Microsoft recently announced the release date for Windows 8.1 Update 1: April 8, 2014, which is also Patch Tuesday for April. Windows 8.x users will be able to download the update via the Windows Update service.
This update brings back some of the mouse/keyboard and desktop features missing from the original version. Still missing, however, is the Start menu.
Oracle recently announced the availability of Java version 8.
The new Java includes a range of new features, most of which are only of interest to developers. There are some security improvements, but again, these will not be visible to the user and are mostly of use for developers of new Java software.
You can see the list of changes on the What’s New in JDK 8 page (warning: technical). The release notes may also be of interest.
Oddly, the main Java download page still points to older versions (Version 7 Update 51). You can get Java 8 from the Java SE downloads page.
Update 2014Apr15: Oracle clarified their position on the availability of Java 8 in a special FAQ. Basically, Java 8 is for developers, and Java 7 is for regular users. At some point, Oracle will decide Java 8 is ready for general use.
Ah, the perils of switching RSS feed clients. In the process of moving from The Old Reader to Feedly, I apparently missed one feed: Opera Desktop. Mea culpa.
Because of my blunder, I also missed the release of version 20 of Opera’s Webkit-based browser, as well as two subsequent updates. Version 20 was released on March 4, 20.0.1387.77 was released on March 13, and 20.0.1387.82 was released on March 20.
Version 20 adds more customization of the Speed Dial page, drag and drop between Speed Dial and the bookmark toolbar, and several other cosmetic changes. There’s still no bookmark sidebar.
The 20.0.1387.77 and 20.0.1387.82 updates fix some issues related to stability.
Microsoft’s Malicious Software Removal Tool (MSRT) checks for and attempts to remove known malware from Windows computers during the Windows Update process.
Previously, it was assumed that MSRT would stop being updated for Windows XP once support for that O/S ends in April. A few weeks ago, Microsoft confirmed that it will continue to update MSRT on Windows XP computers until July 15, 2015.
This is good news for anyone who will still be running XP after April, but it’s important to note that MSRT is not a substitute for a full anti-malware solution, and should not be seen as protection against the flood of malware, targeted at Windows XP computers, expected to appear after April 8.
There was yet another stealth release of Firefox yesterday. Version 28 was not announced on any of the myriad Mozilla blogs. I only discovered it because of release announcements on CERT and SANS blogs.
According to SANS, at least some of the security fixes in Firefox 28 are the result of successful hacks at the recent Pwn2Own contest. There’s a full list of the security fixes in this version at the top of the ‘Known Vulnerabilities‘ (aka ‘Security Advisories for Firefox’) page for Firefox.
The official release notes page for version 28 shows no improvement over previous release notes pages. But it does list the changes in the latest version, none of which are worthy of note.
Aside: I recently submitted two bugs to the Mozilla bug tracking system for Firefox. Bug #973330 is about the lack of proper announcements for new Firefox versions. Bug #973335 covers the many issues with the release notes pages for Firefox. So far the responses from Mozilla workers have not been encouraging.
The recent Pwn2Own contest revealed security vulnerabilities in several software products, including Google Chrome.
Within hours, Google corrected the flaws in Chrome and released new versions. The new Windows version is 33.0.1750.154. The official announcement provides additional details.
Adobe announced a new version of Flash yesterday. Version 12.0.0.77 fixes two security vulnerabilities flagged by Adobe as Important.
As usual, Google Chrome will update itself with the latest version of Flash, while Internet Explorer 10 and 11 on Windows 8 and 8.1 will receive the latest Flash updates via Windows Update.
You can check the version of Flash currently installed on your computer (or more accurately, in your browser), by visiting the About Adobe Flash page, and you can download the new version from the Player Download Center (warning: this page will install additional software by default; make sure to uncheck any optional software checkboxes).
Yesterday was Patch Tuesday, and Microsoft released five updates for Windows, Internet Explorer, and Silverlight. Two of the updates are flagged as Critical. The official summary bulletin has all the technical details, and a post on the MSRC blog has a less technical breakdown of the updates.
As expected, one of this month’s updates fixes the recently-reported zero-day vulnerability in Internet Explorer.
Another new version of Google’s web browser was announced today.
Version 33.0.1750.149 fixes seven security vulnerabilities, as well as some other bugs and stability issues.
Patch Tuesday for March 2014 happens on March 11. Microsoft currently plans to publish five new bulletins and associated patches starting at 10am PST on that date. The patches will address vulnerabilities in Windows, Internet Explorer, and Silverlight. Two of the patches are flagged as Critical.
One of the patches will fix the Internet Explorer vulnerability recently reported here.
boot13