Mac OS X v10.5.8 Ready For Download

mysqlbytes writes "Apple has posted an anticipated v10.5.8 patch for Mac OS X, updating a number of components in the operating system, one of their last updates to Leopard. The update brings improvements to Safari, Airport, Bluetooth, among others and rolls out the latest OS X security fixes." Worth glancing at are some of the security-related notes on the update.

Waste of time

[SilverHatHacker]

OS X is dying. Netcraft confirms it.

Re:Waste of time

[Goldberg's+Pants]

LOL! I know you're carrying on a long tradition of trolls here on the dot, but that wasn't even a good try.

Re:Waste of time

Apparently, the only thing dying around here is that joke...

Re:Waste of time

"the dot"? Seriously? What, are you auditioning for a marketing gig or something?

Re:Waste of time

[vcompiler]

Non-UNIX OSes are all dying. Those taking more ideas are dying more slowly than those taking less, until they become UNIX completely.

Re:Waste of time

[jo42]

This meme, and the "In Soviet Russia" meme, died and ceased to be funny about, what, 5 years ago?

Re:Waste of time

[DrgnDancer]

Eh, I know I'm being pedantic and all, but OSX is Unix. More so that many of the "free-nix" OS's, if only because Apple paid to get it checked for Unixyness.

Re:Waste of time

[ciderVisor]

In Soviet Russia dies become memes after 5 years.

Re:Waste of time

[vcompiler]

That's exactly what I was saying.

Re:nothing broke yet

[2.7182]

Yeah, well just trying using kermit and see what happens.

Nothing to see here, move along.

[GreatDrok]

Nothing much has changed as expected other than the Mobile Me iDisk icon has changed to a rather fetching blue one with a cloud on it from the old magenta one. Update took a while to complete on my 1st gen MacBook Pro.

Re:Nothing to see here, move along.

[mithran8]

I disagree... My install completed a few minutes ago, and it's definitely much snappier!

Re:Nothing to see here, move along.

[sys.stdout.write]

My install completed a few minutes ago, and it's definitely much snappier!

What are the units on that measurement? ;-)

Sigh, until the IEEE approves "snaps per second" we're all just going to have to rely on subjective values..

Bad Summary... sigh

[RedK]

Why link only the 750 MB Combo update ? People who already have 10.5.7 don't need it, they can just get the 275 MB Update : http://support.apple.com/downloads/Mac_OS_X_10_5_8_Update

Re:Bad Summary... sigh

[ClaraBow]

It's also available through software update, which is only 168MB depending on your machine.

Re:Bad Summary... sigh

[sys.stdout.write]

Indeed, I am installing that now. 165 MB is pretty good as far as Mac updates are concerned. Maybe they stole Google's new updating technology?

Re:Bad Summary... sigh

[king+wilson]

I would really recommend that everyone use the Combo updater, whether you need it or not....

    Every time Apple releases an update, there are a bunch of small problems that occur to a minority of users, that are fixed by re-applying the Combo updater.

    This has been standard procedure among Mac Techs for a number of years.

Re:Bad Summary... sigh

[jpmorgan]

C-C-C-C-C-C-COMBO UPDATER

Re:Bad Summary... sigh

[RedK]

I applied the 275 MB update (I have a few Macs here, so SU was a bad idea and my bandwidth is metered, no way I'm wasting 3/4 of a gig on updates). Everything went without a itch. They all were 10.5.7, fully updated to begin with.

Re:Bad Summary... sigh

[yabos]

I've been doing the delta updates since 10.0 without any issues.

Re:Bad Summary... sigh

Never would have thought I'd see Leroy Jenkins posting on slashdot.

Re:Bad Summary... sigh

[bar-agent]

Actually an FPS/fighting game reference.

G-G-G-G-GENRE FAIL!

Last Updates - Hardly

[Hungus]

Sure it is likely the last major update BEFORE Snow Leopard but it is certainly not the last update for leopard.

Also to the person who asked why link to the combo update as opposed to the smaller incremental: In my personal deployment experience the combo updates are much less likely to cause any problems when updating.

Re:Last Updates - Hardly

[WiiVault]

Mod Parent +1 This is certainly true about incremental updates. When you get the choice/ have the bandwidth always go with the combo. Incrementals are quite often trouble. The best rule of thumb is, the older the current install the more likely something will get hosed by going with the small updates.

Re:Last Updates - Hardly

[RocketRabbit]

I'm waiting on this one. The "final" updates of both 10.4 and 10.3 both caused me serious issues and headaches.

Sometimes I think it's a conspiracy to get me to upgrade to the new boxed OS.

Re:Last Updates - Hardly

[Hungus]

True, but at least this next Box is cheap. The family packs are running under $10 a machine or $29 singly on amazon right now. What I am not looking forward to is upgrading my server, that always hurts my wallet, but this time its $499 for unlimited.

Re:Last Updates - Hardly

[sys.stdout.write]

Well, you're not supposed to use the "final" update with the "tinfoil hat" update.

