Updates 2024-12-10

Merry Christmas, Folks!

Today is Patch Tuesday for December, 2024.

I recommend waiting one more month before upgrading to Windows 11 24H2 or macOS 15/Sequoia.

Windows 10 will be end-of-life in only 10 months. If your Windows 10 (or older) computer can not be upgraded to Windows 11, or if you used a registry or installation bypass to install an older version of Windows 11 on it that is no longer supported, then it’s time for you to start looking for a replacement computer. Windows 10 now has only 10 months of support left and by April it will be challenging to find a good and inexpensive replacement computer that will be supported for Windows 11. Christmas sales are on now. There’s not going to be any better time in the next year.

There were 730+ major hacks, and over 270 application updates this month. It’s a small month with about 2.0 GB of updates for most users.

This Month in Technology

.NET, 1547 Critical Systems Realty, 2014-2021 Mazda infotainment system, 3M, 4QuartersIT, 7-Zip, A & L Auto Recyclers, A&O IT Group, A-1 Mobile Lock & Key, ABC Group, Aberdeen, Acadia Pharmaceuticals Inc, ACao.org, Ace Laboratories Limited, Adams Homes, Adobe InDesign, ADT Freight Services Australia Pty Lt, Advanced Chemical Industries, Advantech’s EKI-6333AC series wireless access points, AdventHealth, AEAT, Aeris Energy, AHN, Ahold Delhaize, Airbnb, Albazaar, Albertsons, Alder Hey Children’s Hospital, All Construction Group WV, Allegheny Contract, Allegheny Millwork & Lumber, Alliance Industries, LLC, Alliance Sports Group, ALLTUB Group, Alna-Bioscience, Alpine Ear Nose & Throat, Amazon, American Addiction Centers, Inc, American Associated Pharmacies, AMGtime, Amherstburg Family Health, Anderson Miller LTD, Andrew Tate’s The Real World, Anex Baby, Anna Jacques Hospital, AnnieMac Home Mortgage, Apache ActiveMQ, Apache Tomcat, Aperion Care Marseilles, LLC, Apple iOS, Apple iPadOS, Apple macOS, Apple Pay, Apple Safari, Apple visionOS, Applied Materials, Arc Community Services Inc, Ardon Health, LLC, Array Networks SSL VPN, Arrowe Park Hospital, Artistic Family Dental, Artivion, Asaro Dental Aesthetics, Ascend Packaging Systems, ASM Global, Aspen Healthcare Services, AT&T, ATD-American, Athens County Bd of Dev Disabilities, Atlantic Orthopaedic Specialists, Atrium Health, Auchan, Automation Tool & Die, Avast Anti-Rootkit, Avico Spice, Axpr Valve Science, BackChecked, LLC, Barneek Safety Consultancies, BBS Financial Services, LLC, BBVA Bank, Beach Guide, Bedminster School, Bells Tax Service, Bendheim, Berexco LLC, Bergeron LLC, Berkshire Nursing & Rehab Center, LLC, BIC, Billaud Segeba, Bio-Clima Service Srl, Birdair, Bishop Ireton High School, BJ’s Wholesale Club, Black Creek Community Health Centre, Blue Yonder, BluMed Health, BMW Chile, Bob’s Discount Furniture, Boksha, Bologna Football Club 1909, Bolton Walk-In Clinic, Bonpoint, Borah, Goldstein, Altschuler, Nahins & Goidel, PC, Boston Chinatown Neighborhood Center, Brazilian databases, Bridge Valley Community & Technical College, Bristol-Myers Squibb, British Army, Brodsky Renehan Pearlstein & Bouquet, Brueck Golosow Kim & Associates, BT Group, Buddy Loan, Bulbrite Industries, Burkburnett Independent School District, Burmeister & Wain Scandinavian Contractor, Business Systems House FZ-LLC, Buyoplace, Cabot Financial, Calgary’s Fueling Brains Academy, Calibrated Healthcare, LLC, CalSTRS, Campinas City Government, Canada Post, Cardinal Health, Cardiology Associates of Mobile, Cargill, Carnegie Hill Imaging for Women, Carnegie Women’s Health, CarSwitch.com, Cate Equipment, CC Senior Services, CelPlan Technologies, Central Bank of Uganda, Central Group, Centrex, Chanas Assurances SA, Charles Schwab, ChatGPT, Chema Per, Chemonics, Cherry Hill School District, CHS Plumbing, Cian.ru, Cipla, Cisco, Citadel of Northbrook, Citrix’s Session Recording Manager, City National Bank, City of Coppell, CK Power Public Manufacturing, Claro, Clipper DEX, Closelly, Club Fit Software, CMC Construction Material, CNHW Landscape Design, Ltd, CO-VER Power Technology SpA, Colombian Government, Colonial Behavioral Health, Colwell Colour, Complete Control, Complete Recycling Services, Compra LTD Aruba, Concord Orthopaedics, Conlin’s Pharmacy, Connecticut GI, Consumers Builders Supply, Contrack Facilities Management, Coppell, TX, Corman Leigh, Costa Rica’s RECOPE, Cottles Asphalt Maintenance Inc, CP Construplan, CPanel, Crate & Barrel, Cundinamarca Colombia, CURVC Corp, Dairy Farmers of Canada, Darlington EMS, Dassault Systèmes eDrawings Viewer, Data Campos Sistemas, Datamaxx Applied Technologies, Datron World Communications, David’s Bridal, Dell India, Delmar International, Deloitte UK, Delta Air Lines, Delta Dental, DeltaPrime, DemandScience, Dennis Kirk, Destatis, Deutsche Industrie VideoSystem, Dewan Farooque Motors Limited, DFA NY, Diamond Brand Gear, DieTech North America, Dillons, DIRSAPOL, Django, DMF Lighting, DMM Bitcoin, DocuSign, Dohman, Akerlund & Eddy, Dolton Nursing & Rehab, LLC, Dome Construction Corporation, Dominican Republic, Don’s Mobile Glass, Dorner Law & Title Services, Down East Granite, Dragon Capital, Drupal, Dumont Printing, Eagle Bank, Eassy Life, East Central Missouri Behavioral Health Services, Inc, East Paris Internal Medicine Associates, Eastgate Auto, EazyDiner, ECBM, Ecobank Ghana, Edizionidottrinari.it, Edwardsburg Schools Foundation, El Dorado Stores and Supermarkets, El Dorado Union High School District, Electrica, Empower Settlement Services, Empowerers, Emserpa, ENGlobal, Enso Counseling Group, PLLC, EP:Schuller, Epic Games Launcher, Equentis Wealth, Equinox Inc, ESHA, Inc, Evening Post Publishing Inc, Everything Breaks, Express Employment Professionals, Familylinks Inc, Fancy Foods, Farmers Insurance, Feronow, FF Steel, Fidelity Investments, Financial Business and Consumer Solutions, Finastra, Find Great People1, Finsure, Firmenich, Fleet Equipment Center, FlipaClip, Followup CRM, Ford, Fortinet VPN servers, Fortinet’s FortiClient Windows VPN, Fred Meyer, Fuji Electric Monitouch V-SFT, Fujian Provincial Government, Fuju Electric Tellus Lite V-Simulator, FunkLocker, Fylde Coast Academy Trust, G Adventures Inc, G DATA Total Security, Gallos MetalSolutions Inc, Gastroenterology Associates of Fairfield, Gazprombank, GC Custom Metal Fabrication, GeoVision devices, Giggle Finance, Globe Telecom, GMG, GoCast, GoCloud Router, Godot game engine, Goethe University Frankfurt, GoFormz, Goldsmith & Hull, Goodwill North Central Texas, Google Pay, Gough Construction, Grand Forks Public Schools, Grandview School District, Great Plains Regional Medical Center, Great Star Tools USA, Gregory Poole, Gruber Tool & Die, Guard1, Gulf Energy Maritime, Gulf Petrochemical Services & Trading, H2OBX Waterpark, Hackus Mail Checker, Hadwins Volkswagen, Hager Group, Harel Insurance, HDFC Life Insurance, HealthFund Solutions, Henderson Stamping & Production, Highland Park ISD, Hillandale Farms, Hive Power Engineering, HM Environmental Services, Hoboken, NJ, Hogan Mfg, Holstrom, Block & Parke APLC, Horsa, Hosting.co.uk, Hotels.co.il, Houston Housing Authority, HP, HPE Insight, HSBC, Hugging Face Transformers, Hypertype, I-O Data routers, IAС, IFA Paris, IGT, iLearningEngines, Immobilière Essaouira, Indian Government Volunteer Database, IndicaOnline, Instinct Pet Food, Intel Computing Improvement Program, Intel Driver & Support Assistant, InterCon Construction, IPE Engwicht, IrfanView, Irr Supply Centers, Island Photo, Israel’s Ministry of National Security, IT Networks, ITO EN, Ivanhoe Club, Ivanti Avalanche, Ivanti Endpoint Manager, Ivanti Secure Access Client Pulse Secure, IVC Technologies, James H Maloy, Jefferson Dental Center, Inc, Jergens Piping, Jewel-Osco, JF Zengyoren, Jones & Mayer, Jones Lang LaSalle, JTEKT North America, Jupyter servers, K-State College of Veterinary Medicine, Karl Malone Toyota, Kash Patel’s Emails, Kashin App, KCI Aviation, Keable & Brown, Keesal, Young & Logan, Keizer’s Collision CSN & Automotive, Kela Health, Kellerhals Ferguson Kroblin PLLC, Kelowna Springs, Kenmore, Kennedy Funding, Kenwood DMX958XR, Kingswood Park, Kmart Australia, Kroger, KTBS Law LLP, Kulicke and Soffa Industries, LA Financial Federal Credit Union, LA LUCKY Brand, Laboratory Services Cooperative, Ladies.com, Lazz Hotel, LBCO Contracting LTD, LCPtracker, Inc, Lebak Regency, Leidos, LenelS2, Lenovo, LePoint.fr, LevelOne WBR-6012, Levicoff Law Firm, PC, Liberty Endo, Liberty First Credit Union, Lima Puluh Kota Regency, LINDOSTAR, LinkedIn, Linux nftables, LiquiTech, Live Aquaria, Liverpool Heart and Chest Hospital, LIXIL, LLama Factory, Lottie-Player, Lotus Concepts Management, LTI Trucking Services, Lubbock County Hospital District, Lucid Corp, Luka Rijeka, Luxion KeyShot, macOS, Madison Home, Magguilli Law Firm, Mantinga, Marine Stores Guide, Marketing Incentives, Massachusetts Department of Developmental Services, Maternal Fetal Medicine Associates, Matlock Security Services, MATRIX, Max Trans, Maxar Space Systems, Maxeon, Maxus Group, MC Technologies MC LR Router, McDonald’s, McKibbin, McLean Mortgage, McLeod Russel India, MDLand International, MediBoard, Medical Board of California, Medical Technology Industries, Inc, Members Trust Company, MetLife, Metroline, Mexican Government, Microlise, Microsoft 365 Admin Portal, Microsoft Office PowerPoint, Microsoft Power Pages, Microsoft SharePoint Server, Microsoft Windows, Mid-Ohio Psychological Services, Midland Tool, Miller & Smith, Minneapolis Parks, Minuteman Press, Misionero Vegetables, Mitel MiCollab, Mizuno USA, Mobigator Technology Group, Monster Electrical, Moodle, Morehead State University, Morrisons, Mullen Wylie, LLC, Nanosoft, NatAlliance Securities, Nationwide Legal, NCISM NEET, New Age Micro, Newpark Resources, Nicholsons Solicitors, Nokia, Norauto.fr, Northeast Spine and Sports Medicine, Northern Schools and Academy, NTrust, Numocity, NVIDIA UFM, Ocean Beauty Seafoods, Ocean Park Mechanical, OfficeZilla, Oklahoma Medical Center, Omnicom Group, OnePoint Patient Care, OpenWrt, Optical Cable Corporation, Option Care Health, Oracle Agile Product Lifecycle Management, Orange County Pathology Medical Group, Orshan, Spann & Fernandez-Mesa, Orthopedics Rhode Island, Otsego Public Schools, over 2,000 Palo Alto Networks firewalls, Overseas Shipholding Group, Inc, Oxford Auto Insurance, Pacific Pulmonary Medical Group, Pallet Logistics of America, Palm Facility Services, Pan Gulf Holding, Panda Security Dome, Panzer Solutions LLC, Pastor Real Estate, Patrick Sanders and Company, PC, Pavilion of Bridgeview, PC AfterHours, Pemberton Fabricators, Inc, Pensacola, Perfection Plus Services Inc, Performance Health & Fitness, Peruvian Army Military School, Philippines GCash, Physicians’ Primary Care of Southwest Florida, PIH Health, Pincu Barkan, Law Office and Notary, Pine Belt Cars, Pinnacle Claims Management, Pinnacle Plastic Products, Pioneer Urban Land & Infrastructure, PK Mulyo, Planned Parenthood of Montana, PoinCampus, PointClickCare, Polter Finance, Popular Life Insurance, Port of Rijeka, PostgreSQL, Precision Walls, Premier Packaging, Premier Tax Services, Privat Spitex, Programs Improving Public Safety, Progress Kemp LoadMaster, ProjectSend, QNAP, Quality Billing Service, Radiologic Medical Services, PC, Ralphs, RBN Insurance Services, Rclone, RDC, RDS Electric, Refinadora Costarricense de Petróleo, RemoteStaff.com.au, Rengo Packaging, REV Engineering, Rex Signature Services, LLC, RiverRestHome, RJM Marketing, Roblox, Rockford Gastroenterology Associates, Rocky Mountain Gastroenterology, Romanian Permanent Electoral Authority, Royal Liverpool University Hospital, Royce Corporation, RRCA Accounts Management, RSA Security SecureID, Rush University, S-Zdorovie, Safaricom, Safeway, SAG-AFTRA Health Plan, SailPoint IdentityIQ, Sainsbury’s, Saint Andrews Bureau, SalonBiz, San Francisco Ballet, Sanford Behavioral Health, Sango Family Dentistry, 240,000 satellite receivers, Schneider Electric, Schuck-Gruppe, SCM GROUP, Sea Level Inc, SEAT SA, SelectBlinds, Senior Dating, Sercomm, Shaw’s, Sheboygan, WI, Ship Services, Siemens Tecnomatix Plant Simulation, Signal Health Washington, Signzy, SILKNET COMPANY, Silver Springs, Silverback Exploration, SK Gas, SKS Bottle & Packaging, SL Data Services, SmartDimensions, Smith’s, Snelling Paper & Sanitation, Solana JavaScript SDK, South Africa’s CSIR, South West Family Medicine Associates, Southern Oregon Veterinary Specialty Center, Specialty Bolt And Screw, Spotify, Spring EQ LLC, Sri Lanka Meteorological Department, SRP Federal Credit Union, SSGMCE, SSV Blockchain Network, Stalcop Metal Forming LLC, Standard Bank, Standard Calibrations, Star Shuttle Inc, Starbucks, Start-Rite, State of Arizona, Stauberstahl, STIIIZY, Surgical Associates, Symantric IT, Sécurité Nationale Systems, T&M Equipment, T-Mobile, Tacoma Engineers, Tamil Nadu GovMail, Tampa State Bank, Targus, TBM Consulting Group, TEAM Software, Tech Electronics, TechGuard, Tennis Canada, Terra Energy, Terrace of Hialeah, Texanscan, Texas Tech, Thala, Thames Water, The 1 Co, The Arbors Operator, LLC, The Mitchell Partnership, The PHOENIX, The Recycler Core, The Tech Interactive, Think Simple, Thunderbird Country Club, TIAA, Tillamook Country Smoker, Tinxy App, Toshiba Global Commerce Solutions, Total Patient Care LLC, Totally Promotional, TourPay App, Town of Whitestown NY Highway Department, Trace3, TravelSale, Travis Pruitt & Associates, Trell.co, Tribelsky, TriHealth Physician Partners, Trimble SketchUp, Trinity Petroleum Management, LLC, Tripura Gramin Bank, True World Holdings LLC, TrueNAS, Trust Seeds, Tully’s Coffee Japan, Turf Paradise, TWRU CPAs & Financial Advisors, U.S. Bank, U.S. Department of Veterans Affairs, U.S. Library of Congress, UATF, UBS, Ubuntu Linux, UCC Retrievals, UK England and Wales prisons, Ultralytics YOLO11, UMC Health System, Unilever Brazil, United Bakery Equipment, United Seating and Mobility, UniversalPegasus International, Universidad Peruana de Ciencias Aplicadas, URBN, URL-Log-Pass, Uruguay’s Partido Nacional, USA Network, USA2ME, USAID, Valley Planing Mill, Value Dental Center, VBÜ, Veeam Backup Enterprise Manager, Ventana Micro Systems, Verizon, Vermilion Parish School System, Veterans Health Administration, VIA Health Partners, Village Pharmacy Group, ViralPitch, Visiting Physician Services of Michigan, Vista Point Mortgage, LLC, VMware vCenter Server, Vogue Homes, Volgograd State Medical University, Vox Printing, VozoHealth, VPS of MI PLLC, VRSEC, VTB Bank, vTech Solution, Walae Cristal, Walsworth Publishing Company, Washington State Court systems, Waters Truck and Tractor, Watsonville Community Hospital, Weld Racing, Wellfleet Group, LLC, West Bank Corp, Western Montana Mental Health Center, Westinghouse, WhatsUp Gold, Wheeler Associates, White Lake Township Hall, Wiley Metal Fabricating, WIN Empresas, Windows Server 2012, Wirral University Teaching Hospital, WolfBox E40, Word Check Sanctions, 500,000 WordPress sites,WordPress CleanTalk plugin, WordPress Really Simple Security/SSL plugin, WordPress WPLMS Learning Management System theme, WPM Pathology Laboratory, Wright Engineers, WTI, X-Cart Automotive, XnView, Xobin, Yakuza Helpline, Yazoo Valley Electric Power Association, York County, Yorozu Corporation, Zabbix, Zane Benefits, Zello, zero5, Zillertal Bier, Zimmerei Buder, Zimmerman & Frachtman PA Law Firm, and Zyloware have reported hacking or compromises this month.

itch.io (blame AI), PopeyeTools, Blue Yonder, Cloudflare, and Microsoft 365 have suffered from outages this month.

