November 25 Catalog Update #20231125 - Easy2Patch
Catalog Update
Our catalog with #20231125 (Catalog version 3.4.119 ) is available to our Easy2Patch customers.
This week, 43 software updates are provided in the E2P catalog. We support 310 products of 214 individual manufacturers in total. We are updating 418 products with 32/64-bit and language options.
1Password 8.10.20
More Info: https://releases.1password.com/windows/8.10/
Support Info: https://support.1password.com/
1Password for Windows 8.10.20 Items imported from LastPass now show a red Watchtower banner to remind you to update the passwords. You can now map LastPass user email addresses to 1Password users when importing your data. The LastPass importer will now check for a feature on some 1Password accounts that limits vault access management to people in the Owners group. We’ve fixed an issue that occurred when signing in to the LastPass importer with SSO.
Amazon WorkSpaces 5.17.0
Support Info: https://aws.amazon.com/tr/contact-us/sales-support-workspaces/
5.17.0 November 16, 2023 Fixed USB redirection issue for PCoIP WorkSpaces. Fixed a client crash when users change running mode. Fixed a client crash related to printer redirection on WSP client. Added stability and security fixes. 5.16.0 October 26, 2023 Added installation guidance. Users on 4.0.6+ version clients with USB redirection enabled need to uninstall old client before upgrading
Asp.Net Core 6 Hosting Bundle 6.0.25
Support Info: https://dotnet.microsoft.com/en-us/platform/support
.NET 6.0.25 -November 14, 2023 Notable Changes CVE-2023-36049 - .NET Elevation of Privilege Vulnerability Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 6.0, .NET 7.0 and .NET 8.0 RC2. This advisory also provides guidance on what developers can do to update their applications to address this vulnerability. An elevation of privilege vulnerability exists in .NET where untrusted URIs provided to System.Net.WebRequest.Create can be used to inject arbitrary commands to backend FTP servers.
ASP.NET Core 6 SDK 6.0.417
Support Info: https://dotnet.microsoft.com/en-us/platform/support
.NET 6.0.25 -November 14, 2023 Notable Changes CVE-2023-36049 - .NET Elevation of Privilege Vulnerability Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 6.0, .NET 7.0 and .NET 8.0 RC2. This advisory also provides guidance on what developers can do to update their applications to address this vulnerability. An elevation of privilege vulnerability exists in .NET where untrusted URIs provided to System.Net.WebRequest.Create can be used to inject arbitrary commands to backend FTP servers.
Asp.Net Core 7 Hosting Bundle 7.0.14
Support Info: https://dotnet.microsoft.com/en-us/platform/support
.NET 7.0.14 - November 14, 2023 Notable Changes CVE-2023-36049 - .NET Elevation of Privilege Vulnerability Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 6.0, .NET 7.0 and .NET 8.0 RC2. This advisory also provides guidance on what developers can do to update their applications to address this vulnerability. An elevation of privilege vulnerability exists in .NET where untrusted URIs provided to System.Net.WebRequest.Create can be used to inject arbitrary commands to backend FTP servers.
ASP.NET Core 7 SDK 7.0.404
Support Info: https://dotnet.microsoft.com/en-us/platform/support
.NET 7.0.14 - November 14, 2023 Notable Changes CVE-2023-36049 - .NET Elevation of Privilege Vulnerability Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 6.0, .NET 7.0 and .NET 8.0 RC2. This advisory also provides guidance on what developers can do to update their applications to address this vulnerability. An elevation of privilege vulnerability exists in .NET where untrusted URIs provided to System.Net.WebRequest.Create can be used to inject arbitrary commands to backend FTP servers.
Asp.Net Core 8 Hosting Bundle 8.0.0
Support Info: https://dotnet.microsoft.com/en-us/platform/support
NET 8.0.0 - November 14, 2023 Notable Changes. CVE-2023-36038 - .NET Denial of Service Vulnerability Microsoft is releasing this security advisory to provide information about a vulnerability in ASP.NET Core 8.0 RC2. This advisory also provides guidance on what developers can do to update their applications to address this vulnerability. A vulnerability exists in ASP.NET IIS where a remote unauthenticated user can issue specially crafted requests to a .NET application which may result in denial of service. This vulnerability only impacts Windows OS.
