Updates 2022-04-12

Welcome back, Folks!

Today is Patch Tuesday for April, 2022.

It’s another big one. Sprinkle a little disaster and angst on a world war, give script kiddies a megaphone and encourage them to hack strangers and you end up with the perfect storm of malice.

This Month in Technology

2FA/MFA implementations, Advanced Medical Practice Management, Alacrity Solutions Group, LLC, Alberta vaccine passport system, American Express, ASUS routers, Atlassian, Ballad Health, a large banking platform, Bank of Ireland, Bernards Township School District, Bet9ja, Black River Falls School District, Bradley Airport, Bridgestone Americas, CafePress, Caisse nationale d’assurance maladie, Cancer and Hematology Centers of Western Michigan, Capital Region Medical Center, Cash App, CDEK, Central Indiana Orthopedics, Central Minnesota Mental Health Center, Central Vermont Eye Care, Charleston Area Medical Center, Inc., Chelan Douglas Health District, Christie Clinic, Clinic of North Texas, LLP, Colorado Physician Partners, PLLC, Creative Services Inc, Cytometry Specialists, Denso, Dialyze Direct, LLC, Doctors Me, Duncan Regional Hospital, East Tennessee Children’s Hospital, East Windsor Township, Electoral Services Department of Wandsworth Council, EMC National Life Insurance, Emma Sleep Company, Englewood Health, Ermenegildo Zegna, Finland Department of Defense, Fox, Gainwell Technologies, LLC, GitLab, Globant, hundreds of GoDaddy’s Managed WordPress sites, Google Chrome (over 40 security vulnerabilities fixed in the last month), Grand Coloane Resort, H.P. Hood Dairy, Harris County Jail, Hellenic Post, Highmark Inc, Honda and Acura cars, Horizon Actuarial Services LLC, hundreds of HP printer models, HubSpot, Iberdrola, Isle of Wight EV chargers, Israeli government, Jefferson Dental and Orthodontics, l’Assurance, Labette Health, Law Enforcement Health Benefits, Inc., Local 295 IBT Employer Group Welfare Fund, Lutheran Social Services of Illinois, MailChimp, Major League Baseball Players Benefit Plan, Mansfield company, Medical Surgical Eye Care, Mercado Libre, Microsoft, MikroTik routers, Miratorg Agribusiness HoldingMN District 518, Morgan Stanley Wealth Management, National Rifle Association, New Jersey Brain and Spine, New York City public schools, Nordex, Northern Ireland TrustFord, Norwood Clinic, Okta (though they initially claimed otherwise, then backtracked), Palo Alto Networks, Palo Alto Networks hardware, Parker Hannifin Corp, Partnership HealthPlan of California, PhySynergy, LLC, PressReader, QNAP, Ronin, Rosaviatsia, Roskomnadzor, Rostec, Royal Enfield, Russia’s Federal Security Service (FSB), Russian Lipetsk Mechanical Plant, Russian Orthodox Church, Samsung Electronics, Scottish Association for Mental Health, Scottish Power, Sea Mar Community Health Center, Shutterfly, Snap-On, Sophos Security, South Denver Cardiology Associates, Spokane Regional Health District, Spring Framework for Java, SummaCare, SuperCare, Taylor Regional Hospital, Tennessee Pediatric Hospital, Texas Department of Insurance, The Works, Thomas Allen, Inc., Toei, Toyota, Transneft, TransUnion, Travelio, Trend Micro Apex Central, Trezor, Trinity Home Care, Inc., Ubisoft, Ukrainian IT Army, Ukrtelecom, Valley View Hospital Association, Veeam products, Viasat modems, Virginia Mason Medical Center, Vodafone, WatchGuard, Western Digital My Cloud, Wheeling Health Right Inc, Wynn Palace, Wyze Cam, ZAP-Hosting, and Zyxel hardware were hacked or compromised this month.

Now for the good news:

Internet Explorer is finally going to be going away in only two months. While this will eliminate a program that nobody should be using, it will have some side-effects  for businesses that rely on Active-X objects. Still, net win.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday this month is smaller than it has been in months. The typical computer should see roughly 2.7 GB in updates today. Let’s get started.

Microsoft released updates for .NET Framework, Active Directory Domain Services, Azure SDK, Azure Site Recovery, LDAP, Microsoft Bluetooth Driver, Microsoft Dynamics, Microsoft Edge, Microsoft Graphics Component, Microsoft Local Security Authority Server, Microsoft Office Excel, Microsoft Office SharePoint, Microsoft Windows ALPC, Microsoft Windows Codecs Library, Microsoft Windows Media Foundation, Power BI, Role: DNS Server, Role: Windows Hyper-V, Skype for Business, Visual Studio, Visual Studio Code, Windows Ancillary Function Driver for WinSock, Windows App Store, Windows AppX Package Manager, Windows Cluster Client Failover, Windows Cluster Shared Volume, Windows Common Log File System Driver, Windows Defender, Windows DWM Core Library, Windows Endpoint Configuration Manager, Windows Fax Compose Form, Windows Feedback Hub, Windows File Explorer, Windows File Server, Windows Installer, Windows iSCSI Target Service, Windows Kerberos, Windows Kernel, Windows Local Security Authority Subsystem Service, Windows Media, Windows Network File System, Windows PowerShell, Windows Print Spooler Components, Windows RDP, Windows Remote Procedure Call Runtime, Windows schannel, Windows SMB, Windows Telephony Server, Windows Upgrade Assistant, Windows User Profile Service, Windows Win32K, Windows Work Folder Service, YARP reverse proxy and MSRT (~2 GB). This includes security updates. A reboot is required.

Apple released updates for iOS 15.4.1, iPadOS 15.4.1, macOS Big Sur 11.6.5, macOS Monterey 12.3.1, Security Update 2022-003 Catalina, GarageBand 10.4.6, iTunes 12.12.3 for Windows, Logic Pro X 10.7.3, tvOS 15.4, watchOS 8.5.1, Xcode 13.3. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 15.4.1 is a security update. Use Settings, General, Software Update to install the most current update.

iPadOS 15.4.1 is a security update. Use Settings, General, Software Update to install the most current update.

tvOS 15.4 is a security update. Use System, Software Update to install the most current version.

watchOS 8.5.1 are security updates. Use the Watch app on your iPhone to install the most current version.

Google Chrome OS 100.0.4896.82 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Monterey (12.x) means that macOS Mojave (10.14) and older are no longer supported. If you can not install at least macOS Catalina (10.15) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v21H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every year and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v21H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 6 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Hundreds of HP printer models have new firmware security updates or advise disabling the LLMNR protocol. While you’re there consider disabling IPv6, WSD, DHCPv6, as well as SLP unless you’re in a corporate environment, and Bonjour unless you need to print from Apple mobile devices.
https://support.hp.com/us-en/document/ish_5948778-5949142-16/hpsbpi03780

Drivers by Seagull 2022.1 adds support for over 190 new printer models, improves GUI for Driver Wizard and resolves a bug with the GS1 Datamatrix AI 11. This is not a security update.
https://www.seagullscientific.com/support/downloads/drivers/

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.37.113 is a security update.
https://brave.com/

Google Chrome 100.0.4896.88 is a security update.
https://www.google.com/chrome/

Microsoft Edge 100.0.1185.39 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 99.0.1 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 91.8.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

SeaMonkey 2.53.11.1 is a security update.
https://www.seamonkey-project.org/

Vivaldi 5.2.2623.33 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.10.2 is a security update.
https://getmailspring.com/

Thunderbird 91.8.0 is a security update.
https://www.thunderbird.net/en-US/

NK2Edit 3.43 adds an option to copy the contents of the selected cell. This is not a security update.
https://www.nirsoft.net/utils/outlook_nk2_edit.html

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 7.0.7 resolves several bugs, and improves reliability. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk for macOS 6.5.0 adds permission profiles and resolves a layout bug. This is the last version to support EOL macOS versions. This is not a security update.
https://anydesk.com/en/downloads

Dropbox 145.4.4921 doesn’t provide a changelog so should be treated as a security update.
https://www.dropbox.com/

FileZilla Client 3.59.0 updates libraries. This is a security update.
https://filezilla-project.org/

Google Drive 56.0 resolves several bugs. This is not a security update.
https://drive.google.com/start

Nextcloud Server 23.0.3 updates libraries and resolves dozens of bugs. This should be treated as a security update.
https://nextcloud.com/

ownCloud Client 2.10.1.7187 resolves many bugs. This is not a security update.
https://owncloud.com/desktop-app/

Prosody 0.12.0 resolves several bugs and improves security defaults. This should be treated as a security update.
https://prosody.im/download/start

Rclone 1.58.0 adds several new backends and resolves dozens of bugs. This is a security update.
https://rclone.org/

Skype 8.82.0.403 resolves several bugs and makes cosmetic improvements. This is not a security update.
https://www.skype.com/

Syncthing 1.19.2 updates error messaging. This is not a security update.
https://syncthing.net/

