upgrading Archives

AppWizard

May 22, 2026

Friday’s Android app deals and freebies: Balatro, Samorost 3, CHUCHEL, Botanicula, more

A new lineup of game and app deals for Android includes Balatro, Samurai of Hyuga 5, Samorost 3, CHUCHEL, Botanicula, and Dawncaster: Deckbuilding RPG. Significant discounts on tech products include the Galaxy Fold 7 with a discount of up to , Microsoft's Surface Laptop 7 with a discount, and LG's 77-inch B5 OLED TV now priced 0 off with a 0 Best Buy gift card.

Winsage

May 22, 2026

Give your PC a second life with this $35 Microsoft bundle

The Ultimate Microsoft Office Professional 2021 for Windows lifetime license and Windows 11 Pro Bundle is available for .97, reduced from 9.99, until May 31. The bundle includes Microsoft Office Professional 2021 with eight applications, and users can upgrade to Windows 11 Pro, which offers enhanced search functionality, improved voice typing, snap layouts for multitasking, and advanced cybersecurity features. The savings amount to over 0, making it a cost-effective option for upgrading an aging computer.

Tech Optimizer

May 21, 2026

CVE-2024-55638: Highly Critical Drupal Core Vulnerability Threatens PostgreSQL Sites with Remote Code Execution (RCE)

A critical vulnerability, CVE-2024-55638, has been identified in Drupal Core, affecting installations using PostgreSQL as their backend database. This vulnerability involves PHP Object Injection, which can lead to full Remote Code Execution (RCE) when combined with another deserialization flaw. It cannot be exploited independently but increases the risk for Drupal installations that use third-party modules or custom code that improperly employs the unserialize() function. The affected versions include Drupal Core 7.x prior to 7.102, 8.0.0 and above prior to 10.2.11, and 10.3.0 prior to 10.3.9, with patched versions being 7.102, 10.2.11, and 10.3.9. The vulnerability is particularly relevant for sites using PostgreSQL, and organizations are urged to upgrade to the patched versions and audit their code for unsafe unserialize() usage. Currently, there are no confirmed reports of exploitation in the wild, but the risk remains high due to insecure deserialization bugs in third-party modules. The EPSS score for this vulnerability is 9.93%, indicating a significant likelihood of exploitation in the near future.

AppWizard

May 21, 2026

There is no discovery on this earth more pure than a closet full of your dad’s ’90s big box PC games

A Redditor named Mestizoc discovered a collection of classic games while cleaning his father's cluttered closet, which included titles like Dreamfall, Quake 1, Half-Life, SimTower, Thief, Sin, Mortyr, and Red Alert. Mestizoc reminisced about his gaming experiences, particularly his connection to Quake 1 and his old gaming clan, Negative Burn. His father, who remains an active gamer in his 80s, recently finished playing Subnautica and is currently enjoying Starfield.

Tech Optimizer

May 19, 2026

PoC Released for 20-Year Old PostgreSQL RCE Flaw

A public proof-of-concept exploit has been released for CVE-2026-2005, a critical heap-based buffer overflow vulnerability in PostgreSQL's pgcrypto extension, allowing full remote code execution and privilege escalation to the database superuser level. This vulnerability has existed since 2005 and was discovered by an AI-powered security tool during the ZeroDay.Cloud 2025 event in December 2025. An upstream patch was committed on February 8, 2026, and released on February 12, 2026. The vulnerability has a CVSS score of 8.8 and affects approximately 80% of cloud environments using PostgreSQL, with 45% accessible via the internet. The flaw is in the pgp_parse_pubenc_sesskey() function, which lacks bounds checking, allowing attackers to manipulate session key lengths. The pgcrypto extension can be installed by any database role with CREATE privileges, increasing the risk of exploitation. The proof-of-concept exploit involves an information leak, arbitrary write, and privilege escalation to remote code execution. The vulnerability affects all major versions of PostgreSQL prior to the February 2026 releases, which include versions 18.2, 17.8, 16.12, 15.16, and 14.21. Mitigation steps include upgrading to patched versions, restricting CREATE privileges, blocking direct internet exposure, rotating database credentials, auditing the usage of COPY FROM PROGRAM, and verifying patched engine versions for cloud-managed PostgreSQL users.

