Updates 2020-02-11

Welcome back, Folks!

Today is Patch Tuesday for February 2020.

Microsoft blinked and released three updates to Windows 7 this month, however two of the issues that were resolved were actually caused by their EOL updates released last month. It’s no longer trustworthy, so do not let Windows 7 touch the Internet!

Windows 7 is officially end-of-life (EOL). If you’re still running it, shame on you, and if you are running a licensed version of Windows 7 or 8 you can still upgrade to Windows 10 and have a supported version of Windows for the foreseeable future. Don’t want to do it yourself? Call me!
https://saferpc.info/contact/

The Windows Update engine relies upon a file called “wsusscn2.cab” which is currently choking on download. While there are several Windows updates available today, it looks like the time just to check for updates will be over 2 hours for most devices today. Have patience or wait to start patching until later when they resolve this issue. There’s plenty of other stuff to patch anyway.

This Month in Technology

macOS finally fixes the Sudo bug (after 9 years), but this pales in comparison to the ease at which Mac users are infected through social engineering tactics. If you still think Mac’s are more secure than Windows, you need to see the numbers from MalwareBytes which show the typical Mac is targeted by nearly double the malware that Windows devices are. One special note here is that the users trusted the names of the websites that were involved, mostly a result of allowing domains to expire (a common concept within the broad scheme of domain hijacking).

While we’re on the subject of renewing domains, don’t forget your certificates! TLS/SSL certificates are often an enterprise’s weakest point of failure, especially when they’re not renewed on time. This will become even more important as TLS 1.0 and 1.1 are deprecated over the next couple months, which will prevent most older devices from being able to safely use the Internet at all. How important is certificate trust? Last months certificate hijacking bug allowed a researcher to replicate NSA and Github certificates in less than 24 hours which could be used immediately in MitM and DNS cache poisoning attacks with no effort from the attacker and as little as 10 lines of browser-based code.

Microsoft has decided to end it’s own ad platform within UWP apps, which will seriously hurt the entire UWP ecosystem and likely their users, by encouraging less security- and privacy-concerned third-party platforms to take their place.

This month we’ve seen data dumps from Twitter user details (shortly before a Twitter outage), Trello, Google, half a million servers, routers, and IoT devices, a major cannabis dispensary POS vendor, THSuite, WhatsApp had a major vulnerability (since patched), a Zoom vulnerability allowed hackers to eavesdrop on your calls, Mitsubishi was hacked via their enterprise security software, Trend Micro OfficeScan, and the United Nations was hacked through an unpatched server.

Is your privacy important? Apple bowed to the FBI to prevent fully-encrypted backups, ICE is using cellphone location data to track immigrants, but Avast has decided to stop selling it’s user data and they’re “sorry”, so at least there’s some good news.

Of course, any account can be hacked, even Facebook’s Twitter and Instagram accounts, and the NFL, and this month the City of Oshkosh (WI) and Duplin County (NC) join the “yet another government network hijacked” club.

It’s one thing to be incompetent when it comes to security, but Blizzard doesn’t even understand their users. This month they’re asserting total copyright ownership of any mods their users create and they released Warcraft: Reforged, which is the first game to ever be reviewed this poorly by the userbase. You might give Blizzard some credit for this – after all, they did build the engine that allowed the third-party “Dota” to flourish. LastPass, however, built their own system but accidentally removed their own extension from the Chrome Web Store!

In IoT news, more than 2/3rds of corporate and government entities were compromised with endpoint attacks in 2019, the weakest link might be the building itself or any of tens of millions of devices on a typical corporate or government network, though, as expected, many Huawei IoT devices have a backdoor. A serious public key exposure in Fortinet SIEM allows evildoers to kill your security appliance, and a critial zero-day in SolarWinds RMM allows attackers to hijack your network. Supply chain attacks targeting EOL Windows 7 devices remind us why we should avoid EOL hardware and software, and Phillips Hue lightbulbs are still proving that they weren’t well though-out security-wise. Thousand of WordPress-based websites have been hijacked to redirect visitors to evil sites, and there is always more to security than patching.

Let’s end my soapbox on a happy note: The best news this month might just be that Netflix finally offers an option to disable those #@$& autoplay previews. It’s about time.

Let’s Get Busy

Now back to our regularly scheduled program. The typical computer should see roughly 2.2 GB in updates today. Let’s get started.

Microsoft released updates for Windows, Internet Explorer, .NET, Flash, Servicing Stack, and MSRT (~1.2 GB). This includes security updates. A reboot is required.

Apple released updates for macOS Catalina 10.15.3, Security Update 2020-001 Mojave, Security Update 2020-001 High Sierra, iCloud for Windows 10.9.2, iCloud for Windows 7.17, iOS 13.3.1, iPadOS 13.3.1, iTunes for Windows 12.10.4, Safari 13.0.5, tvOS 13.3.1, and watchOS 6.1.2. These are security updates. Use Apple Software Update to install the most current versions.

iOS 13.3.1 and 12.4.5 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 13.3.1 is a security update. Use Settings, General, Software Update to install the most current update.

watchOS 6.1.2 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 13.3.1 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 79.0.3945.123 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Adobe Flash Player 32.0.0.330 is a security update. Take comfort knowing that Flash will be EOL in only 10 months.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Catalina (10.15) means that macOS Sierra (10.12) and older are no longer supported. If you can not install at least macOS High Sierra (10.13) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (1909) is a pretty small update so will install quickly. Windows 10 pushes you to get the latest Windows 10 release every 6 months. If you don’t let it finish and you’re on a slow connection, this process kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.2.2 resolves several issues and improves removal procedure. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

BullZip PDF Printer 11.12.0.2816 improves compatibility with Chrome 80+. This is not a security update.
https://www.bullzip.com/products/pdf/info.php#download

Intel Driver and Support Assistant 20.1.5 improves user interface, performance, uninstall, and resolves several bugs. This is not a security update.
https://www.intel.com/p/en_US/support/detect

nVidia 442.19 adds framerate capping, performance improvements for certain games, VRSS controls, and support for newer hardware. This is not a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Garmin Express 6.20 doesn’t provide a changelog so should be treated as a security update.
https://www.garmin.com/en-US/software/express/

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 80.0.3987.100 is a security update. This version is also the predecessor to the new samesite cookie handling behavior that will cause problems for various industries, including ad-services. Use Menu, Help, About to install the most current version.

Firefox 73.0 is a security update. Use Menu, Help, About to install the most current version.

Firefox ESR 68.5.0 is a security update. Use Menu, Help, About to install the most current version.

Iridium 2019.11.78 is a security update. Use Menu, Help, About to install the most current version.

Vivaldi 2.10.1745.27 is a security update. Use Menu, Help, About to install the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 68.5.0 is a security update. Use Menu, Help, About to install the most current version.

Internet Updates

One or more of these are likely to be of interest to everyone.

MaxMind GeoLite: Due to their interpretation of the CCPA (California Consumer Privacy Act), MaxMind has opted to no longer provide direct downloads of their IP information databases. An account and agreement to perform updates immediately upon publishing new releases and removal of all existing copies is now required. Due to this we will no longer be listing MaxMind on SaferPC. I suggest you integrate their automatic update service into your existing platform to ensure that you can comply with their new usage agreement.

Prosody 0.11.4 improves performance and resolves several bugs. This is not a security update.
https://prosody.im/download/start

BrowsingHistoryView 2.36 adds option to delete Chrome and Firefox history records. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

FreeNAS 11.3 is a major update offering improved performance, security controls, community plugin integration, improved granularity of alerts and more. This is not a security update.
https://www.freenas.org/download-freenas-release/

Npcap 0.9987 is a security update.
https://nmap.org/npcap/

Media Updates

These are unlikely to be of interest to most people.

iTunes 12.10.4 is a security update. Use Apple Software Update to install the most current version.

Game Updates

These are unlikely to be of interest to most people.

Steam 2020.01.20 resolves several bugs and improves reliability of Remote Play. This is not a security update.

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 20.006.20034 is a security update. Use Help, Check for Updates to get the most current version.