Last months updates broke Microsoft Exchange, TLS/SSL, Google Chrome, Windows Store apps, and Excel Add-ins, and force-installed Copilot.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is pretty small this month. The typical computer should see roughly 2.0 GB in updates today. Let’s get started.

Microsoft released 33 updates to address 73 vulnerabilities in GitHub, Microsoft Defender for Endpoint, Microsoft Edge, Microsoft Office, Microsoft Office Access, Microsoft Office Excel, Microsoft Office Publisher, Microsoft Office SharePoint, Microsoft Office Word, Remote Desktop Client, DNS Server, Windows Hyper-V, System Center Operations Manager, Windows Cloud Files Mini Filter Driver, Windows Common Log File System Driver, Windows File Explorer, Windows IP Routing Management Snapin, Windows Kernel, Windows Kernel-Mode Drivers, Windows LDAP – Lightweight Directory Access Protocol, Windows Local Security Authority Subsystem Service (LSASS), Windows Message Queuing, Windows Mobile Broadband, Windows PrintWorkflowUserSvc, Windows Remote Desktop, Windows Remote Desktop Services, Windows Resilient File System (ReFS), Windows Routing and Remote Access Service (RRAS), Windows Task Scheduler, Windows Virtualization-Based Security (VBS) Enclave, Windows Wireless Wide Area Network Service, WmsRepair Service, and MSRT. This includes security updates. A reboot is required.

Apple released updates for iOS 17.7.2, iOS 18.1.1, iPadOS 17.7.2, iPadOS 18.1.1, macOS Sequoia 15.1.1, Safari 18.1.1, and visionOS 2.1.1. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 17.7.2 and 18.1.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 17.7.2 and iPadOS 18.1.1 are security updates. Use Settings, General, Software Update to install the most current update.

visionOS 2.1.1 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS LTS 126.0.6478.258 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Sequoia (15.x) means that macOS Monterey (12.x) and older are no longer supported. If you can not install at least macOS Ventura (13) on your Mac then you should immediately remove your device from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v24H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with a SaferPC Subscription and we will install updates each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 24.12.1 improves compatibility and resolves several bugs. This is not a security update.
https://www.amd.com/en/support

Intel Driver and Support Assistant 24.6.49.8 is a security update.
https://www.intel.com/p/en_US/support/detect

Samsung DeX 2.4.1.27 doesn’t provide a change log so should be treated as a security update.
https://www.samsung.com/us/apps/dex/

TP-Link Archer A8 v2.26 230824 resolves several bugs. This is not a security update.
https://www.tp-link.com/us/support/download/archer-a8/v2.26/#Firmware

Wacom Driver 6.4.8-2 is a security update.
https://www.wacom.com/en-us/support/product-support/drivers

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.73.97 is a security update.
https://brave.com/

Firefox 133.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 128.5.1 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 131.0.6778.108 is a security update.
https://www.google.com/chrome/

Vivaldi 7.0.3495.23 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Spark 3.18.2.93439 resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.18.2.93438 resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 128.5.1 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 9.0.1 improves stability and resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

Dropbox 211.4.6008 resolves several bugs. This is not a security update.
https://www.dropbox.com/

FileZilla Server 1.9.4 resolves a configuration bug and improves compatibility. This is not a security update.
https://filezilla-project.org/

FreeFileSync 13.9 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 100.0 improves performance on macOS and resolves several bugs. This is not a security update.
https://drive.google.com/start

MeshCentral 1.1.35 improves compatibility and resolves dozens of bugs. This is not a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.7.00.30955 improves export and data recall. This is not a security update.
https://teams.microsoft.com/downloads

Mumble 1.5.735 resolves over a dozen bugs. This is not a security update.
https://www.mumble.info/

Pocketnet-Core 0.22.8 is a security update.
https://pocketnet.app/

Pocketnet-GUI 0.9.103 resolves several bugs. This is not a security update.
https://pocketnet.app/

PuTTY 0.82 resolves several bugs. This is not a security update.
https://www.chiark.greenend.org.uk/~sgtatham/putty/latest.html

Rclone 1.68.2 is a security update.
https://rclone.org/

Signal 7.35.1 improves hardware compatibility and resolves several bugs. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.26.1 adds folders to improve organization. This is not a security update.
https://signal.org/android/apk/

Syncthing 1.28.1 resolves several bugs. This is not a security update.
https://syncthing.net/

Technitium DNS Server 13.2.2 resolves several bugs. This is not a security update.
https://technitium.com/dns/

Telegram 5.9.0 resolves several bugs including stability and display issues, and adds an affiliate program for bots.
https://telegram.org/

Telegram (Android) 11.4.2 doesn’t provide a detailed change log so should be treated as a security update.
https://telegram.org/apps

WinSCP 6.3.6 resolves several bugs. This is not a security update.
https://winscp.net/eng/index.php

Zoom 6.2.11.50939 resolves several bugs. This is a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.12 resolves a couple bugs. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.2.7 resolves a crash bug. This is not a security update.
https://www.bitwig.com/download/

Grayjay 269 adds landscape support, network sync, and resolves dozens of bugs. Thsi is not a security update.
https://grayjay.app/index.html

KaraFun Player 3.3.6.72 improves upgrade and import behaviors, support for CDG and community media, and resolves several bugs. This is not a security update.
https://www.karafun.com/karaoke-windows/

Plex Desktop 1.105.1.257 does not provide a detailed change log so should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.68.2.259 does not provide a detailed change log so should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.41.2.9200 resolves several bugs. This is not a security update, but the next build is.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.50.10 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Minecraft Server (Java) 1.21.4 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server

PS5 2024.111 improves upgrade and migration. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2024.12.04 resolves dozens of bugs. This is not a security update.
https://store.steampowered.com/news/app/593110

Office Updates

One or more of these are likely to be of interest to most people.

Aronium 1.44.0.1 resolves several bugs and improves internationalization. This is not a security update.
https://aronium.com/

Adobe Acrobat 24.005.20320, 24.001.30225 and 20.005.30748 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb24-92.html

Adobe Acrobat Reader 24.005.20320 and 20.005.30748 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb24-92.html

Adobe After Effects 24.6.3 and 25.1 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb24-95.html

Adobe Animate 23.0.9 and 24.0.6 are security updates.
https://helpx.adobe.com/security/products/animate/apsb24-96.html

Adobe Bridge 14.1.4 and 15.0.1 are security updates.
https://helpx.adobe.com/security/products/bridge/apsb24-103.html

Adobe Connect 11.4.9 and 12.7 are security updates.
https://helpx.adobe.com/security/products/connect/apsb24-99.html

Adobe Experience Manager 6.5.22 and 2024.11 are security updates.
https://helpx.adobe.com/security/products/experience-manager/apsb24-69.html

Adobe FrameMaker 2020.7 and 2022.5 are security updates.
https://helpx.adobe.com/security/products/framemaker/apsb24-106.html

Adobe Illustrator 28.7.3 and 29.1 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb24-94.html

Adobe InDesign 19.5.1 and 20.0 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb24-97.html

Adobe Media Encoder 24.6.4 and 25.1 are security updates.
https://helpx.adobe.com/security/products/media-encoder/apsb24-93.html

Adobe PDFL SDK 21.0.0.7 is a security update.
https://helpx.adobe.com/security/products/pdfl-sdk1/apsb24-98.html

Adobe Photoshop 26.1 is a security update.
https://helpx.adobe.com/security/products/photoshop/apsb24-101.html

Adobe Premiere Pro 24.6.3 and 25.0 are security updates.
https://helpx.adobe.com/security/products/premiere_pro/apsb24-104.html

Adobe Substance 3D Modeler 1.15.0 is a security update.
https://helpx.adobe.com/security/products/substance3d-modeler/apsb24-102.html

Adobe Substance 3D Painter 10.1.2 is a security update.
https://helpx.adobe.com/security/products/substance3d_painter/apsb24-105.html

Adobe Substance 3D Sampler 4.5.2 is a security update.
https://helpx.adobe.com/security/products/substance3d-sampler/apsb24-100.html

Blender 4.3 resolves hundreds of bugs and improves hardware performance and compatibility. This is not a security update.
https://www.blender.org/download/

Calibre 7.22.0 resolves several bugs. This is not a security update.
https://calibre-ebook.com/

InDesign 19.5.1 and 20.0.1 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb24-91.html

Kindle for PC 2.6.70964 doesn’t provide a change log so should be treated as a security update.
https://www.amazon.com/kindleforpc

LibreOffice Fresh 24.8.3 resolves over 80 bugs. This is not a security update.
https://www.libreoffice.org/

Manager 24.12.9.1973 doesn’t provide a detailed change log so should be treated as a security update.
https://www.manager.io/

Nextcloud Desktop 3.15.0 resolves dozens of bugs. This should be treated as a security update.
https://nextcloud.com/

Notepad++ 8.7.4 adds tab pinning and resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 5.1.1 resolves dozens of bugs and updates libraries. This a security update.
https://www.getpaint.net/

PDF-XChange Editor 10.4.4.392 is a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

QuickBooks Pro 2022 R18_32.1 adds filtering by prepayments in customer report. This is not a security update.
https://downloads.quickbooks.com/app/qbdt/products

QuickBooks Pro 2023 R14_60 doesn’t provide a change log so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

Operating System Updates

These are for specific Linux flavors and alternative operating systems and, sadly, are unlikely to be of interest to most people.

ChromeOS 130.0.6723.126 is a security update.
https://chromereleases.googleblog.com/search/label/Stable%20updates+ChromeOS

elementary OS 8.0 is a major update adding session management containers, improved permission controls, Flatpack support out of the box, and expanded hardware support. This is not a security update.
https://elementary.io/

iOS 18.1.1 is a security update.
https://support.apple.com/kb/HT204204

iPadOS 18.1.1 is a security update.
https://support.apple.com/kb/HT204204

macOS 15.1.1 is a security update.
https://support.apple.com/kb/HT201541

Tails 6.10 is a security update.
https://tails.net/install/download/index.en.html

Security Software Updates

One or more of these is likely to be of interest to most people.

.NET Runtime 9.0.0 is a major update. This is a security update.
https://dotnet.microsoft.com/en-us/download/dotnet

FSS 2024.11.26 doesn’t provide a change log so should be treated as a security update.
https://www.bleepingcomputer.com/download/farbar-service-scanner/dl/62/

Gpg4win 4.4.0 resolves dozens of bugs. This should be treated as a security update.
https://www.gpg4win.org/download.html

MalwareBytes Anti-Malware 5.2.3.156 resolves several bugs. This is not a security update.
https://www.malwarebytes.org/antimalware/

ProtonVPN 3.4.3 updates libraries and resolves several bugs. This should be treated as a security update.
https://github.com/ProtonVPN/win-app/releases/latest

SanDisk PrivateAccess 6.4.12.0 doesn’t provide a change log so should be treated as a security update.
https://support-en.wd.com/app/answers/detailweb/a_id/48025

Stinger 13.0.0.234 is a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

SuperAntiSpyware 10.0.1270 adds support for several new browsers and resolves several bugs. This is not a security update.
https://www.superantispyware.com/download.html

uBlock Origin 1.61.2 resolves a couple bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 31.0.0 is a major update. This version adds several integrations, updates libraries and resolves over a dozen bugs. This is not a security update.
https://obsproject.com/

SnagIt 24.3.0 adds rounded corners, improves PDF export support, and resolves a couple bugs. This is not a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.3.1 improves compatibility and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

HandBrake 1.9.0 improves hardware support and new encoding capabilities. This is not a security update.
https://handbrake.fr/

IsoBuster 5.5 adds support for new formats, new extension behavior, and resolves several bugs. This is not a security update.
https://www.isobuster.com/download.php

StreamFab 6.2.0.8 adds support for several new sources and resolves compatibility issues with a dozen others. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 2.0.3.8 improves stabilization, upscaling and performance. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 7.0.11 resolves several bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.54 resolves a dozen bugs. This is not a security update.
https://1password.com/downloads/windows/

7-Zip 24.09 increases default dictionary sizes and resolves several bugs. This is not a security update.
https://www.7-zip.org/

Agent Ransack 2022.3499 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

BatteryInfoView 1.26 adds option to sort log on each update and a 64-bit version. This is not a security update.
https://www.nirsoft.net/utils/battery_information_view.html

Beyond Compare 5.0.4.30422 resolves several bugs and improves skew and other controls. This is not a security update.
https://www.scootersoftware.com/download

Bitwarden 2024.11.2 doesn’t provide a detailed change log for this versions so should be treated as a security update.
https://bitwarden.com/

CCleaner 6.30.11385 improves cleaning of cloud services and some browsers and resolves several bugs. This is not a security update.
https://www.ccleaner.com/

DesktopOK 11.47 is a cosmetic change. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.2.113.0 updates libraries and resolves several bugs. This is a security update.
https://dngrep.github.io/

email-oauth2-proxy 2024-11-11 adds support for OAuth 2.0 Device Authorization Grant and improves compatibility. This is not a security update.
https://github.com/simonrob/email-oauth2-proxy

Fido 1.64 adds support for UEFI Shell 24H2 and a PlatformArch switch. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3499 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

FoneTool 2.9.3 resolves a couple bugs. This is not a security update.
https://www.fonetool.com/download.html

GoodSync 12.7.9 improves OAuth2 support and resolves several bugs. This is not a security update.
https://www.goodsync.com/

grepWin 2.1.7 resolves a couple bugs. This is not a security update.
https://github.com/stefankueng/grepWin/releases/latest

GSmartControl 2.0.1 resolves a crash bug. This is not a security update.
https://gsmartcontrol.shaduri.dev/

Homedale 2.14 changes cosmetics. This is not a security update.
https://www.the-sz.com/products/homedale/

IsMyHdOK 4.14 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

HWiNFO 8.16 improves hardware detection and support for newer hardware. This is not a security update.
https://www.hwinfo.com/download/

Memtest86+ 7.20 adds support for newer hardware and resolves several bugs. This is not a security update.
https://www.memtest.org/

NTLite 2024.12.10210 resolves a couple bugs. This is not a security update.
https://www.ntlite.com/download/

PropertySystemView 1.21 adds an always on top option. This is not a security update.
https://www.nirsoft.net/utils/windows_property_system_view.html

PSAppDeploy 4.0.3 resolves dozens of bugs. This is not a security update.
https://psappdeploytoolkit.com/

SearchMyFiles 3.31 resolves a crash bug. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

TeamViewer 15.60.3 improves display, device and user filtering, and resolves several bugs. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

WinGet 1.9.25200 adds Sixel support, self-elevation, and resolves a compatibility bug. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinScan2PDF 9.13 adds alternate page rotation support. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 4.23 resolves several bugs. This is not a security update.
https://www.diskanalyzer.com/

XnConvert 1.102.0 adds filelist support. This is a security update.
https://www.xnview.com/en/xnconvert/

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 2024.2.1.12 resolves several bugs. This is not a security update.
https://developer.android.com/studio

GDevelop 5.4.219 improves layer support, project templates, and resolves over a dozen bugs. This is not a security update.
https://gdevelop.io/download

Go 1.23.4 resolves several bugs. This is not a security update.
https://go.dev/

Microsoft Visual C++ 2022 Redistributable 14.42.34433.0 is a security update.
https://learn.microsoft.com/en-us/cpp/windows/latest-supported-vc-redist

Node.js 18.20.5 updates libraries and resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

Node.js 20.18.1 updates libraries and resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

Node.js 22.12.0 updates root certificates and libraries, and resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

Node.js 23.4.0 updates root certificates and libraries, and resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

Python 3.13.1 is a security update.
https://www.python.org/downloads/windows/

SQLite 3.47.2 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

TortoiseSVN 1.14.9 resolves several bugs. This is not a security update.
https://tortoisesvn.net/downloads.html

Web Package Updates

These are likely to be of interest only to web developers.

