Slashdot Mirror
Apple and Microsoft Release Critical Patches
SkiifGeek writes "Both Microsoft and Apple have released major security updates in the last 24 hours. Microsoft's single update (MS09-017) addresses fourteen distinct vulnerabilities across all supported versions of PowerPoint, but it isn't the number of patched vulnerabilities that is causing trouble. Instead, the decision to release the patch for Windows versions while OS X and Works versions remain vulnerable to the same remote code execution risks (including one that is currently being exploited) hasn't gone down well with some people. Microsoft have given various reasons why this is the case, but this mega-update-in-a-patch is still interesting for other reasons. Meanwhile, Apple has updated OS X 10.5 to 10.5.7 as part of the 2009-002 Security Update, as well as a cumulative update for Safari 3 and the Public Beta for 4. As well as addressing numerous significant security risks, the 10.5.7 update provides a number of stability and capability enhancements and incorporates the Safari 3 update patch. Probably the most surprising element of the Apple update is the overall size of it; 442MB for the point update, and 729MB for the ComboUpdate."
Yeah the size of the update was a shock this morning, let me miss my usual train too. From what i've read http://www.macworld.com/article/140578/2009/05/1057update.html the update does a lot more than is actually said (big surprise with the size), even though most of those things aren't directly visible. What i have found is that my dashboard updates a lot faster than before, as i have two standard weather widgets open at all times i guess they really optimized the code there. Normally it would take at least 5-10 seconds to update the display after opening the dashboard, now it's almost instantenous. Anyone else notice this too?
This update alone isn't even that big - if you're using auto update on a machine that was previously patched up to date, 10.5.7 is only 286MB.
Insightful? Absolute nonsense. This patch is entirely for Apple-supplied software. This all links against the system frameworks, and does not include its own version of anything. Frameworks shared between more than one Apple app are bundled in to the global frameworks directory. Also, most of the stuff being updated (e.g. Apache, which has had several security holes fixed in this update) isn't in a .app bundle.
I am TheRaven on Soylent News
I'm not sure how this is insightful. A .app is a directory. While everything is bundled in it (not strictly true, but close enough), they're still separate files, and dynamic linking works just fine. Another thing that works just fine is updaters that replace only some of the files in the .app.
There are no "single language" versions of Mac OS X system software updates (at least not until now). What you are talking about is the delta version of the update. All updates always update all languages.
Donate free food here
That is being bundled with fixes and enhancements to their own software like "iCal: Improves overall reliability with CalDav." The MS update is all labeled "Vulnerability to . . ."
Well, there's spam egg sausage and spam, that's not got much spam in it.
Only if the router is running PAT, and has to keep track of sessions. Otherwise it's not even looking at what type of packet is being received, just the source and destination networks. For a home user it might be a problem, but most ISP networks aren't using PAT, so it's not an issue.
At least in America, a lot of the network providers are also media publishers and distributors.
They're not being bashed for fixing security problems, they're being bashed for leaving Office on OSX vulnerable.
float->double->long doubles->infinite precision decimals
Take the current type, up it to the next, and you can make ever more precise calculation conversions. If the storage type is too small, converting, say, a million miles to micrometers is going to come out wrong.
$_ = "wftedskaebjgdpjgidbsmnjgcdwatb"; tr/a-z/oh, turtleneck Phrase Jar!/; print
It's 729 MB for the complete, standalone, works-on-both-architectures, includes-10.5.1-forward patch. If you download via Software Update you'll see a smaller download (since you'll only download for PowerPC or x86, and you'll only download the needed bits instead of all the point updates rolled together).
Benford's Corollary to Clarke's Law: "Any technology distinguishable from magic is insufficiently advanced."
Oh, sorry, I didn't know that the recession was over in happy Microsoft-la-la-land. Oh, wait, MS is actually firing over 3 times as many people - none of them store employees.
Lars T.
To the guy who modded me down from perfect to terrible Karma - Apple haters still suck