Adobe DNG 12.2 adds support for new hardware. This is not a security update.
Mac: https://supportdownloads.adobe.com/detail.jsp?ftpID=6879
Win: https://supportdownloads.adobe.com/detail.jsp?ftpID=6881

Adobe Experience Manager 6.5.0-31870 and 6.4.0-31868 are security updates.
https://helpx.adobe.com/security/products/experience-manager/apsb20-08.html

Adobe Digital Editions 4.5.11 is a security update.
https://helpx.adobe.com/security/products/Digital-Editions/apsb20-07.html

Adobe Framemaker 2019.0.5 is a security update.
https://helpx.adobe.com/security/products/framemaker/apsb20-04.html

Adobe Illustrator CC 24.0.2 is a security update.
https://helpx.adobe.com/security/products/illustrator/apsb20-03.html

Artweaver 7.0.4 resolves several bugs and improves performance with impasto and PSD text layers. This is not a security update.
https://www.artweaver.de/

Atom 1.44.0 resolves several bugs. This is not a security update.
https://atom.io/

LibreOffice Still 6.3.4 is a major update adding a wide variety of new features and performance improvements. This is not a security update.
https://www.libreoffice.org/

LibreOffice Fresh 6.4.0 resolves almost 500 bugs, including security issues. The typical user should run LibreOffice Still (stable), not Fresh (beta).
https://www.libreoffice.org/

Lightworks NLE 14.5 adds dozens of new features, export options, media codecs, and over a hundred bugs. This should be treated as a security update.
https://www.lwks.com/

Notepad++ 7.8.4 adds JSON and Workspace improvements, and resolves a crash bug. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 4.2.9 resolves several bugs and improves performance. This is not a security update.
https://www.getpaint.net/

Security Software Updates

One or more of these is likely to be of interest to most people.

QubesOS 4.0.3 is a security update.
https://www.qubes-os.org/downloads/

elementaryOS 5.1.2 is a security update.
https://elementary.io/

RogueKiller 14.1.1 resolves several bugs. This is a security update.
https://www.adlice.com/download/roguekiller/

TinyWall 3.0 improves reliability, user interface, exception controls, and resolves several bugs. This is not a security update.
https://tinywall.pados.hu/

Capture Updates

These are unlikely to be of interest to most people.

ScreenToGif 2.20.2 resolves several bugs. This is not a security update.
https://www.fosshub.com/ScreenToGif.html

Converter Updates

These are unlikely to be of interest to most people.

MKVToolnix 43.0.0 resolves several bugs and improves user interface defaults options from command line. This is not a security update.
https://www.fosshub.com/MKVToolNix.html

DVDFab 11.0.7.1 resolves several bugs and adds support for newer encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

RoboForm 8.6.6 improves compatibility and resolves several bugs. This is not a security update.
https://www.roboform.com/

Easy2Boot 1.B8A improves compatibility and user-interface. This is not a security update.
https://www.fosshub.com/Easy2Boot.html

1Password for Mac 7.4.2 improves compatibility and resolves several bugs. This is not a security update.
https://1password.com/downloads/mac/

ControlMyMonitor 1.25 adds option to put icon in tray. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html

DesktopOK 6.84 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

DevManView 1.66 adds Class GUID column. This is not a security update.
https://www.nirsoft.net/utils/device_manager_view.html

Etcher 1.5.76 updates libraries and resolves several bugs. This is not a security update.
https://www.balena.io/etcher/

Everything CLI 1.1.0.18 doesn’t provide a changelog, so should be treated as a security update.
https://www.voidtools.com/

FileLocator Pro 8.5.2944 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

Fing 8.8.2 improves user interaction and resolves several bugs. This is not a security update.
https://community.fing.com/

GoodSync 10.10.21 improves performance and reliability, resolves several bugs. This is not a security update.
https://www.goodsync.com/

MS ISO Downloader 8.31 adds support for new media. This is not a security update.
https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool

OSFMount 3.0.1005 adds command-line options to load physical or logical emulation only, and resolves a permissions bug. This is not a security update.
https://www.osforensics.com/tools/mount-disk-images.html

SetDefaultBrowser 1.4 adds support for Chromium-based Edge. This is not a security update.
https://kolbi.cz/blog/2017/11/10/setdefaultbrowser-set-the-default-browser-per-user-on-windows-10-and-server-2016-build-1607/

TaskSchedulerView 1.54 adds options to select/deselect all to column chooser. This is not a security update.
https://www.nirsoft.net/utils/task_scheduler_view.html

USBDeview 2.86 adds mode option for Regedit call, to support opening with or without elevation.
https://www.nirsoft.net/utils/usb_devices_view.html

WinScan2PDF 5.21 improves WIA compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 3.32 resolves several bugs, adds options to export file types to CSV, filterexclude, and command-line supporter activation. This is not a security update. On the note of Supporters – this software is amazing. Use it. And donate.
https://antibody-software.com/web/software/software/wiztree-finds-the-files-and-folders-using-the-most-disk-space-on-your-hard-drive/

Developer Updates

These are unlikely to be of interest to most people.

Godot 3.2 improves reliability, performance, stability and resolves almost 2,000 bugs. This should be treated as a security update.
https://godotengine.org/

Node.js 13.8.0 is a security update.
https://nodejs.org/en/

SQLite 3.31.1 adds generated columns, hard heap limits, improved pragma, dbstat aggregated mode support, open nofollow, and resolves an internal schema compatibility issue. This compatibility fix is temporary, so fix your applications if you currently rely on parsing the data structure via internal schema. This is a security update.
https://www.sqlite.org/download.html

Visual Studio Code 1.42 resolves several bugs, improves user interface, additional preference controls, task management, and more. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 6.1.2-135663 resolves several bugs and improves compatibility. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Adminer 4.7.6 resolves several bugs. This is not a security update.
https://www.adminer.org/en/

Drupal 8.8.2 resolves dozens of bugs. This is not a security update.
https://drupal.org/download

HumHub 1.4.0 updates libraries and resolves dozens of bugs. This is not a security update.
https://www.humhub.com/en/download

Joomla 3.9.15 is a security update.
https://www.joomla.org/

Magento 2.3.4, 2.2.11, 1.14.4.4, 1.9.4.4 are security updates.
https://helpx.adobe.com/security/products/magento/apsb20-02.html

Nextcloud Hub 18.0.0 is a major update adding improved file, flow, photos, calendar, mail, and talk integration, and ONLYOFFICE support. This is not a security update.
https://nextcloud.com/

ScreenConnect 19.6.26659.7340 is a security update.
https://www.connectwise.com/software/control/download

SpamAssassin 3.4.4 is a security update.
http://spamassassin.apache.org/downloads.cgi

YOURLS 1.7.6 is a security update.
https://yourls.org/

bbPress 2.6.4 is a security update.

Interactive World Map 3.1.4 is a major update that resolves several issues. This is not a security update.

myStickymenu 2.3.4 resolves several bugs. This is not a security update.

Postie 1.9.41 resolves regex bug and now attempts to process only 1 email at a time. This is not a security update.

Sucuri Security 1.8.23 updates key updater and improves user interface. This is not a security update.

W3 Total Cache 0.13.1 resolves several bugs. This is not a security update.

WooCommerce 3.9.1 resolves several bugs. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2019-12-10

Merry Christmas, Folks!

Today is Patch Tuesday for December 2019.

Note: shortly after publishing, Google released Chrome 79.0.3945.79.

Windows 10, version 1909, is available. This version is minor compared to previous Windows 10 upgrades. Nevertheless, don’t do it yet. There is nothing so critically important in 1909 that the update can’t wait a month. Wait for it.
https://www.microsoft.com/en-us/software-download/windows10

Windows 7 will fall completely out of support in only 35 days. Don’t run out the clock. If you are running a licensed version of Windows 7 or 8 you can still upgrade to Windows 10 and have a supported version of Windows for the foreseeable future. Get it done before it’s too late. Don’t want to do it yourself? Call me!