Invision Community 4.7.19 is a security update.
https://invisioncommunity.com/

Joomla 5.2.2 is a security update.
https://www.joomla.org/

Piwigo 15.1.0 is a security update.
https://piwigo.org/

WP Update Server 2.0.2 adds a self-identifying version number. This is not a security update.
https://github.com/YahnisElsts/wp-update-server

WordPress 6.7.1 adds a new primary theme, the ability to add blocks and custom fields, improved style controls, and resolves over a dozen bugs. This is not a security update.
https://wordpress.org/

Antispam Bee 2.11.7 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/antispam-bee/

BuddyPress 14.3.3 resolves several bugs. Thsi is not a security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 6.0.1 is a major update, adding several new features and bug fixes. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.11.2 adds database collation to table creation. This should be treated as a security update.
https://wordpress.org/plugins/duplicator/

Redirection 5.5.1 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/redirection/

Widgets on Pages 1.9.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/widgets-on-pages/

WPBakery 8.0.1 is a major update. This version improves compatibility, adds a dozen features and controls, and resolves several bugs. This is not a security update.
https://wpbakery.com/

WP Cerber Security 9.6.4 adds 2FA improvements, detailed cookie information, and regex exceptions. This is not a security update.
https://wpcerber.com/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2024-09-10

Welcome back, Folks!

Today is Patch Tuesday for September, 2024.

We’re one month closer to the next build of Windows 11 and the next release of macOS, both due in mere weeks. A new major version of Office (aka Microsoft 365) is due at the same time, as well.

When the new build of Windows 11 is released all versions of Windows 11 prior to 23H2 will no longer be supported. Upgrade to 23H2 now if you have not done so yet, then do not upgrade to 24H2 when it is released. Let everyone else be the guinea pigs.

When the new build of macOS is released all versions of macOS prior to 13/Ventura will no longer be supported. If you can’t upgrade your Mac to Ventura you need to switch it to Linux or replace it.

Windows 10 now has only 13 months of support left. If your computer can not be upgraded to Windows 11 either start planning for a switch to Linux or replacing your computer.

There were 310+ major hacks, and over 200 application updates this month.
It’s a relatively small month, with only about 2.0 GB of updates for most users.

This Month in Technology

ABC Parts International, Acadian Ambulance, Adina Design, Advanced Medical Management, LLC, Aioi Nissay Dowa Insurance, Air International Thermal Systems, Akeela, Alabama Cardiology Group, Alcampo, Allergy Medical Group of the North Area, Inc, Ambulnz Holdings, AMD, American Clinical Solutions, an “industrial company” in Somerset County, NJ, an Israeli IT company, Android, Angus Council, Apache OFBiz (Open For Business), Apache Tomcat, Applause, Arden Claims Service, Argentine Air Force, Armour Coatings, Around the Clock Companies, Artifact Uprising LLC, Asus RT-N15U, Australian Cancer Research Foundation, Autel Maxicharger, AutoCanada, Avis, AVTECH CCTV cameras, 15,000 AWS Load Balancers, Azure Health Bot, Baird Mandalas Brockstedt LLC, Baker Places, Inc, Banham Poultry, Bank Rakyat, Baptist Health Medical Center Drew County, Bar2, Barrie, Behavioral Health Alliance of Rural Pennsylvania, Beng Kuang Marine, Benson Kearley IFG, Biggin Hill’s Charles Darwin School, bitcoin hardware wallets (Dark Skippy), Blain Jacobson DMD, CAGS, Blooms Today, Boutiqaat, BPOTech, Bromley GP, BVI Electricity Corporation, Caja Los Andes, CannonDesign, Canvey Island Infant School, Carehands, Carespring Healthcare, Catholic Charities CYO of The Archdiocese of San Francisco, CBIZ Benefits & Insurance Services, Cellular Plus, Centers for Medicare & Medicaid Services, Chevrolet, Chris Leong, CinemaTech, Cisco Identity Services Engine, Cisco Smart Licensing Utility, City of Columbus, OH, City of Flint, MI, City of St. Helena, CA, Clabots, Communication Federal Credit Union, Compex Legal Services Inc, Confidant Health, Connex health portal, Consilium Staffing, Consulting Radiologists LTD, Covenant Care California, LLC, Crain Group, Dahua cameras, Data Bilgi Islem, Davidoff Hutcher & Citron LLP, DBA ATC Home Care, Deutsche Flugsicherung (DFS), Dibcase, Dick’s Sporting Goods, DimeCuba, Dingding Talk, Disney Cruise lines, Disneyland, Domino’s Pizza Singapore, Durex India, Ecovacs, EnglishCentral, Enroll Confidently, Inc, Eric Rossi CPA LLC, Erie Meats, EV infrastructure, Exotel, Explore Talent, External Secrets Operator, Facial Pain Center, Farmers’ Rice Cooperative, Fish Nelson & Holden, FlightAware, Florida Department of Health, Fortra FileCatalyst Workflow, Fota Wildlife Park, Free Russia Foundation, Futurity First Insurance Group, GDB International, GeoServer Project, GitHub Enterprise Server, GiveWP WordPress Plugin, Google Chrome, Gramercy Surgery Center, Granville Recreation District, Greater Manchester Council, Grid Subject Matter Experts, Halliburton, Highline Public Schools, Hospital Sisters Health System, HP Security Manager, HPE HP-UX, IBM webMethods Integration Server, ICWI, Imetame, Imperial Sprinkler, LLC, Infosys McCamish Systems LLC, Institut National des Langues Luxembourg, iPhone, Isuzu Motors International Operations (Thailand), Ivanti Virtual Traffic Manager, Jangho Group, JAS Forwarding, Jenkins, Jewish Home Lifecare, Katz Nannis + Solomon, PC, Keene School District, Kentucky Corrections Department, Keycloak, Keystone Pacific Property Management, Kingdom Trust, King’s Choice, KlockMetal, Kootenai Health, Lake Washington Institute of Technology, Lakeland’s Watson Clinic, LAPOR, Laybuy, LDLC, Leal.co, LiteSpeed Cache WordPress Plugin, Lookiero, Los Angeles County Department of Mental Health, Market Moveis, McDonald’s Instagram, Medical Center Barbour, MedicaMall, Metro Pacific Tollways Corporation, Microchip Technology, Micron Crucial MX500, Microsoft Copilot Studio, Microsoft Entra ID, Microsoft OneNote, Microsoft Outlook, Microsoft Teams, Microsoft Word, Mid-Columbia Center for Living, Mifare Smart Cards, Mill Creek Lumber, Mitsubishi Chemical Group, Mitsui Sumitomo Insurance, Mohawk Valley Cardiology PC, Monobank, Musely AI, Muzu.co, MyFreightWorld, National Oceanic and Atmospheric Administration (NOAA), National Public Data, National Research Council of Italy, NHS Grampian, Okanogan Behavioral HealthCare, Oldham Council, Omicron Granite & Tile, Oregon Zoo, Orion, Packaging Corporation of America, Parker Development Company, ParkTree Community Health Center, Park’N Fly, Patelco Credit Union, PBC Companies, Pi Camera, Planned Parenthood of Montana, Plastix Marketing, Pocahontas Medical Clinic, Policy Administration Solutions, Port of Seattle, PostgreSQL, Prasarana Malaysia, Precom, Progress Software LoadMaster, ProPark Mobility, Public Agency Retirement Services (PARS), Quilvest Capital Partners, Radar/Dispossessor, Radiological Society of North America, RapidCMS, RCG, Regent Caravans, Relevvo, Retail Data, Rhithm Wellness App, Riverside Resort & Casino, Roberto Verino Difusion, Roblox Developers, Rochester Honkers, Rödl Management, SAP, Schlatter Industries, Scott Pharma Solutions, Sea-Tac Airport, Seirus Innovation, SenangPay Malaysia, Service Access & Management, ServiceBridge, Siam Cement Group, Sibanye-Stillwater, siParadigm, Slack, Slim CD, Software Engineering Associates, Solana, SolarWinds Web Help Desk, Sompo Japan Insurance, SonicWall SonicOS, South Carolina State University, South Orange County Community College District, Southwest Family Medicine Associates, Spanish Athletics Federation, Specialty Networks, Sport 2000, Sri Lankan Farmers Community, St. Clair County, IL, Stein Fibers, Stoxkart, Stripe CLI, Strive Medical, Strong Current Enterprises, Supreme Court of Philippines, SWISSCZ, Swissphone DiCal-RED, Tabb Inc, Tamil Nadu Labour Department Data, Taxellent Accounting Services Inc, Tewkesbury Council, Texas Centers for Infectious Disease Associates, Texas Dow Employees Credit Union, The Bakersfield Californian, The SMS Group, ThinkPHP, Thompson Davis & Co, TIAA, Toaping, Tokio Marine & Nichido Fire Insurance, Toronto District School Board, Town of Plymouth, CT, Toyota, toyyibPay, Traccar GPS System, Tracki, Traderie, Transport for London, TRENDnet TEW, Trionfo Solutions, Turkish government, Turning Point of Central California, Inc, UConn Health, UK National Crime Agency, UK Political Party Donation Platforms, Ukrainian government, Unicoin, United Services Automobile Association (USAA), United Urology Group, United Way of Connecticut, Inc, Universal Pure, University of Toronto, US Federal Bureau of Investigation (FBI), US Lottery Corporation, US Marshals Service, US Merchants Financial Group, Inc, US Transportation Security Administration (TSA), Valisana, Veeam services, VeriSource Services, Inc, Verkada, Versa Director, VMware ESXi, VMware VCenter Server, VOP CZ, Wayne Wright, LLP, WazirX, Welcome Health, WellLife Network, Western Electrical Contractors Association, WhatsApp, WinRAR, WPS Office, XPERT Business Solutions GmbH, Young Consulting, YubiKey 5, Zee Media, and Zyxel have reported hacking or compromises this month.

HalliburtonTransport for London, and McLaren Health have suffered from outages this month.

Last months updates broke BitLockerdual-boot (Windows + Linux), Outlook, Word, and Windows.

The National Public Data breach (leak, to be more accurate) has had an interesting turn of events, where they are now claiming that they’ve removed the entire database from their platform (it’s still available everywhere else). Opting out via their platform is dismissed and they offer no resolution. Not that one could be had.

A novel side-channel attack dubbed “RAMBO” (Radiation of Air-gapped Memory Bus for Offense) generates electromagnetic radiation from a device’s RAM to send data from air-gapped computers.

Microsoft has finally removed the defective and half-baked WinRE update causing daily and sometimes hourly errors because it couldn’t install on many devices.

Twitch force-enabled VTubers’ cameras without their consent.

Now for the good news:

The US appeals court had ruled geofence warrants are unconstitutional.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is pretty small this month. The typical computer should see roughly 2 GB in updates today. Let’s get started.

Microsoft released 41 updates to address 79 vulnerabilities in Azure CycleCloud, Azure Network Watcher, Azure Stack, Azure Web Apps, Dynamics Business Central, Microsoft AutoUpdate, Microsoft Dynamics 365, Microsoft Graphics Component, Microsoft Management Console, Microsoft Office Excel, Microsoft Office Publisher, Microsoft Office SharePoint, Microsoft Office Visio, Microsoft Outlook for iOS, Microsoft Streaming Service, Power Automate, SQL Server, Windows Admin Center, Windows AllJoyn API, Windows Authentication Methods, Windows DHCP Server, Windows Hyper-V, Windows Installer, Windows Kerberos, Windows Kernel-Mode Drivers, Windows Libarchive, Windows Mark of the Web (MOTW), Windows MSHTML Platform, Windows Network Address Translation (NAT), Windows Network Virtualization, Windows PowerShell, Windows Remote Access Connection Manager, Windows Remote Desktop Licensing Service, Windows Security Zone Mapping, Windows Setup and Deployment, Windows Standards-Based Storage Management Service, Windows Storage, Windows TCP/IP, Windows Update, Windows Win32K – GRFX, Windows Win32K – ICOMP, and MSRT. This includes security updates. A reboot is required.

Apple released updates for tvOS 17.6.1 and watchOS 10.6.1. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

watchOS 10.6.1 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 17.6.1 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 126.0.6478.252, 127.0.6533.132 and 128.0.6613.133 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Sonoma (14.x) means that macOS Big Sur (11.x) and older are no longer supported. If you can not install at least macOS Monterey (12) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v23H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 24.8.1 adds support for several games, including Concord, for what that’s worth and resolves several bugs.. This is not a security update.
https://www.amd.com/en/support

Crucial Storage Executive 10.07 doesn’t provide a change log so should be treated as a security update.
https://www.crucial.com/support/storage-executive

UniFi Network Server 8.4.59 adds support for Passpoint/Hotspot 2.0, Packet Capture, AP Analyzer, Pro AV and advanced IGMP snppting. This is not a security update.
https://www.ui.com/download/releases/network-server

Wacom Driver 6.4.7-3 resolves several bugs. This is a security update.
https://www.wacom.com/en-us/support/product-support/drivers

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.69.162 is a security update.
https://brave.com/

Firefox 130.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Google Chrome 128.0.6613.84 is a security update.
https://www.google.com/chrome/

Microsoft Edge 128.0.2739.67 is a security update.
https://www.microsoft.com/en-us/edge/business/download

SeaMonkey 2.53.19 is a security update.
https://www.seamonkey-project.org/

Vivaldi 6.9.3447.41 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

ProtonMail (Android) 4.0.19.1 resolves several bugs. This is not a security update.
https://proton.me/mail/download

Spark 3.17.6 is a security update.
https://sparkmailapp.com/

Spark (macOS) 3.17.6 is a security update.
https://sparkmailapp.com/

Thunderbird 128.2.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 8.0.14 adds ability for custom clients to disable tray options. This is not a security update.
https://anydesk.com/en/downloads

Dropbox 206.4.6506 doesn’t provide a detailed change log so should be treated as a security update.
https://www.dropbox.com/

Facebook Messenger 215.4.0.14.211 is a security update.
https://www.messenger.com/download

FileZilla Server 1.9.1 is a security update.
https://filezilla-project.org/

Google Drive 96.0 now alerts users to stalls and resolves several bugs. This is not a security update.
https://drive.google.com/start

MeshCentral 1.1.29 resolves dozens of bugs. This is not a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.7.00.21751 adds reaction support to Town Hall feature. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 29.0.6 resolves dozens of bugs. This is not a security update.
https://nextcloud.com/

Rclone 1.68.0 adds several new backends, improves S3 support, and resolves dozens of bugs. This is not a security update.
https://rclone.org/

Signal 7.23.0 improves performance. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 7.15.4 doesn’t provide a detailed change log so should be treated as a security update.
https://signal.org/android/apk/

Syncthing 1.27.12 is a security update.
https://syncthing.net/

Telegram 5.5.3 resolves several bugs. This is not a security update.
https://telegram.org/

Telegram (Android) 11.0.0 doesn’t provide a detailed change log so should be treated as a security update.
https://telegram.org/apps

Trillian 6.5.0.45 resolves several bugs.
https://www.trillian.im/

WinSCP 6.3.5 is a security update.
https://winscp.net/eng/index.php

Zoom 6.1.11.45504 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.9 resolves several bugs. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.2.3 improves hardware support and resolves a key binding error. This is not a security update.
https://www.bitwig.com/download/

Grayjay 262 adds recommendations, improved comment system, and resolves several bugs. This is not a security update.
https://grayjay.app/index.html

Kodi 21.1 is a security update.
https://kodi.tv/

Plex Desktop 1.100.1.221 resolves a season poster display bug. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.66.1.215 updates the web TV client. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.40.5.8921 is a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Minecraft Server (Bedrock) 1.21.23.01 doesn’t provide a detailed change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

PS5 2024.829 adds URL sharing, improves performance and hardware support. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Acrobat 24.003.20112, 24.001.30187 and 20.005.30680 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb24-70.html

Adobe Acrobat Reader 24.003.20112 and 20.005.30680 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb24-70.html

Adobe After Effects 24.6 and 23.6.9 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb24-55.html

Adobe Audition 24.6 and 23.6.9 are security updates.
https://helpx.adobe.com/security/products/audition/apsb24-54.html

Adobe ColdFusion 2023.10 and 2021.16 are security updates.
https://helpx.adobe.com/security/products/coldfusion/apsb24-71.html

Adobe Illustrator 28.7.1 and 27.9.6 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb24-66.html

Adobe Media Encoder 24.6 and 23.6.9 are security updates.
https://helpx.adobe.com/security/products/media-encoder/apsb24-53.html

Adobe Photoshop 24.7.5 and 25.12 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb24-72.html

Adobe Premiere Pro 24.6 and 23.6.9 are security updates.
https://helpx.adobe.com/security/products/premiere_pro/apsb24-58.html

Audacity 3.6.3 resolves several bugs. This is not a security update.
https://www.audacityteam.org/download/

Blender 4.2.1 doesn’t provide a detailed change log so should be treated as a security update.
https://www.blender.org/download/

Calibre 7.17.0 adds paper-edition page number support, editing, and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Formatta Filler 8.19.04 doesn’t provide a change log so should be treated as a security update.
https://www.phreesia.com/filler-ifiller/

Kdenlive 24.08.0 improves user interface for easing modes, effect groups, transform, and curve, as well as several bug fixes. This is not a security update.
https://kdenlive.org/

Kindle for PC 2.5.70951 doesn’t provide a change log so should be treated as a security update.
https://www.amazon.com/kindleforpc