ASP.NET Core 8 SDK 8.0.100
Support Info: https://dotnet.microsoft.com/en-us/platform/support
NET 8.0.0 - November 14, 2023 Notable Changes. CVE-2023-36038 - .NET Denial of Service Vulnerability Microsoft is releasing this security advisory to provide information about a vulnerability in ASP.NET Core 8.0 RC2. This advisory also provides guidance on what developers can do to update their applications to address this vulnerability. A vulnerability exists in ASP.NET IIS where a remote unauthenticated user can issue specially crafted requests to a .NET application which may result in denial of service. This vulnerability only impacts Windows OS.
Audacity 3.4.2
More Info: https://github.com/audacity/audacity/releases/
Support Info: https://support.audacityteam.org/
Audacity 3.4.2 Latest This is a hotfix release. It fixes the following issues: #5568 Fix a crash when opening projects with zero-length clips. #5032 When exporting a file, the sample rate of the tracks is now considered, and last-used sample rate is remembered. #5555 Copy-pasting now pastes into audio again by default. This can be changed via Preferences -> Track Behavior -> Always paste audio as new clips.
AWS SAM Command Line Interface 1.103.0
More Info: https://github.com/aws/aws-sam-cli/releases/tag/v1.103.0
Support Info: https://docs.aws.amazon.com/serverless-application-model/latest/developerguide/serverless-sam-cli-install-windows.html
Release version: 1.103.0 Latest Changes: 2f08f97 - chore(deps): bump the boto group in /requirements with 18 updates (#6271) ad9c976 - chore(deps): bump importlib-resources in /requirements (#6214) b8b22ed - chore: update aws_lambda_builders to 1.42.0 (#6275) b939df3 - Feat java21 runtime (#6261) 0760e93 - Add python3.12. (#517) (#6273) bbeb47a - feat: updating app templates repo hash with (163c4f746c210ada70815df6a52639fca03d707b) (#6280)
Beats Winlogbeat V8 8.11.1
More Info: https://www.elastic.co/guide/en/beats/libbeat/current/release-notes-8.11.1.html
Support Info: https://www.elastic.co
Beats version 8.11.1edit View commits Addededit Affecting all Beats Setting environmental variable ELASTIC_NETINFO:false will disable the netinfo.enabled option of add_host_metadata processor. Beats version 8.11.0edit View commits Breaking changesedit Affecting all Beats - The Elasticsearch output now enables compression by default.
BIMvision 2.27.7
More Info: https://bimvision.eu/release-notes/
Support Info: https://helpcenter.bimvision.eu/
2.27.7 (current version) release date 2023-11-09 New version of API 2.27.5 release date 2023-08-08 Optimization of edge calculation for large models Implementation of retrieving object properties located at any nesting level in the property structure Better diagnosis of reading errors – multiple entity numbers
Dax Studio 3.0.11
More Info: https://github.com/DaxStudio/DaxStudio/releases/
Support Info: https://daxstudio.org/blog/
DAX Studio v3.0.11 Latest Updates Improved Query Folding logic updated vpax libraries fixed #1189 no longer counting RowNumber as user column in vertipaq analyzer updated vpax libraries updated TOM / ADOMD libraries
DBeaver CE 23.2.5
More Info: https://github.com/dbeaver/dbeaver/releases/tag/23.2.5
Support Info: https://github.com/dbeaver/dbeaver/issues
23.2.5 SQL editor: Syntax coloring and code completion: smart columns abd aliases recognition was added (experimental) Numerous improvements in single-tab results visualization Quoting of identifiers with special characters was fixedIssue with read-only column in queries with comments was resolved COMMIT/ROLLBACK statements are now recognized as transaction state change statements
Docker Desktop 4.25.2
More Info: https://docs.docker.com/desktop/release-notes/
Support Info: https://www.docker.com/blog/
