Wednesday, May 29, 2019

Microsoft Cumulative Update for WIndows 10 Version 1903



Windows 10 Version 1903 is continuing to be rolled out slowly.  However, Microsoft has released a cumulative update with non-security improvements and fixes for this newly-released version.  In addition to addressing a number of issues, the update addresses "Windows Update blocked because of drive reassignment", described in KB 4500988.


To view the improvements and features, see the following:  KB4497935 (OS Build 18362.145)

To download and install this update, go to Settings > Update and Security Windows Update and select Check for updates.
If you are using Windows Update, the latest SSU (KB4498523) will be offered to you automatically. However, to get the standalone package for the SSU update, go to the Microsoft Update Catalog website.


Home
Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Tuesday, May 28, 2019

Microsoft Cumulative Update Released for Windows 10 1709 and 1703


Microsoft has released cumulative updates with non-security improvements and fixes for Windows 10 Versions 1709 and 1703.  As shown in their respective KB articles, the issues addressed are almost the same for both versions as is the sole known issue.
Windows 10 Version 1709:   KB4499147 (OS Build 16299.1182), Microsoft Update Catalog

Windows 10 Version 1703:   KB4499162 (OS Build 15063.1839), Microsoft Update Catalog
To download and install this update, go to Settings > Update and Security Windows Update and select Check for updates.

The standalone packages are available for both versions from the Microsoft Update Catalog, linked above. Note, however, if you use the Update Catalog, it will be necessary to manually check for any needed Servicing stack updates (SSU).  Using Windows Update, any needed Servicing stack updates will be offered automatically.



Home
Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Monday, May 27, 2019

A Day of Remembrance

Vietnam Memorial Wall
April 30, 2005
Photograph by Luigi Masu

In honor of those who gave their all in the service of their country. 


Memorial Day History


Home
Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Thursday, May 23, 2019

Microsoft Cumulative Update Released for Windows 8.1 and Windows 7

Microsoft has released a cumulative update for both Windows 7 SP1 and Windows 8.1. There is a known issue for both operating systems for users of Mcfee:
Microsoft and McAfee have identified an issue on devices with McAfee Endpoint Security (ENS) Threat Prevention 10.x or McAfee Host Intrusion Prevention (Host IPS) 8.0 or McAfee VirusScan Enterprise (VSE) 8.8 installed. It may cause the system to have slow startup or become unresponsive at restart after installing this update.


Microsoft has released a cumulative update with non-security improvements and fixes for Windows 8.1. This update includes improvements and fixes with no new operating system features introduced.

See KB4499182 for the list of improvements and fixes as well as the various know issues and accompanying workarounds.  To get the standalone package for this update, go to the Microsoft Update Catalog website.





Microsoft has also released a cumulative update with non-security improvements and fixes for Windows 7 SP1. This update includes improvements and fixes with no new operating system features introduced.

See KB4499178 for the list of improvements and fixes as well as the various know issues and accompanying workarounds.  As indicated previously, starting with KB4493472 Monthly Rollup updates will no longer include PciClearStaleCache.exe. This installation utility addressees inconsistencies in the internal PCI cache. This can cause the symptoms documented in the KB article.

If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.  To get the standalone package for this update, go to the Microsoft Update Catalog website.



Home
Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...
 


Tuesday, May 21, 2019

Windows 10 Version 1903, May 2019 Update Released!



The long-awaited Windows 10 Version 1903 "Spring" Update has been released.  Although the release will take a "measured and throttled approach" and may not be available in all areas yet, if you have Windows 10, version 1803 or version 1809 and have the May 21, 2019 (or later) update installed you can try to get the update now.

The May 21, 2019 update is a cumulative update (linked below) which provides the functionality change shown below.  The change allows the user to decide when to install a feature update by doing the following:
  • Open Windows Update settings and select Update, Windows and Security, Windows Update, Check for updates.
  • After the installation of the May 21 cumulative update, if the Windows 10 Version 1903 update is available, select Download and install now.  
It is important to note that the installation of the cumulative update won't necessarily be the catalyst for installing Windows 10 Version 1903 if you are not ready to do so.  Rather, as explained by Windows Corporate Vice President Mike Fortin in Improving the Windows 10 update experience with control, quality and transparency, the option is provided to download and install now rather than waiting.  However, you can still wait until the update is offered as well as pause updates.

