Jump to content

Security Update 2006-008 Available

Colonel

By Colonel

 Share

Today, Apple released a new security update for Mac OS X 10.4.8 and Mac OS X 10.4.8 Server. The update fixes security issues with QuickTime for Java and Quartz Composer. Apple gives us the following description about the update:

Description: Java applets may use QuickTime for Java to obtain the images rendered on screen by embedded QuickTime objects and upload them to the originating web site. When this facility is used in conjunction with Quartz Composer, it becomes possible to capture images that may contain local information. This update addresses the issue by disallowing Quartz Composer compositions in unsigned Java applets. Quartz Composer compositions continue to function locally. Applications and signed Java applets that utilize QuickTime and QuickTime for Java are unaffected. This issue does not affect systems prior to Mac OS X v10.4. It also does not affect the Windows platform. Credit to Geoff Beier for reporting this issue.

As usual, the update is available though Software Update and Apple's documentation site.

 Share
Go to articles

User Feedback

Recommended Comments



Takuro
Anyone with success using AMD?

At this point, you should realize that most Apple updates are only guaranteed to work for Intel systems. Chances are, this update would ruin your install.

Link to comment
Share on other sites
macgirl

From what it contents I doubt it, Quartz Composer and QuickTime for Java fixes.

 

EDIT1:

This Universal Update is not Universal, it didn't work on my PowerBook.

 

EDIT2:

I used the Software Update and after reboot no problems at all.

Link to comment
Share on other sites
Guest m41k

I used the Software Update and installed 2006-007/8 this way, working fine.

 

 

From 10.4.6/7(JaS-sse2) -> 10.4.8Update(OriginalApple + exp6(8.8.1-sse2)) -> and back to Cali :D

Link to comment
Share on other sites
borisbadenov
If you use Natit, this update will screw up your display...so be warned...

 

Did you correct this problem? Did you get Natit back in or get your display back right? SHould we remove Natit for the updtate and then reinstall or just reinstall Natit?

 

Please share what you did to help others

Link to comment
Share on other sites
Rammjet

There is nothing in the update that should directly affect Natit or even Titan.

 

The update installs 3 Quicktime packages, 2 of them having to do with Java:

QTJava.zip (in Library -> Java -> Extensions folder)

QuickTimeJava.bundle (in Library -> QuicktimeJava folder)

QuartzComposer.component (in Library -> Quicktime folder)

 

It also appears to update the plists for several of the Apple apps.

Link to comment
Share on other sites
macgirl

Natit screws the display Itself, every time I boot I got different situation, sometimes the monitor is not recognized, sometimes blank/black display, sometimes no cursor at all, sometimes with TV and Monitor change the main window, sometimes I got Portrait resolutions instead of Landscape.

Link to comment
Share on other sites
ffosilva

Worked fine for me...

 

I think it increased a bit speed on rosetta apps. normally I start chess in 2 or 3 seconds using rosseta, now it starts in 1-2 seconds...

 

 

oO

 

i'm having at this exactly moment an text cursor issue... i don't know if it is related to 2006.008...

Link to comment
Share on other sites

×
×
  • Create New...