Mac OS X Security Update 2007-001

[nagromme]

I had hoped that MOAB at least gets some of the ignorance out of Mac users but I guess it hasn't. 19 of the 24 bugs they have found are direct Apple bugs.

They have fixed 1! now. There are still 18 Apple bugs out there of which the majority can lead to arbitrary code execution.

Apple is taking some major time to fix this stuff, considering that other people have already fixed more than half of the bugs in their spare time.

Something really has to be exploited before people wake up. Sad but true.

Does Microsoft generally fix bugs just days after they are first reported to them?

Just because Apple hasn't yet released a fix doesn't mean they aren't working on one--and days is not "major time." Some bugs are quicker to fix than others, and some fixes have more side-effects to test than others. (And some bugs sound scary on paper but actually don't present a likely immediate threat to users. So taking the time to fix them right makes good sense. Look at past Microsoft patches that have broken other things in the process.)

Most security researchers report the bug to the vendor first, so a fix can be in progress or ready by the time crackers and the public are told. In this case, Apple--and we users--have been given no such courtesy.

Apple's not perfect--they make needless mistakes--but I think you exaggerate the delay issue here.

And people should avoid the following often-repeated logic:

1. No OS will ever be perfect.

2. Therefore Mac OS is not perfect.

3. Therefore Mac OS is just AS bad as Windows.

#3 doesn't work

(BTW, what is the ignorance of Mac users that you refer to? Mac users all know OS X has flaws because they see the fixes download. They also know Macs have no viruses or spyware right now. And they also know that might change--but that when it does it still won't equal the nightmare on Windows. If you've ever seen anyone claim that Mac security is perfect, you've seen something I never have I see LOTS of people SAY Mac users say that, but I never seem to see the straw man himself. Because such ignorance is in reality nearly nonexistent. And when people "wake up" as you say, what will that mean? What new actions will the bulk of Mac users take that you are disappointed to see them not taking now?)

 

[srf4real]

everything was great until today when I tried to open homemade .mov files. Now Quicktime with security update is crashing the finder, crashing itself, really making me .what up!?

 

[CeCe]

After installing the update and restarted my C2D Macbook, I can't connect to the internet wirelessly.

Anyone know how to fix this or how to undo a software update?

 

[Teh Don Ditty]

CeCe, I have a CD MacBook and I had the same problem you were. I just reinstalled OS X Now, I'm working perfectly again.

EDIT: Sorry, I thought this was the AirPort update.

Mods please delete post as it is irrelevant to Quicktime update. Thanks.

 

[Diatribe]

Does Microsoft generally fix bugs just days after they are first reported to them?

Just because Apple hasn't yet released a fix doesn't mean they aren't working on one--and days is not "major time." Some bugs are quicker to fix than others, and some fixes have more side-effects to test than others. (And some bugs sound scary on paper but actually don't present a likely immediate threat to users. So taking the time to fix them right makes good sense. Look at past Microsoft patches that have broken other things in the process.)

Most security researchers report the bug to the vendor first, so a fix can be in progress or ready by the time crackers and the public are told. In this case, Apple--and we users--have been given no such courtesy.

Apple's not perfect--they make needless mistakes--but I think you exaggerate the delay issue here.

And people should avoid the following often-repeated logic:

1. No OS will ever be perfect.

2. Therefore Mac OS is not perfect.

3. Therefore Mac OS is just AS bad as Windows.

#3 doesn't work

(BTW, what is the ignorance of Mac users that you refer to? Mac users all know OS X has flaws because they see the fixes download. They also know Macs have no viruses or spyware right now. And they also know that might change--but that when it does it still won't equal the nightmare on Windows. If you've ever seen anyone claim that Mac security is perfect, you've seen something I never have I see LOTS of people SAY Mac users say that, but I never seem to see the straw man himself. Because such ignorance is in reality nearly nonexistent. And when people "wake up" as you say, what will that mean? What new actions will the bulk of Mac users take that you are disappointed to see them not taking now?)

Because of their history MS has become generally pretty proficient in fixing bugs, which doesn't mean that this was always this way.
Apple now fixed a bug discovered in the Month of Kernel Bugs FROM NOVEMBER. I think we can agree that this is not days anymore.

And in contrast to your experiences I have seen and heard a lot of Mac users say that there aren't any viruses with an attitude like there will never be any.

The action I think that needs to be taken is for Apple to more thoroughly check their software and for us to keep an open mind and eye. Nothing more nothing less. You think we already do, I think we don't.

 

[dudleybaddog]

After installing the update and restarted my C2D Macbook, I can't connect to the internet wirelessly.

Anyone know how to fix this or how to undo a software update?

I've got exactly the same problem, as do others. Checking the discussions at Apple.com, many others are experiencing this same issue.

I'm with you. I don't know how to fix it. I'm hoping that Apple will fix this soon. I did read that a reinstall of OSX might solve the problem. I think I'm going to wait and see if Apple comes out with a fix first.

 

[CeCe]

I've got exactly the same problem, as do others. Checking the discussions at Apple.com, many others are experiencing this same issue.

I'm with you. I don't know how to fix it. I'm hoping that Apple will fix this soon. I did read that a reinstall of OSX might solve the problem. I think I'm going to wait and see if Apple comes out with a fix first.

Me too as it's a lot of work to do it...