PDA

View Full Version : Security Update 2005-006 Released


MacRumors
Jun 8, 2005, 03:33 PM
http://www.macrumors.com/images/macrumorsthreadlogo.gif (http://www.macrumors.com)

Now available via Software Update:
Security Update 2005-006 delivers a number of security enhancements and is recommended for all Macintosh users. This update includes the following components:

AFP Server
Bluetooth
CoreGraphics
Folder Permissions
launchd
LaunchServices
NFS
PHP
VPN

For detailed information on this Update, please visit this website: http://www.info.apple.com/kbnum/n61798

AoWolf
Jun 8, 2005, 03:35 PM
Keep them coming apple. (not that we need them ;-) ) I wonder just how long OS X will last virus free...

mkrishnan
Jun 8, 2005, 03:39 PM
Keep them coming apple. (not that we need them ;-) ) I wonder just how long OS X will last virus free...

Until someone installs it on a Dell! ;) :eek: :D

(And that was just a pot shot, please no sixteen replies from newbies telling me how having MacOS pirated onto a Dell is totally unrelated to virus propagation! ;))

Doctor Q
Jun 8, 2005, 03:39 PM
AFP ServerImpact: A buffer overflow in support for legacy clients could permit the running of arbitrary code.

Description: The Mac OS X AFP Server supports a number of legacy clients. A buffer overflow in support for one of these clients could permit arbitrary code to run. This update modifies the AFP Server to correct this buffer overflow. This issue does not affect systems prior to Mac OS X 10.4.AFP ServerImpact: On an AFP Server that uses an ACL-enabled volume for storage, copying a file with POSIX-only permissions can leave an ACL attached.

Description: When copying a local file to an AFP Server that is using an ACL-enabled volume for storage, a temporary ACL is attached to the remote object during the copy process. This ACL can be left behind if the file copy went into a directory that was not using ACLs. The ACL that is left behind could cause confusion, as it will override the POSIX file permissions for the file owner. The ACL does not permit other users to access the file. This update modifies the AFP Server so that it correctly removes the ACL that is used for copying the file. This issue does not affect systems prior to Mac OS X 10.4.BluetoothImpact: Directory traversal via Bluetooth object exchange

Description: Due to insufficient input checking, the Bluetooth object exchange services could be used to access files outside of the default file exchange directory. This update provides an additional security improvement over the previous release by adding enhanced filtering for path-delimiting characters. Credit to kf_lists[at]digitalmunition[dot]com for reporting this issue.CoreGraphicsImpact: Applications that use either PDFKit or CoreGraphics to render poorly-formed PDF documents could abort due to a NULL pointer dereference.

Description: If a poorly-formed PDF document is passed to PDFKit or CoreGraphics for rendering, the rending engine will detect an error and stop processing. As part of the cleanup process, a check for a NULL pointer is omitted. This omission can cause an application that handles PDF documents to abort, requiring that the application be restarted. CoreGraphics is updated to correctly handle the cleanup of poorly-formed PDF documents. This issue does not affect systems prior to Mac OS X 10.4. Credit to Chris Evans for reporting this issue.CoreGraphicsImpact: Console users can gain root privileges.

Description: The CoreGraphics Window Server is updated to disallow unprivileged users from launching commands into root sessions. This issue does not affect systems prior to Mac OS X v10.4.Folder PermissionsImpact: Potential file race condition via world- and group-writable permissions on two directories.

Description: Secure folder permissions are applied to protect the system's cache folder and Dashboard system widgets. This exposure does not exist in systems prior to Mac OS X v10.4. Credit to Michael Haller at info@cilly.com for reporting this issue.launchdImpact: The setuid program launchd can allow local privilege escalation.

Description: A vulnerability in launchd allows local users to gain ownership of arbitrary files. The launchd command is updated to safely change ownership of files. Credit to Neil Archibald of Suresec LTD for reporting this issue. This issue does not affect systems prior to Mac OS X v10.4.LaunchServicesImpact: File extensions and mime types marked as unsafe but not mapped to an Apple UTI could bypass download safety checks.

Description: Mac OS X 10.4 contains a database of known unsafe file extensions and mime types. If an addition to the unsafe types database was made without a corresponding Apple UTI (Uniform Type Identifier), then a query on certain forms of the file extension or mime type would not be marked as unsafe. All entries in the current unsafe type database are mapped to an Apple UTI. This update corrects the query code to correctly identify unsafe file extensions and mime types regardless of the presence of an Apple UTI. This issue does not affect systems prior to Mac OS X 10.4.MCX ClientImpact: Portable Home Directory credentials may be available to local system users.

