Does Security Update '07-004 have fix for ethernet networking issues?

Similar Messages

• Does Apple have fix for the Canon Digital Camera issue and 4.7 update??

  Hi All,
  does anyone have any info about a fix for the communication issues with canon digital cameras and PPC users who updated to 10.4.7?
  I think it's sad that a machine peopole buy to use for graphics can no longer download picture from a digital camera after up-daing software, as Apple recommends........
  Alos, what is the kernel fix....?? any ideas?
  Thanks in advance,
  Bill Anderson

  Hi,
  What apple are you running?
  I have a Digital Rebel XT with PPC G4 with update 10.4.7. And many users with PPC and the update are having the same issue.
  Also, if apple would get their updates to the other groups (e.g CANON), then maybe these issues would not come up, but Canon told me "We just can not keep up with Apple updates, and we got the intel versions working, but PPC have toubles..."
  OS updates should not affect peripherials such as digital cameras, and the computer does recongize the camera on the USB connection.
  thanks,
  Bill Anderson

• Security Update 2007-004 v1.1 did not fix connectivity after sleep

  I installed the new security update (2007-004 v1.1) which was supposed to fix airport cards from disconnecting from their wireless network after sleep...but it didn't fix the problem. Is anyone else STILL having trouble?

  I was having the same problem with connectivity after sleep, but once I used the Security Update 2007-004 v1.1 I no longer that THAT problem, but now I have another,....
  in MAIL, there is definitely a 'long' pause before graphics are displayed. Or while using Safari, the text for a new page will display fairly quickly, but again there is a 'long' pause before the graphics show up. I am comparing the time before the first 2007-004 update and now. Before, the graphics downloaded fairly quickly. In the MAIL program, just clicking on an email caused the graphics to appear, in fact, they were just THERE. But now, again there is that longish pause before they appear.
  Has this happened to anyone else? And ideas what I can do?
  PowerBookG4   Mac OS X (10.3.9)  

• Vertical stripes after latest Security Update 2008-004 for OS X Tiger

  Hi there,
  I'm experiencing vertical stripes and color issues on my PB G4 17 inch screen after the security update 2008-004.
  Funny thing is, a screenshot looks fine.
  I already resetted PRAM and NVRAM. Didn't help.
  Does anyone know a solution?
  Thanks,
  Phil

  It's probably got nothing to do with the upgrade.
  I guess your computer is about 15-20 months old and the serial number starts with W84 or W85.
  This is obviously a common problem among these serial numbers, and it starts after about 15 months.
  I've got a mint PBG4 17, that's NEVER left the house. Just turned it in on AppleCare repair (32 days left, phew) for this problem.
  This number series is assembled in Shanghai in 2005.
  / E

• Installation error for security update 2013-004 version 1.0

  Hi,
  I receive a 'unexpected error' message when I try to install security update 2013-004 version 1.0. I have tried updating from computer and manually downloading 'security update 2013-004', but still receive the exact same error message. I'm on a macbook pro mid 2011, Mac OS X Lion 10.7.5.

  Try verifying your hard disk with Disk Utility in the Utilities folder.
  After launching Disk Utility, in the left pane, click on the name of your hard disk.
  In the right pane, click the First Aid tab and then click the Verify Disk button.
  If the result is OK, then click the button to Repair Disk Permissions.
  If the Verify Disk test result reports errors, you will need to reboot the computer in Recovery HD and use Disk Utility there to repair the disk. See instructions by Kappy.
  Afterwards, try installing the security update again.
  As for the cause of the unexpected error, look at the log reports with Console in the Utilities folder.
  HTH

• Security Update - 2007-004 does it Bork iCal?

  I have just applied the new Security Update (2007-004) that was released this morning, and since then both my Intel Macs refuse to load iCal, with an exception generated during loading.

  I've also downloaded the security update, and when attempting to publish my ICal, I get a little window advising *"Your .Mac account Configuration is not correct. Calendar could not be published. Your .Mac account information is not correct. You cannot publish to .Mac until you have configured your .mac account" and below are 2 buttons marked 'Cancel' and 'Open .Mac Preferences*'.
  When I click on 'Open .Mac preferences' I get the System Preferences pane for .Mac accounts which is of no use whatsoever because it gives me the choice of opening an account which I already have.
  What I need to know is, how do I configure my account when there are no clues as to how to do it.