4.25.2 2023-11-21 Download Docker Desktop Bug fixes and enhancements For all platforms Fixed a bug where a blank UI would appear after submitting a response in the Welcome Survey. For Windows Fixed a bug where Docker Desktop on WSL 2 would shut down dockerd unexpectedly when idle. Fixes docker/for-win#13789
doPDF 11.9.436
More Info: https://forum.dopdf.com/announcements-f2/changelog-dopdf-11-t5995.html
Support Info: https://www.dopdf.com/faq.html
Changes in doPDF 11.9.436 (16-November-2023) Fixed: Indonesian translation was incomplete Fixed: Licensed versions reverted to trial in rare occasions (doPDF Premium) Changes in doPDF 11.9.432 (19-October-2023) Updated: UI changes for the Printer Manager Fixed: Office Addin was not loaded in certain situations Changes in doPDF 11.9.423 (11-September-2023) Fixed: Corrections for printing some PDF files
draw.io 22.1.2
More Info: https://github.com/jgraph/drawio/blob/v22.1.2/ChangeLog
Support Info: https://www.diagrams.net/blog
15-NOV-2023: 21.1.2 - Fixes move of child cells in groups [drawio-3967] - [conf cloud] Fixes bugs in rendering diagrams with pageInfo param [DFCC-64] 13-NOV-2023: 21.1.1 - Reverts part of e6ea9f to restore child cell dragging behaviour [drawio-3967] 08-Nov-2023: 22.1.0 - [conf cloud] Added confluence-content parameter support [DFCC-64] - Updates AWS icons to Q3 23 set [drawio-3945]
Edge WebView2 Runtime 119.0.2151.72
More Info: https://learn.microsoft.com/en-us/deployedge/microsoft-edge-relnote-stable-channel
Support Info: https://docs.microsoft.com/en-us/microsoft-edge/webview2/
Version 119.0.2151.72: November 16, 2023 Fixed various bugs and performance issues. Stable channel security updates are listed here. Version 118.0.2088.102: November 9, 2023 Fixed various bugs and performance issues for Extended Stable release. Stable channel security updates are listed here.
Evernote 10.67.2
More Info: https://evernote.com/release-notes
Support Info: https://help.evernote.com/hc/en-us
Desktop & Web: Version 10.67.2 - Latest Fixes: - Fixes an issue with wrong month number in exported ENEX file Version 10.66.3 - Latest Fixes: Fixes an issue where the 'Pin to Home' dropdown list was missing when opening the overflow menu with a Personal account. Fixes an issue on Windows platforms where "A JavaScript error occurred in the main process" popup showed up during app update. Fixes an issue where sidebar items were hidden while working on a note in fullscreen mode.
Foxit PDF Reader 2023.3.0
More Info: https://www.foxit.com/support/security-bulletins.html
Support Info: https://www.foxit.com/
Security updates available in Foxit PDF Reader 2023.3 and Foxit PDF Editor 2023.3 Brief Acknowledgement Addressed potential issues where the application could be exposed to Use-After-Free, Out-of-Bounds Read, or Type Confusion vulnerability and crash when handling certain Doc, Graphic, Signature, Bookmark, or 3D annotation objects, which could be exploited by attackers to execute remote code or disclose information. This occurs due to the use of null pointer, wild pointer, or object that has been deleted or freed without proper validation.
Git 2.43.0
More Info: https://github.com/git-for-windows/git/releases/tag/v2.43.0.windows.1
Support Info: https://git-scm.com/doc
Git for Windows v2.43.0.windows.1 Latest Changes since Git for Windows v2.42.0(2) (August 30th 2023) As announced previously, Git for Windows will drop support for Windows 7 and for Windows 8 in one of the next versions, following Cygwin's and MSYS2's lead (Git for Windows relies on MSYS2 for components such as Bash and Perl). Following the footsteps of the MSYS2 and Cygwin projects on which Git for Windows depends, the 32-bit variant of Git for Windows is being phased out.
