Updates 2013-12-10

Posted on December 10, 2013 by Shawn K. Hall

Hi, Folks!

It’s Patch Tuesday! This looks like a long list, but it’s actually a pretty light Patch Tuesday. This month (if you’ve been keeping up to date) there should only be 3 or 4 non-OS apps most people will need to update from below the fold.

Microsoft released 11 updates for Windows, Internet Explorer, Office, Exchange, and SharePoint. This includes security updates. A reboot is required.
http://update.microsoft.com/

Apple released updates for OS X, iOS, RDP, AirPort Extreme, AirPort Time Capsule, and printer drivers. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

Adobe AIR 3.9.0.1380 is a security update.
Win: https://12pd.com/click?air
Mac: https://12pd.com/click?airmac

Adobe Flash Player 11.9.900.170 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone or kindle – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Browser Updates

One or more of these are likely to be of interest to everyone.

Firefox 26.0 is a security update. This version also now imposes a wonderful new security feature: click-to-play for Java. This will reduce the indirect vulnerability footprint for Java in this browser significantly. Use Help, About to get the most current version.

Google Chrome 31.0.1650.63 is a security update. Use Menu, About to get the most current version.

Opera 18.0 is a security update. Use Menu, About to get the most current version.

SeaMonkey 2.22.1 is a security update. Use Help, About to get the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 24.1.1 is a security update. Use Help, About to get the most current version.

NK2Edit 2.86 improves logging details. This is not a security update.
http://www.nirsoft.net/utils/outlook_nk2_edit.html

OutlookAttachView 2.62 adds quick MRU access to recent configuration profiles. This is not a security update.
http://www.nirsoft.net/utils/outlook_attachment.html

Internet Updates

One or more of these are likely to be of interest to everyone.

Adobe Shockwave 12.0.7.148 is a security update. Remember: do not install this if you don’t absolutely require it!
https://12pd.com/click?shockwave

Skype 6.11.0.102 is a bugfix release. This is not a security update.
https://12pd.com/click?skype

IPNetInfo 1.51 adds configuration option. This is not a security update.
http://www.nirsoft.net/utils/ipnetinfo.html

WinSCP 5.1.8 corrects a couple dozen bugs and improves reliability. This is not a security update.
http://winscp.net/eng/index.php

Media Updates

These are unlikely to be of interest to most people.

MPC HC 1.7.1 updates libraries, improves reliability and corrects several bugs. This is not a security update.
https://12pd.com/click?mpchc

VLC Media Player 2.1.2 corrects a handful of bugs, including crash and performance problems. This is not a security update.
Win: https://12pd.com/click?vlc
Mac: https://12pd.com/click?vlcmac

Game Updates

These are unlikely to be of interest to most people.

EA Origin 9.3.11.2762 corrects a bug accessing EA Store and release notes. This is not a security update. Run Origin to update it.

Lego Digital Designer 4.3.8 does not provide a changelog, so should be treated as a security update.
http://ldd.lego.com/

Minecraft 1.7.4 adds Twitch broadcasting, improved menus, performance and several bugfixes. This is not a security update.
http://www.minecraft.net/

Office Updates

One or more of these are likely to be of interest to most people.

Notepad++ 6.5.2 adds native quick-sort, URL-hover highlight color customization (finally!), corrects several bugs and improves parsing and style accuracy. This is a security update.
https://12pd.com/click?npp

Artweaver 4.0.4 corrects several bugs. This is not a security update.
http://www.artweaver.de/

Lightworks NLE 11.1.1 improves activation process, and corrects dozens of bugs. This is a security update.
http://www.lwks.com/

Security Software Updates

One or more of these is likely to be of interest to most people.

DNSQuerySniffer 1.10 adds a sort-on-update option. This is not a security update.
http://www.nirsoft.net/utils/dns_query_sniffer.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 9.1.1.5 corrects several bugs and reduces complexity of the settings. This is not a security update.
http://www.dvdfab.com/download.htm

Utility Updates

These are unlikely to be of interest to most people.

