downloads

BrowsingHistoryView 2.54 adds whitespace around the QR codes. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

Dropbox 167.4.4719 resolves several bugs and improves performance. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 176.0.0.12.101 is a security update.
https://www.messenger.com/download

FileZilla Client 3.63.1 resolves several bugs. This is not a security update.
https://filezilla-project.org/

FileZilla Server 1.6.6 resolves several bugs. This is not a security update.
https://filezilla-project.org/

FreeFileSync 12.0 is a major update and adds several new security profiles, improves timeouts, and resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 71.0 resolves several bugs. This is not a security update.
https://drive.google.com/start

IPInfoOffline 1.61 resolves a crash bug. This is not a security update.
https://www.nirsoft.net/utils/ip_country_info_offline.html

Java 8u361 is a security update.
https://www.java.com/en/download/manual.jsp

Microsoft Teams 1.6.00.376 adds several new features. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 25.0.3 is a security update.
https://nextcloud.com/

Omada Software Controller 5.8.4 adds global view, mapping, and adds several other features. This is not a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Pocketnet-GUI 0.8.39 adds P2P audio and video calls, improved GUI confirmations, and resolves over a dozen bugs. This is not a security update.
https://pocketnet.app/

Signal 6.5.1 resolves a crash bug. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 6.10.9 improves display of activity. This is not a security update.
https://signal.org/android/apk/

Skype 8.93.0.404 improves translator, color schemes, and resolves several bugs. This is not a security update.
https://www.skype.com/

Syncthing 1.23.1 resolves an upgrade bug. This is not a security update.
https://syncthing.net/

Telegram 4.6.2 resolves several bugs. This is not a security update.
https://telegram.org/

Telegram (Android) 9.4.0 doesn’t provide a changelog so should be treated as a security update.
https://telegram.org/apps

WinSCP 5.21.7 updates Batch Rename extension and resolves a settings change bug. This is not a security update.
https://winscp.net/eng/index.php

Zoom 5.13.7.12602 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

BasicSR 1.4.2 adds torch and resolves several bugs. This is not a security update.
https://github.com/XPixelGroup/BasicSR/releases/latest

Kodi 20.0 implements over 500 changes. This is a security update.
https://kodi.tv/

Plex Desktop 1.63.3.3523 resolves audio passthrough. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.33.2.3525 resolves audio passthrough. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.31.0.6654 improves season and episode detection, end credit marker detection, scanner, and resolves over a dozen bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Real-ESRGAN-ncnn-vulkan 0.2.0 is a security update.
https://github.com/xinntao/Real-ESRGAN-ncnn-vulkan/releases/latest

TuneIn 1.26.0 doesn’t provide a changelog so should be treated as a security update.
https://tunein.com/radio/home/

Game Updates

These are unlikely to be of interest to most people.

GameMaker Studio 2023.1.0.58 improves installation experience, performance and image editing. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.1.157 adds new objects, improves GDevelop banner behavior, asynchronous objects, updates libraries and extensions. This is not a security update.
https://gdevelop.io/download

Lego Studio 2.23.1.1 resolves several bugs. This is not a security update.
https://www.lego.com/en-us/ldd

Playstation PS5 22.02-06.50.00 adds support for the DualSense Edge wireless controller and improves performance. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2023.02.10 resolves dozens of bugs. This should be treated as a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 22.003.20314 resolves several bugs. This is not a security update.
https://get.adobe.com/reader

Adobe After Effects 23.2 and 22.6.4 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb23-02.html

Adobe Connect 11.4.6 and 12.2 are security updates.
https://helpx.adobe.com/security/products/connect/apsb23-05.html

Adobe FrameMaker 2020.5 and 2022.1 are security updates.
https://helpx.adobe.com/security/products/framemaker/apsb23-06.html

Adobe Bridge 12.0.4 and 13.0.2 are security updates.
https://helpx.adobe.com/security/products/bridge/apsb23-09.html

Adobe Photoshop 23.5.4 and 24.1.1 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb23-11.html

Adobe InDesign 18.2 and 17.4.1 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb23-12.html