Before attempting the update, however, it is advisable to check whether an of the Known issues and notifications will be a problem for your device.  Also note that the minimum storage requirement for Windows 10 version 1903 is 32GB for both 32-bit and 64-bit Windows. Although an older article, see Andre Da Costa's suggestions on 7 Ways to Maximize Storage Space on Low Capacity Windows 10 Devices.

To see what new Windows 10 features and changes to Windows apps have been tested by Windows Insiders prior to the release, scroll through the "What's new" links in the References below.

References:




Home
Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Microsoft Cumulative Update Released for Windows 10 Versions 1803 and 1809



Microsoft has released cumulative updates with non-security improvements and fixes for Windows 10 Versions 1803 and 1809.  In addition to the numerous improvements and fixes, the update provides the following functionality change which allows the user to decide when to install a feature update:
"we are introducing functionality that allows you to decide when to install a feature update. You control when you get a feature update while simultaneously keeping your devices up to date. Feature updates that are available for eligible devices will appear in a separate module on the Windows Update page (Settings > Update & Security > Windows Update). If you would like to get an available update right away, select Download and install now. To find out more about this feature, please go to this blog."
To view the improvements and features, see the following:


To download and install this update, go to Settings > Update and Security Windows Update and select Check for updates.
To get the standalone package for this update, go to the Microsoft Update Catalog website.



Home
Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Mozilla Firefox Version 67.0 Released With Security Updates


Firefox Mozilla sent Firefox Version 67.0 to the release channel today.  The update included twenty-two (22) security updates of which two (2) are critical, twelve (12) are high, six (6) moderate and two (2) are rated low.

Firefox  ESR was updated to version 60.7.

Critical

High

Moderate

Low

New

  • Enhanced tracking protection: Simplified content blocking settings give users standard, strict, and custom options to control online trackers. A redesigned content blocking section in the site information panel (viewed by expanding the small “i” icon i
  • Firefox 67 demonstrates improved performance thanks to a number of changes such as:
    • Lowering priority of setTimeout during page load
    • Delayed component initialization until after start up
    • Painting sooner during page load but less often
    • Suspending unused tabs
    Learn more about our approach to performance in 67 in the Mozilla blog.
  • Users can block known cryptominers and fingerprinters in the Custom settings of their Content Blocking preferences.
  • Keyboard accessibility has improved in the latest version of Firefox. Toolbar and toolbar overflow menu are both fully keyboard accessible: keyboard users can now access add-ons, the downloads panel, the overflow, Page actions and Firefox menus, and much more.
  • Private Browsing sees both usability and security improvements:
    • Save passwords in private browsing mode
    • Choose which extensions to exclude from private tabs
  • A myriad of new features help make Firefox easier to use:
    • We’ve added a toolbar menu for your Firefox Account to provide more transparency for when you are synced, sharing data across devices and with Firefox. Personalize the appearance of the menu with your own avatar
    • Tabs can now be pinned from the Page Actions menu in the address bar
    • Firefox will highlight useful features (like Pin Tabs) when users are most likely to benefit from them.
    • Easier access to your list of saved logins from the main menu and login autocomplete. Learn about all the ways you can manage your passwords in Firefox.
    • The Import Data from Another Browser feature is now also available from the File menu
    • Users will be able to run different Firefox installs side by side by default so that you can run the beta and release versions simultaneously
  • Firefox will now protect you against running older versions of the browser which can lead to data corruption and stability issues
  • Firefox is upgrading to the newer, higher performance, AV1 decoder known as ‘dav1d’
  • WebRender is gradually enabled by default on Windows 10 desktops with NVIDIA graphics cards
  • Mozilla’s highest performing JavaScript compiler now supports ARM64 Windows devices.
  • Enable FIDO U2F API, and permit registrations for Google Accounts
  • Some users will see experiments with an improved Pocket experience in Firefox Home with different layouts and more topical content.

Changed:

  • Firefox no longer supports handling webcal: links with 30boxes.com
  • Change to extensions in Private Windows: Any new extensions you add to the browser won’t work in Private Windows unless you allow this in the settings.
  • Users will no longer be able to upload and share screenshots through the Firefox Screenshots server. Users who want to keep existing screenshots need to export them before the server shuts down in the coming months.
  • Included Twemoji Mozilla font updated to support Emoji 11.0
  • Font and date adjustments to accommodate the new Reiwa era in Japan


Update:  To get the update now, select "Help" from the Firefox menu, then pick "About Firefox."  Mac users need to select "About Firefox" from the Firefox menu. If you do not use the English language version, Fully Localized Versions are available for download.

