Updates 2022-01-11

Welcome back, Folks!

Today is Patch Tuesday for January, 2022.

It’s a big one. This month has been insane. There’s always a surge in hacking events near holidays, but this month had almost double the *known* hacking events from previous months. What’s worse is that many of the vulnerabilities used were known weeks and sometimes years in advance, though the patches were not yet installed or the specific applications and services were simply not being maintained or secured. Grrrr.

This Month in Technology

A New Leaf, Inc., Advocate Aurora HealthAlabama Department of Rehabilitation ServicesAll in One SEOAmediaAndrew Sauchelli, DMDApache httpdApple Blossom Family PracticeAzure App ServiceBansley and Kiener (B&K), Belgium’s MilitaryBernalillo CountyBioPlus Specialty Pharmacy Services LLCBrazil’s Health MinistryBroward HealthC.E. Niehoff & CompanyChaddockCiox HealthCommission on ElectionsCOVID-19 Home TestsCrawford County Assessors OfficeDaniel J. Edelman Holdings, Inc., DatPiff, The De Montfort SchoolDouglas C Morrow ODPCDuneland School CorporationEvanston Township High SchoolExpresso and SICFertility Centers of Illinois, PLLC, FinalSiteFlexBookerFlorida Digestive Health Specialists LLP, Forensic Science IrelandFresenius Kabi infusion pump systemsGarrett metal detectorsGeorgia Bone & Joint Surgeons, P.C., Google Docs Comment PlatformGrass Valley, CAGumtreeH2 DatabaseHellmann Worldwide LogisticsImpresaInetum GroupiPhone 13James Kagan, MDJefferson Surgical ClinicKearsarge Regional School DistrictLastPassLog4j (several times)Loyola University Medical CenterLuxemburg-Casco School DistrictmacOS powerdirMcMenaminsMedQuest Pharmacy, Inc., Microsoft Active DirectoryMicrosoft TeamsMonkey Kingdom (via Grape), Monongalia Health System Inc., Monroe Public SchoolsMonterey Peninsula Unified School DistrictNetgear NighthawkNorthwest Broward Orthopaedics AssociatesNorth Shore Hebrew Academy High SchoolOG department storeONUSOregon Eye SpecialistsPeck & Associates, PC, Pithadia Medical Professional Services, Inc., ProtempsPulseTVQNAPRavkooRedLine StealerRhode Island Public Transit AuthorityR.R. Donnelley & SonsRunning Warehouse LLC, Sainsbury’sSaltzer HealthSaskatchewan Liquor and Gaming AuthoritySEGAShelley School DistrictShutterflySkate Warehouse LLC, Skin Care Specialty PhysiciansSotheby’s Realty’s BrightcoveSouthern Orthopaedic AssociatesSpar StoresStandard BankSuperior PlusSurgery Group SCT-MobileTackle Warehouse LLC, Tennis Warehouse LCC, Tiyuli and LametayelUAW Retiree Medical Benefits TrustUberUbisoftUK Defence AcademyUltimate Kronos GroupUS Commission on International Religious FreedomUScellular, Utah Department of Health, Virginia Division of Capitol PoliceVirginia General AssemblyVolvoWalgreen Co., WD MyCloudWelfare, Pension and Annuity Funds of Local No. ONE, I.A.T.S.E., and Zoho UEM have been hacked.

Norton 360 is now opting you in for their CPU cryptomining if you have their software installed. The very same software designed to protect you from evildoers that would take advantage of your computer to do this kind of thing…is now doing it. Apple has released an Android app under the auspice of helping users discover Tracker devices that might be tracking them…by enabling your device to allow them to communicate with the Apple Tracker network. Firefox still doesn’t properly support OCSP stapling. Dell BIOS updates are crashing devices. Microsoft has integrated their own financing platform into Edge.

Microsoft rang in the new year by breaking Microsoft Exchange (on-prem) for every server that had filtering enabled (almost all of them). Microsoft acknowledged the problem about 20 hours after it began and released resolution steps by deleting and rebuilding the scanning engine about 31 hours after it began. Sonicwall, too.

CloudflareAWS, Twitch, Zoom, PSN, Slack, Hulu, Imgur have had extended outages this month.

Please, for all that is holy, check your backups!

Phishing is an ever-growing problem. Sophos reminds us how to check for scams like this.

Now for the good news:

Mozilla has added Secure DNS to Firefox, now enabled by default. Unfortunately, this bypasses DNS filtering options you may have assigned yourself – so if you use Firefox you’ll need to enable your own DoH URLs within the settings.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday this month is pretty big. The typical computer should see roughly 3 GB in updates today. Let’s get started.

Microsoft released updates for.NET Framework, Microsoft Dynamics, Edge, Exchange Server, Microsoft Office, SharePoint, Microsoft Teams, Active Directory, CLFS, Windows Cryptographic Services, Windows Defender, DirectX, Windows Installer, Windows RDP, Windows Remote Desktop, ReFS, Windows Security Center, Windows Storage Spaces, Windows Tile Data Repository, Windows UEFI, Windows User Profile Service, and MSRT (~2 GB). This includes security updates. A reboot is required.

Apple released updates for Safari 15.2. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

Google Chrome OS 96.0.4664.111 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Monterey (12.x) means that macOS Mojave (10.14) and older are no longer supported. If you can not install at least macOS Catalina (10.15) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v21H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 6 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v21H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 6 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.4.7 removes support for Vista, updates libraries, and improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.34.80 is a security update.
https://brave.com/

Google Chrome 97.0.4692.71 is a security update.
https://www.google.com/chrome/

Microsoft Edge 97.0.1072.55 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 96.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 91.5.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Iridium 2021.12.96 is a security update.
https://iridiumbrowser.de/

SeaMonkey 2.53.10.2 is a security update.
https://www.seamonkey-project.org/

Vivaldi 5.0.2497.35 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 91.5.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk (macOS) 6.4.0 resolves a couple bugs. This is not a security update.
https://anydesk.com/en/downloads

curl 7.81.0 is a security update.
https://curl.haxx.se/windows/

Dropbox 139.4.4896 doesn’t provide a changelog so should be treated as a security update.
https://www.dropbox.com/

FileZilla Server 1.2.0 resolves several bugs. This is not a security update.
https://filezilla-project.org/

FreeFileSync 11.16 updates libraries and resolves several bugs. This is a security update.
https://www.freefilesync.org/download.php

Omada Software Controller 5.0.29 is a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Prosody 0.11.11 resolves several bugs. This is not a security update.
https://prosody.im/download/start

Syncthing 1.18.6 improves usability. This is not a security update.
https://syncthing.net/

Telegram 3.4.3 resolves several bugs. This is not a security update.
https://telegram.org/

Zoom 5.9.1.2581 is a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

darktable 3.8.0 makes nearly 4,000 changes including performance, bug fixes, new hardware support and more. This should be treated as a security update.
https://www.darktable.org/install/

Picard 2.7.2 resolves several bugs. This is not a security update.
https://picard.musicbrainz.org/

TuneIn 1.25.0 does not provide a changelog so should be treated as a security update.
https://tunein.com/radio/home/

Game Updates

These are unlikely to be of interest to most people.