GoodSync 12.4.7
More Info: http://www.goodsync.com/news-windows
Support Info: http://www.goodsync.com/support
Version 12.4.7 -- Nov 24, 2023 * gs-server: Tell GS Client that it can do recursive listings, accumulate folder listings for that. * S3: Store client side File Mod Time in x-amz-meta-gs-mod-t header, so that GS can get it. * S3: Add option to store File Mod Time in cache file gs-metadata._gs, so that Explorer can get it quickly. * S3: some S3 clones cannot do recursive listings, tell user to turn Off Recursive listing option then.
Google Drive 84.0.3
More Info: https://support.google.com/a/answer/7577057?hl=en&ref_topic=7455083&sjid=7395135015460049429-EU
Support Info: https://support.google.com/a/answer/7577057?hl=en&ref_topic=7455083
ovember 13, 2023 - Bug fixes Windows and macOS: Version 84.0 Fixed an issue where the app crashed repeatedly at startup for a small number of users When backing up to Google Photos, DNG files are now considered RAW files Additional bug fixes and performance improvements October 23, 2023 - Bug fixes Windows and macOS: Version 83.0 Fixed an issue where a small number of macOS 14 users could only start the Drive app once per macOS login session.
HandBrake 1.7.1
More Info: https://github.com/HandBrake/HandBrake/releases/tag/1.7.1
Support Info: https://handbrake.fr/community.php
1.7.1 Latest Upgrade Notice Before updating HandBrake, please make sure there are no pending encodes in the queue, and be sure to make a backup of any custom presets and app preferences you have, as they may not be compatible with newer versions. Windows users, please make sure to install Microsoft .NET Desktop Runtime version 6.0.x. Read carefully: you need the DESKTOP runtime. You must install .NET 6 even if you have installed .NET 7.
Keeper Password Manager 16.10.10
More Info: https://docs.keeper.io/release-notes/desktop/web-vault-+-desktop-app/vault-release-16.10.9
Support Info: https://www.keepersecurity.com/download.html
Vault Release 16.10.10 Released on Nov 16, 2023 Features VAUL-6175: Added thousands of popular website logos to the Vault user interface. The implementation of website logos preserves full zero knowledge encryption and privacy. The entire library of logo files are embedded within the vault application.
Microsoft Edge 119.0.2151.72
More Info: https://learn.microsoft.com/en-us/deployedge/microsoft-edge-relnote-stable-channel
Support Info: https://support.microsoft.com/en-us/microsoft-edge
Version 119.0.2151.72: November 16, 2023 Fixed various bugs and performance issues. Stable channel security updates are listed here. Version 118.0.2088.102: November 9, 2023 Fixed various bugs and performance issues for Extended Stable release. Stable channel security updates are listed here.
Microsoft SQL SSMS 19 19.2.56
More Info: https://docs.microsoft.com/en-us/sql/ssms/release-notes-ssms?view=sql-server-2017
Support Info: https://learn.microsoft.com/en-us/sql/ssms/sql-server-management-studio-ssms?view=sql-server-ver16
What's new in 19.2 New Item Details Azure Data Studio installation integration The installation of SSMS installs Azure Data Studio 1.47.0. Always Encrypted Added support for secure enclaves with Azure SQL Database in the New Database dialog, Database Properties dialog, and Always Encrypted Wizard. Always Encrypted Improved performance for the Always Encrypted Wizard.
Mozilla Firefox 120.0
More Info: https://www.mozilla.org/en-US/firefox/120.0/releasenotes/
Support Info: https://www.mozilla.org/en-US/security/advisories/mfsa2023-08/
120.0 Firefox Release November 21, 2023 New Firefox supports a new “Copy Link Without Site Tracking” feature in the context menu which ensures that copied links no longer contain tracking information. Screenshot showing Copy Link feature Firefox now supports a setting (in Preferences → Privacy & Security) to enable Global Privacy Control. With this opt-in feature, Firefox informs the websites that the user doesn’t want their data to be shared or sold. This feature is enabled in private browsing mode by default.
Mozilla Firefox ESR 115.5.0
More Info: https://www.mozilla.org/en-US/firefox/115.5.0/releasenotes/
Support Info: https://www.mozilla.org/en-US/security/advisories/mfsa2023-36/
115.5.0 Firefox ESR November 21, 2023 Version 115.5.0, first offered to ESR channel users on November 21, 2023 Fixed Various security fixes and other quality improvements. 115.4.0 Firefox ESR October 24, 2023 Version 115.4.0, first offered to ESR channel users on October 24, 2023 Fixed Various security fixes and other quality improvements.