References


Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Sunday, May 19, 2019

Microsoft Cummulative Update Released for ALL Windows 10 Versions!


Microsoft has released a cumulative updates with non-security improvements and fixes for each of the released Windows 10 versions.   This update addresses an issue that may prevent access to some gov.uk websites that don’t support HTTP Strict Transport Security (HSTS) when using Internet Explorer 11 or Microsoft Edge.

See the KB articles listed below for your specific version of Windows 10:
1903 support.microsoft.com/help/4505057
1809 support.microsoft.com/help/4505056
1803 support.microsoft.com/help/4505064
1709 support.microsoft.com/help/4505062 
1703 support.microsoft.com/help/4505055 
1607 support.microsoft.com/help/4505052 
1507 support.microsoft.com/help/4505051 .

To download and install this update, go to Settings > Update and Security Windows Update and select Check for updates.
To get the standalone package for this update, go to the Microsoft Update Catalog website.



Home
Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Tuesday, May 14, 2019

Microsoft May 2019 Security Updates



The May security updates have been released and consist of 79 CVEs along with two advisories. Of these 79 CVEs, 22 are rated Critical and 57 are rated Important in severity. Two of these bugs are listed as publicly known and one is listed as under active attack at the time of release.

The updates address Remote Code Execution, Elevation of Privilege, Security Feature Bypass, Information Disclosure, Denial of Service, Spoofing, and Security Feature Bypass and apply to the following:  The updates cover Internet Explorer, Edge, Windows, ChakraCore, Microsoft Office and Microsoft Office Services and Web Apps, .NET Framework and ASP.NET, Skype for Android, Azure DevOps Server, and the NuGet Package Manager.

Edit Note:  Due to the severity of CVE-2019-0708, Microsoft also released KB 4500331 for versions of Windows that no longer receive mainstream support:  Windows XP SP3 x86, Windows XP Professional X64 SP2, Windows XP Embedded SP3 x86 as well as Windows Server 2003.

Known Issues:  See the Known Issues and accompanying work-around in the KB Articles for your version of Windows 10:
Recommended Reading:  

See Dustin Childs review and analysis in Zero Day Initiative — The May 2019 Security Update Review.

For more information about the updates released today, see https://portal.msrc.microsoft.com/en-us/security-guidance/summary.  Updates can be sorted by OS from the search box. Information about the update for Windows 10 is available at Windows 10 Update history.

Additional Update Notes:

  • Adobe Flash Player -- For Windows Server 2012, Windows 8.1, Windows Server 2012 R2, Windows RT 8.1 and Windows 10, Adobe Flash Player is now a security bulletin rather than a security advisory and is included with the updates as identified above.
  • MSRT -- Microsoft released an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center.  Note:  Users who are paranoid about the remote possibility of a FP can opt to run this tool from a Command Prompt, appending a   /N   parameter [for "detect only" mode].
  • Servicing Stack Updates -- A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update. 
  • Windows 10 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10, in addition to non-security updates. The updates are available via the Microsoft Update Catalog.
  • Windows 8.1 Update History 
  • Updates for Windows RT 8.1 and Microsoft Office RT software are only available via Windows Update.
  • Windows 7 SP1 Update Histolry
  • For information on lifecycle and support dates for Windows 10 operating systems, please see Windows Lifecycle Facts Sheet.

References


Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...





Adobe Acrobat DC and Reader DC Security Updates Released

Adobe
Adobe has released critical and important security updates for Adobe Acrobat and Reader for Windows and macOS. Successful exploitation could lead to arbitrary code execution in the context of the current user.  

Release date:  May 14, 2019
Vulnerability identifier: APSB19-18
Platform: Windows and MacOS

Update or Complete Download

Reader DC and Acrobat DC were updated to version 2019.012.20034. Update checks can be manually activated by choosing Help/Check for Updates. 
Note: UNcheck any pre-checked additional options presented with the update. They are not part of the software update and are completely optional.


References





Home
Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...