There is a lot of talk right now about enabling POSready mode to gain additional time for Windows 7. This *does* work, but I recommend against it. POSready mode is designed to allow existing third-party software to continue to operate in the Windows 7 ecosystem, but Microsoft and most third-party developers will stop support when Windows 7 is end-of-life (EOL). This means that while your OS itself will continue to receive security updates, most other apps will not. If your device is used as a typical PC this means your risk will still significantly increase by relying on POSready with unmaintainable third-party applications.

Christmas is only a couple weeks away which means it’s that time of year when the best and worst of humanity is exposed. This time of year brings stress and urgency to everything, and that means people are more likely to be targeted for common phishing schemes, malicious attachments (invoices and holiday letters), end-of-year insurance scams, and advance fee fraud. You’ll be targeted by phone and email and the deluge won’t subside until mid-to-late January. Don’t be afraid to hang up and delete. It really is better to be safe than sorry.

If you’ve read more than a couple of my newsletters you’ve seen me hate on Avast regularly. Last week I was actually considering easing off and giving them another chance. Then I received diet spam FROM AVAST BUSINESS! I’ve reconsidered. If you’re using any of this software you should remove it immediately. Avast can’t be trusted. Having any of their software installed significantly increases the risk to your devices, and should be treated as a malware infection as far as I’m concerned.

Now back to our regularly scheduled program. The typical computer should see roughly 2 GB in updates today. Let’s get started.

Microsoft released updates for Windows, Internet Explorer, .NET, Servicing Stack, hardware drivers, and MSRT (~1 GB). This includes security updates. A reboot is required.

Apple released updates for macOS Catalina 10.15.2, Mojave Security Update 2019-002, and High Sierra Security Update 2019-007, iOS 13.3, iOS 12.4.4, iPadOS 13.3, Safari 13.0.4, Xcode 11.3, watchOS 5.3.4, watchOS 6.1.1, and tvOS 13.3. These are security updates. Use Apple Software Update to install the most current versions.

watchOS 6.1.1 and watchOS 5.3.4 are security updates. Use the Watch app on your iPhone to install the most current version.

tvOS 13.3 is a security update. Use System, Software Update to install the most current version.

macOS Catalina (10.15) is available. If you don’t have to, don’t install it. Mojave (10.14) will be supported for almost 2 more years.

iOS 13.3, iOS 12.4.4, and iPadOS 13.3 are security updates. Use Settings, General, Software Update to install the most current update.

Google Chrome OS 78.0.3904.106 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Adobe Flash Player 32.0.0.303 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Catalina (10.15) means that macOS Sierra (10.12) and older are no longer supported. If you can not install at least macOS High Sierra (10.13) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (1909) is a pretty small update so will install quickly. Windows 10 pushes you to get the latest Windows 10 release every 6 months. If you don’t let it finish and you’re on a slow connection, this process kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

BullZip PDF Printer 11.11.0.2804 adds High-DPI support, printing page range, and copy+paste support for UTF16 characters. This is not a security update.
https://www.bullzip.com/products/pdf/info.php#download

Display Driver Uninstaller 18.0.2.0 improves Nvidia cleanup.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Dymo Label 8.7.3 doesn’t provide a changelog, so should be treated as a security update.
https://www.dymo.com/en-US/online-support/dymo-user-guides

MS Mouse and Keyboard Center 20191127 adds support for newer hardware. This is not a security update.
https://www.microsoft.com/accessories/en-us/downloads/mouse-keyboard-center

Nvidia 441.66 adds image sharpening for Vulkan and OpenGL, support for newer hardware, and multiple security fixes. This is a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 79.0.3945.79 is a security update. Use Menu, Help, About to get the most current version.

Firefox 71.0 is a security update. Use Menu, Help, About to get the most current version.

Firefox ESR 68.3.0 is a security update. Use Menu, Help, About to get the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 68.3.0 is a security update. Use Menu, Help, About to get the most current version.

Internet Updates

One or more of these are likely to be of interest to everyone.

BrowsingHistoryView 2.30 adds History File and Record ID columns. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

FileZilla Client 3.46.0 resolves a crash, and updates dependencies. This is a security update.
https://filezilla-project.org/

FreeFileSync 10.18 adds parallel processing, grid sort, filter counts, improved responsiveness and bug fixes. This is not a security update.
https://www.freefilesync.org/download.php

MaxMind GeoIP2 201912 is a data refresh.
https://dev.maxmind.com/geoip/

WinSCP 5.15.9 is a security update.
https://winscp.net/eng/index.php

Media Updates

These are unlikely to be of interest to most people.

CDBurnerXP 4.5.8.7128 improves error handling. This should be treated as a security update.
https://cdburnerxp.se/

Game Updates

These are unlikely to be of interest to most people.

Steam 2019.12.05 resolves several bugs, returns Small Mode, updates libraries, and adds GUI improvements. This should be treated as a security update.

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Acrobat DC 19.021.20058 is a security update. Use Menu, Help, Check for updates to get the most current version.

Adobe Reader DC 19.021.20058 is a security update. Use Menu, Help, Check for updates to get the most current version.

Adobe Photoshop CC 20.0.8 and 21.0.2 are security updates. Use Adobe Creative Cloud to install the most current version.

Artweaver 7.0.3 resolves several bugs. This is not a security update.
https://www.artweaver.de/

Krita 4.2.8 improves disk write reliability, and resolves several bugs. This is not a security update.
https://krita.org/en/download/krita-desktop/

Notepad++ 7.8.2 resolves several bugs and returns the hotkeys to the save prompt. This is not a security update.
https://12pd.com/click?npp

Paint.net 4.2.8 updates libraries, improves performance, resolves several bugs, and adds self-repair with /repair. This should be treated as a security update.
https://www.getpaint.net/

Security Software Updates

One or more of these is likely to be of interest to most people.

Caine 11.0 adds several new features and apps, updates libraries, and updates core. This is a security update.
https://www.caine-live.net/

HTTP Toolkit 0.1.17 doesn’t provide a changelog so should be treated as a security update.
https://httptoolkit.tech/

RogueKiller 14.0.0.16 updates core engine, resolves several bugs, adds real time protection and documents protection. This should be treated as a security update.
https://www.adlice.com/softwares/roguekiller/

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 2020.0.3 resolves an Editor launch bug. This is not a security update.
https://download.techsmith.com/snagit/enu/snagit.exe

Converter Updates

These are unlikely to be of interest to most people.

MKVToolnix 41.0.0 adds many new features, improves meta storage, resolves several bugs. This is not a security update.
https://www.fosshub.com/MKVToolNix.html

DVDFab 11.0.6.4 adds support for new encodings, new hardware, adds Enlarger AI and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

MakeMKV 1.14.7 adds support for new encodings, resolves a file name variable expansion bug. This is not a security update.
https://12pd.com/click?makemkv

Utility Updates

These are unlikely to be of interest to most people.

