Wednesday, June 28, 2023

June 2023 Windows 11 Version 21H2 Non-Security Optional Preview "C" Release

 Microsoft released the monthly “C” release preview cumulative updates with non-security improvements and fixes for Windows 11, Version 21H2. 

Below are some of the highlights for KB5027292 (OS Build 22000.2124) for Windows 11 version 22H1.  See the KB Article for the complete list of improvements and fixes included in the update.

  • This update addresses an issue that affects the on-screen keyboard. The issue stops it from opening after you lock the machine.
  • New! This update adds many new features and improvements to Microsoft Defender for Endpoint. For more information, see Microsoft Defender for Endpoint.
  • New!  This update improves several simplified Chinese fonts and the Microsoft Pinyin Input Method Editor (IME). They now support GB18030-2022. Characters in the Standard Chinese Characters List (GB18030-2022 implementation level 2) are available in Microsoft Yahei (regular, light, and bold), Dengxian (optional font: regular, light, and bold), and Simsun. The Simsun Ext-B font (GB18030-2022 implementation level 3) now supports 

Update: To get the update, go to Settings > Update & Security > Windows Update. The link to download and install the update can be found in the Optional updates area.  To get the standalone package for this update, go to the Microsoft Update Catalog website.

For information about the types of updates released by Microsoft each month, see Windows monthly updates explained.


Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Tuesday, June 27, 2023

June 2023 Windows 11 Version 22H2 Non-Security Optional Preview "C" Release

 Microsoft released the monthly “C” release preview cumulative updates with non-security improvements and fixes for Windows 11, Version 22H2.

Below are some of the many highlights included in the KB5027303 (OS Build 22621.1978) update.  See the KB article for the rest of the new features as well as the included improvements.

Highlights:

  • This update improves several simplified Chinese fonts and the Microsoft Pinyin Input Method Editor (IME) to support GB18030-2022. You can enter and display characters from conformance level 1 or 2 using the additions to Microsoft Yahei, Simsun, and Dengxian. This update now supports Unicode Extensions E and F in the Simsun Ext-B font. This meets the requirements for level 3.
  • This update expands the rollout of notification badging for Microsoft accounts on the Start menu. You can also add extra security steps to keep you from being locked out of your account.
  • This update improves the sharing of a local file in File Explorer with Microsoft Outlook contacts. You now have the option to quickly email the file to yourself.
  • This update adds a VPN status icon, a small shield, to the system tray. It displays when you are connected to a recognized VPN profile. The VPN icon will be overlayed in your system’s accent color over the active network connection.
  • You can now choose to display seconds in the clock on the system tray. To turn this on, go to the Taskbar behaviors section in Settings > Personalization > Taskbar. You can also right-click the taskbar to quickly get to taskbar settings.

Update: To get the update, go to Settings > Update & Security > Windows Update. The link to download and install the update can be found in the Optional updates area.  To get the standalone package for this update, go to the Microsoft Update Catalog website.

For information about the types of updates released by Microsoft each month, see Windows monthly updates explained.

Windows 11 update history


Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

June 2023 Windows 10 Non-Security Optional Preview "C" Release

 Microsoft released KB5027293 for Windows 10 version 22H2 optional non-security release preview (Windows monthly updates explained).

Reminder: There are no more optional, non-security preview releases for the supported editions of Windows 10, version 20H2 and Windows 10, version 21H2. Only monthly security update releases will continue for these versions.  Windows 10, version 22H2 will continue to receive security and optional releases on the fourth Tuesday of the month.

The following are the highlighted changes included in the update:
  • New! This update adds many new features and improvements to Microsoft Defender for Endpoint. For more information, see Microsoft Defender for Endpoint.

  • New! With this update, you can now authenticate across Microsoft clouds. This feature also satisfies Conditional Access checks if they are needed.

  • New! New! This update improves several simplified Chinese fonts and the Microsoft Pinyin Input Method Editor (IME). They now support GB18030-2022. Characters in the Standard Chinese Characters List (GB18030-2022 implementation level 2) are available in Microsoft Yahei (regular, light, and bold), Dengxian (optional font: regular, light, and bold), and Simsun. The Simsun Ext-B font (GB18030-2022 implementation level 3) now supports Unicode CJK Unified Ideographs Extensions E and F.

  • This update addresses an issue that affects a scheduled monthly task. It might not run on time if the next occurrence happens when daylight savings time occurs.

  • This update addresses an issue that affects all the registry settings under the Policies paths. They might be deleted. This occurs when you do not rename the local temporary user policy file during Group Policy processing.

  • This update affects the Desktop Window Manager (DWM). It improves its reliability.