LibreOffice 24.2.6 resolves over 40 bugs. This is a security update.
https://www.libreoffice.org/

LibreOffice Fresh 24.8.0 resolves over 400 bugs. This is a security update. The “Fresh” line is beta software and should be avoided by most people.
https://www.libreoffice.org/

Manager 24.9.9.1845 adds a business template gallery and support for Financial Data Exchange (FDX). This is not a security update.
https://www.manager.io/

Nextcloud Desktop 3.13.3 resolves almost 100 bugs. This is not a security update.
https://nextcloud.com/

PDF-XChange Editor 10.4.0.388 resolves dozens of bugs. This is a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

QuickBooks Pro 2022 20240726-R17_22 doesn’t provide a detailed change log so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

QuickBooks Pro 2023 20240726-R14_25 doesn’t provide a detailed change log so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

Scribus 1.6.2 resolves several bugs. This should be treated as a security update.
https://www.scribus.net/

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 2.10.0 resolves several bugs and adds Key/Value container support.
https://github.com/countercept/chainsaw

FSS 2024.8.15 doesn’t provide a detailed change log so should be treated as a security update.
https://www.bleepingcomputer.com/download/farbar-service-scanner/dl/62/

MalwareBytes Anti-Malware 5.1.10.127 resolves several bugs. This is not a security update.
https://www.malwarebytes.org/antimalware/

OpenSSL 3.3.2 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN (macOS) 4.4.0 resolves several bugs and improves stability. This is not a security update.
https://protonvpn.com/download

RogueKiller 15.18.2 resolves several bugs. This is not a secuirty update.
https://www.adlice.com/download/roguekiller/

SecurityCheck 2024.8.24 doesn’t provide a detailed change log so should be treated as a security update.
https://www.bleepingcomputer.com/download/securitycheck/dl/123/

Stinger 13.0.0.190 adds support for new detections. Thsi is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

Tails 6.7 is a security update.
https://tails.net/install/download/index.en.html

VT-CLI 1.0.1 adds support for Chocolatey, updates actions and resolves several bugs. This is not a security update.
https://github.com/VirusTotal/vt-cli/releases/latest

YARA 4.5.2 is a security update.
https://github.com/VirusTotal/yara/

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 30.2.3 resolves several bugs. This is a security update.
https://obsproject.com/

ScreenToGif 2.41.1 updates translatons and resolves a couple bugs. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

SnagIt 24.2.2 adds support for HDR image capture and exporting to Camtasia, and resolves a PDF export bug. This is not a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.2.6 adds support for new encodings and resolves compatibility issues with some hardware. This is not a security update.
https://www.dvdfab.cn/download.htm

PDF Creator 5.3.0 adds OneDrive integration, improved sharing support, and updated libraries. This is a security update.
https://www.pdfforge.org/pdfcreator

StreamFab 6.1.9.7 resolves dozens of bugs and adds a couple new sources. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 2.0.3.3 adds GPU support, ability to remove the scene background, and resolves a few bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 7.0.3 adds rich text markup in titles, improves compatibility, and resolves several bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 8.10.44 adds filtering support, visual and accessibility improvements, and resolves several bugs. This is not a security update.
https://1password.com/downloads/mac/

1Password for Windows 8.10.45 adds filtering support, visual and accessibility improvements, improves compatibility, and resolves several bugs. This is not a security update.
https://1password.com/downloads/windows/

AOMEI Partition Assistant 10.4.2 improves reliability and stability, and resolves several bugs. This is not a security update.
https://www.diskpart.com/

balenaEtcher 1.19.22 replaces Flowzone inputs. This is not a security update.
https://etcher.balena.io/

Beyond Compare 5.0.2.30045 resolves over a dozen bugs. This is not a security update.
https://www.scootersoftware.com/download

Bitwarden 2024.8.2 adds support for autofill cards and identities using keyboard shortcuts, biometrics on Linux, and password-protected exports
https://bitwarden.com/

CalyxOS Device Flasher 1.0.10 doesn’t provide a detailed change log so should be treated as a security update.
https://calyxos.org/install/

CCleaner 6.27.11214 resolves several bugs. This is not a security update.
https://www.ccleaner.com/

Cygwin 3.5.4 resolves several bugs. This is a security update.
https://cygwin.com/

Dell Command Update 5.4.0 improves reliability and stability. This is not a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

DesktopOK 11.35 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.2.59.0 adds several new display options, improved performance and translations, and updates libraries. This is a security update.
https://dngrep.github.io/

Everything Toolbar 1.4.1 resovles a sort order bug. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

ExplorerPatcher 22621.3880.66.5 resolves adds Windows 10 Taskbar Style support (with extra steps) and Windows 11 24H2 compatibility. This is not a security update.
https://github.com/valinet/ExplorerPatcher/

FolderChangesView 2.37 is a cosmetic update. This is not a security update.
https://www.nirsoft.net/utils/folder_changes_view.html

GoodSync 12.7.5 resolves dozens of bugs. This is not a security update.
https://www.goodsync.com/

HWiNFO 8.10 adds support for newer hardware. This is not a security update.
https://www.hwinfo.com/download/

InstalledAppView 1.09 adds dark mode support. This is not a security update.
https://www.nirsoft.net/utils/installed_app_view.html

Kingston SSD Manager 1.5.4.6 doesn’t provide a detailed change log so should be treated as a security update.
https://www.kingston.com/us/support/technical/ssdmanager

Mac Migration Assistant 3.0.1.0 doesn’t provide a detailed change log so should be treated as a security update.
https://support.apple.com/en-us/HT204087

NConvert 7.192 doesn’t provide a detailed change log so should be treated as a security update.
https://www.xnview.com/en/nconvert/

NTLite 2024.8.10045 adds support to disable MSA and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 11.0.1010 resolves over a dozen bugs. This is not a security update.
https://www.osforensics.com/download.html

osquery 5.13.1 resolves a bug. This is not a security update.
https://osquery.io/downloads

PowerToys 0.84.1 resolves several bugs and improves behavior of many apps. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

PSAppDeploy 3.10.2 resolves a dozen bugs. This is not a security update.
https://psappdeploytoolkit.com/

ripgrep 14.1.1 resolves a couple bugs. Thsi is not a security update.
https://github.com/BurntSushi/ripgrep/releases/latest

ScreenConnect 24.2.10.8991 resolves several bugs. This is a security update.
https://screenconnect.connectwise.com/download

SearchMyFiles 3.30 adds support to search by owner. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

TeamViewer 15.57.5 resolves several bugs. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

WifiInfoView 2.94 adds dark mode support. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

WinScan2PDF 8.93 improves hardware support and resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 2024.1.2.12 resolves dozens of bugs. This is not a security update.
https://developer.android.com/studio

GameMaker Studio 2024.8.1.171 adds dozens of features. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.4.211 improves stability and resolves several bugs. This is not a security update.
https://gdevelop.io/download

GitHub Desktop 3.4.5 adds support for custom editors and shells and resolves several bugs. This is not a security update.
https://desktop.github.com/

Go 1.23.1 is a security update.
https://go.dev/

Godot 4.3 updates libraries, adds thousands of improvements, and resolves hundreds of bugs. This is not a security update.
https://godotengine.org/

Godot 3.6 updates libraries and resolves dozens of bugs. This is not a security update.
https://godotengine.org/

MySQL Server 8.0.39 resolves several bugs. This is not a security update.
https://dev.mysql.com/downloads/installer/

Node.js 20.17.0 resolves dozens of bugs and updates libraries. This is not a security update.
https://nodejs.org/en/

Node.js 22.8.0 resolves dozens of bugs and updates libraries. This is not a security update.
https://nodejs.org/en/

Python 3.12.6 is a security update.
https://www.python.org/downloads/windows/

Unreal Engine 5.4 improves layered control rigs, adds new gizmos, constraints improvements, cosmetic improvements, and resolves several bugs. This is not a security update.
https://unrealengine.com/en-US/

Visual Studio Code 1.93 improves IntelliSense, column resizing, source control, Copilot integration and resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Web Package Updates

These are likely to be of interest only to web developers.

HumHub 1.16.2 resolves dozens of bugs. This is not a security update.
https://www.humhub.com/en

Joomla 5.1.4 is a bug fix release shortly after a security update.
https://www.joomla.org/

MailEnable 10.49 resolves over a dozen bugs. This is a security update.
https://www.mailenable.com/

WordPress 6.6.2 resolves over a dozen bugs. This is not a security update.
https://wordpress.org/

BuddyPress 14.1.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/buddypress/

Conditional Widgets 3.2 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/conditional-widgets/

My Sticky Bar 2.7.7 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

Sucuri Security 1.9.4 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

Theme My Login 7.1.9 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/theme-my-login/

WPBakery 7.9 resolves over a dozen bugs and improves compatibility. This is not a security update.
https://wpbakery.com/

WP Cerber Security 9.6.3 adds ability to scan for and resolve third-party plugin issues, and resolves several bugs. This is not a security update.
https://wpcerber.com/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

Updates 2024-04-09

Welcome back, Folks!

Today is Patch Tuesday for April, 2024.

There were 370+ major hacks, and over 160 application updates this month. It’s a small month though, with only about 1.5 GB of updates for most users.

This Month in Technology

A5 PHARMACY INC., 6,000 ASUS routers, Ace Hardware, Acer Philippines, Activision, Acuity, Adobe Reader, Affinity Health Services, Air Europa, AirDAO, Alabama State Government, Alamo Insurance, Alsaree3, Amazon’s AWS Airflow Service, AMD Zen CPUs (ZenHammer), American Renal Associates, Apex Legends Global Series, Apotheka pharmacy, Apple Safari, Apple’s M Chips (GoFetch), Apple, Arcserve UDP, Argo, AT&T (after denying it), Aussizz Group, Aveanna Healthcare, Axis Direct, BabyTV, Bank of America, Bank of Tanzania, Bank Syariah Indonesia, Banregio, Battle Mountain General Hospital, Benetton Group, Bernalillo County, Better Accounting Solutions, BigBasket, BioLife Plasma Services, L.P., Bira91, boAt Lifestyle, Bonney Forge Corporation, Brewer & Company Of West Virginia, British Tobacco, BSR Infratech India Ltd, Bticino Club, California Correctional Health Care Services, California Department of Food and Agriculture (CDFA), Carolina Foods, Carrozzeria Aretusa, CASIO India, CCM Health, Chambers Construction, ChatGPT Plugin, Cherry Health, City of Conneaut, Ohio, City of Hope Cancer Center, City of Jacksonville Beach, Florida, City of Pensacola, Florida, City of St. Cloud, Florida, ClickASnap, Colorado Public Defender, Commerce Dental Group, Commonwealth Healthcare Corporation, Communications Workers Union, Cornerstone Healthcare Group Management Services LLC, Cornerstone Specialty Hospitals, Credit China, Crinetics Pharmaceuticals, Curio smart contracts, CVS Group, D-Link NAS (and several router models), DBS Bank, Delhi Police, Delta Dental of California, Delta Pipeline, Inc., Dental Health Services, Designed Receivable Solutions, Inc., Diabetes WA, Docker, Doctorim, Dolomite Exchange, Domestic Violence Project, Inc, Dormakaba’s Saflok, Dr. Cafe Coffee, Dunn, Pittman, Skinner & Cushman, PLLC, Duty Free Americas, Eagle Bank, Eagle Hydraulic, EAS Change Systems, East Baton Rouge Sheriff’s Office (EBRSO), Eastern Radiologists, Eastside Union School District, EBlock Corp, Ecuador’s Ministerio de Economía, Editorialist, El Salvador’s citizen database, Eland Energy, Inc., Ellsworth Cooperative Creamery, Emergency Medical Services Authority (EMSA), Encina Wastewater Authority, England and Wales Cricket Board, EquiLend, Ernest Health, eSIMs, Ethos/Southwest Boston Senior Services, Europol, Everbrite, LLC., Exvagos, Ezras Choilim Health Center, Inc., Family Health Center, Farmacia Ettore Florio SNC, Fidelity Investments Life Insurance Company, Fiduciary Outsourcing, LLC, FileCatalyst Transfer Tool, Fire Rescue Victoria, 223 million exposed Firebase records, Five Eyes Intelligence Group, Flipkart, Florida Department of Juvenile Justice, Florida Pediatric Associates, FortiClient EMS, France Travail (Government Unemployment Agency), French Football Federation, Fujitsu Corporate Networks, G&S Japan, Gamooga, GardaWorld Cash, Gerson Lehrman Group, most modern CPUs (GhostRace), Giant Tiger, Gilmer County, Georgia, Google Chrome, Google DoubleClick, Google Pixel, Government Employees Pension Fund (GEPF), Greensboro College, Greenwood Regional Rehabilitation Hospital, Gresser Inc. and Affiliates, Greylock McKinnon Associates, Group Health Cooperative of South Central Wisconsin, GSM Hosting, Guardian Life Insurance Company, Guy’s Floor Service Inc., HALO Branded Solutions, Hamilton, Canada, Harvard Pilgrim Health Care, Health Plan Intermediaries Holdings, Healthfirst Health Plan, Inc., Healthfirst Insurance Company, Inc., Healthfirst PHSP, Inc., Henry County, Illinois, High Wycombe Cressex Community School, Home Depot, Homeocan, Hot Topic, Houser LLP, Hoya Corporation, HTTP/2 “continuation” frames, Hudson Supplies Inc, Human Development Services of Westchester, Inc., Huntsville, Ontario, IATSE Staff Retirement and National Pension Funds, ICICIPruLife, ICN Assessoria, IKF Finance, Imperva WAF, Indian Defense & Energy Sectors, Indian S3WaaS website, InfoHit, INNO-SOFT Info Systems Pte Ltd, Inspection Services, Inc., Integration International Inc., INTEGRIS Health, International Monetary Fund (IMF), Irish Health Service Executive (HSE), Israeli Justice Ministry, Israeli LGBTQ App Atraf, Ivanti Connect Secure, Ivanti Policy Secure, Ivanti VPN gateways, Jackson County, Missouri, John R. Wood Properties, Johnson Matthey, Jordano’s Inc., JSC Kaluzhskoe, Kaspersky Fan Club, Keenan & Associates, KidSecurity, Kyivstar, Leicester City Council, Lewis & Clark College, Lindsay Municipal Hospital, London Mayor’s Office for Policing and Crime (MOPAC), Los Angeles Department of Mental Health, M&D Capital Premier Billing, Maccarinelli Luciano, macOS, Macuz, Madero, Magento, Magnum, Mahoney Foundries Inc., Malaysian Industrial Development Finance, MarineMax, Mary H. Makhlouf, DMD, MS, PA, Massachusetts Mutual Life Insurance Company, MediaWorks, Meson, Metropolitan Life Insurance Company, Microsoft, Microsoft Edge, Microsoft Exchange Server, Microsoft SharePoint, Midlands Regional Rehabilitation Hospital, Minecraft, Mintlify, Monmouth College, Motilal Oswal, MotorCycle Holdings, Mozilla Firefox, Multi-Fill, Munchables, Nampak, National Amusements, National Home Mortgage Finance Corporation (NHMFC), National Insurance Institute of Israel, National Public Data, Nations Direct Mortgage, Nationstar Mortgage, Nemesis Market, New Mexico Administrative Office of the District Attorneys, New York State Education Department, Newport Group, NHS Dumfries and Galloway, NHS Scotland, Nissan, NorthBay VacaValley Hospital, Northern Virginia Oral, Maxillofacial & Implant Surgery, Nykaa, Oak View Group, Olea Kiosks Inc., Omni Hotels & Resorts, On Q Financial, Open Automation Software OAS Engine, Oracle VirtualBox, Orange County’s Credit Union, Orsini Pharmaceutical Services, Otolaryngology Associates, OWASP, Pacific Guardian Life Insurance, Paducah Dermatology, Palau National Government, PandaBuy, Panera Bread, Paulmann, Pembina County Memorial Hospital, PGF Technology Group, Inc., Philips Respironics, Phillipine Department of Science and Technology, Plymouth Tube Company Employee Benefit Plan, Polycab, Pomona Valley Hospital Medical Center, Ponoka, Canada, Powerhost, Precision Tune Auto Care, Inc., Prisma Finance, ProcessMaker, Prudential Insurance, Punjab Police, Pakistan, Quality Education and Skills Training (QUEST) App, R1 RCM Inc., Radiant Logistics, Rairdon Automotive Group, Ray AI Framework, Redbus, Regional One Health, Rent Go, REV Drill Sales & Rentals, Risas Dental & Braces, Rockland, Roi Et Rajabhat University, Roku, Rudman Winchell Law Firm, SAC Constelacion, Saint Louis University, Santa Clarita Community College District, Saudi Arabia Railways, Scranton School District, PA, Scullion Law, Select Education Group (SEG), Services Informatiques Pour Professionnels, Shopify plugins, Simpson Strong-Tie Co. Inc., Sit ‘n Sleep, Skyway Coach Lines, South China Athletic Association, SouthState Bank, Spa Grand Prix, Spartanburg Rehabilitation Institute, Spedition Langen, Stanford University, Sugargoo, Summit State Bank, Super Sushi Samurai, SurveyLama, Swiggy, SwordFantasy, Sycamore Rehabilitation Services, Inc., Targus, Tarrant Appraisal District, Tarrant County, Texas, TataMotors, Teleflora, Tesla, Tesla ECU, Tesla Model 3, The Big Issue, The Law Firm of Friedman + Bartoumian, The Pokémon Company, TIAA, Top.gg Discord bot, Torre Pacheco Town Hall, Spain, Trezor’s X Account, Tri-City Healthcare District, True Homes, Trustpoint Rehabilitation Hospital, Ubuntu desktop, UC San Diego Health, Ultra Intelligence & Communications, United Network for Organ Sharing (UNOS), University of Winnipeg, US Department of Health and Human Services (HHS), US Department of Justice (DoJ), US Department of State, US Environmental Protection Agency (EPA), US National Security Agency (NSA), US Vision, Inc., UT Southwestern, V12 Software, Valley Oaks Health, Venmo, Veritas Genetics, Viber, VMware Workstation, VNDirect, Void Interactive, Walmart, Washington State Food Worker Card, Weirton Medical Center, Wells Fargo, Wendy’s, WeRize, Western New York Independent Living, Inc., White Oak Partners, Windows 11, Windows SmartScreen, Woodruff-Sawyer & Co., 39,000 WordPress sites, WordPress Essential Addons for Elementor plugin, WordPress LayerSlider plugin, WordPress miniOrange plugins, WordPress Rank Math SEO plugin, Wyatt Detention Facility, XpressBees, XZ Utils, Yale University, and Z Development Services have reported hacking or compromises this month.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is pretty small this month. The typical computer should see roughly 1.5 GB in updates today. Let’s get started.