Steam 2022.12.16 resolves several bugs. This is not a security update.
https://store.steampowered.com/about/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 21.011.20039 is a security update.
https://get.adobe.com/reader

Adobe Acrobat and Reader 21.011.20039, 20.004.30020, and 17.011.30207 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb22-01.html

Adobe Illustrator 26.0.2 and 25.4.3 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb22-02.html

Adobe Bridge 12.0.1 and 11.1.3 are security updates.
https://helpx.adobe.com/security/products/bridge/apsb22-03.html

Adobe InCopy 16.4.1 is a security update.
https://helpx.adobe.com/security/products/incopy/apsb22-04.html

Adobe InDesign 16.4.1 is a security update.
https://helpx.adobe.com/security/products/indesign/apsb22-05.html

Audacity 3.1.3 improves stability. This is not a security update.
https://www.audacityteam.org/download/

Krita 5.0.2 is a major update. This version adds several features, resolves bugs and improves stability and reliability. This is not a security update.
https://krita.org/en/download/krita-desktop/

LibreOffice Fresh 7.2.5 resolves almost 100 bugs. This is not a security update. The “Fresh” line is beta software and should be avoided in favor of the stable version (“Still”) by most users.
https://www.libreoffice.org/

Nextcloud Desktop 3.4.1 resolves several bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.2 improves stability. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 4.3.7 resolves a stability bug. This is not a security update.
https://www.getpaint.net/

Security Software Updates

One or more of these is likely to be of interest to most people.

elementary OS 6.1
https://elementary.io/

Gpg4win 4.0.0 is a major update adding several new features and updates libraries. This is a security update.
https://www.gpg4win.org/download.html

KeePass 2.50 improves performance and generator, updates libraries, and resolves several bugs. This is not a security update.
https://keepass.info/

OpenSSL 1.1.1m is a security update.
https://www.openssl.org/source/

OpenSSL 3.0.1 is a security update.
https://curl.se/windows/

OpenSSL 3.0.1 is a security update.
https://slproweb.com/products/Win32OpenSSL.html

ReactOS 0.4.13 provides over 250 bug fixes and improvements. This is not a security update.
https://reactos.org/

RogueKiller 15.1.5 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Tails 4.26 is a security update.
https://tails.boum.org/install/dvd-download/index.en.html

TinyWall 3.2.5 resolves several bugs. This is not a security update.
https://tinywall.pados.hu/

uBlock Origin 1.40.6 improves reliability. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

ScreenToGif 2.35.4 resolves several bugs. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

Converter Updates

These are unlikely to be of interest to most people.

HandBrake 1.5.1 updates libraries, resolves several bugs and improves stability and reliability. This is not a security update.
https://handbrake.fr/

IsoBuster 4.9 adds support for new hardware, new formats, and resolves several bugs. This is not a security update.
https://www.isobuster.com/download.php

Utility Updates

These are unlikely to be of interest to most people.

7-Zip 21.07 adds VHDX support, improved parameter handling and compatibility. This is not a security update.
https://www.7-zip.org/

Agent Ransack 2022.3283 improves performance and reliability, and resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

Aomei Partition Assistant 9.6.0 resolves several bugs and improves compatibility. This is not a security update.
https://www.diskpart.com/

Autoruns 14.07 resolves several bugs. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/autoruns

Active Directory Explorer 1.51 fixes a Windows Store packaging crash. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/adexplorer

CacheSet 1.02 fixes a 64 bit OS regression. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/cacheset

Beyond Compare 4.4.1.26165 resolves several bugs and improves compatibility. This is not a security update.
https://www.scootersoftware.com/download.php?zz=dl4

ControlMyMonitor 1.31 adds a new parameter for Secondary displays. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html

CPU-Z 1.99 adds support for new hardware and resolves a couple bugs. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

DesktopOK 9.51 adds dark mode. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 2.9.482.0 resolves several bugs. This is not a security update.
https://dngrep.github.io/

Etcher 1.7.3 is a security update.
https://www.balena.io/etcher/

Everything 1.4.1.1015 resolves several bugs. This is not a security update.
https://www.voidtools.com/

Everything CLI 1.1.0.21 resolves several bugs. This is not a security update.
https://www.voidtools.com/

FileLocator Pro 2022.3283 provides performance and reliability improvements. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

GoodSync 11.10.0 resolves several bugs and improves stability. This is not a security update.
https://www.goodsync.com/

Homedale 2.02 improves colors. This is not a security update.
https://www.the-sz.com/products/homedale/

Macrium Reflect 8.0.6495 doesn’t provide a changelog, so should be treated as a security update.
https://www.macrium.com/reflectfree

NTLite 2.3.2.8526 updates libraries and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

osquery 5.1.0 adds resource limiting, new objects, and resolves several bugs. This is not a security update.
https://osquery.io/downloads

PowerToys 0.53.1 adds several new features and resolves bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Process Monitor 3.87 fixes resolves several bugs. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/procmon

Samsung Magician 7.0.1 is a major update, but doesn’t provide a changelog so should be treated as a security update.
https://www.samsung.com/semiconductor/minisite/ssd/download/tools/

SearchMyFiles 3.16 is a cosmetic update. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

Sysmon 13.31 improves reliability. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

TeamViewer 15.25.8 fixes a VOIP bug. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

TraceRouteOK 2.71 updates language files. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK

WifiInfoView 2.72 updates the internal MAC database and resolves a high-DPI bug. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

ZoomText 2022.2112.10.400 resolves several bugs and improves display. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

Maraura 3.9.7 updates Java support and libraries, and resolves several bugs. This is a security update.
http://arianne.sourceforge.net/engine/marauroa.html

Docker Desktop 4.3.2 updates the scan engine to detect log4j vulnerabilities. This is a security update.
https://www.docker.com/products/docker-desktop

Godot 3.4.2 updates libraries and resolves several bugs. This is a security update.
https://godotengine.org/

Node.js 12.22.9 is a security update.
https://nodejs.org/en/

Node.js 14.18.3 is a security update.
https://nodejs.org/en/

Node.js 16.13.2 is a security update.
https://nodejs.org/en/

Node.js 17.3.1 is a security update.
https://nodejs.org/en/

SQLite 3.37.2 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

Web Package Updates

These are likely to be of interest only to web developers.

Drupal 9.3.2 resolves a major stability bug. This is not a security update.
https://drupal.org/download

HumHub 1.10.3 is a security update.
https://www.humhub.com/en/download

MailArchiva 8.5.6 resolves several bugs. This is not a security update.
https://mailarchiva.com/

ownCloud Server 10.9 is a security update.
https://owncloud.org/install/

Piwigo 12.2.0 resolves several bugs. This is not a security update.
https://piwigo.org/

ScreenConnect 21.14.5924.8013 resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

SMF 2.0.19 is a security update.
https://www.simplemachines.org/

WordPress 5.8.3 is a security update.
https://wordpress.org/

Slider Revolution 6.5.14 updates libraries and resolves several bugs. This is not a security update.
https://revolution.themepunch.com/

WPBakery 6.8.0 improves compatibility and resolves several bugs. This is not a security update.
https://wpbakery.com/

Autoptimize 2.9.5 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/autoptimize/

BuddyPress 9.2.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/buddypress/

Social Post Feed 4.1.1 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/custom-facebook-feed/

Postie 1.9.59 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/postie/

NextScripts Social Networks Auto-Poster 4.3.25 is a security update.
https://wordpress.org/extend/plugins/social-networks-auto-poster-facebook-twitter-g/

Visual Composer 41.1 improves compatibility. This is not a security update.
https://visualcomposer.com/

WooCommerce 6.1.0 is a major update, resolving several bugs and adding features. This is not a security update.
https://wordpress.org/extend/plugins/woocommerce/

WordPress Zero Spam 5.2.9 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/zero-spam/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2021-12-14

Welcome back, Folks!

Today is Patch Tuesday for December, 2021. This month has been relatively mild, especially for the typical user. Businesses are facing some serious Christmas disasters including massive botnets targeting WordPress, Log4j, payment platforms, and state-run “passport” systems. Nevertheless, the grind continues.