Re:Last Updates - Hardly

[Darkness404]

...That is assuming you are running an Intel CPU. A lot of people are running PPC systems and they run Leopard pretty well with enough RAM.

Re:Last Updates - Hardly

...That is assuming you are running an Intel CPU. A lot of people are running PPC systems and they run Leopard pretty well with enough RAM.

and guess what my trollish friend? they'll continue to run Leopard pretty well, well after the release of snow leopard. there's no secret timebomb or killswitch that's going to stop you using your legacy mac (ffs, they havent sold ppc for 3 years now) for years to come.

Re:Last Updates - Hardly

[v1]

I don't know of any 10.4.11 major issues. 10.3.9 causes IMAP problems in mail though, I do remember that. Had to revert a system back to 10.3.8 after an SOP update blew up their email fetch.

What were the issues you ran into witih 10.4.11/10.3.9?

Re:Last Updates - Hardly

[Darkness404]

You can use it, but you can't actually -do- anything with it. Pretty soon Apple will stop releasing iTunes for it, and require newer iPods to have a newer version of iTunes, then eventually due to the unstable API, soon you won't have a usable browser, etc

Re:Last Updates - Hardly

[RocketRabbit]

I just don't like the fact that this has become a trend. I have a Powerbook G4 that I plan to use for many, many years to come, and I don't wish to have to reinstall 10.5.3 (or whatever my media is) and do the upgrade dance again.

If Steve Jobs screws me again like this I will consider writing him another nasty letter.

Re:Last Updates - Hardly

So why is that anyway? No, seriously -- I haven't touched Mac since 8.5: I don't know. It strikes me as really odd that Apple OS updates can hose Apple's closed hardware, yet it's fairly regular that someone remarks the latest upgrade is giving them grief. Can one of our Mac folk explain what's going on there?

(Disclaimer: I don't mind Macs -- It's pretty hardware, people really seem to like them, and I like that there's a choice other than MS and Linux.)

Re:Last Updates - Hardly

[RocketRabbit]

Instability with my Firewire devices, as well as tremendously higher idle usage.

Re:Last Updates - Hardly

[AHuxley]

they had one bad experience, the combo update 'saved' them and now its combo only.
the only thing you should have to do is repair permissions, a click and a few mins wait in Disk Utility.

Re:Last Updates - Hardly

[radicimo]

| You can use it, but you can't actually -do- anything with it

A dual G5 tower with max out RAM and video will run 10.5.x and FCPv6 just fine, and can capture, edit, and render HD via Decklink and eSATA RAID or similar and drive multiple monitors. But that's not anything anyone would want to do with a computer, I suppose. It might be a bit slow, but can get the job done.

Re:Last Updates - Hardly

[Darkness404]

But the problem isn't really the hardware, even a G3 is a decent enough CPU, it is the fact that OS X won't work on some hardware, eventually because of the unstable API programs will quit working, leading to a system that can't do much. And due to the fact that most software that is used on Macs come from Apple or Adobe, there is little incentive to re-make programs for older systems or keep existing systems up to date.

Re:Last Updates - Hardly

[WiiVault]

I use the term hosed liberally. It rarely causes the Mac not to boot, but can lead to instability ect. I think this happens if some third party SW alters something in the system that the non-combo doesn't have the files to fix/replace. A combo is much more like a fresh install.

Re:Last Updates - Hardly

Ah! So it's like dependency hell then? --A third-party SW messes a library or equiv, and combo packs are more likely to have a new version of said library or equiv, than non-combo upgrades?

If that's about right, then this would finally make sense. Thank you -- it's a small thing, but the mystery was starting to bug me.

Re:Last Updates - Hardly

Snow Leopard is Intel-only.

Re:Last Updates - Hardly

so basically you're having a whinge that you want the latest and the greatest without having to buy suitable hardware for it? cry me a fucking river.

Re:Last Updates - Hardly

Except third party apps shouldn't be replacing system level components under any circumstances.

Re:Last Updates - Hardly

[vcompiler]

You'd better write IBM a nasty letter for its losing PPC to Intel.

Re:Last Updates - Hardly

[Chaos+Incarnate]

It's not necessarily a new version, but if the library was ever updated between 10.5.0 and 10.5.8, the combo pack would have that library and replace the existing install.

Re:Last Updates - Hardly

[HTH+NE1]

I don't know of any 10.4.11 major issues.

• bzip2

  CVE-ID: CVE-2008-1372

  Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5 through v10.5.7, Mac OS X Server v10.5 through v10.5.7

  Impact: Decompressing maliciously crafted data may lead to an unexpected application termination

  Description: An out-of-bounds memory access exists in bzip2. Opening a maliciously crafted compressed file may lead to an unexpected application termination. This update addresses the issue by updating bzip2 to version 1.0.5. Further information is available via the bzip2 web site at http://bzip.org/.