CCleaner 4.08.4428 improves cleaning. This is not a security update.
https://12pd.com/click?ccleaner

GoodSync 9.6.2 corrects several bugs. This is not a security update. h
ttp://12pd.com/click?goodsync

Hamachi 2.2.0.109 corrects a significant stability issue. This is not a security update.
http://help.logmein.com/SelfServiceDownloads

BulkFileChanger 1.31 corrects a cosmetic bug. This is not a security update.
http://www.nirsoft.net/utils/bulk_file_changer.html

CurrPorts 2.10 preserves display options. This is not a security update.
http://www.nirsoft.net/utils/cports.html

DevManView 1.41 adds the ability to clear the MRU. This is not a security update.
http://www.nirsoft.net/utils/device_manager_view.html

FolderChangesView 1.60 adds several display options. This is not a security update.
http://www.nirsoft.net/utils/folder_changes_view.html

MyEventViewer 2.06 adds a shortcut to copy the contents of the lower pane, regardless of focus. This is not a security update.
http://www.nirsoft.net/utils/my_event_viewer.html

Password Security Scanner 1.20 adds SeaMonkey support. This is not a security update.
http://www.nirsoft.net/utils/password_security_scanner.html

SearchMyFiles 2.45 adds several new features and improves the display. This is not a security update.
http://www.nirsoft.net/utils/search_my_files.html

WakeMeOnLan 1.61 adds the ability to send multiple WOL packets. This is not a security update.
http://www.nirsoft.net/utils/wake_on_lan.html

DiskMaker X 3.0.2 corrects several bugs. This is not a security update.
http://liondiskmaker.com/

TeamViewer 9.0.24482 adds Win 8.1 support, tabbed displays, WOL, file copy & paste, improved file transfer, and more. This is not a security update. http://www.teamviewer.com/en/download/

Developer Updates

These are unlikely to be of interest to most people.

MySQL 5.6.15 corrects dozens of bugs in InnoDB, replication, sort, conversion, stability and more. This is not a security update.
http://www.mysql.com/downloads/installer/

TortoiseSVN 1.8.4 corrects several non-security bugs.
http://tortoisesvn.net/downloads.html

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 4.3.4-91027 corrects a couple dozen bugs, including stability, reliability and corruption issues. This is not a security update. http://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

phpMyAdmin 4.0.10 corrects several minor bugs. This is not a security update.
http://www.phpmyadmin.net/home_page/news.php

Drupal 7.24 is a security update.
http://drupal.org/download

MailEnable 8.0 is a major update offering several new features and improvements, including autodiscovery and vastly improved webmail abilities. This is not a security update.
http://www.mailenable.com/

Autoptimize 1.7.3 resolves several issues and improves cache safety. This is security update.

bbPress 2.5.1 corrects a couple bugs with the recent 2.5 release. 2.5 adds several new features, single-user WP compatibility, importers for many forum platforms, and more. This is not a security update.

Cloudflare Cache Purge 1.0.4 hides logs from public-facing pages. This is a security update.

Email Log 1.6 adds the ability to view an email message. This is not a security update.

Quick Cache 131206 is a major rewrite of Quick Cache. It’s come a long way, but is now split into free and pro versions, with much of the advanced functionality removed from the free version, making an upgrade problematic without paying for the pro version. That said, it’s well on it’s way to being well worth the investment and with only a few iterations I’ll be able to start recommending it again. This is not a security update.

Smart YouTube 4.2.1 updates included libraries. This is not a security update.

WooCommerce 2.0.20 corrects several bugs. This is not a security update.

WPtouch 3.1.1 is a complete rewrite with major features, functionality and style changes. While it’s very cool – you might want to wait for the bugs to be worked out. More than 2/3 of those reporting back say it doesn’t work!