  • This update addresses an issue that affects .msi files. A minor update is not installed. This occurs when you use the EnterpriseDesktopAppManagement configuration service provider (CSP) to distribute the .msi file.

  • This update addresses an issue that affects the Spooler service. It stops working. This issue occurs when you print using a certain workspace.

  • This update addresses an issue that affects a tib.sys driver. It does not load. This occurs when HyperVisor-protected Code Integrity (HVCI) is enabled.

  • This update addresses an issue that affects NCryptGetProperty(). When you call it with NCRYPT_KEY_TYPE_PROPERTY, the system returns 0x1 instead of 0x20. This occurs when the key is a machine key.

  • This update addresses an issue that affects HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders. You can now set and maintain the correct default permissions for this directory path. When the permissions are wrong, the Start menu, search, and Azure Active Directory (Azure AD) authentication fail.

  • This update addresses an issue that affects those who enable the “Smart Card is Required for Interactive Logon” account option. When RC4 is disabled, you cannot authenticate to Remote Desktop Services farms. The error message is, "An authentication error has occurred. The requested encryption type is not supported by the KDC.”

  • This update addresses an issue that affects HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders. You can now set and maintain the correct default permissions for this directory path. When the permissions are wrong, Start menu, search, and Azure Active Directory (Azure AD) authentication fails.

See the referenced KB Article for prerequisites and the additional improvements and fixes included in the update.

This update makes quality improvements to the servicing stack, which is the component that installs Windows updates. Servicing stack updates (SSU) ensure that you have a robust and reliable servicing stack so that your devices can receive and install Microsoft updates. For general information about SSUs, see Servicing stack updates and Servicing Stack Updates (SSU): Frequently Asked Questions.

Update:  To get the update, go to Settings > Update & Security > Windows Update. The link to download and install the update can be found in the Optional updates available area.  To get the standalone package for this update, go to the Microsoft Update Catalog website.

Windows 10 update history



Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Wednesday, June 21, 2023

Optional Hotfix Patch for Adobe Reader and Acrobat

 

Adobe
Adobe has released an optional hotfix patch for Acrobat and Acrobat Reader that addresses some important bug fixes for Adobe Acrobat DC and Reader. 

Update or Complete Download

Reader DC and Acrobat DC were updated to version 23.003.20215 for Windows.  Updates should become available via the internal updater or checks can be manually activated by choosing Help/Check for Updates.  

Reader DC and other versions are available here: https://get.adobe.com/reader/

Note: UNcheck any pre-checked additional options presented with the update. They are not part of the software update and are completely optional.

References

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Tuesday, June 20, 2023

Mozilla Firefox Version 114.0.2 Released

 

Mozilla sent Firefox Version 114.0.2 to the Release Channel today.

Fixed

Release Notes


Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Monday, June 19, 2023

Pale Moon Version 32.2.1 Released

 Pale Moon

Pale Moon has been updated to version 32.2.1.  This is a small bugfix and stability update.  There were no applicable Mozilla security bugs this time around.

Changes/Fixes:

  • Fixed a crash in devtools in some OOM situations.
  • Fixed crashes when internal script execution was blocked by extensions.
  • Fixed crashes with WebComponents' ::slotted selector.
  • Disabled incremental cycle collector by default to avoid performance regressions.
  • Updated the default override for chase.com to work around issues.

    Notes:

    DiD This means that a fix is "Defense-in-Depth": It is a fix that does not apply to a (potentially) actively exploitable vulnerability in Pale Moon, but prevents future vulnerabilities caused by the same code, e.g. when surrounding code changes, exposing the problem, or when new attack vectors are discovered.

    Rejected security patches: This means that patches were theoretically applicable to our code but considered undesirable, which could be due to unwanted changes in behavior, known regressions caused by the patches, or unnecessary risks for stability, security or privacy.

    Pale Moon includes both 32- and 64-bit versions for Windows: Pale Moon for Windows downloads.

    Update: To get the update now, select "Help" from the Pale Moon menu at the upper left of the browser window.  Select About Pale Moon > Check for Updates.

    Release Notes
    Release Cycle

Home
Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart..
.

Wednesday, June 14, 2023

Windows 10 Version 21H2 End of Servicing


On June 13, 2023, all editions of Windows 10 version 21H2 received the last security update and have reached the end of servicing. 

Windows 10, version 22H2 is the last version of Windows 10 and will continue to receive security and optional releases through October 14, 2025 when it reaches the end of servicing.