Adobe Premiere Rush 2.7 is a security update.
https://helpx.adobe.com/security/products/premiere_rush/apsb23-14.html

Adobe Animate 22.0.9 and 23.0.1 are security updates.
https://helpx.adobe.com/security/products/animate/apsb23-15.html

Adobe Substance 3D Stager 2.0.0 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb23-16.html

Audacity 3.2.4 resolves a functional bug. This is not a security update.
https://www.audacityteam.org/download/

LibreOffice 7.4.5 resolves a stability bug. This is not a security update.
https://www.libreoffice.org/

LibreOffice Fresh 7.5.0 resolves over 250 bugs. This is a security update. Be aware that the Fresh line is beta software and should be avoided in favor of the Still line above.
https://www.libreoffice.org/

Nextcloud Desktop 3.7.3 resolves dozens of bugs. This is a security update.
https://nextcloud.com/

Notepad++ 8.4.9 resolves over a dozen bugs. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 5.0.1 is a major update to Paint.net, adds several features, and resolves several bugs. This is not a security update.
https://www.getpaint.net/

Calibre 6.12.0 adds read-aloud, updates libraries, and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Kindle for PC 1.40.65415 doesn’t provide a changelog so should be treated as a security update.
https://www.amazon.com/kindleforpc

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 2.3.1 resolves a panic bug. This is not a security update.
https://github.com/countercept/chainsaw

DNSQuerySniffer 1.91 resolves stability bug. This is not a security update.
https://www.nirsoft.net/utils/dns_query_sniffer.html

HTTP Toolkit 1.12.3 doesn’t provide a changelog so should be treated as a security update.
https://httptoolkit.tech/

KeePass 2.53.1 resolves several bugs. This is not a security update.
https://keepass.info/

MalwareBytes Anti-Malware 4.5.22 resolves several bugs. This is not a security update.
https://www.malwarebytes.org/antimalware/

MalwareBytes Anti-Malware Mac 4.18.11 resolves a couple bugs and removes the built-in browser. This is a security update.
https://www.malwarebytes.com/mac/

OpenSSL 1.1.1t is a security update.
https://www.openssl.org/source/

OpenSSL 3.0.8 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN (macOS) 3.0.13 resolves several bugs. This is not a security update.
https://protonvpn.com/download

RogueKiller 15.8.0 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Tails 5.9 is a security update.
https://tails.boum.org/install/dvd/index.en.html

uBlock Origin 1.47.0 resolves several bugs and improves performance. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

Camtasia 22.5.0 adds several new transitions, improved recorder, and several other tools. This is not a security update.
https://www.techsmith.com/video-editor.html

Open Broadcaster Software 29.0.2 resolves several bugs. This is not a security update.
https://obsproject.com/

ScreenToGif 2.37.2 adds translations. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

SnagIt 23.0.3 resolves a couple bugs. This is not a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.0.9.9 adds support for new encodings, improves compatibility and resolves a couple bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

HandBrake 1.6.1 resolves several bugs. This is not a security update.
https://handbrake.fr/

iMazing HEIC Converter 2.0.5 doesn’t provide a changelog so should be treated as a security update.
https://imazing.com/heic

MakeMKV 1.17.3 adds support for new encodings and improves reliability. This is not a security update.
https://www.makemkv.com/download/

StreamFab 6.1.0.7 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 1.0.1.2 resolves a couple bugs and adds support to merge. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 6.0.20 improves performance and resolves several bugs. This is a security update.
https://www.zotero.org/

Zotero (macOS) 6.0.21 resolves several bugs. This is a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 8.9.15 improves compatibility. This is not a security update.
https://1password.com/downloads/mac/

1Password for Windows 8.9.14 adds support to import directly from LastPass. This is not a security update.
https://1password.com/downloads/windows/

8GadgetPack 36.0 updates outdated gadgets. This is not a security update.
https://8gadgetpack.net/

Agent Ransack 2022.3366 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

Beyond Compare 4.4.5.27371 improves performance and resolves several bugs. This is not a security update.
https://www.scootersoftware.com/download.php?zz=dl4