Technitium DNS Server 8.0.2 is a major update adding several new features, updates libraries and apps, and resolves several bugs. This is not a security update.
https://technitium.com/dns/

Telegram 3.6.1 resolves several bugs. This is not a security update.
https://telegram.org/

Trillian Mac 6.5.0.11 adds native support for M1, new emoji and history features, and resolves many bugs. This is not a security update.
https://www.trillian.im/

WGet 1.21.3 updates libraries. This is a security update.
https://eternallybored.org/misc/wget/

Zoom 5.10.1.4420 is a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

FastStone Viewer 7.6 adds several new display controls and improves performance. This is not a security update.
https://www.faststone.org/FSViewerDetail.htm

Plex Desktop 1.43.3.2951 improves stability. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.14.0.2935 adds a couple new features and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.25.9.5721 updates scanning behavior, adds support for plexmatch files, and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Epic Games 14.0.3 resolves several bugs. This is not a security update.
https://www.epicgames.com/

GameMaker Studio 2022.3.0.625 makes cosmetic and localization changes, adds several new features, and resolves dozens of bugs. This is not a security update.
https://www.yoyogames.com/en/gamemaker

Nintendo Switch 14.1.0 adds PPN. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 22.01-05.00.00 provides many changes to the user interface and nomenclature. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

RetroPie 4.8 updates libraries and apps. This is not a security update.
https://retropie.org.uk/

Steam 2022.03.16 resolves cosmetic issues. This is not a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Commerce 2.3.7-p3, 2.4.3-p2, and 2.4.4 are security updates.
https://helpx.adobe.com/security/products/magento/apsb22-13.html

Adobe Acrobat and Reader 22.001.20117, 22.001.20112, 20.005.30334, 20.005.30331, 17.012.30229, and 17.012.30227 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb22-16.html

Adobe After Effects 22.3 and 18.4.6 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb22-19.html

Adobe Photoshop 22.5.7 and 23.3 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb22-20.html

Blender 3.1 vastly improves performance and adds several new features and controls. This is not a security update.
https://www.blender.org/download/

Calibre 5.40.0 adds new features, news sources, and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

IcoFX 3.7.1 resolves several bugs. This is not a security update.
https://icofx.ro/

Kindle for PC 1.35.64251 doesn’t provide a changelog so should be treated as a security update.
https://www.amazon.com/kindleforpc

LibreOffice Still 7.2.6 resolves over 50 bugs. This is not a security update.
https://www.libreoffice.org/

LibreOffice Fresh 7.3.2 resolves over 70 bugs, including stability and crash bugs. This should be treated as a security update. The “Fresh” line is beta software so should be avoided by most users.
https://www.libreoffice.org/

Nextcloud Desktop 3.4.4 resolves several bugs. This should be treated as a security update.
https://nextcloud.com/

Notepad++ 8.3.3 resolves a crash bug. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 4.3.10 resolves a resize bug. This is not a security update.
https://www.getpaint.net/

PDF-XChange Editor 9.3.360.0 resolves several bugs. This is not a security update.
https://www.tracker-software.com/product/pdf-xchange-editor

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 1.1.7 resolves several bugs. This is not a security update.
https://github.com/countercept/chainsaw

MalwareBytes Anti-Malware 4.5.7 is a security update.
https://www.malwarebytes.org/antimalware/

OpenSSL 3.0.2 is a security update.
https://curl.se/windows/

OSFClone 1.3.1001 updates operating system. This is not a security update.
https://www.osforensics.com/tools/create-disk-images.html

Tails 4.29 is a security update.
https://tails.boum.org/install/dvd/index.en.html

uBlock Origin 1.42.4 improves reliability. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

VT-CLI 0.10.1 improves organization. This is not a security update.
https://github.com/VirusTotal/vt-cli/releases/latest

YARA 4.2.0 updates syntax and resolves several bugs. This is a security update.
https://github.com/countercept/chainsaw

Zorin OS 16.1 updates libraries, apps, improves hardware support, and performance. This is not a security update.
https://zorin.com/os/mirrors/

Capture Updates

These are unlikely to be of interest to most people.

Elgato Game Capture HD (macOS) 2.11.14 improves Twitch API support. This is not a security update.
https://help.elgato.com/hc/en-us/articles/360027963512

Open Broadcaster Software 27.2.4 resolves several bugs. This is not a security update.
https://obsproject.com/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.0.6.9 adds support for new encodings.
https://www.dvdfab.cn/download.htm

PDF Creator 4.4.2 resolves several bugs. This is not a security update.
https://www.pdfforge.org/pdfcreator

Education updates

One or more of these are likely to be of interest to most people.

Zotero 6.0.4 is a major update that adds several new features and resolves two dozen bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 7.9.4 resolves several bugs and improves performance. This is a security update.
https://1password.com/downloads/mac/

Agent Ransack 2022.3314 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

Beyond Compare 4.4.2.26348 improves command line support. This is not a security update.
https://www.scootersoftware.com/download.php?zz=dl4

Bitwarden 1.32.1 updates Safari extension and resolves several bugs. This is not a security update.
https://bitwarden.com/

Dell Command Update 4.5 improves startup and SRP performance and adds deferral, session management, and WER handling. This is not a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

DesktopOK 9.81 improves dark theme. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

DevManView 1.76 adds new quick filter option. This is not a security update.
https://www.nirsoft.net/utils/device_manager_view.html

dnGrep 3.0.42.0 improves regular expressions and boolean testing and resolves several bugs. This is not a security update.
https://dngrep.github.io/

dupeGuru 4.2.1 resolves several bugs and updates libraries. This should be treated as a security update.
https://dupeguru.voltaicideas.net/

Etcher 1.7.8 resolves several bugs. This is not a security update.
https://www.balena.io/etcher/

FileLocator Pro 2022.3314 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

GoodSync 11.10.8 resolves dozens of bugs. This is a security update.
https://www.goodsync.com/

NTLite 2.3.4.8658 adds YubiKey compatibility, upgrades components and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

PowerToys 0.57.2 resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Recuva 1.53.2078 improves licensing controls. This is not a security update.
https://www.ccleaner.com/recuva

RoboForm 9.2.5 is a security update.
https://www.roboform.com/

Rufus 3.18 is a security update.
https://rufus.ie/en_US/

ScreenConnect 22.3.7487.8130 resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

SearchMyFiles 3.17 adds folder background context option. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

SimpleWMIView 1.51 updates the /columns command line switch behavior. This is not a security update.
https://www.nirsoft.net/utils/simple_wmi_view.html

Ookla Speedtest CLI 1.1.1 doesn’t provide a changelog so should be treated as a security update.
https://www.speedtest.net/apps/cli

TeamViewer 15.28.9 resolves a reliability bug. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

Unity 2021.3.0 resolves many bugs and updates libraries. This is not a security update.
https://unity3d.com/get-unity/download/archive

USBDeview 3.03 improves compatibility. This is not a security update.
https://www.nirsoft.net/utils/usb_devices_view.html

Wazuh Agent 4.2.6 updates Kibana plugin and Splunk app and resolves a bug. This is a security update.
https://wazuh.com/start/

WifiInfoView 2.76 resolves a marking bug. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

Developer Updates

These are unlikely to be of interest to most people.

ADB 33.0.1 resolves several bugs. This is not a security update.
https://developer.android.com/studio/releases/platform-tools

Docker Desktop 4.7.0 is a security update.
https://www.docker.com/products/docker-desktop

GitHub Desktop 2.9.12 adds support for Brackets Editor, JetBrains RubyMine, JetBrains GoLand, and Android Studio, and resolves several bugs. This is not a security update.
https://desktop.github.com/

Godot 3.4.4 resolves several bugs. This is not a security update.
https://godotengine.org/

Node.js 12.22.12 is a security update. This is the final release of the 12.x line.
https://nodejs.org/en/

Node.js 14.19.1 is a security update.
https://nodejs.org/en/

Node.js 16.14.2 is a security update.
https://nodejs.org/en/

Node.js 17.9.0 is a security update.
https://nodejs.org/en/

SQLite 3.38.2 resolves several bugs, improves compatibility and CLI support. This is not a security update.
https://www.sqlite.org/download.html

TortoiseSVN 1.14.3 resolves several bugs. This is not a security update.
https://tortoisesvn.net/downloads.html

Visual Studio Code 1.66.1 updates libraries and resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Web Package Updates

These are likely to be of interest only to web developers.

Coppermine Gallery 1.6.18 improves compatibility. This is not a security update.
https://coppermine-gallery.net/

Drupal 9.3.9 is a security update.
https://drupal.org/download

Joomla 4.1.2 is a security update.
https://www.joomla.org/

MailEnable 10.39 resolves several bugs and improves security defaults. This is a security update.
https://www.mailenable.com/

WordPress 5.9.3 resolves several bugs. This is not a security update.
https://wordpress.org/

Autoptimize 3.0.2 improves stability. This is not a security update.
https://wordpress.org/extend/plugins/autoptimize/

BuddyPress 10.2.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/buddypress/

Slider Revolution 6.5.19 resolves a couple bugs. This is not a security update.
https://revolution.themepunch.com/

WooCommerce 6.3.1 is a security update.
https://wordpress.org/extend/plugins/woocommerce/

WPBakery 6.9.0 improves compatibility and resolves several bugs. This is not a security update.
https://wpbakery.com/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2022-03-08

Welcome back, Folks!