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2013-06-11

Posted on June 11, 2013 by Shawn K. Hall

Hi, Folks!

It’s Patch Tuesday and there are a lot of security-related updates today, so let’s get to it.

Microsoft released 14 updates today affecting Windows, Internet Explorer, Microsoft Office, and .Net (~105mb). This includes security updates. A reboot is required.
http://update.microsoft.com/

Apple released updates for OS X, iTunes, QuickTime, Safari, AirPort, Aperture, and Time Capsule. This includes security updates. A reboot is required. Use the Apple Updater to get the most current versions.

Adobe AIR 3.7.0.2100 is a security update.
https://12pd.com/click?air
For OS X:
https://12pd.com/click?airmac

Adobe Flash Player 11.7.700.224 is a security update.
https://12pd.com/click?flash
https://12pd.com/click?flashie
For OS X (version 11.7.700.225):
https://12pd.com/click?flashmac

Important Notes

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 27.0.1453.110 is a security update. Use Menu, About to get the most current version.

HTTrack 3.47.18 is a security update.
http://www.httrack.com/page/2/en/index.html

Email Updates

One or more of these are likely to be of interest to everyone.

NK2Edit 2.65 corrects several bugs and improves command line options. This is not a security update.
http://www.nirsoft.net/utils/outlook_nk2_edit.html

OutlookAttachView 2.50 adds MRU support. This is not a security update.
http://www.nirsoft.net/utils/outlook_attachment.html

Internet Updates

One or more of these are likely to be of interest to everyone.

Mumble 1.2.4 adds Win8 support, various protocol improvements, improves PTT and various other changes. This is not a security update.
http://mumble.sourceforge.net/

Raid Call 7.2.4 is an incompatible feature release version. All users must upgrade.
http://www.raidcall.com/

Skype 6.5.0.158 adds video messaging, simplified contacts and several bugfixes. This is a security update.
https://12pd.com/click?skype

BrowsingHistoryView 1.32 adds secondary sorting. This is not a security update.
http://www.nirsoft.net/utils/browsing_history_view.html

Evernote 4.6.6.8360 is a bugfix release. This is not a security update.
http://www.evernote.com/

FileZilla 3.7.0.2 is a security update.
http://filezilla-project.org/

WinSCP 5.1.5 provides a number of improvements, including security fixes.
http://winscp.net/eng/index.php

Codec Updates

One or more of these are likely to be of interest to everyone.

Vista Codec Package 6.5.3 updates included codecs. To install the update, you must uninstall and reinstall the application. This version works for both Windows XP and Windows Vista.
http://shark007.net/vistacodecpackage.html

Win7 Codec Package 4.1.6 updates included codecs. To install the update, you must uninstall and reinstall the application.
http://shark007.net/win7codecs.html

Media Updates

These are unlikely to be of interest to most people.

iTunes 11.0.4 is a security update. Use the Apple Updater to get the most current version.

VLC Media Player 2.0.7 is a security update.
http://www.videolan.org/vlc/

Game Updates

These are unlikely to be of interest to most people.

EA Origin 9.2.1.4399 adds several new social features, including in-game support for 64-bit games, improved launcher and other fixes. This is not a security update.
http://www.filehippo.com/download_origin/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe DNG Converter 8.1 adds newer hardware support and improves the installation and update experience.
Mac: http://www.adobe.com/support/downloads/detail.jsp?ftpID=5596
Win: http://www.adobe.com/support/downloads/detail.jsp?ftpID=5597

Adobe Photoshop 13.0.5 for Mac and Photoshop 13.0.1.2 for Windows are security updates.
Mac: http://www.adobe.com/support/downloads/detail.jsp?ftpID=5578
Win: http://www.adobe.com/support/downloads/detail.jsp?ftpID=5595

Adobe FrameMaker 11.0.2 is a security update.
http://www.adobe.com/support/downloads/detail.jsp?ftpID=5598