Adobe Flash Player and AIR Critical Security Update Released


Adobe Flashplayer

Adobe has released Version 32.0.0.192 of Adobe Flash Player and AIR for Windows, macOS, Linux and Chrome OS. These updates address a critical vulnerability in Flash Player.  Successful exploitation could lead to arbitrary code execution in the context of the current user.

Release date:  May 14, 2019
Vulnerability identifier: APSB19-19
Platform:  Windows, Macintosh, Linux and Chrome OS

Update:

*Important Note:  Downloading the update from the Adobe Flash Player Download Center link includes a pre-checked option to install unnecessary extras, such as McAfee Scan Plus or Google Drive.  If you use the download center, uncheck any unnecessary extras that you do not want.  They are not needed for the Flash Player update.

    Verify Installation

    To verify the Adobe Flash Player version number installed on your computer, go to the About Flash Player page, or right-click on content running in Flash Player and select "About Adobe Flash Player" from the menu. 

    Do this for each browser installed on your computer.

    To verify the version of Adobe Flash Player for Android, go to Settings/Applications/Manage Applications/Adobe Flash Player x.x.

    References



    Remember - "A day without laughter is a day wasted."
    May the wind sing to you and the sun rise in your heart...









    Tuesday, May 07, 2019

    Firefox Version 66.0.5 Released to Fix Master Password Issue


    Firefox Mozilla sent Firefox Version 66.0.5 to the release channel today to solve the web extension issue for those using a master password resulting from the expired certificate.  At this point Firefox ESR remains at Version 60.6.2.

      Fixed


      Update:  To get the update now, select "Help" from the Firefox menu, then pick "About Firefox."  Mac users need to select "About Firefox" from the Firefox menu. If you do not use the English language version, Fully Localized Versions are available for download.

      References


      Remember - "A day without laughter is a day wasted."
      May the wind sing to you and the sun rise in your heart...

      Sunday, May 05, 2019

      Mozilla Firefox Version 66.0.4 Released To Replace Expired Certificate


      Firefox Mozilla sent Firefox Version 66.0.4 to the release channel today to replace the expired certificate that resulted in add-ons being disabled.  Note, however, that there are a number of unresolved issues, listed below.

      Firefox ESR was updated to Version 60.6.2.

        Fixed

        Unresolved

          • A small number of add-ons may be listed as unsupported or may not appear in about:addons. Their data is not lost; users should be able to re-install the add-ons and recover the data (Bug 1549129). More support information
          • If add-ons that use Containers functionality (such as Multi-Account Containers and Facebook Container) were disabled as part of this problem, any lost site data or custom configurations for those add-ons will not be recovered by this release. Users may need to set them up and login again in about:addons (Bug 1549204). More support information
          • Themes may not be re-enabled. Users may need to re-enable them in about:addons (Bug 1549022). More support information
          • Home page or search settings customized by an add-on may be reset to defaults. Users may need to customize them again in about:preferences or about:addons (Bug 1549192). More support information

          Update:  To get the update now, select "Help" from the Firefox menu, then pick "About Firefox."  Mac users need to select "About Firefox" from the Firefox menu. If you do not use the English language version, Fully Localized Versions are available for download.

          References


          Remember - "A day without laughter is a day wasted."
          May the wind sing to you and the sun rise in your heart...

          Friday, May 03, 2019

          Windows 10 Version 1809 Cummulative Update Released


          Microsoft has released a cumulative update with non-security improvements and fixes for Windows 10 version 1809.  This update includes a long list of improvements and fixes with no new operating system features introduced.

          Edit Note:  I apparently have the May 1903 Upgrade in mind and have made the correction to correctly reflect that the cumulative update was for version 1809.

          See KB4495667 for the list of improvements and fixes as well as the various know issues and accompanying workarounds.

          If you installed earlier updates, only the new fixes contained in this package will be downloaded and installed on your device.  The update is available from Windows Update or the Microsoft Update Catalog. In addition, the latest servicing stack update (SSU), KB4485449, will be offered automatically.

          To download and install this update, go to Settings > Update & Security > Windows Update and select Check for updates.
          To get the standalone package for this update, go to the Microsoft Update Catalog website.



          Home
          Remember - "A day without laughter is a day wasted."
          May the wind sing to you and the sun rise in your heart...