Updates 2022-04-12

Welcome back, Folks!

Today is Patch Tuesday for April, 2022.

It’s another big one. Sprinkle a little disaster and angst on a world war, give script kiddies a megaphone and encourage them to hack strangers and you end up with the perfect storm of malice.

This Month in Technology

2FA/MFA implementations, Advanced Medical Practice Management, Alacrity Solutions Group, LLC, Alberta vaccine passport system, American Express, ASUS routers, Atlassian, Ballad Health, a large banking platform, Bank of Ireland, Bernards Township School District, Bet9ja, Black River Falls School District, Bradley Airport, Bridgestone Americas, CafePress, Caisse nationale d’assurance maladie, Cancer and Hematology Centers of Western Michigan, Capital Region Medical Center, Cash App, CDEK, Central Indiana Orthopedics, Central Minnesota Mental Health Center, Central Vermont Eye Care, Charleston Area Medical Center, Inc., Chelan Douglas Health District, Christie Clinic, Clinic of North Texas, LLP, Colorado Physician Partners, PLLC, Creative Services Inc, Cytometry Specialists, Denso, Dialyze Direct, LLC, Doctors Me, Duncan Regional Hospital, East Tennessee Children’s Hospital, East Windsor Township, Electoral Services Department of Wandsworth Council, EMC National Life Insurance, Emma Sleep Company, Englewood Health, Ermenegildo Zegna, Finland Department of Defense, Fox, Gainwell Technologies, LLC, GitLab, Globant, hundreds of GoDaddy’s Managed WordPress sites, Google Chrome (over 40 security vulnerabilities fixed in the last month), Grand Coloane Resort, H.P. Hood Dairy, Harris County Jail, Hellenic Post, Highmark Inc, Honda and Acura cars, Horizon Actuarial Services LLC, hundreds of HP printer models, HubSpot, Iberdrola, Isle of Wight EV chargers, Israeli government, Jefferson Dental and Orthodontics, l’Assurance, Labette Health, Law Enforcement Health Benefits, Inc., Local 295 IBT Employer Group Welfare Fund, Lutheran Social Services of Illinois, MailChimp, Major League Baseball Players Benefit Plan, Mansfield company, Medical Surgical Eye Care, Mercado Libre, Microsoft, MikroTik routers, Miratorg Agribusiness HoldingMN District 518, Morgan Stanley Wealth Management, National Rifle Association, New Jersey Brain and Spine, New York City public schools, Nordex, Northern Ireland TrustFord, Norwood Clinic, Okta (though they initially claimed otherwise, then backtracked), Palo Alto Networks, Palo Alto Networks hardware, Parker Hannifin Corp, Partnership HealthPlan of California, PhySynergy, LLC, PressReader, QNAP, Ronin, Rosaviatsia, Roskomnadzor, Rostec, Royal Enfield, Russia’s Federal Security Service (FSB), Russian Lipetsk Mechanical Plant, Russian Orthodox Church, Samsung Electronics, Scottish Association for Mental Health, Scottish Power, Sea Mar Community Health Center, Shutterfly, Snap-On, Sophos Security, South Denver Cardiology Associates, Spokane Regional Health District, Spring Framework for Java, SummaCare, SuperCare, Taylor Regional Hospital, Tennessee Pediatric Hospital, Texas Department of Insurance, The Works, Thomas Allen, Inc., Toei, Toyota, Transneft, TransUnion, Travelio, Trend Micro Apex Central, Trezor, Trinity Home Care, Inc., Ubisoft, Ukrainian IT Army, Ukrtelecom, Valley View Hospital Association, Veeam products, Viasat modems, Virginia Mason Medical Center, Vodafone, WatchGuard, Western Digital My Cloud, Wheeling Health Right Inc, Wynn Palace, Wyze Cam, ZAP-Hosting, and Zyxel hardware were hacked or compromised this month.

Now for the good news:

Internet Explorer is finally going to be going away in only two months. While this will eliminate a program that nobody should be using, it will have some side-effects  for businesses that rely on Active-X objects. Still, net win.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday this month is smaller than it has been in months. The typical computer should see roughly 2.7 GB in updates today. Let’s get started.

Microsoft released updates for .NET Framework, Active Directory Domain Services, Azure SDK, Azure Site Recovery, LDAP, Microsoft Bluetooth Driver, Microsoft Dynamics, Microsoft Edge, Microsoft Graphics Component, Microsoft Local Security Authority Server, Microsoft Office Excel, Microsoft Office SharePoint, Microsoft Windows ALPC, Microsoft Windows Codecs Library, Microsoft Windows Media Foundation, Power BI, Role: DNS Server, Role: Windows Hyper-V, Skype for Business, Visual Studio, Visual Studio Code, Windows Ancillary Function Driver for WinSock, Windows App Store, Windows AppX Package Manager, Windows Cluster Client Failover, Windows Cluster Shared Volume, Windows Common Log File System Driver, Windows Defender, Windows DWM Core Library, Windows Endpoint Configuration Manager, Windows Fax Compose Form, Windows Feedback Hub, Windows File Explorer, Windows File Server, Windows Installer, Windows iSCSI Target Service, Windows Kerberos, Windows Kernel, Windows Local Security Authority Subsystem Service, Windows Media, Windows Network File System, Windows PowerShell, Windows Print Spooler Components, Windows RDP, Windows Remote Procedure Call Runtime, Windows schannel, Windows SMB, Windows Telephony Server, Windows Upgrade Assistant, Windows User Profile Service, Windows Win32K, Windows Work Folder Service, YARP reverse proxy and MSRT (~2 GB). This includes security updates. A reboot is required.

Apple released updates for iOS 15.4.1, iPadOS 15.4.1, macOS Big Sur 11.6.5, macOS Monterey 12.3.1, Security Update 2022-003 Catalina, GarageBand 10.4.6, iTunes 12.12.3 for Windows, Logic Pro X 10.7.3, tvOS 15.4, watchOS 8.5.1, Xcode 13.3. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 15.4.1 is a security update. Use Settings, General, Software Update to install the most current update.

iPadOS 15.4.1 is a security update. Use Settings, General, Software Update to install the most current update.

tvOS 15.4 is a security update. Use System, Software Update to install the most current version.

watchOS 8.5.1 are security updates. Use the Watch app on your iPhone to install the most current version.

