Tuesday, July 27, 2021

Out-of-Band Update for Windows 10 Version 1809

 




Microsoft released an out-of-band non-security quality improvement update described as follows:

"
Addresses an issue with devices that do not comply with section 3.2.1 of the RFC 4556 specification. Noncompliant printers, scanners, and multifunction devices might not work when you use smart card authentication (PIV). This issue occurs after you install the July 13, 2021 update on domain controllers (DC) in your environment. For more information, see KB5005408."


Update:  This out-of-band update can only be obtained from the standalone package at the Microsoft Update Catalog website.

 

References





Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Thursday, July 22, 2021

Mozilla Firefox Version 90.0.2 Released

 FirefoxMozilla sent another update to the release channel today, Firefox Version 90.0.2.

Fixed

Changed

  • Updates to support DoH Canada rollout

Update 

To get the update now, select "Help" from the Firefox menu, then pick "About Firefox."  Mac users need to select "About Firefox" from the Firefox menu. If you do not use the English language version, Fully Localized Versions are available for download.

References


Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...



Tuesday, July 20, 2021

Oracle Java SE Security Update Released

 

java

Oracle released the scheduled security update for its Java SE Runtime Environment software.  

Important:  The Edge browser does not support plug-ins.  In the event you still have a need for Java, it will be necessary to use Firefox or open with Internet Explorer by selecting the "More Actions" option located at the top of the Edge browser and then click "Open with Internet Explorer.  (See Windows 10 and Java.)

Update

If Java is still installed on your computer, it is recommended that this update be applied as soon as possible due to the threat posed by a successful attack.

Download Information

Java SE Runtime Environment Version 8u301:  https://www.oracle.com/java/technologies/javase-jre8-downloads.html or https://java.com/en/download/manual.jsp.

Notes:

  • UNcheck any pre-checked toolbar and/or software options presented with the update. They are not part of the software update and are completely optional.  Preferably, see the instructions below on how to handle "Unwanted Extras".  
  • Oracle does not plan to migrate desktops from Java 8 to Java 9 through the auto update feature.  Therefore, it is strongly recommended that you uninstall JRE 8 prior to updating.
  • Verify your version:  http://www.java.com/en/download/testjava.jsp  Note:  The Java version verification page will only work if your browser has NPAPI support.  In that case, to check the version, open a cmd window and enter the following (note the space following Java):  java -version

Critical Patch Updates

For Oracle Java SE Critical Patch Updates, the next scheduled dates are as follow
  • 19 October 2021 
  • 18 January 2022
  • 19 April 2022
  • 19 July 2022

Unwanted "Extras"

Although most people do not need Java on their computer, there are some programs and games that require Java.  In the event you need to continue using Java, How-to Geek discovered a little-known and  publicized option in the Java Control Panel to suppress the offers for the pre-checked unwanted extras that Oracle has long included with the updates.  Although the Ask Toolbar has been removed, tha does not preclude the pre-checked option for some other unnecessary add-on.

Do the following to suppress the sponsor offers:
  1. Launch the Windows Start menu
  2. Click on Programs
  3. Find the Java program listing
  4. Click Configure Java to launch the Java Control Panel
  5. Click the Advanced tab and go to the "Miscellaneous" section at the bottom.
  6. Check the box by the “Suppress sponsor offers when installing or updating Java” option and click OK.
Java suppress sponsor offers

Java Security Recommendations

1)  In the Java Control Panel, at minimum, set the security to high.
2)  Keep Java disabled until needed.  Uncheck the box "Enable Java content in the browser" in the Java Control Panel.
3)  Instructions on removing older (and less secure) versions of Java can be found at http://java.com/en/download/faq/remove_olderversions.xml

References




Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...



Monday, July 19, 2021

Pale Moon Version 29.3.0 Released With Security Updates

 


Pale Moon

Pale Moon has been updated to version 29.3.0.  This is a development, bugfix and security release.  Linux versions may be slightly delayed since the update was released earlier than planned.  

Due to the security patches in this update, it is strongly recommended that those who haven't updated from version 29.1.1 or older due to extension compatibility update now.

