apowerr Posted August 1, 2008 Share Posted August 1, 2008 Security Update 2008-005 has been released for OS 10.5.4, as well as the Intel and PPC variants of 10.4.11. This update is not safe for AMD users. AMD users should use Zephyroth's AMD Software Updater to patch CPUIDs, or grab the fixed version mentioned here. Of course this update is 100% safe for vanilla installs, and as long as you don't have an AMD system you should be able to update normally. According to Apple's published information, Security Update 2008-005 fixes the following: Open Scripting ArchitectureImpact: A local user may execute commands with elevated privileges Description: A design issue exists in the Open Scripting Architecture libraries when determining whether to load scripting addition plugins into applications running with elevated privileges. Sending scripting addition commands to a privileged application may allow the execution of arbitrary code with those privileges. This update addresses the issue by not loading scripting addition plugins into applications running with system privileges. The recently reported ARDAgent and SecurityAgent issues are addressed by this update. Credit to Charles Srstka for reporting this issue. BIND Impact: BIND is susceptible to DNS cache poisoning and may return forged information Description: The Berkeley Internet Name Domain (BIND) server is distributed with Mac OS X, and is not enabled by default. When enabled, the BIND server provides translation between host names and IP addresses. A weakness in the DNS protocol may allow remote attackers to perform DNS cache poisoning attacks. As a result, systems that rely on the BIND server for DNS may receive forged information. This update addresses the issue by implementing source port randomization to improve resilience against cache poisoning attacks. For Mac OS X v10.4.11 systems, BIND is updated to version 9.3.5-P1. For Mac OS X v10.5.4 systems, BIND is updated to version 9.4.2-P1. Credit to Dan Kaminsky of IOActive for reporting this issue. CarbonCore Impact: Processing long filenames may lead to an unexpected application termination or arbitrary code execution Description: A stack buffer overflow exists in the handling of long filenames. Processing long filenames may lead to an unexpected application termination or arbitrary code execution. This update addresses the issue through improved bounds checking. Credit to Thomas Raffetseder of the International Secure Systems Lab and Sergio 'shadown' Alvarez of n.runs AG for reporting this issue. CoreGraphics (Memory issues) Impact: Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution Description: CoreGraphics contains memory corruption issues in the processing of arguments. Passing untrusted input to CoreGraphics via an application, such as a web browser, may lead to an unexpected application termination or arbitrary code execution. This update addresses the issue through improved bounds checking. Credit to Michal Zalewski of Google for reporting this issue. CoreGraphics (PDF issues) Impact: Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution Description: An integer overflow in the handling of PDF files may result in a heap buffer overflow. Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution. This update addresses the issue through additional validation of PDF files. Credit to Pariente Kobi working with the iDefense VCP for reporting this issue. Data Detectors Engine Impact: Viewing maliciously crafted messages with Data Detectors may lead to an unexpected application termination Description: Data Detectors are used to extract reference information from textual content or archives. A resource consumption issue exists in Data Detectors' handling of textual content. Viewing maliciously crafted content in an application that uses Data Detectors may lead to a denial of service, but not arbitrary code execution. This issue does not affect systems prior to Mac OS X v10.5. Disk Utility Impact: A local user may obtain system privileges Description: The "Repair Permissions" tool in Disk Utility makes /usr/bin/emacs setuid. After the Repair Permissions tool has been run, a local user may use emacs to run commands with system privileges. This update addresses the issue by correcting the permissions applied to emacs in the Repair Permissions tool. This issue does not affect systems running Mac OS X v10.5 and later. Credit to Anton Rang and Brian Timares for reporting this issue. OpenLDAP Impact: A remote attacker may be able to cause an unexpected application termination Description: An issue exists in OpenLDAP's ASN.1 BER decoding. Processing a maliciously crafted LDAP message may trigger an assertion and lead to an unexpected application termination of the OpenLDAP daemon, slapd. This update addresses the issue by performing additional validation of LDAP messages. OpenSSL Impact: A remote attacker may be able to cause an unexpected application termination or arbitrary code execution Description: A range checking issue exists in the SSL_get_shared_ciphers() utility function within OpenSSL. In an application using this function, processing maliciously crafted packets may lead to an unexpected application termination or arbitrary code execution. This update addresses the issue through improved bounds checking. PHP Impact: Multiple vulnerabilities in PHP 5.2.5 Description: PHP is updated to version 5.2.6 to address multiple vulnerabilities, the most serious of which may lead to arbitrary code execution. Further information is available via the PHP website at http://www.php.net/ PHP version 5.2.x is only provided with Mac OS X v10.5 systems. QuickLook Impact: Downloading a maliciously crafted Microsoft Office file may lead to an unexpected application termination or arbitrary code execution Description: Multiple memory corruption issues exist in QuickLook's handling of Microsoft Office files. Downloading a maliciously crafted Microsoft Office file may lead to an unexpected application termination or arbitrary code execution. This update addresses the issue through improved bounds checking. This issue does not affect systems prior to Mac OS X v10.5. rsync Impact: Files outside the module root may be accessed or overwritten remotely Description: Path validation issues exist in rsync's handling of symbolic links when running in daemon mode. Placing symbolic links in an rsync module may allow files outside of the module root to be accessed or overwritten. This update addresses the issue through improved handling of symbolic links. Further information on the patches applied is available via the rsync web site at http://rsync.samba.org/ Good luck updating! If an AMD/non vanilla work around is released, I will be sure to update this post. Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/ Share on other sites More sharing options...