Microsoft released updates to address 100 vulnerabilities in .NET and Visual Studio, Azure, Azure Compute Gallery, Azure Migrate, Azure Monitor, Azure Private 5G Core, Azure SDK, Internet Shortcut Files, Microsoft Azure Kubernetes Service, Microsoft Brokering File System, Microsoft Defender for IoT, Microsoft Edge (Chromium-based), Microsoft Install Service, Microsoft Office Excel, Microsoft Office Outlook, Microsoft Office SharePoint, Microsoft WDAC ODBC Driver, Microsoft WDAC OLE DB provider for SQL, Open Management Infrastructure, Role: DNS Server, Servicing Stack Updates, SQL Server, Windows Authentication Methods, Windows BitLocker, Windows Compressed Folder, Windows Cryptographic Services, Windows Defender Credential Guard, Windows DHCP Server, Windows Distributed File System (DFS), Windows DWM Core Library, Windows File Server Resource Management Service, Windows HTTP.sys, Windows Internet Connection Sharing (ICS), Windows Kerberos, Windows Kernel, Windows Local Security Authority Subsystem Service (LSASS), Windows Message Queuing, Windows Mobile Hotspot, Windows Proxy Driver, Windows Remote Access Connection Manager, Windows Remote Procedure Call, Windows Routing and Remote Access Service (RRAS), Windows Secure Boot, Windows Telephony Server, Windows Update Stack, Windows USB Print Driver, Windows Virtual Machine Bus, Windows Win32K – ICOMP, and MSRT. This includes security updates. A reboot is required.

Apple released updates for GarageBand 10.4.11, iOS 16.7.7, iOS 17.4.1, iPadOS 16.7.7, iPadOS 17.4.1, macOS Sonoma 14.4.1, macOS Ventura 13.6.6, Safari 17.4.1, and visionOS 1.1.1. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 16.7.7 and 17.4.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 16.7.7 and 17.4.1 are security updates. Use Settings, General, Software Update to install the most current update.

visionOS 1.1.2 is a security update. Use Settings, General, Software Update to install the most current version.

Google Chrome OS 123.0.6312.94 is security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Sonoma (14.x) means that macOS Big Sur (11.x) and older are no longer supported. If you can not install at least macOS Monterey (12) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v23H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 24.3.1 resolves several bugs and compatibility issues. This is not a security update.
https://www.amd.com/en/support

Crucial Storage Executive 10.01 does not provide a change log so should be treated as a security update.
https://www.crucial.com/support/storage-executive

Display Driver Uninstaller 18.0.7.4 improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

UniFi airMAX NanoStation 5AC Loco 8.7.12 is a security update.
https://www.ui.com/download/software/loco5ac

UniFi Network Server 8.1.113 resolves dozens of bugs and improves management and features. This is not a security update.
https://www.ui.com/download/releases/network-server

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.64.116 is a security update.
https://brave.com/

Firefox 124.0.2 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 115.9.1 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 123.0.6312.86 is a security update.
https://www.google.com/chrome/

Microsoft Edge 123.0.2420.81 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Opera 109.0.5097.38 is a security update.
https://www.opera.com/browsers/opera

Opera GX 107.0.5045.86 is a security update.
https://www.opera.com/gx

SeaMonkey 2.53.18.2 is a security update. They’ve *finally* removed support for NPAPI plugins like Flash.
https://www.seamonkey-project.org/

Vivaldi 6.6.3271.57 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

DavMail Gateway 6.2.2 resolves dozens of bugs. This is a security update.
https://davmail.sourceforge.net/

OutlookAttachView 3.52 adds a cosmetic option to align numeric columns. This is not a security update.
https://www.nirsoft.net/utils/outlook_attachment.html

Spark 3.14.5.68977 resolves a couple bugs. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.14.5.68976 resolves a couple bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 115.9.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk (macOS) 8.0.1 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

curl 8.7.1 is a security update.
https://curl.haxx.se/windows/

Dropbox 196.4.6900 is a security update.
https://www.dropbox.com/

Facebook Messenger 208.0.0.9.229 is a security update.
https://www.messenger.com/download

FreeFileSync 13.5 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 89.0 is a security update.
https://drive.google.com/start

Grocy Desktop 2.10.0 updates bundled Grocy. This is not a security update.
https://github.com/grocy/grocy-desktop

MeshCentral 1.1.22 resolves dozens of bugs and updates libraries. This is a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.7.00.7956 reduces default permissions. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 28.0.4 resolves dozens of bugs. This is a security update.
https://nextcloud.com/

Signal (Android) 7.2.4 takes a few more steps away from dependence on a phone number. This is not a security update.
https://signal.org/android/apk/

Signal 7.4.0 resolves several bugs. This is not a security update.
https://signal.org/download/windows/

Syncthing 1.27.6 resovles several bugs. This should be treated as a security update.
https://syncthing.net/

Technitium DNS Server 12.1 is a security update.
https://technitium.com/dns/

Telegram 4.16.6 resolves several bugs. This is not a security update.
https://telegram.org/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.3 resolves several compatibility and cosmetic issues. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.1.6 resolves a couple bugs. This is not a security update.
https://www.bitwig.com/download/

Plex Desktop 1.90.1.118 improves collection management. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.59.0.121 updates engine. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.40.1.8227 resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

GDevelop 5.3.198 introduces feedback rewards, updates dependencies and resolves several bugs. This is not a security update.
https://gdevelop.io/download

Minecraft Server (Bedrock) 1.20.73.01 doesn’t provide a change log so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

Nintendo Switch 18.0.0 adds a 15 minute option to sleep mode, Korean language, and resolves several bugs. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 2024.315 adds brightness controls, improves mic and speaker support for DualSense controllers, and resolves several bugs. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe After Effects 24.2 and 23.6.5 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb24-09.html

Adobe Photoshop 24.7.3 and 25.4 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb24-16.html

Adobe Commerce 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8, 2.4.3-ext-7, 2.4.2-ext-7, 2.4.1-ext-7, 2.4.0-ext-7, and 2.3.7-p4-ext-7 are security updates.
https://helpx.adobe.com/security/products/magento/apsb24-18.html

Adobe InDesign 19.3 and 18.5.2 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb24-20.html

Adobe Experience Manager 2024.03 and 6.5.20 are security updates.
https://helpx.adobe.com/security/products/experience-manager/apsb24-21.html

Adobe Media Encoder 24.3 and 23.6.5 are security updates.
https://helpx.adobe.com/security/products/media-encoder/apsb24-23.html

Adobe Bridge 13.0.7 and 14.0.3 are security updates.
https://helpx.adobe.com/security/products/bridge/apsb24-24.html

Adobe Illustrator 28.4 and 27.9.3 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb24-25.html

Adobe Animate 23.0.5 and 24.0.2 are security updates.
https://helpx.adobe.com/security/products/animate/apsb24-26.html

Adobe Reader DC 24.001.20643 improves GenAI stability. This is not a security update.
https://get.adobe.com/reader

Aronium 1.42 adds custom labels, database improvements and resolves several bugs. This should be treated as a security update.
https://aronium.com/

Calibre 7.8 resolves several bugs. This is not a security update.
https://calibre-ebook.com/

GnuCash 5.6 resolves dozens of bugs. This is not a security update.
https://www.gnucash.org/

Kdenlive 24.02.1 resolves dozens of bugs. This is not a security update.
https://kdenlive.org/

LibreOffice 7.6.6 resolves almost 40 bugs. This is not a security update.
https://www.libreoffice.org/

LibreOffice Fresh 24.2.2 resolves over 70 bugs. This is not a security update. The “Fresh” line is beta software so you should be avoided by most.
https://www.libreoffice.org/

Manager 24.4.8.1419 doesn’t provide a change log so should be treated as a security update.
https://www.manager.io/

Nextcloud Desktop 3.12.3 resolves several bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.6.5 resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

QuickBooks Pro 2022 R14_41 doesn’t provide a change log so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

QuickBooks Pro 2023 R11_35 doesn’t provide a change log so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

Zotero (macOS) 6.0.37 improves Google Docs integration and improves messaging. This is not a security update.
https://www.zotero.org/

Zotero 6.0.36 updates digital signature. This should be treated as a security update.
https://www.zotero.org/

Security Software Updates

One or more of these is likely to be of interest to most people.

MalwareBytes Anti-Malware 4.6.10 is not a security update.
https://www.malwarebytes.org/antimalware/

OnionShare 2.6.2 is a security update.
https://onionshare.org/

OpenSSL 3.3.0 is a security update.
https://www.openssl.org/source/

ProtonVPN (macOS) 4.1.11 improves stability and resolves several bugs. This is not a security update.
https://protonvpn.com/download

QubesOS 4.2.1 is a security update.
https://www.qubes-os.org/downloads/

Stinger 13.0.0.90 adds new detections. This is not a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

SuperAntiSpyware 10.0.1264 improves browser extension. This is not a security update.
https://www.superantispyware.com/download.html

Tails 6.1 is a security update.
https://tails.net/install/download/index.en.html

uBlock Origin 1.57.2 resolves a bug in differential updates. This should be treated as a security update.
https://github.com/gorhill/uBlock/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

Open Broadcaster Software 30.1.2 adds several features and resolves a dozen bugs. This version requires NVIDIA 531.61 or newer drivers. This is not a security update.
https://obsproject.com/

ScreenToGif 2.41 updates libraries and adds click tracking. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.1.5 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

PDF Creator 5.2.1 resolves several bugs. This is not a security update.
https://www.pdfforge.org/pdfcreator

StreamFab 6.1.7.0 resolves several bugs and improves compatibility. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 2.0.1.6 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.28 resolves several bugs. This is not a security update.
https://1password.com/downloads/

AOMEI Partition Assistant 10.3.1 improves duplicate detection and resolves several bugs. This is not a security update.
https://www.diskpart.com/

Bitwarden 2024.3.1 resolves several bugs. This is not a security update.
https://bitwarden.com/

CCleaner 6.22.10977 resolves several bugs and improves compatibility. This is not a security update.
https://www.ccleaner.com/

ControlMyMonitor 1.38 improves compatibility. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html

Cygwin 3.5.3 resolves several bugs. This is a security update.
https://cygwin.com/

DesktopOK 11.19 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.1.47.0 resolves several bugs and updates dependencies. This is a security update.
https://dngrep.github.io/

email-oauth2-proxy 2024-03-15 improves compatibility and resolves several bugs. This is not a security update.
https://github.com/simonrob/email-oauth2-proxy

Everything Toolbar 1.3.3 resolves several bugs. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

ExplorerPatcher 22621.3296.64.1 resolves several bugs and improves compatibility. This is not a security update.
https://github.com/valinet/ExplorerPatcher/

FoneTool 2.5.2 improves licensing process. This is not a security update.
https://www.fonetool.com/download.html

Go 1.22.2 is a security update.
https://go.dev/

GoodSync 12.6.2 resolves several bugs and improves compatibility. This is not a security update.
https://www.goodsync.com/

HWiNFO 8.00 doesn’t provide a change log so should be treated as a security update.
https://www.hwinfo.com/download/

Kingston SSD Manager 1.5.4.5 doesn’t provide a change log so should be treated as a security update.
https://www.kingston.com/us/support/technical/ssdmanager

LessMSI 1.11.0 improves GUI. This is not a security update.
https://lessmsi.activescott.com/

ManageWirelessNetworks 1.13 resolves a data export bug. This is not a security update.
https://www.nirsoft.net/utils/manage_wireless_networks.html

NTLite 2024.4.9860 updates controls and improves compatibility. This is not a security update.
https://www.ntlite.com/download/

OSForensics 11.0.1007 updates libraries and improves documentation. This is not a security update.
https://www.osforensics.com/download.html

PointerStick 6.37 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.80.0 improves stability and resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

PSAppDeploy 3.10.0 resolves dozens of bugs and improves compatibility. This is not a security update.
https://psappdeploytoolkit.com/

RoboForm 9.5.7 improves defaults and resolves several bugs. This is not a security update.
https://www.roboform.com/

SearchMyFiles 3.25 improves compatibility. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

TraceRouteOK 3.35 updates language files. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK

WinGet 1.7.10861 resolves dependency issues and a couple other bugs. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest

Developer Updates

These are unlikely to be of interest to most people.

ADB 35.0.1 updates libraries. This is not a security update.
https://developer.android.com/studio/releases/platform-tools

Android Studio 2023.2.1.24 resolves several bugs. This is a security update.
https://developer.android.com/studio

AutoHotkey 1.1.37.02 resolves several bugs related to hotkeys and clipboard control. This is not a security update.
https://www.autohotkey.com/download/

AutoHotkey 2.0.12 resolves several bugs. This should be treated as a security update.
https://www.autohotkey.com/download/

GitHub Desktop 3.3.13 resolves several bugs. This is not a security update.
https://desktop.github.com/

NASM 2.16.02 resolves several bugs and improves dependency controls. This should be treated as a security update.
https://www.nasm.us/index.php

Node.js 18.20.1 is a security update.
https://nodejs.org/en/

Node.js 20.12.1 is a security update.
https://nodejs.org/en/

Node.js 21.7.2 is a security update.
https://nodejs.org/en/

Python 3.12.3 is a security updae.
https://www.python.org/downloads/windows/

Unreal Engine 5.3 adds dozens of new features and hundreds of changes. This is not a security update.
https://unrealengine.com/en-US/

Visual Studio Code 1.88 adds several new features. This is not a security update.
https://code.visualstudio.com/

Web Package Updates

These are likely to be of interest only to web developers.

Grocy 4.2.0 resolves several bugs. This is not a security update.
https://github.com/grocy/grocy

HumHub 1.15.4 resolves several bugs. This is not a security update.
https://www.humhub.com/en

SpamAssassin 4.0.1 improves compatibility. This is not a security update.
https://spamassassin.apache.org/downloads.cgi

WordPress 6.5 is a major update adding several new features and font controls. This is not a security update.
https://wordpress.org/

Akismet 5.3.2 resolves a couple bugs and adds support for new webhooks. This is not a security update.
https://wordpress.org/extend/plugins/akismet/

Antispam Bee 2.11.6 resolves several bugs and updates dependencies. This is not a security update.
https://wordpress.org/extend/plugins/antispam-bee/

BuddyPress 12.4.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 5.9.3 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Social Post Feed 4.2.3 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/custom-facebook-feed/

Interactive World Map 3.4.4 is a security update.
https://wordpress.org/extend/plugins/interactive-world-map/

My Sticky Bar 2.6.9 improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

Really Simple CAPTCHA 2.3 flags compatibility requirements. This is not a security update.
https://wordpress.org/extend/plugins/really-simple-captcha/

Sucuri Security 1.8.43 updates license and improves notifications. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

W3 Total Cache 2.7.1 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/w3-total-cache/

WooCommerce 8.7.0 resolves over a hundred bugs and almost one hundred other issues. This is not a security update.
https://wordpress.org/extend/plugins/woocommerce/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2024-02-13

Happy Valentine’s Day, Folks!

Today is Patch Tuesday for February, 2024. There were 230+ major hacks and over 200 application updates this month. It’s a big month, with about 3.5 GB of updates for most users.