Today is Patch Tuesday for March, 2022. It’s a big one. This month is ugly – and not just in the tech world. It seems that in the same breath that the elite acknowledged and swept the COVID hysteria under the rug, admitting their intervention was entirely propaganda, every government, financial system, media outlet, and software vendor has chosen to simultaneously swallowed a new collection of (quickly disproven) propaganda without the slightest hint of irony. Sigh. We can only do what we can do, but do not be afraid to talk about it. Censorship is how you make enemies, not friends.

This Month in Technology

A1 Hrvatska, Adafruit, Aetna ACE, Allen ISD, Alliance Physical Therapy Group, LLC, Amazon Alexa, AON, Ascension Michigan (single affiliated covered entity) ACE, Asterisk, Asustor NAS devices, Axeda agent, Axis Communications, Baltimore Mayor’s Office of Children and Family Success, Beetle Eye, Belarus online services, Bible Fellowship Church Homes, Bronx Addiction Services Integrated Concepts Systems, Inc., CA State Bar, CareOregon Advantage, Caritas Internationalis, CBORD’s GET Mobile security platform, Charlotte Radiology, Cisco’s Email Security Appliance, Coinbase, Community Medical Center, Comprehensive Health Services LLC, Conti ransomware gang, Credit Suisse, Crossroads Health, CVS Pharmacy, dozens of COVID passport apps, Dr. Morrow, Element Vape, Englewood Health, EPIC Pharmacy Network, Inc., Expeditors International, Extend Fertility, Family Christian Health Center, Family Fare LLC, Fleetwood Area School District, FlexBooker, Gems Education, GiveSendGo/Canadian Freedom Convoy, Google Android, Harbour Plaza Hotel, Hays USD 489, Highland Hospital, Houston Health Department, Intel CPU vulnerabilities can expose your cryptographic keys, International Committee of the Red Cross, Internet Society (ISOC), Ireland’s Health Service, Jackson County Hospital District, JAX Spine and Pain Centers, Jersey City Medical Center, KLAYswap, La Posada at Park Centre, Inc., LAPSUS$, LendUs, Liberty of Oklahoma Corporation, Logan Health Medical Center, MacGeneration, Memorial Hermann Health System, Meyer, Microsoft, Microsoft App Store, Microsoft Azure, Microsoft Exchange, Microsoft SQL Servers, Mizuno, Monongalia Health System, more than 500 Magento 1-based online stores, Morley Companies, Moscow Stock Exchange, Motorola Solutions Inc, new form of distributed denial of service attack, New York State’s Joint Commission on Public Ethics, Nvidia (and it’s BAD), Ohlone College, Oklahoma City Police Department Rape Kit information, Okta Advanced Server Access, PressReader, Priority Health, PROMESA, Puma, Reality Winner’s Twitter account, Rompetrol, Russian TV stations, Samsung Electronics (including source code), San Francisco 49ers, SAP Internet Communication Manager, Sberbank, Sea Mar Community Health Centers, Seneca Nation Health System, South Shore Hospital, Swissport, T-Mobile, Taylor, Ganson & Perrin LLP, TfNSW, the Russian Military, Town Home Care, LLC, Toyota Motor Corp., UK’s Foreign Office, UK’s Information Commissioner’s Office, Ukraine local government websites, Ukrainian Cabinet of Ministers, Ukrainian Ministry of Defense, Ukrainian Ministry of Foreign Affairs, Ukrainian Verkhovna Rada, UMass Memorial Health, Inc., 52 organizations from multiple US critical infrastructure sectors, US defense contractors, US Radiology Specialists, Inc., Viasat, Visual Voice Mail, Vodafone Portugal, VxWorks-based Smart Infusion Pumps, Washington Department of Licensing, WatchGuard firewalls, Williamsville Central School District, Zabbix servers, Zenly, and Zoe Therapy Services have been hacked.

Slack and Twitter both had large outages.

AB Volvo, Activision Blizzard, Adobe, Airbnb, Apple, Apple Maps, Apple Pay, Aston Martin, BMW, Cisco, Coinbase, Daimler Truck, Dell, Epic Games, Ford Motor Company, Google, Google AdWords, Google Maps, Harley-Davidson, Intel, Jaguar Land Rover, Jolla, Mastercard, Mercedes-Benz, Microsoft, Mitsubishi Motors, Namecheap, Netflix, Nintendo, PayPal, Reddit, Readdle, Samsung Electronics, Snapchat, Spotify, SWIFT, Telegram, The EU, TikTok, Toyota Motor Corporation, Twitter, Ubisoft, Visa, Volkswagen, and YouTube have imposed their own private sanctions on Russia and sometimes Belarus.

In response to software vendors (Apple, Microsoft, Readdle and others) imposing their own form of sanctions on Russia, Russia has passed new a licensing law, effectively greenlighting piracy. After ceasing reporting from Russia, the BBC has launched Tor access in several languages. Meanwhile Russia blocks sites that violate their new propaganda law and even rocket sales to the US.

Elon Musk, never a stranger to controversy, has declared that his Starlink service will not bow to censorship demands.

It was disheartening when Canada stole the bank accounts of anyone who dared to donate to a legal protest and dispatched Antifa and the UN to put down protestors

it was worse when they simply locked down all the banks (or at least realized the damage they were doing to themselves), even if they did quickly reverse their insanity. The Mercury account lockouts affected “a large set of accounts” throughout Africa. Worse yet, the entire world banking system has locked out Russia. By the way, do Google and Apple think that disabling their pay platforms in Russia will be the move that will encourage adoption by the rest of the world?

On the topic of social credit systems, I’d like to address the theory that cryptocurrency can be used in spite of bank interventions and government lockdowns. That’s not always the case, as Coinbase demonstrated this week.

As if spurned to action by the recent release of vaccine information and bribery, Twitch is now banning streamers that share “misinformation,” such as the actual medical fraud vaccine information and research by the vaccine manufacturers themselveswill now be banned.

That’s ok, you can go back to “real life” now that cities are opening back up. Did the science change, is it all part of some greater agenda, or are people just bored?

With such a war on truth and science, how can anyone fall for the Battle of Snake Island, Ghost of Kiev, Ukrainian ransomware, or any of the dozen other examples of legacy media propaganda right now?

The CIA has been conducting bulk surveillance on US citizens and the Supreme Court is okay with police planting hidden cameras throughout your property. Telegram isn’t as secure as you might think it is.

Oh – Let’s talk about Apple AirTags…one lady tracked her shipped goods with them and caught the mover lying about it. I’m more skeptical of this story about exposing a secret intelligence service, but the reality is that stalking and tracking for vehicle/home theft are part of the downside.

Microsoft is testing a new build of Windows 11 Pro that will now require a Microsoft account in order to be able to use Windows. This directly violates their previous statements about not forcing Windows Professional and Enterprise versions to use Microsoft accounts. While this will increase deployment and maintenance costs, the real trouble is going to be with transient users that are forced to login with “a” Microsoft account on a business machine and will no longer be able to easily untie that machine or role account from the deeply embedded Microsoft “features.”

Meris Botnet was used to target a single website with over 21 million requests per second. Google Drive is flagging native macOS files as violating copyright. Another new rootable vulnerability has been discovered for Linux. The EU is trying to mandate weakened security so they can better enforce the GDPR, digital identity and social credit systems.

Now for the good news:

The problem with cryptocurrency is that it necessarily depends on a public ledger (the blockchain). Espresso intends to fix that.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday this month is a big one. The typical computer should see roughly 2.2 GB in updates today. Let’s get started.

Microsoft released updates for .NET and Visual Studio, HEIF Image Extension, HEVC Video Extension, Microsoft 365, Raw Image Extension, Remote Desktop client, VP9 Video Extension, Windows 10, Windows 7, Windows 8.1, Windows RT, Windows Server, Azure Site Recovery, Microsoft Defender for Endpoint, Microsoft Defender for IoT, Microsoft Edge, Microsoft Exchange Server, Microsoft Intune, Microsoft Office Visio, Microsoft Office Word, Microsoft Windows ALPC, Microsoft Windows Codecs Library, Paint 3D, Role: Windows Hyper-V, Skype Extension for Chrome, Tablet Windows User Interface, Visual Studio Code, Windows Ancillary Function Driver for WinSock, Windows CD-ROM Driver, Windows Cloud Files Mini Filter Driver, Windows COM, Windows Common Log File System Driver, Windows DWM Core Library, Windows Event Tracing, Windows Fastfat Driver, Windows Fax and Scan Service, Windows HTML Platform, Windows Installer, Windows Kernel, Windows Media, Windows PDEV, Windows Point-to-Point Tunneling Protocol, Windows Print Spooler Components, Windows Remote Desktop, Windows Security Support Provider Interface, Windows SMB Server, Windows Update Stack, XBox, and MSRT (~1.5 GB). This includes security updates. A reboot is required.