• The mail app on my Mac laptop will not open.  This began happening after an upgrade during which "Security UPdate 2012-004" was installed.  My mail app has a new icon, and I think i trashed the old program (trying to follow directions).  Suggest a fix?

  The mail app on my Mac laptop will not open.  This began happening after an upgrade during which "Security UPdate 2012-004" was installed.  My mail app has a new icon, and I think i trashed the old program (trying to follow directions).  Suggest a fix?

  See possible fixes here.
  https://discussions.apple.com/message/19760703#19760703
  https://discussions.apple.com/thread/4311280?tstart=0

• Hi, i have question about my macBook pro.  I have a somehow managed to delete a driver or no, so I can not install new software updates. I have tried for several hours to fixe it on OS X tools-Disc Tools. anyone has a clue about this more than I have.

  I have a somehow managed to delete a driver or no, so I can not install new software updates. I have tried for several hours to fixe it on OS X tools-Disc Tools. anyone has a clue about this more than I have about Mac´crack that **** formatted and has really nothing to the HD. what do I do??
  <Edited by Host>

  Cami87,
  which model MacBook Pro do you have, and which version of OS X is installed on it?

• After latest security update my MacBook is not finding any network. My network is ok, iPad and iPhone have no problems, but laptop is for all practical purposes turned into typing machine. Has somebody encountered similar problem? What to do?

  After latest security update my MacBook is not finding any network and I think is not really turning wifi on. Has anyone encountered similar problem?

  Checked the older discussion of the same type and found solution, well kind of... Thanks to other people who tried it, I just cannot remember their names at the moment. So, the solution for me was to turn off the firewall in the system preferences and suddenly lo and behold there was my network.

• Unable to Reboot After Latest Apple Updates (SA-2011-06-23-1 and Security Update 2011-004)

  Hi All,
  After applying today's updates (06/23/2011) in APPLE-SA-2011-06-23-1 Mac OS X v10.6.8 and Security Update 2011-004, my MacBook will no longer boot. Prior to updating, the MacBook workked perfectly (except for the occasional error entry in the system and kernel log). The MackBook model number is A1278, with a RAM upgrade (4 GB).
  When booting in NORMAL mode, the grey screen with Apple logo (and spinning wheel) is shown for about 50 seconds. The device never shows the blue background or login window. It simply shuts down like the power was pulled.
  When booting in SAFE mode, the grey screen with Apple logo (and spinning wheel) is shown for about 1 minute 30 seconds. The blue background is shown and quickly transitions to the login windows. About 45 seconds after the login window is shown, the machine shuts down like the power was pulled.
  On the few occassions I logged in to take advantage of the 45 second safe mode window (before shutdown), I was *not* able to copy off my log files (in /log/var) to a thumb drive because the computer would not mount the USB device.
  When I peeked at the system's log file, I caught the tail end of "signature validation failed" for a bunch of hardware - from video to audio. I can only peek because the computer will shutdown before I have an opportunity to study anything in detail. The failed verifications may or may not be related to the shutdown - signature verfication might be disabled in safe mode; I simply don't know.
  It seems the world's most advanced operating system [tm] is performing the world's most epic failure. Any ideas to get this brick working again would be greatly appreciated.
  Jeffrey Walton
  Baltimore, MD, US

  Here's what I've found:
  (1) I cannot run Disk Utility because I don't have my install disk handy
  (2) I cannot run Repair Permissions because Apple does not make a separate ISO available to fix their mistakes
  (3) There does not appear to be a wat to back out updates (ie, no Add/Remove Programs)
  I was able to boot into safe mode and perform:
      > sudo bash
      $ chmod -R root /
  Amazingly, the command ran to completion. Unfortunately, it did not fix the problem. As soon as some spare cycles were available (interesting indeed!), the machine shutdown.
  +1 to Apple engineers for creating a broken patch
  +1 to Apple quality assurance for letting the junk out the door
  +1 to Apple, for not offering an ISO to fix a broken installation
  +1 to Steve, who has managed to keep his anti-trust lock on the hardware and broken software
  Great job, Apple