Beyond Compare 4.3.3.24545 resolves several bugs. This is not a security update.
https://www.scootersoftware.com/download.php?zz=dl4

Bitcoin 0.19.0.1 integrates a tool to analyze and reduce memory consumption, adds and updates many RPC functions. This is not a security update.
https://bitcoin.org/en/download

CPU-Z Installer 1.91 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

Dell Command Update 3.1 adds CLI support, automatic suspension of BitLocker for BIOS updates, enhances return codes for CLI, update scheduling, and resolves several bugs. This is not a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

DesktopOK 6.79 resolves a false AV alert. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

DevManView 1.65 adds shortcut creation, and adds option to start remote registry service for automation. This is not a security update.
https://www.nirsoft.net/utils/device_manager_view.html

Drive Snapshot 1.48 adds support for newer OSes, resolves encryption bugs. This is a security update.
http://www.drivesnapshot.de/en/

Etcher 1.5.69 updates libraries, resolves several bugs, and improves compatibility. This is not a security update.
https://www.balena.io/etcher/

GoodSync 10.10.15 resolves several bugs, improves and weakens security options (yes, really). This version should be avoided until they get their stuff together.
https://www.goodsync.com/

Homedale 1.86 improves the dot-chart. This is not a security update.
https://www.the-sz.com/products/homedale/

MS ISO Downloader 8.24 adds support for new media. This is not a security update.
https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool

NTLite 1.8.0.7240 adds several options for new features, resolves bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 7.1.1002 resolves several bugs and improves reliability. This should be treated as a security update.
http://www.osforensics.com/download.html

Password Security Scanner 1.50 adds support for Windows Credentials passwords, and resolves a couple bugs. This is not a security update.
https://www.nirsoft.net/utils/password_security_scanner.html

RoboForm 8.6.5 resolves an upgrade data conversion bug, improves experience when changing Master password, improves login from RF behavior, and resolves several other bugs. This is not a security update.
https://12pd.com/click?rf

SearchMyFiles 3.07 resolves a bug. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

TraceRouteOK 1.61 adds window position saving, resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK

USBDeview 2.85 adds option to create shortcuts. This is not a security update.
https://www.nirsoft.net/utils/usb_devices_view.html

WinScan2PDF 5.11 improves WIA reliability, performance. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WirelessKeyView 2.11 improves output formatting and adds explore from here option. This is not a security update. Note that downloads are not password protected. This is not a security update.
https://www.nirsoft.net/utils/wireless_key.html

WSUS Offline 11.8.3 updates supercedence list, resolves several bugs. This is not a security update.
http://download.wsusoffline.net/

Developer Updates

These are unlikely to be of interest to most people.

AutoHotkey 1.1.32.00 resolves several bugs, adds InputHook OnKeyUp callback, adds support for PixelSearch in fast mode. This is not a security update.
https://www.autohotkey.com/download/

Android Studio 3.5.3.0 improves stability and performance, resolves several bugs. This is not a security update.
https://developer.android.com/studio/index.html

Godot 3.1.2 resolves over 400 bugs. This is a security update.
https://godotengine.org/

Node.js 13.3.0 resolves several bugs, and updates libraries. This should be treated as a security update.
https://nodejs.org/en/

StrawberryPerl 5.30.1.1 updates core to 5.30.1 and updates libraries. This is not a security update.
http://strawberryperl.com/

Web Package Updates

These are likely to be of interest only to web developers.

Drupal 8.8.0 makes several feature-level and requirements changes (recommended PHP is now 7.2+), removes several features and modules, updates libraries, and improves code consistency. This should be treated as a security update.
https://drupal.org/download

Brackets 1.14.1 is a security update.
http://brackets.io/

MailEnable 10.28 resolves several bugs, and adds recurring tasks and custom special folders. This is not a security update.
https://www.mailenable.com/

phpMyAdmin 4.9.2 resolves several bugs and improves compatibility. This is a security update.
https://www.phpmyadmin.net/

ScreenConnect 19.5.26030.7282 improves server compatibility. This is not a security update.
https://www.connectwise.com/software/control/download

ColdFusion 2018 Update 7 is a security update.
https://helpx.adobe.com/coldfusion/kb/coldfusion-2018-update-7.html

bbPress 2.6.2 resolves several bugs. This is not a security update.

BuddyPress 5.1.0 resolves several bugs. This is not a security update.

Contact Form 7 5.1.6 resolves an incompatible CSS bug. This is not a security update.

Custom Facebook Feed 2.12.2 resolves a bug. This is not a security update.

FV Top Level Categories 1.9.1 improves compatibility. This is not a security update.

Multisite Enhancements 1.5.2 resolves several bugs. This is not a security update.

Redirection 4.5.1 resolves broken canonical redirects. This is not a security update.

NextScripts Social Networks Auto-Poster 4.3.11 adds WordPress 5.3 support, resolves several bugs. This is not a security update.

Sucuri Security 1.8.22 adds several new checks. This is not a security update.

W3 Total Cache 0.11.0 resolves several bugs, improves compatibility and performance, and adds lazy loading. This is not a security update.

WooCommerce 3.8.1 resolves several bugs. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

Updates 2019-11-12

Hi, Folks!

Today is Patch Tuesday for November 2019 and this month is huge.

The next build of Windows 10, version 1909, is being released this week. This version is minor compared to other Windows 10 upgrades and should be nearly indistinguishable from 1903. If you’re running 1903 now installing 1909 should have no negative impact. If you’re running an older version I recommend upgrading to 1903 before switching to 1909. In either case, don’t do it yet. There is nothing so critically important in 1909 that the update can’t wait a month. Wait for it.

Windows 7 will fall completely out of support in only 60 days. Don’t run out the clock. If you are running a licensed version of Windows 7 or 8 you can still upgrade to Windows 10 and have a supported version of Windows for the foreseeable future. Get it done before it’s too late. Don’t want to do it yourself? Call me!

Catalina has been out for a month now and the backlash is huge. Installation lockups, forced password resets, permission resets, iCloud sync problems, dropped support for 32-bit apps, and incompatibility issues requiring reinstallation or upgrade of many others are just a few of the issues experienced by the unlucky lemmings that Thought Things Would Be Different™. Apple is gradually resolving problems, but I recommend you hold off until at least 10.15.3 before upgrading (and then only if you don’t need any 32-bit apps). x.3 seems to be the sweet spot for macOS stability. That should be out sometime next month. With that said, don’t postpone installing the patches for your current build of macOS. These are always security updates.

In the news this month Google is buying Fitbit (so find another tracker), we’re reminded to always disable NFC, compromising fingerprint readers is still extremely easy, light is as effective as voice, punctuation is still important, iOS 13+’s aggressive memory cleanup is more “abusive” than “aggressive,” and still brokenanything you share with any business or entity will no doubt inevitably be exposed, especially if it’s Adobe, or even your antivirus company, that “user interface design” and “security” are far removed, and that IoT is putting us all further at risk every single day.

The co-founder and CEO of Mine, an online privacy advocacy organization, observes that cybersecurity is becoming less accessible to smaller companies, but that’s why I’m here. Check out our subscription to learn more. Our goal is to provide enterprise-level support to everyone at a cost that is reasonable even for home users.

Now back to our regularly scheduled program. The typical computer should see roughly 2 GB in updates today. Let’s get started.

Microsoft released updates for Windows, Internet Explorer, Servicing Stack, and MSRT (~800 MB). This includes security updates. A reboot is required.

Apple released updates for iOS 13.2.2, iPadOS 13.2.2, macOS Catalina 10.15.1, Security Update 2019-001 Mojave, Security Update 2019-006 High Sierra, tvOS 13.2, watchOS 6.1, Safari 13.0.3, and Xcode 11.2. These are security updates. Use Apple Software Update to install the most current versions.

macOS Catalina (10.15) is available. This is a large download and will take between 2 and 4 hours to install on most hardware. The release of macOS Catalina (10.15) means that macOS Sierra (10.12) is now no longer supported. If you can not install at least macOS High Sierra (10.13) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

iOS 13.2.2 is a security update. Use Settings, General, Software Update to install the most current update.

watchOS 5.3.3 and 6.1 are security updates. Use the Watch app on your iPhone to install the most current version.

tvOS 13.2 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 78.0.3904.92 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Fedora 31-1.9 is a major update. This version is now released only as a 64-bit release. Though 32-bit apps are still supported the CPU architecture now requires 64-bits. New features include the Fedora Toolbox (an improved launcher), updated packages, improved stability and bug tracking, removal of YUM, improved security, and Cgroups v2 support.

Adobe Flash Player 32.0.0.270 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Catalina (10.15) means that macOS Sierra (10.12) and older are no longer supported. If you can not install at least macOS High Sierra (10.13) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (1903) will cause your computer to feel unusually slow until it is installed. This is a side-effect of the Windows 10 upgrade cycle, which pushes out 3-6 GB through Windows update to get you to the latest Windows 10 release every 6 months. If you don’t let it finish and you’re on a slow connection, it will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Intel Driver and Support Assistant 19.10.42 improves the installer and resolves several bugs. This is not a security update.
https://www.intel.com/p/en_US/support/detect

Crucial Storage Executive 5.05 doesn’t provide a changelog so should be treated as a security update.
https://www.crucial.com/usa/en/support-storage-executive

nVidia 441.20 resolves several bugs, improves compatibility, and adds support for newer hardware. This is not a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 78.0.3904.97 is a security update. Use Menu, Help, About to install the most current version.

