Updates 2024-05-14

Welcome back, Folks!

Today is Patch Tuesday for May, 2024.

There were 580+ major hacks, and over 460 application updates this month. It’s an insanely big month, with about 5 GB of updates for most users.

This Month in Technology

First, let me apologize for this list. It’s 3x longer than it was only a couple months ago and that’s not really my fault. I really want to keep sharing the hacked lists but at the rate it’s going 3/4 of the newletter will just be the list by the end of Summer. I’m going to need to rework this next month when I have more time.

1+1 Media, 4LEAF, Inc, A123 Systems, Access Intelligence, Accor, ACFIN SA, Active PCB Solutions, Acurrate Lock & Hardware, ADCOM911, Advanced Business Networks, Advarra, Inc., Aero Tec Laboratories Inc, Aetna ACE, Affordable Payroll & Bookkeeping Services, Agate Construction, Agency for the Sustainable Development of the Saint Nazaire Region, France, AirAsia Group, Airsoft, Allianz Global Risks U.S. Insurance Company, Alltruck Bodies, Alrajhi Bank, Altipal S.A.S, Amazon, Amberstone Security, AMD Radeon DirectX 11 Driver, American Builders Outlet, American Renal Associates, American Renal Management, Andovers Federal Credit Union, APS – Automotive Parts Solutions, Arbitrum, Argentina’s national registry, Army Welfare Trust, Array Networks, Asantee Games, Asbury Automotive Group, Ascension healthcare, Ashley Home Stores, Aspire Health Alliance, Astra Daihatsu Motor (ID), AT&T, Atlantic States Marine Fisheries Commission (ASMFC), Aussizz Group, Autodesk Drive, Axip Energy Services, Ayesa, B&G Foods, Badger Tag & Label, Banco Santander, Banten Regional Development Bank Tbk, Barclays Bank, Base Network, Bay Oral Surgery & Implant Center, Bağcılar Training and Research Hospital, Bega Valley Council, Belarusian KGB, Belvedere Vodka UK, BenefitsCal, Berry, Dunn, McNeil & Parker, Best Reward Federal Credit Union, BetterHelp, Bharat Sanchar Nigam Limited (BSNL), BHF Couriers, Biggs Cardosa Associates, Inc., Bira 91, Bitfinex, Blackstone Valley Community Health Care, Blooms Today, Bluebonnet Trails, Bluegrass Care Navigators, BMW BANK, Bodyartforms LLC, Boeing, Bradford-Scott, Brandywine Realty Trust, BreachForums, Bridgeway Center, Inc., British Columbia, Canada, Brocade SANnav SAN Management Software, Brovedani Group, Bundeswehr, Byron council, Café Soluble, California library system, Calumet Civil Contractors, Inc, Camino Nuevo Charter Academy, Canatal Industries, Canberra club, Cannes hospital, Cariboo library system, Carpetright, Catholic Diocese of Cleveland, Catholic Medical Center (CMC), CCM Health, Central Bank Argentina, Central Carolina Insurance Agency Inc, Central Florida Equipment, Central Power Systems & Services, Central Virginia Federal Credit Union, Change Healthcare, Channel Logistics LLC, Chemring Group, Cherry Health, Chicony Electronics, Chirp Systems, Christie’s Auction House, Cisco Duo, Cisco Integrated Management Controller (IMC), City of Buckeye, AZ, City of Donges, France, City of El Cerrito, California, City of London, UK, City of Pensacola, Florida, City of Wichita, Kansas, Cleveland Catholic Diocese, Community First Credit Union, Confins Transport, Consensus Medical Group, Consol Energy, Continuum Health, Coppel, Coradix-Magnescan, CorporateStack, Costa Edutainment SPA, Council for Relationships, County of Coffee, Georgia, County of Hernando, FLCounty of Jackson, MOCounty of Los Angeles, CA, Department of Health Services, County of Robeson, NC, County of San Bernardino, CA, CrushFTP, Cushman Contracting Corporation, CyberPower UPS, D-Link Devices, Daoust, Dawson Creek, Deeside Timberframe, Delinea Secret Server, Dell, Dental Group of Amarillo, Dental Health Services, DES Architects and Engineers,
Designed Receivable Solutions, Deutsche Telekom, Digi Yatra Foundation, Dijk, Discord, District of Columbia’s Department of Insurance, Securities and Banking (DISB), DocGo, Dominican Republic vaccination data, Donco Air, Doyon Drilling, Drive Sally LLC, DRM Arby’s, Dropbox Sign, Duvel Moortgat, D’amico & Pettinicchi, LLC, E-ZPass, East Central University, OK, Eden Project, Edlong and Holstein Association USA, Educational Computer Systems, EduMarket, Efrat Airlines, Egypt Ministry of Supply and Internal Trade, El Salvador, El Salvador’s Chivo Wallet, Electric Mirror, Empath Health, Engineered Automation of Maine, Enstar, Epilepsy Foundation of Metro NY, EqualizeRCM and 1st Credentialing, Ernest Health, Eucatex, European Parliament, Europol, EvoBanco, F5 Central Manager, Feldstein & Stewart, Fic Expertise, Financial Business and Consumer Solutions (FBCS), Firstmac, FiXBET, Floirac, Footdistrict, Fort Worth, Texas, Foxit Reader, French Ministry of Agriculture, Frontier Communications, FrotCom, GBI Genios, Gerber Life Insurance Company, Giant Tiger, GitHub Search, GitLab, Glendale Unified School District, Glints, Global Tel Link, Google Chrome, Google, Graphic Solutions Group Inc, Grassroot DICOM, Great Firewall of China, Green Diamond Resource Company, Greylock McKinnon, Grindr, Grodno Azot, Group Health Cooperative of South-Central Wisconsin (GHC-SCW), Guadeloupe, Canada, Guardant Health, Inc., Guardian Analytics, Hapy Bear Surgery Center, Hardeman County Community Health Center, Hedgey Finance, Helapet Ltd, Helsinki Education Division, Heritage Cooperative, High Performance Services, Hillsong Church, Hirsh Industries, Hit Promotional Products, Home Depot, Hong Kong Arts Development Council, Hong Kong College of Technology, Hong Kong Fire Department, Hong Kong Union Hospital, Hooker Furniture, Hosocongty, Hospital Simone Veil, 100 hotels in Japan, Houser LLP, Hoya Optics, HP, HPE ArubaOS Devices, HSBC Bank, HTW, Hub International Limited, Human Events, IBM’s Enterprise Terminal, iCabbi, ICICI Bank, IDS Michigan, Illinois State Credit Union, Illinois Tollway, In The Know, India’s Central Board of Secondary Education (CBSE), India’s HRYLabour, India’s ICICI Bank, Ingo Money Inc, Inland Physicians Billing Services, Intel CPUs (Spectre v2), Intel Hardware Firmware, Interim Healthcare of Lubbock, International Baccalaureate Exam, Inventum Øst, Iranian Pipeline Company, Iress Ltd, Israel Electric Corporation (IEC), Israeli Real Estate Companies, ISTA International GmbH, It4 Solutions Robras Corp, Italian Red Cross Network, Ivanti Avalanche, J.P. Morgan Chase, JE Owens, Kaiser Foundation Health Plan, Inc., Kaiser Permanente, Kameymall, Kansas City Scout System, Keenan & Associates, Kintetsu World Express, Kisco Senior Living, KISTI SMART K2C, Kowloon Shangri-La, La Chapelle-des-marais, France, Ladakh Social Welfare Department, Lamont Hanley & Associates, Latvian TV Channels, LDLC, Le Slip Français, Leicester City Council, Lenovo Hardware Firmware, Lewis & Clark College, LG TVs, Lieberman LLP, Lilly Drogerie, Lincoln Project, LiteSpeed Cache, LivaNova, LiveHelpNow, LocalPlace JP, London Drugs, London Stock Exchange Group, Lopesan Hotels, Lotz Trucking, Lpdb Kumkm, LRB Info Tech, Lukfook Jewellery, Lumina Americas, Luxor, LYON TERMINAL, M2E Consulting Engineers, Macedonian Joint Stock Company, Madata, Magnet+, Malone & Co, Manchester’s Catholic Medical Center, Marpai Health, Mauritzon, McKinley Packing, Medequip Assistive Technology, Medical Home Network, MediExcel, Medios de Prevención Externos Sur SL, MedStar Health, Meduza, Mellitah Company, Mercedes, Merchants Benefit Administration, Metropolitan Life Insurance Company, Microsoft, Microsoft Azure Entra ID, Microsoft Outlook, Missouri Electric Cooperatives, Moffitt Cancer Center and Research Institute, Moldova Government, MoldTech, Molen & Associates, Monash Health, Monday.com, MongoDB, Monocon, Montoir-de-Bretagne, France, Moscow Moskollector, MovieBoxPro, MRA – The Management Association, Mt Hira College, Myers Automotive Group, National Energy Research Scientific Computing Center (NERSC), Nespresso, Nestle, New Boston Dental Care, New Hudson Facades, New Mexico Administrative Office of the District Attorneys, New Mexico Highlands University, New York’s state legislature, Nexperia, NHS Dumfries and Galloway, NK Parts Industries, NorthBay Health, Nota by M&T Bank and TTEC Databases, Nothing, Nova Scotia Health, NRS Healthcare, Numotion, NVIDIA, OakBend Medical, Octopharma Plasma, OE Federal Credit Union, Ogero, Ohio Lottery, Okta, Olson Steel, Olympus Group, OracleCMS, OraSure, Original Herkimer Cheese, OrthoConnecticut, Outabox, Pacific Guardian, Pak Suzuki, Palo Alto Networks PAN-OS, Panda Restaurant Group, Pandemonium Rocks, Panoramic Health, Parent Teacher Association (PTA), Paris Saint-Germain (PSG), Parklane Group, Patricia AI, Paychex, Inc., Paytm, Pennsylvania Convention Center, Pennsylvania Insurance Department, Peplink Smart Reader, Persyn, Philadelphia Inquirer, Philips Respironics, Phoenix Business Consulting, PHP, Pifer’s Auction & Realty, Pilot, Pinnacle Engineering, Pinnacle Orthopaedics, Pioneer Oil Company, Inc, Piping Rock, Police Service of Northern Ireland (PSNI), Porniche, France, Pratham, Precision Fluid Controls, Premier Dermatology, Prisma Finance, Pro Metals LLC, Process Solutions, Procuraduría General de la República, Profile Products, Progress Flowmon, Promarka Peru, Pub And Club, Public service of Wallonia, PWS – The Laundry Company, Qantas, QNAP, Quebec CEGEPs, RAF El Salvador, Randolph Health, RaySharp, RB Woodcraft, Reading Electric, Rebound Orthopedics & Neurosurgery, Recology, Redwood Coast Regional Center, Rehabilitation Hospital of Southern New Mexico, Reliable Networks, Rocky Mountain Sales, Roku, Romeo Pitaro Injury and Litigation Lawyers, Rushd Bookstore, Rutgers University, Räddningstjänsten Vä stra Blekinge, Sachkhere, Sahara Bank, Saint-Nazaire, France, Sanok Rubber Company, Saudi Water Facilities, Scanda Group, Scigames, Scottish health board, Seaman’s Mechanical, SEK Studio, Seneca Nation Health System, Sentry Data Management, Servicio Móvil, Shadow, Siemens Manufacturing, Sigmund Espeland, Signature Healthcare Services LLC, SigningHub, Simmons Perrine Moyer Bergman PLC, Singapore’s Ministry of Education, Singapore’s Mobile Guardian, SinglePoint Outsourcing, Inc., SIS Automatisering, Sisense, Skanlog, Sleep Data Holdings, LLC, Sleep Management Institute, Smoke Alarm Solutions, SOA Architecture, Softura, Somerset Dental Las Vegas, Somerville, Sonadev, France, South Africa’s International Trade Administration Commission (ITAC), South Korean courts, South Korean cable & satellite, South Korean Defense Companies, South Texas Oncology and Hematology, Space X, Space-Eyes, Speedy France, Sri Lanka’s visa system, SSCL, SSS Australia, St-Jerome Company, St. Helena Public Library, Stainless Foundry & Engineering, StarWallets, States of Guernsey, Sterling Holidays, Sterling Plumbing Inc., Studio LAMBDA, Swisspro, SynLab Italia, Sysmex America, Inc, T2 Tea Australia, Tamil Nadu Police, Tappware, Targus, Tatarstan, Russia, Taxi Software, Ted Brown Music, Telecom Argentina, Telit Cinterion modems, Texas Retina Associates, The Epilepsy Institute, The Georgia Institute for Plastic Surgery, The Heritage Foundation, The Kennedy Collective, The Lagunitas Brewing Company, The Line Up, Inc, The May Institute, Inc., The Philadelphia Inquirer, PBC, The Post and Courier, The Post Millennial, The Prudential Insurance Company of America, The Roman Catholic Diocese of Phoenix, The State of Kansas Office of Judicial Administration, The Tech Interactive, Theatrixx Technologies, Therapeutic Health Services, 50,000 Tinyproxy servers, Tipton Municipal Utilities, IN, Toolmarts, Toronto Transit Commission, Transamerica Life Insurance Company, Trib Total Media, True Homes, LLC, TRUE Solicitors, Trylon Srl, Tyler Technologies, UAE Government, UK Government’s System Database, UK Ministry of Defence, UK Royal Mail, 20 Ukrainian Energy and Water Sites, Ukrainian TV, United Nations Development Programme, University of Alabama, University of Alberta, University System of Georgia (USG), US Air Force Academy (USAFA), US Atlantic Fisheries, US Coast Guard Reserve, US Consumer Database, US Health and Human Services (HHS), US Internal Revenue Service (IRS), US Medicare, US Patent and Trademark Office, US Space Forces (USSF) Military Bases, USA Health Providence Hospital, Utica Mack, Valley Mountain Regional Center, Valley Veterinary Clinic, LLC, Van Gogh Museum, Varo Bank, N.A., Veeam, Velvet Capital, Verizon, Victorian Ambulance Union, Virginia Union University, VirtualBox, Visionary Integration Professionals, VMware Cloud Foundation, VMware ESXi, VMware Fusion Pro/Fusion, VMware Workstation Pro/Player, Void Interactive, Volkswagen, VPN traffic (TunnelVision), VTRP, W.I.S. Sicherheit-Service GmbH & Co. KG, Washington State’s Swinomish Casino and Lodge, WebTPA Employer Services, LLC, WEL Partners, Wells Fargo, Welsh Government, Wescom Central Credit Union, West Idaho Orthopedics and Sports Medicine, Westboro Baptist Church, WhatsApp, Windows, Windows Apps, Windows Print Spooler, WOM, World Architects, World-Check, WP Forminator plugin, WP-Automatic Plugin, Xiaomi, Yale Mortgage, YRW Limited – Chartered Accountants, ZA Government Employees Pension Fund’s (GEPF), ZircoDATA, and Zscaler Inc have reported hacking or compromises this month.