• Security Update 2007-004 v1.1

  I thought that I was being a fool after I installed the new v1.1 of the be-deviled Security Update 2007-004. But, IT WORKS JUST FINE on my TiBook G4 running OSX 10.3.9 with a Linksys wireless router.
  When I installed the original 2007-004, it trashed my wireless connectivity when waking my book up from sleep, just like it did for thousands of others, as reflected in posts here. I was forced to install and revert to 10.3.9 without any security updates by installing the 10.3.9 comboupdater as suggested by some brilliant users here, in order to restore wireless connectivity.
  I called Apple and let them know of the problem (they said that they hadn't heard of any problems......RIGHT......). I kept checking software update until I saw the v1.1 fix was being pushed, and in a blind act of faith, I said a prayer and installed it, figuring I could always go back to 10.3.9 if the new one was still buggy.
  I want to tell you that the new one (v1.1) worked like a charm, with a flawless install, and wireless connectivity both on launch as well as on waking up seems better than ever. I DID do a disk permissions repair before installing this updater, this time though.
  Though my confidence in Apple has been seriously shaken by this nightmare of the original Security Update 2007-004, this one seems to work just fine in all the tests that I've put my faithful TiBook through since I installed it.
  Chuck

  Hi Chuck!
  Thank you so much for posting, that the newer version of the SU works so well!
  I'm sure it will put a number of users at ease.
  I have been holding off on installation, but I will not go ahead with the update.
  Thanks Again!
  EDIT: I would just like to add that, while installing the update, it is better if one does not use the Mac, for the duration of the install.
  ali b

• Security Update 2008-004 (PPC) caused kernel panic

  I installed the Security Update 2008-004 (PPC) and Safari Update 3.1.2 and now I can't access my main startup drive +(the problem started immediately after I restarted my G4 after installing the Security Update 2008-004 -- I got the gray screen with the Apple logo, but it froze there and never got to the login screen).+
  My G4 PowerBook (laptop) is running the update just fine -- no kernel panics.
  I have a 2nd internal HD on my G4 (desktop) that I use for just such emergencies. The only difference is the 2nd HD does NOT have the Security Update 2008-004 (PPC) and Safari 3.1.2 update. +(Last security update was Security Update 2008-003.)+
  I did gain access to my main startup HD at one point and it worked fine until I shut it down +(I unplugged all peripherals (FireWire and USB) and, somehow, got it to startup correctly, then I plugged everything back in).+
  *But, the next day, I was back to square 1 when I didn't unplug all my peripherals.*
  If I have to unplug everything to startup every time, then I'm going to yank my hair out!
  The Mac OS Update software is surely to blame for the kernel panic, 'cause I don't have to do it for the 2nd HD without the 2008-004 Security Update.
  Plus, once my G4 is up and running on the 2nd HD, I have total access to my main startup HD. TechTool Pro (v.4.1.1) found no problems with any of the files on it, including the Volumes and Finder Info files, which all tested free of any errors.
  According to the not-so-helpful advice from "experts," I'll need to reinstall the MAC OS 10.4.x.
  HOWEVER, I want to know if I start from my original DVD 10.4.3 install disk, what happens when I start installing all the updates, including the Security Updates?
  *Do I STOP at Security Update 2008-003 (PPC)?*
  Because I DON'T want to reinstall the OS or my applications over again and AGAIN!
  Apple, PLEASE, fix this Security Update!