Description: MCX Client is updated to not log portable home directory mounting credentials. This issue does not affect systems prior to Mac OS X v10.4.NFSImpact: An NFS export that's restricted using -network and -mask flags will export to "everyone."

Description: The use of -network and -mask on a filesystem listed in the NFS exports file would result in that filesystem being exported to "everyone." This update modifies the NFS exporting code to correctly set the network and mask parameters. This issue does not affect systems prior to Mac OS X 10.4.PHPImpact: Multiple vulnerabilities in PHP, including remote denial of service and execution of arbitrary code.

Description: PHP is updated to version 4.3.11 to address several issues. The PHP release announcement for version 4.3.11 is located at http://www.php.net/release_4_3_11.php.VPNImpact: A local user can obtain root privileges if the system is being used as a VPN server.

Description: A buffer overflow in "vpnd" could be used by a local user to obtain root privileges if the system is configured as a VPN server. This issue does not occur on systems that are configured as a VPN client. This issue cannot be exploited remotely. This update prevents the buffer overflow from occurring. This issue was fixed for Mac OS X v10.3.9 via Security Update 2005-005. Credit to Pieter de Boer of the master SNB at the Universiteit van Amsterdam (UvA) for reporting this issue.

brandona788
Jun 8, 2005, 03:39 PM
Does this mean I have to reboot???

iMeowbot
Jun 8, 2005, 03:41 PM
I updated and rebooted about an hour ago, and everything seems to run fine, but what are the green blob in the dock that says "Start" and the "My Computer" desktop icon for?

MattG
Jun 8, 2005, 03:41 PM
Does this mean I have to reboot???


Actually...no! At least there's no "reboot" symbol next to the update as I'm looking at it. I'll probably reboot anyway though.

EDIT: Eh...I take it back. No reboot for my Panther machine, but there is a reboot for Tiger.

brandona788
Jun 8, 2005, 03:43 PM
There was a reboot required for me. Well, its up and ready to go in <1 min. I love this thing!! (I switched about a week and a half ago.)

Doctor Q
Jun 8, 2005, 03:43 PM
Actually...no! At least there's no "reboot" symbol next to the update as I'm looking at it. I'll probably reboot anyway though.Software update insists "Restart will be required" for me (on Tiger 10.4.1).

CubaTBird
Jun 8, 2005, 03:45 PM
yeah i had to reboot as well.. though widgets took longer than normal to refresh after that reboot.. hrm...

shambolic
Jun 8, 2005, 03:46 PM
launchdImpact: The setuid program launchd can allow local privilege escalation.

Description: A vulnerability in launchd allows local users to gain ownership of arbitrary files. The launchd command is updated to safely change ownership of files. Credit to Neil Archibald of Suresec LTD for reporting this issue. This issue does not affect systems prior to Mac OS X v10.4.

I wonder if they've taken this opportunity to sneak in a bugfix for the issue with launchd failing to run scheduled jobs more than once (making it useless as a cron replacement, one of its intended uses). Probably not, but I can hope... *loads Software Update, clicks on Install*

ruud
Jun 8, 2005, 03:46 PM
AFP Server
Impact: A buffer overflow in support for legacy clients could permit the running of arbitrary code.
Description: The Mac OS X AFP Server supports a number of legacy clients. A buffer overflow in support for one of these clients could permit arbitrary code to run.
This should put an end to the "the switch to x86 will bring us buffer overflows" argument.

quackattack
Jun 8, 2005, 03:50 PM
Is this the part where everyone starts bitching about their uptime? ;)

Stella
Jun 8, 2005, 03:52 PM
I updated and rebooted about an hour ago, and everything seems to run fine, but what are the green blob in the dock that says "Start" and the "My Computer" desktop icon for?

ROTFL.

Hope 10.4.2 is out soon for functionality improvements.

gorkonapple
Jun 8, 2005, 04:01 PM
Keep them coming apple. (not that we need them ;-) ) I wonder just how long OS X will last virus free...

Mac OS X is not now, nor has ever been virus free....there's just been a bunch of pointless virii that do nto work in a UNIX environment.