This Month in Technology

ActMobile Networks (VPN), Alberta HealthAstoria Company LLC, thousands of AT&T Edgewater Networks devicesAtrafBay Village High SchoolBeaverhead County High SchoolBioPlus Specialty Pharmacy Services, LLCBitmartBrazilian Ministry of HealthBroward Public SchoolsBrussels Bru-VaxBureau VeritasCentral Depository Services LtdCalifornia Pizza KitchenCostcoCox CommunicationsDeKalb County School DistrictDelta-Montrose Electric AssociationDNA Diagnostics CenterEpiscopal Retirement ServicesEscambia County School DistrictEskenazi HealthEvanston Township High SchoolFlorida Heart AssociatesFrench-Public School BoardFrontier SoftwareGoDaddy Inc (and 123Reg, Domain Factory, Heart Internet, Host Europe, Media Temple, and tsoHost), GravatarHeadwaters Health Care CentreHealth Service ExecutiveHellman Worldwide LogisticsHikvision surveillance systemsHisar health departmentHPE, dozens of HP printer modelsHuntington HospitalIDC GamesIKEAIndonesian police, various Iranian gas stationsJohnson Memorial HealthKisters AGKMSPicoKronosLakeside SchoolLINE PayLewis and Clark Community CollegeMaryland Department of HealthManhasset School DistrictMicrosoft Exchange ServersMedsurant HealthMNG CargoNewfoundland and Labrador Health-Care SystemNordic Choice HotelsNorth Oklahoma County Mental Health CenterNortheastern UniversityNowiny Commune OfficeOld Pulaski Middle SchoolOne Community HealthOregon Anesthesiology Group, P.C.Pakistan’s National Database Biometric DataPanasonicPellissippi State Community CollegePlanned Parenthood Los Angeles, millions of PlayStation 5 devicesQNAP NAS devicesRedDoorzRideau Valley Health CentreRiverhead Central School DistrictRobinhoodS&R Membership ShoppingSanDisk SecureAccessSea Mar Community Health CentersShelley School DistrictSimon Eye Management, millions of Sky RoutersSonicWall SMA 100 VPNsSouth Australian GovernmentSouthern Ohio Medical CenterSPAR StoresSpotswood Public SchoolsStor-a-file LimitedStripchatSupernus Pharmaceuticals, Inc., Swire Pacific OffshoreTATATP-Link routersTrue Health New MexicoTulane University Medical CenterUlss 6 EuganeaUS defense contractorsU.S. State DepartmentUtah Imaging AssociatesVirginia’s Division of Legislative Automated SystemsVestasVolvoWaikato DHBYemeksepetiZa: Standard Bank, and Zoho ServiceDesk have reportedly been hacked this month.

A Tesla server outage prevented owners worldwide from unlocking their cars.

Another 5 hour outage at AWS caused problems for thousands of websites that depend upon the “reliability” of cloud services. Netflix, Ring, Amazon Prime Video, Amazon deliveries, and Roku were just a few affected sites and services.

Google Photos suffered from a bug for 10 days that damaged all downloads over 128 MB. They alerted their customers to the problem about a month after fixing the bug.

Instead of focusing on providing a more secure product, Apple is suing the NSO Group for developing malware that exploits vulnerabilities in Apple products.

Google, Apple and Samsung payment services exposed to provide unlimited access to digital wallets without authentication.

Grafana – used in thousands of applications for the gorgeous displays it can provide – has patched multiple critical security vulnerabilities. Expect vendors to play catch-up as they release updates that update their Grafana libraries.

Like Grafana, Log4j is another widely used engine across thousands of applications – mostly in corporate and enterprise applications. It’s been exploited in 40% of corporate networks globally, so far. It’s not just corporate risk – even Minecraft is vulnerable.

A massive series of attacks targeting managed WordPress websites has compromised at least 1.8 million sites so far. Merely patching the sites and removing unused and out-dated plugins and themes would have eliminated the risk here.

Now for the good news:

Alexa.com is finally being shut down after 25 years of misrepresenting the web.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday this month is smaller than it has been in months. The typical computer should see roughly 2 GB in updates today. Let’s get started.

Microsoft released updates for Windows, Edge, .NET, and MSRT (~1.5 GB). This includes updates for Windows Server 2008. This includes security updates. A reboot is required.

Apple released updates for macOS Monterey 12.1, macOS Big Sur 11.6.2, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, tvOS 15.2, watchOS 8.3, and watchOS 8.1.1. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 15.2 is a security update. Use Settings, General, Software Update to install the most current update.

iPadOS 15.2 is a security update. Use Settings, General, Software Update to install the most current update.

tvOS 15.2 is a security update. Use System, Software Update to install the most current version.

watchOS 8.3 and 8.1.1 are security updates. Use the Watch app on your iPhone to install the most current version.

Google Chrome OS 96.0.4664.77 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Monterey (12.x) means that macOS Mojave (10.14) and older are no longer supported. If you can not install at least macOS Catalina (10.15) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v21H2) is very large so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 6 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

The now-current release of the Windows 11 (v21H2) is very large so will take a long time to download on slower connections. Windows 11 pushes you to get the latest Windows 11 release every 6 months and only supports any consumer builds for 24 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 is still very young so I encourage you to wait a few more months before you consider switching to it.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Citizen Driver 2021.3 adds support for over 430 hardware printer models and resolves several minor bugs. This is not a security update.
https://www.seagullscientific.com/support/downloads/drivers/citizen/download/

CognitiveTPG Driver 2021.3 adds support for over 430 hardware printer models and resolves several minor bugs. This is not a security update.
https://www.seagullscientific.com/support/downloads/drivers/cognitivetpg/download/

Logitech Options 9.40.86 adds support for new hardware and resolves several bugs. This is not a security update.
https://support.logi.com/hc/en-us/articles/360025297893

Logitech SetPoint 6.70.55 adds support for new hardware and resolves several bugs. This is not a security update.
https://support.logi.com/hc/en-us/articles/360025141274

Xerox Smart Start 1.6.28.0 adds support for newer drivers. This is not a security update.
https://www.support.xerox.com/en-us/content/143617

Zebra Driver 2021.3 adds support for over 430 hardware printer models and resolves several minor bugs. This is not a security update.
https://www.seagullscientific.com/support/downloads/drivers/zebra/download/

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.32.115 is a security update.
https://brave.com/

Google Chrome 96.0.4664.110 is a security update.
https://www.google.com/chrome/

Microsoft Edge 96.0.1054.53 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 95.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 91.4.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

SeaMonkey 2.53.10.1 is a security update.
https://www.seamonkey-project.org/

Vivaldi 5.0.2497.28 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 91.4.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 7.0.4 resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk for macOS 6.3.3 improves M1 compatibility. This is not a security update.
https://anydesk.com/en/downloads

curl 7.80.0 resolves over 100 bugs. This should be treated as a security update.
https://curl.haxx.se/windows/

Dropbox 136.4.4345 doesn’t provide a changelog so should be treated as a security update.
https://www.dropbox.com/

FileZilla Client 3.57.0 updates libraries and resolves several bugs. This is not a security update.
https://filezilla-project.org/

FreeFileSync 11.15 resolves several bugs and improves user interface and compatibility. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 54.0 improves compatibility and resolves several bugs. This is not a security update.
https://drive.google.com/start

Npcap 1.60 resolves over a dozen bugs and improves stability. This is not a security update.
https://nmap.org/npcap/

Syncthing 1.18.5 resolves several bugs. This is not a security update.
https://syncthing.net/

Telegram 3.3.0 adds media distribution controls, bot improvements and channel controls. This is not a security update.
https://telegram.org/

WinSCP 5.19.5 resolves several bugs and adds Google Cloud S3 API support. This is not a security update.
https://winscp.net/eng/index.php

Zoom 5.8.7.2058 adds many new features and resolves a dozen bugs, mostly with compatibility. This is a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 2.0.19 improves compatibility with VRoid Studio and adds Leap Motion. This is not a security update.
https://en.3tene.com/

Plex Desktop 1.39.1.2763 resolves code signing. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Home Theater 1.9.0.2741 adds audio stream selection, resolves several bugs, and improves stability. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.25.2.5319 resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

GameMaker Studio 2.3.7.606 improves reliability and performance, and resolves several bugs. This is not a security update.
https://www.yoyogames.com/en/gamemaker

Nintendo Switch 13.2.0 improves stability. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PS5 21.02-04.50.00 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2021.11.19 resolves several bugs, improves reliability and stability. This is a security update.

Office Updates

One or more of these are likely to be of interest to most people.