  Hi again!
  I'd have been asleep maybe a few hours ago, if not for
  the late fireworks (from 3 PM until about 12AM) - so,
  I am awake and a bit peeved at the scofflaws blasting
  many illegal fireworks near my second home in the city.
  (Normally, I live in a mostly quiet and beautiful mountain
  area that is very Alaska; the largest city is not so nice.)
  Back to your inquiry; if you start up in SafeBoot (hold
  shift key down until you get Login screen and it says
  SafeBoot; then login) and repair disk permissions
  before installing the Combo 10.4.11 update, as a
  standalone download file with the package on the
  desktop; it should work.
  Whether or not it would actually resolve the issue is
  yet another matter. There could be an underlying
  problem which may be better resolved if you could
  make a bootable complete computer drive clone
  of the hard disk drive contents, and either see if
  a third party utility can scan and fix the hard disk
  drive (if it is the problem) or you could get a new
  one; and then -either way- clone back the system
  onto a new or repaired hard disk drive.
  Bombich Software - Carbon Copy Cloner:
  http://www.bombich.com/software/ccc.html
  The issues in kernel panics and their resolutions
  are generally and more specifically covered in a
  few steps that involve troubleshooting; not any
  one may be the 'answer' yet the issue may be
  solved after trying several things. If the kernel
  panic is the real problem and not a symptom.
  Resolving Kernel Panics:
  http://www.thexlab.com/faqs/kernelpanics.html
  Notes on 'Journal-related Kernel Panics' in Tiger:
  http://www.thexlab.com/faqs/jnlrelatedpanictiger.html
  (The odds of needing this are slim; and I am not
  familiar with the process or need to do this.)
  Something to read through & consider carefully:
  http://www.google.com/search?hl=en&q=kernelpanic+after+security+update+Tiger+10.4&btnG=GoogleSearch
  {There may be some other hardware or ?? cause
  behind the kernel panics and so it would be a
  good idea to have a clone of your drive's content
  on a bootable external FireWire enclosed HDD.
  -I like mine, it has its own power supply and is
  not reliant on the USB or FireWire to get power
  from the computer; which could be faulty...}
  Good luck & happy computing!
  edited to add CCC link.

• Mail broken since security update 2008-004, multiple symptoms

  Unfortunately, I can't sum this up in a snappy headline.
  To get this started: the machine is an iMac 800MHz, which is running Mac OS X Server 10.4.11. It's not running Leopard, which might cure several issues, because it can't be installed on that machine.
  The load is very light (low-traffic web site, DNS server for a low-traffic domain, mail server for essentially one user). I just mention this before I get the "you should not run this on an iMac" type of replies, which are not to the point. The computer ran Mac OS X Server ever since I got it years ago, and it can keep up with the load just fine. It can't keep up with the fragile nature of the Cyrus/postfix/whatever combination, which e.g. after a power outage, or worse, after a software update seems to leave the system semi-regularly in a state that's utterly undefined.
  So the system was running very smoothly, for the first time in quite a while, until that security update 2008-004 came along. In installed it, rebooted the system, and now Mail service is down.
  If I try to look at the settings for Mail with Server Admin, I get this error message:
  "A Service has encountered an error - Try to refresh the view (MY.FIXED.IP.ADDRESS/Mail). Report the problem to the administrator if it persists. (Cannot allocate memory)"
  Usually, when Mail acts up, I have this standard routine that I execute, and in 98% of cases that fixes everything:
  +serveradmin stop mail+
  +serveradmin stop mail+
  +find /private/var/imap/socket/ -name "lock" -print -exec rm -rf {} \;+
  +rm /private/var/imap/socket/lmtpunix*+
  +rm /private//var/imap/socket/lmtp+
  +sudo -u cyrusimap /usr/bin/cyrus/bin/ctl_cyrusdb -r+
  +sudo -u cyrusimap /usr/bin/cyrus/bin/chk_cyrus+
  +serveradmin start mail+
  +serveradmin start mail+
  +postfix check+
  +postfix start+
  Typically, when the ctl_cyrusdb -r runs, I see all the various IMAP folders listed as they are being processed. This is NOT happing now, even though if I navigate into /var/spool/imap/user/someUserName they are all there in the proper hierarchy
  I ran DiskUtility's repair permissions, just in case something was screwed up by the ugprade. Also no dice.
  Any hints highly appreciated...

