Update on Apple fix

Published: 2007-05-03
Last Updated: 2007-05-03 21:09:15 UTC
by Mike Poor (Version: 3)
0 comment(s)
A number of readers wrote in to let us know that we had reported two updates for Apple, one for the Quicktime bug, and another Security Update.  When users clicked on Software Update, they only got the Quicktime patch.  From the Apple webstie describing the security update, it is indicated that Security Update 2007-004 v1.1 is just an updated patch to 2007-004.  If  Apple OSX (client) users already had that patch installed, there was no need to install the new one.  Read the official verbiage below, and the update below that:

"Mac OS X 10 .4.9 (client) and Mac OS X Server 10.3.9 systems that have installed Security Update 2007-004 do not require Security Update 2007-004 v1.1. If the security update has not yet been installed on these systems, then they should be updated using Security Update 2007-004 v1.1."

From: http://docs.info.apple.com/article.html?artnum=305445


If you are running OSX Server 10.4.9, it is critical to apply the new 2007-004 v.1.1 as noted as Jeroen Peters points out, and as mentioned in the aboe Apple doc:

Description: Security Update 2007-004 applied an incorrect ftp configuration file for Mac OS X Server v10.4.9 systems. Users with ftp access, who would normally be restricted to certain directories, may be able to access directories outside the normal scope. This update addresses the issue by restoring the correct version of the ftp configuration file. This issue only affects Mac OS X Server v10.4.9 with Security Update 2007-004.

Thanks Jeroen!

Mike Poor
0 comment(s)


Diary Archives