Doctor Q
Jun 8, 2005, 04:06 PM
yeah i had to reboot as well.. though widgets took longer than normal to refresh after that reboot.. hrm...That's actually a good sign. That means that something happens when the O.S. changes, or perhaps each time it is booted, that optimizations or caching later make unnecessary. So your widgets are faster each time other than the first.

Peace
Jun 8, 2005, 04:08 PM
That's actually a good sign. That means that something happens when the O.S. changes, or perhaps each time it is booted, that optimizations or caching later make unnecessary. So your widgets are faster each time other than the first.

I ran the disk utility after rebooting and got this :
We are using special permissions for the file or directory ./Library/Widgets. New permissions are 16877

CubaTBird
Jun 8, 2005, 04:15 PM
I ran the disk utility after rebooting and got this :
We are using special permissions for the file or directory ./Library/Widgets. New permissions are 16877

yeah i got the same thing..

iSaint
Jun 8, 2005, 04:17 PM
Does this mean I have to reboot???

yes, after 29 days 19 hours up...rats!

UberMac
Jun 8, 2005, 04:17 PM
I updated and rebooted about an hour ago, and everything seems to run fine, but what are the green blob in the dock that says "Start" and the "My Computer" desktop icon for?

Lol - thank you! *Giggle giggle*! You have officially made my day (thats how bad my day was...full of exams and all grrr)

Back on topic...update seems fine, haven't noticed any changes. I'm still running Panther (OLDSKOOL!) but doesn't seem to have had a negative effect...except the "the green blob in the dock that says "Start" and the "My Computer" desktop icon"

Noiseboy
Jun 8, 2005, 04:19 PM
Mac OS X is not now, nor has ever been virus free....there's just been a bunch of pointless virii that do nto work in a UNIX environment.

Ergo they are not OS X virii and OS X remains virus free.

Freg3000
Jun 8, 2005, 04:32 PM
This should put an end to the "the switch to x86 will bring us buffer overflows" argument.

I thought exactly the same thing. :D

For me running 10.4.1, and update was required.

daveL
Jun 8, 2005, 04:46 PM
This should put an end to the "the switch to x86 will bring us buffer overflows" argument.
It's not that you can't have buffer overflows on non-x86 processors, it's what you can do to exploit the buffer overflow. On x86 CPUs (except the newest ones), you can run code in the data (rather than text/code) segment. You can't do that on a PPC. So, it's much easier to do damage with a buffer overflow on x86, compared to PPC.

wdlove
Jun 8, 2005, 04:59 PM
I will probably do the Security Update on Saturday. It's after System Optimizer X runs that I do a reboot on Sunday.

Dagless
Jun 8, 2005, 05:00 PM
I updated and rebooted about an hour ago, and everything seems to run fine, but what are the green blob in the dock that says "Start" and the "My Computer" desktop icon for?

hah! you just made my life

BrandonKea
Jun 8, 2005, 05:19 PM
Well shucky darns, I just got done rebooting after installing a QuickTime Update. I'm still trying to get the WWDC Keynote to work on my iBook.

Yay for security!

rdowns
Jun 8, 2005, 05:51 PM
I updated and rebooted about an hour ago, and everything seems to run fine, but what are the green blob in the dock that says "Start" and the "My Computer" desktop icon for?

Silly boy, the start menu is to shut down the computer.
Intuitive, thy name is Microsoft.

b-randomly
Jun 8, 2005, 06:03 PM
Update seems good and harmless.

Is it a bad thing that even when it tells me to shut down, I don't? I don't know what the implications are for keeping the system running after a point update or anything.

Apple
Jun 8, 2005, 06:09 PM
I feel as if any security update now is good ever since I learned about what dashboard widgets can do and of the recent merge with intel.

InnocenceMyth
Jun 8, 2005, 10:19 PM
I ran the security update and now my mini hangs on bootup with the following line at the very top corner of a black screen:

localhost:/ root#


Any help would be much appreciated. Can't find any reference to this issue with this update but it is a fairly fresh update.

WM.
Jun 8, 2005, 10:36 PM
I ran the security update and now my mini hangs on bootup with the following line at the very top corner of a black screen:

localhost:/ root#


Any help would be much appreciated. Can't find any reference to this issue with this update but it is a fairly fresh update.
I don't think I've ever booted into single-user mode, but that sounds a lot like it. Did you happen to hold command-S on boot? Have you tried booting again?