  Thanks for your suggestions. I knew that a full rebuild of the database would likely get things going again, and I ended up doing just that, because there server was reaching the point of down-time where permanent delivery failures would result if I didn't bring it back up.
  The problem with the mailbox rebuild approach is, that all flags and read/unread status are lost, with is a MAJOR problem. I wish Apple's Mail had a feature where you can push cached message status back to the server, overriding server side message attributes with those cached on the client. Unfortunately this isn't available.
  So Mail is running again, but I can't really consider this problem "solved" because all my flagged messages are unflagged, and all messages, read or unread, are now marked unread. If you have a mail archive of several GB dating back to the early 90s, then losing the flagged status on messages is a major issue, as is trying to ge a few hundred thousand messages to get unread again...
  I do however take some exception to what you write:
  pterobyte wrote:
  You shouldn't have to rebuild your database after a restart or update. If you have to something is wrong on your server. A power outage is a different issue. Any database in the world can get inconsistent because of a sudden power cut. This is what an UPS is for.
  That is akin to saying, it's OK if a file system is in a messed up state when the power goes down. That's what atomic operations, transactions, journaling, etc. were invented for. This day and age, there's no excuse for a database to end up in a messed up state because power went down, or for that matter, the system crashes, because no UPS will protect from the latter.
  Critical systems, and mail delivery belongs to these, must handle failure gracefully, and the technology to do so, does exist.
  pterobyte wrote:
  Also, on OS X Server you should NOT use "postfix stop|start". Use Server Admin or launchctl to stop the launchd item. Furthermore, you should not manually interact with the Cyrus database and remove files. Cyrus is capable of handling its locks and sockets.
  I know that this is how things SHOULD be. Unfortunately, postfix will not start properly when mail services are started with server admin. It will stop properly when I stop mail services though.
  I had posted a question about that ages ago, but nobody could figure out what is going on. So in the mean time I have resigned to the fact that I have to start postfix manually after each reboot.
  I'd more than happy to get past that issue. Here a link to my question regarding this matter:
  http://discussions.apple.com/thread.jspa?threadID=904736&tstart=0
  http://discussions.apple.com/thread.jspa?threadID=908174&tstart=0
  Similarly, I had once issus where cyrus would refuse to start up, and I found in some support forum the instructions to remove some of these lock files and pipes. That indeed got cyrus going again, and since it recreates these files automatically, I ended up adding the removal of these files to my "try this procedure if mail acts up" routine. It doesn't seem to harm the setup from what I can tell, and it has gotten a stuck system back to work more than once.

• !!! Security Update 2007-004 (PPC) causes crashes !!!

  After i downloaded the Security Update 2007-004 (PPC) mail and safari refuse to quit. Only force-quit works for these apps.
  Also after downloading and installing the update, the computer restarted and got stuck in a startup loop which i force-quitted after 15 minutes or so. After the forced restart the computer started normally but mail and safari seem te be broken. I ran MainMenu for maintenance.
  I read several posts on various locations reporting similar problems.
  Anyone a solution for fixing my mail and safari?
  Can I revert the last update?
  will there be a fix posted?
  i use a powerbook G4 15ii OS 10.4.9

  Hi Jelle2
  Welcome to Discussions.
  To answer your questions in reverse:
  Will there be a fix?
  I don't think there is a problem with that update for Tiger. The problem is avoided when during the optimization phase of Software Update, that process is allowed to run uninterrupted. So if you were using mail and safari whilst also doing the Software Update, then that may be the cause of your current problem.
  Can I revert the last Update?
  Updates cannot be reversed except by reinstalling the OS, and not doing the Security Update 2007-004. But as I have said there in nothing inherently wrong with that update, just the way it has been installed.
  Anyone a solution for fixing my mail and safari?
  I would run Repair Disk from the Install DVD as per this guide:
  To do this: Insert the Install Disk 1 into the drive and then select Restart, then continue to hold down the C key until the Apple logo appears.
  This will take you to the installation software, but you do not want to install.
  Select your language, then go up to the top menu bar to Utilities and navigate to the Disk Utilities application.
  Select the start up drive, then follow the instructions in the First Aid pane where you can click on Repair Disk .
  If it finds errors, repeat the process until it reports no errors.
  After these repairs, quit the application, and restart normally.
  Once restarted normally run Repair Permissions. from the Disk Utility application found on your hard drive in Application/Utilities.
  regards roam

• Apple Releases Security Update 2006-004 (PowerPC and Intel)