Firefox 70.0.1 is a security update. Use Menu, Help, About to install the most current version.

Firefox ESR 68.2.0 is a security update. Use Menu, Help, About to install the most current version.

Vivaldi 2.9.1705.41 is a security update. Use Menu, Help, About to install the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.7.2 resolves several bugs. This is not a security update.
https://getmailspring.com/

Thunderbird 68.2.0 is a security update. Use Menu, Help, About to install the most current version.

OutlookAttachView 3.30 adds option to scan only unread messages and set the read flag on mesages on extraction. This is not a security update.
https://www.nirsoft.net/utils/outlook_attachment.html

Internet Updates

One or more of these are likely to be of interest to everyone.

WinSCP 5.15.5 is a security update.
https://winscp.net/eng/index.php

FreeFileSync 10.17 adds private key support for SFTP and resolves several bugs. This should be treated as a security update.
https://www.freefilesync.org/download.php

Java 8u231 is a security update. You should remove Java instead of upgrading if you are not 110% sure you require it.
https://www.java.com/en/download/manual.jsp

MaxMind GeoIP2 201911 is a data refresh.
http://dev.maxmind.com/geoip/

Npcap 0.9984 is a security update.
https://nmap.org/npcap/

BrowsingHistoryView 2.26 adds the ability to configure what happens on double-clicking an item in the results.
https://www.nirsoft.net/utils/browsing_history_view.html

Media Updates

These are unlikely to be of interest to most people.

iTunes 12.10.2 is a security update.
https://www.apple.com/itunes/download/

Picard 2.2.3 resolves several bugs. This is not a security update.
https://picard.musicbrainz.org/

Game Updates

These are unlikely to be of interest to most people.

Steam 2019.11.06 replaces the Library with a new interface, resolves several bugs, improves stability. This is not a security update.

Office Updates

One or more of these are likely to be of interest to most people.

Atom 1.41.0 updates libraries and resolves several bugs. This should be treated as a security update.
https://atom.io/

LibreOffice Still 6.2.8 resolves several bugs. This is not a security update. This is the stable version of LibreOffice, so if you’re upgrading you should install Still.
https://www.libreoffice.org/

LibreOffice Fresh 6.3.3 resolves many bugs. This is not a security update. This is the beta version of LibreOffice, so if you’re upgrading you should install Still.
https://www.libreoffice.org/

Notepad++ 7.8.1 (Free Uyghur Edition) resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

Adobe Reader DC 19.021.20049 resolves several bugs. This should be treated as a security update. Use Help, Check for Updates to get the most current version.

Security Software Updates

One or more of these is likely to be of interest to most people.

RogueKiller 13.5.6 resolves several bugs. This is not a security update.
https://www.adlice.com/softwares/roguekiller/

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 2020.0.1 is a security update.
https://download.techsmith.com/snagit/enu/snagit.exe

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 11.0.5.8 adds support for new encodings, adds cloud backup for configuration. This is not a security update.
https://www.dvdfab.cn/download.htm

MKVToolnix 40.0.0 resolves several bugs and improves automation. This is not a security update.
https://www.fosshub.com/MKVToolNix.html

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 7.4.1 resolves several bugs. This is a security update.
https://1password.com/downloads/mac/

RoboForm 8.6.2 resolves several bugs. This is not a security update.
https://12pd.com/click?rf

8GadgetPack 31.0 improves compatibility. This is not a security update.
https://8gadgetpack.net/

Beyond Compare 4.3.2.24472 resolves several bugs and improves compatibility. This is not a security update.
https://www.scootersoftware.com/download.php?zz=dl4

BulkFileChanger 1.70 adds support for Office format date/time values. This is not a security update.
https://www.nirsoft.net/utils/bulk_file_changer.html

DesktopOK 6.71 adds new explore path feature. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

DevManView 1.60 adds option to Open Device Properties Window and option to create a shortcut to Device Properties window on your desktop. This is not a security update.
https://www.nirsoft.net/utils/device_manager_view.html

DriveLetterView 1.50 adds Open Device Properties Window option. This is not a security update.
https://www.nirsoft.net/utils/drive_letter_view.html

Etcher 1.5.63 updates libraries. This should be treated as a security update.
https://www.balena.io/etcher/

FolderChangesView 2.31 resolves a stability bug and changes keyboard accelerators for find and open in explorer. This is not a security update.
https://www.nirsoft.net/utils/folder_changes_view.html

GoodSync 10.10.12 resolves several stability issues and annoyances. This should be treated as a security update.
https://12pd.com/click?goodsync

IsMyHdOK 1.91 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

Ketarin 1.8.11 adds several new features including global “on update failed” command, variable sorting, and improved FileHippo integration. This is not a security update.
https://ketarin.org/

MS ISO Downloader 8.23 updates names and adds ISOs. This is not a security update.
https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool

NTLite 1.8.0.7217 adds support for 20H1, resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

OSForensics 7.0.1005 adds several new features, resolves bugs, and improves reliability. This is not a security update.
https://www.osforensics.com/download.html

PointerStick 3.71 resolves a bug and improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

SearchMyFiles 3.06 resolves the time range bug. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

TaskSchedulerView 1.53 adds an option to display only running tasks. This is not a security update.
https://www.nirsoft.net/utils/task_scheduler_view.html

USBDeview 2.81 adds an option to open Device Properties window. This is not a security update.
https://www.nirsoft.net/utils/usb_devices_view.html

WifiInfoView 2.55 adds ability to connect to an access point from within WifiInfoView and from the CLI. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

WinScan2PDF 5.09 improves compatibility with certain hardware and WIA. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 3.30 adds enterprise licensing, improved treemap, in-app context menu improvements, and search improvements. This is not a security update.
https://antibody-software.com/web/software/software/wiztree-finds-the-files-and-folders-using-the-most-disk-space-on-your-hard-drive/

WSUS Offline 11.8.2 updates libraries, improves compatibility, and supercedence rules. This is not a security update.
http://download.wsusoffline.net/

Developer Updates

These are unlikely to be of interest to most people.

AutoHotkey 1.1.31.01 resolves several bugs. This is not a security update.
https://www.autohotkey.com/download/

Android Studio 3.5.2 resolves several bugs. This is not a security update.
https://developer.android.com/studio/index.html

Inno Setup 6.0.3 and Inno Setup QuickStart 6.0.3 adds several new features including dark theme, new messages, and directives. This is not a security update.
http://www.jrsoftware.org/isdl.php

Node.js 13.1.0 resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

SQLite 3.30.1 resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

TortoiseGit 2.9.0 updates libraries and resolves many bugs. This is a security update.
https://tortoisegit.org/

TortoiseSVN 1.13.1 updates library and adds digital signature. This should be treated as a security update.
https://tortoisesvn.net/downloads.html

Visual Studio Code 1.40 resolves over 4600 issues. This is a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 6.0.14-133895 resolves several bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Adminer 4.7.4 is a security update.
https://www.adminer.org/en/

phpList 3.4.8 doesn’t provide a changelog, so should be treated as a security update.
http://www.phplist.com/download

Nextcloud Server 17.0.1 resolves several bugs. This is not a security update.
https://nextcloud.com/

Drupal 8.7.9 resolves several bugs. This is not a security update.
https://drupal.org/download

Joomla 3.9.13 is a security update.
https://www.joomla.org/

MailEnable 10.27 is a security update.
https://www.mailenable.com/

ScreenConnect 19.4.25759.7247 resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

WordPress 5.3 is a security update. This version adds the Twenty Twenty theme, improved block editor, accessibility and keyboard improvements, automatic image rotation, and more.
https://wordpress.org/

Akismet 4.1.3 improves compatibility and resolves several bugs. This is a security update.

bbPress 2.6.0 improves moderation, engagements, and several other features, adds compatibility with PHP 7.1+, and resolves over 400 bugs. This is not a security update.