Apple released updates for iOS 15.3.1 and iPadOS 15.3.1, macOS Monterey 12.2.1, macOS Big Sur 11.6.4, Security Update 2022-002 Catalina, Safari 15.3, and watchOS 8.4.2. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 15.3.1 is a security update. Use Settings, General, Software Update to install the most current update.

iPadOS 15.3.1 is a security update. Use Settings, General, Software Update to install the most current update.

watchOS 8.4.2 are security updates. Use the Watch app on your iPhone to install the most current version.

Google Chrome OS 98.0.4758.107 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Monterey (12.x) means that macOS Mojave (10.14) and older are no longer supported. If you can not install at least macOS Catalina (10.15) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v21H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 6 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v21H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 6 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.4.9 improves cleanup. This is not a security update.

HP M281cdw Firmware 20211221 resolves the network stability issue from the previous firmware that effectively disabled the device.

Logitech Options 9.60.87 is a security update.

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.36.111 is a security update.

Firefox 98.0 is a security update.

Firefox ESR 91.7.0 is a security update.

Google Chrome 99.0.4844.51 is a security update.

Microsoft Edge 99.0.1150.36 is a security update.

SeaMonkey 2.53.11 is a security update.

Vivaldi 5.1.2567.57 is a security update.

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.10.0 is a major update to the underlying code, adding ARM support, improved spellcheck, performance, and port improvements. This is not a security update.

Thunderbird 91.6.2 is a security update.

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 7.0.6 improves password management and resolves several bugs. This should be treated as a security update.

curl 7.82.0 resolves dozens of bugs and adds several new automations. This is not a security update.

Dropbox 143.4.4161 doesn’t provide a changelog so should be treated as a security update.

FileZilla Client 3.58.0 updates libraries, log details and prepares for 2FA support. This is not a security update.

FileZilla Server 1.3.0 is a security update.

FreeFileSync 11.18 resolves several bugs. This is not a security update.

Omada Software Controller 5.1.7 resolves several bugs, adds new services and features, increases hard limits, and adds support for newer hardware. This is not a security update.

Skype 8.81.0.268 resolves several bugs and adds ability to revoke and recreate profile. This is not a security update.

Syncthing 1.19.1 resolves several bugs. This is not a security update.

WinSCP 5.19.6 is a security update.

Zoom 5.9.7.3931 is a security update.

Media Updates

These are unlikely to be of interest to most people.

darktable 3.8.1 improves performance and stability, and resolves several bugs. This is not a security update.

iTunes 12.12.2.2 doesn’t provide a changelog so should be treated as a security update.

Plex Desktop 1.41.0.2876 resolves DVR and LiveTV bugs, and improves search. This is not a security update.

Plex Home Theater 1.12.0.2884 resolves several bugs, resolution and MPV improvements, and improves stability. This is not a security update.

Plex Media Server 1.25.6.5577 resolves several bugs, improves collection, smart filtering, and reliability during media changes and replacement. This is not a security update.

Adobe Photoshop 22.5.6 and 23.2 are security updates.

Adobe Illustrator 26.1.0 is a security update.

Adobe After Effects 22.2.1 and 18.4.5 are security updates.

Game Updates

These are unlikely to be of interest to most people.

Epic Games 13.2.0 resolves several bugs. This is not a security update.

GameMaker Studio 2022.2.0.614 adds Text-In-Sequence, Track-In-Sequence, changes array behavior, updates libraries, and resolves dozens of bugs. This is not a security update.

Steam 2022.03.04 resolves over 20 bugs. This is not a security update.

PlayStation PS5 21.02-04.51.00 improves performance. This is not a security update.

Office Updates

One or more of these are likely to be of interest to most people.

Atom 1.60.0 improves usability and resolves dozens of bugs. This is not a security update.

IcoFX 3.7 resolves several bugs and improves compatibility. This is not a security update.

LibreOffice Fresh 7.3.1 resolves over a hundred bugs, including crash and freeze issues. This is not a security update. Remember that the Fresh line is beta software and should be avoided in favor of the Still (stable) version by most users.

Nextcloud Desktop 3.4.3 resolves several bugs. This is not a security update.

Notepad++ 8.3.2 resolves several bugs. This is not a security update.

Paint.net 4.3.8 resolves several bugs and updates libraries. This is not a security update.

Calibre 5.38.0 resolves several bugs and adds new news sources. This is not a security update.

Adobe Reader DC 22.001.20085 is a security update.

Security Software Updates

One or more of these is likely to be of interest to most people.

MalwareBytes Anti-Malware 4.5.4 resolves a dozen bugs. This is not a security update.

RogueKiller 15.4.0 resolves several bugs. This is not a security update.

uBlock Origin 1.41.8 resolves several bugs. This is not a security update.

Velociraptor 0.6.3 adds several new features and improves performance. This is not a security update.

Wireless Network Watcher 2.30 adds custom context menu items option. This is not a security update.

Capture Updates

These are unlikely to be of interest to most people.

Elgato Game Capture HD 3.70.56 updates Twitch API. This is not a security update.

Open Broadcaster Software 27.2.3 resolves dozens of bugs. This is not a security update.

ScreenToGif 2.36 resolves several bugs and adds new installation packages and package types. This is not a security update.

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.0.6.3 adds support for new encodings and resolves several bugs. This is not a security update.

IsoBuster 4.9.1 doesn’t provide a detailed changelog so should be treated as a security update.

MakeMKV 1.16.7 improves reliability and resolves several bugs. This is not a security update.

Utility Updates

These are unlikely to be of interest to most people.

Agent Ransack 2022.3307 resolves several bugs and adds new columns for Folder Depth, Product Version, File Version, and filtering for Owner and Product Version. This is not a security update.

Autoruns 14.09 resolves a reliability bug. This is not a security update.

Bitwarden 1.31.3 resolves several bugs. This is not a security update.

Carbonite 6.4.1 resolves two bugs. This is not a security update.

CPU-Z 2.00 adds support for new hardware. This is not a security update.

DesktopOK 9.71 resolves several bugs. This is not a security update.

DMDE 4.0.0.800 adds Btrfs support, improves ReFS, and resolves several bugs. This is not a security update.

dnGrep 3.0.29.0 resolves several bugs. This is not a security update.

Etcher 1.7.7 updates libraries, improves updater, and resolves several bugs. This is a security update.

FileLocator Pro 2022.3307 resolves several bugs and adds new columns for Folder Depth, Product Version, File Version, and filtering for Owner and Product Version. This is not a security update.

GoodSync 11.10.5 resolves dozens of bugs. This is not a security update.

grepWin 2.0.10 improves cosmetics. This is not a security update.

Nextcloud Server 23.0.2 updates libraries and resolves dozens of bugs. This is not a security update.

NTLite 2.3.4.8643 resolves several bugs. This is not a security update.

osquery 5.2.2 updates libraries, improves compatibility, and resolves several bugs. This is a security update.

AOMEI Partition Assistant 9.6.1 resolves several bugs. This is not a security update.

PowerToys 0.56.2 adds new features and resolves several bugs. This is not a security update.

ProcessMonitor 3.89 resolves a crash bug. This is not a security update.

Recuva 1.53.2065 adds telemetry. This is not a security update.

Macrium Reflect 8.0.6636 resolves several bugs. This is not a security update.

ScreenConnect 22.2.7029.8094 resolves several bugs. This is not a security update.

SimpleWMIView 1.48 adds quick-filter option “begins with.”

Sysmon 13.33 resolves a crash bug and improves memory handling. This is not a security update.

TaskSchedulerView 1.70 adds option to open task folder and enable or disable header line in exports. This is not a security update.

Unity 2021.2.14 updates libraries and resolves several bugs. This is not a security update.

Wazuh Agent 4.2.5 resolves several bugs. This is a security update.

WifiInfoView 2.75 adds MAC Group column, MAC Group filtering and 64-bit build. This is not a security update.

WinGet 1.1.12653 resolves dozens of bugs. This is not a security update.

WinRAR 6.11 improves reliability and compatibility. This is not a security update.

WinScan2PDF 7.55 improves reliability. This is not a security update.

WizTree 4.08 adds custom filtering for full scan results. This is not a security update.

ZoomText 2022.2202.36.400 adds new voices and languages, improves compatibility, and resolves several bugs. This is not a security update.

Developer Updates

These are unlikely to be of interest to most people.

ADB 33.0.0 resolves a crash bug. This is not a security update.

Docker Desktop 4.5.1 is a security update.

GitHub Desktop 2.9.11 resolves several bugs. This is not a security update.

Godot 3.4.3 resolves dozens of bugs. This is not a security update.

Node.js 16.14.0 resolves dozens of bugs. This is not a security update.

Node.js 17.6.0 updates libraries and resolves dozens of bugs. This is not a security update.