Artweaver 3.1.5 improves palette handling, automatic update and various bug fixes. This is a security update.
http://www.artweaver.de/

Blender 2.67b is a security update.
http://www.blender.org/download/get-blender/

IcoFX 2.5 is a security update.
http://icofx.ro/

Lightworks NLE 11.1 adds support for newer hardware and media formats, improved indexing and other features. This version also corrects over a hundred bugs. This is a security update.
http://www.lwks.com/

Notepad++ 6.3.3 adds spell-check, improvements in session behavior, and performance improvements. You can disable the new “automatic” spell-check with Alt+A. This is not a security update.
https://12pd.com/click?npp

SketchUp 13.0.3689 adds a handful of new features, improves overall consistency and performance. This is not a security update.
http://www.sketchup.com/

Kindle for PC 1.10.6 Build 40500 should be treated as a security update.
https://12pd.com/click?kindle4pc

Security Software Updates

One or more of these is likely to be of interest to most people.

Bitmessage 0.3.3-2 is a security update. Address spoofing was possible.
https://12pd.com/click?bitmessage

DNSQuerySniffer 1.05 adds source address and destination address columns. This is not a security update.
http://www.nirsoft.net/utils/dns_query_sniffer.html

SuperAntiSpyware 5.6.1020 updates engine, heuristics and corrects various bugs. This is not a security update.
http://www.superantispyware.com/download.html

Wireless Network Watcher 1.60 improves broadcast protocol compatibility and now complies with empty MAC addresses. This is not a security update.
http://www.nirsoft.net/utils/wireless_network_watcher.html

Wireshark 1.10.0 improves protocol support, additional capture file options, various bugfixes and improvements. This should be treated as a security update.
http://www.wireshark.org/

Capture Updates

These are unlikely to be of interest to most people.

Greenshot 1.1.5.2643 corrects several bugs. This is not a security update.
http://sourceforge.net/projects/greenshot/

VideoCacheView 2.46 adds cosmetic changes. This is not a security update.
http://www.nirsoft.net/utils/video_cache_view.html

Converter Updates

These are unlikely to be of interest to most people.

Handbrake 0.9.9 adds Blu-ray subtitle support, additional framerate and remix support, broader compatibility, updates libraries and UI improvements. This should be treated as a security update.
http://handbrake.fr/downloads.php

MakeMKV 1.8.3 improves output support and performance. Corrects a crash bug. This is not a security update.
http://www.makemkv.com/download/

Utility Updates

These are unlikely to be of interest to most people.

LogMeIn Win 4.1.3256 and LogMeIn Mac 4.1.3257 provide several performance and stability fixes and changes the way the installer operates. This is not a security update. Right-click on the LogMeIn icon in your tray and select “Open LogMeIn”, click “About”, then “Check for Updates”. After a few minutes of downloading, the updater will start. You’ll be prompted to click “Update”, approve installation and finally “close” the installer when done.

AccessChk 5.11 now prefixes Windows 8 application container SIDs with the word “Package”, and includes several minor bug fixes. This is not a security update.
Autoruns 11.6 fixes some minor bugs and adds Authenticode SHA1 and SHA256 hash reporting to Autorunsc output. This should be treated as a security update.
Procdump 6.0 is a major upgrade that adds the ability to specify multiple filters, attach to a process by service name, and display/filter on the message text of a CLR or JScript exception. This is a security update.
Process Explorer 15.31 fixes a bug with copying text from the process properties dialog and adds an option to disable the heatmap display in the process view. This is not a security update.
Process Monitor 3.05 adds a context-menu entry that opens the filter edit dialog with contents prepopulated with the specified row and column value. This is not a security update.
RAMMap 1.22 fixes a bug that could cause a crash when accessing the cached files page when a cached file’s name exceeded a certain length. This should be treated as a security update.
Sigcheck 1.92 now includes support for Authenticode SHA256 hashes, which is the same hash type used to identify images by AppLocker. This should be treated as a security update.
Strings 2.51 fixes a signed file offset printing bug. This is not a security update.
http://sysinternals.com/