Google Chrome OS 100.0.4896.82 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Monterey (12.x) means that macOS Mojave (10.14) and older are no longer supported. If you can not install at least macOS Catalina (10.15) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v21H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every year and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v21H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 6 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Hundreds of HP printer models have new firmware security updates or advise disabling the LLMNR protocol. While you’re there consider disabling IPv6, WSD, DHCPv6, as well as SLP unless you’re in a corporate environment, and Bonjour unless you need to print from Apple mobile devices.
https://support.hp.com/us-en/document/ish_5948778-5949142-16/hpsbpi03780

Drivers by Seagull 2022.1 adds support for over 190 new printer models, improves GUI for Driver Wizard and resolves a bug with the GS1 Datamatrix AI 11. This is not a security update.
https://www.seagullscientific.com/support/downloads/drivers/

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.37.113 is a security update.
https://brave.com/

Google Chrome 100.0.4896.88 is a security update.
https://www.google.com/chrome/

Microsoft Edge 100.0.1185.39 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 99.0.1 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 91.8.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

SeaMonkey 2.53.11.1 is a security update.
https://www.seamonkey-project.org/

Vivaldi 5.2.2623.33 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.10.2 is a security update.
https://getmailspring.com/

Thunderbird 91.8.0 is a security update.
https://www.thunderbird.net/en-US/

NK2Edit 3.43 adds an option to copy the contents of the selected cell. This is not a security update.
https://www.nirsoft.net/utils/outlook_nk2_edit.html

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 7.0.7 resolves several bugs, and improves reliability. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk for macOS 6.5.0 adds permission profiles and resolves a layout bug. This is the last version to support EOL macOS versions. This is not a security update.
https://anydesk.com/en/downloads

Dropbox 145.4.4921 doesn’t provide a changelog so should be treated as a security update.
https://www.dropbox.com/

FileZilla Client 3.59.0 updates libraries. This is a security update.
https://filezilla-project.org/

Google Drive 56.0 resolves several bugs. This is not a security update.
https://drive.google.com/start

Nextcloud Server 23.0.3 updates libraries and resolves dozens of bugs. This should be treated as a security update.
https://nextcloud.com/

ownCloud Client 2.10.1.7187 resolves many bugs. This is not a security update.
https://owncloud.com/desktop-app/

Prosody 0.12.0 resolves several bugs and improves security defaults. This should be treated as a security update.
https://prosody.im/download/start

Rclone 1.58.0 adds several new backends and resolves dozens of bugs. This is a security update.
https://rclone.org/

Skype 8.82.0.403 resolves several bugs and makes cosmetic improvements. This is not a security update.
https://www.skype.com/

Syncthing 1.19.2 updates error messaging. This is not a security update.
https://syncthing.net/

Technitium DNS Server 8.0.2 is a major update adding several new features, updates libraries and apps, and resolves several bugs. This is not a security update.
https://technitium.com/dns/

Telegram 3.6.1 resolves several bugs. This is not a security update.
https://telegram.org/

Trillian Mac 6.5.0.11 adds native support for M1, new emoji and history features, and resolves many bugs. This is not a security update.
https://www.trillian.im/

WGet 1.21.3 updates libraries. This is a security update.
https://eternallybored.org/misc/wget/

Zoom 5.10.1.4420 is a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

FastStone Viewer 7.6 adds several new display controls and improves performance. This is not a security update.
https://www.faststone.org/FSViewerDetail.htm

Plex Desktop 1.43.3.2951 improves stability. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.14.0.2935 adds a couple new features and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.25.9.5721 updates scanning behavior, adds support for plexmatch files, and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Epic Games 14.0.3 resolves several bugs. This is not a security update.
https://www.epicgames.com/

GameMaker Studio 2022.3.0.625 makes cosmetic and localization changes, adds several new features, and resolves dozens of bugs. This is not a security update.
https://www.yoyogames.com/en/gamemaker

Nintendo Switch 14.1.0 adds PPN. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 22.01-05.00.00 provides many changes to the user interface and nomenclature. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

RetroPie 4.8 updates libraries and apps. This is not a security update.
https://retropie.org.uk/

Steam 2022.03.16 resolves cosmetic issues. This is not a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Commerce 2.3.7-p3, 2.4.3-p2, and 2.4.4 are security updates.
https://helpx.adobe.com/security/products/magento/apsb22-13.html

Adobe Acrobat and Reader 22.001.20117, 22.001.20112, 20.005.30334, 20.005.30331, 17.012.30229, and 17.012.30227 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb22-16.html

Adobe After Effects 22.3 and 18.4.6 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb22-19.html

Adobe Photoshop 22.5.7 and 23.3 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb22-20.html

Blender 3.1 vastly improves performance and adds several new features and controls. This is not a security update.
https://www.blender.org/download/

Calibre 5.40.0 adds new features, news sources, and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

IcoFX 3.7.1 resolves several bugs. This is not a security update.
https://icofx.ro/

Kindle for PC 1.35.64251 doesn’t provide a changelog so should be treated as a security update.
https://www.amazon.com/kindleforpc

LibreOffice Still 7.2.6 resolves over 50 bugs. This is not a security update.
https://www.libreoffice.org/

LibreOffice Fresh 7.3.2 resolves over 70 bugs, including stability and crash bugs. This should be treated as a security update. The “Fresh” line is beta software so should be avoided by most users.
https://www.libreoffice.org/

Nextcloud Desktop 3.4.4 resolves several bugs. This should be treated as a security update.
https://nextcloud.com/

Notepad++ 8.3.3 resolves a crash bug. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 4.3.10 resolves a resize bug. This is not a security update.
https://www.getpaint.net/

PDF-XChange Editor 9.3.360.0 resolves several bugs. This is not a security update.
https://www.tracker-software.com/product/pdf-xchange-editor

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 1.1.7 resolves several bugs. This is not a security update.
https://github.com/countercept/chainsaw

MalwareBytes Anti-Malware 4.5.7 is a security update.
https://www.malwarebytes.org/antimalware/

OpenSSL 3.0.2 is a security update.
https://curl.se/windows/

OSFClone 1.3.1001 updates operating system. This is not a security update.
https://www.osforensics.com/tools/create-disk-images.html

Tails 4.29 is a security update.
https://tails.boum.org/install/dvd/index.en.html

uBlock Origin 1.42.4 improves reliability. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

VT-CLI 0.10.1 improves organization. This is not a security update.
https://github.com/VirusTotal/vt-cli/releases/latest

YARA 4.2.0 updates syntax and resolves several bugs. This is a security update.
https://github.com/countercept/chainsaw

Zorin OS 16.1 updates libraries, apps, improves hardware support, and performance. This is not a security update.
https://zorin.com/os/mirrors/

Capture Updates

These are unlikely to be of interest to most people.