Audacity 3.1.2 improves stability. This is not a security update.
https://www.audacityteam.org/download/

Blender 3.0 is a major new version with dozens of new features, improvements in modeling, shadows, geometry and more. This is not a security update.
https://www.blender.org/download/

LibreOffice Fresh 7.2.4 is a security update.
https://www.libreoffice.org/

LibreOffice Still 7.1.8 is a security update.
https://www.libreoffice.org/

Notepad++ 8.1.9.3 resolves several bugs and improves diagnostics to troubleshoot a persistent crash bug. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 4.3.4 resolves several bugs. This is not a security update.
https://www.getpaint.net/

PDF-XChange Editor 9.2.359.0 resolves several bugs. This is not a security update.
https://www.tracker-software.com/product/pdf-xchange-editor

Adobe Premiere Rush 2.0 is a security update.
https://helpx.adobe.com/security/products/premiere_rush/apsb21-101.html

Adobe Experience Manager 6.5.11 is a security update.
https://helpx.adobe.com/security/products/experience-manager/apsb21-103.html

Adobe Connect 11.4 is a security update.
https://helpx.adobe.com/security/products/connect/apsb21-112.html

Adobe Photoshop 22.5.4 and 23.1 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb21-113.html

Adobe Prelude 22.1.1 is a security update.
https://helpx.adobe.com/security/products/prelude/apsb21-114.html

Adobe After Effects 22.1.1 and 18.4.3 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb21-115.html

Adobe Dimension 3.4.4 is a security update.
https://helpx.adobe.com/security/products/dimension/apsb21-116.html

Adobe Premiere Pro 15.4.3 and 22.1.1 are security updates.
https://helpx.adobe.com/security/products/premiere_pro/apsb21-117.html

Adobe Media Encoder 15.4.3 and 22.1.1 are security updates.
https://helpx.adobe.com/security/products/media-encoder/apsb21-118.html

Adobe Lightroom 5.1 is a security update.
https://helpx.adobe.com/security/products/lightroom/apsb21-119.html

Adobe Audition 14.4.3 and 22.1.1 are security updates.
https://helpx.adobe.com/security/products/audition/apsb21-121.html

Security Software Updates

One or more of these is likely to be of interest to most people.

Tails 4.25 adds backups, external storage support, updates applications and resolves several bugs. This is a security update.
https://tails.boum.org/install/dvd-download/index.en.html

BelArc Advisor 11.1 doesn’t provide a changelog so should be treated as a security update.
https://www.belarc.com/products_belarc_advisor

Chainsaw 1.1.4 improves logging, error handling, and removes progress bar for reliability. This is not a security update.
https://github.com/countercept/chainsaw

Hashcat 6.2.5 improves improves hardware compatibility, performance, and resolves several bugs. This is a security update.
https://hashcat.net/hashcat/#downloadlatest

RogueKiller 15.1.4 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

uBlock Origin 1.39.2 resolves several bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

VT-CLI 0.10.0 adds support for managing collections. This is not a security update.
https://github.com/VirusTotal/vt-cli/releases/latest

Wireless Network Watcher 2.26 updates internal MAC address database and improves high-DPI support. This is not a security update.
https://www.nirsoft.net/utils/wireless_network_watcher.html

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 2022.0.0 adds several new features including a universal file format, cross-platform markup, and cloud storage, improves performance, and resolves several bugs.
https://download.techsmith.com/snagit/releases/snagit.msi

VideoCacheView 3.08 adds compatibility with newer browser builds. This is not a security update.
https://www.nirsoft.net/utils/video_cache_view.html

Converter Updates

These are unlikely to be of interest to most people.

PDF Creator 4.4.1 resolves several bugs. This is not a security update.
https://www.pdfforge.org/pdfcreator

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 7.9.2 improves compatibility and resolves several bugs. This is not a security update.
https://1password.com/downloads/mac/

7-Zip 21.06 adds memory controls, dictionary size improvements, hash validation support, and resolves several bugs. This is not a security update.
https://www.7-zip.org/

Agent Ransack 2022.3277 adds OCR, new themes, improves indexing, and resolves several bugs. This is not a security update.
https://www.mythicsoft.com/agentransack/download/

Bitcoin 22.0 removes defunct protocols, updates privacy and resolves several bugs. This is not a security update.
https://bitcoin.org/en/download

Carbonite 6.4.0 improves compatibility. This is not a security update.
https://account.carbonite.com/

Cygwin 3.3.3 resolves several bugs. This is not a security update.
https://cygwin.com/

DesktopOK 9.44 adds dark theme support, high-DPI improvements, and several bug fixes. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

Etcher 1.7.1 resolves several bugs. This is not a security update.
https://www.balena.io/etcher/

Fido 1.27 adds support for Windows 10 v21H2. This is not a security update.
https://github.com/pbatard/Fido/releases

FileLocator Pro 2022.3277 adds OCR, new themes, improves indexing, and resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Git SCM 2.34.1 resolves several bugs. This is not a security update.
https://git-scm.com/

GoodSync 11.9.7 resolves several bugs. This is not a security update.
https://www.goodsync.com/

grepWin 2.0.9 improves reliability and adds exact match support. This is not a security update.
https://github.com/stefankueng/grepWin/releases/latest

Homedale 2.01 improves MAC Address vendor detection and IE DFS dump. This is not a security update.
https://www.the-sz.com/products/homedale/

IsMyHdOK 3.44 improves accuracy. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

NTLite 2.3.2.8519 resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

PointerStick 5.61 improves high-DPI support and resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.51.1 improves stability. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

ReactOS 0.4.13.32 resolves over a hundred bugs, and improves stability, compatibility and reliability. This is a security update.
https://reactos.org/

SearchMyFiles 3.15 improves summary mode, zero-value filters, and search improvements. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

Synergy 1.14.2 resolves over a dozen bugs, improves reliability, adds M1 support, and adds automatic restart on settings change. This is not a security update.
https://symless.com/synergy/

TraceRouteOK 2.66 adds dark theme support, high-DPI improvements, and several bug fixes. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK

USB Oblivion 1.17.0.0 resolves a key name bug and improves performance. This is not a security update.
http://www.cherubicsoft.com/en/projects/usboblivion

WakeMeOnLan 1.90 adds global and bulk WOL support and updates MAC addresses databases. This is not a security update.
https://www.nirsoft.net/utils/wake_on_lan.html

WhyNotWin11 2.4.3.1 improves stability, hardware detection, and compatibility improvements. This is not a security update.
https://github.com/rcmaehl/WhyNotWin11

WinScan2PDF 7.51 resolves several minor bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 4.07 improves MTP/PTP compatibility, reliability, and resolves several bugs. This is not a security update.
https://www.diskanalyzer.com/

ZoomText 2021 2021.2111.4.400 improves compatibility. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

ZoomText 2022 2022.2110.70.400 improves compatibility. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

Docker Desktop 4.3.1 is a security update.
https://www.docker.com/products/docker-desktop

Node.js v14 14.18.2 updates libraries and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Node.js v16 16.13.1 updates libraries and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Node.js v17 17.2.0 updates libraries and resolves several bugs. This is not a security update.
https://nodejs.org/en/

Redemption 6.1.0.6054 adds MarkSaved and OverridePSTDisableGrow, and IMAP4 controls, and resolves several bugs. This is not a security update.
https://www.dimastr.com/redemption/

SQLite 3.37.0 improves STRICT, CHECK constraints, and CLI improvements. This is not a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.63 adds several features and improves compatibility. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 6.1.30 resolves several bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Coppermine Gallery 1.6.16 improves compatibility and resolves a couple bugs. This is not a security update.
https://coppermine-gallery.net/

Drupal 9.3.0 updates libraries and dependencies, improves compatibility, and resolves a couple bugs. This is not a security update.
https://drupal.org/download

HumHub 1.10.2 resolves several bugs. This is not a security update.
https://www.humhub.com/en/download

MailArchiva 8.4.1 is a security update.
https://mailarchiva.com/

Nextcloud Server 23.0.0 is a major update adding massing performance improvements, improved external integrations, Backup and more. This is not a security update.
https://nextcloud.com/

ownCloud Client 2.9.2.6206 resolves several bugs. This is not a security update.
https://owncloud.com/desktop-app/

phpList 3.6.6 is a security update.
https://www.phplist.org/

Piwigo 12.1.0 resolves several bugs. This is not a security update.
https://piwigo.org/

ScreenConnect 21.14.5791.8004 improves reliability and resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

WordPress 5.8.2 is a security update.
https://wordpress.org/

Autoptimize 2.9.3 improves multisite support and resolves several bugs. This is not a security update.

bbPress 2.6.9 resolves several bugs. This is not a security update.

Contact Form 7 5.5.3 improves Constant Contact integration, filters and form properties. This is not a security update.

Slider Revolution 6.5.11 resolves several bugs. This is not a security update.

Social Post Feed 4.1 updates libraries and resolves several bugs. This version will need to reconnect to any Facebook feeds you use. This is not a security update.

Theme My Login 7.1.4 resolves several bugs. This is not a security update.