This Month in Technology

23andMe, Inc., Academy Mortgage Corporation, AHS Management Company, Inc., Air Methods, LLC, Alkem Laboratories, AlmerysAlpine Halo9 iLX-F509, American Meat Companies, Android TV and eCos set-top boxes, Android, Ann & Robert H. Lurie Children’s Hospital, AnyDesk, Apple iPhone, Apple Mac, Apple Vision Pro, Apple Watch, AppleTV, Ashford, Inc., Autel MaxiCharger AC Wallbox Commercial, Automotive Grade Linux, Azura Vascular Care, Azusa Unified School District, Bake ‘N Joy Foods, Inc., Bank of America, Bankers Life and Casualty Company, Blink Mobility, Bosch Thermostats, Brady Martz & Associates PC, 3 million Breathless toothbrushes, BrightStar Care, Buildkit, Burr & Forman LLP, Cadence Bank, California Public Employees Retirement System (CalPERS), Calvià City Council, Canterbury County Council, Carnegie Mellon University, Catholic Charities of the Archdiocese of Miami, Inc., ChargePoint Home Flex, a China-based financial MNC, Chuze Fitness, Citrix Netscaler, Cloudflare, CNO ACE, Coastal Hospice & Palliative Care, Coastal Plains Community Mental Health Mental Retardation Center, Colorado Ophthalmology Associates, PC, Columbus Life Insurance Company, Columbus Regional Healthcare System, Concentra Health Services, Concord Music Group, Inc., Connecticut College, Coppola Physical Therapy and Fitness Gyms, Covenant Care California, LLC, Coventry school, Crace Medical Centre, Des Moines Orthopaedic Surgeons, P.C., Dickinson County Health Department, Docker, Dover District Council, Dutch Ministry of Defence, ElGuindy, Meyer & Koegel, APC, Emmanuel College, EMPORIA EV Charger Level 2, EquiLend Holdings, Europcar, ExpressVPN, Family Healthcare Center, FedEx  Corporation Group Health Plan, Fidelity National Financial, First Financial Security, Inc.,
FortinetFortiOS SSL VPN, FortiSIEM, Fortra GoAnywhere MFT, Framework Computer, Freehold Township schools, Fullerton Joint Union High School District, Gamma Strategies, GEICO Corporation, Georgia’s Fulton County, 5,300+ GitLab instances, Glendale Unified School District, Global Affairs CanadaGlow, Goledo Finance, Google Bazel, Google Chrome, Hair Club for Men, Ltd., Inc., Halara, Hampton-Newport News Community Services Board, Hanmi Bank, Hathway, Health Alliance Medical Plans, Hewlett Packard Enterprise (HPE), Hipocrate Information System, HMG Healthcare, HopSkipDrive, HORNE, LLP, HP ink cartridges, Hyundai Motor Europe, Infosys McCamish Systems LLC, InHealth Technologies, INTEGRIS Health, Islamic Charity in Saudi Arabia, ITITAN Hosting, Ivanti Avalanche, Ivanti Connect Secure VPN, Ivanti Policy Secure Gateway, J.D. Gilmour, Jason’s Deli, 45,000+ Jenkins instances, JetBrains TeamCity, 65 job listing sites, JuiceBox 40 Smart EV Charging Station, Juniper, Kansas City Area Transportation Authority, Kansas State University, Keenan & Associates, Kern Regional Center, Kyocera printers, Liberty Hospital, Lineage, Inc, Livall, LoanDepot, Lutheran World Federation, Marywood Nursing Care Center, Mastodon, McCarthy & Holthus, LLP, Medical Eye Services, Inc., Mercedes-Benz, Microbe & Lab, Microsoft (again!), Microsoft SharePoint, Microsoft SQL servers, Multi-Fineline Electronix, Inc., Musick, Peeler & Garrett LLP, MyPertamina, Nabholz Construction Company Employee Welfare Health Plan, NASCO, National Advisors Holdings, Inc., Nautic Partners, LLC, Navvis & Company, LLC, Naz.API, Oak View Group, Omaha Firefighters Healthcare Trust, Orange Spain, Orange Unified School District, OrthoArkansas, PA Employee Benefit Plan, Ozys, Parkovy, Payoneer, Pennsylvania Emergency Dispatch, Perry Johnson & Associates, Inc., Phoenix Contact CHARX SEC-3100, Pioneer DMH-WT7600NEX, Planet Home Lending, Planeta, PLUS FIVE FIVE, Prestige Care, Inc., Radiant Capital, Rajasthan government (India), Rebekah Children’s Services, Ripple, Romanian Chamber of Deputies, Roundcube email server, Saint Anthony Hospital, Schneider Electric Sustainability, SendGrid, Singing River Gulfport, Singing River Health System, SinglePoint Outsourcing, Inc., Socket, Somesing, SonicWall next-generation firewalls, Sony XAV-AX5500, Spoutible, Summit Medical Group, PLLC, Sun Pain Management, LLC, Tesla Infotainment System, Tesla Modem, Tesla, TGI Direct, Thanet District Council, The Burton Corporation, TIC Hosting, Tietoevry, Tigo, Torchbyte, TP-Link Omada, Trello, Trezor, Trinity Universal Insurance Company, TRISTAR Insurance  Group, U.S. Renal Care, Inc., Ubiquiti Connect EV Station, UEFI Firmware, United Regional Health Care System, Unitronics PLCs, US Department of Health and Human Services, US GSA, US military, Ventura County Credit Union, Veolia North America, Verizon Communications Inc., Verizon, Viamedis, VMware vCenter Server, Walker Therapeutic & Educational Programs, Washington National Insurance Company, Webber Chiropractic Sports Clinic, Inc., Weslend Financial, Windows SmartScreen, WinStar, Wise Lending, and WPS Office have reported hacking or compromises this month.

Atlassian Jira, Microsoft Teams (twice), Parkovy, Tietoevry, and T-Mobile have suffered from outages this month.

Last months updates broke spellcheck in Microsoft Teams, the ability to install updates directly for Microsoft Teams without enabling Delivery Optimization, search in OutlookGoogle Pixel phones, Outlook.com via Outlook, Windows Sysprep, Windows updates.

There is a new “flaw” in the Windows 11 installer, which allows incompatible hardware to be installed to and activated. The Microsoft ms-appinstaller protocol handler is being exploited again to install malware.

The German railway system still uses MS-DOS and Windows 3.11 to manage their displays. Wrenches and toothbrushes are the latest victims in hijacking efforts. A new study demonstrates that the new trend of using AI to write code generates less secure code. SIM swapping is still quite popular.

Google is resuming their migration to Manifest V3, which will result in many content and ad filters failing, as well as many other browser extensions, in only 5 short months.

Amazon AWS is now charging for IPv4 addresses.

While unlikely to make a difference, CA is now suing streaming media services for violating the CCPA. The UN is pushing for a “cybercrime” treaty designed to criminalize all efforts to research malware, security, and vulnerability testing, even when the target of the research has requested it. The treaty would also allow international courts to be used to target anyone using encryption for private communication channels, such as PGP, Telegram, or Signal.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is a big one this month. The typical computer should see roughly 3.5 GB in updates today. Let’s get started.

Microsoft released updates to address 79 vulnerabilities in .NET, .NET Framework, ASP.NET, Azure Active Directory, Azure Connected Machine Agent, Azure DevOps, Azure File Sync, Azure Site Recovery, Azure Stack, Internet Connection Sharing (ICS), Internet Shortcut Files, Microsoft ActiveX, Microsoft Azure Kubernetes Service, Microsoft Defender for Endpoint, Microsoft Dynamics 365, Microsoft Dynamics, Microsoft Edge, Microsoft Entra Jira, Microsoft Exchange Server, Microsoft Message Queuing (MSMQ), Microsoft ODBC Driver, Microsoft Office OneNote, Microsoft Office Outlook, Microsoft Office Word, Microsoft Office, Microsoft Power Platform Connector, Microsoft SQL Data Provider, Microsoft Teams for Android, Microsoft WDAC ODBC Driver, Microsoft WDAC OLE DB provider for SQL, Microsoft Windows DNS, Microsoft Windows, Servicing Stack Update, Skype for Business, SQL Server, Trusted Compute Base, Visual Studio, Win32k, Windows AppX, Windows DNS Client, Windows DNS Server, Windows Hyper-V, Windows Kernel, Windows LDAP, Windows Network Address Translation (NAT), Windows OLE, Windows Pragmatic General Multicast (PGM), Windows Printing Service, Windows SmartScreen, Windows USB Generic Parent Driver, Windows USB Serial Driver, and MSRT (~ 2.0 GB). This includes security updates. A reboot is required.

Apple released updates for iOS 15.8.1, iOS 16.7.5, iOS 17.3, iOS 17.3.1, iPadOS 15.8.1, iPadOS 16.7.5, iPadOS 17.3, iPadOS 17.3.1, macOS 14.3, macOS 14.3.1, macOS Monterey 12.7.3, macOS Sonoma 14.3, macOS Ventura 13.6.4, Magic Keyboard Firmware 2.0.6, Safari 17.3.1, tvOS 17.3, visionOS 1.0.3, watchOS 10.3, and watchOS 10.3.1. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 15.8.1, 16.7.5 and 17.3.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.8.1, 16.7.5 and 17.3.1 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 10.3.1 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 17.3 is a security update. Use System, Software Update to install the most current version.

visionOS 1.0.3 is a security update. Use Settings, General, Software Update to install the most current version.

Google Chrome OS 120.0.6099.235 and 121.0.6167.159 are security updates. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Sonoma (14.x) means that macOS Big Sur (11.x) and older are no longer supported. If you can not install at least macOS Monterey (12) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current — and final — release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. All non-LTS versions of Windows 10 other than v22H2 are now out of support, upgrade to v22H2 now. If you aren’t sure whether you are using LTS, you aren’t. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v23H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is now stable and can be upgraded to if your hardware supports it, but I recommend you continue to use Windows 10 until early 2025 before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

AMD Adrenalin 24.1.1 adds support for new hardware, AFMF and upscaling improvements, and resolves several bugs. AMD Link is being discontinued with this version. This is not a security update.
https://www.amd.com/en/support

Display Driver Uninstaller 18.0.7.2 improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Wacom Driver 6.4.5-5 improves reliability. This is not a security update.
https://www.wacom.com/en-us/support/product-support/drivers

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.62.162 is a security update. Use Menu, Help, About to install the most current version.
https://brave.com/

Firefox 122.0.1 is a security update. Use Menu, Help, About to install the most current version.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 115.7.0 is a security update. Use Menu, Help, About to install the most current version.
https://www.mozilla.org/en-US/firefox/organizations/all/

Google Chrome 121.0.6167.160 is a security update. Use Menu, Help, About to install the most current version.
https://www.google.com/chrome/

Microsoft Edge 121.0.2277.113 is a security update. Use Menu, Help, About to install the most current version.
https://www.microsoft.com/en-us/edge/business/download

SeaMonkey 2.53.18.1 is a security update. Use Menu, Help, About to install the most current version.
https://www.seamonkey-project.org/

Vivaldi 6.5.3206.61 is a security update. Use Menu, Help, About to install the most current version.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

DavMail Gateway 6.2.1 is a security update.
https://davmail.sourceforge.net/

Spark 3.13.4.66391 adds deep link email sharing and resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Spark for macOS 3.13.4.66401 adds deep link email sharing and resolves several bugs. This is not a security update.
https://sparkmailapp.com/

Thunderbird 115.7.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 8.0.8 is a security update.
https://anydesk.com/en/downloads

AnyDesk 8.0.0 for macOS is a security update.
https://anydesk.com/en/downloads

curl 8.6.0 resolves over 100 bugs. This is a security update.
https://curl.haxx.se/windows/

Dropbox 192.4.4605 resolves several bugs. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 205.0.0.11.228 is a security update.
https://www.messenger.com/download

FileZilla Client 3.66.5 is a security update.
https://filezilla-project.org/

FileZilla Server 1.8.1 is a security update.
https://filezilla-project.org/

Google Drive 86.0 resolves several bugs. This is not a security update.
https://drive.google.com/start

Grocy Desktop 2.9.0 updates library and resolves several bugs. This is not a security update.
https://github.com/grocy/grocy-desktop

MeshCentral 1.1.20 resolves over a dozen bugs. This is not a security update.
https://meshcentral.com/info/downloads.html

Microsoft Teams 1.7.00.1864 adds several new features, including improved domain & email integration. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 28.0.2 resolves more than 100 bugs. This is a security update.

Homepage

Npcap 1.79 resolves a couple reliability bugs. This is not a security update.
https://nmap.org/npcap/

Omada Software Controller 5.13.23 resolves several bugs. This is not a security udpate.
https://www.tp-link.com/us/support/download/omada-software-controller/

Pocketnet-Core 0.22.1 resolves over a dozen bugs. This is not a security update.
https://pocketnet.app/

Pocketnet-GUI 0.8.77 resolves several bugs. This is not a security update.
https://pocketnet.app/

Rclone 1.65.2 updates libraries and resolves a couple important reliability bugs. This should be treated as a security update.
https://rclone.org/

Signal 6.47.0 makes several improvements to emoji and emoticon support. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 6.46.7 doesn’t have a detailed changelog so should be treated as a security update.
https://signal.org/android/apk/

Skype 8.110.0.218 improves stability and resolves several bugs. This is not a security update.
https://www.skype.com/

Syncthing 1.27.3 resolves several bugs and improves CLI complettion. This is not a security update.
https://syncthing.net/

Technitium DNS Server 12.0.1 moves to .NET 8, resolves more than a dozen bugs. This is a security update.
https://technitium.com/dns/

Telegram 4.14.15 resolves several bugs. This is not a security update.
https://telegram.org/

Telegram (Android) 10.6.1 resolves several bugs. This is not a security update.
https://telegram.org/apps

Tigase Server 8.3.1 resolves several bugs. This is not a security update.
https://github.com/tigase/tigase-server/releases/latest

Trillian 6.5.0.38 resolves a mute bug. This should be treated as a security update.
https://www.trillian.im/

Zoom 5.17.7.31859 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 4.0.1 improves tracking, compatibility, and resolves several bugs. This is not a security update.
https://en.3tene.com/

Bitwig Studio 5.1.3 adds a few new filters and modules, and resolves several bugs. This is not a security update.
https://www.bitwig.com/download/

Grayjay 233 resolves several crashes and improves stability. This is not a security update.
https://grayjay.app/index.html

Kodi 20.4 resolves dozens of bugs and improves compatibility. This is a security update.
https://kodi.tv/

MediaMonkey 5.2 resolves a cosmetic bug. This is not a security update.
https://www.mediamonkey.com/windows#download

Plex Desktop 1.86.1.4076 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.55.1.4084 updates libraries. This should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.40.0.7998 improves native tagging, music filtering, resolves several bugs. This should be treated as a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

GDevelop 5.3.189 resolves over 20 bugs. This is not a security update.
https://gdevelop.io/download

Minecraft Server (Bedrock) 1.20.61.01 doesn’t provide a changelog so should be treated as a security update.
https://www.minecraft.net/en-us/download/server/bedrock

PS5 2024.206 is a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2024-01-13 resolves dozens of bugs. This is not a security update.
https://store.steampowered.com/news/app/593110

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 23.008.20533 is a security update.
https://get.adobe.com/reader

Adobe Commerce 2.4.6-p4, 2.4.5-p6, 2.4.4-p7, 2.4.3-ext-6, 2.4.2-ext-6, 2.4.1-ext-6, 2.4.0-ext-6, and 2.3.7-p4-ext-6 are security updates.
https://helpx.adobe.com/security/products/magento/apsb24-03.html

Magento Open Source 2.4.6-p4, 2.4.5-p6, and 2.4.4-p7 are security updates.
https://helpx.adobe.com/security/products/magento/apsb24-03.html

Adobe Substance 3D Painter 9.1.2 is a security update.
https://helpx.adobe.com/security/products/substance3d_painter/apsb24-04.html

Adobe Acrobat 23.008.20533 and 20.005.30574 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb24-07.html

Adobe FrameMaker Publishing Server 2022.2 is a security update.
https://helpx.adobe.com/security/products/framemaker-publishing-server/apsb24-10.html

Adobe Audition 24.2 and 23.6.4 are security updates.
https://helpx.adobe.com/security/products/audition/apsb24-11.html

Adobe Substance 3D Designer 13.1.1 iis a security update.
https://helpx.adobe.com/security/products/substance3d_designer/apsb24-13.html

Calibre 7.5.1 resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Columns++ 1.0.2 resolves a critical stability bug. This should be treated as a security update.
https://github.com/Coises/ColumnsPlusPlus

ImageMagick 7.1.1-28 updates libraries and resolves over a dozen bugs. This should be treated as a security update.
https://imagemagick.org/

Kindle for PC 2.3.70682 doesn’t provide a changelog so should be treated as a security update.
https://www.amazon.com/kindleforpc

LibreOffice Fresh 24.2.0 is the first version released with the new numbering scheme (year and month of release). This version resolves almost 300 bugs. This is a security update. The “Fresh” line is beta software and should be avoided by most people.
https://www.libreoffice.org/

Manager 24.2.13.1295 doesn’t have any detailed changes in the changelog for the most recent several versions over the last month, so this should be treated as a security update.
https://www.manager.io/

Nextcloud Desktop 3.11.1 updates libraries and resolves over a dozen bugs. This is a security update.

