patches

Tech Optimizer
July 5, 2025
Critical security vulnerabilities in PHP, identified as CVE-2025-1735 and CVE-2025-6491, pose risks for SQL injection attacks and denial of service (DoS) conditions. These vulnerabilities affect PHP versions below 8.1.33, 8.2.29, 8.3.23, and 8.4.10. CVE-2025-1735 relates to the PostgreSQL extension, where insufficient error checking during string escaping can lead to SQL injection vulnerabilities and application crashes. This flaw is associated with PostgreSQL's CVE-2025-1094. CVE-2025-6491 affects the SOAP extension, causing segmentation faults when a SoapVar instance has a namespace prefix exceeding 2GB, which can lead to application termination. This issue is linked to limitations in libxml2 versions prior to 2.13. Patches are available for all affected PHP versions to mitigate these vulnerabilities. CVE-2025-1735 has a CVSS score of 9.1 (Critical), while CVE-2025-6491 has a CVSS score of 5.9 (Moderate).
Winsage
July 5, 2025
Microsoft claims that laptops and desktop PCs running Windows 11 are "up to 2.3x faster than Windows 10 PCs." Windows 10, the most widely used desktop operating system, powers over 1 billion devices but will stop receiving free updates after October 14, 2025. Users can pay £22 for an additional year of support. The performance comparison is based on Geekbench 6 benchmarks, contrasting new Windows 11 devices with older Windows 10 systems. Between May and June 2025, Windows 11 usage increased by over 4%. Microsoft plans to release Windows 11 Version 25H2 later this year, which will feature a redesigned Start menu and a new CPU throttling feature. Users eligible for a free upgrade can benefit from a smoother installation process. Microsoft offers free security updates to Windows 10 users who subscribe to OneDrive; otherwise, the £22 fee applies. Some users may be hesitant to upgrade due to Windows 10's superior gaming performance in certain scenarios.
Winsage
July 3, 2025
Microsoft will cease support for Windows 10 on October 14, 2025, meaning it will no longer receive security updates or bug fixes. Users are encouraged to upgrade to Windows 11 to avoid vulnerabilities. The Extended Security Updates (ESU) program is available but comes at a cost. Upgrading to Windows 11 is free for most users, but it requires specific hardware, including the TPM 2.0 module. Installing Windows 11 on unsupported machines may not receive updates or support, potentially necessitating the purchase of a new PC.
Winsage
July 3, 2025
A recent update, KB5001716, is being rolled out to Windows 10 devices, targeting versions 22H2 and 21H2, and some Windows 11 21H2 machines. This update does not address bugs or enhance performance but focuses on notifying users about the upcoming end of support for Windows 10 on October 14, 2025. It operates quietly in the background without impacting system performance or introducing bugs, ensuring that critical tasks remain unaffected. Some users have experienced installation issues if a previous version of the update is present; they can resolve this by uninstalling the existing version and attempting a fresh installation.
AppWizard
July 3, 2025
Android malware has surged by 151% since the beginning of the year, with a notable 147% increase in spyware in 2025. Spyware activity peaked in February and March, reaching nearly four times the baseline. Smishing attacks via SMS increased by 692% between April and May. Banking trojans and spyware are increasingly hidden in seemingly legitimate applications, such as fake loan services. Over 30% of Android devices run outdated software lacking security patches, exposing users to vulnerabilities. Cybercriminals are developing interconnected operations that target sensitive user data. Google Play Protect is not fully effective, and users are advised to download apps only from official sources, review app permissions, deny unnecessary notification access, keep software updated, and use trusted mobile security apps.
TrendTechie
July 3, 2025
qBittorrent 5.1.2 was released on July 2, 2025. It is an open-source torrent client developed with the Qt toolkit, available for Linux, Windows, and macOS. The source code is on GitHub under the GPLv2+ license. The update focuses on bug fixes, including improvements to the WEBUI, a backup update mechanism, and a resolution for an issue in the WEBAPI related to trimming leading spaces in the "Run external program" fields. A fix for macOS prevents the application from blocking exit when the main window is closed.
Winsage
July 2, 2025
There has been a significant increase in the exploitation of Windows shortcut files (LNK files) for malware delivery, with malicious LNK samples rising from 21,098 in 2023 to 68,392 in 2024. LNK files, identifiable by their .lnk extension, allow users to access files and applications easily, but can also execute malicious content. Key fields in LNK files that indicate malicious intent include LINKTARGETIDLIST (99.53% of malicious LNK files), RELATIVEPATH (75.49%), and COMMANDLINEARGUMENTS (35.52%). LNK malware is categorized into four types: LNK exploits, malicious file execution, in-argument script execution, and overlay content execution. Indicators of compromise for LNK malware include specific SHA256 hashes for various samples.
Winsage
July 1, 2025
Microsoft Teams Classic has officially ceased operations, with all backend services disabled and servers shut down. Many organizations delayed their migrations despite prior announcements, leading to user disruptions and increased support tickets. A study by the UK’s Royal Institution of Chartered Surveyors found that over a quarter of UK businesses experienced cyberattacks in the past year, and nearly three-quarters of business leaders anticipate cybersecurity disruptions within the next one to two years. The end of support for Windows 10 is set for October 14, 2025, presenting further challenges for IT teams, particularly in regulated sectors. Organizations face hurdles in migration due to budget constraints, lack of visibility into legacy dependencies, and staff turnover. IT teams must deploy the new Teams client, disable Teams Classic, and ensure clear communication and documentation to mitigate risks.
Winsage
June 28, 2025
Millions of enterprise devices are still using Windows 10, with a report indicating that half of all business-managed Windows devices have not transitioned to Windows 11. In the healthcare sector, 19% of devices are too outdated to upgrade without replacement, and the finance sector also shows slow modernization. The Americas have only 43% of enterprise devices upgraded to Windows 11, while Europe has a 70% upgrade rate. Larger organizations managing over 10,000 devices have completed only 42% of their migrations due to complex environments and aging infrastructure. Microsoft is offering paid support through its Extended Security Updates (ESU) program, and third-party provider 0patch plans to deliver security fixes for at least five years after Microsoft's support ends.
Search