Central Power Systems & Services, Final Fantasy, Frontier Communications, Kansas City’s official website, Ogero, Reddit, and Telegram have suffered from outages this month.

Last months updates broke Outlook, Windows (thanks ManageEngine), and VPN connections.

An update to ManageEngine has caused thousands of Windows machines to fail to boot. I guess that’s one way to make sure that they can’t be hacked through ManageEngine vulnerabilities?

Windows has officially added advertisements to the Windows 11 Start Menu.

The PuTTY Pageant key generation weakness will require millions upon millions of certificates to be rekeyed.

The Windows Boot Manager update released in January still has no automated fix from Microsoft. Third parties have created several methods of installing the update, and the closest-to-perfect automation yet requires seven (7!) restarts.

Microsoft has announced plans to implement fully locked down DNS via a pairing of DNS and the firewall, branded Zero Trust DNS – ZTDNS.

A recent technical paper described the process of using LLM (GPT-4) to automate the process of building exploits for newly discovered vulnerabilities. Reviews of the paper tend to acknowledge that it can be used in this fashion but focus instead on the use of the word “autonomously” which they treat as sentience. No guys, the paper isn’t saying that Skynet is here, just that LLMs are getting to the point where they can build functional exploit code based on brief descriptions of vulnerabilities.

I first saw the description of “Kobold Letters” a couple months ago. While a very creative use of CSS and an interesting idea, what are the chances that this kind of thing would actually be used in real life? 100%. I’ve now seen this behavior on three different client mail accounts in Microsoft Online and Gmail.

The founder of Telegram has publicly reported that the FBI pressured an employee to build a backdoor into the system. They refused.

Thunderbird has added Microsoft Exchange support. This means you won’t be forced to use the “New Outlook” crapp to access your Microsoft Exchange accounts. 🙂

Now for the good news:

We won. Sony caved on the Helldivers 2 privacy-violating “account linking” change. 🙂

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is insane this month. The typical computer should see roughly 5 GB in updates today. Let’s get started.

Microsoft released updates to address 67 vulnerabilities in .NET and Visual Studio, Azure Migrate, Microsoft Bing, Microsoft Brokering File System, Microsoft Dynamics 365 Customer Insights, Microsoft Edge (Chromium-based), Microsoft Intune, Microsoft Office Excel, Microsoft Office SharePoint, Microsoft WDAC OLE DB provider for SQL, Microsoft Windows SCSI Class System File, Microsoft Windows Search Component, Power BI, Visual Studio, Windows Cloud Files Mini Filter Driver, Windows CNG Key Isolation Service, Windows Common Log File System Driver, Windows Cryptographic Services, Windows Deployment Services, Windows DHCP Server, Windows DWM Core Library, Windows Hyper-V, Windows Kernel, Windows Mark of the Web (MOTW), Windows Mobile Broadband, Windows MSHTML Platform, Windows NTFS, Windows Remote Access Connection Manager, Windows Routing and Remote Access Service (RRAS), Windows Task Scheduler, Windows Win32K – GRFX, Windows Win32K – ICOMP, and MSRT. This includes security updates. A reboot is required.

Oracle released 441 security updates this quarter to address vulnerabilities in 119 applications.
https://www.oracle.com/security-alerts/cpuapr2024.html

Apple released updates for iOS 16.7.8, iOS 17.5, iPadOS 16.7.8, iPadOS 17.5, iTunes 12.13.2 for Windows, macOS Monterey 12.7.5, macOS Sonoma 14.5, macOS Ventura 13.6.7, Safari 17.5, tvOS 17.5, and watchOS 10.5. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 16.7.8 and 17.5 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 6.7.8 and 17.5 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 10.5 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 17.5 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 124.0.6367.154 and 120.0.6099.310 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Fedora 40-1.14 is a major update, replacing BerkeleyDB with alternatives, updating libraries, and including adding new features and defaults. This should be treated as a security update.
https://getfedora.org/en/workstation/download/

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Sonoma (14.x) means that macOS Big Sur (11.x) and older are no longer supported. If you can not install at least macOS Monterey (12) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v23H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 24.4.1 adds support for new software, performance improvements, and resolves several bugs. This is not a security update.
https://www.amd.com/en/support

Daemon Tools Lite 12.1.0 improves tooltips, and resolves a couple bugs. This is not a security update.
https://www.daemon-tools.cc/products/dtLite

Dymo Connect for Desktop 1.3.2.18 doesn’t provide a detailed change log so should be treated as a security update.
https://www.dymo.com/label-makers-printers/labelwriter-label-printers/dymo-labelwriter-450-duo-thermal-label-printer/SAP_1752267.html

TP-Link Archer AX55 v1 240325 adds almost a dozen new features, improves stability and resolves several bugs. This is a security update.
https://www.tp-link.com/us/support/download/archer-ax55/v1/#Firmware

TP-Link Archer AX73 v2.0 240323 resolves several bugs. This is a security update.
https://www.tp-link.com/us/support/download/archer-ax73/v2.0/#Firmware

UniFi Network Server 8.1.127 enhances firewall rules visibility, adds tunnel IP addresses, OSPF dynamic routing support, and resolves a dozen bugs. This is not a security update.
https://www.ui.com/download/releases/network-server

VIISAN OfficeCam 7.1.19.0 doesn’t provide a change log so should be treated as a security update.
https://www.viisan.com/en/download/type1.html

Wacom Driver 6.4.6-1 adds support for newer hardware, resolves several bugs and improves stability.
https://www.wacom.com/en-us/support/product-support/drivers

Xerox Smart Start 2.0.34.0 doesn’t provide a change log so should be treated as a security update.
https://www.support.xerox.com/en-us/content/143617

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.65.133 is a security update.
https://brave.com/

Firefox 126 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 115.11.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 124.0.6367.207 is a security update.
https://www.google.com/chrome/

Microsoft Edge 124.0.2478.97 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Vivaldi 6.7.3329.29 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Spark 3.15.5.72973 resolves several AI-related bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.15.5.72972 resolves several AI-related bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 115.10.2 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 8.0.10 is a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 8.0.1 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

Dropbox 199.4.6287 removes a cosmetic defect. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 211.0.0.18.236 is a security update.
https://www.messenger.com/download

FileZilla Client 3.67.0 is a security update.
https://filezilla-project.org/

FileZilla Server 1.8.2 is a security update.
https://filezilla-project.org/

FreeFileSync 13.6 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 90.0 resolves several bugs. This is the last version to support macOS 10.15 – if your hardware can not support macOS 11 you should have already removed it from the Internet, but if not, please take this as one more signal that it’s time to replace it.
https://drive.google.com/start

Microsoft Teams 1.7.00.10152 resolves several bugs. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 29.0.0 is a major update, resolving dozens of bugs, updating libraries, and improving workflow and design. This should be treated as a security update.
https://nextcloud.com/

Nmap 7.95 adds over 6,500 more fingerprints, new scripts and resolves several bugs. This is a security update.
https://nmap.org/

PuTTY 0.81 is a security update.
https://www.chiark.greenend.org.uk/~sgtatham/putty/latest.html

Signal 7.8.0 adds emoji call responses and resolves several bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.6.2 adds emoji call responses, adds sent message editing, and resolves several bugs. This is not a security update.
https://signal.org/android/apk/

Skype 8.116.0.213 improves stability. This is not a security update.
https://www.skype.com/

Syncthing 1.27.7 resolves a potential security bug.
https://syncthing.net/

Telegram 5.0.1 resolves several bugs. This is not a security update.
https://telegram.org/

USB Drive Log 1.13 adds black background support. This is not a security update.
https://www.nirsoft.net/utils/usb_drive_log.html

Z-Library 1.02 doesn’t provide a change log so should be treated as a security update.
https://z-library.se/z-access#desktop_app_tab

Zoom 6.0.4.38135 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.4 resolves several bugs. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.1.9 resolves several bugs. This is a security update.
https://www.bitwig.com/download/

Grayjay 240 adds several new features, sources, improvements, and resolves a dozen bugs. This is not a security update.
https://grayjay.app/index.html

iTunes 12.13.2.3 is a security update.
https://www.apple.com/itunes/download/

Plex Desktop 1.92.1.140 doesn’t provide a detailed change log so should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.60.1.134 updates libraries. This should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.40.2.8395 resolves several bugs, including an installation path issue. If you used a custom path you will need to uninstall and reinstall in order for future automatic updates to work correctly. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

GameMaker Studio 2024.4.0.137 changes homepage. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.3.201 resolves several bugs and improves interface. This is not a security update.
https://gdevelop.io/download

Minecraft Server (Bedrock) 1.20.81.01 does not provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Minecraft Server (Java) 1.20.6 does not provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server

Nintendo Switch 18.0.1 resolves several bugs. This is a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 2024.430 resolves several bugs and improves hardware support. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2024-05-13 resolves several bugs. This is not a security update.
https://store.steampowered.com/news/app/593110
By the way, we won. Sony caved on the Helldivers 2 privacy-violating “account linking” change. 🙂

SteamOS SteamDeck Update 2024-05-03 is a security update.
https://store.steampowered.com/news/app/1675200/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Acrobat and Reader 24.002.20759 and 20.005.30636 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb24-29.html

Adobe Aero 0.24.4 is a security update.
https://helpx.adobe.com/security/products/aero/apsb24-33.html

Adobe Animate 23.0.6 and 24.0.3 are security updates.
https://helpx.adobe.com/security/products/animate/apsb24-36.html

Adobe Dreamweaver 21.4 is a security update.
https://helpx.adobe.com/security/products/dreamweaver/apsb24-39.html

Adobe FrameMaker 2020.6 and 2022.4 are security updates.
https://helpx.adobe.com/security/products/framemaker/apsb24-37.html

Adobe Illustrator 28.5 and 27.9.4 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb24-30.html

Adobe Substance 3D Designer 13.1.2 is a security update.
https://helpx.adobe.com/security/products/substance3d_designer/apsb24-35.html

Adobe Substance 3D Painter 10.0.0 is a security update.
https://helpx.adobe.com/security/products/substance3d_painter/apsb24-31.html

Aronium 1.43.0.2 adds dual currency and night theme, improves refund behavior, and resolves several bugs. This is not a security update.
https://aronium.com/

Audacity 3.5.1 adds a bunch of new features and resolves dozens of bugs. This is not a security update.
https://www.audacityteam.org/download/

Calibre 7.10.0 adds export support, spell check, color inversion and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Columns++ 1.0.6 improves wrapped line caompatibility. This is not a security update.
https://github.com/Coises/ColumnsPlusPlus

Formatta Filler 8.19.0.4 doesn’t provide a change log so should be treated as a security update.
https://formatta.com/formatta-products/complete-submit/

GIMP 2.10.38 doesn’t provide a detailed change log so should be treated as a security update.
https://www.gimp.org/

Java 8u411 is a security update.
https://www.java.com/en/download/manual.jsp

JShelter 0.18 improves compatibility. This is not a security update.
https://jshelter.org/install/

Kdenlive 24.02.2 improves compatibility and resolves several bugs. This is not a security update.
https://kdenlive.org/

Kindle for PC 2.3.70840 doesn’t provide a change log so should be treated as a security update.
https://www.amazon.com/kindleforpc

LibreOffice 7.6.7 resolves over 40 bugs. This is a security update.
https://www.libreoffice.org/

LibreOffice Fresh 24.2.3 resolves over 75 bugs. This is a security update.
https://www.libreoffice.org/

Manager 24.5.13.1531 adds several new features and improves email integration and display. This is not a security update.
https://www.manager.io/

Nextcloud Desktop 3.13.0 resolves dozens of bugs and updates libraries. This is a security update.
https://nextcloud.com/

Notepad++ 8.6.7 improves multiedit and language support, and resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

PDF-XChange Editor 10.3.0.386 adds page extraction, label modification, improves sort and group behavior and resolves dozens of bugs. This is not a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

QuickBooks Pro 2022 20240509-R15_25 updates to backend processes. This is not a security update.
https://downloads.quickbooks.com/app/qbdt/products

QuickBooks Pro 2023 20240509-R12_15 updates to backend processes. This is not a security update.
https://downloads.quickbooks.com/app/qbdt/products

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 2.9.0 adds native rules, timezone improvements, and adds ability to change default conditional when searching. This is not a security update.
https://github.com/countercept/chainsaw

Microsoft Edge Policy 2024.05.07 updates policies. This is not a security update.
https://github.com/MicrosoftDocs/Edge-Enterprise/blob/public/edgeenterprise/microsoft-edge-policies.md

OpenSSL 3.3.0 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN (macOS) 4.2.2 improves performance. This is not a security update.
https://protonvpn.com/download

RogueKiller 15.16.1 updates engine and resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Stinger 13.0.0.118 adds support for more detections. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

SuperAntiSpyware 10.0.1266 resolves several bugs. This is not a security update.
https://www.superantispyware.com/download.html

Tails 6.2 is a security update.
https://tails.net/install/download/index.en.html

Velociraptor 0.72 adds EWF support and resolves several bugs. This is not a security update.
https://github.com/Velocidex/velociraptor/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 24.1.3 improves OCR, performances, updates libraries and resovles several bugs. This is a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.1.7 resolves several couple bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

StreamFab 6.1.7.7 improves compatibility and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 2.0.2.0 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.32 improves compatibility, adds support to import from more third-party platforms, and resolves several bugs. This is a security update.
https://1password.com/downloads/

Agent Ransack 2022.3434 adds support for OneNote and resovles several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

AOMEI Partition Assistant 10.4.0 improves the user interface. This is not a security update.
https://www.diskpart.com/

Bitwarden 2024.4.2 improves passkeys support and secrets manager, and adds a new Authenticator app. This is not a security update.
https://bitwarden.com/

BulkFileChanger 1.73 resolves a timezone-related bug. This is not a security update.
https://www.nirsoft.net/utils/bulk_file_changer.html

CCleaner 6.23.11010 resolves several bugs. This is a security update.
https://www.ccleaner.com/

DesktopOK 11.21 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.1.92.0 resolves a .git/.gitignore bug, updates .NET library and translations. This is a security update.
https://dngrep.github.io/