• ColorSync

  CVE-ID: CVE-2009-1726

  Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5 through v10.5.7, Mac OS X Server v10.5 through v10.5.7

  Impact: Viewing a maliciously crafted image with an embedded ColorSync profile may lead to an unexpected application termination or arbitrary code execution

  Description: A heap buffer overflow exists in the handling of images with an embedded ColorSync profile. Opening a maliciously crafted image with an embedded ColorSync profile may lead to an unexpected application termination or arbitrary code execution. This update addresses the issue by performing additional validation of ColorSync profiles. Credit to Chris Evans of the Google Security Team for reporting this issue.

• ImageIO

  CVE-ID: CVE-2009-1722

  Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5 through v10.5.7, Mac OS X Server v10.5 through v10.5.7

  Impact: Viewing a maliciously crafted OpenEXR image may lead to an unexpected application termination or arbitrary code execution

  Description: A heap buffer overflow exists in ImageIO's handling of OpenEXR images. Viewing a maliciously crafted OpenEXR image may lead to an unexpected application termination or arbitrary code execution. This update addresses the issue by updating OpenEXR to version 1.6.1. Credit to Lurene Grenier of Sourcefire VRT, and Chris Ries of Carnegie Mellon University Computing Services for reporting this issue.

• ImageIO

  CVE-ID: CVE-2009-1721

  Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5 through v10.5.7, Mac OS X Server v10.5 through v10.5.7

  Impact: Viewing a maliciously crafted OpenEXR image may lead to an unexpected application termination or arbitrary code execution

  Description: An uninitialized memory access issue exists in ImageIO's handling of OpenEXR images. Viewing a maliciously crafted OpenEXR image may lead to an unexpected application termination or arbitrary code execution. This update addresses the issue through proper memory initialization and additional validation of OpenEXR images. Credit: Apple.

• ImageIO

  CVE-ID: CVE-2009-1720

  Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5 through v10.5.7, Mac OS X Server v10.5 through v10.5.7

  Impact: Viewing a maliciously crafted OpenEXR image may lead to an unexpected application termination or arbitrary code execution

  Description: Multiple integer overflows exist in ImageIO's handling of OpenEXR images. Viewing a maliciously crafted OpenEXR image may lead to an unexpected application termination or arbitrary code execution. This update addresses the issues through improved bounds checking. Credit: Apple.

• ImageIO

  CVE-ID: CVE-2009-0040

  Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5 through v10.5.7, Mac OS X Server v10.5 through v10.5.7

  Impact: Processing a maliciously crafted PNG image may lead to an unexpected application termination or arbitrary code execution

  Description: An uninitialized pointer issue exists in the handling of PNG images. Processing a maliciously crafted PNG image may lead to an unexpected application termination or arbitrary code execution. This update addresses the issue by pe

Re:Last Updates - Hardly

[v1]

I use firewire devices several times a day sometimes, from a wide variety of sources, and I haven't noticed any stability issues in quite a long time. Can you be more specific? (is it a specific brand of firewire chipset? I recall in the past there were some chipset-specific issues)

Re:Last Updates - Hardly

[RocketRabbit]

The OX911 chipset started having a LOT of issues with the last 10.4 update. It was all over the forums at that time, but Apple sanitizes their forum regularly, like Lenin did his photographs.

Re:Last Updates - Hardly

[v1]

That's surprising considering how common they are. 911 was the original firewire 400 chipset. 922 is now in use with the fw800 chips mostly now. I don't know what they're using in the combination carriers. By now they should be making the triple (sata, fw, usb) boards with a single chip I'd expect.

BIND vulnerability not fixed?

[HSpirit]

I can't see any reference to the latest BIND vulnerability being fixed by Apple in the Mac OS X Server. It's vulnerable and has been fixed by other vendors so why not?

Re:BIND vulnerability not fixed?

[Itsik]

I doubt this patch actually warrants the version number, 1.5.8. IMHO it's just a tie over until the release of Snow Leopard.

Re:BIND vulnerability not fixed?

[moon3]

So much money, so little motivation..

Macs are blessed against bugs, faults or viruses anyway.

Re:BIND vulnerability not fixed?

[Vectronic]

I'm not sure if Apple has any specific meaning to their Major.Minor.Maintenance(.Build) that you might be referring to, but this to me certainly seems worthy of a 0.0.1 (10.5.7 to 10.5.8)... It doesn't add any significant new features (as a 0.1.0 would/should), basically just bug fixes and tweaks. What would you suggest? 10.5.7.5.xxxx?

Re:BIND vulnerability not fixed?

[rekoil]

The version in 10.5.8 is still 9.4.3-P1. (9.4.3-P3 is the patched rev).

Re:BIND vulnerability not fixed?

[konohitowa]

Released August 12th...

http://support.apple.com/kb/HT3776

Re:nothing broke yet

[Penguinshit]

I did. Now he follows me around singing "It's not easy being green" and complaining that his dick smells like pork.

Re:nothing broke yet

[ElKry]

My wife's Macbook (MB881LL/A, white, early 2009) updated earlier today (from software updates), and froze mid-installation of the update. When restarted, it would kernel panic saying the kernel signature didn't match the CPU.