Mozilla Thunderbird 115.5.0
More Info: https://www.thunderbird.net/en-US/thunderbird/115.5.0/releasenotes/
Support Info: https://support.mozilla.org/products/thunderbird
Thunderbird Release Notes Version 115.5.0, first offered to channel users on November 21, 2023 FIXES FIXED Initial message was not automatically selected when opened in conversation FIXED Newsgroup users using FQDN identity generated message ID headers with incorrect domain name FIXED Link previews had poor legibility in dark mode FIXED Plasma's task switcher displayed the default icon when running the Thunderbird Flatpak on Wayland
Nessus Agent 10.4.4
More Info: https://docs.tenable.com/release-notes/Content/nessus-agent/agent2023.htm
Support Info: https://www.tenable.com/downloads/nessus-agents
Tenable Nessus Agent 10.4.4 (2023-11-16) OpenSecurity Updates The following are security updates included in Tenable Nessus Agent 10.4.4: Fixed a local privilege escalation bug. For more information, see the Tenable Product Security Advisory. OpenUpgrade Notes New Tenable Vulnerability Management Domain - As a part of continuous security and scalability improvements to Tenable infrastructure, we have added a new sensor.cloud.tenable.com domain that Tenable Vulnerability Management-linked Tenable Nessus Agents communicate with.
Nitro Pro 14.17.2
More Info: https://www.gonitro.com/product-details/release-notes
Support Info: https://www.gonitro.com/support
Latest version: 14.17.2.29 Release date: November 20, 2023 This version includes the following updates and fixes. Nitro PDF Pro now supports conversion to PDF/A-1a and PDF/A-2a archival formats. You can find these added options in the ribbon under Convert->To PDF/A. Fixed an issue where some customer continued to see Reader mode preventing successful login. Fixed "Uh Oh! You're Offline" login error faced by some users.
Node.js 20.10.0 LTS
More Info: https://github.com/nodejs/node/releases/tag/v20.10.0
Support Info: https://nodejs.org/en/docs
2023-11-22, Version 20.10.0 'Iron' (LTS), @targos Notable Changes --experimental-default-type flag to flip module defaults The new flag --experimental-default-type can be used to flip the default module system used by Node.js. Input that is already explicitly defined as ES modules or CommonJS, such as by a package.json "type" field or .mjs/.cjs file extension or the --input-type flag, is unaffected. What is currently implicitly CommonJS would instead be interpreted as ES modules under
NSClient++ 0.6.0000
More Info: https://github.com/mickem/nscp/releases
Support Info: https://nsclient.org/nsclient/
Preview for 0.6.0.0 Pre-release Massive update with changes updates to all libraries and third party dependencies Updated to python 3 Automated build pipelines (Github Actions) Currently Disabled: DotNet modules Lua scripting Web interface (server still works, just no UI)
OpenVPN 2.6.8
More Info: https://github.com/OpenVPN/openvpn/blob/v2.6.8/Changes.rst
Support Info: https://openvpn.net/community
Overview of changes in 2.6.8 Bug fixes / Code cleanup SIGSEGV crash: Do not check key_state buffers that are in S_UNDEF state (Github #449) - the new sanity check function introduced in 2.6.7 sometimes tried to use a NULL pointer after an unsuccessful TLS handshake Windows: --dns option did not work when tap-windows6 driver was used, because internal flag for "apply DNS option to DHCP server" wasn't set (Github #447)
Opera 105.0.4970.21
More Info: https://blogs.opera.com/desktop/2023/11/opera-105-0-4970-21-stable-update/
Support Info: https://www.opera.com/help
Opera 105.0.4970.21 Stable update Hey there! We’ve got some more exciting news for you. We’ve just released the new Opera 105 Stable version. The Opera 105 Stable update introduces various enhancements to enhance your browsing experience. The update also addresses several bugs and issues reported by our users. Two notable bug fixes from the changelog are:
PowerBI Desktop 2.123.742
More Info: https://www.microsoft.com/en-us/download/details.aspx?id=58494
Support Info: https://powerbi.microsoft.com/en-us/support/
With Power BI Desktop, you can: Get data The Power BI Desktop makes discovering data easy. You can import data from a wide variety of data sources. After you connect to a data source, you can shape the data to match your analysis and reporting needs. Create relationships and enrich your data model with new measures and data formats When you import two or more tables, oftentimes you'll need to create relationships between those tables. The Power BI Desktop includes the Manage Relationships dialog and the Relationships view, where you can use Autodetect to let the Power BI Desktop find and create any relationships, or you can create them yourself. You can also very easily create your own measures and calculations or customize data formats and categories to enrich your data for additional insights.