W3 Total Cache 2.2.1 resolves several bugs. This is not a security update.

WP Mail SMTP 3.2.1 improves compatibility. This is not a security update.

WordPress Zero Spam 5.2.8 resolves several bugs. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2021-11-09

Welcome back, Folks!

Today is Patch Tuesday for November, 2021.

This month we’ve got the new macOS (Monterey) which is bricking Macs, Windows 11 (don’t do it!), and a new build of Windows 10 (v21H2) is slated for release within the next few days. If you’re running a version of Windows 10 prior to v20H2 (v2009/19042) then you’ll want to install either Windows 10 v21H1 or prepare to install v21H2 on release, as the older versions will no longer be supported in only a month.

This Month in Technology

Acer (a couple times), American Osteopathic AssociationAnthem, Inc., Apple iCloudArgentina’s National Registry of PersonsBillQuick, Blue Cross of California, Bryan HealthbZxCalifornia Physicians’ Services (Blue Shield of California), Canadian province of Newfoundland and Labrador Health SystemsCentara Hotels & ResortsClinical Pathology Diagnostics, LLCCoinMarketCapColleton County School District (SC), Community Medical CentersCyberserveDeep 6 AIDiscord CDN (still), Discourse, Doctors Health Group, Inc., Domaining.comElectronic Warfare (US defense contractor), EU Digital Covid certificate system “Green Pass”Exterity IPTVFamily of WoodstockFerrara Candy CoFullerton HealthGigabyteGitLab serversGraffHariexpressHumana IncInstagram and TikTokKasperskyLas Vegas Cancer CenterLavaca Medical CenterMachon MorMaxim Healthcare GroupMediaMarkt, many more Microsoft Exchange servers, Missouri Delta Medical CenterMLBNational Iranian Oil Products Distribution CompanyNationwide Laboratory ServicesNorth American Dental Management, a bunch of NPM librariesNRAOlympusOpenSea NFTPainters District Council No. 30 Health and Welfare FundPhilips Tasy EMRPlaybookPractice MaxPremier Patient HealthcareProfessional Dental AlliancePutnam County Memorial HospitalQRS, Inc., Quest Diagnostics ReproSourceQuickfoxRobinhoodRussia’s Federal Information SystemScoolioSCUF Gaming InternationalSeneca Family of AgenciesSinclair TVSocietà Italiana degli Autori ed EditoriSurecare Specialty PharmacySyracuse ASC, LLCTescoThingiverseThrockmorton County Memorial Hospitaltribal casinosTwitchTwitterUK Councils (dude!), UK Labour PartyUNC HospitalsUniversity of Colorado BoulderUMass Memorial HealthUniversity of SunderlandThe Urology Center of ColoradoUS Immigration and Customs Enforcement’s Homeland Security InvestigationsUS Water and Wastewater SystemsNational Health Service of UkraineVenmo used to syphon bank accounts, VisibleVisual Tool DVRsViverant PT, LLCWashington Central Unified Union School District (VT), and, of course, more Zoho ManageEngine servers than you can shake a stick at, have been hacked this month.

Google Chromebook enrollmentMicrosoft 365KT, and Voipfone have suffered outages this month. Microsoft overlooked expired certificates again, and Microsoft is force-installing crapware again, as well.

Pwn2Own this year demonstrated over 60 hacks across dozens of devices. Default password patterns (like your phone number) are sadly and unsurprisingly insecure. Facebook will (supposedly) delete 1 billion faceprintsYahoo pulled out of China and YouTube is pushing malware. Mozilla has finally removed two malicious add-ons that have been weakening security for half a million users. macOS Monterey is bricking MacsCanon is being sued for disabling their printers. And McAfee is being purchased by an “investor consortium.”

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday this month is very large. The typical computer should see roughly 3.0 GB in updates today. Let’s get started.

Microsoft released updates for Windows, Edge, .NET, Servicing Stack, Internet Explorer, Windows 7, Windows Server 2008 R2, Server 2012, and MSRT (~2.3 GB). This includes security updates. A reboot is required.

Apple released updates for iOS 14.8.1, iOS 15.1, iPadOS 14.8.1, iPadOS 15.1, Safari 15.1, macOS Big Sur 11.6.1, macOS Monterey 12.0.1, Security Update 2021-007 Catalina, tvOS 15.1, and watchOS 8.1. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 14.8.1 and 15.1 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 14.8.1 and 15.1 are security updates. Use Settings, General, Software Update to install the most current update.

tvOS 15.1.1 is a security update. Use System, Software Update to install the most current version.

watchOS 8.1 is security updates. Use the Watch app on your iPhone to install the most current version.

Google Chrome OS 94.0.4606.114 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Fedora 35-1.2 is a major update, adding several new configuration and control features, and updates libraries. This is not a security update.
https://getfedora.org/en/workstation/download/

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Monterey (12.x) means that macOS Mojave (10.14) and older are no longer supported. If you can not install at least macOS Catalina (10.15) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v21H1) is very large, for the first time it’s actually smaller than the previous release, but it will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 6 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Windows 11 has been released, but it has only been out a few weeks so should be considered beta software. Give it at least a couple months before you install it on your devices.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.4.6 improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.31.88 is a security update.
https://brave.com/

Google Chrome 95.0.4638.69 is a security update.
https://www.google.com/chrome/

Iridium 2021.10.95 is a security update.
https://iridiumbrowser.de/

Microsoft Edge 95.0.1020.44 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 94.0.1 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 91.3.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Vivaldi 4.3.2439.65 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 91.3.0 is a security update.
https://www.thunderbird.net/en-US/

OutlookAttachView 3.44 resolves a profile selection bug. This is not a security update.
https://www.nirsoft.net/utils/outlook_attachment.html

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk 6.3.5 resolves a couple bugs. This is not a security update.
https://anydesk.com/en/downloads

Dropbox 134.4.4115 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.dropbox.com/

FileZilla Client 3.56.2 resolves several bugs and improves compatibility. This is not a security update.
https://filezilla-project.org/

FileZilla Server 1.1.0 is a security update.
https://filezilla-project.org/

Google Drive 52.0 improves compatibility, no longer respects custom cache location mapping, forcefully overwrites the destination of any link named “Google Drive,” and improves performance. This is not a security update.
https://drive.google.com/start

Rclone 1.57.0 resolves dozens of bugs and improves reliability, compatibility and stability for several platforms and protocols. This is not a secuirty update.
https://rclone.org/

Skype 8.77.0.97 adds background blurring, user pinning, Meet Now improvements, and resolves several bugs. This is not a security update.
https://www.skype.com/

Syncthing 1.18.4 resolves several bugs. This is not a security update.
https://syncthing.net/

Technitium DNS Server 7.1 adds certificate generation, Block Page App, Drop Requests App, Query Logs App, Advanced Blocking App, improves logging, and resolves several other bugs. This is a security update.
https://technitium.com/dns/

Telegram 3.2.3 resolves a couple bugs. This is not a security update.
https://telegram.org/
This month Telegram also added advertising support – a harsh reminder that the platform is run by a Russian company.

WinSCP 5.19.4 resolves a couple bugs. This is not a security update.
https://winscp.net/eng/index.php

Zoom 5.8.3.1581 adds administrative controls, improvements in Meeting, webinar, chat, and resolves several bugs. This is a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

3tene 2.0.18 improves tracking and expression matching reliability. This is not a security update.
https://en.3tene.com/

iTunes 12.12.2 doesn’t provide a changelog so should be considered a security update.
https://www.apple.com/itunes/download/

Plex Home Theater 1.7.0.2676 improves update check and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.24.5.5173 improves database structure, search matching, and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Nintendo Switch 13.1.0 adds support for the new expansion pack. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PlayStation PS5 21.02-04.03.00 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2021.10.14 resolves several bugs. This is not a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Office Updates

One or more of these are likely to be of interest to most people.