Homepage

Notepad++ 8.6.2 resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

PDF-XChange Editor 10.2.1.385 resolves over a dozen bugs. This is not a security update.
https://www.pdf-xchange.com/product/pdf-xchange-editor

QuickBooks Pro 2022 20231120-R13_63 doesn’t provide a detailed changelog so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

QuickBooks Pro 2023 20231107-R9_121 doesn’t provide a detailed changelog so should be treated as a security update.
https://downloads.quickbooks.com/app/qbdt/products

uniCenta oPOS 5.0 doesn’t provide a detailed changelog so should be treated as a security update.
https://unicenta.com/

Security Software Updates

One or more of these is likely to be of interest to most people.

Gpg4win 4.3.0 resolves dozens of bugs. This is a security update.
https://www.gpg4win.org/download.html

Java 8u401 is a security update.
https://www.java.com/en/download/manual.jsp

KeePass 2.56 improves integration and search feature, resolves more than a dozen bugs. This is not a security update.
https://keepass.info/

MalwareBytes Anti-Malware 4.6.8.311 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.malwarebytes.org/antimalware/

Microsoft Edge Policy 2024.02.06 adds blocklist for extension install types and the ability to preserve Manifest v2 availability. This is not a security update.
https://github.com/MicrosoftDocs/Edge-Enterprise/blob/public/edgeenterprise/microsoft-edge-policies.md

OpenSSL 3.2.1 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN 3.3.5 improves stability. This is not a security update.
https://protonvpn.com/download

RogueKiller 15.14.0 is a security update.
https://www.adlice.com/download/roguekiller/

Stinger 13.0.0.64 is a security update.
https://www.mcafee.com/us/downloads/free-tools/stinger.aspx

Symantec Norton Removal Tool 20240206 improves removal. This is not a security update.
https://support.norton.com/sp/en/us/home/current/solutions/v60392881

Tails 5.22 updates libraries, included apps, and resolves several bugs. This is a security update.
https://tails.net/install/download/index.en.html

YARA 4.5.0 resolves a dozen bugs. This is not a security update.
https://github.com/VirusTotal/yara/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 13.0.1.1 adds support for new encodings and resolves a couple bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

HandBrake 1.7.3 resolves over a dozen bugs. This is not a security update.
https://handbrake.fr/

MakeMKV 1.17.6 improves tolerance and resolves several bugs. This is not a security update.
https://www.makemkv.com/download/

StreamFab 6.1.6.5 improves compatibility and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 2.0.1.1 adds support for denoise, improves upscaling performance, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Utility Updates

These are unlikely to be of interest to most people.

1Password 8.10.24 resolves several bugs, improves idle behavior, and improves integration. This should be treated as a security update.
https://1password.com/downloads/mac/
https://1password.com/downloads/windows/

Agent Ransack 2022.3420 resolves several bugs. This is not a security update.

Agent Ransack – Download

AMD Ryzen Master 2.13.0.2908 adds support for new hardware and improves Curve Optimizer settings. This is not a security update.
https://www.amd.com/en/technologies/ryzen-master

AOMEI Partition Assistant 10.3.0 adds Bitlocker support and resolves several bugs. This is not a security update.
https://www.diskpart.com/

Autoruns 14.11 fixes a parameter parsing bug. This is a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/autoruns

balenaEtcher 1.18.11 resolves a couple bugs. This is not a security update.
https://etcher.balena.io/

Bitwarden 2024.2.0 improves self-hosting controls, TOTP capture and import. This is not a security update.
https://bitwarden.com/

CCleaner 6.20.10897 improves cleaning, adds bookmark backup removal, and improves compatibility. This is not a security update.
https://www.ccleaner.com/

CPU-Z Installer 2.09 adds support for new hardware and adds the ability to benchmark a single coreset/cluster. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

Cygwin 3.5.0 drops support for older Windows versions, adds several new raw maps, API calls, and mixer control. This is not a security update.
https://cygwin.com/

Dell Command Update 5.2.0 improves controls and notifications. This is not a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

DesktopOK 11.16 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 4.1.7.0 improves PDF search, date-time display, adds mutliple custom editor support, and resolves several bugs. This is not a security update.
https://dngrep.github.io/

email-oauth2-proxy 2024-01-20 adds support for GWS Cloud Service accounts, and resolves several bugs. This is a security update.
https://github.com/simonrob/email-oauth2-proxy

Everything CLI 1.1.0.27 improves performance and adds x64 build. This is not a security update.
https://www.voidtools.com/

Fido 1.55 improves compatibility. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3420 resolves several bugs. This is not a security update.

FileLocator Pro – Download

Fing 3.6.1 resolves a couple bugs. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

Go 1.22.0 adds several new language constructs, improved auditing and performance, adds go/version, and enhanced routing. This is not a security update.
https://go.dev/

GoodSync 12.5.5 improves compatibility and resolves more than a dozen bugs. This is not a security update.
https://www.goodsync.com/

Hiren’s BootCD PE 1.0.4 adds several new utilities, updates libraries and applications, adds hundreds of new drives, and resolves several bugs. This is a security update.

Download

Homedale 2.10 adds support for MU-MIMO detection. This is not a security update.
https://www.the-sz.com/products/homedale/

HWiNFO 7.72 doesn’t provide a detailed changelog so should be treated as a security update.

Download HWiNFO

Inkchip WIC 1.17 doesn’t provide a changelog so should be treated as a security update.
https://inkchip.net/wic/

Kingston SSD Manager 1.5.3.6 doesn’t provide a changelog so should be treated as a security update.
https://www.kingston.com/us/support/technical/ssdmanager

MS Printer Metadata Troubleshooter 1.0.0.1 is a security update.
https://support.microsoft.com/en-us/topic/kb5034510-microsoft-printer-metadata-troubleshooter-tool-december-2023-b3197f24-fd25-430d-96d2-70f2044ce6a1

OSForensics 11.0.1004 improves compatibility and resolves dozens of bugs. This is not a security update.
https://www.osforensics.com/download.html

osquery 5.11.0 updates libraries, adds support for new tables, and resolves several bugs. This is a security update.
https://osquery.io/downloads

PowerToys 0.78.0 updates libraries and resolves several bugs. This is a security update.
https://github.com/microsoft/PowerToys/releases/latest

Rufus 4.4 updates libraries and resolves several bugs. This is not a security update.
https://rufus.ie/en_US/

ScreenConnect 23.9.7.8804 is a security update.
https://www.connectwise.com/software/control/download

SearchMyFiles 3.24 resolves several bugs. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

Sysmon 15.12 resolves several stability and reliability bugs. This is a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

Ventoy 1.0.97 adds support for FreeBSD 14.0 and resolves several bugs. This is not a security update.
https://www.ventoy.net/en/index.html

WhyNotWin11 2.6.0.0 improves detection and resolves several bugs. This is not a security update.
https://github.com/rcmaehl/WhyNotWin11

WizTree 4.18 improves scan performance and filter behavior, improves Copy/Cut/Delete, progress bar and resolves several bugs. This is not a security update.
https://www.diskanalyzer.com/

ZoomIt 8.01 adds DemoType (autotyping) support and fixes a crash. This is not a security update.
https://learn.microsoft.com/en-us/sysinternals/downloads/zoomit

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 2023.1.1.28 resolves several bugs. This is not a security update.
https://developer.android.com/studio

GitHub Desktop 3.3.8 resolves more than a dozen bugs. This is not a security update.
https://desktop.github.com/

Microsoft Visual C++ 2022 Redistributable 14.38.33135.0 doesn’t provide a changelog so should be treated as a security update.
https://learn.microsoft.com/en-us/cpp/windows/latest-supported-vc-redist

MySQL ConnectorNet 8.3.0 is a security update.
https://dev.mysql.com/downloads/connector/net/

MySQL Server 8.0.36 is a security update.
https://dev.mysql.com/downloads/installer/

Node.js 21.6.1 updates libraries and resolves several bugs. This should be treated as a security update.
https://nodejs.org/en/

Node.js 20.11.0 is a security update.
https://nodejs.org/en/

Python 3.12.2 is a security update.
https://www.python.org/downloads/windows/

SQLite 3.45.1 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.86.1 resolves dozens of bugs. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.38 improves BOM detection and resolves several bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

PPSSPP 1.17.1 improves compatibility and resolves several bugs. This is not a security update.
https://www.ppsspp.org/download/

VirtualBox 7.0.14 resolves more than a dozen bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Coppermine Gallery 1.6.26 improves compatibility. This is not a security update.
https://coppermine-gallery.net/

Grocy 4.1.0 updates library and resolves several bugs. This is not a security update.
https://github.com/grocy/grocy

HumHub 1.15.3 resolves several bugs. This is not a security update.

Home

Invision Community 4.7.15 resolves over 50 bugs. This is a security update.
https://invisioncommunity.com/

MailEnable 10.48 resolves more than a dozen bugs. This is not a security update.
https://www.mailenable.com/

ownCloud Client 5.2.1.13040 resolves several bugs. This is not a security update.
https://owncloud.com/desktop-app/

Piwigo 14.2.0 resolves several bugs. This is not a security update.
https://piwigo.org/

WordPress 6.4.3 is a security update.
https://wordpress.org/

Akismet 5.3.1 resolves several bugs and improves reliability. This is not a security update.
https://wordpress.org/extend/plugins/akismet/

BuddyPress 12.2.0 is a minor security update.
https://wordpress.org/extend/plugins/buddypress/

Contact Form 7 5.8.7 improves compatibility and resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.8.1 resolves a couple bugs. This is not a security update.

Duplicator – WordPress Migration & Backup Plugin

Email Log 2.4.9 adds controls to limit actions. This is a security update.
https://wordpress.org/extend/plugins/email-log/

Redirection 5.4.2 removes Geo IP and resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/redirection/

Social Post Feed 4.2.2 is a security update.
https://wordpress.org/extend/plugins/custom-facebook-feed/

Sucuri Security 1.8.41 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/sucuri-scanner/

WooCommerce 8.5.2 resolves a dozen bugs. This is a security update.
https://wordpress.org/extend/plugins/woocommerce/

WordPress Importer 0.8.2 updates documentation and improves workflow. This is not a security update.
https://wordpress.org/extend/plugins/wordpress-importer/

WP Cerber Security 9.6.2 updates design, adds event insights, and resolves a couple bugs. This is not a security update.
https://wpcerber.com/

WP Mail SMTP 3.11.1 resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/wp-mail-smtp/

WPBakery 7.4 adds built-in SEO toolkit and improves social media controls. This is not a security update.
https://wpbakery.com/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

Updates 2023-02-14

Happy Valentine’s Day, Folks!

Today is Patch Tuesday for February, 2023.

There are a whopping 150+ major hacks and 200+ application updates this month. It’s a big one, with about 6 GB of updates for most users. Microsoft is also pushing out Windows 22H2 (Win10 and Win11) for all supported devices. If you’re not already on the latest builds, expect to be “upgraded” automatically in the coming days.

This Month in Technology

1020 South Main Street Operations LLC, 1st Franklin Financial Corporation Master Welfare Benefit Plan, 225 Evergreen Road Operations LLC, 90 Degree Benefits, Inc., A10 Networks, Aflac, Alkomprar Technology, AmerisourceBergen, an unnamed medical research company, Arizona Health Advantage, Inc., Arnold Clark, Aspire Surgical, Atlassian’s Jira Service Management Server and Data Center, Audifarma, Autotrader, Bahrain’s international airport, Benefit Administrative Systems, LLC, BonqDAO, Brazilian Government, British PM Stewart McDonald, Cacti, Cardiovascular Associates, Casa Ley, Cedar Oaks Surgery Center, Centro Médico Virgen De La Caridad, CircleCi, Cisco IOx, City Council of Durango, City of London, City of Oakland, Community Health Systems, CommuteAir – exposing the TSA no-fly list, Control Web Panel, Costa Rica’s Ministry of Public Works and Transport, Court of Justice of the State of Pará, Datadog, Diligent Corp, DNV (impacting over 1000 ships worldwide), DotHouse Health Incorporated, DPP II, LLC, Dr. Keith Rundle & Dr. Herman Rundle, Edmonds School District, Eurostar, Exclu, FortiOS SSL-VPN, General Treasury of the Republic of Chile, Git, GitHub Atom, GitHub Desktop, GoAnywhere MFT, 130 organizations using GoAnywhere, Google Fi, GoTo, Grand Theft Auto (GTA) Online, Harmony Horizon, Health Plan of San Mateo, Heritage Provider Network, Hive, Home Care Providers of Texas, Howard Memorial Hospital, Indigo Books & Music, Instituto Federal Do Pará, Intelligent Business Solutions, ION Group, iOS, IT Servicios, Italy, Jackson & Joyce Family Dentistry, JD Sports, Jefferson County Health Center, KeePass, KomplettFritid, Kroger, LastPass, League of Legends, LearnPress, Lexmark firmware, LimeVPN, Liquor Control Board of Ontario, Los Angeles Unified School District, Luaces Asesores, Lutheran Social Services of Illinois, macOS, MailChimp, Maternal and Family Health Services, Microsoft-Verified OAuth Apps, a Midwest specialty medical care clinic, Mindpath Health, Minuteman Senior Services, MKS Instruments, Morgan Hill Unified School District, multiple federal civilian executive branch (FCEB) agenciesNamecheap, Nantucket, Massachusetts, Nissan North America, Norton LifeLock (including their password manager), ODIN Intelligence, One Brooklyn Health System, Packman anti-cheat software, PayPal, Pennsburg Manor, PeopleConnect (TruthFinder and Instant Checkmate), Pepsi, Pharma Gestao, Pitt Meadows School District 42, Planet Ice, Politriz, Puma, QNAP NAS, Qualys, Quintana Roo Attorney General’s Office, Qulliq Energy Corporation, Reddit, Regal Medical Group, Rise Interactive Media & Analytics, LLC, Rostelecom, Royal Mail, Rundle Eye Care, Samsung Galaxy App Store, San Francisco Transit Police, Seguros Equinoccial S.A, Sharp HealthCare, Shell, Sistema Integral De Control Alimentario, Skyview Networks, Solaris, Southeast Colorado Hospital District, St. Rose Hospital, Stanford Medicine, Stroke Scan Inc, T-Mobile, Tallahassee Memorial HealthCare, Technion – Israel Institute of Technology, Teijin Automotive Technologies Welfare Plan, The Guardian, Ticketmaster, Toyota’s GSPIMS, Tucson, Arizona, Ukrainian Computer Emergency Response Team, Ukrinform, University of California, University of Colorado Hospital Authority, University of Colorado, University of Duisburg-Essen, University of Maryland Baltimore, University of Miami, UScellular, VMware OpenSLP, VMware vRealize Log Insight, Weee!, Yum! Brands, Zacks Investment Research, and Zurich have reportedly been hacked or compromised this month.

Most federal agencies ignore the GAO cybersecurity recommendations.

Bankdata, Bermuda, The FAA’s NOTAM, Instagram, Microsoft 365, Microsoft Outlook, Tor, Twitter, Verizon, YouTube, and Zelle suffered from significant outages.

Cloudflare managed to prevent an insane 71 million requests per second attack.

Last months updates broke the Windows Start menu, Windows 10 (if a 365 trial was active), and almost 300 MSI motherboard models.

A whopping 12% (minimum) of online stores expose private data or backups. A new strain of point-of-sale malware prevents contactless payments in order to ensure that the skimmer operates unhindered.

Now for the good news:

Impossible Foods are being hit with patent problems across the globe. Hopefully this will lead to a financial incentive to grow real foods again.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday is huge this month. The typical computer should see roughly
6 GB in updates today. Let’s get started.

Like it or not, Windows 10 and Windows 11 versions 22H2 are now being pushed out onto all supported devices, so expect it to be installed in the coming days.

Microsoft released updates to address 72 vulnerabilities in .NET and Visual Studio, .NET Framework, 3D Builder, Azure App Service, Azure Data Box Gateway, Azure DevOps, Azure Machine Learning, HoloLens, Internet Storage Name Service, Microsoft Defender for Endpoint, Microsoft Defender for IoT, Microsoft Dynamics, Microsoft Edge (Chromium-based), Microsoft Exchange Server, Microsoft Graphics Component, Microsoft Office, Microsoft Office OneNote, Microsoft Office Publisher, Microsoft Office SharePoint, Microsoft Office Word, Microsoft PostScript Printer Driver, Microsoft WDAC OLE DB provider for SQL, Microsoft Windows Codecs Library, Power BI, SQL Server, Visual Studio, Windows Active Directory, Windows ALPC, Windows Common Log File System Driver, Windows Cryptographic Services, Windows Distributed File System (DFS), Windows Fax and Scan Service, Windows HTTP.sys, Windows Installer, Windows iSCSI, Windows Kerberos, Windows MSHTML Platform, Windows ODBC Driver, Windows Protected EAP (PEAP), Windows SChannel, Windows Win32K, and MSRT (~2 GB). This includes security updates. A reboot is required.

