Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

2 software updates for OS X

Morod

Morod

macrumors 68000
Original poster
Jan 1, 2008
1,823
1,071
On The Nickel, over there....
There are two available now through Software Updater. Sorry, I didn't get a screenshot. One was Java for 10.5 and one was a Security Update. Approx. 47MB total. Restart was required, no problems with that.
Morod
 
Java for Mac OS X 10.5 Update 3

Java for Mac OS X 10.5 Update 3 delivers improvements to the security and compatibility of Java on Mac OS X 10.5.6 and later.

Further information regarding this update is available from this website: http://support.apple.com/kb/HT3374

For information on the security content of this update, please visit this website: http://support.apple.com/kb/HT1222
Click to expand...

Security Update 2009-001

Security Update 2009-001 is recommended for all users and improves the security of Mac OS X. Previous security updates have been incorporated into this security update.

For information on the security content of this update, please visit this website: http://support.apple.com/kb/HT1222.
Click to expand...
 

Attachments

  • Picture 1.png
    Picture 1.png
    128.8 KB · Views: 79
Just updated successfully. No issues here. Though I did get a double restart. :)
 
Safari RSS

CVE-ID: CVE-2009-0137

Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.6, Mac OS X Server v10.5.6

Impact: Accessing a maliciously crafted feed: URL may lead to arbitrary code execution

Description: Multiple input validation issues exist in Safari's handling of feed: URLs. The issues allow execution of arbitrary JavaScript in the local security zone. This update addresses the issues through improved handling of embedded JavaScript within feed: URLs. Credit to Clint Ruoho of Laconic Security, Billy Rios of Microsoft, and Brian Mastenbrook for reporting these issues.
Click to expand...

Nice to see this one being addressed, and nice to see credit being given where it's due.
 
dejo said:
Here are the details of the Security Update:
http://support.apple.com/kb/HT3438
Click to expand...

Lots in the security update! Thanks for the link. It looks like I can go back to using Safari for my RSS feeds. After that threat was exposed a couple/few weeks ago I had my RSS feeds taken by the Mail app. According to Apple, this security update fixes it. Thanks, :apple:! Quoting from your link:
"Safari RSS

CVE-ID: CVE-2009-0137

Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.6, Mac OS X Server v10.5.6

Impact: Accessing a maliciously crafted feed: URL may lead to arbitrary code execution

Description: Multiple input validation issues exist in Safari's handling of feed: URLs. The issues allow execution of arbitrary JavaScript in the local security zone. This update addresses the issues through improved handling of embedded JavaScript within feed: URLs. Credit to Clint Ruoho of Laconic Security, Billy Rios of Microsoft, and Brian Mastenbrook for reporting these issues."

Morod
 
What Version of Safari did you end with?

Safari got updated both in 10.4.11 and 10.5.6 my version number stayed at 3.2.1. However Safari for windows got updated to 3.2.2 today. So did Apple update the version # for OSX Safari? mine did not change but safari refused to quit on my system before the update so I am double checking.
 
Bernd said:
Safari got updated both in 10.4.11 and 10.5.6 my version number stayed at 3.2.1. However Safari for windows got updated to 3.2.2 today. So did Apple update the version # for OSX Safari? mine did not change but safari refused to quit on my system before the update so I am double checking.
Click to expand...

I've got the Safari 4.0 Beta, no changes...
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back