I had to restart the mac with the shift key pressed (safe mode) and after aprox. 15 minutes of gray screen with the spinning circle, it restarted itself again and booted up correctly, saying that all is well and 10.5.8 is installed. I am still wary of what might have messed up in the process, but at least this may work for anyone else with the same problem.

Re:nothing broke yet

[Goldberg's+Pants]

He's here all week. Don't forget to try the waiter and tip the veal.

Re:Security fixes?

[stephentyrone]

Isn't it?

Not really, no.

One must wonder,

[WiiVault]

if Leopard will have a long support life since it is the final revision to support Power PC. As an owner of a a few G5's I sure hope so.

Re:One must wonder,

[rsmith-mac]

I'd expect it to be like any other OS X release: Full support as long as it's the leading version, followed by limited support (just security updates) when it's the previous version, and finally all support is dropped when it's two versions back. So its support life would be as long as 10.6 is the leading version.

Re:One must wonder,

[Darkness404]

But Apple has been known to release updates simply to kill older hardware (look at OS 8.5).

Re:One must wonder,

[CAIMLAS]

If anything, it'll have a shorter lifecycle than previous versions, I think.

Why? Because you already have both 10.5 and a PPC. You don't have the latest, greatest Apple product, so you will not be giving them any more money.

The crazy thing about Macs is that, once Apple stops offering support/releases a new OS, you can rarely find applications - even the ones you'd used previosuly on the same OS - for them. Companies upgrade their products to -only- support the new system. A year ago I was looking for some software (any software, really) for a 10.4 machine. Guess what? Most downloadable/free stuff was Universal Binary only, and very few commercial products supported 10.4. Why? It's not that old.

Re:One must wonder,

[buysse]

Because CoreData and the other improvements to the API and Xcode are useful. If y'all are programming for free, or nearly free (shareware), there's not much incentive to use older tools.

Re:One must wonder,

I wouldn't worry about support life but more whether 3rd parties will offer compatible apps. As a PPC-owner, there were so many new apps that were not universal binaries, it spurred me to get an Intel Mac mini next to my tower.

Re:One must wonder,

Still, I find it ironic that Apple's latest hardware won't talk to a Mac running a version of OSX more than a couple years old, yet it works just fine with a Windows box running a 10-year-old version of Windows (XP).

dom

Re:One must wonder,

[willy_me]

Guess what? Most downloadable/free stuff was Universal Binary only, and very few commercial products supported 10.4. Why? It's not that old.

The PPC version of 10.4 supports universal binary applications. Just make sure you have the 10.4 box fully patched via Software Update.

Re:One must wonder,

[paimin]

Universal Binary means it does work on PPC. I run 10.4 on a Powerbook G4, and I can run the latest of most of the software I need regularly. A few things are not the latest version, like Open Office, but the PPC version is still available.

I wouldn't say this effect is really that much different from the Windows world, although MS does make a lot more effort to keep backwards compatibility (to a fault).

Re:One must wonder,

[Nimey]

lolwhut? Nobody forced you to upgrade past 8.1 if you had a 68K Mac, and dropping support for the old ones was necessary to speed up the newer PPC Macs, because prior to that release a bunch of code was unoptimized or just 68K code running in emulation.

Much like 10.5 and PPC Macs, really. Don't know if you've used Leopard on a PPC Mac, but even dual G5s can be a bit poky compared to Intel Macs, and forget about running it on a G4.

Re:One must wonder,

lolwhut? Nobody forced you to upgrade past 8.1 if you had a 68K Mac, and dropping support for the old ones was necessary to speed up the newer PPC Macs, because prior to that release a bunch of code was unoptimized or just 68K code running in emulation.

This trend only started after Steve Jobs returned to Apple. Before that, their tradition had been for EVERY new OS release to support as much existing hardware as possible.

After about 1998, the trend became "if you want to run the new version, buy a new machine."

Re:One must wonder,

Because backwards compatibility and support has served the Microsoft ecosystem so well....

forced Safari update?

[keiofh]

I don't understand why they need to force their customers to update to Safari 4, i'm sure a lot of people like safari 3 just fine,

Re:forced Safari update?

[sys.stdout.write]

I don't understand why Microsoft forces their customers to update to Internet Explorer 7, I'm sure a lot of people like Internet Explorer 6 just fine.

Re:forced Safari update?

[Savior_on_a_Stick]

IE on OS X FTW!

Re:forced Safari update?

[Darkness404]

I honestly always found that a bit strange myself. I -wanted- to keep IE 6 on my box simply to test code (and the fact that IE 7 is/was awful).

Re:forced Safari update?

Yeah I agree, I liked IE4 just fine, then when i got the latest operating system microsoft forced me to upgrade IE, what a bunch of jerks.

Re:forced Safari update?

[JordanL]

Firefox's constant bitching about updating and what version I run is WAY more annoying than anything Microsoft or Apple do on my systems.

Re:forced Safari update?

[dbcad7]

Edit...Preferences...Advanced...Update...
The radio buttons are self explanatory.

