Security update が4連発だ
そんなに夏時間対応したいのかと小一時間ほど問いつめたい、問いつめたい、問いつめたい。というfu7mu4によるつっこみです。
Java for Mac OSX 10.4 リリース5 夏時間対応
Java for Mac OS X 10.4, Release 5 adds support for the latest Daylight Saving Time (DST) and time zone information as of January 8, 2007, as well as several other critical enhancements. This release provides improved reliability and compatibility for Java 2 Platform Standard Edition 5.0 and Java 1.4 on Mac OS X 10.4.8 and later.
http://docs.info.apple.com/article.html?artnum=304586-ja
なんだよ、several other criticalって。実はJAVAのupdateじゃないのか?
WebObjects Update
To address these changes, WebObjects DST is a combined update that addresses issues with the WebObjects supplied date classes using the latest DST and time zone information available as of January 8, 2007 (2007-01-08). You should install these updates even if their computer is not being used in an affected time zone.
http://docs.info.apple.com/article.html?artnum=305009-ja
おい、夏時間関係なくてもいれろってことか? YESYESYES
Security Update 2007-002
FinderとUserNotificationだけiChatつかってないので興味無し。
CVE-ID: CVE-2007-0197
Available for: Mac OS X v10.4.8, Mac OS X Server v10.4.8
Impact: Mounting a maliciously-crafted disk image may lead to an application crash or arbitrary code execution
Description: A buffer overflow exists in Finder's handling of volume names. By enticing a user to mount a malicious disk image, an attacker could trigger this issue, which may lead to an application crash or arbitrary code execution. A proof of concept for this issue has been published on the "Month of Apple Bugs" website (MOAB-09-01-2007). This update addresses the issue by performing additional validation of disk images. This issue does not affect systems prior to Mac OS X v10.4. Credit to Kevin Finisterre of DigitalMunition for reporting this issue.
http://docs.info.apple.com/article.html?artnum=305102-ja
CVE-ID: CVE-2007-0023
Available for: Mac OS X v10.3.9, Mac OS X Server v10.3.9, Mac OS Xv10.4.8, Mac OS X Server v10.4.8
Impact: Malicious local users may be able to obtain system privileges
Description: The UserNotificationCenter process runs with elevated privileges in the context of a local user. This may allow a malicious local user to overwrite or modify system files. A program that triggers this issue has been published on the "Month of Apple Bugs" website (MOAB-22-01-2007). This update addresses the issue by having UserNotificationCenter drop its group privileges immediately after launching.
http://docs.info.apple.com/article.html?artnum=305102-ja
MoABきたー
しかし、これだけの内容であの容量はおかしい気がするのはfu7mu4だけ?