CCleaner 4.02.4115 improves support for IE10, Firefox, Chrome, and various other applications. This should be treated as a security update.
https://12pd.com/click?ccleaner

Recuva 1.47.948 now supports file type filtering in Depp Scan, optimizes performance and memory usage, and various bugfixes. This is not a security update.
https://12pd.com/click?recuva

GPU-Z 0.7.1 adds newer hardware support, fixes several bugs. This is not a security update.
http://www.techpowerup.com/downloads/SysInfo/GPU-Z/

BatteryInfoView 1.20 adds cosmetic changes. This is not a security update.
http://www.nirsoft.net/utils/battery_information_view.html

BlueScreenView 1.50 corrects time bug. This is not a security update.
http://www.nirsoft.net/utils/blue_screen_view.html

DriverView 1.42 fixes a cosmetic bug. This is not a security update.
http://www.nirsoft.net/utils/driverview.html

FolderChangesView 1.26 corrects a couple bugs and adds environment variable support. This is not a security update.
http://www.nirsoft.net/utils/folder_changes_view.html

MyEventViewer 1.90 adds cosmetic changes. This is not a security update.
http://www.nirsoft.net/utils/my_event_viewer.html

NetworkTrafficView 1.70 adds location aware grouping. This is not a security update.
http://www.nirsoft.net/utils/network_traffic_view.html

WakeMeOnLan 1.51 now skips broadcast addresses. This is not a security update.
http://www.nirsoft.net/utils/wake_on_lan.html

WifiInfoView 1.20 adds cosmetic changes. This is not a security update.
http://www.nirsoft.net/utils/wifi_information_view.html

WirelessKeyView 1.66 adds a Last Modified column. This is not a security update.
http://www.nirsoft.net/utils/wireless_key.html

TeamViewer 8.0.18930 adds several new features and minor bug fixes. This is not a security update.
http://www.teamviewer.com/en/download/windows.aspx

Unlocker 1.9.2 improves the installer and corrects several bugs. This is not a security update.
http://ccollomb.free.fr/unlocker/

Developer Updates

These are unlikely to be of interest to most people.

TortoiseSVN 1.7.13 corrects a continuity time-stamp bug. This is not a security update.
http://tortoisesvn.net/downloads

Web Package Updates

These are likely to be of interest only to web developers.

Adminer 3.7.0 is a security update.
http://www.adminer.org/en/

phpMyAdmin 4.0.3 is a security update.
http://www.phpmyadmin.net/home_page/news.php

SQLyog 11.1.2-1 doesn’t provide a changelog, so should be treated as a security update.
http://code.google.com/p/sqlyog/

MailEnable 7.08 corrects a dozen bugs. This is not a security update.
http://www.mailenable.com/

Coppermine Gallery 1.5.24 is a bugfix release. This is not a security update.
http://coppermine-gallery.net/

Dada Mail 6.4.2 improves performance and simplifies a number of features. This is not a security update.
http://dadamailproject.com/download/

BuddyPress 1.7.2 is a maintenance and security update.

Ultimate TinyMCE 4.7 corrects several compatibility bugs. This is not a security update.

W3 Total Cache 0.9.2.11 corrects several bugs and provides additional features and compatibility options. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2012-02-14

Posted on February 14, 2012 by Shawn K. Hall

Happy Valentine’s Day, Folks!

Patch Tuesday is here again.

This month Microsoft released nine updates addressing 21 vulnerabilities in Microsoft Windows, Office, Internet Explorer, .NET/Silverlight, Visio, Indeo codec, SharePoint, as well as an update to MSRT. Continue reading →

Updates 2010-12-17

Posted on December 17, 2010 by Shawn K. Hall

Hey folks!