Elgato Game Capture HD (macOS) 2.11.14 improves Twitch API support. This is not a security update.
https://help.elgato.com/hc/en-us/articles/360027963512

Open Broadcaster Software 27.2.4 resolves several bugs. This is not a security update.
https://obsproject.com/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.0.6.9 adds support for new encodings.
https://www.dvdfab.cn/download.htm

PDF Creator 4.4.2 resolves several bugs. This is not a security update.
https://www.pdfforge.org/pdfcreator

Education updates

One or more of these are likely to be of interest to most people.

Zotero 6.0.4 is a major update that adds several new features and resolves two dozen bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 7.9.4 resolves several bugs and improves performance. This is a security update.
https://1password.com/downloads/mac/

Agent Ransack 2022.3314 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

Beyond Compare 4.4.2.26348 improves command line support. This is not a security update.
https://www.scootersoftware.com/download.php?zz=dl4

Bitwarden 1.32.1 updates Safari extension and resolves several bugs. This is not a security update.
https://bitwarden.com/

Dell Command Update 4.5 improves startup and SRP performance and adds deferral, session management, and WER handling. This is not a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

DesktopOK 9.81 improves dark theme. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

DevManView 1.76 adds new quick filter option. This is not a security update.
https://www.nirsoft.net/utils/device_manager_view.html

dnGrep 3.0.42.0 improves regular expressions and boolean testing and resolves several bugs. This is not a security update.
https://dngrep.github.io/

dupeGuru 4.2.1 resolves several bugs and updates libraries. This should be treated as a security update.
https://dupeguru.voltaicideas.net/

Etcher 1.7.8 resolves several bugs. This is not a security update.
https://www.balena.io/etcher/

FileLocator Pro 2022.3314 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

GoodSync 11.10.8 resolves dozens of bugs. This is a security update.
https://www.goodsync.com/

NTLite 2.3.4.8658 adds YubiKey compatibility, upgrades components and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

PowerToys 0.57.2 resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Recuva 1.53.2078 improves licensing controls. This is not a security update.
https://www.ccleaner.com/recuva

RoboForm 9.2.5 is a security update.
https://www.roboform.com/

Rufus 3.18 is a security update.
https://rufus.ie/en_US/

ScreenConnect 22.3.7487.8130 resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

SearchMyFiles 3.17 adds folder background context option. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

SimpleWMIView 1.51 updates the /columns command line switch behavior. This is not a security update.
https://www.nirsoft.net/utils/simple_wmi_view.html

Ookla Speedtest CLI 1.1.1 doesn’t provide a changelog so should be treated as a security update.
https://www.speedtest.net/apps/cli

TeamViewer 15.28.9 resolves a reliability bug. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

Unity 2021.3.0 resolves many bugs and updates libraries. This is not a security update.
https://unity3d.com/get-unity/download/archive

USBDeview 3.03 improves compatibility. This is not a security update.
https://www.nirsoft.net/utils/usb_devices_view.html

Wazuh Agent 4.2.6 updates Kibana plugin and Splunk app and resolves a bug. This is a security update.
https://wazuh.com/start/

WifiInfoView 2.76 resolves a marking bug. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

Developer Updates

These are unlikely to be of interest to most people.

ADB 33.0.1 resolves several bugs. This is not a security update.
https://developer.android.com/studio/releases/platform-tools

Docker Desktop 4.7.0 is a security update.
https://www.docker.com/products/docker-desktop

GitHub Desktop 2.9.12 adds support for Brackets Editor, JetBrains RubyMine, JetBrains GoLand, and Android Studio, and resolves several bugs. This is not a security update.
https://desktop.github.com/

Godot 3.4.4 resolves several bugs. This is not a security update.
https://godotengine.org/

Node.js 12.22.12 is a security update. This is the final release of the 12.x line.
https://nodejs.org/en/

Node.js 14.19.1 is a security update.
https://nodejs.org/en/

Node.js 16.14.2 is a security update.
https://nodejs.org/en/

Node.js 17.9.0 is a security update.
https://nodejs.org/en/

SQLite 3.38.2 resolves several bugs, improves compatibility and CLI support. This is not a security update.
https://www.sqlite.org/download.html

TortoiseSVN 1.14.3 resolves several bugs. This is not a security update.
https://tortoisesvn.net/downloads.html

Visual Studio Code 1.66.1 updates libraries and resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Web Package Updates

These are likely to be of interest only to web developers.

Coppermine Gallery 1.6.18 improves compatibility. This is not a security update.
https://coppermine-gallery.net/

Drupal 9.3.9 is a security update.
https://drupal.org/download

Joomla 4.1.2 is a security update.
https://www.joomla.org/

MailEnable 10.39 resolves several bugs and improves security defaults. This is a security update.
https://www.mailenable.com/

WordPress 5.9.3 resolves several bugs. This is not a security update.
https://wordpress.org/

Autoptimize 3.0.2 improves stability. This is not a security update.
https://wordpress.org/extend/plugins/autoptimize/

BuddyPress 10.2.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/buddypress/

Slider Revolution 6.5.19 resolves a couple bugs. This is not a security update.
https://revolution.themepunch.com/

WooCommerce 6.3.1 is a security update.
https://wordpress.org/extend/plugins/woocommerce/

WPBakery 6.9.0 improves compatibility and resolves several bugs. This is not a security update.
https://wpbakery.com/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2019-08-13

Hi, Folks!

Today is Patch Tuesday for August 2019 and it’s huge. It was a pretty big month for security news, too.

This month demonstrates several points I’ve been making for years:

1) Often the addition of yet another antivirus actually weakens your security. With Windows Defender scoring a perfect 100 there’s no good reason to install one of the “free” or even paid alternatives. Remember that there are only three parties to an exchange: the vendor, the customer, and the product. If you’re not selling or paying for a service, you’re the product.

2) Everything will be hacked eventually. Capital One and Binance demonstrate that even those tasked with the highest levels of security can be bribed or make mistakes, and since all encryption is weighted only by time and resources that are becoming ever-cheaper, assume anything you share will inevitably be compromised, even if you didn’t put it online yourself.

3) It isn’t just computers and phones that can be hacked. Everything from cameras, to airplanes, to Navy destroyers, and much more are also vulnerable.

4) The gatekeepers of “reasonable” vulnerability disclosure are as responsible as anyone else for zero-day exploits being exposed.