Bitwarden 2023.1.1 resolves several bugs. This is not a security update.
https://bitwarden.com/

CCleaner 6.09.10300 resolves several bugs. This is not a security update.
https://www.ccleaner.com/

CPU-Z Installer 2.04 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

CurrPorts 2.66 improves stability. This is not a security update.
https://www.nirsoft.net/utils/cports.html

Cygwin 3.4.6 improves compatibility and stability. This should be treated as a security update.
https://cygwin.com/

Dell Command Update 4.8.0 improves BIOS update, self-update, and toast behaviors. This is a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

DesktopOK 10.66 improves auto save icons feature. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

Etcher 1.14.3 improves compatibility and resolves several bugs. This is not a security update.
https://www.balena.io/etcher/

Everything Toolbar 1.0.2 improves performance, reliability and cosmetics. This is a security update.
https://github.com/stnkl/EverythingToolbar/

Fido 1.43 adds BITS transfer support. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3366 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Git SCM 2.39.1 is a security update.
https://git-scm.com/

Go 1.20.1 updates the toolchain and improves performance. This is a security update.
https://go.dev/

GoodSync 12.1.7 resolves several bugs and improves compatibility. This is not a security update.
https://www.goodsync.com/

grepWin 2.0.13 adds ability to copy column content, and resolves a couple bugs. This is not a security update.
https://github.com/stefankueng/grepWin/releases/latest

HWMonitor 1.49 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

Memtest86+ 6.10 adds support for Secure Boot signing, headless EFI, various command line options, new hardware and resolves several bugs. This should be treated as a security update.
https://www.memtest.org/

NetworkTrafficView 2.43 improves stability. This is not a security update.
https://www.nirsoft.net/utils/network_traffic_view.html

NTLite 2.3.9.9039 updates components and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 10.0.1007 improves case management, VM reporting, and resolves dozens of bugs. This is not a security update.
https://www.osforensics.com/download.html

AOMEI Partition Assistant 9.14.0 improves safety of move/resize, resolves several bugs, and improves reliability. This is not a security update.
https://www.diskpart.com/

PointerStick 6.22 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.67.1 improves stability. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

PSAppDeploy 3.9.2 resolves several bugs. This is a security update.
https://psappdeploytoolkit.com/

ScreenConnect 23.1.1.8423 improves compatibility, adds several cosmetic changes, and resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

SearchMyFiles 3.23 resolves a couple bugs. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

Sysmon 14.14 resolves a timeout detected deleted files. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

TeamViewer 15.38.3 resolves a file resume bug. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

Unified Remote Server 3.13.0.2501 doesn’t provide a changelog so should be treated as a security update.
https://www.unifiedremote.com/

Unity 2022.2.6 resolves several bugs. This is not a security update.
https://unity3d.com/get-unity/download/archive

Ventoy 1.0.88 resolves several bugs and improves compatibility. This is not a security update.
https://www.ventoy.net/en/index.html

WhyNotWin11 2.5.0.4 updates hardware compatibility lists. This is not a security update.
https://github.com/rcmaehl/WhyNotWin11

WinGet 1.4.10173 resolves over a hundred bugs and improves stability. This is a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinRAR 6.20 resolves over 20 bugs. This is not a security update.
https://www.rarlab.com/

ZoomIt 6.12 resolves a cosmetic artifact bug when zooming. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/zoomit

Developer Updates

These are unlikely to be of interest to most people.