I don't know how to make it from the single-user-mode console to the graphical login window, but I'm sure there's a way to do it if rebooting again doesn't do the trick...

InnocenceMyth
Jun 8, 2005, 11:02 PM
I don't think I've ever booted into single-user mode, but that sounds a lot like it. Did you happen to hold command-S on boot? Have you tried booting again?

I don't know how to make it from the single-user-mode console to the graphical login window, but I'm sure there's a way to do it if rebooting again doesn't do the trick...

Thanks for the tip. Never heard of this single-user mode beast but after your post I went googling. Part of the problem in dealing with this is I use a bluetooth keyboard, so I went and dug a usb keyboard and "fsck"d the machine, which reported - and supposedly fixed - disk errors, but I still can't get past this single-user mode.

mad jew
Jun 8, 2005, 11:05 PM
It's been fine on my iBook G4 and iMac G5. :)

mac15
Jun 8, 2005, 11:07 PM
Keep them coming apple. (not that we need them ;-) ) I wonder just how long OS X will last virus free...

Whenever somebody finds out how to run a root process without the user inputting a password. Good luck with that :)

thehypercube
Jun 8, 2005, 11:10 PM
ouch... G4 ibook supremely messed up after update here.

normal boot goes to kernel panic

safe mode powers off the computer during boot

single user mode cant run fsck -fy because of invalid sibling link

trying diskwarrior now... have so much homework tonight ugh.

phonemonkey
Jun 8, 2005, 11:40 PM
Just got done doing my update on panther, which DID require a restart. Got the "flashing folder" on reboot. After another restart things were back to normal, but firefox didn't want to load bookmarks.

thehypercube
Jun 9, 2005, 12:07 AM
diskwarrior just saved my ass.... again.

of course, downtime was still 1.5 hr and for some reason folder and network icons aren't there even though the folders and networks themselves show up.

watch out for this update. its a bruiser.

AliensAreFuzzy
Jun 9, 2005, 12:18 AM
I hope this one doesn't mess up my system like the last one.

P.S. 500th post

swissmann
Jun 9, 2005, 01:20 AM
Keep them coming apple. (not that we need them ;-) ) I wonder just how long OS X will last virus free...

I hope a really long time.

imz
Jun 9, 2005, 04:01 AM
Part of the problem in dealing with this is I use a bluetooth keyboard,

How? I've got BT KB+M, update seems to work fine on iMac. At least...it hasn't spontaneously combusted yet :)

MontyZ
Jun 9, 2005, 04:04 AM
How do you tell how long your Mac has been running without a reboot? I've looked almost everywhere.

Veldek
Jun 9, 2005, 04:20 AM
How do you tell how long your Mac has been running without a reboot? I've looked almost everywhere.Type "uptime" (without quotes) in the Terminal.

jcord
Jun 9, 2005, 06:30 AM
Updaters beware!

Update ran fine.
First reboot after update: all apps hang on launch...
Force quit then rebooted.. got disk utility to load. Ran repair permissions and was able to load safari and other apps but mail still won't load - beachballing

jonat8
Jun 9, 2005, 07:34 AM
Worked fine for me, downloaded, installed and rebooted in just a few minutes :)

zigmoon
Jun 9, 2005, 09:40 AM
He I'm simon french designer (www.zigmoon.net)
This update good for me !!!
Nice !

No problème juste deleted 2 folder.
But no problème.

It's good

mad jew
Jun 9, 2005, 09:46 AM
He I'm simon french designer (www.zigmoon.net)
This update good for me !!!
Nice !

No problème juste deleted 2 folder.
But no problème.

It's good


There's a fly pooh trying to attack some of your eeees in your post. Is this any fault of the security update's? ;)

sacear
Jun 9, 2005, 08:08 PM
I ran the disk utility after rebooting and got this :
We are using special permissions for the file or directory ./Library/Widgets. New permissions are 16877Yeah, that is a good thing.

sacear
Jun 9, 2005, 08:22 PM
Part of the problem in dealing with this is I use a bluetooth keyboard,How? I've got BT KB+M, update seems to work fine on iMac. At least...it hasn't spontaneously combusted yet :)Yeah, so what brand BT devices are you all using, Apple or third-party?

iMetalG5
Jun 9, 2005, 08:25 PM
updated w/o probs.

although everytime i repair permission i get that same msg everytime. is this normal?

mkrishnan
Jun 9, 2005, 09:20 PM
There's a fly pooh trying to attack some of your eeees in your post. Is this any fault of the security update's? ;)

Oooh, no, I don't think so, but my iBook is making the Intel sound on startup now! :eek: :D

biohazard6969
Jun 10, 2005, 06:58 AM
how different is a sercurity update than a whole update, like from 10.4.1 to 10.4.2?