Changes/fixes:
  • "Web Developer" is now called "Developer Tools" in the menus.
  • Updated and aligned about:home, the QuickDial page and logopage styling.
  • Re-organized the privacy category in the preferences window.
  • Enabled brotli compression for http for sites that support it. See implementation notes.
  • Implemented EventTarget as a constructor.
  • Updated Windows 10 toolkit styling.
  • Updated the port blacklist (removed 10080). See implementation notes.
  • CSS: Implemented calc() and animation support for stroke-dashoffset.
  • Added support for checking boolean preferences to chrome CSS style sheets, to support more advanced theming options.
  • Added support for dynamic dark color capable themes in CSS.
  • Updated ResizeObserver implementation to a more recent specification. See implementation notes.
  • Removed a metric ton of Macintosh code.
  • Removed obsolete system theme support from the layout engine.
  • Fixed several crashes.
  • Linux: blocked particularly old versions of Mesa/Nouveau drivers due to issues.
  • Security issues addressed: CVE-2021-30547 and several other issues that don't have a CVE number.
  • Unified XUL Platform Mozilla Security Patch Summary: 3 fixed, 3 DiD, 2 deferred (DiD), 12 not applicable.
Implementation notes:
  • Brotli compression (introduced a few years back) has originally been restricted to https only in web browsers because there was some concern about interaction with middleware boxes with poor design trying to transparently recompress data not recognizing the new compression stream type and causing failures. The kind of processing done in those boxes (SDCH) has long since been deprecated. Since then, the segregation for Brotli between http and https has been maintained by Chrome and Firefox as a vessel to further promote https over http by artificially keeping http less efficient (denying the use of the more dense Brotli compression). Since there is no technical reason not to enable Brotli over http, we will accept (by way of Accept-encoding) Brotli over plain http from this version on, offering up to 20% less bandwidth use when servers also support it.
  • We maintain a blacklist of ports that should not be addressed from a browser (primarily to prevent scripted abuse). Not too long ago we updated these ports with a number of additional (higher range) ones, including port 10080 (Amanda). Unfortunately there is too much overlap with other common services/devices that also use this (arbitrarily chosen) port, so we've removed this particular port again from our blacklist.
  • The ResizeObserver implementation was changed to now support the updated specification for this API, including the experimental properties contentBoxSize and borderBoxSize which allows finer control to respond to size changes of elements. The old spec sizing property of contentRect remains supported for web compatibility.

*DiD This means that a fix is "Defense-in-Depth": It is a fix that does not apply to a (potentially) actively exploitable vulnerability in Pale Moon, but prevents future vulnerabilities caused by the same code, e.g. when surrounding code changes, exposing the problem, or when new attack vectors are discovered.

Pale Moon includes both 32- and 64-bit versions for Windows:

Update

To get the update now, select "Help" from the Pale Moon menu at the upper left of the browser window.  Select About Pale Moon > Check for Updates.

Release Notes



Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Mozilla Firefox Version 90.0.1 Released

Firefox



Mozilla sent Firefox Version 90.,0.1 to the release channel today.


Fixed

  • Fixed a crash when using some accessibility clients on Windows (bug 1720696)
  • Fixed busy looping processing some HTTP3 responses (bug 1720079)
  • Fixed transient errors authenticating with some smart cards (bug 1715325)
  • Fixed a rare crash on shutdown (bug 1707057)
  • Fixed a race on startup that caused about:support to end up empty after upgrade (bug 1717894)


Update 

To get the update now, select "Help" from the Firefox menu, then pick "About Firefox."  Mac users need to select "About Firefox" from the Firefox menu. If you do not use the English language version, Fully Localized Versions are available for download.


References


Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...



Tuesday, July 13, 2021

Microsoft July 2021 Security Updates

 



The Microsoft July 2021 security updates have been released and consist of 117 CVEs.  Of these CVEs, 13 are rated Critical, 103 are rated Important, and one is rated moderate in severity.  


According to Microsoft, six of these bugs are publicly known and four are under active attack at the time of release.

 The  updates apply to the following products:  Microsoft Windows, Dynamics, Exchange Server, Microsoft Office, Windows Storage Spaces Controller, Bing, SharePoint Server, Internet Explorer (IE), Visual Studio, and OpenEnclave.

See the KBs listed at June 2021 Security Updates - Release Notes - Security Update Guide - Microsoft for information regarding known issues with the security updates.


Recommended Reading:   See Dustin Childs review and analysis in Zero Day Initiative -- The July 2021 Security Update Review.

 

Additional Update Notes:

 

References


Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...




 

Adobe Acrobat DC and Reader DC Security Updates Released

  

Adobe
Adobe has released security updates for Adobe Acrobat and Reader for Windows and macOS. These updates address multiple critical vulnerabilities. Successful exploitation could lead to arbitrary code execution in the context of the current user. 
 
