なんだこれは

はてなダイアリーから移転しました。

Security update が4連発だ

そんなに夏時間対応したいのかと小一時間ほど問いつめたい、問いつめたい、問いつめたい。というfu7mu4によるつっこみです。

Java for Mac OSX 10.4 リリース5 夏時間対応

Java for Mac OS X 10.4, Release 5 adds support for the latest Daylight Saving Time (DST) and time zone information as of January 8, 2007, as well as several other critical enhancements. This release provides improved reliability and compatibility for Java 2 Platform Standard Edition 5.0 and Java 1.4 on Mac OS X 10.4.8 and later.

http://docs.info.apple.com/article.html?artnum=304586-ja

なんだよ、several other criticalって。実はJAVAのupdateじゃないのか?

WebObjects Update

To address these changes, WebObjects DST is a combined update that addresses issues with the WebObjects supplied date classes using the latest DST and time zone information available as of January 8, 2007 (2007-01-08). You should install these updates even if their computer is not being used in an affected time zone.

http://docs.info.apple.com/article.html?artnum=305009-ja

おい、夏時間関係なくてもいれろってことか? YESYESYES

Security Update 2007-002

FinderとUserNotificationだけiChatつかってないので興味無し。

CVE-ID: CVE-2007-0197

Available for: Mac OS X v10.4.8, Mac OS X Server v10.4.8

Impact: Mounting a maliciously-crafted disk image may lead to an application crash or arbitrary code execution

Description: A buffer overflow exists in Finder's handling of volume names. By enticing a user to mount a malicious disk image, an attacker could trigger this issue, which may lead to an application crash or arbitrary code execution. A proof of concept for this issue has been published on the "Month of Apple Bugs" website (MOAB-09-01-2007). This update addresses the issue by performing additional validation of disk images. This issue does not affect systems prior to Mac OS X v10.4. Credit to Kevin Finisterre of DigitalMunition for reporting this issue.

http://docs.info.apple.com/article.html?artnum=305102-ja

CVE-ID: CVE-2007-0023

Available for: Mac OS X v10.3.9, Mac OS X Server v10.3.9, Mac OS Xv10.4.8, Mac OS X Server v10.4.8

Impact: Malicious local users may be able to obtain system privileges

Description: The UserNotificationCenter process runs with elevated privileges in the context of a local user. This may allow a malicious local user to overwrite or modify system files. A program that triggers this issue has been published on the "Month of Apple Bugs" website (MOAB-22-01-2007). This update addresses the issue by having UserNotificationCenter drop its group privileges immediately after launching.

http://docs.info.apple.com/article.html?artnum=305102-ja

MoABきたー

しかし、これだけの内容であの容量はおかしい気がするのはfu7mu4だけ?

デイライトセービングタイム(夏時間) よくわかりません

http://docs.info.apple.com/article.html?artnum=305056-ja