That’s enough horror stories for now. Let’s get back to our regularly scheduled program. The typical computer should see roughly 3 GB in updates today. Let’s get started.

Microsoft released updates for Windows, .NET, Edge, Internet Explorer, Flash, and MSRT (~2 GB). This includes security updates. TWO reboots are required.

Apple released updates for iOS 12.4, macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra, Safari 12.1.2, watchOS 5.3, tvOS 12.4, iCloud for Windows 7.13, iCloud for Windows 10.6, and iTunes for Windows 12.9.6. These are security updates. Use Apple Software Update to install the most current versions.

iOS 12.4 is a security update. Use Settings, General, Software Update to install the most current update.

watchOS 5.3 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 12.4 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 76.0.3809.102 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Adobe Flash Player 32.0.0.238 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The now-current release of Windows 10 (1903) will cause your computer to feel unusually slow until it is installed. This is a side-effect of the Windows 10 upgrade cycle, which pushes out 3-6 GB through Windows update to get you to the latest Windows 10 release every 6 months. If you don’t let it finish and you’re on a slow connection, it will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.1.7 resolves bugs. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

nVidia 431.60 is a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

BullZip PDF Printer 11.10.0.2761 adds print redirection and improves compatibility. This is not a security update.
https://www.bullzip.com/products/pdf/info.php#download

Crucial Storage Executive 5.02 doesn’t provide a changelog so should be treated as a security update.
https://www.crucial.com/usa/en/support-storage-executive

Intel Driver and Support Assistant 19.7.30 resolves several bugs. This is not a security update.
https://www.intel.com/p/en_US/support/detect

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 76.0.3809.100 is a security update. Use Menu, Help, About to install the most current version.

Firefox 68.0.1 is a security update. Use Menu, Help, About to install the most current version.

Vivaldi 2.6.1566.49 is a security update. Use Menu, Help, About to install the most current version.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

OutlookAttachView 3.25 adds search-in-attachments option. This is not a security update.
https://www.nirsoft.net/utils/outlook_attachment.html

Thunderbird 60.8.0 is a security update. Use Menu, Help, About to install the most current version.

Internet Updates

One or more of these are likely to be of interest to everyone.

Trillian 6.2.0.11 resolves several bugs. This is not a security update.
https://www.trillian.im/

Trillian Mac 6.2.0.18 resolves several bugs. This is not a security update.
https://www.trillian.im/

BrowsingHistoryView 2.21 adds option to use local time for time range. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

FileZilla Client 3.44.1 resolves several bugs, adds search to Site Manager, and adds warnings to insecure connections. This is not a security update.
https://filezilla-project.org/

FreeFileSync 10.14 enforces TLS for all endpoints and resolves several bugs. This should be considered a security update.
https://www.freefilesync.org/download.php

MaxMind GeoIP 201908 is a data refresh.
https://dev.maxmind.com/geoip/

Nmap 7.80 includes an updated Npcap, adds NSE scripts and resolves several bugs. This is a security update.
https://nmap.org/

Npcap 0.9982 is a security update.
https://nmap.org/npcap/

PuTTY installer 0.72 resolves several bugs. This is a security update.
https://www.chiark.greenend.org.uk/~sgtatham/putty/download.html

WinSCP 5.15.3 resolves several bugs. This is a security update.
https://winscp.net/eng/index.php

Media Updates

These are unlikely to be of interest to most people.

iTunes 12.9.6 is a security update.
https://www.apple.com/itunes/download/

Game Updates

These are unlikely to be of interest to most people.

Lego Digital Designer 4.3.12 doesn’t provide a changelog so should be treated as a security update.
https://www.lego.com/en-us/ldd

Steam 2019.08.06 resolves several bugs. This is a security update. Use Steam to update Steam.

PlayStation PS4 6.72 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/system-updates/ps4/

RetroPie 4.5.1 improves compatibility with RPI4 and reverts the kernel to improve stability. This is not a security update.
https://retropie.org.uk/

SteamOS Installer 2019-07-17 is a security update.
https://store.steampowered.com/steamos/download/?ver=custom

Office Updates

One or more of these are likely to be of interest to most people.

Atom 1.40.0 resolves several bugs. This is not a security update.
https://atom.io/

Artweaver 7.0 improves brush handling, simplified presets, Windows Ink Pen support, improved update, and resolves several bugs. This is not a security update.
https://www.artweaver.de/

Krita 4.2.5 resolves several bugs. This is not a security update.
https://krita.org/en/download/krita-desktop/

LibreOffice Still 6.2.5 is a major update to LibreOffice Still, and adds several features and improved stability. This is not a security update.
https://www.libreoffice.org/

LibreOffice Fresh 6.3.0 is a major new release with improved integration, performance improvements, and many new features. This is not a security update.
https://www.libreoffice.org/

Paint.net 4.2.1 adds HEIC and JPEG XR support, resolves several bugs. This is not a security update.
https://www.getpaint.net/

Adobe Creative Cloud Desktop 4.9 is a security update.
https://www.adobe.com/creativecloud/catalog/desktop.html

Adobe Photoshop CC 19.1.9 is a security update. Use Creative Cloud Desktop to install the most current version (after patching the security issues in Creative Cloud Desktop).

Adobe Photoshop CC 20.0.6 is a security update. Use Creative Cloud Desktop to install the most current version (after patching the security issues in Creative Cloud Desktop).

Adobe Experience Manager hotfix 30379 is a security update for AEM 6.4 and 6.5.
6.4: https://www.adobeaemcloud.com/content/companies/public/adobe/packages/cq640/hotfix/cq-6.4.0-hotfix-30379
6.5: https://www.adobeaemcloud.com/content/companies/public/adobe/packages/cq650/hotfix/cq-6.5.0-hotfix-30379

Adobe Acrobat DC 2019.012.20036 is a security update. Use Help, Check for Updates to get the most current version.

Adobe Acrobat Reader DC 2019.012.20036 is a security update. Use Help, Check for Updates to get the most current version.

Acrobat 2017 2017.011.30144 is a security update. Use Help, Check for Updates to get the most current version.

Acrobat Reader DC 2017 2017.011.30144 is a security update. Use Help, Check for Updates to get the most current version.

Acrobat DC 2015.006.30499 is a security update. Use Help, Check for Updates to get the most current version.

Acrobat Reader DC 2015.006.30499 is a security update. Use Help, Check for Updates to get the most current version.

Adobe Prelude CC 8.1.1 is a security update. Use Creative Cloud Desktop to install the most current version (after patching the security issues in Creative Cloud Desktop).