Audacity 3.1.0 improves usability, adds clip handle bars, smart clips, and reworks the looping feature. This is not a security update.
https://www.audacityteam.org/download/

LibreOffice Still 7.1.7 resolves 27 bugs. This is not a security update.
https://www.libreoffice.org/

LibreOffice Fresh 7.2.2 resolves almost 70 bugs. This is not a security update. Be aware that the “Fresh” line is beta software and should be avoided in favor of the “Still” line.
https://www.libreoffice.org/

Nextcloud Desktop 3.3.6 resolves several bugs. This is a security update.
https://nextcloud.com/

Notepad++ 8.1.9 resolves several stability bugs. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 4.3.2 improves performance of Tools and plugins, and resolves a reliability bug. This is not a security update.
https://www.getpaint.net/

PDF-XChange Editor 9.2.358.0 resolves several bugs. This is a security update.
https://www.tracker-software.com/product/pdf-xchange-editor

RoboHelp Server RHS2020.0.2 is a security update.
https://helpx.adobe.com/security/products/robohelp-server/apsb21-87.html

Adobe InCopy 17.0 is a security update.
https://helpx.adobe.com/security/products/incopy/apsb21-110.html

Adobe Creative Cloud 5.6 is a security update.
https://helpx.adobe.com/security/products/creative-cloud/apsb21-111.html

Adobe After Effects 18.4.2 and 22.0 are security updates.
https://helpx.adobe.com/security/products/after_effects/apsb21-79.html

Adobe Audition 14.4.2 and 22.0 are security updates.
https://helpx.adobe.com/security/products/audition/apsb21-92.html

Adobe Bridge 11.1.2 and 12.0 are security update.
https://helpx.adobe.com/security/products/bridge/apsb21-94.html

Adobe Character Animator 4.4.2 and 22.0 are security updates.
https://helpx.adobe.com/security/products/character_animator/apsb21-95.html

Adobe Prelude 22.0 is a security update.
https://helpx.adobe.com/security/products/prelude/apsb21-96.html

Adobe Lightroom Classic 10.4 and 11.0 are security updates.
https://helpx.adobe.com/security/products/lightroom/apsb21-97.html

Adobe Illustrator 25.4.2 and 26.0 are security updates.
https://helpx.adobe.com/security/products/illustrator/apsb21-98.html

Adobe Media Encoder 15.4.2 and 22.0 are security updates.
https://helpx.adobe.com/security/products/media-encoder/apsb21-99.html

Adobe Premiere Pro 15.4.2 and 22.0 are security updates.
https://helpx.adobe.com/security/products/premiere_pro/apsb21-100.html

Adobe Animate 22.0 is a security update.
https://helpx.adobe.com/security/products/animate/apsb21-105.html

Adobe Premiere Elements 19.0 is a security update.
https://helpx.adobe.com/security/products/premiere_elements/apsb21-106.html

Adobe InDesign 17.0 is a security update.
https://helpx.adobe.com/security/products/indesign/apsb21-107.html

Adobe XMP Toolkit SDK 2021.08 is a security update.
https://helpx.adobe.com/security/products/xmpcore/apsb21-108.html

Adobe Photoshop 22.5.2 and 23.0 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb21-109.html

Security Software Updates

One or more of these is likely to be of interest to most people.

RogueKiller 15.1.3 updates engine and resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

Tails 4.24 is a security update.
https://tails.boum.org/install/dvd-download/index.en.html

TinyWall 3.2.3 resolves several bugs. This is not a security update.
https://tinywall.pados.hu/

uBlock Origin 1.38.6 resolves compatibility with Twitch. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

YARA 4.1.3 should be treated as a security update.
https://github.com/countercept/chainsaw

Capture Updates

These are unlikely to be of interest to most people.

ScreenToGif 2.34.1 replaces update engine and resolves several bugs. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

Converter Updates

These are unlikely to be of interest to most people.

MakeMKV 1.16.5 improves stability and resolves several bugs. This is not a security update.
https://www.makemkv.com/download/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 7.9.1 adds support for macOS Monterey, and resolves several bugs. This is not a security update.
https://1password.com/downloads/mac/

1Password for Windows 7.9.828 resolves several bugs. This is not a security update.
https://1password.com/downloads/windows/

AccessEnum 1.33 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/accessenum

Autoruns 14.06 resolves several bugs. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/autoruns

BatteryInfoView 1.25 updates tray tooltip to display information on multiple batteries. This is not a security update.
https://www.nirsoft.net/utils/battery_information_view.html

Bitwarden 1.28.3 resolves several bugs. This is not a security update.
https://bitwarden.com/

CacheSet 1.01 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/cacheset

Contig 1.81 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/contig

ControlMyMonitor 1.30 improves error handling. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html

CPU-Z 1.98 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

Cygwin 3.3.1 resolves a compatibility bug. This is not a security update.
https://cygwin.com/

DesktopOK 9.31 adds option to customize DPI values. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

Desktops 2.01 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/desktops

Disk2vhd 2.02 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/disk2vhd

DiskMon 2.02 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/diskmon

dnGrep 2.9.428.0 resolves cancel bug, .gitignore filtering, theme improvements, and PDF association. This is not a security update.
https://dngrep.github.io/

EFSDump 1.03 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/efsdump

Everything Toolbar 0.7.3 adds option to enable or disable thumbnails and hotkey handling. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

Git SCM 2.33.1 improves compatibility and resolves several bugs. This is not a security update.
https://git-scm.com/

GoodSync 11.9.3 resolves dozens of bugs. This is not a security update.
https://www.goodsync.com/

Homedale 2.00 adds new column for Station Count. This is not a security update.
https://www.the-sz.com/products/homedale/

HWMonitor 1.45 adds support for new hardware and disk read/write speeds. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

Java 8u311 is a security update.
https://www.java.com/en/download/manual.jsp

LessMSI 1.10.0 adds support for MSP files, MSI Stream names and resolves a cache bug. This is not a security update.
https://lessmsi.activescott.com/

LoadOrder 1.02 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/loadorder

NTLite 2.3.1.8454 adds new components, settings, and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

Aomei Partition Assistant 9.5.0 adds SMART health checks and improves update behavior. This is not a security update.
https://www.diskpart.com/

PointerStick 5.55 updates languages. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.49.1 resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

ProcessMonitor 3.86 updates icons. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/procmon

PsShutdown 2.53 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/psshutdown

RegJump 1.11 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/regjump

RoboForm 9.2.1 improves compatibility, import, sync performance, and resolves several bugs. This is not a security update.
https://www.roboform.com/

Rufus 3.17 resolves several bugs and updates libraries. This should be treated as a security update.
https://rufus.ie/en_US/

ShareEnum 1.61 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/shareenum

ShellRunas 1.02 updates libraries. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/shellrunas

SimpleWMIView 1.46 adds error handling and improves high-DPI support. This is not a security update.
https://www.nirsoft.net/utils/simple_wmi_view.html

Sysmon 13.30 resolves several bugs, improves stability, and adds user fields for events. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

TCPView 4.16 updates icons. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/tcpview

WinObj 3.13 updates icons. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/tcpview

Windows 11 RCT 1.3.1 improves detection of CPU features and updates languages. This is not a security update.
https://bytejams.com/

WinScan2PDF 7.44 improves hardware compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 4.04 adds support for mobile devices and resolves several bugs. This is not a security update.
https://www.diskanalyzer.com/

ZoomText 2021.2111.2.400 resolves compatibility bugs. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

ZoomText 2022.2110.47.400 resolves several bugs. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

Godot 3.4 improves user interface, input handling, adds large file support, frame delta smoothing, and dozens of other features. This is not a security update.
https://godotengine.org/

MySQL ConnectorNet 8.0.27 resolves several bugs. This is not a security update.
https://dev.mysql.com/downloads/connector/net/

Node.js 16.13.0 updates libraries, resolves several bugs and is promoted to LTS. This is not a security update.
https://nodejs.org/en/

Node.js 17.0.1 is a new major version adding OpenSSL 3.0 support, updates libraries,
https://nodejs.org/en/

Visual Studio Code 1.62 resolves over 4000 issues and adds vscode.dev beta. This should be treated as a security update.
https://code.visualstudio.com/

WinMerge 2.16.16 resolves several bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

PPSSPP 1.12.3 resolves a gamepad bunding bug. This is not a security update.
https://ppsspp.org/downloads.html

VirtualBox 6.1.28 resolves almost two dozen bugs. This should be treated as a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Dada Mail 11.17.1 resolves several bugs and improves the GUI. This is not a security update.
https://dadamailproject.com/