SyncBackSE 11.2.15
More Info: https://www.2brightsparks.com/syncback/changes.html#v11
Support Info: https://help.2brightsparks.com/support/home
V11.2.15.0 SyncBackPro, SyncBackSE, SyncBackFree (9th November 2023) Updated (Pro): FTP buffer size settings now used in all SFTP engines Updated (Pro/SE): Can pass offline UA serial to installer Updated: Installer shows who SyncBack will run be run as if run from installer Fixed: Vertical lines at edge of list in Differences window Fixed: Not starting maximized
TeamViewer 15.48.4
More Info: https://community.teamviewer.com/English/discussion/132740/windows-v15-48-4
Support Info: https://www.teamviewer.com/en/support/documents/
[Windows] v15.48.4 Improvements Groups are now displayed in alphabetical order in the modals where users add, move, or remove devices to and from groups. Bugfixes Fixed a bug in the device list that prevented showing the correct tooltip for the Connect button.
Total Commander 11.02
More Info: https://www.ghisler.com/mailing.htm
Support Info: https://www.ghisler.com/faq.htm
New functions and fixes in Total Commander 11.02: Synchronize directories: Comparison can now be paused (pause button) Updated libdeflate/libdeflate64 DLLs: In rare cases Windows Explorer 7/10/11 could not extract archives created by this DLL even if the archive is 100% correct and can be extracted with Win7zip/pkzip/ WinRAR/7Zip without problems. If you can't or don't want to update now, you can download the new DLLs separately. Files - Test archive(s) finds affected ZIP files, unless disabled (wincmd.ini [Packer] ZipTestWarnExplorer=0) Improved thumbnail caching in thumbnail view Multiple options available for cm_SyncChangeDir function (SyncChangeDirMode in wincmd.ini)
Vivaldi 6.4.3160.44
More Info: https://vivaldi.com/blog/desktop/minor-update-three-6-4/
Support Info: https://help.vivaldi.com/
Minor update (3) for Vivaldi Desktop Browser 6.4 This update includes security improvements from the Chromium project. The following improvements were made since the second 6.4 minor update: [Chromium] Upgraded to 118.0.5993.146 Minor update (2) for Vivaldi Desktop Browser 6.4 This update includes security improvements from the Chromium project and some key fixes from our side.
VMware Horizon Client for Windows 8.11.1
Support Info: https://docs.vmware.com/
VMware Horizon Client for Windows 2309.1 Release Notes What's New Horizon Client for Windows 2309.1 includes the following new features: Fixes an issue that prevents USB Redirection from working with newer versions of Horizon Agent. Deactivates DX11 for the client during app remoting to prevent issues when running many apps simultaneously.
Zoom Desktop Client 5.16.10
More Info: https://support.zoom.com/hc/en/article?id=zm_kb&sysparm_article=KB0068823
Support Info: https://support.zoom.us/hc/en-us
Current Release November 20, 2023 version 5.16.10 (26186) Download type: Manual Download here: Download Center Changes to existing features Changed local storage to one year for free accounts The local storage duration for free accounts has been changed to one year, allowing messages stored locally to remain accessible for a year for free users. This change will take effect for both new installations and reinstalls. Updated Zoom app icon Zoom is unveiling a new icon designed for both the desktop client and web.
Last updated