Apple released updates for macOS Big Sur 11.7.3, macOS Monterey 12.6.3, macOS Ventura 13.2.1, iOS 12.5.7, iOS 15.7.3, iOS 16.3.1, iPadOS 15.7.3, iPadOS 16.3.1, Safari 16.3.1, tvOS 16.3.2 and watchOS 9.3.1. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 12.5.7, 15.7.3, and 16.3.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.7.3 and 16.3.1 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 9.3.1 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 16.3.2 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 109.0.5414.125 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

elementary OS 7.0 is a new major version of elementary OS improving app management, controls, defaults, and many other bug fixes. This is not a security update.
https://elementary.io/

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Ventura (13.x) means that macOS Catalina (10.15) and older are no longer supported. If you can not install at least macOS Big Sur (11) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v22H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 12 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v22H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 12 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.6.0 updates installer, adds option to update driver source to default, and improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

DS4Windows 3.2.8 resolves over a dozen bugs. This is not a security update.
https://github.com/Ryochan7/DS4Windows/releases/latest

Garmin Express 7.16.1 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.garmin.com/en-US/software/express/

JACK2 1.9.22 improves compatibility, removes example tools, updates dependencies, and resolves a couple bugs. This is a security update.
https://jackaudio.org/downloads/

NVcleanstall 1.15.1 resolves several bugs. This is not a security update.
https://www.techpowerup.com/download/techpowerup-nvcleanstall/

Drivers by Seagull 2023.1 adds support for over 200 new printer models from 20 vendors, RFID unique serial numbers (TID), and updates the license.
https://www.seagullscientific.com/support/downloads/drivers/

Wacom Driver 6.4.1-3 resolves several bugs. This is not a security update.
https://www.wacom.com/en-us/support/product-support/drivers

Xerox Smart Start 1.8.10.0 doesn’t provide a changelog so should be treated as a security update.
https://www.support.xerox.com/en-us/content/143617

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.48.158 is a security update.
https://brave.com/

Google Chrome 110.0.5481.100 is a security update.
https://www.google.com/chrome/

Microsoft Edge 110.0.1587.41 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 110.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

SeaMonkey 2.53.15 is a security update.
https://www.seamonkey-project.org/

Vivaldi 5.6.2867.62 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

ProtonMail (Android) 3.0.11 improves stability. This is not a security update.
https://proton.me/mail/download

Spark 3.3.3.42970 improves stability. This is not a security update.
https://sparkmailapp.com/

Spark (macOS) 3.3.3.42968 improves stability. This is not a security update.
https://sparkmailapp.com/

Thunderbird 102.7.2 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 7.1.8 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 7.0.1 resolves several bugs. This is a security update.
https://anydesk.com/en/downloads

BrowsingHistoryView 2.54 adds whitespace around the QR codes. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

Dropbox 167.4.4719 resolves several bugs and improves performance. This is not a security update.
https://www.dropbox.com/

Facebook Messenger 176.0.0.12.101 is a security update.
https://www.messenger.com/download

FileZilla Client 3.63.1 resolves several bugs. This is not a security update.
https://filezilla-project.org/

FileZilla Server 1.6.6 resolves several bugs. This is not a security update.
https://filezilla-project.org/

FreeFileSync 12.0 is a major update and adds several new security profiles, improves timeouts, and resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 71.0 resolves several bugs. This is not a security update.
https://drive.google.com/start

IPInfoOffline 1.61 resolves a crash bug. This is not a security update.
https://www.nirsoft.net/utils/ip_country_info_offline.html

Java 8u361 is a security update.
https://www.java.com/en/download/manual.jsp

Microsoft Teams 1.6.00.376 adds several new features. This is not a security update.
https://teams.microsoft.com/downloads

Nextcloud Server 25.0.3 is a security update.
https://nextcloud.com/

Omada Software Controller 5.8.4 adds global view, mapping, and adds several other features. This is not a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Pocketnet-GUI 0.8.39 adds P2P audio and video calls, improved GUI confirmations, and resolves over a dozen bugs. This is not a security update.
https://pocketnet.app/

Signal 6.5.1 resolves a crash bug. This is not a security update.
https://signal.org/download/windows/

Signal (Android) 6.10.9 improves display of activity. This is not a security update.
https://signal.org/android/apk/

Skype 8.93.0.404 improves translator, color schemes, and resolves several bugs. This is not a security update.
https://www.skype.com/

Syncthing 1.23.1 resolves an upgrade bug. This is not a security update.
https://syncthing.net/

Telegram 4.6.2 resolves several bugs. This is not a security update.
https://telegram.org/

Telegram (Android) 9.4.0 doesn’t provide a changelog so should be treated as a security update.
https://telegram.org/apps

WinSCP 5.21.7 updates Batch Rename extension and resolves a settings change bug. This is not a security update.
https://winscp.net/eng/index.php

Zoom 5.13.7.12602 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

BasicSR 1.4.2 adds torch and resolves several bugs. This is not a security update.
https://github.com/XPixelGroup/BasicSR/releases/latest

Kodi 20.0 implements over 500 changes. This is a security update.
https://kodi.tv/

Plex Desktop 1.63.3.3523 resolves audio passthrough. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.33.2.3525 resolves audio passthrough. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.31.0.6654 improves season and episode detection, end credit marker detection, scanner, and resolves over a dozen bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Real-ESRGAN-ncnn-vulkan 0.2.0 is a security update.
https://github.com/xinntao/Real-ESRGAN-ncnn-vulkan/releases/latest

TuneIn 1.26.0 doesn’t provide a changelog so should be treated as a security update.
https://tunein.com/radio/home/

Game Updates

These are unlikely to be of interest to most people.

GameMaker Studio 2023.1.0.58 improves installation experience, performance and image editing. This is not a security update.
https://www.yoyogames.com/en/gamemaker

GDevelop 5.1.157 adds new objects, improves GDevelop banner behavior, asynchronous objects, updates libraries and extensions. This is not a security update.
https://gdevelop.io/download

Lego Studio 2.23.1.1 resolves several bugs. This is not a security update.
https://www.lego.com/en-us/ldd

Playstation PS5 22.02-06.50.00 adds support for the DualSense Edge wireless controller and improves performance. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2023.02.10 resolves dozens of bugs. This should be treated as a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 22.003.20314 resolves several bugs. This is not a security update.
https://get.adobe.com/reader

Adobe After Effects 23.2 and 22.6.4 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb23-02.html

Adobe Connect 11.4.6 and 12.2 are security updates.
https://helpx.adobe.com/security/products/connect/apsb23-05.html

Adobe FrameMaker 2020.5 and 2022.1 are security updates.
https://helpx.adobe.com/security/products/framemaker/apsb23-06.html

Adobe Bridge 12.0.4 and 13.0.2 are security updates.
https://helpx.adobe.com/security/products/bridge/apsb23-09.html

Adobe Photoshop 23.5.4 and 24.1.1 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb23-11.html

Adobe InDesign 18.2 and 17.4.1 are security updates.
https://helpx.adobe.com/security/products/indesign/apsb23-12.html

Adobe Premiere Rush 2.7 is a security update.
https://helpx.adobe.com/security/products/premiere_rush/apsb23-14.html

Adobe Animate 22.0.9 and 23.0.1 are security updates.
https://helpx.adobe.com/security/products/animate/apsb23-15.html

Adobe Substance 3D Stager 2.0.0 is a security update.
https://helpx.adobe.com/security/products/substance3d_stager/apsb23-16.html

Audacity 3.2.4 resolves a functional bug. This is not a security update.
https://www.audacityteam.org/download/

LibreOffice 7.4.5 resolves a stability bug. This is not a security update.
https://www.libreoffice.org/

LibreOffice Fresh 7.5.0 resolves over 250 bugs. This is a security update. Be aware that the Fresh line is beta software and should be avoided in favor of the Still line above.
https://www.libreoffice.org/

Nextcloud Desktop 3.7.3 resolves dozens of bugs. This is a security update.
https://nextcloud.com/

Notepad++ 8.4.9 resolves over a dozen bugs. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 5.0.1 is a major update to Paint.net, adds several features, and resolves several bugs. This is not a security update.
https://www.getpaint.net/

Calibre 6.12.0 adds read-aloud, updates libraries, and resolves several bugs. This is not a security update.
https://calibre-ebook.com/

Kindle for PC 1.40.65415 doesn’t provide a changelog so should be treated as a security update.
https://www.amazon.com/kindleforpc

Security Software Updates

One or more of these is likely to be of interest to most people.

Chainsaw 2.3.1 resolves a panic bug. This is not a security update.
https://github.com/countercept/chainsaw

DNSQuerySniffer 1.91 resolves stability bug. This is not a security update.
https://www.nirsoft.net/utils/dns_query_sniffer.html

HTTP Toolkit 1.12.3 doesn’t provide a changelog so should be treated as a security update.
https://httptoolkit.tech/

KeePass 2.53.1 resolves several bugs. This is not a security update.
https://keepass.info/

MalwareBytes Anti-Malware 4.5.22 resolves several bugs. This is not a security update.
https://www.malwarebytes.org/antimalware/

MalwareBytes Anti-Malware Mac 4.18.11 resolves a couple bugs and removes the built-in browser. This is a security update.
https://www.malwarebytes.com/mac/

OpenSSL 1.1.1t is a security update.
https://www.openssl.org/source/

OpenSSL 3.0.8 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ProtonVPN (macOS) 3.0.13 resolves several bugs. This is not a security update.
https://protonvpn.com/download

RogueKiller 15.8.0 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Tails 5.9 is a security update.
https://tails.boum.org/install/dvd/index.en.html

uBlock Origin 1.47.0 resolves several bugs and improves performance. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

Camtasia 22.5.0 adds several new transitions, improved recorder, and several other tools. This is not a security update.
https://www.techsmith.com/video-editor.html

Open Broadcaster Software 29.0.2 resolves several bugs. This is not a security update.
https://obsproject.com/

ScreenToGif 2.37.2 adds translations. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

SnagIt 23.0.3 resolves a couple bugs. This is not a security update.
https://www.techsmith.com/screen-capture.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.0.9.9 adds support for new encodings, improves compatibility and resolves a couple bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

HandBrake 1.6.1 resolves several bugs. This is not a security update.
https://handbrake.fr/

iMazing HEIC Converter 2.0.5 doesn’t provide a changelog so should be treated as a security update.
https://imazing.com/heic

MakeMKV 1.17.3 adds support for new encodings and improves reliability. This is not a security update.
https://www.makemkv.com/download/

StreamFab 6.1.0.7 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/downloader-new.htm

UniFab 1.0.1.2 resolves a couple bugs and adds support to merge. This is not a security update.
https://www.dvdfab.cn/unifab.htm

Education updates

One or more of these are likely to be of interest to most people.

Zotero 6.0.20 improves performance and resolves several bugs. This is a security update.
https://www.zotero.org/

Zotero (macOS) 6.0.21 resolves several bugs. This is a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 8.9.15 improves compatibility. This is not a security update.
https://1password.com/downloads/mac/

1Password for Windows 8.9.14 adds support to import directly from LastPass. This is not a security update.
https://1password.com/downloads/windows/

8GadgetPack 36.0 updates outdated gadgets. This is not a security update.
https://8gadgetpack.net/

Agent Ransack 2022.3366 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

Beyond Compare 4.4.5.27371 improves performance and resolves several bugs. This is not a security update.
https://www.scootersoftware.com/download.php?zz=dl4

Bitwarden 2023.1.1 resolves several bugs. This is not a security update.
https://bitwarden.com/

CCleaner 6.09.10300 resolves several bugs. This is not a security update.
https://www.ccleaner.com/

CPU-Z Installer 2.04 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

CurrPorts 2.66 improves stability. This is not a security update.
https://www.nirsoft.net/utils/cports.html

Cygwin 3.4.6 improves compatibility and stability. This should be treated as a security update.
https://cygwin.com/

Dell Command Update 4.8.0 improves BIOS update, self-update, and toast behaviors. This is a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

DesktopOK 10.66 improves auto save icons feature. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

Etcher 1.14.3 improves compatibility and resolves several bugs. This is not a security update.
https://www.balena.io/etcher/

Everything Toolbar 1.0.2 improves performance, reliability and cosmetics. This is a security update.
https://github.com/stnkl/EverythingToolbar/

Fido 1.43 adds BITS transfer support. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3366 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Git SCM 2.39.1 is a security update.
https://git-scm.com/

Go 1.20.1 updates the toolchain and improves performance. This is a security update.
https://go.dev/

GoodSync 12.1.7 resolves several bugs and improves compatibility. This is not a security update.
https://www.goodsync.com/

grepWin 2.0.13 adds ability to copy column content, and resolves a couple bugs. This is not a security update.
https://github.com/stefankueng/grepWin/releases/latest

HWMonitor 1.49 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

Memtest86+ 6.10 adds support for Secure Boot signing, headless EFI, various command line options, new hardware and resolves several bugs. This should be treated as a security update.
https://www.memtest.org/

NetworkTrafficView 2.43 improves stability. This is not a security update.
https://www.nirsoft.net/utils/network_traffic_view.html

NTLite 2.3.9.9039 updates components and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 10.0.1007 improves case management, VM reporting, and resolves dozens of bugs. This is not a security update.
https://www.osforensics.com/download.html

AOMEI Partition Assistant 9.14.0 improves safety of move/resize, resolves several bugs, and improves reliability. This is not a security update.
https://www.diskpart.com/

PointerStick 6.22 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.67.1 improves stability. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

PSAppDeploy 3.9.2 resolves several bugs. This is a security update.
https://psappdeploytoolkit.com/

ScreenConnect 23.1.1.8423 improves compatibility, adds several cosmetic changes, and resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

SearchMyFiles 3.23 resolves a couple bugs. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

Sysmon 14.14 resolves a timeout detected deleted files. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

TeamViewer 15.38.3 resolves a file resume bug. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

Unified Remote Server 3.13.0.2501 doesn’t provide a changelog so should be treated as a security update.
https://www.unifiedremote.com/

Unity 2022.2.6 resolves several bugs. This is not a security update.
https://unity3d.com/get-unity/download/archive

Ventoy 1.0.88 resolves several bugs and improves compatibility. This is not a security update.
https://www.ventoy.net/en/index.html

WhyNotWin11 2.5.0.4 updates hardware compatibility lists. This is not a security update.
https://github.com/rcmaehl/WhyNotWin11

WinGet 1.4.10173 resolves over a hundred bugs and improves stability. This is a security update.
https://github.com/microsoft/winget-cli/releases/latest

WinRAR 6.20 resolves over 20 bugs. This is not a security update.
https://www.rarlab.com/

ZoomIt 6.12 resolves a cosmetic artifact bug when zooming. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/zoomit

Developer Updates

These are unlikely to be of interest to most people.

ADB 34.0.0 resolves several bugs. This is not a security update.
https://developer.android.com/studio/releases/platform-tools

Android Studio 2022.1.1.1 resolves several bugs. This is not a security update.
https://developer.android.com/studio

GitHub Desktop 3.1.6 updates libraries, resolves several bugs, and improves compatibility. This is a security update.
https://desktop.github.com/

GitHub includefragment 6.1.1 adds refetch API. This is not a security update.
https://github.github.io/include-fragment-element/

MySQL Server 8.0.32 resolves several bugs. This is not a security update.
https://dev.mysql.com/downloads/installer/

MySQL ConnectorNet 8.0.32 resolves several bugs. This is not a security update.
https://dev.mysql.com/downloads/connector/net/

Node.js 19.6.0 updates libraries and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Node.js 18.14.0 updates libraries and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Redemption 6.3.0.6164 resolves several bugs. This is not a security update.
https://www.dimastr.com/redemption/

Rustup 1.25.2 adds SHA-1 support again. This is not a security update.
https://www.rust-lang.org/

TortoiseGit 2.14.0 updates libraries and resolves several bugs. This is a security update.
https://tortoisegit.org/

Visual Studio Code 1.75.1 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 7.0.6 resolves several bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Drupal 9.4.11 is a security update.
https://drupal.org/download

Joomla 4.2.7 is a security update.
https://www.joomla.org/

ownCloud Client 3.1.0.9872 resolves several bugs. This is not a security update.
https://owncloud.com/desktop-app/

phpList 3.6.12 updates dependencies and resolves several bugs. This is not a security update.
https://www.phplist.org/

phpMyAdmin 5.2.1 is a security update.
https://www.phpmyadmin.net/

Piwigo 13.5.0 is a security update.
https://piwigo.org/

Antispam Bee 2.11.2 resolves several bugs and improves compatibility. This is not a security update.
https://wordpress.org/extend/plugins/antispam-bee/

Autoptimize 3.1.5 improves compatibility and resolves a couple bugs. This is not a security update.
https://wordpress.org/extend/plugins/autoptimize/

Contact Form 7 5.7.3 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Duplicator 1.5.2.1 improves compatibility and resolves several bugs. This is not a security update.
https://wordpress.org/plugins/duplicator/#developers

myStickymenu 2.6.2 improves flow. This is not a security update.
https://wordpress.org/extend/plugins/mystickymenu/

Postie 1.9.65 removes uname support. This is not a security update.
https://wordpress.org/extend/plugins/postie/

Redirection 5.3.9 is a security update.
https://wordpress.org/extend/plugins/redirection/

W3 Total Cache 2.3.0 improves compatibility and resolves over a dozen bugs. This is not a security update.
https://wordpress.org/extend/plugins/w3-total-cache/

WooCommerce 7.3.0 resolves almost 100 bugs. This is a security update.
https://wordpress.org/extend/plugins/woocommerce/

WPtouch 4.3.48 is a security update.
https://wordpress.org/extend/plugins/wptouch/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/