ExplorerPatcher 22621.3527.65.2 resolves several bugs. This is not a security update.
https://github.com/valinet/ExplorerPatcher/

FileLocator Pro 2022.3434 adds support for OneNote and resovles several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

FoneTool 2.6.1 adds iOS Data Recovery and resolves a crash bug. This is not a security update.
https://www.fonetool.com/download.html

Git SCM 2.45.0 adds dozens of new features and behaviors, and resolves over 50 bugs. This is not a security update.
https://git-scm.com/

Go 1.22.3 is a security update.
https://go.dev/

GoodSync 12.6.5 improves compatibility and resolves several bugs. This is not a security update.
https://www.goodsync.com/

HWiNFO 8.02 doesn’t provide a change log so should be treated as a security update.
https://www.hwinfo.com/download/

InstalledAppView 1.08 resolves a CLI bug. This is not a security update.
https://www.nirsoft.net/utils/installed_app_view.html

IsMyHdOK 3.96 improves performance and testing accuracy. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

LessMSI 2.0.1 updates dependencies and build environment, and resolves a stability bug. This is not a security update.
https://lessmsi.activescott.com/

NirCmd 2.87 adds and resolves ~$ variables. This is not a security update.
https://www.nirsoft.net/utils/nircmd.html

NTLite 2024.5.9931 resolves dozens of bugs. This is not a security update.
https://www.ntlite.com/download/

osquery 5.12.1 is a security update.
https://osquery.io/downloads

PingInfoView 3.05 adds option to map source IPv4 Address. This is not a security update.
https://www.nirsoft.net/utils/multiple_ping_tool.html

PowerToys 0.80.1 improves stability. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

PSAppDeploy 3.10.1 adds a dozen features and parameters, improves stability and reliability, and resolves several bugs. This is not a security update.
https://psappdeploytoolkit.com/

RoboForm 9.5.8 improves GUI. This is not a security update.
https://www.roboform.com/

ScreenConnect 24.1.7.8892 resolves dozens of bugs and improves compatibility. This should be treated as a security update.
https://screenconnect.connectwise.com/download

Starwind V2V Converter 9.444 adds support for new conversions. This is not a security update.
https://www.starwindsoftware.com/starwind-v2v-converter

WinGet 1.7.11261 fixes elevation issues, updates dependencies and libraries. This is a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinScan2PDF 8.81 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WUMT 04.22.2022 improves Windows 11 compatibility. This is not a security update.
https://www.oldergeeks.com/downloads/file.php?id=1366

Developer Updates

These are unlikely to be of interest to most people.

.NET Runtime 8.0.5 is a security update.
https://dotnet.microsoft.com/en-us/download/dotnet

Android Studio 2023.3.1 adds device streaming for testing, integrates crashlytics, improves App Quality Insights, and adds audio redirection. This is not a security update.
https://developer.android.com/studio

AutoHotkey 2.0.14 resolves several bugs. This is not a security update.
https://www.autohotkey.com/download/

cx_Freeze 7.0 updates dependencies and libraries and resolves hundreds of bugs. This should be treated as a security update.
https://cx-freeze.readthedocs.io/en/latest/index.html

GitHub Desktop 3.3.17 removes support for older macOS versions, resolves a dozen bugs and improves user interface. This is not a security update.
https://desktop.github.com/

Godot 4.2.2 improves CLI support, resolves the audio bug, and more than 200 other issues. This is a security update.
https://godotengine.org/

MySQL ConnectorNet 8.4.0 updates libraries and resolves several bugs. This is a security update.
https://dev.mysql.com/downloads/connector/net/

MySQL Server 8.0.37 resolves dozens of bugs. This is a security update.
https://dev.mysql.com/downloads/installer/

NASM 2.16.03 improves the build process. This is not a security update.
https://www.nasm.us/index.php

Node.js 18.20.2 is a security update.
https://nodejs.org/en/

Node.js 20.13.1 resolves several bugs and updates libraries. This is a security update.
https://nodejs.org/en/

Node.js 21.7.3 is a security update.
https://nodejs.org/en/

Node.js 22.1.0 is a major update. This is a security update.
https://nodejs.org/en/

Redemption 6.5.0.6294 improves integration and resolves several bugs. This is not a security update.
https://www.dimastr.com/redemption/

Rustup 1.27.1 resolves several bugs. This is not a security update.
https://www.rust-lang.org/

SQLite 3.45.3 adds new JSON handling behaviors and resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

TortoiseGit 2.16.0 resolves a dozen bugs and updates libraries. This is a security update.
https://tortoisegit.org/

TortoiseSVN 1.14.7 resolves several bugs. This is a security update.
https://tortoisesvn.net/downloads.html

Visual Studio Code 1.89.1 adds support to exclude content from Copilot and resolves several bugs. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.40 resolves several bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.0.18 resolves over a dozen bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

HumHub 1.15.5 resolves several bugs. This is not a security update.
https://www.humhub.com/en

Joomla 5.1.0 adds more than a dozen features and code and performance improvements. This is not a security update.
https://www.joomla.org/

MAMP 5.0.6 updates dependencies. This should be treated as a security update.
https://www.mamp.info/en/mamp/windows/

phpList 3.6.15 is a security update.
https://www.phplist.org/

Piwigo 14.4.0 resolves several bugs. This is not a security update.
https://piwigo.org/

WordPress 6.5.3 is a security update.
https://wordpress.org/

BuddyPress 12.4.1 is a security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 5.9.4 resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.9 improves compatibility and resolves a bug. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers

My Sticky Bar 2.7 resolves a cosmetic bug. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

Postie 1.9.69 should be treated as a security update.
https://wordpress.org/extend/plugins/postie/

Slider Revolution 6.7 resolves several bugs. This is a security update.
https://revolution.themepunch.com/

Social Post Feed 4.2.4 improves integration. This is not a security update.
https://wordpress.org/extend/plugins/custom-facebook-feed/

Sucuri Security 1.8.44 improves API key controls. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

W3 Total Cache 2.7.2 resolves several bugs and improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/w3-total-cache/

WooCommerce 8.9.0 improves compatibility and resolves dozens of bugs. This is not a security update.
https://wordpress.org/extend/plugins/woocommerce/

WPBakery 7.6 resolves several bugs. This is a security update.
https://wpbakery.com/

WPtouch 4.3.59 adds support for Reddit, improves compatibility, and resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/wptouch/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2023-07-11

Welcome back, Folks!

Today is Patch Tuesday for July, 2023.

This month has actually been pretty quiet. There were only 140 major hacks, and over 145 application updates this month. There are only about 4 GB of updates for most users.

This Month in Technology

1st Source Bank, Activate Healthcare LLC, Advanced Medical Management, LLC, American Airlines, American Board of Internal Medicine, Apple iOS, Arris devices, ARx Patient Solutions, ASUS routers, Atlantic General Hospital, Atomic Wallet, Atrium Health Wake Forest Baptist, Bangladesh government web portal, Barracuda ESG, Barrow County, Georgia, Beacon Ridge, BORN Ontario, BreachForums Clone, Bristol Myers Squibb, CalPERS, ChatGPT, Chilean Army, Cisco data center switches, City of San Luis, ClearMedi, Commonwealth Health Physician Network-Cardiology, Community Research Foundation, Core Recovery, LLC, D-Link devices, Des Moines Public Schools, Desert Physicians Management, Deutsche Bank AG, Dozor-Teleport, D’Youville University, EncroChat, Extreme Networks, Floating Point Group, FortiGate firewalls, G7 summit, Genworth, GlobalHealth Holdings, LLC, Grafana, Great Valley Cardiology, Hashflow, HCA Healthcare, Henrietta Johnson Medical Center, Illinois, Imagine360, Indonesian passport system, iOttie, Itasca County Health & Human Services, Jones Lang LaSalle, JumpCloud, K&L Gates, Kannact, Inc., Kinmax, Kirkland & Ellis, Lansing Community College, LetMeSpy, Limbach Facility Services LLC Group Benefit Plan, Locally, Louisiana OMV, Lumberton ISD, Maimonides Medical Center, Mastodon, MediaTek devices, Microsoft Teams, Microsoft, Missouri, Mondelez International, Mount Desert Island Hospital, MOVEit Transfer, Murfreesboro Medical Clinic & SurgiCenter, National Student Clearinghouse, Nebraska, Netgear devices, New Horizons Medical, Inc, New York City Department of Education, Nickelodeon, Nova Scotia, nuclear weapons experts, Ofcom, ONIX Group, Oregon Department of Transportation, Oregon DMV, Orrick, Herrington & Sutcliffe LLP, Paris High School, Parker Drilling Company Group Health and Flexible Benefit Plan, PBI Research Services, Peachtree Orthopaedic Clinic, P.A., Pennsylvania, Petro-Canada Gas Stations, Poly Network, Port of Nagoya, Japan, Proskauer Rose, Radisson, Razer, Realm IDX, Recovery Centers of America, Senior Choice, Inc, Shell Oil, Siemens Energy, Solar Energy Monitoring Systems, SolarView Systems, South Carolina, South Dakota, South Suburban Surgical Suites, LLC, Southwest Airlines, Sturdy Finance, Suncor Energy, Tenda devices, Texas, The Atrium, The Patriot, The Williamsport Home, Tidewater Diagnostic Imaging, Ltd., TomTom, TP-Link devices, TSMC, U.S. Department of Energy, Ukrainian Government FaceBook Page, Ultimate Member WordPress Plug-In, University of Colorado, University of Illinois, University of Manchester, University of Pittsburgh Medical Center, UofL Health, UPMC, UPS, US Federal agencies, USPTO, Vermillion, Vincera Core Physicians, Vincera Imaging LLC, Vincera Rehab LLC, Vincera Surgery Center, Vitra Home Care, LLC, Zellis, Zyxel devices, and Zyxel NAS have reportedly been hacked or compromised this month.

The state of Alaska, Taos, Azure, Microsoft 365 (multiple times), Outlook.com, Microsoft Teams, and Outlook for the web have suffered from outages this month.

Last months updates broke .NET WebApps, default browser GPO, Apple Safari on mobile, Windows Start Menu, and Windows File Explorer.

The US Federal government is still using unsecured devices across 50 different agencies. Sweden is fining companies that use Google Analytics. Microsoft is going to be permanently storing all the AI interactions with Bing to “better serve you.” Facebook parent company Meta says the only way to delete your account from their defective Threads service is to delete your Instagram account.

Now for the good news:

A federal judge has blocked the federal government from orchestrating censorship with private tech companies.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is huge this month. The typical computer should see roughly 4 GB in updates today. Let’s get started.

Windows 10 and Windows 11 versions 22H2 should now be installed. Sadly, the new “Moments” features on Windows 11 will insert advertisements in the Start menu and Control Panel. Just another sign of the continuing decline of Windows.

Microsoft released updates to address 132 vulnerabilities in .NET and Visual Studio, ASP.NET and .NET, Azure Active Directory, Microsoft Dynamics, Microsoft Graphics Component, Microsoft Media-Wiki Extensions, Microsoft Office Access, Microsoft Office Excel, Microsoft Office Outlook, Microsoft Office SharePoint, Microsoft Office, Microsoft Power Apps, Microsoft Printer Drivers, Microsoft Windows Codecs Library, Mono Authenticode, Paint 3D, Role: DNS Server, Service Fabric, Visual Studio Code, Windows Active Directory Certificate Services, Windows Active Template Library, Windows Admin Center, Windows App Store, Windows Authentication Methods, Windows CDP User Components, Windows Certificates, Windows Clip Service, Windows Cloud Files Mini Filter Driver, Windows Cluster Server, Windows CNG Key Isolation Service, Windows Common Log File System Driver, Windows Connected User Experiences and Telemetry, Windows CryptoAPI, Windows Cryptographic Services, Windows Defender, Windows Deployment Services, Windows EFI Partition, Windows Error Reporting, Windows Failover Cluster, Windows Geolocation Service, Windows HTTP.sys, Windows Image Acquisition, Windows Installer, Windows Kernel, Windows Layer 2 Tunneling Protocol, Windows Layer-2 Bridge Network Driver, Windows Local Security Authority (LSA), Windows Media, Windows Message Queuing, Windows MSHTML Platform, Windows Netlogon, Windows Network Load Balancing, Windows NT OS Kernel, Windows ODBC Driver, Windows OLE, Windows Online Certificate Status Protocol (OCSP) SnapIn, Windows Partition Management Driver, Windows Peer Name Resolution Protocol, Windows PGM, Windows Print Spooler Components, Windows Remote Desktop, Windows Remote Procedure Call, Windows Routing and Remote Access Service (RRAS), Windows Server Update Service, Windows SmartScreen, Windows SPNEGO Extended Negotiation, Windows Transaction Manager, Windows Update Orchestrator Service, Windows VOLSNAP.SYS, Windows Volume Shadow Copy, Windows Win32K, and MSRT (~ 3 GB). This includes security updates. A reboot is required.

Apple released updates for iOS 15.7.7, iOS 16.5.1, iPadOS 15.7.7, iPadOS 16.5.1, macOS Big Sur 11.7.8, macOS Monterey 12.6.7, macOS Ventura 13.4.1, Rapid Security Responses for iOS 16.5.1, Rapid Security Responses for iPadOS 16.5.1, Rapid Security Responses for macOS Ventura 13.4.1, Safari 16.5.1, Safari 16.5.2, watchOS 8.8.1, and watchOS 9.5.2. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 15.7.7 and 16.5.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.7.7 and 16.5.1 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 8.8.1 and 9.5.2 are security updates. Use the Watch app on your iPhone to install the most current version.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Ventura (13.x) means that macOS Catalina (10.15) and older are no longer supported. If you can not install at least macOS Big Sur (11) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v22H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 23.7.1 resolves several bugs and improves compatibility. This is not a security update.
https://www.amd.com/en/support

Crucial Storage Executive 9.04 doesn’t provide a changelog so should be treated as a security update.
https://www.crucial.com/support/storage-executive

DS4Windows 3.2.12 resolves several bugs. This is not a security update.
https://github.com/Ryochan7/DS4Windows/releases/latest

Garmin Express 7.17.3 doesn’t provide a changelog so should be treated as a security update.
https://www.garmin.com/en-US/software/express/

Nvidia Driver 474.44 is a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Xerox Smart Start 1.9.12.0 doesn’t provide a changelog so should be treated as a security update.
https://www.support.xerox.com/en-us/content/143617

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.52.130 is a security update.
https://brave.com/

Google Chrome 114.0.5735.198 is a security update.
https://www.google.com/chrome/

Microsoft Edge 114.0.1823.79 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 115.0.2 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 115.0.2 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Vivaldi 6.1.3035.84 is a security update.
https://vivaldi.com/

Microsoft Edge WebView2 114.0.1823.79 is a security update.
https://developer.microsoft.com/en-us/microsoft-edge/webview2/

Email Updates

One or more of these are likely to be of interest to everyone.