Docker Desktop 4.2.0 adds pause/resume, windows management, updates libraries, and resolves several bugs. This is not a security update.
https://www.docker.com/products/docker-desktop

Drupal 9.2.8 resolves several bugs. This is not a security update.
https://drupal.org/download

HumHub 1.9.2 resolves several bugs. This is not a security update.
https://www.humhub.com/en/download

MailArchiva 8.3.14 resolves several bugs. This is not a security update.
https://mailarchiva.com/

OpenPetra 2021.10 resolves several bugs and improves automation. This is not a security update.
https://www.openpetra.org/

ownCloud Client 2.9.1.5500 resolves several bugs. This is not a security update.
https://owncloud.com/desktop-app/

Piwigo 12.0.0 improves sorting, performance, maintenance, and adds bulk actions and logging. This is not a security update.
https://piwigo.org/

Contact Form 7 5.5.2 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/contact-form-7/

Social Post Feed 4.0.3 resolves several bugs and improves compatibility. This should be treated as a security update.
https://wordpress.org/extend/plugins/custom-facebook-feed/

Email Log 2.4.8 is a security update.
https://wordpress.org/extend/plugins/email-log/

Visual Composer 40.0 resolves several bugs. This is not a security update.
https://visualcomposer.com/

W3 Total Cache 2.1.9 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/w3-total-cache/

WooCommerce 5.9.0 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/woocommerce/

WordPress Zero Spam 5.1.5 resolves several bugs. This is not a security update.
https://wordpress.org/extend/plugins/zero-spam/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2021-10-12

Welcome back, Folks!

Today is Patch Tuesday for October, 2021.

This month we’ve got the new Microsoft Office, Windows 11, iOS 15, iPhone 13, and Windows Server 2022…so far. A new build of Windows 10 is still on the horizon, and a security update for Java is slated for next week. That said, Patch Tuesday this month is very large. The typical computer should see roughly 2.3 GB in updates today.

This Month in Technology

Amnesty InternationalAjarnApple AirTag, Apple Game CenterAzure DevOpsBanco PichinchaBank of AmericaBitcoin.orgBrewDog, the Canadian Vaccine Passport systemCanopy Parental ControlCoinbaseCompoundCox Media GroupCrystal ValleyDahua cams, various DVR devicesElastic StackFantasy Football HubGiant GroupForward AirHorizon HouseHuawei Cloud, various IT companiesJVCKenwoodMarketronMedtronic insulin pump controllers, Microsoft Windows Platform Binary TableMoneyLionNeiman MarcusNEW CooperativeOlympus USPacific City BankPlaybookPort of HoustonSandhills GlobalSimon Eye Management90% of the supply chainSyniverseThe TelegraphTwitch (there’s a lot of information out there about this Amazon property hack), United Health Centers, the US Navy, various aerospace and telco firms, various Apache Airflow servers, various Apache services, various Confluence servers, various hotels, various healthcare facilities, various real estate organizations, various University Wi-Fi networks, various VMware ESXi serversVertafore, and Weir Group.

The assets and financial information of 35 world leaders have been exposed in the Pandora Papers.

A Microsoft Azure customerBandwidth.com, and VoIP.ms have been struck by major denial of service attacks.

How serious are the privacy risks of RFID? The US military is using RFID to track their guns. This results in the ability to track (and target) those carrying the weapons.

How serious is ransomware? Another child has died as a result of equipment that was disabled during an attack.

The Google idle detection API can be used to abuse you only when it knows you’re not looking. For a company whose slogan was “don’t be evil,” and that has the highest paid programmers in the world, between idle detection and FLoC, they’re really proving to either not be able to anticipate the potential risks or they simply don’t care.

Firefox is now injecting ads into the address bar. Apple Pay allows hackers to take your money from your locked iPhonePhishing messages posing as Verizon are using mathematical symbols to evade detection. Intuit is warning users of phishing attacks targeting QuickBooks users. Popular projects on public repositories remain high profile targets. If you can’t trust the hacker you bought your exploit kit from, who can you trust? Sigh.

The biggest outage this month was the Facebook, Messenger, Instagram, Oculus, and WhatsApp that has lead to millions of users abandoning FacebookTrello has had a couple outages, too.

Microsoft is planning to randomly disable access to their customers to see if they’re using their services. Personally, I would just check the logs.

Microsoft 365 broke MFA again, locking users out of their accounts. And a bug in their Exchange Autodiscover implementation has leaked over a 100,000 credentials. A newly discovered UEFI bootkit has been backdooring Windows devices for almost a decade.

Google, the same company that warned of the risks of compromise through 2FA (as have many others), will be forcing 150 million accounts to use 2FA.
This is the same company that accidentally sent thousands of past due messages to their users last month. Their Android operating system is very privacy-averse, too.

A new ransomware strain doesn’t even both encrypting your files anymore, simply collecting a copy of your data and using the threat of release to extort their users.

If you’re still using a landline phone it’s probably because you don’t like change. Get ready, change is coming anyway. In order to more easily assist those having a mental health crisis, the FCC is going to require you to use full 1+10-digit dialing
when making any calls on a landline and 10-digit dialing from most mobile phones starting in late October. The intent is to make dialing a 3-digit number possible for the suicide hotline (988).

PG&E has been charged with causing yet another wildfire.

Now for the good news:

For what it’s worth, robocalls are now illegal.

Even the majority of IT professionals think patching is too hard. Don’t do it yourself, let me.

Let’s Get Busy

Now back to our regularly scheduled program.

Windows 11 is out. Even if your hardware supports it, don’t install it yet. Consider it in the “open beta” phase. The new build of macOS (12.0 / Monterey) should be released sometime soon, too. The same goes for that: consider it a beta for at least the first couple months.

Patch Tuesday this month is very large. The typical computer should see roughly 2.9 GB in updates today. Let’s get started.

Microsoft released updates for Windows, Edge, .NET, Servicing Stack, Internet Explorer, and MSRT (~2.3 GB). This includes updates for Windows Server 2008. This includes security updates. A reboot is required.

Apple released updates for watchOS 8.0.1, iOS 12.5.5, iOS 15.0.2, iPadOS 15.0.2, and Security Update 2021-006 Catalina. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 15.0.2 and 12.5.5 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15.0.2 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 8.0.1 are security updates. Use the Watch app on your iPhone to install the most current version.

Google Chrome OS 93.0.4577.95 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Big Sur (11.x) means that macOS High Sierra (10.13) and older are no longer supported. If you can not install at least macOS Mojave (10.14) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v21H1) is very large, for the first time it’s actually smaller than the previous release, but it will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 6 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.4.4 adds support for Windows 11 and improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

HP LaserJet Stub 13.4.8 doesn’t provide a detailed changelog so should be considered a security update.
https://123.hp.com/us/en/devices/LASERJET

MS Mouse and Keyboard Center 14 adds support for newer hardware, Spotlight and improves Smart Switch. This is not a security update.
https://www.microsoft.com/accessories/en-us/downloads/mouse-keyboard-center

Xerox Smart Start 1.6.26.0 doesn’t provide a detailed changelog so should be considered a security update.
https://www.support.xerox.com/en-us/content/143617

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.30.89 is a security update.
https://brave.com/

Google Chrome 94.0.4606.81 is a security update.
https://www.google.com/chrome/

Microsoft Edge 94.0.992.47 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 93.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 78.15.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

SeaMonkey 2.53.9.1 is a security update.
https://www.seamonkey-project.org/

Vivaldi 4.3.2439.44 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

OutlookAttachView 3.43 adds hi-DPI support and improves sorting behavior. This is not a security update.
https://www.nirsoft.net/utils/outlook_attachment.html

Thunderbird 91.2.0 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

Telegram 3.1.8 resolves several bugs. This is not a security update.
https://telegram.org/

curl 7.79.1 resolves several bugs. This is not a security update.
https://curl.haxx.se/windows/

Dropbox 132.4.3800 does not provide a changelog so should be treated as a security update.
https://www.dropbox.com/

FileZilla Client 3.56.0 is a security update.
https://filezilla-project.org/

Omada Software Controller 4.4.6 resolves several bugs. This is not a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Rclone 1.56.2 resolves several bugs. This is not a security update.
https://rclone.org/

Syncthing 1.18.3 improves reliability and resolves a cosmetic bug. This should be treated as a security update.
https://syncthing.net/

Technitium DNS Server 7.0 is a major update to the API and Apps feature, each of the Apps, adds several more Apps, and resolves several bugs. This is not a security update.
https://technitium.com/dns/

WGet 1.21.2 is a security update.
https://eternallybored.org/misc/wget/

WinSCP 5.19.3 is a security update.
https://winscp.net/eng/index.php

Zoom 5.8.1.1435 is a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

iTunes 12.12.1.1 doesn’t provide a changelog so should be treated as a security update.
https://www.apple.com/itunes/download/

Picard 2.6.4 resolves several bugs. This is not a security update.
https://picard.musicbrainz.org/

Plex Desktop 1.35.1.2632 corrects a couple minor bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Game Updates

These are unlikely to be of interest to most people.