Adobe Premiere Pro CC 13.1.3 is a security update. Use Creative Cloud Desktop to install the most current version (after patching the security issues in Creative Cloud Desktop).

Adobe Character Animator CC 2.1.1 is a security update. Use Creative Cloud Desktop to install the most current version (after patching the security issues in Creative Cloud Desktop).

Adobe After Effects CC 16.1.2 is a security update. Use Creative Cloud Desktop to install the most current version (after patching the security issues in Creative Cloud Desktop).

Security Software Updates

One or more of these is likely to be of interest to most people.

QubesOS 4.0.2 updates kernel and TemplateVM components. This is not a security update.
https://www.qubes-os.org/downloads/

Java 8u221 is a security update. If you’re not 110% sure you need Java, remove it instead.
https://www.java.com/en/download/manual.jsp

Gpg4win 3.1.10 resolves a security bug.
https://www.gpg4win.org/download.html

RogueKiller 13.4.2 resolves several bugs. This is not a security update.
https://www.adlice.com/softwares/roguekiller/

RouterPassView 1.86 adds support for additional hardware. This is not a security update.
https://www.nirsoft.net/utils/router_password_recovery.html

TinyWall 2.1.11 improves compatibility and resolves several bugs. This is not a security update.
https://tinywall.pados.hu/

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 2019.1.3 is a security update.
https://download.techsmith.com/snagit/enu/snagit.exe

Converter Updates

These are unlikely to be of interest to most people.

Stop using CDex. CDex now includes malware as part of the installation, so should be treated as untrustworthy. Even if the accessory malware is removed, any developer willing to include malware should be assumed to be malicious and the core software likely has many other security issues and should be avoided completely. Again, remove CDex.

DVDFab 11.0.4.2 adds support or new encodings, improves compatibility, greatly improves subtitle parsing. This is not a security update.
http://www.dvdfab.cn/download.htm

FFmpeg 4.2 is a new major build, adding many filters and decoders and improving performance. This is not a security update.
https://ffmpeg.org/download.html

Education updates

One or more of these are likely to be of interest to most people.

e-Sword 12.0 adds themes and low-light display support, and makes hundreds of other refinements and bug fixes. This is not a security update.
https://www.e-sword.net/

Utility Updates

These are unlikely to be of interest to most people.

RoboForm 8.6.0 resolves several bugs. This is not a security update.
https://12pd.com/click?rf

1Password for Mac 7.3.2 improves stability. This is not a security update.
https://1password.com/downloads/mac/

Bitcoin 0.18.1 adds new features, resolves bugs, and improves performance. This is not a security update.
https://bitcoin.org/en/download

BulkFileChanger 1.65 adds support for changing timestamps within mp4 and mov files. This is not a security update.
https://www.nirsoft.net/utils/bulk_file_changer.html

DesktopOK 6.45 adds uninstall and resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

GoodSync 10.10.5 resolves several bugs and changes licensing behavior (again).
https://12pd.com/click?goodsync

IsMyHdOK 1.81 improves support for newer hardware. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

NirCmd 2.86 resolves a bug with the elevate command. This is not a security update.
https://www.nirsoft.net/utils/nircmd.html

NTLite 1.8.0.7080 updates components and improves compatibility. This is not a security update.
https://www.ntlite.com/download/

OSFMount 3.0.1005 adds physical/logical emulation options and resolves a bug. This is not a security update.
https://www.osforensics.com/tools/mount-disk-images.html

OSForensics 7.0.1001 adds many new features and resolves bugs. This is not a security update.
https://www.osforensics.com/download.html

PointerStick 3.66 resolves a bug. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

Rufus 3.6 adds support for persistent partitions, improves compatibility, and resolves several bugs. This is not a security update.
https://rufus.ie/en_IE.html

SearchMyFiles 3.01 adds option to prevent saving search options and support for searching within Office and PDF files. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

SimpleWMIView 1.38 improves refresh behavior. This is not a security update.
https://www.nirsoft.net/utils/simple_wmi_view.html

TaskSchedulerView 1.51 adds a new column to indicate whether device will be awakened to run task. This is not a security update.
https://www.nirsoft.net/utils/task_scheduler_view.html

TraceRouteOK 1.44 resolves a bug. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK

WinScan2PDF 4.93 improves WIA and resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WSUS Offline 11.8 updates static URLs, servicing stacks and improves compatibility. This is not a security update.
http://download.wsusoffline.net/

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 3.4.2.0 resolves several bugs. This is not a security update.
https://developer.android.com/studio/index.html

MySQL 8.0.17 resolves several bugs and adds several new features. This is not a security update.
https://www.mysql.com/downloads/installer/

Node.js 12.8.0 resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

Redemption 5.21.0.5378 adds RDOFolders and appointment exception removal/undo support as well as resolving several bugs. This is not a security update.
http://www.dimastr.com/redemption/

SQLite 3.29.0 adds several new features. This is not a security update.
https://www.sqlite.org/download.html

TortoiseSVN 1.12.2 resolves several bugs. This is not a security update.
https://tortoisesvn.net/downloads.html

Visual Studio Code 1.37 adds several new features and improvements. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.4 resolves several bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 6.0.10-132072 resolves several bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

ScreenConnect 19.2.24707.7131 resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

phpList 3.4.5 resolves several bugs. This is not a security update.
https://www.phplist.com/download

Drupal 8.7.6 resolves several bugs. This version follows quickly on the heels on 8.7.5, which is a security release.
https://drupal.org/download

Joomla 3.9.11 is a security update.
https://www.joomla.org/

MailEnable 10.26 resolves several bugs. This is not a security update.
https://www.mailenable.com/

Adminer 4.7.2 resolves several bugs. This is not a security update.
https://www.adminer.org/en/

BuddyPress 4.4.0 is a security update.

Contact Form 7 5.1.4 resolves several bugs. This is not a security update.

myStickymenu 2.2.1 improves compatibility. This is not a security update.

Postie 1.9.38 resolves an attachment filtering bug. This is not a security update.

Redirection 4.3.3 resolves bugs and improves compatibility. This is not a security update.

WooCommerce 3.7.0 resolves dozens of bugs, and provides feature, compatibility, and performance improvements. This is not a security update.

WP Add Custom CSS 1.1.5 replaces code editor. This is not a security update.

WP Mail SMTP 1.5.2 resolves a Gmail compatibility bug. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

Updates 2019-07-09

Hi, Folks!

Today is Patch Tuesday for July 2019 and it’s one of the smallest we’ve seen in a while.