Spark 3.6.5.51733 resolves several bugs and improves mail collections. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.6.5.51732 resolves several bugs and improves mail collections. This is not a security update.
https://sparkmailapp.com/

Thunderbird 102.13.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

Dropbox 177.4.5399 resolves a reliability bug. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 190.0.0.9.106 is a security update.
https://www.messenger.com/download

FileZilla Client 3.65.0 updates libraries and resolves several bugs. This should be treated as a security update.
https://filezilla-project.org/

FreeFileSync 12.4 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 77.0 is a security update.
https://drive.google.com/start

Microsoft Teams 1.6.00.16472 resolves a couple bugs and adds user feedback. This is not a security update.
https://teams.microsoft.com/downloads

Pocketnet-Core 0.21.3 resolves several bugs. This is not a security update.
https://pocketnet.app/

PushBullet 502 doesn’t provide a changelog so should be treated as a security update.
https://www.pushbullet.com/

Rclone 1.63.0 adds several new features and resolves dozens of bugs. This should be treated as a security update.
https://rclone.org/

Signal 6.24.0 adds search to mentions. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 6.24.4 doesn’t provide a changelog so should be treated as a security update.
https://signal.org/android/apk/

Syncthing 1.23.6 resolves several bugs. This is not a security update.
https://syncthing.net/

Technitium DNS Server 11.3 adds new record types and resolves several bugs. This is not a security update.
https://technitium.com/dns/

Telegram 4.8.4 improves stability. This is not a security update.
https://telegram.org/

WinSCP 6.1.1 is a security update.
https://winscp.net/eng/index.php

Zoom 5.15.3.18551 is a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 3.0.10 resolves a dozen bugs. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.0 is a major update add over a hundred new features, objects, object controls, and resolves over 20 bugs.
https://www.bitwig.com/download/

darktable 4.4.1 resolves several bugs. This is not a security update.
https://www.darktable.org/

Kodi 20.2 resolves almost 40 bugs. This is not a security update.
https://kodi.tv/

Plex Desktop 1.73.1.3905 improves the Discover feature. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.42.0.3898 resolves a couple bugs with Live TV. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.32.4.7195 resolves several bugs. This is a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

GameMaker Studio 2023.6.0.89 resolves over 60 bugs. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.2.166 enables 3D editing for all users, adds 3D models to the asset store and resolves several bugs. This is not a security update.
https://gdevelop.io/download

Lego Studio 2.23.6.1 resolves several bugs. This is not a security update.
https://www.lego.com/en-us/ldd

Steam 2023.06.14 resolves over a hundred bugs and improves the notification and in-game chat experience. This is not a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Office Updates

One or more of these are likely to be of interest to most people.

Adobe ColdFusion 2018u17, 2021u7, and 2023u1 are security updates.
https://helpx.adobe.com/security/products/coldfusion/apsb23-40.html

Adobe InDesign 18.4 and 17.4.2 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb23-38.html

Adobe Reader DC 23.003.20244 is a security update.
https://get.adobe.com/reader

Blender 3.6 vastly improves performance and adds several new features, including cache, UI, text and selection improvements, new Simulation abilities and UV improvements. This is not a security update.
https://www.blender.org/download/

Calibre 6.22.0 adds support for new hardware and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

ImageMagick 7.1.1-12 resolves several bugs. This is not a security update.
https://imagemagick.org/

Kdenlive 23.04.2 improves timeline and resolves several bugs. This is not a security update.
https://kdenlive.org/

Notepad++ 8.5.4 resolves over a dozen bugs. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 5.0.7 resolves several bugs. This is a security update.
https://www.getpaint.net/

PDF-XChange Editor 10.0.1.371 is a security update.
https://www.tracker-software.com/product/pdf-xchange-editor

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 2.7.2 resolves several bugs. This is not a security update.
https://github.com/countercept/chainsaw

HTTP Toolkit 1.12.8 doesn’t provide a changelog so should betreated as a security update.
https://httptoolkit.tech/

Microsoft Edge Policy 2023.07.05 adds new policies.
https://github.com/MicrosoftDocs/Edge-Enterprise/blob/public/edgeenterprise/microsoft-edge-policies.md

PureOS 10.3 improves security and management. THis is a security update.
https://pureos.net/download/

RogueKiller 15.11.0 is a security update.
https://www.adlice.com/download/roguekiller/

Stinger 12.2.0.641 adds several new detections. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

SuperAntiSpyware 10.0.1254 resolves several bugs. This is not a security update.
https://www.superantispyware.com/download.html

Capture Updates

These are unlikely to be of interest to most people.

Camtasia 23.1.0 adds variable speed playback, reflections, and resolves several bugs. This is not a security update.
https://www.techsmith.com/video-editor.html

Open Broadcaster Software 29.1.3 resolves a dozen bugs. This is not a security update.
https://obsproject.com/

ScreenToGif 2.38.1 resolves several bugs. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.1.1.0 adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

IsoBuster 5.2 doesn’t adds support for spanned archives, new file type support, and resolves several bugs. This is not a security update.
https://www.isobuster.com/download.php

StreamFab 6.1.3.0 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 1.0.2.4 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 8.10.8 vastly improves LastPass import, and resolves several bugs. This is not a security update.
https://1password.com/downloads/mac/

1Password for Windows 8.10.8 vastly improves LastPass import, and resolves several bugs. This is not a security update.
https://1password.com/downloads/windows/

7-Zip 23.01 improves translation details and resolves several bugs. This is not a security update.
https://www.7-zip.org/

Agent Ransack 2022.3405 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

Autoruns 14.1 resolves several bugs. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/autoruns

Bitwarden 2023.5.1 resolves several bugs. This is not a security update.
https://bitwarden.com/

CCleaner 6.13.10517 resolves several bugs and adds cleanup support for a dozen more applications. This is not a security update.
https://www.ccleaner.com/

Cygwin 3.4.7 resolves several bugs. This is not a security update.
https://cygwin.com/

DesktopOK 10.88 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.0.26.0 switches underlying .NET support to v7, which significantly improves performance. This is not a security update.
https://dngrep.github.io/

ESEDatabaseView 1.73 adds full screen support. This is not a security update.
https://www.nirsoft.net/utils/ese_database_view.html

Etcher 1.18.8 fixes the support link. This is not a security update.
https://www.balena.io/etcher/

FileLocator Pro 2022.3405 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Fing 3.4.0 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.fing.com/products/fing-desktop-download-windows

Go 1.20.6 is a security update.
https://go.dev/

Homedale 2.07 adds cosmetic changes for local MAC addresses. This is not a security update.
https://www.the-sz.com/products/homedale/

HWiNFO 7.50 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.hwinfo.com/download/

Kingston SSD Manager 1.5.3.2 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.kingston.com/us/support/technical/ssdmanager

ManageWirelessNetworks 1.12 adds a sort-by toolbar button. This is not a security update.
https://www.nirsoft.net/utils/manage_wireless_networks.html

MobileFileSearch 1.46 adds a sort-by toolbar button. This is not a security update.
https://www.nirsoft.net/utils/mobile_device_file_search.html

MPAM 1.393.60.0 adds support for new detections. This should be treated as a security update.
https://www.microsoft.com/en-us/wdsi/defenderupdates

NetworkTrafficView 2.50 adds support for the sapics geo-IP databases. This is not a security update.
https://www.nirsoft.net/utils/network_traffic_view.html

NTLite 2023.6.9292 resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 10.0.1014 adds new filesto detection. This is not a security update.
https://www.osforensics.com/download.html

AOMEI Partition Assistant 10.1.0 adds interactive UEFI BIOS import and export support. This is not a security update.
https://www.diskpart.com/

PowerToys 0.71.0 resolves several bugs. This should be treated as a security update.
https://github.com/microsoft/PowerToys/releases/latest

ProcessMonitor 3.95 resolves a crash bug. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/procmon

RoboForm 9.4.9 resolves several bugs. This is not a security update.
https://www.roboform.com/

ScreenConnect 23.5.5.8587 resolves dozens of bugs. This is not a security update.
https://www.connectwise.com/software/control/download

SimpleWMIView 1.55 resolves a bug. This is not a security update.
https://www.nirsoft.net/utils/simple_wmi_view.html

Sysmon 15.0 is a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

TaskSchedulerView 1.73 adds a sort-by button to the toolbar and resolves a cosmetic bug. This is not a security update.
https://www.nirsoft.net/utils/task_scheduler_view.html

Unity 2023.1.3 resolves dozens of bugs. This is not a security update.
https://unity3d.com/get-unity/download/archive

Ventoy 1.0.93 improves compatibility and resolves several bugs. This is not a security update.
https://www.ventoy.net/en/index.html

WinGet 1.5.1881 resolves a couple bugs. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest

ZoomText 2023 2023.2306.21.400 resolves several bugs. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

GitHub Desktop 3.2.6 resolves a dozen bugs. This is not a security update.
https://desktop.github.com/

Godot 4.1 resolves dozens of bugs and adds several new features. This is not a security update.
https://godotengine.org/

GitHub includefragment 6.3.0 adds a customelements manifest. This is not a security update.
https://github.github.io/include-fragment-element/

Node.js 20.4.0 resolves dozens of bugs. This is a security update.
https://nodejs.org/en/

Node.js 16.20.1 is a security update.
https://nodejs.org/en/

Node.js 18.16.1 is a security update.
https://nodejs.org/en/

Redemption 6.4.0.6234 adds several new features and resolves a dozen bugs. This is not a security update.
https://www.dimastr.com/redemption/

Visual Studio Code 1.80 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Web Package Updates

These are likely to be of interest only to web developers.

Invision Community 4.7.11.1 is a security update.
https://invisioncommunity.com/

Drupal 9.5.10 improves compatibility. This is not a security update.
https://drupal.org/download

Joomla 4.3.3 resolves dozens of bugs. This is not a security update.
https://www.joomla.org/

OpenCart 4.0.2.2 resolves over a dozen bugs. This is not a security update.
https://www.opencart.com/

ownCloud Client 4.1.0.11250 resolves a dozen bugs. This is not a security update.
https://owncloud.com/desktop-app/

Piwigo 13.8.0 is a security update.
https://piwigo.org/

Akismet 5.2 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/akismet/

Autoptimize 3.1.8.1 is a security update.
https://wordpress.org/extend/plugins/autoptimize/

Duplicator 1.5.5 resolves a dozen bugs. This is not a security update.
https://wordpress.org/plugins/duplicator/

myStickymenu 2.6.4 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

W3 Total Cache 2.3.3 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/w3-total-cache/

Widgets on Pages 1.8.1 resolves a compatibility bug. This is not a security update.
https://wordpress.org/extend/plugins/widgets-on-pages/

WooCommerce 7.8.2 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/woocommerce/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

Updates 2023-04-11

Welcome back, Folks!

Today is Patch Tuesday for April, 2023.

This month brings over 160 significant hacks, and over 170 application updates. This is pretty normal these days, and the updates will weigh in at a little over 2.5 GB of updates for most users.

This Month in Technology

3CX, 51,000 websites, Ace Nursing, Activision, Adobe ColdFusion, Alivia Health, AllCare Plus Pharmacy, Inc, Allied Benefit, American Pain and Wellness, PLLC, an “East Asian company that develops data-loss prevention software for government and military,” Apple Safari, Aspire Public Schools, Associates in Dermatology, Atlantic Dialysis Management Services, Atlantic General Hospital, Autoridad de Acueductos y Alcantarillados, Bing.com search (via Azure AD), BitGo, BitKeep, Bitzlato, Black & McDonald, Blue Shield of California, Breached, Brooks Rehabilitation, Capita, ChatGPT, Chippewa County, CHU University hospitals, City of Oakland, City of Toronto, CloudPanel, Community Health Systems, Crown Resorts, Dole Food Company, a Dutch maritime logistics company, eFile-com, El Camino Health, El Consejo Nacional de Supervisión del Sistema Financiero, Elementor Pro WordPress plugin, Elmbrook School District, Essendant, Eye4Fraud, Fabrega Molino, Federal Law Enforcement Database, Ferrari, Florida-based community healthcare system, Frideres Dental LLC, Gala Games, General Bytes, 130+ organizations using GoAnywhere MFT, Guam Memorial Hospital, Hatch Bank, Hawaiian death registry, HDB Financial Services, Health Plan of San Mateo, Hitachi Energy, Homewood Health, HP LaserJet printers, Independent Living Systems, India’s Defense Research and Development Organization, Indian health system, Instituto De Educación Secundaria Ies Emilio Canalejo Olmeda, Integrated Supports for Living, Inc, Killer Instinct, Latitude Financial Services, Leaked Reality, LinusTechTips, Lionsgate, Long Son Petrochemicals, Lumen, Majestic Care Middletown Assisted Living LLC, McDonald’s, Medellin government, MedEx, Medminder, Merritt Healthcare Advisors, Microsoft SharePoint, Microsoft Teams, Mozilla Firefox, MSI, National Basketball Association, NCB Management Services, Nebu, Netgear Orbi, New Medical Healthcare, New York City public school special education students, New York-Presbyterian Hospital, NewBridge Services, NewYork-Presbyterian Hospital, Nexx smart devices, NHS Highland, Nonstop Administration and Insurance Services, Inc, NorthStar Emergency Medical Services, NS, Open University of Cyprus, Oracle VirtualBox, ParaSpace, Pension Protection Fund, PetroVietnam, Poolz Finance, POSCO Engineering & Construction, Postal Prescription Services – Kroger, Procter & Gamble, Proskauer Rose, QNAP, Rio Tinto, Rochester Public Schools, Rubrik, SafeMoon, Saks Fifth Avenue, Samsung, SD Worx, Shopper+, South Texas Health System, Sundry Files, Tallahassee Memorial Healthcare, Inc, Tasmanian Education Department, Telegram, Tesla Model 3, the WiFi protocol (this is big), TheGradCafe, Throne, TMX Finance (TitleMax, TitleBucks, InstaLoan), Top of the World Ranch Treatment Center, Toyota Italy, Tusla, Twitter, Uber, Ubuntu Desktop, UC San Diego Health, UHS of Delaware, Inc, UK’s Criminal Records Office, UK’s Virgin Red, Ukrainian utility company, US Congress, US Department of DefenseUS Federal Bureau of Investigation, US Marshals Service, US Special Operations Command, US Wellness Inc, US Wellness, Vazquez Nava Consultores y Abogados, Veeam’s Backup & Replication, Veritas Backup Exec, VM2, VMware Workstation, WellBe, Wells Fargo, West Virginia hospital, Western Digital, Wilkes-Barre Career and Technical Center, WinRAR SFX, WooCommerce, Yardley Dermatology Associates, PC, Yucatan government, Yum! Brands (Taco Bell, KFC, Pizza Hut), Z2U, ZenGo, Zimbra Collaboration Suite, and Zoll have reportedly been hacked or compromised this month.