Release date:  July 13, 2021
Vulnerability identifier: APSB21-51
Platform: Windows and MacOS

Update or Complete Download

Reader DC and Acrobat DC were updated to version 21.005.20058.  Updates should become available via the internal updater or checks can be manually activated by choosing Help/Check for Updates.  Reader DC and other versions are available here: https://get.adobe.com/reader/

Note: UNcheck any pre-checked additional options presented with the update. They are not part of the software update and are completely optional.

References
Home
Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Mozilla Firefox Version 90.0 Released with Security Updates

  FirefoxMozilla sent Firefox Version 90.0 to the release channel today.  The update includes eight security updates of which five (5) are rated high and four (4) are rated moderate.

Firefox ESR was updated to Version 78.12.

 

High

 


Moderate

 

 

New
 

  • Print to PDF now produces working hyperlinks
  • Version 2 of Firefox’s SmartBlock feature further improves private browsing. Third-party Facebook scripts are blocked to prevent you from being tracked, but are now automatically loaded “just in time” if you decide to “Log in with Facebook” on any website.

 

Changed
 

  • The "Open Image in New Tab" context menu item now opens images and media in a background tab by default. Learn more
  • Most users without hardware accelerated WebRender will now be using software WebRender.
  • Improved software WebRender performance
  • FTP support has been removed


Update
 

To get the update now, select "Help" from the Firefox menu, then pick "About Firefox."  Mac users need to select "About Firefox" from the Firefox menu. If you do not use the English language version, Fully Localized Versions are available for download.


References

Security Updates
Release Notes
Rapid Release Calendar


Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...



Tuesday, July 06, 2021

Out-Of-Band Security Update For Windows Print Spooler Remote Code Execution Vulnerability

 



Microsoft released an out-of-band update to address CVE-2021-34527, Windows Print Spooler Remote Code Execution Vulnerability for Windows 10 Versions 21H1, 20H2, 2004, 1909, 1809, 1803, 1507, and Windows 8.1


Although at the time of this posting, the KB Articles are not accessible yet, the Windows versions and assigned KB Articles are as follows:



Update:  To get the update, go to Settings > Update & Security > Windows Update.  The link to download and install the update can be found in the Optional updates available area.  To get the standalone package, go to the Microsoft Update Catalog website.

 

References





Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...



Wednesday, June 30, 2021

Windows 10 Optional Out-of-Band Update For PDF Opening Issue

 

Microsoft released KB5004760, an optional out-of-band non-security update for Windows 10 Versions 21H1, 20H2, and 2004. 

As described in the KB Article:   

  • Updates an issue that might prevent you from opening PDFs using Internet Explorer 11 or apps that use the 64-bit version of the WebBrowser control. Additionally, a PDF might render as just a gray background when using the Adobe Acrobat plug-in.

The purpose of the update is to fix the issue causing blue screens (BSOD) when printing to network printers with Type 3 printer drivers.  The issue showed up after installing the March 2021 cumulative updates.

Because the update is optional, it is not available via Windows update.  However, if you have been affected by this issue, the update can be downloaded manually from the Microsoft Update Catalog.


Windows 10 update history

Home
Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Friday, June 25, 2021

PC Health Check app for Windows 11 Update


Windows 11 Logo


With all of the excitement for Windows 11, many users have already run the PC Health Check app to find out if their current PC is eligible to upgrade to Windows 11. 

Although I was happy that my PC is eligible, when others ran the app, they received the following indication:

If you received the above notification, you may want to download a fresh copy of the PC Health Check app because it has already been updated.  In fact, according to Steve Dispensa, VP of PM, Microsoft Endpoint Manager and Windows Commercial on Twitter:

We've just released an updated PC Health Check app here: https://microsoft.com/en-us/windows/windows-11?OCID=pchc_windows_app_omc_win… Navigate lower down to the “Check for Compatibility” section and click “Download app” We still have more work to do, but this version shows more information about why a device is ineligible.

That aside, unfortunately, one of the primary reasons for PCs not meeting the system requirements is the processor.  The lists of supported processors is available at the following locations:






Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Thursday, June 24, 2021

Windows 11 is What's Next for Windows!


Windows 11


It is official!  Windows 11 is the next version Microsoft operating system.  As Satya Nadella said in the "What's Next for Windows" event, "It's the beginning of a new generation".  Highlights of that new generation are described in the article on the Windows Experience Blog by Panos Panay, Chief Product Officer, Windows + Devices, "Introducing Windows 11".  You can also be certain that all the "tech bloggers" will be publishing numerous articles highlighting the new Windows 11.

A question that many home computer users have been wondering about since rumors of the new operating system started is whether the upgrade from Windows 10 will be free. We now know that Windows 11 will be available through a free upgrade for eligible Windows 10 PCs and on new PCs beginning this holiday and will continue into 2022. 