The typical computer should see roughly 1.3 GB in updates today. Let’s get started.

Microsoft released updates for Windows, .NET, Edge, Internet Explorer, Flash, and MSRT (~2 GB). This includes security updates. A reboot is required.

Apple released updates for AirPort Base Station Firmware Update 7.8.1 (802.11n). This is a security update. Use Apple Software Update to install the most current versions.

Google Chrome OS 75.0.3770.102 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Adobe Flash Player 32.0.0.223 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The now-current release of Windows 10 (1903) will cause your computer to feel unusually slow until it is installed. This is a side-effect of the Windows 10 upgrade cycle, which pushes out 3-6 GB through Windows update to get you to the latest Windows 10 release every 6 months. If you don’t let it finish and you’re on a slow connection, it will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Intel Driver and Support Assistant 19.6.26 resolves several bugs. This is not a security update.
https://www.intel.com/p/en_US/support/detect

nVidia 431.36 adds support for newer hardware, improves compatibility with Windows 10 v1903, and resolves several bugs. This is not a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 75.0.3770.100 is a security update. Use Menu, Help, About to install the most current version.

Firefox 68.0 is a security update. This version adds several privacy and security features that improve reliability and performance. Use Menu, Help, About to install the most current version.

Firefox ESR 60.8.0 is a security update. Use Menu, Help, About to install the most current version.

Vivaldi 2.6.1566.44 is a security update. Use Menu, Help, About to install the most current version.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.6.3 resolves several bugs. This is a security update.
https://getmailspring.com/

NK2Edit 3.40 improves the replace operation to replace values in all fields for a record. This is not a security update.
https://www.nirsoft.net/utils/outlook_nk2_edit.html

OutlookAttachView 3.20 adds option to generate hashes for attachments. This is not a security update.
https://www.nirsoft.net/utils/outlook_attachment.html

Thunderbird 60.8.0 is a security update. Use Menu, Help, About to install the most current version.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

Trillian 6.2.0.10 adds a dark theme for settings, improves display pruning, and resolves several bugs. This is not a security update.
https://www.trillian.im/

BrowsingHistoryView 2.20 adds support for Chromium-based Edge. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

FileZilla Client 3.43.0 is a security update.
https://filezilla-project.org/

FreeFileSync 10.13 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

MaxMind GeoIP 201907 is a data refresh.
https://dev.maxmind.com/geoip/

Technitium DNS Server 4.0 updates UI, stats manager, adds DHCP server, and resolves several bugs. This is not a security update.
https://technitium.com/dns/

Media Updates

These are unlikely to be of interest to most people.

FastStone Viewer 7.3 resolves a copy and paste bug. This is not a security update.
https://www.faststone.org/FSViewerDetail.htm

VLC Media Player 3.0.7.1 updates libraries and resolves a couple bugs. This is not a security update.
https://www.videolan.org/vlc/

Game Updates

These are unlikely to be of interest to most people.

RetroPie 4.5 adds support for newer hardware, adds themes, updates libraries, adds drivers and improves compatibility. Be aware that manual downgrade of the kernel may be necessary if you require composite video. This is not a security update.
https://retropie.org.uk/

Office Updates

One or more of these are likely to be of interest to most people.

Atom 1.38.2 resolves minor bugs. This is not a security update.
https://atom.io/

LibreOffice Fresh 6.2.5 resolves over a hundred bugs. This is not a security update.
https://www.libreoffice.org/

Notepad++ 7.7.1 resolves several bugs. This is not a security update.
https://12pd.com/click?npp

Adobe Reader DC 19.012.20035 resolves several bugs. This is not a security update.
https://get.adobe.com/reader

Adobe Dreamweaver 19.0.0.11193 is a security update.
https://helpx.adobe.com/download-install/kb/creative-cloud-apps-download.html

Adobe Experience Manager 6.5 is a security update.
https://helpx.adobe.com/experience-manager/aem-releases-updates.html#65

Adobe Bridge CC 9.1 is a security update.
https://www.adobe.com/products/bridge.html

Security Software Updates

One or more of these is likely to be of interest to most people.

Gpg4win 3.1.9 resolves several bugs. This is not a security update.
https://www.gpg4win.org/download.html

RogueKiller 13.3.1 resolves several bugs. This is not a security update.
https://www.adlice.com/softwares/roguekiller/

Converter Updates

These are unlikely to be of interest to most people.

CDex 2.19 improves Windows 10 v1903 compatibility. This is not a security update.
http://cdex.mu/?q=download

DVDFab 11.0.3.8 adds support for new encodings, GUI improvements, and adds support for new hardware and export formats. This is not a security update.
https://www.dvdfab.cn/download.htm

IsoBuster 4.4 adds support for new hardware and media formats, resolves several bugs, and adds support for many commands. This is not a security update.
https://www.isobuster.com/download.php

MakeMKV 1.14.4 adds support for new encodings, resolves bugs, and improves performance. This is not a security update.
https://12pd.com/click?makemkv

Utility Updates

These are unlikely to be of interest to most people.

NTLite 1.8.0.7046 resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

1Password for Mac 7.3.1 resolves many bugs and improves utility of 1Password mini. This is not a security update.
https://1password.com/downloads/mac/

ControlMyMonitor 1.16 adds support for returning VCP values from the command line. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html

Autoruns 13.96 adds support for user Shell folder redirections. This is a security update.
https://live.sysinternals.com/

Handle 4.22 fixes a race condition in the driver that could lead to a crash. This is a security update.
https://live.sysinternals.com/

Notmyfault 4.20 now includes a flag that makes it wait until an event named Notmyfault is signaled before proceeding to crash or leak. This is not a security update.
https://live.sysinternals.com/

IPInfoOffline 1.55 adds support for IPv6 with GeoLite. This is not a security update.
https://www.nirsoft.net/utils/ip_country_info_offline.html

Process Explorer 16.26 is a security update.
https://live.sysinternals.com/

RAMMap 1.52 doesn’t provide a changelog, so should be treated as a security update.
https://live.sysinternals.com/

Sysmon 10.01 adds DNS query logging, reports OriginalFileName in process create and load image events, adds ImageName to named pipe events, logs pico process creates and terminates, and fixes several bugs. This is a security update.
https://live.sysinternals.com/

VMMap 3.26 fixes a bug in 64-bit CLR heap reporting. This is not a security update.
https://live.sysinternals.com/

CurrPorts 2.60 adds support for GeoLite2 City and Country databases. This is not a security update.
https://www.nirsoft.net/utils/cports.html