Contact Form 7 5.1.5 improves the configuration validator. This is not a security update.

Custom Facebook Feed 2.12 resolves several bugs. This is not a security update.

myStickymenu 2.2.6 is a security update.

WooCommerce 3.8.0 doesn’t have a changelog so should be treated as a security update.

WP Mail SMTP 1.7.1 improves compatibility and resolves several bugs. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2019-04-09

Hi, Folks!

Today is Patch Tuesday for April 2019. Windows 10 v1903 is just around the corner. Edge users will start getting it over the next few days, with the majority of Home users getting it near the end of the month. You can delay it by installing v1809 if you haven’t done so yet, which will grant you a 3 month reprieve. Today is also the last day of updates released for any Windows 10 version prior to v1803. If you’re running v1507-v1709 (and not running a long-term servicing build) then you should upgrade to v1809 ASAP.

The typical computer should see roughly 1.2 GB in updates today. Let’s get started.

Microsoft released updates for Windows, .NET, Edge, Internet Explorer, Flash, POSReady, and MSRT (~850 MB). This includes security updates. A reboot is required.

Apple released updates for macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra, iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4, iCloud for Windows 7.11, Xcode 10.2, and watchOS 5.2. This includes security updates. Use Apple Software Update to install the most current versions.

iOS 12.2 is a security update. Use Settings, General, Software Update to install the most current update.

watchOS 5.2 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 12.2 is a security update. Use System, Software Update to install the most current version.

Adobe AIR 32.0.0.116 is a security update.
Win: https://12pd.com/click?air
Mac: https://12pd.com/click?airmac

Adobe Flash Player 32.0.0.171 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Google Chrome OS 73.0.3683.88 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The now-current release of Windows 10 (1903) will cause your computer to feel unusually slow until it is installed. This is a side-effect of the Windows 10 upgrade cycle, which pushes out 3-6gb through Windows update to get you to the latest Windows 10 release every 6 months. If you don’t let it finish and you’re on a slow connection, it will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Seagull Scientific Driver 2019.1 adds support for over 115 new printer models, but installs a Seagull Scientific Certificate which might later be used for exploitation. This is not a security update.
https://www.seagullscientific.com/drivers/

Display Driver Uninstaller 18.0.1.1 resolves several bugs. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Intel Driver & Support Assistant 19.3.12 adds support for newer hardware and resolves several bugs. This is not a security update.
https://www.intel.com/p/en_US/support/detect

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 73.0.3683.103 resolves several bugs. This is not a security update. Use Menu, Help, About to install the most current version.

Firefox 66.0.2 resolves several stability and compatibility bugs. This version follows closely on the 66.0.1 security update. Use Menu, Help, About to install the most current version.

Firefox ESR 60.6.1 is a security update. Use Menu, Help, About to install the most current version.

Vivaldi 2.4.1488.36 resolves several bugs, adds many new features including GUI customization and stack management. This is a security update. Use Menu, Help, About to install the most current version.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.6.1 resolves several bugs. This is not a security update.
https://getmailspring.com/

Thunderbird 60.6.1 is a security update. Use Menu, Help, About to install the most current version.

Internet Updates

One or more of these are likely to be of interest to everyone.

Skype 8.42.0.60
https://12pd.com/click?skype

FileZilla Client 3.41.2 is a security update.
https://filezilla-project.org/

MaxMind GeoIP 201904 is a data refresh.
https://dev.maxmind.com/geoip/

Npcap 0.992 resolves several bugs. This is not a security update.
https://nmap.org/npcap/

PuTTY 0.71 is a security update.
https://www.chiark.greenend.org.uk/~sgtatham/putty/latest.html

WGet 1.20.3 is a security update. However, this version breaks HTTPS so should be avoided for now.
https://eternallybored.org/misc/wget/

WinSCP 5.15 resolves several bugs and adds a dark mode. This is a security update.
https://winscp.net/eng/index.php

Line 9.4.0 adds chat capture. This is not a security update.
https://line.me/update

ZeroNet 0.6.5 resolves several bugs. This is not a security update.
https://zeronet.io/

Media Updates

These are unlikely to be of interest to most people.

iTunes 12.9.4 for Windows is a security update. Use Apple Software Update to install the most current version.

iCloud for Windows 7.11 is a security update. Use Apple Software Update to install the most current version.

CDBurnerXP 4.5.8.7042 resolves a burn speed bug on multiple copies. This is not a security update.
https://cdburnerxp.se/

FastStone Viewer 7.0 adds support for monitor color profiles, improves compatibility, and dual instance display option differences. This is a security update.
https://www.faststone.org/FSViewerDetail.htm

iTunes 12.9.4 is a security update.
https://www.apple.com/itunes/download/

Game Updates

These are unlikely to be of interest to most people.

EA Origin 10.5.36.23506 resolves several bugs. This is not a security update.
https://www.origin.com/en-us/download

PlayStation PS4 6.51 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/system-updates/ps4/

SteamOS 2019-02-28 is a security update.
https://store.steampowered.com/steamos/download/?ver=custom

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 19.010.20099 is a security update. Use Help, Check for Updates to install the most current version.

Atom 1.35.1 resolves a bug. This is not a security update.
https://atom.io/

Paint.net 4.1.6 resolves several bugs and improves performance. This is not a security update.
https://www.getpaint.net/

LibreOffice Fresh 6.2.2 resolves dozens of bugs. Remember that the Fresh branch is the LibreOffice Beta, so the Still (Stable) line should be used by most users.
https://www.libreoffice.org/

Artweaver 6.0.11 resolves several bugs. This is not a security update.
http://www.artweaver.de/

Notepad++ 7.6.6 resolves the file-change-detection nag on frequently updated files and adds GPG release signing.
https://12pd.com/click?npp

FrameMaker 2019.0.3 is a security update.
64-bit: https://supportdownloads.adobe.com/detail.jsp?ftpID=6645
32-bit: https://supportdownloads.adobe.com/detail.jsp?ftpID=6643

Adobe Bridge CC 9.0.3 is a security update.
https://helpx.adobe.com/security/products/bridge/apsb19-25.html

Adobe Experience Manager Forms 6.2.sp1-cfp15, 6.3.3.1, 6.4.2.0 are security updates.
https://helpx.adobe.com/security/products/aem-forms/apsb19-24.html

Adobe InDesign 14.0.2 is a security update.
https://helpx.adobe.com/security/products/indesign/apsb19-23.html

Adobe XD CC 17.0.12 is a security update.
https://helpx.adobe.com/security/products/xd/apsb19-22.html

Adobe Dreamweaver 19.1 is a security update.
https://helpx.adobe.com/security/products/dreamweaver/apsb19-21.html

Adobe Shockwave player 12.3.5.205 is a security update, however, it is officially end-of-life (EOL) as of today so your best option is to remove Shockwave from any and all devices.

Security Software Updates

One or more of these is likely to be of interest to most people.

DNSQuerySniffer 1.76 adds Quick Filter feature. This is not a security update.
https://www.nirsoft.net/utils/dns_query_sniffer.html

Gpg4win 3.1.7 is a security update.
https://www.gpg4win.org/download.html

RogueKiller 13.1.9 updates scanning engine and adds support for several new file types. This should be treated as a security update.
https://www.adlice.com/softwares/roguekiller/

Wireshark 3.0.1 resolves several security issues.
http://www.wireshark.org/

Stinger 12.1.0.3107 adds support for new detections. This is a security update.
https://12pd.com/click?stinger

Capture Updates

These are unlikely to be of interest to most people.

VideoCacheView 3.05 adds manual merge option. This is not a security update.
https://www.nirsoft.net/utils/video_cache_view.html

Converter Updates

These are unlikely to be of interest to most people.