The minimum system requirements to run Windows 11 are as follows:

Minimum system requirements

Processor

1 gigahertz (GHz) or faster with 2 or more cores on acompatible 64-bit processor or System on a Chip (SoC)

Memory

4 GB RAM

Storage

64 GB or larger storage device

System firmware

UEFI, Secure Boot capable

TPM

Trusted Platform Module (TPM) version 2.0

Minimum system requirements

Graphics card

DirectX 12 compatible graphics / WDDM 2.x

Display

>9” with HD Resolution (720p)

Internet connection

Microsoft account and internet connectivity required for setup for Windows 11 Home

Minimum system requirements

Certain features require specific hardware, see detailed system requirements.

To determine if your current PC is eligible for the free upgrade to Windows 11, download the PC Health Check app

I happy that my PC meets the system requirements for Windows 11 and am looking forward to testing the new Windows Insider Builds for Windows 11 next week.

You can keep track of what's happening with Windows 11 at Inside Windows 11.

(Note  If you had a problem with the event streaming as I did during the event, you can watch a replay here.)




Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...



Wednesday, June 23, 2021

Adobe Acrobat DC and Adobe Reader DC Optional Hotfix

 Adobe

Adobe released another optional hotfix Adobe Acrobat DC and Adobe Reader DC for Windows and macOS that addresses important bug fixes.

Release date:  June 23, 2021
Vulnerability identifier: None
Platform: Windows and MacOS

Bug fixes

Browser

  • 4333092: Adobe Reader shows 10:10 error on opening PDF in Internet Explorer

Editing

  • 4333085: Copy/Pasting characters from PDF removes accented characters

Fill and Sign

  • 4333182: On some locales, placeholder text get inserted instead of actual text
  • 4333131: On some locales, Greek/barcode characters appear instead of placeholder text

PDFMaker

  • 4333416: PDFMaker error when converting/combining Office format to PDF

Update or Complete Download

Reader DC and Acrobat DC were updated to version 21.005.20054.  Updates should become available via the internal updater or checks can be manually activated by choosing Help/Check for Updates.  Reader DC and other versions are available here: https://get.adobe.com/reader/

Note: UNcheck any pre-checked additional options presented with the update. They are not part of the software update and are completely optional.

References




Home
Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...


Mozilla Firefox Version 89.0.2 Released

Firefox



Mozilla sent Firefox Version 89.0.2 to the release channel today to fix an issue on Linux.


Fixed

  • Fix occasional hangs with Software WebRender on Linux (bug 1708224)


Update 

To get the update now, select "Help" from the Firefox menu, then pick "About Firefox."  Mac users need to select "About Firefox" from the Firefox menu. If you do not use the English language version, Fully Localized Versions are available for download.


References


Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...



Monday, June 21, 2021

Windows June C Release Preview Update for Windows 10 Versions 21H1, 2004 and 20H2



Microsoft released KB5003690, the monthly “C” release preview cumulative update with non-security improvements and fixes for Windows 10 Versions 21H1, 20H2, and 2004.  The highlighted changes include the following:
  • Updates an issue in a small subset of users that have lower than expected performance in games after installing KB5000842 or later.  

  • Updates an issue that causes the Japanese Input Method Editor (IME) to suddenly stop working while you are typing. 

  • Updates an issue in which signing in using a PIN fails. The error message is "Something happened and your PIN isn’t available. Click to set up your PIN again."

  • Updates an issue that, in certain cases, takes you out of the exclusive virtual reality (VR) app and back to Windows Mixed Reality Home when you press the Windows button on the controller.

  • Updates an issue that causes blurry text on the news and interests button on the Windows taskbar for some screen resolutions.

  • Updates an issue with Search box graphics on the Windows taskbar that occurs if you right-click the taskbar and turn off News and interests. This graphics issue is especially visible when using dark mode.

  • Updates an issue that might prevent you from using your fingerprint to sign in after startup or waking up your device from sleep.

Microsoft now combines the latest servicing stack update (SSU) for your operating system with the latest LCU. For general information about SSUs, see Servicing stack updates and Servicing Stack Updates (SSU): Frequently Asked Questions.

For information about the types of updates released by Microsoft each month see Windows 10 update servicing cadence primer.

Update:  To get the update, go to Settings > Update & Security > Windows Update.  The link to download and install the update can be found in the Optional updates available area.  To get the standalone package for this update, go to the Microsoft Update Catalog website.

Windows 10 update history



Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...