  From Macfixit................
  Apple has released Security Update 2006-004 for Mac OS X in both PowerPC and Intel versions. This update requires Mac OS X 10.4.7 for either PowerPC or Intel, Mac OS X 10.3.9 or Mac OS X 10.3.9 Server.
  This is the fourth major standalone security update for Mac OS X released this year.
  Update procedure recommendation First, avoid performing any other operations (in Mac OS X or third-party applications) while the update process is occurring. In addition, before installing this security update, make sure all Apple-installed applications and utilities are in their original locations. Moving one of these applications to a different location on your hard drive can lead to an incomplete update. Also, disconnect any FireWire/USB devices before applying the update (except for your startup drive, if it is FireWire or USB, and your keyboard/mouse), then re-connect the devices one by one (checking for issues created by any particular device) after the update process is complete and the system has restarted.
  Enhancements in this release
  Of most interest to general end-users:
  a fix that prevents maliciously crafted Zip archives from causing condition where arbitrary code can be execute. In other words, prior to Security Update 2006-004 you could download a specially crafted file ending in .zip from a Web site or other location, and it could trigger the execution of malicious code.
  a fix that disallows maliciously crafted Canon RAW images from creating a buffer overflow, potentially leading to arbitrary code execution. Prior to Security Update 2006-004, you could download or otherwise receive a Canon RAW file that could allow execution of malicious code on your system.
  similar to the above, a fix that prevents maliciously crafted GIF images from causing an integer overflow, potentially leading to arbitrary code execution.
  new download validation that will catch certain HTML files defined by Safari as "safe" that may actually contain malicious JavaScript code. After applying Security Update 2006-004, these files will not be automatically opened.
  Protection against maliciously crafted HTML documents that can also open the door for arbitrary code execution by accessing deallocated objects.
  A full list of enhancements is as follows:
  AFP Server
  An issue in the AFP server allows search results to include files and folders for which the user performing the search has no access. This may lead to information disclosure if the names themselves are sensitive information. If the permissions of the items allow it, the contents may also be accessible. This update addresses the issue in Mac OS X v10.3.9 by ensuring that search results only include items for which the user is authorized. For Mac OS X v10.4 systems, the issue was addressed in Mac OS X v10.4.7. Available for: Mac OS X v10.3.9, Mac OS X Server v10.3.9:
  The AFP server contains an integer overflow that can be triggered by an authenticated user. A malicious user with access to the AFP server may be able to cause a denial of service attack or arbitrary code execution with system privileges. The AFP server is not enabled by default on Mac OS X. This update addresses the issue by performing additional validation. Credit to Dino Dai Zovi of Matasano Security for reporting this issue. Available for: Mac OS X v10.3.9, Mac OS X Server v10.3.9, Mac OS X v10.4.7, Mac OS X Server v10.4.7.
  On Mac OS X Server, the AFP server supports reconnection of file sharing sessions after a network outage. The storage of reconnect keys is world-readable. It may be possible for an authenticated local user to read the reconnect keys, use them to impersonate another user over AFP, and access files or folders with the privileges of the impersonated user. This update addresses the issue by protecting the reconnect keys with appropriate file system permissions. This issue only affects Mac OS X Server. Available for: Mac OS X Server v10.3.9, Mac OS X Server v10.4.7.
  An unchecked error condition exists in the AFP server that may lead to a crash. By carefully crafting an invalid AFP request, an attacker may be able to trigger this condition and cause a denial of service. This update addresses the issue by handling the formerly unchecked error condition. Available for: Mac OS X v10.3.9, Mac OS X Server v10.3.9, Mac OS X v10.4.7, Mac OS X Server v10.4.7
  Bluetooth
  The security of the Bluetooth Setup Assistant has been improved in this update for Mac OS X v10.4.7. The length of the automatically generated passkey used for pairing has been increased from six characters to eight characters. Available for: Mac OS X v10.4.7, Mac OS X Server v10.4.7
  Bom
  An issue in Bom's compression state handling may cause heap corruption. By carefully crafting a corrupt Zip archive and persuading a victim to open it, an attacker may be able to trigger this condition which could lead to an application crash or arbitrary code execution. Note that Safari will automatically open archives when "Open `safe' files after downloading" is enabled. This update addresses the issue by properly handling such malformed Zip archives. Credit to Tom Ferris of Security-Protocols.com for reporting this issue. Available for: Mac OS X v10.3.9, Mac OS X Server v10.3.9, Mac OS X v10.4.7, Mac OS X Server v10.4.7.
  DHCP
  A stack buffer overflow exists in bootpd's request processing. By carefully crafting a malicious BOOTP request, a remote attacker may be able to trigger the overflow and cause arbitrary code execution with the privileges of the system. Note that bootpd is not enabled by default in Mac OS X, and must be manually configured in order to be enabled. This update addresses the issue by performing additional bounds checking. Available for: Mac OS X v10.3.9, Mac OS X Server v10.3.9, Mac OS X v10.4.7, Mac OS X Server v10.4.7.
  dyld
  Malicious local system users may specify dynamic linker options that cause output to standard error. This output contains informational content and potentially user-specified content. As a result, privileged applications that parse or reuse standard error may be influenced inappropriately. This update addresses the issue by ignoring the problematic dynamic linker options in privileged applications. Credit to Neil Archibald of Suresec LTD for reporting this issue. Available for: Mac OS X v10.3.9, Mac OS X Server v10.3.9, Mac OS X v10.4.7, Mac OS X Server v10.4.7.