"So easy a caveman can do it"

Re:forced Safari update?

[JordanL]

I use Opera. A lot of Firefox users argument against Opera comes down to "I don't want my browser to do everything Opera does". But guess what, I don't want to have to tell my browser to be user friendly. I just want it to be user friendly. Between all the work on my computer I don't take the time to go through all the configuration options on everything. I just can't.

Thanks for the information, I've fixed it now. But as I recall, you have the same options for both Apple and Mixrosoft updates, so I fail to see how this impacts the point I made.

Re:forced Safari update?

[radicimo]

Use Pacifist and extract Safari3 from your install disk. It'll install alongside Safari 4. I know because my employer *ahem* advised us not to run Safari v.4 when it was first released, but I didn't catch the email until after I ran a full set of updates upon return from a week's absence.

Re:forced Safari update?

[geekboybt]

Or just download it from here - the guy has bundled the proper version of WebKit inside the application. If you haven't done that (I'm not aware of how Pacifist works) you're actually just using the new version of WebKit inside the old application. http://michelf.com/projects/multi-safari/

Re:forced Safari update?

[dbcad7]

Your point was, that updates were annoying you.. I pointed you into the direction of eliminating that annoyance.. I should also point out to you, that there is a reason behind the updates.. they fix bugs and security issues... Here is the ironic part.. You see there are users who can't be bothered to take time to go through all the configuration options, they just can't.. so to protect them, they have it set to update automatically by default.

Re:forced Safari update?

[LaskoVortex]

Firefox's constant bitching about updating and what version I run is WAY more annoying than anything Microsoft or Apple do on my systems.

Yes, the bitching is bad, but I run it because I can count on it to be standards compliant. That in itself beats the hell out of any whiz-bang you get with Safari.

Re:forced Safari update?

[JordanL]

I recognize the irony... I'm a web developer... I have a test system where I purposely keep several versions of FireFox for testing purposes because of how many different versions there are out there and how many people don't update and such (along with multiple versions of IE and all).

I only posted what I did because someone called out Safari for forcing updates. (although Firefox thankfully won't update you across a major revision automatically.)

Re:forced Safari update?

Safari is pretty damned standards compliant.

Re:nothing broke yet

ROFLMFAO

Re:nothing broke yet

[ElKry]

Of course. I have never seen a Windows update causing BSODs that forced me to boot in safe mode and actually go around the drivers/services/etc looking for the reason the OS won't start. That's just science fiction.

WTF is wrong with you mods

The guts of OSX are BSD. This was obviously a joke. It WAS funny until you retard mods got to it.

Re:nothing broke yet

[Zarel]

Unfortunately, it looks like nothing important was fixed, either. The OpenGL bug on NVIDIA graphics cards is still there. :/

Spotlight WTF

[djdavetrouble]

I disagree, my system is bogging heavily due to the fact that spotlight has decided to reindex my entire 2 terabyte filesystem.
Reports on macintouch corroborate this behavior.

Re:Spotlight WTF

[foniksonik]

huh... as a temporary fix for others... go and edit your spotlight indexing preferences so that it does not index your entire 2TB filesystem (maybe some subset).

Go to Spotlight in System Prefs and click on Privacy... then add whatever folders you DON'T want indexed.

Kermit sings "Hurt"

[MacColossus]

But have you seen him sing this? http://www.youtube.com/watch?v=57ta7mkgrOU

Safari Scrolling Issues

[xrayspx]

Anyone have any word on the Safari scrolling bugs? It's been a problem since 4.0 (but not with the betas), described and there.

I'll install it, but this takes a day or so to manifest usually. I didn't see anything jump out in the patch notes, but they're kind of sparse on the details anyway.

Re:nothing broke yet

[ElKry]

That's right. I am incompetent, and so is my wife. Or does the MacOSX problem fit your bias better than the Windows one, therefore making me an incompetent and Microsoft totally cool, while making Apple incompetent and my wife totally cool?

And how am I supposed to be incompetent when all I do is click "Restart" after that nagging window keeps poking me with the fact that it updated a lot of stuff and I need to restart my computer like, right now? Is there any specific highly technical wrist twist I should be doing while clicking on it? Please enlighten me on this subject as I would love to stop having this problem in the future.

For the record, debian has a record of having done this to me on a couple of occasions as well since Bo. You think I should start a class action lawsuit, too?

Re:nothing broke yet

[oogoliegoogolie]

Why wait until you update windows? Just use windows normally for a day or two and you're bound to encounter a safemode-requiring BSOD.

Re:nothing broke yet

Worked fine on my Macbook Pro.

  Of course if it HAD been a Microsoft update error, it wouldn't be news, it would be business as usual.

Re:nothing broke yet

[mkiwi]

You need to download the 10.5.8 standalone installer and try it again. On some of the updates (10.5.6, 10.5.7?) your computer is supposed to restart once or twice before it boots up normally. I rarely, if ever, have problems with the standalone installers (the only issue is that they are big downloads).

