July 31st 2008
By Mike Flaminio
Apple has released Security Update 2008-005, which plugs the DNS vulnerability that most other vendors patched weeks ago, including Microsoft. For its part, Macworld has called this lapse 'unforgivable.'
[u] Also, TUAW writes that this updates patches a QuickLook bug where loading a malicious Microsoft Office file could lead to "arbitrary code execution." [u]
Here're the links and a single dram o' spin that Apple uses efficiently, modifying only a couple words, for all five iterations of this patch:
• Security Update 2008-005 Server (PPC)--135MB
Security Update 2008-005 is recommended for all users and improves the security of Mac OS X.
• Security Update 2008-005 Server (Intel)--180MB
• Security Update 2008-005 (PPC)--88MB
• Security Update 2008-005 (Intel)--143MB
• Security Update 2008-005 (Leopard)--65MB
Editor's note: Security is all about perception and, although Apple's still got capital to spend, it's hard not to look bad when Microsoft beats you to the punch, which is what happened in this case...
What's your take?