SQLite 3.38.0 resolves several bugs and updates syntax and compatibility. This is not a security update.

Visual Studio Code 1.65.1 is a security update.

Web Package Updates

These are likely to be of interest only to web developers.

Dada Mail 11.18.0 adds LWP support and resolves an invalid mailbox bug. This is not a security update.

Drupal 9.2.13 is a security update.

Drupal 9.3.7 is a security update.

Joomla 4.1.0 is a major update adding task scheduling, child template overrides, accessibility improvements and syntax highlighting. This is not a security update.

MailArchiva 8.7.4 improves performance. This is not a security update.

MailEnable 10.38 updates libraries and resolves several bugs. This is not a security update.

phpList 3.6.7 resolves several bugs. This is not a security update.

phpMyAdmin 5.1.3 is a security update.

SMF 2.1.1 is a major update release with several new features, and improves compatibility and reliability. This update will disable any mods and custom themes and some older mods and themes will need changes to be compatible. This is not a security update.

WordPress 5.9.1 resolves over 80 bugs. This is not a security update.

Antispam Bee 2.11.0 resolves several bugs. This is not a security update.

BuddyPress 10.1.0 resolves several bugs. This is not a security update.

Contact Form 7 5.5.6 resolves several bugs. This is not a security update.

Slider Revolution 6.5.18 resolves several bugs. This is not a security update.

Social Post Feed 4.1.2 resolves several bugs. This is not a security update.

myStickymenu 2.5.8 resolves a couple bugs and adds cosmetic and layout features. This is not a security update.

Widgets on Pages 1.6.0 is a security update.

WooCommerce 6.3.0 is a security update.

WP Mail SMTP 3.3.0 improves compatibility and resolves several bugs.

WordPress Zero Spam 5.2.15 is a security and woke-ness update. Since they’re now injecting content of their own choice into your website, they can no longer be trusted and you should remove this plugin from your websites.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2014-07-08

Hi, Folks!

It’s Patch Tuesday!

Microsoft released 6 updates for Windows and Internet Explorer. This includes security updates (~70mb). A reboot is required.
http://update.microsoft.com/

Apple released updates for OS X, iOS 7, ProApps, MacBook Air, Apple TV, and Safari. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

Adobe Flash Player 14.0.0.145 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac
Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

iOS 7.1.2 is a security update. The easiest way to install it is through your Apple mobile device “OTA” or over-the-air. Make sure you’re online with Wifi, then go to Settings, General, Software Update, and follow the prompts.

Browser Updates

One or more of these are likely to be of interest to everyone.

SeaMonkey 2.26.1 is a security update. Use Help, About to install the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

NK2Edit 2.94 adds secondary sorting and fixes a bug merging MAPIPDL records. This is not a security update.
http://www.nirsoft.net/utils/outlook_nk2_edit.html

Internet Updates

One or more of these are likely to be of interest to everyone.

Adobe Shockwave 12.1.3.153 is a security update.
https://12pd.com/click?shockwave

Mumble 1.2.7 is a security update.
http://mumble.sourceforge.net/

Evernote 5.4.1.3962 corrects several minor bugs. This is not a security update.
http://www.evernote.com/

Dropbox 2.8.4 improves proxy tolerance and fixes several bugs. This is not a security update.
https://12pd.com/click?dropbox

IPInfoOffline 1.34 updates the internal IP to country database. This is not a security update.
http://www.nirsoft.net/utils/ip_country_info_offline.html

Codec Updates

One or more of these are likely to be of interest to everyone.

Win7 Codecs Advanced 4.6.7 updates included codecs. To install the update, you must uninstall and reinstall the application.
http://shark007.net/win7codecs.html

Media Updates

These are unlikely to be of interest to most people.

MPC HC x64 1.7.6 updates libraries and fixes a number of bugs. This is not a security update.
https://12pd.com/click?mpchc

Game Updates

These are unlikely to be of interest to most people.

EA Origin 9.4.10.297 improves updates, installation, Twitch streaming and fixes several bugs. This is not a security update.

Minecraft 1.7.10 is primarily a Realms featureset update. This is not a security update.

PS3 4.60 fixes a non-security stability bug.

PS4 1.72 fixes a non-security stability bug.

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Acrobat 10.1.10 Pro and Standard is a security update.

Adobe Illustrator CC 2014 is a new major release of Illustrator. This is not a security update.

Adobe InCopy CC 2014 is a new major release of InCopy. This is not a security update.

Adobe InDesign CC 2014 is a new major release of InDesign. This is not a security update.

Adobe Photoshop CC 2014 is a new major release of Photoshop. This is not a security update.

Adobe Photoshop Lightroom 5.5 fixes several bugs, adds newer hardware support, adds support for star ratings and custom sort. This is not a security update.

Paint.net 4.0 is a major update, improving performance and memory usage, adding hardware acceleration, fine-grained history, including the ability to tune settings live to see the results (such as selection wand or paint bucket), antialiasing and more. This is not a security update.
http://www.getpaint.net/

Artweaver 4.5.4 increases maximum grid size and fixes several bugs. This is not a security update.
http://www.artweaver.de/

Notepad++ 6.6.7 adds OneDrive settings storage and fixes a crash bug. This is not a security update.
https://12pd.com/click?npp

IrfanView 4.38 adds image tiling, improved command line options, adds drag & drop and several other improvements. This is not a security update.
http://www.irfanview.com/

Security Software Updates

One or more of these is likely to be of interest to most people.

Avast! Home Edition 9.0.2021 is a security update.
http://www.avast.com/free-antivirus-download

Wireshark 1.10.8 does not provide a changelog, so should be treated as a security update.
http://www.wireshark.org/

Wireless Network Watcher 1.71 adds always-on-top behavior. This is not a security update.
http://www.nirsoft.net/utils/wireless_network_watcher.html

AVG Anti-Virus Free 2014.4716 is a security update.
http://www.avg.com/us-en/download

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 0.625 Beta corrects several non-security bugs and updates libraries. This is not a security update.
http://obsproject.com/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 9 9.1.5.6 adds support for new DVDs, bug fixes, improvements to crop & trim, and adds watermark support. This is not a security update.
http://www.dvdfab.cn/download.htm

MakeMKV 1.8.11 adds support for newer media, improved error correction, and bug fixes. This is not a security update.
https://12pd.com/click?makemkv

Utility Updates

These are unlikely to be of interest to most people.

TeamViewer 9.0.29947 provides several non-security bug fixes. This is not a security update.
http://www.teamviewer.com/en/download/

FolderChangesView 1.64 adds always-on-top support. This is not a security update.
http://www.nirsoft.net/utils/folder_changes_view.html

MyEventViewer 2.12 fixes a command compatibility bug. This is not a security update.
http://www.nirsoft.net/utils/my_event_viewer.html

USBDeview 2.35 adds the ability to reload an individual USB hub. This is not a security update.
http://www.nirsoft.net/utils/usb_devices_view.html

WifiChannelMonitor 1.01 improves bit-detection and stability. This is not a security update.
http://www.nirsoft.net/utils/wifi_channel_monitor.html

WifiInfoView 1.61 adds secondary column sorting. This is not a security update.
http://www.nirsoft.net/utils/wifi_information_view.html

CCleaner 4.15.4725 adds Chrome x64 support, improves performance and memory usage, improves wipe algorithm, bug fixes and other application support. This should be treated as a security update.
https://12pd.com/click?ccleaner

Agent Ransack 2014.822 improves search behavior and fixes 64-bit installer. This is not a security update.
http://mythicsoft.com/agentransack/download

Bitcoin 0.9.2.1 is a security update. All Bitcoin clients should be updated.
http://bitcoin.org/en/download

RoboForm 7.9.8 adds two-factor authentication, fixes bugs in sync and autoupdate. This should be treated as a security update.
https://12pd.com/click?rf

GoodSync 9.8.9 improves scheduling, installation, limited user support, and other bug fixes. This should be treated as a security update.
https://12pd.com/click?goodsync

Hamachi 2.2.0.214 is a stability fix. This is not a security update.
http://help.logmein.com/SelfServiceDownloads

LogMeIn Mac 4.1.4405 improves performance. This is not a security update.
http://help.logmein.com/SelfServiceDownloads

Developer Updates

These are unlikely to be of interest to most people.

SQLite Database Browser 3.2.0 adds project notation support, many bug fixes and improvements. This is not a security update.
http://sqlitebrowser.org/

Redemption 5.7.0.3868 adds several new features and a few dozen bug fixes primarily relating to import/export. This is not a security update.
http://www.dimastr.com/redemption/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VMware Player 6.0.3 is a security update.
http://www.vmware.com/products/player/

Web Package Updates

These are likely to be of interest only to web developers.