Microsoft released Silverlight 4.0.51204, which is a “functional, performance, reliability and security improvement” to the Silverlight browser plugin. You can obtain the latest version from Windows Update if you have it installed. A reboot is not required, but restarting all of your browsers is.
http://www.microsoft.com/silverlight/

Apple released OSX updates for Lexmark and Canon printer drivers, RAW compatibility, AirPort Base Station, Time Capsule, and LED Cinema displays. This includes security updates. Use the Apple Updater to obtain most downloads, or get the files directly from:
http://support.apple.com/downloads/

Important Notes

Browser Updates

One or more of these are likely to be of interest to everyone.

Opera 11.00 provides dozens of improvements in the user interface, stability, web features, and networking, as well as security fixes. This is a security update. Use Help, Check for Updates to get this update.

Codec Updates

One or more of these are likely to be of interest to everyone.

Win7 Codec Package 2.7.0 updates included codecs. To install the update, you must uninstall and reinstall the application.
http://shark007.net/win7codecs.html

Vista Codec Package 5.8.7 updates included codecs. To install the update, you must uninstall and reinstall the application. This version works for both Windows XP and Windows Vista.
http://shark007.net/vistacodecpackage.html

Win x64 Codec Support 2.7.4 updates included codecs. This update applies only to 64-bit computers, and requires either the Win7 Codec Package or the Windows Vista Codec package.
http://shark007.net/x64components.html

Media Updates

These are unlikely to be of interest to most people.

iTunes 10.1.1 corrects multiple crash bugs, media compatibility issues and undisclosed security improvements. This is a security update. Use the Apple Updater to obtain this update.

IrfanView 4.28 adds dozens of features, improvements, and performance optimizations, including additional batch processing operations, window/view handling and security improvements. This is a security update.
http://www.irfanview.com/

Capture Updates

These are unlikely to be of interest to most people.

SiteShoter 1.40 adds threading and the ability to take webshots of multiple URLs with a single command. This is not a security update.
http://www.nirsoft.net/utils/web_site_screenshot.html

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 8.0.6.1 corrects a crash bug, improves copy protection handling, stability fixes and adds the new “Lightning Recoding” method for Blu-Ray processing, which offers 20-40% speed improvements. This is not a security update.
http://www.dvdfab.com/en/download.htm

Any Video Converter 4.16 corrects YouTube handling and adds file renaming functionality. This is not a security update.
http://www.any-video-converter.com/

Utility Updates

These are unlikely to be of interest to most people.

RoboForm and RoboForm2Go 7.1.1 correct the Chrome installer bug, Firefox form issues, adds Opera support, and fixes several other minor issues. This is not a security update.
http://www.roboform.com/dist/affs/AiRoboForm-s12pd.exe

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2009-07-07

Posted on July 7, 2009 by Shawn K. Hall

Hey folks!

Microsoft has released an out of cycle security patch for the .NET Framework. This is a critical update, and corrects a remotely exploitable vulnerability that can be exploited through webpages visited in Internet Explorer **or** Firefox. It is very important that you install this update if you use Windows, even if Internet Explorer is not your default browser.
http://update.microsoft.com/
While you’re there, make sure you’re getting the other important “optional” updates and drivers, which will only be listed if you select “custom” or select the option to “view all available updates” within the Vista update dialog.

Speaking of Vista…every single computer running Vista that I’ve seen in the last month had yet to install the Vista SP2 package! Folks, this is a big deal, and should not be avoided or dismissed lightly. It’s been out just shy of two months now, and is the only method for obtaining some of the security fixes within the (300mb+ for 32bit or 550mb+ for 64bit) package. Either use the Windows Update tool or download the package for your processor type from here:
http://technet.microsoft.com/en-us/windows/dd262148.aspx

