Apple today released Security Update 2007-004 which is recommended for all users and improves the security of the following components:
AFP Client, AirPort, CarbonCore, diskdev_cmds, fetchmail, ftpd, gnutar, Help Viewer, HID Family, Installer, Kerberos, Libinfo, Login Window, network_cmds, SMB, System Configuration, URLMount, Video Conference, and WebDAV.
Security Update 2007-004 v1.1 includes the contents of Security Update 2007-004, plus the following fixes:
• AirPort (Available for: Mac OS X v10.3.9): This update corrects an issue where the AirPort connection may be lost after waking from sleep. This issue only affects Mac OS X v10.3.9 with Security Update 2007-004.
• FTPServer (Available for: Mac OS X Server v10.4.9)
– Impact: Users with ftp access may be able to navigate to directories outside the normal scope
– Description: Security Update 2007-004 applied an incorrect ftp configuration file for Mac OS X Server v10.4.9 systems. Users with ftp access, who would normally be restricted to certain directories, may be able to access directories outside the normal scope. This update addresses the issue by restoring the correct version of the ftp configuration file. This issue only affects Mac OS X Server v10.4.9 with Security Update 2007-004.
Mac OS X 10.4.9 (client) and Mac OS X Server 10.3.9 systems that have installed Security Update 2007-004 do not require Security Update 2007-004 v1.1. If the security update has not yet been installed on these systems, then they should be updated using Security Update 2007-004 v1.1.
Security Update 2007-004 is available via Software Update and also as standalone installers.
More info and download links:
• Security Update 2007-004 v1.1 (Universal,15.7MB)
• Security Update 2007-004 v1.1 (PPC, 9.1MB)
• Security Update 2007-004 v1.1 (10.3.9 Client, 36.7MB)
Update time
Sarari has been beachballing like CRAZY for a couple months now.. hope its fixed!
Mike,
No update will fix that, since it’s specific to your set up. I suggest you post your problem on the forums at:
http://www.macosxhints.com
I’m sure somebody will help.
It’s a security update…
Finally they’re fixing the problem with gnutar. Before it was failing so frequently that my gnu’s were sliding all over the place. Looks like they’ll finally stick where I put’em.
I assume it fixes the flaw from the Canadian, er…
http://macdailynews.com/index.php/weblog/comments/13368/
Update time…
is that anything like… HAMMAH TIME??
To Tempus Fugit: Time’s fun when you’re having flies.
About Time, thats Gnu! I thought Gnu’s only lived in the plains in Africa and only slid trying to run up muddy river banks!! ” width=”19″ height=”19″ alt=”grin” style=”border:0;” />
Will this fix the problems I’ve been having with my MacBook power chord since the battery update?
I hope this will fix my squeeking door hinge, end world hunger, cure AIDS etc. It will do what it says it will do. Read the page.
About Time,
You you also Ampar reincarnated?
Sorry should read:
About Time,
Are you also Ampar reincarnated?
” width=”19″ height=”19″ alt=”wink” style=”border:0;” />
@ Cubert,
Hmmm, could be.
Anyway, I was feeling so vulnerable until this update was released ” width=”19″ height=”19″ alt=”oh oh” style=”border:0;” />
Software Update is only catching the QT update, not the security update. What’s up with that?
>”Software Update is only catching the QT update, not the security update. What’s up with that?”
Mac OS X 10.4.9 (client) and Mac OS X Server 10.3.9 systems that have installed Security Update 2007-004 do not require Security Update 2007-004 v1.1.
“Will this fix the problems I’ve been having with my MacBook power chord since the battery update?”
No, but it’ll make your power chords sound a lot sweeter in Garageband…
The Trash is just BLAZING now – crazy fast! Cool…
“The Trash is just BLAZING now – crazy fast! Cool…”
Just call the fire department, they’ll come and put it out
” width=”19″ height=”19″ alt=”tongue wink” style=”border:0;” />
mw: ahead, as in what’s that up in the road, a head?
http://www.thaimisc.com/cgi-bin/freeguestbook/guest.pl?action=view&user=sergio
@ Cubert-
if you’re talking to me… nope, not Ampar.
and before anyone comments about the time of this post…
i work 3rd Shift and i just got home.
Cubert: Nope. But that was pretty funny.
blog
<sup>noun</sup>
a Web site on which an individual or group of users, often made up of commentators who hide behind anonymous pseudonyms that produces an ongoing narrative, made up entirely of extremist opinions, personal verbal attacks, and various other insulting statements for the intent of making money through advertising for the web-site owners, and providing an outlet for aggression by socially inept troglodytes, nerds and other malcontents who cannot interface with the human race on a real basis
Webster
you sure get around…..for a little guy.
Ooops, that’s a bit embarrassing that the original security update 2007-004 created a security hole in the FTP server on OS X Server.