Dada Mail 7.0.5 improves installer behavior, bounce handling, UTF-8 encoding support and several bug fixes. This is not a security update.
http://dadamailproject.com/download/

phpMyAdmin 4.2.5 and 4.1.14.1 are security updates.
http://www.phpmyadmin.net/home_page/news.php

SMF 2.0.8 is a performance and bug fix release. This is not a security update.
http://download.simplemachines.org/

Coppermine Gallery 1.5.30 corrects several bugs, improves defaults and installation process. This is not a security update.
http://coppermine-gallery.net/

Anti-Splog 2.1.2 fixes a bug relating to super-admin spamming. This is not a security update.

BuddyStream 3.2.6 updates API. This is not a security update.

Easy Bootstrap Shortcode 4.3.2 corrects a bug in image upload. This is not a security update.

Register IP – Multisite 1.6.1 cleanup, fixes typo. This is not a security update.

Smart YouTube 4.2.5 fixes Vimeo compatibility. This is not a security update.

Theme My Login 6.3.10 is a security update.

WooCommerce 2.1.12 corrects several bugs. This is not a security update.

WP Edit 2.0 corrects several bugs. This is not a security update.

WPtouch 3.4.2 corrects a date/time bug in Bauhaus. This is not a security update.

Zemanta 1.2.5 adds SSL compatibility, and consolidates plugin configuration. This is not a security update.
That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2014-06-10

Hi, Folks!

It’s Patch Tuesday!

It’s been a month already, so if you haven’t changed all your passwords, please do it now. Then come back. I’ll still be here.

Microsoft released 7 updates for Windows, Office, and Internet Explorer. This includes security updates (~60mb). A reboot is required. Some of the vulnerabilities these updates resolve apply to Windows XP but will never be patched on that platform. Upgrade to Windows 7 NOW or switch to a new computer.
http://update.microsoft.com/

Apple released updates for Safari, OS X, Java, iTunes and MacBook Air SMC. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

Adobe Flash Player 14.0.0.125 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Adobe AIR 14.0.0.110 is a security update.
Win: https://12pd.com/click?air
Mac: https://12pd.com/click?airmac
Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

BullZip PDF 10.6.0.2267 adds support for Ghostscript 9.14 and fixes installation error. This is not a security update.
https://12pd.com/click?bullzippdf

nVidia 337.88 provides universal performance improvements with all DirectX environments/games, updates device compatibility, improves specific gaming performance and other fixes. This is not a security update.
https://12pd.com/click?nvidia

Samsung Kies 20140527 does not provide a changelog (or even version information!) so should be treated as a security update.
http://www.samsung.com/ca/support/usefulsoftware/KIES/JSP

PlayStation 4 1.71 adds changes to support existing PSN features and improves stability. This is not a security update, but is required for continued online functionality.
http://us.playstation.com/support/systemupdates/ps4/index.htm

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 35.0.1916.153 is a security update. Use Menu, About to get the most current version.

Firefox 30.0 fixes over 3,600 bugs (yes, really), including scripting, debugging, plugin behavior and much more. While none of the bugs are flagged security, the scope of changes suggest this should be treated as a security update. Use Help, About to get the most current version.

Opera 22.0.1471.50 is a security update. Use Menu, About to get the most current version.

HTTrack 3.48.13 corrects several bugs and updates libraries. This is a security update.
http://www.httrack.com/page/2/en/index.html

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 24.6.0 is a security update. Use Menu, About to get the most current version.

OutlookAttachView 2.68 adds secondary column sorting support. This is not a security update.
http://www.nirsoft.net/utils/outlook_attachment.html

Internet Updates

One or more of these are likely to be of interest to everyone.

Adobe Shockwave 12.1.2.152 is a security update.
https://12pd.com/click?shockwave

Java 7u60 updates time zone data, changes expiration behavior, and fixes well over 100 bugs. This is not a security update. If you do not need Java, or do not have Java installed, DO NOT INSTALL IT NOW!
http://www.java.com/en/download/manual.jsp

Mumble 1.2.6 is a security update.
http://blog.mumble.info/

Evernote 5.4.0.3698 improves offline security. This is a security update.
http://www.evernote.com/

BrowsingHistoryView 1.52 corrects an access bug with remote viewing. This is not a security update.
http://www.nirsoft.net/utils/browsing_history_view.html

IPNetInfo 1.55 adds the ability to automatically retry failed queries. This is not a security update.
http://www.nirsoft.net/utils/ipnetinfo.html

Dropbox 2.8.3 does not provide a changelog, so should be treated as a security update.
https://12pd.com/click?dropbox

FileZilla 3.8.1 is a security update.
http://filezilla-project.org/

WinSCP 5.5.4 is a security update.
http://winscp.net/eng/index.php

Codec Updates

One or more of these are likely to be of interest to everyone.

Win7 Codec Package 7 Codecs Advanced 4.6.4 updates included codecs. To install the update, you must uninstall and reinstall the application.
http://shark007.net/win7codecs.html

Media Updates

These are unlikely to be of interest to most people.

CDBurnerXP 4.5.4.4852 updates libraries, fixes several bugs. This is not a security update.
https://12pd.com/click?cdbxp

iTunes 11.2.2 is a security update. Use the Apple Software Updater to get the most current version.

Office Updates

One or more of these are likely to be of interest to most people.

Notepad++ 6.6.4 adds the ability to centralize your settings via Dropbox. This is not a security update.
https://12pd.com/click?npp

IcoFX 2.7 improves crop, trim, color dialog, rounded rectangle behavior, and others. This is not a security update.
http://icofx.ro/

SketchUp 14.1.1282 corrects several dozen non-security bugs. This is not a security update.
http://www.sketchup.com/

Scribus 1.4.4 corrects a number of bugs, improves several features and adds PDF/X-1a export, integrated barcode support, full support for OpenICC, and more. This is not a security update.
http://www.scribus.net/

Security Software Updates

One or more of these is likely to be of interest to most people.

OpenSSL 1.0.1h is a security update.

MalwareBytes’ Anti-Malware 2.0.2 corrects more than a dozen bugs, improves reliability, stability and performance, as well as cosmetic improvements. This is a security update.
https://12pd.com/click?mbam

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 0.624 Beta corrects several stability and sync bugs. This is not a security update.
http://obsproject.com/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 9 9.1.5.0 fixes several stability and reliability bugs, adds support for new discs. This is not a security update.
http://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

Synergy 1.5.0 makes progress on the sticky key bug. This is not a security update.
http://synergy-project.org/

RoboForm 7.9.7 fixes stability problems with Firefox & Chrome and improves accessibility. This is not a security update.
https://12pd.com/click?roboform

GoodSync 9.8.6 restores direct command-line functionality, improves UI, provides improved self-diagnostics. This is not a security update.
https://12pd.com/click?goodsync

CintaNotes 2.6.1 improves search, selection, and provides a number of usability fixes. This is not a security update.
http://cintanotes.com/

CCleaner 4.14.4707 improves Firefox support, adds new application support, minor UI improvements and bug fixes. This is not a security update.
https://12pd.com/click?ccleaner

WifiChannelMonitor 1.0 is a new release from Nirsoft. WifiChannelMonitor is an amazing utility for troubleshooting and scanning your Wi-Fi networks. This is the first release but it has quite an amazing feature set already.
http://www.nirsoft.net/utils/wifi_channel_monitor.html

MyEventViewer 2.11 adds secondary column sorting support and the ability to hide events meeting certain conditions. This is not a security update.
http://www.nirsoft.net/utils/my_event_viewer.html

WifiInfoView 1.60 adds percent column, fixes command-line scanning and adds the ability to scan repeatedly via the command line. This is not a security update.
http://www.nirsoft.net/utils/wifi_information_view.html

Autoruns 12.0 now reports the presence of batch file and executable image entries in the WMI database, a vector used by some types of malware. This is a security update.
http://sysinternals.com/

Procdump 7.0 improves support for lightweight reflection dumps on Windows 7 and Windows 8, adds debug print statements as a new trigger type, has support for memory commit duration triggers, and now includes an option to unregister Procdump as the system last-chance exception debugger. This is not a security update.
http://sysinternals.com/

BFGMiner 4.1.0 provides several bugfixes. This is not a security update.
https://github.com/luke-jr/bfgminer/

Hamachi 2.2.0.193 improves error reporting. This is not a security update.
http://help.logmein.com/SelfServiceDownloads

LogMeIn Mac 4.1.4401 and LogMeIn Win 4.1.4400 are security updates.
http://help.logmein.com/SelfServiceDownloads

Recover Keys 8.0.3.110 doesn’t provide a distinct changelog so should be treated as a security update.
http://recover-keys.com/en/download.html

Developer Updates

These are unlikely to be of interest to most people.