Savage Henry
Jun 10, 2005, 07:34 AM
how different is a sercurity update than a whole update, like from 10.4.1 to 10.4.2?
I think the post (http://forums.macrumors.com/showpost.php?p=1515592) submitted by the reliable Doctor Q covered the security bits. Everything is relative, of course, but I'd say a bit more secure.

mkrishnan
Jun 10, 2005, 10:13 AM
how different is a sercurity update than a whole update, like from 10.4.1 to 10.4.2?

I think the primary difference is that a security update is released when no new functionality or stability changes are made, but rather changes which only or primarily impact the user by improving security / safety / privacy. So that's why there are so many jokes whenever a security update comes out, and people claim their computer is faster as a result. :) But whole updates also roll in, AFAIK, all security updates in the interim. It's somewhat analogous to critical security updates and service packs in Windows, too, except that there are more dot upgrades and fewer security updates compared to Windows. :)

mac15
Jun 10, 2005, 10:32 AM
updated w/o probs.

although everytime i repair permission i get that same msg everytime. is this normal?


Repairing permissions does nothing! http://www.unsanity.org/archives/000410.php

iMeowbot
Jun 10, 2005, 11:29 AM
Repairing permissions does nothing! http://www.unsanity.org/archives/000410.php
"Repairing permissions is zapping the PRAM for the twenty-first century"

That's almost perfect! But they forgot about rebuilding the desktop.

RealDeal
Jun 11, 2005, 03:25 AM
Silly boy, the start menu is to shut down the computer.
Intuitive, thy name is Microsoft.

Yup, and what about the compromise diagonal icon task bar (combining best of horizontal and vertical, ignoring the user.. (see "inmates are running the asylum" about M$ and others- Alan Cooper) ;) )

wdlove
Jun 12, 2005, 06:36 PM
I installed the Security update last evening and then ran repair permissions. Running 10.3.9, can't say that I notice any difference.

mnstr_trd_sd
Jun 12, 2005, 06:50 PM
since i installed the last update, i'm having problems with my cursor freezing or disappearing. also the computer freezes from time to time. actually two days in a row now i had to do a hard start. anyone else experiencing anything close to this. thanks

wdlove
Jun 13, 2005, 10:43 AM
since i installed the last update, I'm having problems with my cursor freezing or disappearing. also the computer freezes from time to time. actually two days in a row now i had to do a hard start. anyone else experiencing anything close to this. thanks

I'm sorry to hear about the problems that you have incurred. So far my Mac is running the same as prior to the installation. Did you run the Repair Permissions?

~loserman~
Jun 13, 2005, 01:35 PM
how different is a sercurity update than a whole update, like from 10.4.1 to 10.4.2?

It's really hard to tell with Apple.
I mean one time they actually updated an ethernet driver with an IPOD update.

FFTT
Jun 14, 2005, 07:15 AM
Athough most things seemed normal after the Tiger update, I've had to reconfigure my MAIL and network settings twice since the update was installed.

I was getting failure to connect to mail server alerts when checking for new mail.

Macfixit also indicated that some others are having problems with the keychain settings.

wdlove
Jun 14, 2005, 10:42 AM
"Repairing permissions is zapping the PRAM for the twenty-first century"

That's almost perfect! But they forgot about rebuilding the desktop.

Apparently rebuilding the desktop is no longer important in Mac OS X. Unless something similar is done during routine maintenance run during the nigh by X.

MontyZ
Jun 14, 2005, 03:15 PM
I installed the Security update last evening and then ran repair permissions. Running 10.3.9, can't say that I notice any difference.
For 10.3.9, the Security Update only updates PHP and Bluetooth. So, that's why you probably see no difference.

iMeowbot
Jun 14, 2005, 03:33 PM
Apparently rebuilding the desktop is no longer important in Mac OS X. Unless something similar is done during routine maintenance run during the nigh by X.
Right, it now only affects Classic anyway, but even under the old Mac OS it was usually used superstitiously when people were having system troubles, and in most cases did nothing to address the problem.