-HTH

Re:to the people tagging it "bye-bye PPC"

What poor fool would buy a high-end work station on credit.

Scary-sounding and luckily fixed

[mattr]

Surprised at the lack of comments, considering the patches cover arbitrary code execution due to many vulnerabilities that even arise when reading png images or xml files!

Luckily there seem to be more talented security researchers and programmers who like the Mac than there are crackers who find it worth the effort.

I still want a mac though!

Re:Scary-sounding and luckily fixed

[Macthorpe]

Luckily there seem to be more talented security researchers and programmers who like the Mac than there are crackers who find it worth the effort.

*gasps* There's two of them now?!

Wow, that was fast

10.5.7 was released just barely 2 months ago. I can't remember seeing a full point release within such a short period of time.

What's the deal? Is there something really important with this release that warrants a version update?

Re:Wow, that was fast

[AHuxley]

"Multiple Image Handling Vulnerabilities. ImageIO and Image RAW are both OS X components that help the operating system handle images. Both components suffer from vulnerabilities involving the way they handle various types of images (Canon RAW, OpenEXR, PNG, etc). Though the vulnerabilities differ technically, they share a very similar scope and impact. If an attacker can get a victim to view a specially crafted image (perhaps hosted on a malicious website), he could exploit this flaw to either crash an application or to execute attack code on the victim's computer." was posted on this Australian telco forum http://forums.whirlpool.net.au/forum-replies.cfm?t=1256354&p=1

Re:Wow, that was fast

[Achromatic1978]

Amongst everything else, the fact that tens of thousands, at the least, of users are unable to use their displays at anywhere near their target resolutions, ever since 10.5.7 was released. I'm amazed that there has not been greater uproar. Bless the RDF.

Re:Security fixes?

Are you really stupid enough to believe that or are you just being a stupid prick for no good reason?

Re:nothing broke yet

[radicimo]

Safe Boot would clean out caches and re-link dynamic libraries. I believe it also cleans out some of the /var and /tmp and lock files, but that's just an assumption based on the types of problems that I've seen it fix.

Re:nothing broke yet

[Ian+Alexander]

A bug causing a game to not render the background correctly is "important", but security fixes et al are not?

Yeah! Mac OxH

[nanospook]

Oh boy oh boy can I run it on linux? huh? :)

Re:nothing broke yet

[Zarel]

A bug causing a game to not render the background correctly is "important", but security fixes et al are not?

Well, I was exaggerating a bit. Of course security fixes are important. But as a developer of the aforementioned game, I'm kind of more affected by the rendering bug. I mean, when's the last time an OS X security bug has had an exploit in the wild? Compare that to not insignificant number of Warzone players (Windows and Linux are supported, too! Come try one of the most popular FOSS RTSes today!)

Re:nothing broke yet

You probably had some existing directory errors before applying the update that caused it to freak out. Starting in safe mode performs a Check/Repair Disk (fsck -fy), if booting to safe mode takes a long time it means that it was probably repairing errors.

Re:nothing broke yet

[Achromatic1978]

It's true. And yet you're a 'troll'.

Me, I had to skip 10.5.7 (and let The Sims 3 sit uninstalled, because it required it), because I committed the heinous crime of having my LCD connected via a DVI-HDMI cable.

I and everyone else who'd done so lost most of our resolutions. My 1920x1200 LCD would only run at 1920x1080 interlaced.

This was broken for nearly FOUR MONTHS - and this is not a rare problem, there are THOUSANDS of Google hits on this issue.

But no, you're a Troll.

outstanding work, Apple!

[commodoresloat]

Everything is running without a hitch, and using the computer even feels a lot snappier!

And I haven't even installed the update yet!

Re:nothing broke yet

[Achromatic1978]

Because, of course, "it just works" isn't really all that true, right? Funny, my Software Update never told me to "go download the Combo Update just in case...".

Re:nothing broke yet

[LaskoVortex]

My wife's Macbook (MB881LL/A, white, early 2009) updated earlier today

There is your problem.

I'm here to help. Remember, always do the following before you point upgrade:

1. Do a memory check (hold down "D" when you start up and click the appropriate buttons afterwords).
2. Always boot with the installer CD first and repair your disk then fix disk permissions before a point upgrade.
3. Are you listening? Do I have your attention? OK. Never, ever, in a billion years, allow yourself or someone you care about to point upgrade OS X on the day of it's release. Best is to scan the rumor sites for a week or so before you commit.
4. Now, go facepalm your wife or ask her to facepalm herself for violating rule 3.

Re:nothing broke yet

[LaskoVortex]

That's right. I am incompetent, and so is my wife. Or does the MacOSX problem fit your bias better than the Windows one, therefore making me an incompetent and Microsoft totally cool, while making Apple incompetent and my wife totally cool?

Dude! Haven't you heard? Apple is the new Microsoft and Microsoft is the new NeXTstep. Get with the program.

Re:nothing broke yet

[samurphy21]

Mine appeared to freeze, as well, but I left it alone, and after about 5-10 minutes, it finished, rebooted, and all was well.