Amazon has pulled the plug on their most successful charitable endeavor, AmazonSmile.

According to the FBI, 860 “critical” infrastructure organizations were hit with ransomware in 2022. Shouldn’t they just stop if they’re so concerned, since they’re usually the ones behind most terrorists?

It should come as no surprise that the recent spate of train derailments comes not long after a manager at one of the largest rail companies told inspectors to stop marking rail cars that needed repairs.

Apple Weather, Microsoft Defender, Reddit, and WD My Cloud suffered from outages this month.

Last months updates broke Red Dead Redemption 2, and caused problems for many printers by replacing the vendor print drivers with Microsoft’s incompatible drivers. But at least Microsoft is now inserting ads in the Start menu, right? Grrr.

Here’s yet another demonstration of how your “smart device” can be exploited without your knowledge. GM’s Cruise robotaxis have been recalled after they caused an accident in San Francisco. 

Now for the good news:

 

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is huge this month. The typical computer should see roughly
GB in updates today. Let’s get started.

Windows 10 and Windows 11 22H2 should now be installed. Sadly, the new “Moments” features on Windows 11 will insert advertisements in the Start menu and Control Panel. Just another sign of the continuing decline of Windows.

Microsoft released updates to address 93 vulnerabilities in .NET Core, Azure Machine Learning, Azure Service Connector, Microsoft Bluetooth Driver, Microsoft Defender for Endpoint, Microsoft Dynamics, Microsoft Dynamics 365 Customer Voice, Microsoft Edge (Chromium-based), Microsoft Graphics Component, Microsoft Message Queuing, Microsoft Office, Microsoft Office Publisher, Microsoft Office SharePoint, Microsoft Office Word, Microsoft PostScript Printer Driver, Microsoft Printer Drivers, Microsoft WDAC OLE DB provider for SQL, Microsoft Windows DNS, Visual Studio, Visual Studio Code, Windows Active Directory, Windows ALPC, Windows Ancillary Function Driver for WinSock, Windows Boot Manager, Windows Clip Service, Windows CNG Key Isolation Service, Windows Common Log File System Driver, Windows DHCP Server, Windows Enroll Engine, Windows Error Reporting, Windows Group Policy, Windows Internet Key Exchange (IKE) Protocol, Windows Kerberos, Windows Kernel, Windows Layer 2 Tunneling Protocol, Windows Lock Screen, Windows Netlogon, Windows Network Address Translation (NAT), Windows Network File System, Windows Network Load Balancing, Windows NTLM, Windows PGM, Windows Point-to-Point Protocol over Ethernet (PPPoE), Windows Point-to-Point Tunneling Protocol, Windows Raw Image Extension, Windows RDP Client, Windows Registry, Windows RPC API, Windows Secure Boot, Windows Secure Channel, Windows Secure Socket Tunneling Protocol (SSTP), Windows Transport Security Layer (TLS), Windows Win32K and MSRT (~
GB). This includes security updates. A reboot is required.

Apple released updates for iOS 15.7.5 and 16.4.1, iPadOS 15.7.5 and 16.4.1, macOS Big Sur 11.7.6, macOS Monterey 12.6.5, macOS Ventura 13.3.1, Safari 16.4.1, Studio Display Firmware Update 16.4, tvOS 16.4, and watchOS 9.4. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 16.4.1 and 15.7.5 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 16.4.1 and 15.7.5 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 9.4 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 16.4 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 112.0.5615.62 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Ventura (13.x) means that macOS Catalina (10.15) and older are no longer supported. If you can not install at least macOS Big Sur (11) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 12 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v22H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 23.4.1 resolves several bugs. This is not a security update.
https://www.amd.com/en/support

Display Driver Uninstaller 18.0.6.2 resolves a stability bug. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Nvidia Driver 474.30 is a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.50.114 is a security update.
https://brave.com/

Google Chrome 112.0.5615.49 is a security update.
https://www.google.com/chrome/

Microsoft Edge 112.0.1722.34 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Microsoft Edge 109.0.1518.78 is a security update. This version should be used only on devices where the current stable release is not available.
https://www.microsoft.com/en-us/edge/business/download

Firefox 112.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

SeaMonkey 2.53.16 is a security update.
https://www.seamonkey-project.org/

Vivaldi 5.7.2921.65 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

OutlookAttachView 3.48 adds sort-by to the toolbar. This is not a security update.
https://www.nirsoft.net/utils/outlook_attachment.html

Spark 3.3.6.46134 improves stability. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.3.6.46132 improves stability. This is not a security update.
https://sparkmailapp.com/

Thunderbird 102.9.1 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 7.1.11 is a bug fix for a security update.
https://anydesk.com/en/downloads

BrowsingHistoryView 2.55 adds sort-by to the toolbar. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

curl 8.0.1 resolves dozens of bugs. This should be treated as a security update.
https://curl.haxx.se/windows/

Dropbox 171.4.6182 improves stability. This is not a security update.
https://www.dropbox.com/

FreeFileSync 12.2 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 73.0 resolves several bugs. This is not a security update.
https://drive.google.com/start

Microsoft Teams 1.6.00.6754 is a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 26.0.0 is a major update with improvements across a dozens features and many bug fixes. This is not a security update.
https://nextcloud.com/

Npcap 1.73 is a security update.
https://nmap.org/npcap/

Omada Software Controller 5.9.31 resolves several bugs. This is not a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Rclone 1.62.2 resolves several bugs. This is not a security update.
https://rclone.org/

Signal (Android) 6.16.2 doesn’t provide a detailed changelog so should be treated as a security update.
https://signal.org/android/apk/

Signal 6.13.0 improves dark mode and cosmetics. This is not a security update.
https://signal.org/download/windows/

Syncthing 1.23.4 resolves several bugs. This should be treated as a security update.
https://syncthing.net/

Telegram 4.7.1 resolves a couple bugs. This is not a security update.
https://telegram.org/

Trillian 6.5.0.28 resolves several bugs. This is not a security update.
https://www.trillian.im/

WinSCP 5.21.8 is a security update.
https://winscp.net/eng/index.php

Zoom 5.14.2.14578 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

Bitwig Studio 4.4.10 improves stability. This is not a security update.
https://www.bitwig.com/download/

iTunes 12.12.8.1 is a security update.
https://www.apple.com/itunes/download/

Plex Desktop 1.67.1.3665 fixes the subtitle render/crash issue. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.37.2.3674 resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.32.0.6918 resolves a font bug and a certificate installation bug. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

GameMaker Studio 2023.2.1.75 adds a new particle editor to the IDE and reworks some of the interface. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.1.160 resolves several bugs and adds more than a dozen new assets and feature improvements. This is not a security update.
https://gdevelop.io/download

Lego Studio 2.23.3.1 resolves several bugs. This is not a security update.
https://www.lego.com/en-us/ldd

Nintendo Switch 16.0.1 improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 23.01-07.01.01 resolves a cosmetic bug. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2023.03.15 resolves dozens of bugs. This should be treated as a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 23.001.20143 is a security update.
https://get.adobe.com/reader

Adobe Digital Editions 4.5.11.187658 is a security update.
https://www.adobe.com/solutions/ebook/digital-editions/download.html

Adobe InCopy 18.2 and 17.4.1 are security updates. Use Creative Cloud to install the update.

Adobe Acrobat and Reader 23.001.20143 and 20.005.30467 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb23-24.html

Adobe Substance 3D Stager 2.0.2 is a security update.
https://www.adobe.com/products/substance3d-stager.html

Adobe Dimension 3.4.9 is a security update.
https://www.adobe.com/products/dimension.html

Adobe Substance 3D Designer 12.4.1 is a security update.
https://www.adobe.com/products/substance3d-designer.html

Artweaver 7.0.15 resolves several bugs. This is not a security update.
https://www.artweaver.de/

Calibre 6.15.1 resolves several bugs and improves document compatibility. This is not a security update.
https://calibre-ebook.com/

ImageMagick 7.1.1-6 resolves several bugs. This is not a security update.
https://imagemagick.org/

LibreOffice Fresh 7.5.2 resolves over 90 bugs. This is a security update. The “Fresh” line is beta software and should be avoided by most users.
https://www.libreoffice.org/

Nextcloud Desktop 3.8.0 resolves several bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.5.2 resolves several context menu and cosmetic bugs. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 5.0.3 adds center-point shape drawing and resolves several bugs. This is not a security update.
https://www.getpaint.net/

PDF-XChange Editor 9.5.368.0 is a security update.
https://www.tracker-software.com/product/pdf-xchange-editor

Security Software Updates

One or more of these is likely to be of interest to most people.

Caine 13.0 is a security update.
https://www.caine-live.net/

Chainsaw 2.6.0 resolves several bugs. This is not a security update.
https://github.com/countercept/chainsaw

FSS 2023.3.19 updates service list. This is not a security update.
https://www.bleepingcomputer.com/download/farbar-service-scanner/dl/62/

MalwareBytes Anti-Malware 4.5.26 improves reporting and resolves several bugs. This should be treated as a security update.
https://www.malwarebytes.org/antimalware/

ProtonVPN 2.4.1 improves stability. This is not a security update.
https://protonvpn.com/download

ProtonVPN (macOS) 3.0.15 resolves several bugs. This is not a security update.
https://protonvpn.com/download

QubesOS 4.1.2 is a security update.
https://www.qubes-os.org/downloads/

RogueKiller 15.8.2 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Stinger 12.2.0.570 improves detections. This should be treated as a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

SuperAntiSpyware 10.0.1250 resolves several bugs. This is not a security update.
https://www.superantispyware.com/download.html

Tails 5.11 is a security update.
https://tails.boum.org/install/dvd/index.en.html

uBlock Origin 1.48.4 resolves several bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Velociraptor 0.6.8 integrates several net
https://github.com/Velocidex/velociraptor/releases/latest

Wireless Network Watcher 2.31 adds a dark mode option and updates internal MAC address database. This is not a security update.
https://www.nirsoft.net/utils/wireless_network_watcher.html

YARA 4.3.0 resolves several bugs and adds new functions and behaviors. This should be treated as a security update.
https://github.com/VirusTotal/yara/

Capture Updates

These are unlikely to be of interest to most people.

Camtasia 22.5.3 resolves several crash bugs, installation issues and improves the UI. This is not a security update.
https://www.techsmith.com/video-editor.html

SnagIt 23.1.1 resolves several bugs. This is not a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.1.0.3 improves compatibility. This is not a security update.
https://www.dvdfab.cn/download.htm

StreamFab 6.1.1.6 improves compatibility and provides new output options. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 1.0.1.7 improves compatibility. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 8.10.4 fixes of a dozen bugs. This is a security update.
https://1password.com/downloads/mac/

1Password for Windows 8.10.4 fixes over a dozen bugs. This is a security update.
https://1password.com/downloads/windows/

AstroGrep 4.4.9 updates libraries, adds dark theme, improves filters and resolves several bugs. This is a security update.
http://astrogrep.sourceforge.net/

Bitwarden 2023.3.3 adds domain verification, improved browser security, and resolves several bugs. This is a security update.
https://bitwarden.com/

CalyxOS Device Flasher 1.0.7 doesn’t provide a changelog so should be treated as a security update.
https://calyxos.org/install/

Carbonite 6.4.6 is a security update.
https://account.carbonite.com/

CCleaner 6.10.10347 improves cleaning and adds to the their driver update solution. This is not a security update.
https://www.ccleaner.com/

CrucialScan 20230308 doesn’t provide a changelog so should be treated as a security update.
https://www.crucial.com/store/systemscanner

CurrPorts 2.71 adds full screen display option. This is not a security update.
https://www.nirsoft.net/utils/cports.html

DesktopOK 10.77 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

DMDE 4.0.6.806 fixes several bugs. This is a security update.
https://dmde.com/

Everything Toolbar 1.0.5 improves stability and compatibility. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

FolderChangesView 2.35 adds dark mode support and sort-by to the toolbar. This is not a security update.
https://www.nirsoft.net/utils/folder_changes_view.html

Go 1.20.3 is a security update.
https://go.dev/

GoodSync 12.2.0 resolves several bugs. This is not a security update.
https://www.goodsync.com/

IsMyHdOK 3.88 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

NTLite 2023.4.9191 adds components, new settings and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

osquery 5.8.2 is a security update.
https://osquery.io/downloads

PowerToys 0.69.0 resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Process Explorer 17.04 is a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/process-explorer

PsExec 2.42 adds support for long paths. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/psexec

Regedix 2.0.0.0 adds registry scan and resolves paste bug. This is not a security update.
https://regedix.webrox.fr/

RoboForm 9.4.6 is a security update.
https://www.roboform.com/

Rufus 3.22 resolves several bugs. This is not a security update.
https://rufus.ie/en_US/

ScreenConnect 23.2.9.8466 improves compatibility. This is not a security update.
https://www.connectwise.com/software/control/download

TCPView 4.18 resolves a crash bug and improves dark mode. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/tcpview

TeamViewer 15.40.8 resolves a LAN bug. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

Unity 2022.2.14 resolves dozens of bugs. This is not a security update.
https://unity3d.com/get-unity/download/archive

Ventoy 1.0.91 resolves several bugs. This is not a security update.
https://www.ventoy.net/en/index.html

WifiInfoView 2.79 resolves a display bug. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

WinScan2PDF 8.55 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 4.13 adds regexp search, search history, command line options, virtual drives, sorting options, and resolves a couple bugs. This is not a security update.
https://www.diskanalyzer.com/

XnConvert 1.98 doesn’t provide a changelog so should be treated as a security update.
https://www.xnview.com/en/xnconvert/

ZoomText 2023 2023.2303.77.400 adds tethered view. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

ADB 34.0.1 resolves several bugs. This is not a security update.
https://developer.android.com/studio/releases/platform-tools

GitHub Desktop 3.2.1 resolves a dozen bugs and provides several improvements. This is not a security update.
https://desktop.github.com/

Node.js 16.20.0 updates libraries and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Node.js 19.9.0 adds a new tracing feature, URL parser improvements, and resolves several bugs. This is not a security update.
https://nodejs.org/en/

SQLite 3.41.2 resolves several bugs and improves several features. This is not a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.77.1 improves stability. This is not a security update.
https://code.visualstudio.com/

Web Package Updates

These are likely to be of interest only to web developers.