  An improperly handled condition in the dynamic linker may lead to including dangerous paths when searching for libraries to load into privileged applications. As a result, malicious local users may cause the dynamic linker to load and execute arbitrary code with elevated privileges. This update addresses the issue by properly selecting search paths when executing privileged applications. Credit to Neil Archibald of Suresec LTD for reporting this issue. Available for: Mac OS X v10.4.7, Mac OS X Server v10.4.7
  fetchmail
  Several issues in the fetchmail utility were discovered. The most serious issue could lead to arbitrary code execution when fetching mail from a malicious POP3 mail server. All issues are described at the fetchmail website (fetchmail.berlios.de). This update addresses the issues by updating fetchmail to version 6.3.4. In addition, fetchmail is no longer distributed as a privileged utility. Available for: Mac OS X v10.3.9, Mac OS X Server v10.3.9, Mac OS X v10.4.7, Mac OS X Server v10.4.7.
  gunzip
  A race condition may allow a malicious local user to modify the permissions of files owned by another user executing gunzip. This issue is only exploitable when executing gunzip on files in directories that are modifiable by other users. This update addresses the issue by properly handling files while decompressing. Available for: Mac OS X v10.3.9, Mac OS X Server v10.3.9, Mac OS X v10.4.7, Mac OS X Server v10.4.7.
  A directory traversal vulnerability is present in the command line utility gunzip when it is used with the non-default "-N" option. By carefully crafting a malicious compressed file and persuading a user to open it with "gunzip -N", an attacker may replace or create arbitrary files with the privileges of the victim. This update addresses the issue by properly stripping paths from files when decompressing. Available for: Mac OS X v10.3.9, Mac OS X Server v10.3.9, Mac OS X v10.4.7, Mac OS X Server v10.4.7
  Image RAW
  By carefully crafting a corrupt Canon RAW image, an attacker can trigger a buffer overflow which may lead to an application crash or arbitrary code execution. This update addresses the issue by performing additional validation of Canon RAW images. This issue does not affect systems prior to Mac OS X v10.4. Available for: Mac OS X v10.4.7, Mac OS X Server v10.4.7.
  ImageIO
  By carefully crafting a corrupt Radiance image, an attacker can trigger an integer overflow which may lead to an application crash or arbitrary code execution. This update addresses the issue by performing additional validation of Radiance images. This issue does not affect systems prior to Mac OS X v10.4. Available for: Mac OS X v10.4.7, Mac OS X Server v10.4.7
  By carefully crafting a corrupt GIF image, an attacker can trigger an undetected memory allocation failure which may lead to an application crash or arbitrary code execution. This update addresses the issue by performing additional validation of GIF images. This issue does not affect systems prior to Mac OS X v10.4. Available for: Mac OS X v10.4.7, Mac OS X Server v10.4.7.
  By carefully crafting a corrupt GIF image, an attacker can trigger an integer overflow which may lead to an application crash or arbitrary code execution. This update addresses the issue by performing additional validation of GIF images. This issue does not affect systems prior to Mac OS X v10.4. Credit to Tom Ferris of Security-Protocols.com for reporting this issue. Available for: Mac OS X v10.4.7, Mac OS X Server v10.4.7
  LaunchServices
  Download Validation may erroneously identify certain files containing HTML as "safe". If such a file is downloaded in Safari and Safari's "Open `safe' files after downloading" option is enabled, the HTML document will automatically be opened from a local URI. This would allow any JavaScript code embedded in the document to bypass access restrictions normally imposed on remote content. This update provides additional checks to identify potentially malicious file types so that they are not automatically opened. This issue does not affect systems prior to Mac OS X v10.4. Available for: Mac OS X v10.4.7, Mac OS X Server v10.4.7
  OpenSSH
  Attempting to log in to an OpenSSH server ("Remote Login") using a nonexistent account causes the authentication process to hang. An attacker can exploit this behavior to detect the existence of a particular account. A large number of such attempts may lead to a denial of service. This update addresses the issue by properly handling attempted logins by nonexistent users. This issue does not affect systems prior to Mac OS X v10.4. Credit to Rob Middleton of the Centenary Institute (Sydney, Australia) for reporting this issue. Available for: Mac OS X v10.4.7, Mac OS X Server v10.4.7
  telnet
  When connected to a TELNET server, the client may send the contents of arbitrary environment variables to the server if the server requests them. Some environment variables may contain sensitive information that should not be sent over the network. This update addresses the issue by ensuring that only non-sensitive variables and variables that the user has explicitly requested are are shared with the server. Credit to Gael Delalleau and iDEFENSE for reporting this issue. Available for: Mac OS X v10.3.9, Mac OS X Server v10.3.9, Mac OS X v10.4.7, Mac OS X Server v10.4.7.
  WebKit
  A maliciously-crafted HTML document could cause a previously deallocated object to be accessed. This may lead to an application crash or arbitrary code execution. This update addresses the issue by properly handling such documents. Credit to Jesse Ruderman of Mozilla Corporation for reporting this issue. Available for: Mac OS X v10.3.9, Mac OS X Server v10.3.9, Mac OS X v10.4.7, Mac OS X Server v10.4.7
  AppKit, ImageIO
  Buffer overflows were discovered in TIFF tag handling (CVE-2006-3459, CVE-2006-3465), the TIFF PixarLog decoder (CVE-2006-3461), and the TIFF NeXT RLE decoder (CVE-2006-3462). By carefully crafting a corrupt TIFF image, an attacker can trigger a buffer overflow which may lead to an application crash or arbitrary code execution. This update addresses the issue by performing additional validation of TIFF images. Systems prior to Mac OS X v10.4 are affected only by the TIFF NeXT RLE decoder issue (CVE-2006-3462). Credit to Tavis Ormandy, Google Security Team for reporting this issue. Available for: Mac OS X v10.3.9, Mac OS X Server v10.3.9, Mac OS X v10.4.7, Mac OS X Server v10.4.7./