How long did you wait to see if it was, indeed, frozen? I was just at the point of considering powering it off, myself, when it continued on its own.

Re:nothing broke yet

[vcompiler]

Yeah, and Linux is new Apple along with that reasoning.

FWIW, worked fine on vanilla hackintosh install

[thedbp]

YMMV, but I had no trouble using Software Update to get to 10.5.8 on a G31M-ES2L based Hackintosh.

Confused

[Slash.Poop]

I am confused on so many levels...

1. Every Apple OS is perfect first try. Why the need for an update?
2. Security patches. Apple has no security issues, ever. Why the need for an update?
3. Shouldn't Apple charge for this? Like they do with their other service packs.
4. Why does this not have a cute animal name?

I am so confused this morning.

Re:Confused

[intheshelter]

If you don't have an understanding of Apple then why bother commenting? Your comments above showed you're so ignorant about the platform that you can't even make an intelligent sarcastic joke about it without screwing it up.

Re:Confused

[Slash.Poop]

You got me nailed.

Well, except for the fact that I used a Mac all the way though college and still routine interact with Macs on a daily basis.
You know besides those pesky little details you are spot on.

You iPeople are so sensitive.
Here, have a cookie. ::offers cookie::

Re:Confused

[intheshelter]

Wow, and you used a Mac all that time and you still got it wrong. So aside from those pesky detail you are spot on.

Re:Confused

[Slash.Poop]

You didn't take the cookie? The audacity of you is appalling.

Fell free to tell me where I went wrong.

1. Don't you read /.?
2. Don't you read /.?
3. They charged for other incremental version bumps. Still not out of 10 but have been charged.
4. That one is just funny.

Whoever modded me, thanks. Any way I can get -2 Complete Douchebag?

Re:Confused

[intheshelter]

Here you go:

1. Every Apple OS is perfect first try. Why the need for an update?
- I've never heard anyone say this. On Slashdot or off.
2. Security patches. Apple has no security issues, ever. Why the need for an update?
- Never heard anyone say this either. I've heard people say (accurately) that their is no virus for OS X, but never that there are no security issues.
3. Shouldn't Apple charge for this? Like they do with their other service packs.
- Which service pack exactly? 10.5.6? 10.5.3? I didn't get charged for any of those. Which one did you get charged for?
4. Why does this not have a cute animal name?
- You're right, that one was jut funny.

Re:Confused

[Slash.Poop]

While I do find this fun I am beginning to wind down...

1. Ummm...you should read closer. According to the iPeople every Apple's OS' is perfect.
2. Ummm...you should read closer. No virus'. (LOL)
3. Unless it is jumping to 11, I consider it a service pack. Apple does charge for them. You know all the cute animals. (Yes I know this is a 10.5.X->10.5.Y jump but it still works)
4. Nice, we agreed on something. Will you accept the cookie now?

Re:Confused

[intheshelter]

1. Ummm...you should read closer. According to the iPeople every Apple's OS' is perfect. - I haven't ever seen anyone say this. 2. Ummm...you should read closer. No virus'. (LOL) - There is NO virus for OS X 3. Unless it is jumping to 11, I consider it a service pack. Apple does charge for them. You know all the cute animals. (Yes I know this is a 10.5.X->10.5.Y jump but it still works) - 10.5.7 to 10.5.8 is the OS X equivalent to an MS service pack, and it's free. 10.6 will be a major release and they will charge for that. 4. Cookies are the devil's currency! I will not burn in hell over a cookie!

Re:Security fixes?

Whoosh.

Stll training people to click "infect me".

[argent]

Apple used to steer clear of throwing up unnecessary warning dialogs, but since they screwed up Safari's security with "open safe files after downloading" they don't seem to have figured out that they don't NEED to keep bugging people with warnings. They've turned "open safe files" off by default. They don't need to keep quarantining downloaded files any more.

CoreTypes

CVE-ID: CVE-2009-1727

Available for: Mac OS X v10.5 through v10.5.7, Mac OS X Server v10.5 through v10.5.7

Impact: Users are not warned before opening certain potentially unsafe content types

Description: This update extends the system's list of content types that will be flagged as potentially unsafe under certain circumstances, such as when they are downloaded from a web page. While these content types are not automatically launched, if manually opened they could lead to the execution of a malicious JavaScript payload. This update improves the system's ability to notify users before handling content types used by Safari. Credit to Brian Mastenbrook, and Clint Ruoho of Laconic Security for reporting this issue.

For a while you could override the system's list of potentially unsafe content types and say "once I've downloaded a file, just effing open it", but that seems to have been broken. As a workaround I've got a folder action that goes through Downloads and removes the comp.apple.quarantine attribute when it finds it, but Finder steals focus from the running application when it triggers so it's a pain in the neck.

Where's the "I'm a bleeding adult, Apple, and I don't want to be part of your Pavlovian experiment in training people to click 'infect me now'" button?

Not automatically, of course.

[argent]

Let me correct what, in retrospect, is probably going to prove to be unfortunate wording.