Coppermine Gallery 1.6.24 resolves several bugs. This is not a security update.
https://coppermine-gallery.net/

Drupal 9.4.12 is a security update.
https://drupal.org/download

Drupal 9.5.7 resolves a bug in the editor. This is not a security update.
https://drupal.org/download

WordPress 6.2 adds several new native features – custom CSS, sticky positions, new site editor, block management, Openverse media access, and more. This is not a security update.
https://wordpress.org/

Akismet 5.1 resolves several bugs. This should be treated as a security update.
https://wordpress.org/extend/plugins/akismet/

Autoptimize 3.1.6 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/autoptimize/

Contact Form 7 5.7.5.1 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.3.1 doesn’t provide a change log so should be treated as a security update.
https://wordpress.org/plugins/duplicator/

Limit Login Attempts 1.7.2 is a security update.
https://wordpress.org/extend/plugins/limit-login-attempts/

Redirection 5.3.10 resolves a save bug. This is not a security update.
https://wordpress.org/extend/plugins/redirection/

W3 Total Cache 2.3.1 improves compatibility and resolves several bugs. This is a security update.
https://wordpress.org/extend/plugins/w3-total-cache/

WooCommerce 7.5.1 improves stability. This is not a security update.
https://wordpress.org/extend/plugins/woocommerce/

WP Cerber Security 9.5.3 improves compatibility. This is not a security update.
https://wpcerber.com/

WPtouch 4.3.52 resolves a cosmetic bug. This is not a security update.
https://wordpress.org/extend/plugins/wptouch/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

Updates 2023-02-14

Happy Valentine’s Day, Folks!

Today is Patch Tuesday for February, 2023.

There are a whopping 150+ major hacks and 200+ application updates this month. It’s a big one, with about 6 GB of updates for most users. Microsoft is also pushing out Windows 22H2 (Win10 and Win11) for all supported devices. If you’re not already on the latest builds, expect to be “upgraded” automatically in the coming days.

This Month in Technology

1020 South Main Street Operations LLC, 1st Franklin Financial Corporation Master Welfare Benefit Plan, 225 Evergreen Road Operations LLC, 90 Degree Benefits, Inc., A10 Networks, Aflac, Alkomprar Technology, AmerisourceBergen, an unnamed medical research company, Arizona Health Advantage, Inc., Arnold Clark, Aspire Surgical, Atlassian’s Jira Service Management Server and Data Center, Audifarma, Autotrader, Bahrain’s international airport, Benefit Administrative Systems, LLC, BonqDAO, Brazilian Government, British PM Stewart McDonald, Cacti, Cardiovascular Associates, Casa Ley, Cedar Oaks Surgery Center, Centro Médico Virgen De La Caridad, CircleCi, Cisco IOx, City Council of Durango, City of London, City of Oakland, Community Health Systems, CommuteAir – exposing the TSA no-fly list, Control Web Panel, Costa Rica’s Ministry of Public Works and Transport, Court of Justice of the State of Pará, Datadog, Diligent Corp, DNV (impacting over 1000 ships worldwide), DotHouse Health Incorporated, DPP II, LLC, Dr. Keith Rundle & Dr. Herman Rundle, Edmonds School District, Eurostar, Exclu, FortiOS SSL-VPN, General Treasury of the Republic of Chile, Git, GitHub Atom, GitHub Desktop, GoAnywhere MFT, 130 organizations using GoAnywhere, Google Fi, GoTo, Grand Theft Auto (GTA) Online, Harmony Horizon, Health Plan of San Mateo, Heritage Provider Network, Hive, Home Care Providers of Texas, Howard Memorial Hospital, Indigo Books & Music, Instituto Federal Do Pará, Intelligent Business Solutions, ION Group, iOS, IT Servicios, Italy, Jackson & Joyce Family Dentistry, JD Sports, Jefferson County Health Center, KeePass, KomplettFritid, Kroger, LastPass, League of Legends, LearnPress, Lexmark firmware, LimeVPN, Liquor Control Board of Ontario, Los Angeles Unified School District, Luaces Asesores, Lutheran Social Services of Illinois, macOS, MailChimp, Maternal and Family Health Services, Microsoft-Verified OAuth Apps, a Midwest specialty medical care clinic, Mindpath Health, Minuteman Senior Services, MKS Instruments, Morgan Hill Unified School District, multiple federal civilian executive branch (FCEB) agenciesNamecheap, Nantucket, Massachusetts, Nissan North America, Norton LifeLock (including their password manager), ODIN Intelligence, One Brooklyn Health System, Packman anti-cheat software, PayPal, Pennsburg Manor, PeopleConnect (TruthFinder and Instant Checkmate), Pepsi, Pharma Gestao, Pitt Meadows School District 42, Planet Ice, Politriz, Puma, QNAP NAS, Qualys, Quintana Roo Attorney General’s Office, Qulliq Energy Corporation, Reddit, Regal Medical Group, Rise Interactive Media & Analytics, LLC, Rostelecom, Royal Mail, Rundle Eye Care, Samsung Galaxy App Store, San Francisco Transit Police, Seguros Equinoccial S.A, Sharp HealthCare, Shell, Sistema Integral De Control Alimentario, Skyview Networks, Solaris, Southeast Colorado Hospital District, St. Rose Hospital, Stanford Medicine, Stroke Scan Inc, T-Mobile, Tallahassee Memorial HealthCare, Technion – Israel Institute of Technology, Teijin Automotive Technologies Welfare Plan, The Guardian, Ticketmaster, Toyota’s GSPIMS, Tucson, Arizona, Ukrainian Computer Emergency Response Team, Ukrinform, University of California, University of Colorado Hospital Authority, University of Colorado, University of Duisburg-Essen, University of Maryland Baltimore, University of Miami, UScellular, VMware OpenSLP, VMware vRealize Log Insight, Weee!, Yum! Brands, Zacks Investment Research, and Zurich have reportedly been hacked or compromised this month.

Most federal agencies ignore the GAO cybersecurity recommendations.

Bankdata, Bermuda, The FAA’s NOTAM, Instagram, Microsoft 365, Microsoft Outlook, Tor, Twitter, Verizon, YouTube, and Zelle suffered from significant outages.

Cloudflare managed to prevent an insane 71 million requests per second attack.

Last months updates broke the Windows Start menu, Windows 10 (if a 365 trial was active), and almost 300 MSI motherboard models.

A whopping 12% (minimum) of online stores expose private data or backups. A new strain of point-of-sale malware prevents contactless payments in order to ensure that the skimmer operates unhindered.

Now for the good news:

Impossible Foods are being hit with patent problems across the globe. Hopefully this will lead to a financial incentive to grow real foods again.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is huge this month. The typical computer should see roughly
6 GB in updates today. Let’s get started.

Like it or not, Windows 10 and Windows 11 versions 22H2 are now being pushed out onto all supported devices, so expect it to be installed in the coming days.

Microsoft released updates to address 72 vulnerabilities in .NET and Visual Studio, .NET Framework, 3D Builder, Azure App Service, Azure Data Box Gateway, Azure DevOps, Azure Machine Learning, HoloLens, Internet Storage Name Service, Microsoft Defender for Endpoint, Microsoft Defender for IoT, Microsoft Dynamics, Microsoft Edge (Chromium-based), Microsoft Exchange Server, Microsoft Graphics Component, Microsoft Office, Microsoft Office OneNote, Microsoft Office Publisher, Microsoft Office SharePoint, Microsoft Office Word, Microsoft PostScript Printer Driver, Microsoft WDAC OLE DB provider for SQL, Microsoft Windows Codecs Library, Power BI, SQL Server, Visual Studio, Windows Active Directory, Windows ALPC, Windows Common Log File System Driver, Windows Cryptographic Services, Windows Distributed File System (DFS), Windows Fax and Scan Service, Windows HTTP.sys, Windows Installer, Windows iSCSI, Windows Kerberos, Windows MSHTML Platform, Windows ODBC Driver, Windows Protected EAP (PEAP), Windows SChannel, Windows Win32K, and MSRT (~2 GB). This includes security updates. A reboot is required.

Apple released updates for macOS Big Sur 11.7.3, macOS Monterey 12.6.3, macOS Ventura 13.2.1, iOS 12.5.7, iOS 15.7.3, iOS 16.3.1, iPadOS 15.7.3, iPadOS 16.3.1, Safari 16.3.1, tvOS 16.3.2 and watchOS 9.3.1. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 12.5.7, 15.7.3, and 16.3.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.7.3 and 16.3.1 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 9.3.1 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 16.3.2 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 109.0.5414.125 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

elementary OS 7.0 is a new major version of elementary OS improving app management, controls, defaults, and many other bug fixes. This is not a security update.
https://elementary.io/

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Ventura (13.x) means that macOS Catalina (10.15) and older are no longer supported. If you can not install at least macOS Big Sur (11) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 12 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v22H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.6.0 updates installer, adds option to update driver source to default, and improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

DS4Windows 3.2.8 resolves over a dozen bugs. This is not a security update.
https://github.com/Ryochan7/DS4Windows/releases/latest

Garmin Express 7.16.1 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.garmin.com/en-US/software/express/

JACK2 1.9.22 improves compatibility, removes example tools, updates dependencies, and resolves a couple bugs. This is a security update.
https://jackaudio.org/downloads/

NVcleanstall 1.15.1 resolves several bugs. This is not a security update.
https://www.techpowerup.com/download/techpowerup-nvcleanstall/

Drivers by Seagull 2023.1 adds support for over 200 new printer models from 20 vendors, RFID unique serial numbers (TID), and updates the license.
https://www.seagullscientific.com/support/downloads/drivers/

Wacom Driver 6.4.1-3 resolves several bugs. This is not a security update.
https://www.wacom.com/en-us/support/product-support/drivers

Xerox Smart Start 1.8.10.0 doesn’t provide a changelog so should be treated as a security update.
https://www.support.xerox.com/en-us/content/143617

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.48.158 is a security update.
https://brave.com/

Google Chrome 110.0.5481.100 is a security update.
https://www.google.com/chrome/

Microsoft Edge 110.0.1587.41 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 110.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

SeaMonkey 2.53.15 is a security update.
https://www.seamonkey-project.org/

Vivaldi 5.6.2867.62 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

ProtonMail (Android) 3.0.11 improves stability. This is not a security update.
https://proton.me/mail/download

Spark 3.3.3.42970 improves stability. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.3.3.42968 improves stability. This is not a security update.
https://sparkmailapp.com/

Thunderbird 102.7.2 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 7.1.8 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 7.0.1 resolves several bugs. This is a security update.
https://anydesk.com/en/downloads

BrowsingHistoryView 2.54 adds whitespace around the QR codes. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

Dropbox 167.4.4719 resolves several bugs and improves performance. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 176.0.0.12.101 is a security update.
https://www.messenger.com/download

FileZilla Client 3.63.1 resolves several bugs. This is not a security update.
https://filezilla-project.org/

FileZilla Server 1.6.6 resolves several bugs. This is not a security update.
https://filezilla-project.org/

FreeFileSync 12.0 is a major update and adds several new security profiles, improves timeouts, and resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 71.0 resolves several bugs. This is not a security update.
https://drive.google.com/start

IPInfoOffline 1.61 resolves a crash bug. This is not a security update.
https://www.nirsoft.net/utils/ip_country_info_offline.html

Java 8u361 is a security update.
https://www.java.com/en/download/manual.jsp

Microsoft Teams 1.6.00.376 adds several new features. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 25.0.3 is a security update.
https://nextcloud.com/

Omada Software Controller 5.8.4 adds global view, mapping, and adds several other features. This is not a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Pocketnet-GUI 0.8.39 adds P2P audio and video calls, improved GUI confirmations, and resolves over a dozen bugs. This is not a security update.
https://pocketnet.app/

Signal 6.5.1 resolves a crash bug. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 6.10.9 improves display of activity. This is not a security update.
https://signal.org/android/apk/

Skype 8.93.0.404 improves translator, color schemes, and resolves several bugs. This is not a security update.
https://www.skype.com/

Syncthing 1.23.1 resolves an upgrade bug. This is not a security update.
https://syncthing.net/

Telegram 4.6.2 resolves several bugs. This is not a security update.
https://telegram.org/

Telegram (Android) 9.4.0 doesn’t provide a changelog so should be treated as a security update.
https://telegram.org/apps

WinSCP 5.21.7 updates Batch Rename extension and resolves a settings change bug. This is not a security update.
https://winscp.net/eng/index.php

Zoom 5.13.7.12602 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

BasicSR 1.4.2 adds torch and resolves several bugs. This is not a security update.
https://github.com/XPixelGroup/BasicSR/releases/latest

Kodi 20.0 implements over 500 changes. This is a security update.
https://kodi.tv/

Plex Desktop 1.63.3.3523 resolves audio passthrough. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.33.2.3525 resolves audio passthrough. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.31.0.6654 improves season and episode detection, end credit marker detection, scanner, and resolves over a dozen bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Real-ESRGAN-ncnn-vulkan 0.2.0 is a security update.
https://github.com/xinntao/Real-ESRGAN-ncnn-vulkan/releases/latest

TuneIn 1.26.0 doesn’t provide a changelog so should be treated as a security update.
https://tunein.com/radio/home/

Game Updates

These are unlikely to be of interest to most people.