CDex 2.16 resolves several bugs. This is not a security update.
http://cdex.mu/?q=download

DVDFab 11.0.2.3 resolves several bugs and adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

NTLite 1.7.5.6842 resolves several bugs and adds new options. This is not a security update.
https://www.ntlite.com/download/

CPU-Z Installer 1.88 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

Cygwin 3.0.6 resolves several bugs. This is not a security update.
https://cygwin.com/

GoodSync 10.9.30 resolves several bugs. This is not a security update.
https://12pd.com/click?goodsync

HWMonitor 1.40 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

NirCmd 2.82 improves High-DPI compatibility. This is not a security update.
https://www.nirsoft.net/utils/nircmd.html

OSFMount 3.0.1000 adds several new features. This is not a security update.
https://www.osforensics.com/tools/mount-disk-images.html

RoboForm 8.5.8 resolves several bugs. This is not a security update.
https://12pd.com/click?rf

Rufus 3.5 adds Windows ISO download, adds Windows To Go support, and resolves several bugs. This is not a security update.
https://rufus.ie/en_IE.html

USBDeview 2.80 resolves serial number CLI options. This is not a security update.
https://www.nirsoft.net/utils/usb_devices_view.html

WakeMeOnLan 1.84 updates the MAC database. This is not a security update.
https://www.nirsoft.net/utils/wake_on_lan.html

WinScan2PDF 4.77 improves stability. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WSUS Offline 11.6.1 resolves several bugs. This is not a security update.
http://download.wsusoffline.net/

Developer Updates

These are unlikely to be of interest to most people.

AutoHotkey 1.1.30.03 resolves several bugs. This is not a security update.
https://www.autohotkey.com/download/

Godot 3.1 adds several new features and improves stability. This is not a security update.
https://godotengine.org/

Node.js 11.13.0 resolves several bugs. This is not a security update.
https://nodejs.org/en/

Redemption 5.20.0.5298 resolves several bugs. This is not a security update.
http://www.dimastr.com/redemption/

DB Browser for SQLite 3.11.2 resolves several bugs. This is not a security update.
https://sqlitebrowser.org/

Visual Studio Code 1.33 adds several new features. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.2 resolves several bugs. This is not a security update.
http://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

PPSSPP 1.8.0 doesn’t provide a changelog so should be treated as a security update.
https://ppsspp.org/downloads.html

VMware Player 15.0.4 is a security update.
https://www.vmware.com/products/player/

Web Package Updates

These are likely to be of interest only to web developers.

Joomla 3.9.5 is a security update.
https://www.joomla.org/

Drupal 8.6.14 resolves several bugs. This is not a security update.
https://drupal.org/download

phpList 3.4.0 is a security update.
https://www.phplist.com/download

TinyMCE 5.0.3 resolves several bugs. This is not a security update.
https://www.tiny.cloud/get-tiny/

MailEnable 10.23 resolves several bugs. This is not a security update.
https://www.mailenable.com/

ScreenConnect 19.0.23234.7027 reorganizes the control interface, uses a new default theme, reformats the General tab and more. This is not a security update.
https://www.screenconnect.com/Download

Nextcloud Server 15.0.7 is a security update.
https://nextcloud.com/

WordPress 5.1.1 is a security update.
https://wordpress.org/

Redirection 4.2.1 resolves several bugs. This is not a security update.

NextScripts Social Networks Auto-Poster 4.3.4 removes Google+ and 500px, adds Google My Business and fixes VK. This is not a security update.

W3 Total Cache 0.9.7.3 resolves several bugs and improves compatibility. This is not a security update.

WooCommerce 3.5.7 is a security update.

WP Mail SMTP 1.4.2 removes TGMPA. This is not a security update.

WPtouch 4.3.36 adds kinsta check. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2019-02-12

Happy Valentine’s Day, Folks!

Show her how much you care with a subscription to SaferPC!
https://saferpc.info/updates/

Today is Patch Tuesday and it’s a big one. Alongside every major vendor updates, nearly all mobile platforms have major updates over the last month to address security issues with WiFi and a lot of hardware has hit, or is nearing, end-of-life (EOL).

This month Nvidia drops support for the entire Fermi line of GPUs including everything from the GeForce, GT and GTX models 4xx up to 8xx. If your video card falls in line with these models you should consider replacing the card or the device. While it will continue to operate it can no longer be secured.

Windows 7 is nearing EOL. It will be supported for less than a year from this posting. If you’re still using Windows 7 you need to start actively looking for alternatives. Windows 10 is a seamless upgrade for most, but switching to Linux is also a viable option for others.

The last couple weeks has seen Firefox 65 severely stumble as a result of Avast’s poorly designed MITM “security feature,” Apple’s FaceTime being abused to listen in to call recipients, whether they answer or not, and Facebook paying children to install an “anything-but-private” VPN. While each of these is a horrible abuse of trust, their supporters quickly dismiss the severity of the issues because they’re large companies. That’s not the way it works. The larger the company, the more thought and process went into each and every decision. If anything, this demonstrates exactly why these companies should never be trusted.

The typical computer should see roughly 1.5 GB in updates today. Let’s get started.

Microsoft released updates for Windows, Flash, Edge, .NET, and MSRT (~500MB). This includes security updates. A reboot is required.

Apple released updates for iOS 12.1.4, macOS Mojave 10.14.3 Supplemental Update, Security Update 2019-001 High Sierra, Security Update 2019-001 Sierra, Shortcuts 2.1.3 for iOS, Safari 12.0.3, watchOS 5.1.3, tvOS 12.1.2, iTunes 12.8.2 for Mac, Pro Video Formats 2.1, iCloud for Windows 7.10, and iTunes 12.9.3 for Windows. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 12.1.4 is a security update. Use Settings, General, Software Update to install the most current update.

watchOS 5.1.3 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 12.1.2 is a security update. Use System, Software Update to install the most current version.

Adobe Flash Player 32.0.0.142 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Google Chrome OS 72.0.3626.97 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The now-current release of Windows 10 (1809) will cause your computer to feel unusually slow until it is installed. This is a side-effect of the Windows 10 upgrade cycle, which pushes out 3-6 GB through Windows update to get you to the latest Windows 10 release every 6 months. If you don’t let it finish and you’re on a slow connection, it will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information. Windows 10 v1903 will be available within the next 6 weeks, and if you don’t have 1809 by then, it will be forced on you.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.0.8 resolves several bugs and improves compatibility. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Intel Driver Update 19.1.4 resolves several bugs. This is not a security update.
https://www.intel.com/p/en_US/support/detect

nVidia 418.81 adds support for newer hardware and benchmark testing of DLSS. This is not a security update.

Logitech SetPoint 6.69.123 resolves several bugs. This is not a security update.
https://support.logitech.com/en_us/software/setpoint

Browser Updates

One or more of these are likely to be of interest to everyone.

Vivaldi 2.3.1440.41 adds several new features and bug fixes. This is a security update.
https://vivaldi.com/

Google Chrome 72.0.3626.96 is a security update. Use Menu, Help, About to install the most current version.

Firefox 65.0 is a security update, and is sadly unreliable due to several factors. The next build, due any time, will add MITM detection to resolve issues with poorly designed security products like Avast. Use Menu, Help, About to install the most current version.

Firefox ESR 60.5.0 is a security update. Use Menu, Help, About to install the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.5.6 resolves several bugs and improves mail setup for certain ISPs. This is not a security update.
https://getmailspring.com/

Thunderbird 60.5.0 is a security update. Use Menu, Help, About to install the most current version.

NK2Edit 3.39 resolves a cosmetic bug. This is not a security update.
https://www.nirsoft.net/utils/outlook_nk2_edit.html

Internet Updates

One or more of these are likely to be of interest to everyone.