ADB 34.0.0 resolves several bugs. This is not a security update.
https://developer.android.com/studio/releases/platform-tools

Android Studio 2022.1.1.1 resolves several bugs. This is not a security update.
https://developer.android.com/studio

GitHub Desktop 3.1.6 updates libraries, resolves several bugs, and improves compatibility. This is a security update.
https://desktop.github.com/

GitHub includefragment 6.1.1 adds refetch API. This is not a security update.
https://github.github.io/include-fragment-element/

MySQL Server 8.0.32 resolves several bugs. This is not a security update.
https://dev.mysql.com/downloads/installer/

MySQL ConnectorNet 8.0.32 resolves several bugs. This is not a security update.
https://dev.mysql.com/downloads/connector/net/

Node.js 19.6.0 updates libraries and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Node.js 18.14.0 updates libraries and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Redemption 6.3.0.6164 resolves several bugs. This is not a security update.
https://www.dimastr.com/redemption/

Rustup 1.25.2 adds SHA-1 support again. This is not a security update.
https://www.rust-lang.org/

TortoiseGit 2.14.0 updates libraries and resolves several bugs. This is a security update.
https://tortoisegit.org/

Visual Studio Code 1.75.1 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.0.6 resolves several bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Drupal 9.4.11 is a security update.
https://drupal.org/download

Joomla 4.2.7 is a security update.
https://www.joomla.org/

ownCloud Client 3.1.0.9872 resolves several bugs. This is not a security update.
https://owncloud.com/desktop-app/

phpList 3.6.12 updates dependencies and resolves several bugs. This is not a security update.
https://www.phplist.org/

phpMyAdmin 5.2.1 is a security update.
https://www.phpmyadmin.net/

Piwigo 13.5.0 is a security update.
https://piwigo.org/

Antispam Bee 2.11.2 resolves several bugs and improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/antispam-bee/

Autoptimize 3.1.5 improves compatibility and resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/autoptimize/

Contact Form 7 5.7.3 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.2.1 improves compatibility and resolves several bugs. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers

myStickymenu 2.6.2 improves flow. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

Postie 1.9.65 removes uname support. This is not a security update.
https://wordpress.org/extend/plugins/postie/

Redirection 5.3.9 is a security update.
https://wordpress.org/extend/plugins/redirection/

W3 Total Cache 2.3.0 improves compatibility and resolves over a dozen bugs. This is not a security update.
https://wordpress.org/extend/plugins/w3-total-cache/

WooCommerce 7.3.0 resolves almost 100 bugs. This is a security update.
https://wordpress.org/extend/plugins/woocommerce/

WPtouch 4.3.48 is a security update.
https://wordpress.org/extend/plugins/wptouch/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2022-10-18

Welcome back, Folks!

Today is October 18th, 2022. It’s not Patch Tuesday, but updates from Microsoft, Mozilla, Oracle, Google, and others have triggered an out-of-cycle update.

Microsoft released Windows 10 22H2/19045. This is a minor update but introduces new features. Don’t be a lemming, let other people experience the inevitable stability issues so you don’t have to. If you don’t mind risking it, you can now get it through Windows Update.

Microsoft released an out-of-band update for .NET that resolves a security issue. Use Windows Update to install this update.

Google Chrome OS 106.0.5249.112 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Monterey (12.x) means that macOS Mojave (10.14) and older are no longer supported. If you can not install at least macOS Catalina (10.15) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 12 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v22H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

DS4Windows 3.1.7 improves compatibility and updates libraries. This is not a security update.
https://github.com/Ryochan7/DS4Windows/releases/latest

Intel Driver and Support Assistant 22.6.42 resolves several bugs. This is not a security update.
https://www.intel.com/p/en_US/support/detect

Wacom Driver 6.4.0-10 resolves several bugs. This is not a security update.
https://www.wacom.com/en-us/support/product-support/drivers

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.44.112 is a security update.
https://brave.com/

Google Chrome 106.0.5249.119 is a security update.
https://www.google.com/chrome/

Microsoft Edge 106.0.1370.47 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 106.0 is now capable of editing PDF documents, adds OCR, and style improvements. If it’s your default browser it will now hijack the PDF file association as well. This is a security update.
https://www.mozilla.org/en-US/firefox/new/

Vivaldi 5.5.2805.38 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 102.3.3 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

Dropbox 159.4.5870 resolves several bugs. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 165.0.0.16.91 is a security update.
https://www.messenger.com/download

FreeFileSync 11.27 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 65.0 improves accessibility and resolves several bugs. This is not a security update.
https://drive.google.com/start

Java 8u351 is a security update.
https://www.java.com/en/download/manual.jsp

Omada Software Controller 5.6.3 implements features to be enabled later, resolves several bugs, and improves compatibility. This is not a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Skype 8.89.0.403 improves live captions and subtitles, search, and resolves several bugs. This is not a security update.
https://www.skype.com/

Media Updates

These are unlikely to be of interest to most people.