These last couple weeks Apple has released several security, stability and performance updates for Mac OSX, including firmware updates for a number of devices, Time Capsule, iPhoto, MacBook, Final Cut Pro, and other updates. Most importantly, Apple has finally taken it upon themselves to update the Mac Java environment to resolve a number of security issues that have been used for *over a year* to exploit OSX in the wild. Use the system updater, or visit:
http://support.apple.com/downloads/

Mozilla has released an update to Firefox, to version 3.5. This update includes security and stability fixes, including remote exploits. It is now also the first browser to include certain advanced new aspects of the HTML5 spec that, unfortunately, are almost non-existent in the real-world Internet. If you have Firefox installed, you are advised to update ASAP.
Mozilla Firefox: Help > Check for Updates
http://www.mozilla.com/en-US/firefox/

Nullsoft has released another security patch for Winamp Media Player, to version 5.56. Notable among the fixes is better support for external devices including the iPod, and better support for accessing your iTunes library. If you use WinAMP, get the update here:
http://www.winamp.com/player

This last week must have been a full moon or something, because *three* very popular freeware applications released updates that *all* had serious flaws. Two of those have since been patched and re-released, and we’re in a holding pattern for the third.

FileZilla Client 3.2.6.1 quickly followed the release of 3.2.6 a few days ago. This is a reliability
update, but adds a couple nifty security features as well. If you don’t know what FTP is, you don’t need it.
http://filezilla-project.org/download.php?type=client

CD Burner XP 4.2.4.1420 was released and re-released this week, first breaking pretty much any ISO features, then correcting the issues with a timely patch. This version also includes several user interface enhancements, safer command parsing and a couple edge bugs that most people would probably not have noticed. While not a security update, the new ability to set a user-defined temp folder for caching can increase stability quite a bit, especially for older or slower computers.
http://cdburnerxp.se/en/download

Notepad++ 5.4.4 was released a few days ago, correcting a dozen outstanding issues, butt adding a couple significant bugs. Most importantly, keyboard shortcuts are broken, so I suspect a number of the core users have reverted back to the “safe” 5.4.3 version. While you could update to the 5.4.4 release, it’s probably safer to wait another week or so to resolve the new bugs.
http://sourceforge.net/projects/notepad-plus/files/

Security- and maintenance-conscious individuals will find that Syncaid is written “just for them.” I released version 1.0.40 last week, which adds several features to the engine, including the ability (as options) to queue decompression or execute downloaded files automatically. I wrote this engine specifically to aid in troubleshooting and repair of systems that are either infected or woefully neglected in maintenance. Having used it privately to synchronize updates for things like AVG and Stinger for over a year, I finally decided to publish it online several months ago, and have posted a number of “Sync” files for use with it as well. Learn more, and get it here:
https://saferpc.info/syncaid/

For servers & websites:

phpMyAdmin 3.2.0.1 came out last week, fixing a bug that could be used to inject code from one user into anothers session. It requires MySQL 5+ and PHP 5.2+. Get it here:
http://www.phpmyadmin.net/home_page/downloads.php

One other note about scripts like this…you should read the README files. Quite often people hosting with us simply upload the entire package without checking to see what is actually required, and what is not. In the case of phpMyAdmin, several of the folders (“scripts”, “setup” and “contrib”) have no use for most users, or any user after the package is successfully configured. The same is true for services like LimeSurvey, phpBB and others, including anything that has a “samples” directory. This is especially significant this week, following the recent automated defacements targeting vulnerable “sample” scripts released with FCKeditor – one of the most popular WYSIWYG editors used on the web. Dump the samples, folks!

MySQL Server 5.1.36 was released late last month, correcting a large number of bugs, including some crash, corruption and security issues. Get it here:
http://dev.mysql.com/downloads/mysql/5.1.html

In new web packages, bbPress has *finally* been officially released in a 1.0 series! Most significantly, this forum package integrates directly into the WordPress/WPMU authentication system, so it can easily be used in conjunction with WPMU to immediately extend the capabilities of your online community site.
http://bbpress.org/download/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/