Tech Optimizer

May 19, 2026

Critical PostgreSQL Vulnerabilities Enables Code Execution and SQL Injections

The PostgreSQL Global Development Group has released security updates for versions 18.4, 17.10, 16.14, 15.18, and 14.23, addressing 11 vulnerabilities, including critical issues related to arbitrary code execution and SQL injection flaws. All supported branches from 14 through 18 are affected by vulnerabilities, necessitating updates. Database administrators can perform in-place upgrades without needing a dump/restore. Key vulnerabilities include: - CVE-2026-6637: Stack buffer overflow in the refint module allowing arbitrary code execution. - CVE-2026-6472: Privilege bypass and arbitrary SQL execution. - CVE-2026-6473: Potential remote code execution and memory corruption. - CVE-2026-6474: Server memory information leak. - CVE-2026-6475: Arbitrary file overwrite vulnerability. - CVE-2026-6476: SQL injection with superuser execution. - CVE-2026-6477: Client-side code execution risk. - CVE-2026-6478: MD5 credential timing leak. - CVE-2026-6479: SSL/GSS denial-of-service flaw. - CVE-2026-6575: Limited memory disclosure issue. - CVE-2026-6638: SQL injection in logical replication. Organizations using PostgreSQL 14 should upgrade to version 14.23 and plan migration to a newer version before the end-of-life on November 12, 2026. The updates are urgent for deployments exposed to the internet or in multi-tenant environments.

Winsage

May 18, 2026

Why Your Windows 11 PC Doesn’t Get AI Features

Several hundred million Windows 11 users are experiencing frustrations due to the absence of Microsoft features like Recall and Cocreator, which are only available on Copilot+ PCs. Microsoft has divided Windows 11 into two tiers, with the latest AI functionalities requiring specific hardware known as Copilot+ PC. To qualify, a device must have: - An NPU capable of at least 40 TOPS - A minimum of 16 GB of RAM (DDR5 or LPDDR5) - At least 256 GB of SSD storage - Windows 11 version 24H2 or newer - A processor from specific families: Qualcomm Snapdragon X series, Intel Core Ultra 200V (Lunar Lake), or AMD Ryzen AI 300 series Many PCs lack these features due to missing NPUs, insufficient TOPS ratings, unsupported processor generations, outdated Windows versions, rollout delays, or regional limits. Features locked behind Copilot+ include Recall, Click to Do, Cocreator in Paint, Windows Studio Effects, Live Captions with Translation, Improved Windows Search, and Auto Super Resolution. To check for Copilot+ compatibility, users can verify the presence of an NPU in Task Manager, ensure they have Windows 11 version 24H2 or newer, and confirm their processor against the approved list. While some workarounds exist to enable features on unsupported PCs, they are often unstable and not recommended for primary use. Most users may not need to upgrade their laptops unless they require on-device AI features or their current device is significantly outdated. The AI feature gap is not currently critical for most users, as many features are optional or not essential.

Winsage

May 18, 2026

Windows CE Ported to Nintendo 64

Throaty Mumbo successfully ran Windows CE 2.11 on the Nintendo 64 by leveraging the shared architecture of both systems, which are based on the MIPS R4000 processor family. The project involved a month of reverse engineering, using Microsoft toolchains, custom hardware modifications, and debugging techniques. An EverDrive flash cartridge was used to load custom ROMs, and a USB connection facilitated uploads from a PC. Challenges included crashes with the initial EverDrive cartridge, which were resolved by upgrading to the EverDrive-64 X7. A custom kernel clone was created to troubleshoot issues with the stock Windows CE kernel, ultimately allowing the project to revert to the unmodified version. The Nintendo 64 controller was repurposed as a mouse, and standard Windows CE applications could be launched from the desktop. Comprehensive build details are available on GitHub.

AppWizard

May 17, 2026

Demigod review (2009)

Demigod, reviewed in PC Gamer issue #201 (June 2009), features a unique art direction characterized by a "Video Game Beige" color palette. The game allows players to utilize Generals to command minions in chaotic battles, though the visuals can sometimes obscure unit status. It includes four game types, with Conquest and Fortress modes requiring direct assaults on turrets, which can lead to drawn-out matches. Players can upgrade their minions at the Citadel, enhancing their capabilities. The game incorporates RPG elements, allowing players to invest in team benefits or personal enhancements through in-game currency. However, it has minor flaws, including pathfinding issues and inconsistent netcode, affecting online play. Despite these issues, players find enjoyment in the blend of strategy and RPG mechanics.

AppWizard

May 17, 2026

Get Diablo 4 and seven other games for under $2 each with Humble Choice this month

Diablo 4 is an action RPG set 50 years after Diablo 3's Reaper of Souls expansion, where players control 'the Wanderer,' a customizable character with five distinct classes. The narrative involves the awakening of Lillith by cultists, but the gameplay focuses on demon-slaying and loot collection. The main campaign takes about 25 hours to complete, but players can continue to upgrade their character builds and replay with different classes. Diablo 4 is included in the Humble Choice subscription for under , alongside other titles like Shin Megami Tensei V: Vengeance and Crysis 3 Remastered.