Prosody 0.11.2 resolves several bugs. This is not a security update.
https://prosody.im/download/start

Skype 8.37.0.98 improves notifications, keyboard shortcuts, and status controls. This is not a security update.
https://12pd.com/click?skype

Evernote 6.17.6.8292 improves templates, notebook management, and resolves bugs. This is not a security update.
https://www.evernote.com/

FileZilla Client 3.40.0 is a security update.
https://filezilla-project.org/

FreeFileSync 10.9 resolves several bugs and extends several Windows and macOS features to Linux. This is not a security update.
https://www.freefilesync.org/download.php

MaxMind GeoIP 201902 is a data refresh.
https://dev.maxmind.com/geoip/

Npcap 0.99-r9 resolves several bugs. This is not a security update.
https://nmap.org/npcap/

Technitium DNS Server 2.4 resolves several bugs and adds new features, including identifying source blocklists with a TXT record and import/export. This is not a security update.
https://technitium.com/dns/

Media Updates

These are unlikely to be of interest to most people.

VLC Media Player 3.0.6 resolves several bugs. This is not a security update.
https://www.videolan.org/vlc/

MusicBrainz Picard 2.1.2 resolves several bugs. This is not a security update.
https://picard.musicbrainz.org/

FastStone Viewer 6.9 adds support for M2TS, file properties shortcut, and resolves several bugs. This is not a security update.
http://www.faststone.org/FSViewerDetail.htm

Game Updates

These are unlikely to be of interest to most people.

EA Origin 10.5.34.21025 resolves several bugs. This is not a security update.
https://www.origin.com/en-us/download

Steam 2018.02.01 resolves several bugs. This is not a security update.

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 19.010.20091 is a security update. Use Help, Check for Updates to get the most current version.

Artweaver 6.0.10 resolves several bugs. This is not a security update.
https://www.artweaver.de/

IcoFX 3.3 adds light and dark modes, monochrome theme, corner rounding, touch support, and resolves several bugs. This is not a security update.
https://icofx.ro/

LibreOffice Still 6.1.5 provides nearly 80 bug fixes and improvements. This is not a security update.
https://www.libreoffice.org/

LibreOffice Fresh 6.2.0 is the first release of the new Fresh line and resolves almost 250 bugs from the previous build. This is not a security update.
https://www.libreoffice.org/

Notepad++ 7.6.3 is a security update. This version reverses all of the annoying plugin changes since 7.6 and adds Markdown support.
https://12pd.com/click?npp

Security Software Updates

One or more of these is likely to be of interest to most people.

QubesOS 4.0.1 is a security update.
https://www.qubes-os.org/downloads/

Java 8u201 is a security update. If you are unsure whether you need Java or think that Java and JavaScript are the same thing, you should remove Java instead.

DNSQuerySniffer 1.73 resolves a cosmetic bug and adds an option to disable header line in export data. This is not a security update.
https://www.nirsoft.net/utils/dns_query_sniffer.html

Avast! Home Edition 19.2.2364 is a bug-fix release. However, I strongly advise you to consider any other AV since Avast performs MITM attacks against all secure websites. Among other things, it will inevitably result in their root certificate being exploited to infect everyone that uses Avast.

Wireshark 2.6.6 is a security update.
https://www.wireshark.org/

IISCrypto 3.0 adds support for new OS, improves controls and strict template, and resolves several bugs. This should be treated as a security update.
https://www.nartac.com/Products/IISCrypto/Default.aspx

RogueKiller 13.1.4 improves stability and reliability, updates libraries, and exclusion controls. This should be treated as a security update.
https://www.adlice.com/softwares/roguekiller/

SuperAntiSpyware 8.0.1030 doesn’t have a valid changelog, so should be treated as a security update.
https://www.superantispyware.com/download.html

TDSSKiller 3.1.0.26 adds new malware detection and removal. This should be treated as a security update.
https://support.kaspersky.com/viruses/utility#TDSSKiller

Wireless Network Watcher 2.20 resolves a device association bug. This is not a security update.
https://www.nirsoft.net/utils/wireless_network_watcher.html

Converter Updates

These are unlikely to be of interest to most people.

CDex 2.14 resolves several bugs. This is not a security update.
https://cdex.mu/?q=download

DVDFab 11.0.1.5 adds support for new encodings and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

NTLite 1.7.2.6717 adds support for new OS, updates components and resolves several bugs.
https://www.ntlite.com/download/

1Password for Windows 7.3.657 resolves an upgrade bug and several crash issues. This is not a security update.
https://1password.com/downloads/windows/

8GadgetPack 28.0 resolves several bugs and updates all included gadgets. This is not a security update.
https://8gadgetpack.net/

Beyond Compare 4.2.9.23626 resolves several OneDrive compatibility issues and resolves folder timestamp comparison bug. This is not a security update.
https://www.scootersoftware.com/download.php?zz=dl4

DesktopOK 6.03 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

Everything 1.4.1.932 resolves several bugs. This is not a security update.
https://www.voidtools.com/

GoodSync 10.9.23 resolves several bugs. This is not a security update.
https://12pd.com/click?goodsync

HWMonitor 1.39 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/hwmonitor.html

ImageUSB 1.4.1001 resolves issues with writing to bit-locked drives and other bugs. This is not a security update.
https://www.osforensics.com/tools/write-usb-images.html

IsMyHdOK 1.64 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

SimpleWMIView 1.35 adds support for class auto-completion. This is not a security update.
https://www.nirsoft.net/utils/simple_wmi_view.html

TcpLogView 1.31 resolves a log file compatibility bug. This is not a security update.
https://www.nirsoft.net/utils/tcp_log_view.html

USBDeview 2.79 adds always-on-top option. This is not a security update.
https://www.nirsoft.net/utils/usb_devices_view.html

WifiInfoView 2.42 updates internal MAC addresses file and resolves SSID mapping bug. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

WinScan2PDF 4.71 now preserves window location and adds open/edit options. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 3.28 resolves two filter bugs. This is not a security update.
https://antibody-software.com/web/software/software/wiztree-finds-the-files-and-folders-using-the-most-disk-space-on-your-hard-drive/

Developer Updates

These are unlikely to be of interest to most people.

MySQL 8.0.15 resolves over 300 bugs, adds dual-password support and updates libraries. This is not a security update.
https://www.mysql.com/downloads/installer/

Node.js 11.9.0 updates libraries and resolves dozens of bugs. This is a security update.
https://nodejs.org/en/

Redemption 5.19.0.5248 resolves several bugs and improves compatibility with Outlook 2019. This is not a security update.
http://www.dimastr.com/redemption/

SQLite 3.27.1 resolves several bugs and improves security enforcement. This is a security update.
https://www.sqlite.org/download.html

DB Browser for SQLite 3.11.0 is now released in MSI format for Windows and provides dozens of other improvements and bug fixes. This is not a security update.
https://sqlitebrowser.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 6.0.4-128413 adds support for additional hardware, resolves several bugs, and improves stability. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

ScreenConnect 6.9.21691.6956 resolves several stability bugs. This is not a security update.
https://www.screenconnect.com/Download

Joomla 3.9.3 is a security update.
https://www.joomla.org/

TinyMCE 5.0.0 is a major new update with dozens of new features and controls. This is not a security update.
https://www.tiny.cloud/get-tiny/

Drupal 8.6.9 resolves several bugs. This is not a security update.
https://drupal.org/download

Nextcloud Server 15.0.4 resolves several bugs. This is not a security update.
https://nextcloud.com/

phpMyAdmin 4.8.5 is a security update.
https://www.phpmyadmin.net/home_page/news.php

Adminer 4.7.1 resolves several bugs. This is not a security update.
https://www.adminer.org/en/

WordPress 5.0.3 resolves over 40 issues, mostly with the new block editor. This is not a security update.
https://wordpress.org/

Akismet 4.1.1 improves responsiveness. This is not a security update.

Antispam Bee 2.9.1 resolves several bugs and improves reliability. This is not a security update.

Postie 1.9.28 resolves several bugs. This is a security update.

Redirection 3.7.3 adds PHP warnings and resolves several bugs. This is not a security update.

NextScripts Social Networks Auto-Poster 4.3.3 is a security update.

W3 Total Cache 0.9.7.2 resolves many bugs and compatibility issues. This is not a security update.

WooCommerce 3.5.4 resolves dozens of bugs. This is not a security update.

WP Add Custom CSS 1.1.4 resolves a compatibility issue. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/