Apple releases Security Update 2007-004 v1.1

Apple StoreApple today released Security Update 2007-004 which is recommended for all users and improves the security of the following components:

AFP Client, AirPort, CarbonCore, diskdev_cmds, fetchmail, ftpd, gnutar, Help Viewer, HID Family, Installer, Kerberos, Libinfo, Login Window, network_cmds, SMB, System Configuration, URLMount, Video Conference, and WebDAV.

Security Update 2007-004 v1.1 includes the contents of Security Update 2007-004, plus the following fixes:
AirPort (Available for: Mac OS X v10.3.9): This update corrects an issue where the AirPort connection may be lost after waking from sleep. This issue only affects Mac OS X v10.3.9 with Security Update 2007-004.
FTPServer (Available for: Mac OS X Server v10.4.9)
– Impact: Users with ftp access may be able to navigate to directories outside the normal scope
– Description: Security Update 2007-004 applied an incorrect ftp configuration file for Mac OS X Server v10.4.9 systems. Users with ftp access, who would normally be restricted to certain directories, may be able to access directories outside the normal scope. This update addresses the issue by restoring the correct version of the ftp configuration file. This issue only affects Mac OS X Server v10.4.9 with Security Update 2007-004.

Mac OS X 10.4.9 (client) and Mac OS X Server 10.3.9 systems that have installed Security Update 2007-004 do not require Security Update 2007-004 v1.1. If the security update has not yet been installed on these systems, then they should be updated using Security Update 2007-004 v1.1.

Security Update 2007-004 is available via Software Update and also as standalone installers.

More info and download links:
• Security Update 2007-004 v1.1 (Universal,15.7MB)
• Security Update 2007-004 v1.1 (PPC, 9.1MB)
• Security Update 2007-004 v1.1 (10.3.9 Client, 36.7MB)

27 Comments

  1. >”Software Update is only catching the QT update, not the security update. What’s up with that?”

    Mac OS X 10.4.9 (client) and Mac OS X Server 10.3.9 systems that have installed Security Update 2007-004 do not require Security Update 2007-004 v1.1.

  2. “The Trash is just BLAZING now – crazy fast! Cool…”
    Just call the fire department, they’ll come and put it out

    ” width=”19″ height=”19″ alt=”tongue wink” style=”border:0;” />

    mw: ahead, as in what’s that up in the road, a head?

  3. blog
    <sup>noun</sup>
    a Web site on which an individual or group of users, often made up of commentators who hide behind anonymous pseudonyms that produces an ongoing narrative, made up entirely of extremist opinions, personal verbal attacks, and various other insulting statements for the intent of making money through advertising for the web-site owners, and providing an outlet for aggression by socially inept troglodytes, nerds and other malcontents who cannot interface with the human race on a real basis

  4. “Ooops, that’s a bit embarrassing that the original security update 2007-004 created a security hole in the FTP server on OS X Server.”

    There are no security holes in Mac OS X. These supposed “updates” are the work of Microsoft and are sent out simply to discredit Apple.

Reader Feedback

This site uses Akismet to reduce spam. Learn how your comment data is processed.