In order to remain secure, it is strongly advised that users of Windows 10 version 21H2 update to version 22H2 or Windows 11. To upgrade to Windows 10 22H2 manually from version 21H2, 21H1, 20H2, or 2004, follow the steps below:

  1. Open Settings on Windows 10.
  2. Click on Update & Security.
  3. Click on Windows Update.
  4. Click the Check for updates button (if applicable).
  5. Click the Download and install now button.

The latest version of Windows 10 can also be downloaded from the Microsoft website.  In the event you have made changes to your systems hardware, see this Microsoft Support article.



Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Tuesday, June 13, 2023

Microsoft June 2023 Security Updates

 


The Microsoft June 2023 security updates have been released and consist of 69 new patches as well as 25 CVEs previously released by third parties and are documented in the Security Updates Guide. Of the CVEs released, 6 are rated critical, 62 are rated important, and one is rated moderate in severity. At the time of release, none are listed as being under active attack or as publicly known.

The security updates apply to the following products, features and roles: Microsoft Windows and Windows Components; Office and Office Components; Exchange Server; Microsoft Edge (Chromium-based); SharePoint Server; .NET and Visual Studio; Microsoft Teams; Azure DevOps; Microsoft Dynamics; and the Remote Desktop Client.

Information regarding mitigations and/or workarounds is available at the May 2023 Security Updates - Release Notes - Security Update Guide - Microsoft. For specific information on Windows 11, version 22H2, see KB5027231 and KB5027223 for Windows 10, Version 21H2.

ReminderThere are no more optional, non-security preview releases for the supported editions of Windows 10, version 20H2 and Windows 10, version 21H2. Only cumulative monthly security updates (known as the "B" or Update Tuesday release) will continue for these versions. Windows 10, version 22H2 will continue to receive security and optional releases.


Recommended Reading:   See Dustin Childs review and analysis in Zero Day Initiative -- The June 2023 Security Update Review.

 

Additional Update Notes:

 

References




Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Friday, June 09, 2023

Mozilla Firefox Version 114.0.1 Released

 

Mozilla sent Firefox Version 114.0.1 to the Release Channel today.

Fixed

Release Notes


Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Tuesday, June 06, 2023

Adobe Acrobat/Reader Update Released

   

Adobe
Adobe has released an update with new features for Acrobat and Acrobat Reader with some of the features being rolled out incrementally. 

New Features

The update includes a lot of new features.  Below are a few of the new features introduced in this release. See the Release Notes to know more about all of the new features.
  • Enhancements in new Acrobat Note
  • Enhancements in Request e-signatures experience 
  • New export option in page thumbnails context menu 
  • Preference to enable Microsoft® Purview Information Protection 
  • Promoting collaborative review through online file sharing 
  • Recognize text from the context menu 
  • Preference to set PDF/UA compliance in PDFMaker 
  • Request signature prompt after print failure 
Update or Complete Download

Adobe Acrobat and Reader were updated to version 23.003.20201 for Windows.  Updates should become available via the internal updater or checks can be manually activated by choosing Help/Check for Updates.  

Reader DC and other versions are available here: https://get.adobe.com/reader/

Note: UNcheck any pre-checked additional options presented with the update. They are not part of the software update and are completely optional.

Home
Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

Mozilla Firefox Version 114.0 Released with Security Updates

 FirefoxMozilla sent Firefox Version 114.0 to the release channel.  The update includes four security updates of which three (3) are rated high and one (1) rated moderate.

Firefox ESR was updated to Version 102.12.

High

#CVE-2023-34414: Click-jacking certificate exceptions through rendering lag
#CVE-2023-34416: Memory safety bugs fixed in Firefox 114 and Firefox ESR 102.12

#CVE-2023-34417: Memory safety bugs fixed in Firefox 114

Moderate

#CVE-2023-34415: Site-isolation bypass on sites that allow open redirects to data: urls


New

  • Added UI to manage the DNS over HTTPS exception list.

  • Bookmarks can now be searched from the Bookmarks menu. The Bookmarks menu is accessible by adding the Bookmarks menu button to the toolbar.

  • Restrict searches to your local browsing history by selecting Search history from the History, Library or Application menu buttons.

  • Mac users can now capture video from their cameras in all supported native resolutions. This enables resolutions higher than 1280x720.

  • It is now possible to reorder the extensions listed in the extensions panel.

  • Users on macOS, Linux, and Windows 7 can now use FIDO2 / WebAuthn authenticators over USB. Some advanced features, such as fully passwordless logins, require a PIN to be set on the authenticator.

  • Pocket Recommended content can now be seen in France, Italy, and Spain.

Update: To get the update now, select "Help" from the Firefox menu, then pick "About Firefox."  Mac users need to select "About Firefox" from the Firefox menu. If you do not use the English language version, Fully Localized Versions are available for download.

References



Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...