DesktopOK 6.37 improves compatibility with Windows 10 v1903. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

Drive Snapshot 1.47 adds support for recent operating systems, public-key encryption, and eject from CLI. This should be treated as a security update.
http://www.drivesnapshot.de/en/

GoodSync 10.10.0 resolves several bugs. This is not a security update.
https://12pd.com/click?goodsync

IsMyHdOK 1.77 resolves code signing bug, improves compatibility with Windows 10 v1903. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

LessMSI 1.6.91 resolves a startup crash. This is not a security update.
http://lessmsi.activescott.com/

LogMeIn 4.1.0.12700/4.1.0.7151 adds av support for server operating systems, resolves several bugs. This is not a security update.
https://secure.logmein.com/

NetworkInterfacesView 1.15 adds /RunAsAdmin option, interface speed column, and open in regedit option. This is not a security update.
https://www.nirsoft.net/utils/network_interfaces.html

NirCmd 2.85 improves reliability of runinteractive and runinteractivecmd, resolves consolewrite bug. This is not a security update.
https://www.nirsoft.net/utils/nircmd.html

PointerStick 3.61 resolves code signing bug, improves compatibility with Windows 10 v1903. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

SimpleWMIView 1.37 adds ability to enumerate full namespace tree under elevation, adds support for displaying 8-bit and 16-bit integer arrays. This is not a security update.
https://www.nirsoft.net/utils/simple_wmi_view.html

TcpLogView 1.32 adds support for GeoLite2 City and Country databases. This is not a security update.
https://www.nirsoft.net/utils/tcp_log_view.html

TestDisk Win 7.1 adds quit confirmation, resolves scripting bug. This is not a security update.
http://www.cgsecurity.org/wiki/TestDisk_Download

WinScan2PDF 4.84 resolves code signing bug, improves compatibility with Windows 10 v1903. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WSUS Offline 11.7.3 resolves several bugs. This is not a security update.
http://download.wsusoffline.net/

Developer Updates

These are unlikely to be of interest to most people.

Inno Setup 6.0.2 adds {sysnative}, wizard improvements, and cosmetic fixes. This is not a security update.
http://www.jrsoftware.org/isdl.php

Node.js 12.6.0 resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

Visual Studio Code 1.36 adds several new cosmetic and functional options, and Java package prep. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

DOSBox 0.74-3 is a security update.
https://www.dosbox.com/

Web Package Updates

These are likely to be of interest only to web developers.

Joomla 3.9.9 is a security update.
https://www.joomla.org/

phpList 3.4.3 resolves several bugs. This is not a security update.
http://www.phplist.com/download

Drupal 8.7.4 resolves dozens of bugs. This is not a security update.
https://drupal.org/download

MailEnable 10.25 resolves several bugs. This is a security update.
https://www.mailenable.com/

TinyMCE 5.0.11 resolves several bugs. This is not a security update.
https://www.tiny.cloud/download/

Nextcloud Server 16.0.3 resolves several bugs. This is a security update.
https://nextcloud.com/

ScreenConnect 19.1.24566.7116 does not provide a changelog so should be treated as a security update.
https://www.screenconnect.com/Download

WordPress 5.2.2 resolves several bugs. This is not a security update.
https://wordpress.org/

myStickymenu 2.1.7 resolves a bug. This is not a security update.

Postie 1.9.37 resolves several bugs. This is not a security update.

Raw HTML 1.6.1 resolves a plugin conflict. This is not a security update.

NextScripts Social Networks Auto-Poster 4.3.8 resolves several bugs and adds %authorname% tag. This is not a security update.

WooCommerce 3.6.5 resolves several bugs. This is a security update.

WP Mail SMTP 1.5.0 adds support for Loco, resolves several bugs, and improves internationalization. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

Updates 2018-05-08

Hi, Folks!

The next build of Windows 10 v1803 was released last week. While Microsoft has given 1803 the nod, on half the computers I’ve tested it on there are driver conflicts. Don’t be the guinea pig. For at least the next month, when you’re prompted that “the new version of Windows is ready,” just say no! I’ll report here when I believe it is safe for most users. Unfortunately, if you’re running the Home version of Windows 10, you may not be given the option to say no. Restart your computer during the 1803 download and this will buy you some time.

Note that since 1803 is now released, some older versions are EOL (end-of-life). If your version of Windows 10 is older than 1607 (build 14393), then it is no longer supported and CAN NOT be secured: Update now, or remove it from the Internet.

It’s Patch Tuesday and it’s a big one.

The typical computer should see roughly 2.6gb in updates today. Let’s get started.

Microsoft released updates to Windows, Edge, .NET, Office, Flash, Internet Explorer, and MSRT (~2gb). This includes security updates. A reboot is required.

Apple released macOS Security Update 2018-001 10.13.4, Safari 11.1 (11605.1.33.1.4, 12605.1.33.1.4, and 13605.1.33.1.4), and Security Update 2018-001 Swift 4.1.1 for Ubuntu 14.04. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 11.3.1 is a security update. Use Settings, General, Software Update to install the most current version.

Google Chrome OS 66.0.3359.137 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Adobe Flash Player 29.0.0.171 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Fedora 28-1.1 is a major update, adding several new features including improved battery life and security. This is a security update.
https://getfedora.org/en/workstation/download/

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The now-current release of Windows 10 (1803) will cause your computer to feel unusually slow until it is installed. This is a side-effect of the Windows 10 upgrade cycle, which pushes out 6gb through Windows update to get you to the latest Windows 10 release every 6 months. If you don’t let it finish and you’re on a slow connection, it will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients at The Farmory, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

UniFi Controller 5.7.23 resolves several bugs. This is not a security update.
https://www.ubnt.com/download/

BullZip PDF Printer 11.7.0.2716 resolves setup issues, 64-bit compatibility improvements, and bug fixes. This is not a security update.
https://www.bullzip.com/products/pdf/info.php#download

Display Driver Uninstaller 17.0.8.6 adds support for the latest release of Windows 10, and removal improvements. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Dymo Label 8.7.1 resolves performance issues. This is not a security update.
https://dls.dymo.com/en-US/Pages/DLS8Download.aspx

Intel Driver Update 3.3.1 adds support for newer hardware, improves reliability, and resolves upgrade bug. This is not a security update.
https://www.intel.com/p/en_US/support/detect

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 66.0.3359.139 is a security update. Use Menu, Help, About to install the most current version.

Firefox 59.0.3 improves stability. This is not a security update. Use Menu, Help, About to install the most current version.