GameMaker Studio 2023.1.0.58 improves installation experience, performance and image editing. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.1.157 adds new objects, improves GDevelop banner behavior, asynchronous objects, updates libraries and extensions. This is not a security update.
https://gdevelop.io/download

Lego Studio 2.23.1.1 resolves several bugs. This is not a security update.
https://www.lego.com/en-us/ldd

Playstation PS5 22.02-06.50.00 adds support for the DualSense Edge wireless controller and improves performance. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2023.02.10 resolves dozens of bugs. This should be treated as a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 22.003.20314 resolves several bugs. This is not a security update.
https://get.adobe.com/reader

Adobe After Effects 23.2 and 22.6.4 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb23-02.html

Adobe Connect 11.4.6 and 12.2 are security updates.
https://helpx.adobe.com/security/products/connect/apsb23-05.html

Adobe FrameMaker 2020.5 and 2022.1 are security updates.
https://helpx.adobe.com/security/products/framemaker/apsb23-06.html

Adobe Bridge 12.0.4 and 13.0.2 are security updates.
https://helpx.adobe.com/security/products/bridge/apsb23-09.html

Adobe Photoshop 23.5.4 and 24.1.1 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb23-11.html

Adobe InDesign 18.2 and 17.4.1 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb23-12.html

Adobe Premiere Rush 2.7 is a security update.
https://helpx.adobe.com/security/products/premiere_rush/apsb23-14.html

Adobe Animate 22.0.9 and 23.0.1 are security updates.
https://helpx.adobe.com/security/products/animate/apsb23-15.html

Adobe Substance 3D Stager 2.0.0 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb23-16.html

Audacity 3.2.4 resolves a functional bug. This is not a security update.
https://www.audacityteam.org/download/

LibreOffice 7.4.5 resolves a stability bug. This is not a security update.
https://www.libreoffice.org/

LibreOffice Fresh 7.5.0 resolves over 250 bugs. This is a security update. Be aware that the Fresh line is beta software and should be avoided in favor of the Still line above.
https://www.libreoffice.org/

Nextcloud Desktop 3.7.3 resolves dozens of bugs. This is a security update.
https://nextcloud.com/

Notepad++ 8.4.9 resolves over a dozen bugs. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 5.0.1 is a major update to Paint.net, adds several features, and resolves several bugs. This is not a security update.
https://www.getpaint.net/

Calibre 6.12.0 adds read-aloud, updates libraries, and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Kindle for PC 1.40.65415 doesn’t provide a changelog so should be treated as a security update.
https://www.amazon.com/kindleforpc

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 2.3.1 resolves a panic bug. This is not a security update.
https://github.com/countercept/chainsaw

DNSQuerySniffer 1.91 resolves stability bug. This is not a security update.
https://www.nirsoft.net/utils/dns_query_sniffer.html

HTTP Toolkit 1.12.3 doesn’t provide a changelog so should be treated as a security update.
https://httptoolkit.tech/

KeePass 2.53.1 resolves several bugs. This is not a security update.
https://keepass.info/

MalwareBytes Anti-Malware 4.5.22 resolves several bugs. This is not a security update.
https://www.malwarebytes.org/antimalware/

MalwareBytes Anti-Malware Mac 4.18.11 resolves a couple bugs and removes the built-in browser. This is a security update.
https://www.malwarebytes.com/mac/

OpenSSL 1.1.1t is a security update.
https://www.openssl.org/source/

OpenSSL 3.0.8 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN (macOS) 3.0.13 resolves several bugs. This is not a security update.
https://protonvpn.com/download

RogueKiller 15.8.0 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Tails 5.9 is a security update.
https://tails.boum.org/install/dvd/index.en.html

uBlock Origin 1.47.0 resolves several bugs and improves performance. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

Camtasia 22.5.0 adds several new transitions, improved recorder, and several other tools. This is not a security update.
https://www.techsmith.com/video-editor.html

Open Broadcaster Software 29.0.2 resolves several bugs. This is not a security update.
https://obsproject.com/

ScreenToGif 2.37.2 adds translations. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

SnagIt 23.0.3 resolves a couple bugs. This is not a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.0.9.9 adds support for new encodings, improves compatibility and resolves a couple bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

HandBrake 1.6.1 resolves several bugs. This is not a security update.
https://handbrake.fr/

iMazing HEIC Converter 2.0.5 doesn’t provide a changelog so should be treated as a security update.
https://imazing.com/heic

MakeMKV 1.17.3 adds support for new encodings and improves reliability. This is not a security update.
https://www.makemkv.com/download/

StreamFab 6.1.0.7 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 1.0.1.2 resolves a couple bugs and adds support to merge. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 6.0.20 improves performance and resolves several bugs. This is a security update.
https://www.zotero.org/

Zotero (macOS) 6.0.21 resolves several bugs. This is a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 8.9.15 improves compatibility. This is not a security update.
https://1password.com/downloads/mac/

1Password for Windows 8.9.14 adds support to import directly from LastPass. This is not a security update.
https://1password.com/downloads/windows/

8GadgetPack 36.0 updates outdated gadgets. This is not a security update.
https://8gadgetpack.net/

Agent Ransack 2022.3366 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

Beyond Compare 4.4.5.27371 improves performance and resolves several bugs. This is not a security update.
https://www.scootersoftware.com/download.php?zz=dl4

Bitwarden 2023.1.1 resolves several bugs. This is not a security update.
https://bitwarden.com/

CCleaner 6.09.10300 resolves several bugs. This is not a security update.
https://www.ccleaner.com/

CPU-Z Installer 2.04 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

CurrPorts 2.66 improves stability. This is not a security update.
https://www.nirsoft.net/utils/cports.html

Cygwin 3.4.6 improves compatibility and stability. This should be treated as a security update.
https://cygwin.com/

Dell Command Update 4.8.0 improves BIOS update, self-update, and toast behaviors. This is a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

DesktopOK 10.66 improves auto save icons feature. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

Etcher 1.14.3 improves compatibility and resolves several bugs. This is not a security update.
https://www.balena.io/etcher/

Everything Toolbar 1.0.2 improves performance, reliability and cosmetics. This is a security update.
https://github.com/stnkl/EverythingToolbar/

Fido 1.43 adds BITS transfer support. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3366 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Git SCM 2.39.1 is a security update.
https://git-scm.com/

Go 1.20.1 updates the toolchain and improves performance. This is a security update.
https://go.dev/

GoodSync 12.1.7 resolves several bugs and improves compatibility. This is not a security update.
https://www.goodsync.com/

grepWin 2.0.13 adds ability to copy column content, and resolves a couple bugs. This is not a security update.
https://github.com/stefankueng/grepWin/releases/latest

HWMonitor 1.49 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

Memtest86+ 6.10 adds support for Secure Boot signing, headless EFI, various command line options, new hardware and resolves several bugs. This should be treated as a security update.
https://www.memtest.org/

NetworkTrafficView 2.43 improves stability. This is not a security update.
https://www.nirsoft.net/utils/network_traffic_view.html

NTLite 2.3.9.9039 updates components and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 10.0.1007 improves case management, VM reporting, and resolves dozens of bugs. This is not a security update.
https://www.osforensics.com/download.html

AOMEI Partition Assistant 9.14.0 improves safety of move/resize, resolves several bugs, and improves reliability. This is not a security update.
https://www.diskpart.com/

PointerStick 6.22 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.67.1 improves stability. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

PSAppDeploy 3.9.2 resolves several bugs. This is a security update.
https://psappdeploytoolkit.com/

ScreenConnect 23.1.1.8423 improves compatibility, adds several cosmetic changes, and resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

SearchMyFiles 3.23 resolves a couple bugs. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

Sysmon 14.14 resolves a timeout detected deleted files. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

TeamViewer 15.38.3 resolves a file resume bug. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

Unified Remote Server 3.13.0.2501 doesn’t provide a changelog so should be treated as a security update.
https://www.unifiedremote.com/

Unity 2022.2.6 resolves several bugs. This is not a security update.
https://unity3d.com/get-unity/download/archive

Ventoy 1.0.88 resolves several bugs and improves compatibility. This is not a security update.
https://www.ventoy.net/en/index.html

WhyNotWin11 2.5.0.4 updates hardware compatibility lists. This is not a security update.
https://github.com/rcmaehl/WhyNotWin11

WinGet 1.4.10173 resolves over a hundred bugs and improves stability. This is a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinRAR 6.20 resolves over 20 bugs. This is not a security update.
https://www.rarlab.com/

ZoomIt 6.12 resolves a cosmetic artifact bug when zooming. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/zoomit

Developer Updates

These are unlikely to be of interest to most people.

ADB 34.0.0 resolves several bugs. This is not a security update.
https://developer.android.com/studio/releases/platform-tools

Android Studio 2022.1.1.1 resolves several bugs. This is not a security update.
https://developer.android.com/studio

GitHub Desktop 3.1.6 updates libraries, resolves several bugs, and improves compatibility. This is a security update.
https://desktop.github.com/

GitHub includefragment 6.1.1 adds refetch API. This is not a security update.
https://github.github.io/include-fragment-element/

MySQL Server 8.0.32 resolves several bugs. This is not a security update.
https://dev.mysql.com/downloads/installer/

MySQL ConnectorNet 8.0.32 resolves several bugs. This is not a security update.
https://dev.mysql.com/downloads/connector/net/

Node.js 19.6.0 updates libraries and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Node.js 18.14.0 updates libraries and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Redemption 6.3.0.6164 resolves several bugs. This is not a security update.
https://www.dimastr.com/redemption/

Rustup 1.25.2 adds SHA-1 support again. This is not a security update.
https://www.rust-lang.org/

TortoiseGit 2.14.0 updates libraries and resolves several bugs. This is a security update.
https://tortoisegit.org/

Visual Studio Code 1.75.1 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.0.6 resolves several bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Drupal 9.4.11 is a security update.
https://drupal.org/download

Joomla 4.2.7 is a security update.
https://www.joomla.org/

ownCloud Client 3.1.0.9872 resolves several bugs. This is not a security update.
https://owncloud.com/desktop-app/

phpList 3.6.12 updates dependencies and resolves several bugs. This is not a security update.
https://www.phplist.org/

phpMyAdmin 5.2.1 is a security update.
https://www.phpmyadmin.net/

Piwigo 13.5.0 is a security update.
https://piwigo.org/

Antispam Bee 2.11.2 resolves several bugs and improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/antispam-bee/

Autoptimize 3.1.5 improves compatibility and resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/autoptimize/

Contact Form 7 5.7.3 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.2.1 improves compatibility and resolves several bugs. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers

myStickymenu 2.6.2 improves flow. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

Postie 1.9.65 removes uname support. This is not a security update.
https://wordpress.org/extend/plugins/postie/

Redirection 5.3.9 is a security update.
https://wordpress.org/extend/plugins/redirection/

W3 Total Cache 2.3.0 improves compatibility and resolves over a dozen bugs. This is not a security update.
https://wordpress.org/extend/plugins/w3-total-cache/

WooCommerce 7.3.0 resolves almost 100 bugs. This is a security update.
https://wordpress.org/extend/plugins/woocommerce/

WPtouch 4.3.48 is a security update.
https://wordpress.org/extend/plugins/wptouch/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2022-07-12

Welcome back, Folks!

Today is Patch Tuesday for July, 2022. You know how you say something like “biggest update series in well over a year” and the next month just blows that out of the water? We’re there now.

This Month in Technology

Advocates, Inc., Aerojet Rocketdyne, Alabama Eye & Cataract, P.C., Alameda Health System, Aloha Laser Vision, Amagasaki, Japan, Amazon Photos, AMD, Anker Eufy, Aon, Aruba Networks Switches, ATC Healthcare, Bangladeshi government, Bank of the West, Baptist Medical Center and Resolute Health Hospital, Bayhealth Medical Center, Inc., BeanVPN, Benefit Plan Administrators, Inc., Bookchor, Bourse des Vols, Capital Economics, Carnival Corporation, Carolina Behavioral Health Alliance, Carolina Eyecare Physicians, LLC, Catholic Health System, Center for Sight, Inc., Central Florida Inpatient Medicine, Charlotte Radiology, Cherry Creek Eye Physicians and Surgeons, P.C., CHRISTUS Spohn Health System Corporation, Cisco Secure Email, Cisco VPN routers, Citrix Application Delivery Management, CoDeSys Automation Software, Community of Hope D.C., Crema Finance, Customer.io, Disneyland’s Facebook and Instagram accounts, DivX SubTitles, Django, DTEK Group, ExpressLRS, Fast Shop, Flagstar Bank, Florida Birth-Related Neurological Injury Compensation Association, Foxhall Ob Gyn Associates, Geographic Solutions, Gol Tours LTD, Grab, Harmony, Hillrom Medical, Honda cars, Hudson Regional Hospital, IBM, Ignitis Group, Indian Flood Monitors, Indian government, thousands of industrial devices, Israeli Defense, Kaiser Foundation Health Plan of Washington, Kaiser Permanente, Kernersville Eye Surgeons, P.C., Khouzestan Steel Company, almost a million Kubernetes clusters, La Poste Mobile, Latvian government, Lithuanian government, Long Vision Center, Macmillan Publishing, Mangatoon, Marriott International, Massachusetts Child and Family Services, Inc., Mattax Neu Prater Eye Center, Inc., MCG Health and Eye Care Leaders, Medical University of Innsbruck, MEGA, Michigan Avenue Immediate Care, Microsoft Azure FabricScape, Microsoft Exchange, Microsoft Windows Domain Servers, Mitel VoIP, New Jersey Health Information Management, Nichirin-Flex U.S.A., North American Spine Society, Norway govt sites, OpenSea, OrthoNebraska, Phelps Care Regional Medical Center, Preferred Hospital Leasing Coleman Inc., Professional Finance Company, Renton School District, Resolute Health Hospital, Rodeo Pharmacy Inc, Shanghai National Police, Sharper Vision P.A., SHI International, Shoprite, Sight Partners Physicians, P.C., Sophos Firewall, Southwest Health Center, St Joseph Heritage Health, Stanford University, Stokes Regional Eye Centers, TB Kawashima, The People Concern, The Vicksburg Clinic, LLC, Tosoh America, Inc., UK Army’s Twitter & YouTube, UNC Lenoir Health Care, University of Pisa, University Pediatric Dentistry, US Bank, Walmart, WellDyneRx, LLC, Wiltshire Farm Foods, Yodel, Yuma Regional Medical Center, and Zimbra reportedly been hacked or compromised this month.

Some vendors, like CafePress, simply don’t care about security – and do their best to conceal when they’re hacked. I contacted them to report when they were hacked back in 2014 and they ignored me. Sigh.

Microsoft 365, Cloudflare, Microsoft Teams, Rogers (it was a big one), and Microsoft Office / OneDrive had widespread outages.

Facebook is collecting the patient data of millions, and is also blocking the link to the Facebook settlement class action website. You think they would have learned.

Attackers are using Google Chrome Extension fingerprinting to uniquely identify you. This method works in any Chromium browser.

Spam is still the #1 method of exploiting users. Whether it is a fake renewal notice, fake copyright complaints, or fake invoice, most spams will include a fake login form or a fake support number. In both cases they depend on the user to actually enter the login details or call the scammer to fall prey to their attacks. Online development environments are even being used for these attacks.

Counterfeit hardware can be far more dangerous than the real thing. Even though some vendors only support their hardware a few years before you have to replace it,  counterfeits are never supported and often have malicious implants.

