Apple Releases Security and Xcode Updates

optikz writes "A security update is available in Software Update. 'Security Update 2003-11-04 addresses a potential vulnerability with the Terminal application in Mac OS X v10.3 and Mac OS X Server v10.3 that could allow unauthorized access to a system.'" sandrift writes "Software Update just popped up with Xcode Update 2003-11-03" Apple notes that "The Xcode update addresses an issue in the Xcode IDE that could potentially lead to data corruption or the loss of files particularly when source files contain illegal characters." Apple does not note, however, that Software Update will attempt to quit Terminal.app when installing the Security Update.

No 10.2?

[Otter]

Security Update 2003-11-04 addresses a potential vulnerability with the Terminal application in Mac OS X v10.3 and Mac OS X Server v10.3...

What? They're not issuing an update for 10.0 or 10.1? It's a plot to force Mac users to upgrade! Apple is worse than Microsoft! Worse than Red Hat! That's why they'll never Succeed In The Enterprise!

OK, maybe not worse than Red Hat.

So?

[trublaha]

Apple does not note, however, that Software Update will attempt to quit Terminal.app when installing the Security Update.

Is that such a big deal? I mean, if it's replacing the application, it's kinda going to have to quit it! Normally I like to quit as many running processes and applications before applying updates, just be sure.

Anyways, good to get an update so early. Haven't really noticed any of the problems with XCode, but it's reassuring knowing they're being addressed before I can encounter them!

Re:So?

[rixstep]

I mean, if it's replacing the application, it's kinda going to have to quit it!

Not at all. You've obviously never tried. What's loaded is loaded - you won't get any new NIBs if the old ones are removed - but you're perfectly capable of overwriting the disk image of a running process.

It could be worse.

[jptechnical]

I have installed some win updates that shut down the entire system with no warning.

Nothing gets your blook pumping like a minor patch rebooting the DC in the middle of the afternoon.

Note to self... 'finish' sometimes means restart.

Re:It could be worse.

[Pathwalker]

Shouldn't you be applying those patches during a scheduled change window, outside of production hours?

Shouldn't you have noticed that the patch forces a reboot when you applied it to one of your test systems to see if it would cause any problems?

Re:It could be worse.

[rf600r]

Note to self: Don't hire this moron who patches a DC in the middle of the afternoon.

Re:What about File Vault?

[valkraider]

its target audience is too stupid to understand how it works

Isn't that true of maybe 75% of ALL computers?

Patch bug or PEBKAC?

[Squozen]

Hmm. Once I've applied the patch Software Update still lists it as an available patch the next time I check for updates. I wonder what I managed to break when I installed Fink..?

Re:Patch bug or PEBKAC?

[neverkevin]

I always move my chair to the other side of the room when installing updates to prevent PEBKAC errors :)

Re:Patch bug or PEBKAC?

[Elwood+P+Dowd]

Some software updates reappear until you reboot.

Better yet...

[AvantLegion]

... you should've thrown a fit about the Xcode patch not being available on earlier OS X's. :)

No, please, you go first

[bpbond]

Boy, after Apple's recent Firewire drive and FileVault data erasure issues, I think I'll let someone else go first. Let me know how things look, post-update, tomorrow morning...

Re:illegal characters?

[Paradise+Pete]

Any note of what characters they are referring to?

"(C) SCO", I believe.

And it doesn't require restart!

[your_mother_sews_soc]

Apple does not note, however, that Software Update will attempt to quit Terminal.app when installing the Security Update.

Panther seems stable and very solid, even though it did deep six my ProTools, wouldn't let me use my Geforce4MX card, etc . So I figured I'd give it a shot. Oh yeah, and reading bpbond's post forced me to give it a go.

Much to my surprise, that the security patch didn't require a restart. To the best of my knowledge, this is a first. And, like the new installer, at the end it went through a "disk optimization" stage. I am impressed! Now if Avid could update ProTools, and I can get ssh to listen over port 23 again (my place of employment has telnet open, but nothing else - I need to read slashdot!) ...

Re:And it doesn't require restart!

[stripes]

Now if Avid could update ProTools, and I can get ssh to listen over port 23 again (my place of employment has telnet open, but nothing else - I need to read slashdot!)

Doesn't adding "Port 23" to /etc/sshd_config do it? (not that I have tryed, but a quick scan of hte man page says it will... oh, you probbably have to HUP sshd). Or are you asking how to get the client to use another port (-p 23 I think).

Good luck.

SCSI problems - whose fault?

[teamhasnoi]

My Adaptec 2096 SCSI card has been 'disappeared' since I installed Panther. It worked fine under 10.2.8.

Apple is blaming Adaptec, Adaptec is blaming Apple. Since the driver was built into OS X, who should I go after? I hope this isn't another, "We no longer support SCSI".

Corrected TROLL!

[ErnstKompressor]

What?? WHAT!!???? A bug in Apple's software? My god that's impossible!!!!! The submitter must be trolling!! FYI, only Microsoft (sorry, "M$") software has bugs. RMS, ESR and other luminaires of the open source world such as the brilliant Slashdot editors have said it is so. Neither Apple nor GNU/Whatever software has bugs. Please delete this article immediately as it serves no purpose whatsoever except to troll. Troll, troll. Please die troll.

The above post does not represent the views of Ernstkompressor. All rights belong to some Anonymous Coward. Thank you for your support