  Right after installing Security Update 2006-004 (Intel) on my macbook pro I am having troubles with my wireless connectivity. Here is the dump from the console:
  Aug 3 15:49:43 x-ray /System/Library/PrivateFrameworks/Apple80211.framework/Resources/airport: Error: WirelessAssociate2() = 88001006 for network RadioActive
  Aug 3 15:49:43 x-ray /System/Library/PrivateFrameworks/Apple80211.framework/Resources/airport: Error: (had password)
  Aug 3 15:49:51 x-ray /System/Library/PrivateFrameworks/Apple80211.framework/Resources/airport: Error: WirelessAssociate2() = 88001006 for network RadioActive
  Aug 3 15:49:51 x-ray /System/Library/PrivateFrameworks/Apple80211.framework/Resources/airport: Error: (had password)
  Aug 3 15:49:59 x-ray /System/Library/PrivateFrameworks/Apple80211.framework/Resources/airport: Error: WirelessAssociate2() = 88001006 for network RadioActive
  Aug 3 15:49:59 x-ray /System/Library/PrivateFrameworks/Apple80211.framework/Resources/airport: Error: (had password)
  I can reboot and it will work, but if I put my macbook to sleep it, when I wake it, it will do the same thing again.
  I am also getting timeouts waiting for results of 1st wireless scan to complete in console.
  Anyone else having this issue?
  MBP15-2GHZ   Mac OS X (10.4.7)