3tene 3.0.5 resolves several bugs and improves tracking, scaling and compatibility. This is not a security update.
https://en.3tene.com/

Game Updates

These are unlikely to be of interest to most people.

GameMaker Studio 2022.9.1.51 resolves several bugs. This is not a security update.
https://www.yoyogames.com/en/gamemaker

PS5 22.02-06.02.00 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2022.10.12 adds QR-code authentication and updates the login interface. This is not a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Illustrator 27.0 and 26.5.1 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb22-56.html

Calibre 6.7.1 adds several new features, resolves several bugs and adds news sources. This is not a security update.
https://calibre-ebook.com/

IcoFX 3.8 adds custom SVG shapes tool, improves UI, and resolves several bugs. This is not a security update.
https://icofx.ro/

LibreOffice Fresh 7.4.2 resolves over 80 bugs. This is not a security update. Be aware that the Fresh line is beta software and should be avoided by most users.
https://www.libreoffice.org/

Security Software Updates

One or more of these is likely to be of interest to most people.

Gpg4win 4.0.4 is a security update.
https://www.gpg4win.org/download.html

MalwareBytes Anti-Malware 4.5.15 resolves several bugs. This is not a security update.
https://www.malwarebytes.org/antimalware/

ProtonVPN 2.2.0 improves stability. This is not a security update.
https://protonvpn.com/download

RogueKiller 15.6.2 resolves a security bug and improves compatibility. This is a security update.
https://www.adlice.com/download/roguekiller/

Tails 5.5 should be treated as a security update.
https://tails.boum.org/install/dvd/index.en.html

VT-CLI 0.10.4 improves usability. This is not a security update.
https://github.com/VirusTotal/vt-cli/releases/latest

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.0.9.0 adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

iMazing HEIC Converter 2.0.2 doesn’t provide a changelog so should be treated as a security update.
https://imazing.com/heic

MakeMKV 1.17.2 improves reliability for media with mastering errors and resolves several bugs. This is not a security update.
https://www.makemkv.com/download/

StreamFab 5.0.5.7 improves performance and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

Utility Updates

These are unlikely to be of interest to most people.

CPU-Z Installer 2.03 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

Git SCM 2.38.1 is a security update.
https://git-scm.com/

Homedale 2.03 adds 6GHz support. This is not a security update.
https://www.the-sz.com/products/homedale/

iExplorer 4.6.0 improves compatibility. This is not a security update.
https://www.macroplant.com/iexplorer/

ZoomIt 6.1 adds right-justification, improved scaling and usability fixes. This is not a security update.
https://learn.microsoft.com/en-us/sysinternals/downloads/zoomit

Unity 2022.1.20 resolves several bugs. This is not a security update.
https://unity3d.com/get-unity/download/archive

Windows 10 Upgrade 22H2/v19045 is now available. This is the next major build of Windows 10, but you should avoid it for at least the next month or two.
https://www.microsoft.com/en-us/software-download/windows10

Windows 10 Media Creation Tool 22H2/v19045 is now available. This is the next major build of Windows 10, but you should avoid it for at least the next month or two.
https://www.microsoft.com/en-us/software-download/windows10

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 2021.3.1.17 resolves a dozen bugs. This is not a security update.
https://developer.android.com/studio

Node.js 16.18.0 is a security update.
https://nodejs.org/en/

Node.js 19.0.0 is a major version adding several new features and default behaviors. This is not a security update.
https://nodejs.org/en/

Web Package Updates

These are likely to be of interest only to web developers.

WordPress 6.0.3 is a security update.
https://wordpress.org/

WooCommerce 7.0.0 is a major update with dozens of fixes, new features and improved mobile support. This is not a security update.
https://wordpress.org/extend/plugins/woocommerce/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/