Firefox ESR 52.7.4 improves stability. This is not a security update. Use Menu, Help, About to install the most current version.

SeaMonkey 2.49.3 is a security update. Use Menu, Help, About to install the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 52.7.0 is a security update. Use Menu, Help, About to install the most current version.

Internet Updates

One or more of these are likely to be of interest to everyone.

FreeFileSync 10.0 removes installer ads, adds parallel sync support, GUI improvements, and more. This is not a security update.
https://www.freefilesync.org/download.php

MaxMind GeoIP Data 201805 is a data refresh.
https://dev.maxmind.com/geoip/

Npcap 0.99-r5 is a security update.
https://nmap.org/npcap/

Java 8u171 is a security update.
https://www.java.com/en/download/manual.jsp

Media Updates

These are unlikely to be of interest to most people.

FastStone Viewer 6.5 improves Import and Video Player, resolves several bugs. This is not a security update.
http://www.faststone.org/FSViewerDetail.htm

VLC Media Player 3.0.2 resolves dozens of bugs. This is a security update.
https://www.videolan.org/vlc/

Game Updates

These are unlikely to be of interest to most people.

EA Origin 10.5.18.58059 resolves several bugs. This is not a security update.
https://www.origin.com/en-us/download

PlayStation PS4 5.53-01 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/system-updates/ps4/

RetroPie 4.4 adds support for newer hardware, and updates libraries. This is a security update.
https://retropie.org.uk/

Office Updates

One or more of these are likely to be of interest to most people.

Scribus 1.4.7 improves stability. This is not a security update.
https://www.scribus.net/

Kindle for PC 1.23.1 Build 50133 does not provide a changelog, so should be treated as a security update.
https://www.amazon.com/kindleforpc

Security Software Updates

One or more of these is likely to be of interest to most people.

Wireshark 2.6.0 adds several new features, updates libraries, adds support for new protocols and capture formats. This is a security update.
https://www.wireshark.org/

Gpg4win 3.1.1 is a security update.
https://www.gpg4win.org/download.html

RogueKiller 12.12.16 adds detections. This is a security update.
https://www.adlice.com/softwares/roguekiller/

SanDisk SecureAccess 3.01 improves performance and start-up, support file streaming, adds automatic logout on time-out. This should be treated as a security update.
http://kb.sandisk.com/app/answers/detail/a_id/2399

TDSSKiller 3.1.0.17 is a security update.
https://support.kaspersky.com/viruses/utility#TDSSKiller

Fedora Security 28-1.1 is a security update.
https://labs.fedoraproject.org/security/download/index.html

Capture Updates

These are unlikely to be of interest to most people.

XSplit Broadcaster 3.3.1805.0302 resolves several bugs, including crash issues. This is not a security update.
https://www.xsplit.com/get/

XSplit Gamecaster 3.3.1805.0401 resolves several bugs. This is not a security update.
https://www.xsplit.com/get/

Converter Updates

These are unlikely to be of interest to most people.

CDex 2.02 improves reliability and resolves several bugs.
https://cdex.mu/?q=download

DVDFab 10.0.9.0 adds support for new encodings and resolves bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

MakeMKV 1.12.2 adds support for new encodings, improves reliability and stability. This is not a security update.
https://12pd.com/click?makemkv

Utility Updates

These are unlikely to be of interest to most people.

7-Zip 18.05 is a security update.
https://www.7-zip.org/

NTLite 1.6.0.6174 improves integration and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

8GadgetPack 26.0 adds support for the next release of Windows 10. This is not a security update.
https://8gadgetpack.net/

GoodSync 10.8.9 improves performance and resolves bugs. This is a security update.
https://www.goodsync.com/

RoboForm 8.4.9 resolves several bugs. This is not a security update.
https://12pd.com/click?rf

CPU-Z Installer 1.85 adds support for newer hardware, adds Spectre detection, and resolves several bugs. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

DesktopOK 5.18 resolves a detection bug. This is not a security update.
http://www.softwareok.com/?seite=Freeware/DesktopOK

CurrPorts 2.51 adds creation timestamp column. This is not a security update.
https://www.nirsoft.net/utils/cports.html

WifiInfoView 2.32 adds option to save to JSON. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

Sysmon 7.02 resolves a memory leak. This should be treated as a security update.
https://sysinternals.com/

TaskSchedulerView 1.41 resolves command line option bugs. This is not a security update.
https://www.nirsoft.net/utils/task_scheduler_view.html

WinScan2PDF 4.22 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 3.21 resolves several bugs, improves performance and stability, and extends export options. This is not a security update.
http://antibody-software.com/web/software/software/wiztree-finds-the-files-and-folders-using-the-most-disk-space-on-your-hard-drive/

WSUS Offline 11.3 removes support for 1511, resolves several bugs, including the removal of UPX packing to reduce false detections.
http://download.wsusoffline.net/

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 3.1.2.0 resolves several bugs. Use Help, Check for Updates to get the most current version.
https://developer.android.com/studio/index.html

GitHub Desktop 3.3.6 updates libraries. This should be treated as a security update.
https://desktop.github.com/

MySQL 8.0.11 resolves dozens of bugs. This should be treated as a security update.
https://www.mysql.com/downloads/installer/

SQLite 3.23.1 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

StrawberryPerl 5.26.2.1 is a security update.
http://strawberryperl.com/

Web Package Updates

These are likely to be of interest only to web developers.

Joomla 3.8.7 resolves several bugs. This is not a security update.
https://www.joomla.org/

Drupal 8.5.3 is a security update.
https://drupal.org/download

phpList 3.3.2 is a security update.
https://www.phplist.com/download

TinyMCE 4.7.12 resolves several bugs. This is not a security update.
https://www.tinymce.com/download/

phpMyAdmin 4.8.0.1 is a security update.
https://www.phpmyadmin.net/home_page/news.php

ScreenConnect 6.6.18120.669 resolves several bugs. This is not a security update.
https://www.screenconnect.com/Download

myStickymenu 2.0.5 cleans up admin code. This is not a security update.

NextScripts Social Networks Auto-Poster 4.2.3 adds support for Facebook profiles and pages, improves security and resolves several bugs. This should be treated as a security update.

Postie 1.9.21 resolves compatibility with older versions of PHP.

Sucuri Security 1.8.15 adds filtering for options, improved controls. This is not a security update.

W3 Total Cache 0.9.7 resolves several bugs, improves several options, including default behavior and configuration improvements.

WooCommerce 3.3.5 resolves several bugs. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/