Microsoft has rolled back (temporarily) their decision to block macros by default.

MITRE staff didn’t understand that publishing vulnerable sites, not just vulnerability information was bad, while a HackerOne employee was selling exploits before they were published, and an Amazon employee installed cryptominers on Capital One servers. Adobe is using malware traits to block antivirus software from scanning PDF files. How quickly these organizations can shatter their trust.

Here’s a great example of how a single vulnerability will be used to get far deeper into your network and hardware.

Storing your password directly in the browser is dangerous. Use a password manager.

Now for the good news:

 

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is huge this month. The typical computer should see roughly 3 GB in updates today. Let’s get started.

Microsoft released updates to address 74 vulnerabilities in Azure Site Recovery, Azure Storage Library, DNS Server, Microsoft Defender for Endpoint, Microsoft Edge, Microsoft Graphics Component, Microsoft Lync, Microsoft Office, Open Source Software, Skype for Business, Windows Active Directory, Windows Advanced Local Procedure Call, Windows BitLocker, Windows Boot Manager, Windows Client/Server Runtime Subsystem, Windows Connected Devices Platform Service, Windows Credential Guard, Windows Fast FAT Driver, Windows Fax and Scan Service, Windows Fax Service, Windows Group Policy, Windows Hyper-V, Windows IIS, Windows Kernel, Windows Media, Windows Network File System, Windows Performance Counters, Windows Point-to-Point Tunneling Protocol, Windows Portable Device Enumerator Service, Windows Print Spooler Components, Windows Remote Procedure Call Runtime, Windows Security Account Manager, Windows Server Service, Windows Shell, Windows Storage, XBox, and MSRT (~3 GB). This includes security updates. A reboot is required.

Google Chrome OS 103.0.5060.114 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Monterey (12.x) means that macOS Mojave (10.14) and older are no longer supported. If you can not install at least macOS Catalina (10.15) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v21H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 12 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v21H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 22.6.1 adds support for newer hardware. This is not a security update.
https://www.amd.com/en/support

Crucial Storage Executive 7.12 doesn’t provide a changelog so should be treated as a security update.
https://www.crucial.com/support/storage-executive

Display Driver Uninstaller 18.0.5.2 improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Intel Driver and Support Assistant 22.4.26 improves user interface. This is not a security update.
https://www.intel.com/p/en_US/support/detect

Samsung DeX 2.4.0.29 doesn’t provide a changelog so should be treated as a security update.
https://www.samsung.com/us/apps/dex/

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.41.96 is a security update.
https://brave.com/

SeaMonkey 2.53.13 is a security update.
https://www.seamonkey-project.org/

Google Chrome 103.0.5060.114 is a security update.
https://www.google.com/chrome/

Microsoft Edge 103.0.1264.51 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 102.0.1 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 91.11.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Vivaldi 5.3.2679.68 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

OutlookAttachView 3.45 adds a command-line option to control columns in exports. This is not a security update.
https://www.nirsoft.net/utils/outlook_attachment.html

Thunderbird 102.0.2 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

curl 7.84.0 resolves over a hundred bugs. This is a security update.
https://curl.haxx.se/windows/

Dropbox 152.4.4880 resolves several bugs. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 153.0.0.19.110 is a security update.
https://www.messenger.com/download

FreeFileSync 11.22 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 60.0 resolves several bugs. This is not a security update.
https://drive.google.com/start

Nextcloud Server 24.0.2 updates libraries, and resolves over 50 bugs. This is a security update.
https://nextcloud.com/

Npcap 1.70 resolves several bugs. This is not a security update.
https://nmap.org/npcap/

Rclone 1.59.0 adds support for new backends, metadata framework, resolves several bugs, and updates libraries. This is not a security update.
https://rclone.org/

Signal 5.49.0 doesn’t provide a detailed changelog so should be treated as a security update.
https://signal.org/download/windows/

Skype 8.85.0.409 improves their propaganda tools and resolves several bugs. This is not a security update.
https://www.skype.com/

Syncthing 1.20.3 resolves several bugs. This is not a security update.
https://syncthing.net/

Technitium DNS Server 8.1.4 resolves several bugs. This is not a security update.
https://technitium.com/dns/

Telegram 4.0.2 resolves several bugs. This is not a security update.
https://telegram.org/

WinSCP 5.21.2 is a security update.
https://winscp.net/eng/index.php

Zoom 5.11.1.6602 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 3.0.2 updates libraries and resolves several bugs. This is not a security update.
https://en.3tene.com/

darktable 4.0.0 is a major update. This version improves color space, exposure, contrast controls and hundreds of other features, as well as resolving over 100 issues. This should be treated as a security update.
https://www.darktable.org/

Picard 2.8.2 resolves several bugs. This is not a security update.
https://picard.musicbrainz.org/

Plex Desktop 1.48.2.3124 adds option to disable some Discover features, resolves several bugs with Search and Watchlist. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.20.2.3110 resolves a stability bug. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.27.2.5929 improves logging, adds support for Musicbrainz tags, and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Epic Games 14.1.2 resolves several bugs. This is not a security update.
https://www.epicgames.com/

GameMaker Studio 2022.6.0.23 adds Feather support, room editor filters, additional extension features, and resolves dozens of bugs. This is not a security update.
https://www.yoyogames.com/en/gamemaker

Lego Studio 2.22.6.1 resolves several bugs. This is not a security update.
https://www.lego.com/en-us/ldd

PlayStation PS5 22.01-05.50.00 resolves several bugs and improves performance. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

PlayStation PS4 9.60 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps4/system-software/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe RoboHelp RH2020.0.8 is a security update.
https://www.adobe.com/support/robohelp/downloads.html

Adobe Acrobat and Reader 22.001.20169, 20.005.30362, and 17.012.30249 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb22-32.html

Adobe Character Animator 22.5 is a security update.
https://www.adobe.com/creativecloud/catalog/desktop.html

Adobe Photoshop 22.5.8 and 23.4.1 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb22-35.html

Artweaver 7.0.13 resolves several bugs. This is not a security update.
https://www.artweaver.de/

Calibre 6.0 is a major update. This version adds full text search, new hardware support and performance improvements, a new URL scheme, and read-aloud support. It also removed 32-bit support. This is not a security update.
https://calibre-ebook.com/

Gimp 2.10.32 adds HiDPI, high bit-depth and multi-threading support, dark theme, improved color control, masking, and warp. This is not a security update.
https://www.gimp.org/

Kindle for PC 1.37.65274 doesn’t provide a changelog so should be treated as a security update.
https://www.amazon.com/kindleforpc

Nextcloud Desktop 3.5.2 resolves over a dozen bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.4.3 adds option to limit search results to one line per file, adds EOL customization, adds new document shortcuts, and resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

Security Software Updates

One or more of these is likely to be of interest to most people.

Intel CSMEVDT 7.0.2.0 resolves a documentation error. This is not a security update.
https://www.intel.com/content/www/us/en/download/19392/28632/intel-converged-security-and-management-engine-version-detection-tool-intel-csmevdt.html

FSS 2022.6.14 doesn’t provide a changelog so should be treated as a security update.
https://www.bleepingcomputer.com/download/farbar-service-scanner/dl/62/

Gpg4win 4.0.3 is a security update.
https://www.gpg4win.org/download.html

HTTP Toolkit 1.9.0 improves issue tracking and feedback. This is not a security update.
https://httptoolkit.tech/

MalwareBytes Anti-Malware 4.5.10.200 is a security update.
https://www.malwarebytes.org/antimalware/

OpenSSL (SLP) 3.0.5 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

OpenSSL 1.1.1q is a security update.
https://www.openssl.org/source/

ProtonVPN 2.0.3 resolves several bugs. This is not a security update.
https://protonvpn.com/download

ProtonVPN (macOS) 3.0.1 resolves several bugs. This is not a security update.
https://protonvpn.com/download

SanDisk PrivateAccess 6.3.10 does not provide a changelog so should be considered a security update.
https://kb.sandisk.com/app/answersweb/detailweb/a_id/21996

Tails 5.2 is a security update.
https://tails.boum.org/install/dvd/index.en.html

YARA 4.2.2 is a security update.
https://github.com/VirusTotal/yara/

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 22.1.0 adds several new features, improves performance, and resolves several bugs. This is not a security update.
https://download.techsmith.com/snagit/releases/snagit.msi

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.0.7.8 adds support for new encodings and resolves several stability bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

iMazing HEIC Converter 2.0.0 doesn’t provide a changelog so should be considered a security update.
https://imazing.com/heic

IsoBuster 5.0 is a major update that adds a 64-bit version, high-DPI scaling, themes, improved media support and resolves several bugs. This is not a security update.
https://www.isobuster.com/download.php

MakeMKV 1.17.0 improves reliability, adds support for new encodings, and resolves several bugs. This is not a security update.
https://www.makemkv.com/download/

Education updates

One or more of these are likely to be of interest to most people.

Zotero 6.0.9 adds PDF rotation and resolves several bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Windows 8.7.3 is a major update adding several new cosmetic and integration improvements, and search and filter options. This is a security update.
https://1password.com/downloads/windows/

1Password for Mac 8.7.3 is a major update adding several new cosmetic and integration improvements, and search and filter options. This is a security update.
https://1password.com/downloads/mac/

7-Zip 22.00 adds support for APFS, pax, adds zone.id, and resolves several bugs. This is not a security update.
https://www.7-zip.org/

8GadgetPack 35.0 improves compatibility, adds keyboard shortcuts, and resolves several bugs. This is not a security update.
https://8gadgetpack.net/

Agent Ransack 2022.3335 adds new columns, improves view state restoration, and resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

CCleaner 6.01.9825 adds support for new apps and resolves several bugs. This is not a security update.
https://www.ccleaner.com/

Dell OS Recovery Tool 2.3.7012.0 doesn’t provide a changelog so should be treated as a security update.
https://www.dell.com/support/home/uk/en/ukbsdt1/drivers/osiso/recoverytool

DesktopOK 9.97 expands toolset. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 3.0.84.0 adds personalization, search statistics, Excel row numbers, and resolves several bugs. This is not a security update.
https://dngrep.github.io/

dupeGuru 4.3.1 resolves a false duplication detection bug. This should be treated as a security update if you use dupeGuru to remove duplicate files.
https://dupeguru.voltaicideas.net/

FileLocator Pro 2022.3335 adds new columns, improves view state restoration, and resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Git SCM 2.37.0 resolves several bugs and improves CLI support. This is a security update.
https://git-scm.com/

GoodSync 11.11.5 resolves dozens of bugs. This is a security update.
https://www.goodsync.com/

Intel CPU Diagnostic 4.1.7.39 adds tests for newer hardware, resolves several bugs, and updates components. This is not a security update.
https://www.intel.com/content/www/us/en/download/15951/intel-processor-diagnostic-tool.html

IsMyHdOK 3.66 improves compatibility and SSD/SSHD detection. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

NTLite 2.3.6.8804 resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

PointerStick 5.88 improves support for virtual desktops and multiple screens. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.60.0 resolves several bugs and improves compatibility. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

RoboForm 9.3.3 adds (and resolves bugs within) OTP feature, improves search, and resolves several bugs. This is not a security update.
https://www.roboform.com/

Rufus 3.19 adds an option for setup customization, updates drivers, and resolves several bugs. This is not a security update.
https://rufus.ie/en_US/

SearchMyFiles 3.20 adds filename length filter. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

Synergy 1.14.5 resolves several bugs. This is not a security update.
https://symless.com/synergy/

TeamViewer 15.31.5 improves video experience and adds remote terminal to the Computers & Contacts list. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

Unity 2022.1.8 updates libraries and resolves dozens of bugs. This is not a security update.
https://unity3d.com/get-unity/download/archive

WhyNotWin11 2.5.0.1 resovles several bugs. This is not a security update.
https://github.com/rcmaehl/WhyNotWin11

WifiInfoView 2.77 improves high-DPI support. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

ZoomText 2022.2206.7.400 adds languages and resolves several bugs. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

GitHub Desktop 3.0.3 resolves several bugs. This is not a security update.
https://desktop.github.com/

Node.js 18.5.0 is a security update.
https://nodejs.org/en/

Node.js 16.16.0 is a security update.
https://nodejs.org/en/

Node.js 14.20.0 is a security update.
https://nodejs.org/en/

Rustup 1.25.0 adds support for arm64, improved integration and resolves several bugs. This is not a security update.
https://www.rust-lang.org/

Redemption 6.2.0.6122 resolves several bugs. This is not a security update.
https://www.dimastr.com/redemption/

SQLite 3.39.0 adds support for right and full outer join, distinct from, and resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.69.1 adds 3-way merge, improved command center UI for search, DND mode, and resolves several bugs. This is a security update.
https://code.visualstudio.com/

Web Package Updates

These are likely to be of interest only to web developers.

Drupal 9.3.18 is a security update.
https://drupal.org/download

Drupal 9.4.0 is a security update.
https://drupal.org/download

HumHub 1.11.4 is a security update.
https://www.humhub.com/en/download

Joomla 4.1.5 resolves several bugs. This is the last of the 4.1 series. This is not a security update.
https://www.joomla.org/

jQuery 3.6.0
https://code.jquery.com/

MailEnable 10.40 updates libraries and resolves over a dozen bugs. This is a security update.
https://www.mailenable.com/

Piwigo 12.3.0 resolves several bugs. This is not a security update.
https://piwigo.org/

WordPress 6.0.1 resolves over two dozen bugs. This is not a security update.
https://wordpress.org/

Akismet 4.2.5 resolves a bug. This is not a security update.
https://wordpress.org/extend/plugins/akismet/

Antispam Bee 2.11.1 cleans up code. This is not a security update.
https://wordpress.org/extend/plugins/antispam-bee/

Contact Form 7 5.6 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.4.7 improves compatibility. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers

Interactive World Map 3.2.0 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/interactive-world-map/

Postie 1.9.61 resolves a MIME warning. This is not a security update.
https://wordpress.org/extend/plugins/postie/

NextScripts Social Networks Auto-Poster 4.3.26 is a security update.
https://wordpress.org/extend/plugins/social-networks-auto-poster-facebook-twitter-g/

Slider Revolution 6.5.25 resolves a dozen bugs. This is not a security update.
https://revolution.themepunch.com/

Sucuri Security 1.8.32 is a critical security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

W3 Total Cache 2.2.3 is a security update.
https://wordpress.org/extend/plugins/w3-total-cache/

WooCommerce 6.6.1 resolves dozens of bugs. This is a security update.
https://wordpress.org/extend/plugins/woocommerce/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/