SQLite Database Browser 3.1.0 adds plotting, SQLite 3.8.2 grammar fix, file association fix for OS X, and updated license. This is not a security update.
http://sqlitebrowser.org/

MySQL 5.6.19 corrects a number of stability and reliability bugs, including crash bugs. This is not a security update.
http://www.mysql.com/downloads/installer/

TortoiseSVN 1.8.7 corrects several bugs. This is not a security update.
http://tortoisesvn.net/downloads.html

TortoiseGit 1.8.9.0 corrects over a dozen bugs, primarily related to UI and usability. This is not a security update.
http://code.google.com/p/tortoisegit/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 4.3.12-93733 corrects a couple dozen stability and reliability bugs. This is a security update.
http://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Dada Mail 7.0.4 corrects a bug with Amazon SES. This is not a security update.
http://dadamailproject.com/download/

phpMyAdmin 4.2.3 corrects a handful of bugs and imposes new minimal PHP (5.3) and MySQL (5.5) version requirements. This is not a security update.
http://www.phpmyadmin.net/home_page/news.php

Plupload 2.1.2 does not provide a changelog, so should be treated as a security update.
http://www.plupload.com/

Autoptimize 1.8.5 improves Apache compatibility, updates libraries, adds improved exclusion filters, and treats multisite sites distinctly for cache purging. This is not a security update.

bbPress 2.5.4 corrects several bugs. This is not a security update.

Cloudflare Cache Purge 1.0.7 fixes ajax bug. This is not a security update.

Conditional Widgets 1.8 simplifies UI. This is not a security update.

Easy Bootstrap Shortcode 4.3.1 fixes bugs and updates design. This is ot a security update.

Email Log 1.7.3 improves compatibility. This is not a security update.

Front End Upload 0.6.1 updates included libraries. This should be treated as a security update.

Multisite Enhancements 1.0.5 adds favicon support and fixes active plugin list. This is not a security update.

Quick Cache 140605.1 adds 404 caching, branched cache structure, auto-caching, auto-purge of specific sectional pages, improved compatibility, debugging, and several bug fixes. This is not a security update.

Smart YouTube 4.2.4 makes og:image optional. This is not a security update.

WooCommerce 2.1.10 provides a number of new features and bug fixes, including some major performance improvements for very large sites. This should be treated as a security update.

WP Edit 1.9 fixes RSS feed, makes cosmetic changes. This is not a security update.

WPtouch 3.3.4 updates libraries, improves mobile detection, adds WP 3.9.1 compatibility, fixes several bugs. This should be treated as a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2014-05-13

Hi, Folks!

It’s Patch Tuesday! Or should I say, it’s Heartbleed Fix Day!?

Over the last month, the world has made quite the news out of a popular open source security library, OpenSSL. SSL is the underlying framework for nearly all secure communication and encryption in the world, and OpenSSL is the library which powers over 2/3rds of this. This isn’t the first time that a security issue has been discovered in OpenSSL, and it surely won’t be the last. But this particular bug enables attackers to collect information from the memory of affected services and applications, effectively creating such a significant weakness that hundreds of vendors scrambled to patch the bug, while millions of accounts from thousands of sites and services were potentially compromised.

One of the worst aspects of a popular bug like this is that everyone and their mother has their own opinion of it’s ramifications, with some dismissing it entirely and others currently shaping a second (or third) layer of tinfoil. The truth is somewhere in between. This bug has dramatic significance to the security world. Cisco routers are affected (most with no fix in sight or anticipated), as are many ATM’s, many applications for every operating system platform, including email clients & servers, browsers, web servers, financial applications, routers, modems, middleware and dedicated security hardware. Some of these the individual vendors have said will never be updated. Many others require manual installation of the current OpenSSL libraries or recompiling.

As a rule, any application that touches the Internet or network should be treated as vulnerable until patched or verified to be secure. Over the course of the last month almost every affected vendor has released updates to address the vulnerability. Unfortunately, nothing short of a complete hardware and software audit can determine if you are vulnerable.

If you run a website or other web-accessible service, then before *and* after patching your software, hardware and devices, you should take the time to re-key your SSL certificates.

The important thing to understand about this vulnerability is that it first introduced over 2 years ago and only publicly disclosed last month. This means that all “secure” traffic over the entire last two years should be treated as suspect.

Change all your passwords. All of them. Really.

Re-key your SSL certificates.

Ensure that all your browsers and mobile devices are configured to check for certificate revocation.

Meanwhile, the first major exploit for now-defunct Windows XP was discovered in use the day after support for XP ended. In a move that surprised many in the security industry (myself included), Microsoft released an update to address this vulnerability to all current versions of Windows, and included a patch for XP, as well. This was a fantastic stop-gap for those still running XP, but is likely only an act of good faith, and will be the very last one you’ll see for XP.

And now, back to our regularly scheduled update series…

Microsoft released 10 updates for Windows, Office, Internet Explorer, .NET, Visual Studio and MSRT. This includes security updates (~95mb). A reboot is required. Approximately half of these patch vulnerabilities that are either actively being exploited or were publicly disclosed.
http://update.microsoft.com/

Apple released updates for iOS, Apple TV, AirPort, OS X and printer drivers. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

Adobe Flash Player 13.0.0.214 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Adobe AIR 13.0.0.111 is a security update.
Win: https://12pd.com/click?air
Mac: https://12pd.com/click?airmac

Java 7u55 is a security update. DO NOT INSTALL Java if you do not already have it installed! Remove it if you have any doubt whatsoever that you might need it. You can always install it again if you need it. If you do have it installed, make sure you update all versions that are installed, including both the 32-bit and 64-bit versions for your operating system, if both are installed.
http://www.java.com/en/download/manual.jsp

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Catalyst x64 14.4 corrects a device compatibility bug. This is not a security update.
https://12pd.com/click?atidriver

BullZip PDF Printer 10.5.0.2262 is now FIPS compliant, improves encryption, adds share installation, and improved troubleshooting. This is not a security update.
https://12pd.com/click?bullzippdf

Browser Updates

One or more of these are likely to be of interest to everyone.

Firefox 29.0.1 is a security update. Use Help, About to install the most current version.

Google Chrome 34.0.1847.131 is a security update. Use Menu, About to install the most current version.

SeaMonkey 2.26 is a security update. Use Help, About to install the most current version.

HTTrack 3.48.6 fixes several bugs. This is not a security update.
http://www.httrack.com/page/2/en/index.html

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 24.5.0 is a security update. Use Help, About to get the most current version.

NK2Edit 2.92 corrects a cosmetic bug. This is not a security update.
http://www.nirsoft.net/utils/outlook_nk2_edit.html

Internet Updates

One or more of these are likely to be of interest to everyone.

Adobe Shockwave 12.1.1.151 is a security update.
https://12pd.com/click?shockwave

Silverlight 5.1.30214 is a security update.
http://www.microsoft.com/silverlight/

Nmap 6.46 adds Heartbleed detection and fixes several crash bugs. This is not a security udpate.
http://nmap.org/

WinSCP 5.5.3 is a security update.
http://winscp.net/eng/index.php

Dropbox 2.6.33 fixes several reliability bugs. This is not a security update.
https://12pd.com/click?dropbox

DynDNS Updater 5.0.2 improves reliability with IPv6 and a service bug. This is not a security update.
https://www.dyndns.com/

Evernote 5.3.1.3363 fixes a reliability bug. This is not a security update.
http://www.evernote.com/

Google Drive 1.11 improves setup, adds service shortcuts and improves performance. This is not a security update.
https://drive.google.com/start

BrowsingHistoryView 1.51 corrects a search bug. This is not a security update.
http://www.nirsoft.net/utils/browsing_history_view.html

Media Updates

These are unlikely to be of interest to most people.

CDBurnerXP 4.5.3.4746 updates included libraries and fixes an audio compilation bug. This is not a security update.
http://cdburnerxp.se/

MPC HC 1.7.5 updates closed captioning, fixes CC-related crash bugs. This is not a security update.
http://sourceforge.net/projects/mpc-hc/

XBMC 13.0 is a major update that adds Android hardware decoding, performance improvements to Raspberry Pi and Android, stereoscopic 3D rendering, improved touchscreen support, UPnP, subtitles, and much more.
http://xbmc.org/

Game Updates

These are unlikely to be of interest to most people.

Minecraft 1.7.9 is a security update.
http://www.minecraft.net/

EA Origin 9.4.7.2799 does not provide a detailed change log so should be treated as a security update.

PS4 1.70 adds a number of new features and fixes. This is not a security update.
http://us.playstation.com/support/systemupdates/ps4/index.htm

SteamOS 07-May-2014 is a security update.
http://store.steampowered.com/steamos/download/?ver=custom

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader 11.0.07 is a security update. Use Help, Check for Updates to install the most current version.

Adobe Acrobat 11.0.07 is a security update. Use Help, Check for Updates to install the most current version.

OpenOffice 4.1.0 corrects over 300 bugs and improves reliability and several features. This is not a security update.
http://www.openoffice.org/download/

Adobe Illustrator 16.2.2 is a security update. Use the Adobe Updater to install the most current version.

Adobe FrameMaker 12.0.2 is a security update. Use the Adobe Updater to install the most current version.

Adobe Premiere Pro CC 7.2.2 is a bug fix release. Use the Adobe Updater to install the most current version.

Notepad++ 6.6.2 improves session handling, reliability, stability, and corrects several bugs. This is not a security update.
https://12pd.com/click?npp

Artweaver 4.5.3 fixes several bugs including a crash. This is not a security update.
http://www.artweaver.de/

Security Software Updates

One or more of these is likely to be of interest to most people.