I predict that some slashtard is going to read "once I've downloaded a file, just effing open it" to mean that I want to turn on the stupid "open safe files" without a dialog. I should have written "once I've downloaded a file, just let me effing open it without whining at me". That clear?

I hope the slashtards bother to read this reply before posting. I suspect some won't.

Poor effort

I mean come on, what kind of troll is this? Can't you even be bothered to change some names and repost the BSD is dying troll?

It is official; Netcraft confirms: Slashdot trolling is dying

One more crippling bombshell hit the already beleagured slashdot trolling community when SilverHatHacker couldn't even make the effort to edit the classic BSD is dying post. The resulting post, reduced to one line, with no hyperlinks, now represents less than a fraction of one percent of all slashdot posts. Coming hot on the heels of recent slashcode modifications that make it harder to view the -1 rated posts, this post serves to reinforce what we've known all along. Slashdot trolling is collapsing in utter disarray, as fittingly exemplified by Anonymous Cowardon failing dead last in the recent Firefox website rendering test.

Re:nothing broke yet

I'd like to add:
http://support.apple.com/downloads/Mac_OS_X_10_5_8_Combo_Update
-kiwi

Re:nothing broke yet

[Ksevio]

I update my aging powerbook using the auto-update program. Same problem with the gray screen, but I just ended up leaving it on overnight after which it seems to have fixed itself (I logged in this morning).

Re:nothing broke yet

Because, of course, "it just works" isn't really all that true, right? Funny, my Software Update never told me to "go download the Combo Update just in case...".

Here on Slashdot we get to complain because our habits in fscking around with our computers make our OS installations edge cases that may fail with any OS upgrade.

You, however, are complaining because a Mac is too complicated for you to use.

Re:Why Slashdot fired Michael

[carnivore302]

people call you a troll, but the fact is you spend much more time on this post then all the other people on theirs, combined.

As for the content, I cannot verify, but it sure is a great laugh!

Download Only/Install and Keep Package

[HTH+NE1]

I had to try twice to get it to acknowledge the update being available for my PowerBook G4 Titanium (though it is a 14.4 Kbps cell modem connection).

Hopefully the Download Only option will work this time. My install disk is for 10.5.0 and I had to reinstall once already to a new 320 GB hard drive(*). I've been having problems with it telling me updates could not be saved (due to a sudden inability to contact the update server) and with "Install and Keep Package" not keeping the package. It's as if some updates you can't retain unless you download them directly from the Apple website and give Apple your e-mail address, and Software Update doesn't tell you which ones.

(*) Disk Utility was telling me it would not repair permissions on certain SUID programs on the original drive that it said had been modified(!) and Carbon Copy Cloner was failing to complete its copies, as was System Migration.

Re:nothing broke yet

[HTH+NE1]

So we've defined the OS equivalents of rock, paper, scissors, and lizard... but who is Spock?

Re:Why Slashdot fired Michael

[HTH+NE1]

people call you a troll, but the fact is you spend much more time on this post than all the other people on theirs, combined.

This turn of phrase is familiar to me. Where have I heard its like before? Ah yes:

"Nebraska Diamond sells more engagement and wedding rings than all the other area jewelry stores combined."

Re:nothing broke yet

[ElKry]

I didn't wait - I was sleeping as a log. She woke me up AFTER powering it off and on again and getting the kernel panic (no sleep for us married geeks), but now she says that she waited about two minutes. I guess if she had waited longer, it would have finished. Now she'll wait more time next time it happens!

not just apple, either...

[airdrummer]

i'm sticking w/10.4 because i'm supporting some g3s (clamshells 4evah;-) & don't want to deal w/2 osXes (i already have 2: fedora & osX)

but more & more apps i'd like to use require leopard...gonna eventually have 2 bite the bullet:-}

Anonymous Coward

Do not install this update. It kills wireless networking on lots of MacBook pros. Oddly, the wireless works when the laptops is powered up but not when running on battery.

See the long running thread at

http://discussions.apple.com/thread.jspa?threadID=2106689&tstart=0

Weird..

[0ld_d0g]

i'm running vista on a gaming machine i built last year. no reinstalls, no bluescreens.

your fud though, could use some updating..

Re:Weird..

[Lars+T.]

i'm running vista on a gaming machine i built last year. no reinstalls, no bluescreens.

your fud though, could use some updating..

Exactly: Everybody should know by now that the default is to just reboot, not show a BSOD.

Re:nothing broke yet

Mac OS X 10.5.8 Combo Update weighs in at 759MB. there is a mismatch of sha1 on apple's site:

http://support.apple.com/downloads/Mac_OS_X_10_5_8_Combo_Update
MacOSXUpdCombo10.5.8.dmg
SHA 1 digest= 0a88c9ecfbe08faf1a2307929c67f38b4822dfcb

when straight from the apple store i have:
SHA1(MacOSXUpdCombo10.5.8.dmg)= 6a3a744626503a807dd0158c41d0350aa37fe6c7

?