PlayStation PS5 21.02-04.02.00 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Steam 2021.10.07 resolves several bugs. This is not a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Office Updates

One or more of these are likely to be of interest to most people.

Artweaver 7.0.10 resolves several bugs. This is not a security update.
https://www.artweaver.de/

Audacity 3.0.5 resolves bugs. This is not a security update.
https://www.audacityteam.org/download/

Blender 2.93.5 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.blender.org/download/

LibreOffice Fresh 7.2.1 resolves over 80 bugs. This is not a security update. The “Fresh” line is beta software and should be avoided in favor of the “Still” line.
https://www.libreoffice.org/

LibreOffice Still 7.1.6 resolves over 40 bugs. This is a security update.
https://www.libreoffice.org/

Nextcloud Desktop 3.3.5 improves security. This is not a security update.
https://nextcloud.com/

Notepad++ 8.1.5 adds date insertion and resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

OpenOffice 4.1.11 is a security update.
https://www.openoffice.org/download/

Adobe Reader DC 21.007.20099 is a security update.
https://get.adobe.com/reader

Adobe Acrobat DC 21.007.20099 is a security update.
https://helpx.adobe.com/security/products/acrobat/apsb21-104.html

Adobe Connect 11.2.3 is a security update.
https://helpx.adobe.com/security/products/connect/apsb21-91.html

Adobe Reader Mobile 21.9.0 is a security update.
https://helpx.adobe.com/security/products/reader-mobile/apsb21-89.html

Adobe ops-cli 2.0.5 is a security update.
https://helpx.adobe.com/security/products/ops_cli/apsb21-88.html

Adobe Commerce 2.4.3-p1 and 2.3.7-p2 are security updates.
https://helpx.adobe.com/security/products/magento/apsb21-86.html

Adobe Campaign 21.3.1 is a security update.
https://helpx.adobe.com/security/products/campaign/apsb21-52.html

Security Software Updates

One or more of these is likely to be of interest to most people.

PureOS 10.0 is a security update.
https://pureos.net/download/

Tails 4.23 is a security update.
https://tails.boum.org/install/dvd-download/index.en.html

OnionShare 2.4 is a security update.
https://onionshare.org/

RogueKiller 15.1.1 is a security update.
https://www.adlice.com/download/roguekiller/

TinyWall 3.1.1 resolves several bugs. This is not a security update.
https://tinywall.pados.hu/

uBlock Origin 1.38.4 resolves Twitch filtering and important filters. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

ScreenToGif 2.34 resolves several bugs. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

Converter Updates

These are unlikely to be of interest to most people.

HandBrake 1.4.2 resolves several bugs. This is not a security update.
https://handbrake.fr/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 7.9 adds the ability to “securely” share a link with others. This is not a security update.
https://1password.com/downloads/mac/

1Password for Windows 7.9.822 adds the ability to “securely” share a link with others. This is not a security update.
https://1password.com/downloads/windows/

Autoruns 14.03 resolves several bugs. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/autoruns

Bitwarden 1.28.3 resolves several bugs. This is not a security update.
https://bitwarden.com/

ControlMyMonitor 1.29 adds the ability to set font options. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html

dnGrep 2.9.400.0 improves bookmarks and adds option to hide missing files in Everything search. This is not a security update.
https://dngrep.github.io/

Etcher 1.6.0 adds basic auth support and updates libraries. This is not a security update.
https://www.balena.io/etcher/

Everything CLI 1.1.0.20 doesn’t provide a changelog so should be treated as a security update.
https://www.voidtools.com/

Fido 1.26 adds Windows 11 downloads. This is not a security update.
https://github.com/pbatard/Fido/releases

Fing 2.7.0 adds user-presence tracking, improves the security tab, and updates libraries. This is not a security update.
https://www.fing.com/products/fing-desktop-download-windows

GoodSync 11.8.6 resolves several bugs, updates certificates and libraries. This is not a security update.
https://www.goodsync.com/

Homedale 1.99 resolves a privacy bug. This is not a security update.
https://www.the-sz.com/products/homedale/

NTLite 2.3.0.8394 updates libraries and assignment options. This is not a security update.
https://www.ntlite.com/download/

Aomei Partition Assistant 9.4.1 adds Windows 11 compatibility. This is not a security update.
https://www.diskpart.com/

PowerToys 0.47.1 resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Process Monitor 3.85 doesn’t provide a changelog so should be treated as a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/procmon

Samsung Magician 7.0.0 doesn’t provide a changelog so should be treated as a security update.
https://www.samsung.com/semiconductor/minisite/ssd/download/tools/

TCPView 4.15 doesn’t provide a changelog so should be treated as a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/tcpview

TeamViewer 15.22.3 improves chat notification and resolves several bugs. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

WhyNotWin11 2.4.2.1 improves compatibility and accuracy. This is not a security update.
https://github.com/rcmaehl/WhyNotWin11

Windows 11 RCT 1.2.1 updates libraries and improves compatibility. This is not a security update.
https://bytejams.com/

WinGet 1.1.12653 resolves a couple bugs. This is not a security update.
https://github.com/microsoft/winget-cli/releases/latest

WizTree 4.03 improves reliability, and improves details when loading exports. This is not a security update.
https://www.diskanalyzer.com/

Developer Updates

These are unlikely to be of interest to most people.

Godot 3.3.4 resolves over a dozen bugs. This is not a security update.
https://godotengine.org/

Node.js 12.22.7 is a security update.
https://nodejs.org/en/

Node.js 14.18.1 is a security update.
https://nodejs.org/en/

Node.js 16.11.1 is a security update.
https://nodejs.org/en/

Visual Studio Code 1.61 adds split views, improved locking, new decorations, improved pair guides and more. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

PPSSPP 1.12.2 adds support for Android 12, scoped storage, and resolves several bugs. This is not a security update.
https://ppsspp.org/downloads.html

Web Package Updates

These are likely to be of interest only to web developers.

Coppermine Gallery 1.6.15 improves compatibility. This is not a security update.
https://coppermine-gallery.net/

Dada Mail 11.16.3 resolves several bugs. This is not a security update.
https://dadamailproject.com/

Docker Desktop 4.1.1 improves compatibility and resolves several bugs. This is not a security update.
https://www.docker.com/products/docker-desktop

Drupal 9.2.7 resolves over a dozen bugs. This is not a security update.
https://drupal.org/download

MailArchiva 8.3.2 resolves several bugs. This is a security update.
https://mailarchiva.com/

Nextcloud Server 22.2.0 updates libraries and resolves dozens of bugs. This is not a security update.
https://nextcloud.com/

phpList 3.6.5 resolves several bugs. This is not a security update.
https://www.phplist.org/

ScreenConnect 21.13.5058.7951 resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

Slider Revolution 6.5.9 resolves several bugs. This is not a security update.
https://revolution.themepunch.com/

Akismet 4.2.1 resolves an AMP validation bug. This is not a security update.

Contact Form 7 5.5.1 resolves a couple bugs. This is not a security update.

NextScripts Social Networks Auto-Poster 4.3.23 is a security update.

Sucuri Security 1.8.30 is now a non-GoDaddy project. This is not a security update.

Visual Composer 39.1 resolves a cosmetic bug. This is not a security update.
https://visualcomposer.com/

WooCommerce 5.7.1 reverts a path change bug. This is not a security update.

WP Mail SMTP 3.1.0 resolves several bugs. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/