Avast! Home Edition 9.0.2018 improves stability and reliability, especially within the stream filtering capability. This should be treated as a security update.
http://www.avast.com/free-antivirus-download

AVG Anti-Virus 2014.4577 corrects a handful of bugs including several performance improvements. This should be treated as a security update.
http://free.avg.com/us-en/download-free-antivirus

OpenSSL 1.0.1g is a security update.
https://www.openssl.org/

DNSQuerySniffer 1.25 adds cosmetic improvements and can now optionally add itself to the Windows firewall allow list. This is not a security update.
http://www.nirsoft.net/utils/dns_query_sniffer.html

RouterPassView 1.53 adds support for more hardware. This is not a security update.
http://www.nirsoft.net/utils/router_password_recovery.html

SmartSniff 2.10 can now optionally add itself to the Windows firewall allow list. This is not a security update.
http://www.nirsoft.net/utils/smsniff.html

Wireshark 1.10.7 corrects several bugs, improves protocol handling. This is not a security update.
http://www.wireshark.org/

Capture Updates

These are unlikely to be of interest to most people.

Greenshot 1.1.9.13 corrects several bugs and adds string replacement for output and color scaling. This is not a security update.
https://12pd.com/click?greenshot

Open Broadcaster Software 0.622 Beta corrects a reliability bug. This is not a security update.
http://obsproject.com/

SnagIt 12.0.0 is a major update including a dozen new features, removing text capture, improved editor, and video trimming. This and newer versions no longer support Windows XP or Vista. This is not a security update.
http://download.techsmith.com/snagit/enu/snagit.exe

VideoCacheView 2.67 corrects a cosmetic bug. This is not a security update.
http://www.nirsoft.net/utils/video_cache_view.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 9.1.4.2 adds rotation, mp4 and mkv support, several crash bugs, and adds multiple source support. This is not a security update.
http://www.dvdfab.cn/download.htm

MakeMKV 1.8.10 improves reliability for discs with errors, improves performance, and several bug fixes. This is not a security update.
http://www.makemkv.com/download/

Utility Updates

These are unlikely to be of interest to most people.

CintaNotes 2.6 adds search and replace, improved export and editor, and a dozen bugfixes. This is not a security update.
http://cintanotes.com/download

Bitcoin 0.9.1 is a security update.
http://bitcoin.org/en/download

BFGMiner 3.10.0 is a security update.
https://github.com/luke-jr/bfgminer/

CGMiner 4.3.1 is a security update.
https://github.com/ckolivas/cgminer

MultiBit 0.5.18 is a security update.
https://multibit.org/

FileLocator Pro 7.2.2042 fixes a NEAR bug. This is not a security update.
http://www.mythicsoft.com/filelocatorpro/download

GoodSync 9.8.4 is a security update.
https://12pd.com/click?goodsync

GPU-Z 0.7.8 improves reliability and adds support for newer hardware. This is not a security update.
http://www.techpowerup.com/downloads/SysInfo/GPU-Z/

Intel CPU Diagnostic 2.10.0.0 adds newer hardware support. This is not a security update.
https://downloadcenter.intel.com/Detail_Desc.aspx?agr=Y&DwnldID=19792

LogMeIn 4.1.438x is a security update.
http://help.logmein.com/SelfServiceDownloads

Hamachi 2.2.0.188 corrects a stability bug. This is not a security update.
http://help.logmein.com/SelfServiceDownloads

NetworkTrafficView 1.85 adds cosmetic improvements and can now optionally add itself to the Windows firewall allow list. This is not a security update.
http://www.nirsoft.net/utils/network_traffic_view.html

WifiInfoView 1.55 improves cosmetic layout, adds more information about security mechanisms and updates internal MAC addresses file. This is not a security update.
http://www.nirsoft.net/utils/wifi_information_view.html

FolderChangesView 1.63 adds quick access to File Properties. This is not a security update
http://www.nirsoft.net/utils/folder_changes_view.html

ProduKey 1.66 adds a command-line option to suppress error messages. This is not a security update.
http://www.nirsoft.net/utils/product_cd_key_viewer.html

Acronis True Image (WDC) 16.0.0.5962 updates improves Windows 8.1 support. This is not a security update.
http://support.wdc.com/product/downloaddetail.asp?swid=119&wdc_lang=en

CCleaner 4.13.4693 improves compatibility with Windows 8.1.1, Chrome, Opera, unmounted disks and various other fixes. This is not a security update.
https://12pd.com/click?ccleaner

Defraggler 2.18.945 adds performance reporting, Quick Optimize for SSD, improved health reporting, and other fixes. This is not a security update.
https://12pd.com/click?defraggler

Speccy 1.26.698 improves SMART support, Windows 8.1 compatibility, hardware detection and other fixes. This is not a security update.
https://12pd.com/click?speccy

Recover Keys 8.0.3.109 does not provide a changelog, so should be treated as a security update.
http://recover-keys.com/en/download.html

AccessChk 5.2 adds support for file and printer shares, adds filtering options for viewing accesses related to specified accounts and now includes the System Access Control List (SACL) when it dumps security descriptors. This is a security update.
http://sysinternals.com/

PsExec 2.11 fixes a bug in the implementation of the execute as local system option on Windows Server 2003. This is a security update.
http://sysinternals.com/

Sigcheck 2.1 now reports a file’s entropy, can dump information about catalog files, and can list the certificates installed in the per-user and machine certificate store. This is a security update.
http://sysinternals.com/

VMMap 3.12 fixes several reliability bugs. This is a security update.
http://sysinternals.com/

Developer Updates

These are unlikely to be of interest to most people.

TortoiseSVN 1.8.6 is a security update.
http://tortoisesvn.net/downloads.html

Virtual Machine Updates

These are unlikely to be of interest to most people.

VMware Player 6.0.2 is a security update.
http://www.vmware.com/products/player/

Web Package Updates

These are likely to be of interest only to web developers.

phpMyAdmin 4.2.1 corrects several bugs. This is not a security update.
http://www.phpmyadmin.net/home_page/news.php

Adminer 4.1.0 adds brute-force detection and fixes several bugs. This is not a security update.
http://www.adminer.org/en/

Drupal 7.28 is a bugfix following shortly after another security update. Treat this as a security update.
http://drupal.org/download

phpList 3.0.6 is a security update.
http://www.phplist.com/download

Dada Mail 7.0.3 fixes several bugs. This is not a security update.
http://dadamailproject.com/download/

MailEnable 8.50 adds global search and TinyMCE support to webmail, improved indexing engine, reduced bandwidth requirements, improved ActiveSync and Autodiscovery support. This is not a security update.
http://www.mailenable.com/

ScreenConnect 4.3.6563.5232 corrects a handful of bugs, including improved clickonce behavior and search/filter sorting. This is not a security update.
http://www.screenconnect.com/Download

WordPress 3.9.1 fixes 34 bugs in the recent 3.9 release. This is not a security update.
http://wordpress.org/

Activate Update Services 1.0.7 provides no changes. This is not a security update.

Anti-Splog 2.1.1 fixes a reliability update with IP blocking. This is not a security update.

Autoptimize 1.8.4 corrects a comment storage bug. This is not a security update.

bbPress 2.5.3 fixes several bugs. This is not a security update.

BuddyPress 2.0.1 fixes a couple dozen bugs with the new 2.0 release. This is not a security update.

BuddyStream 3.2.5 is a compatibility update. This is not a security update.

Conditional Widgets 1.7 is a cosmetic update. This is not a security update.

Contact Form 7 3.8.1 is a security update.

Cookies For Comments 0.5.5 is a security update.

Easy Bootstrap Shortcode 4.2.1 corrects a missing file bug. This is not a security update.

Email Log 1.7.2 fixes a bug in registration. This is not a security update.

Multisite Enhancements 1.0.4 fixes a couple bugs. This is not a security update.

Multisite Plugin Manager 3.1.4 fixes a major stability bug. This is not a security update.

Raw HTML 1.4.12 updated for WP 3.9 compatibility. This is not a security update.

Smart YouTube 4.2.3 corrects Facebook sharing. This is not a security update.

Theme Authenticity Checker 1.5.2 updated for WP 3.9 compatibility. This is not a security update.

Top Commentators Widget 1.4.2 is a compatibility update. This version WILL NOT work with WP 3.9+! This is not a security update.

Ultimate TinyMCE 5.3 is a compatibility update. This version WILL NOT work with WP 3.9+! This is not a security update.

WooCommerce 2.1.8 corrects a couple dozen bugs, improves reliability and consistency. This is not a security update.

WP Update Server 20140421 improves logging consistency. This is not a security update.

WP Edit 1.8 adds font px support, updates TinyMCE and corrects a path bug. This is not a security update.

WPtouch 3.2.4.1 corrects WPML behavior, adds Windows Phone support and updates output, languages and product links. This is not a security update.

Zemanta 1.2.4 fixes an upload filename bug. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/