khemraj1999 Posted August 1, 2008 Share Posted August 1, 2008 Confirmed: Intel Core Quad Q6600 4 Gig Ram Asus P5k-E (Without WIFI) Kalyway 10.5.4, everything went smooth Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-841566 Share on other sites More sharing options...
Colonel Posted August 1, 2008 Share Posted August 1, 2008 Wow, that's alot of security issues. I'm glad apple fixed them! Thanks for the info. Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-841589 Share on other sites More sharing options...
3Dman Posted August 1, 2008 Share Posted August 1, 2008 Works on my non vanilla machine Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-841592 Share on other sites More sharing options...
pino72 Posted August 1, 2008 Share Posted August 1, 2008 Success! FOR AMD USERS: Use Zephyroth'S 0.5 Software updater to patch the pkg security update: Should say something like this: Applying cpuids for SecUpd2008-005.pkg ... 21:56:37 Maxxuss Mach-O Binary Patcher v1.0 Patching file: ./System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/CarbonCore.framework/Versions/A/CarbonCore 14 of 14 patches applied Statistics: 1 of 1 visited files were successfully patched. 14 of 14 found patches were successfully applied. 21:56:38 Recreating SecUpd2008-005.pkg ... 21:57:08 SecUpd2008-005.pkg recreated. And...a wonderful reboot with my AMD 10.5.4 System...no trouble as of yet....once again it was very wise to check for these cpuid's on EVERY Softwareupdate before installing it. Anyone tryed the ITunes 7.7.1 update...AMD update tool gives a script error....hmmm. Good luck! Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-841605 Share on other sites More sharing options...
3Dman Posted August 1, 2008 Share Posted August 1, 2008 Success! FOR AMD USERS: Use Zephyroth'S 0.5 Software updater to patch the pkg security update: Should say something like this: Applying cpuids for SecUpd2008-005.pkg ... 21:56:37 Maxxuss Mach-O Binary Patcher v1.0 Patching file: ./System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/CarbonCore.framework/Versions/A/CarbonCore 14 of 14 patches applied Statistics: 1 of 1 visited files were successfully patched. 14 of 14 found patches were successfully applied. 21:56:38 Recreating SecUpd2008-005.pkg ... 21:57:08 SecUpd2008-005.pkg recreated. And...a wonderful reboot with my AMD 10.5.4 System...no trouble as of yet....once again it was very wise to check for these cpuid's on EVERY Softwareupdate before installing it. Anyone tryed the ITunes 7.7.1 update...AMD update tool gives a script error....hmmm. Good luck! AMD processors are very hard to install updates Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-841622 Share on other sites More sharing options...
jivhg Posted August 1, 2008 Share Posted August 1, 2008 Great news! BIND was susceptible of the recent mac viruses, glad to hear they fixed it Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-841703 Share on other sites More sharing options...
__Dragon__ Posted August 1, 2008 Share Posted August 1, 2008 Success, on a non vanilla and non efi machine. Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-841728 Share on other sites More sharing options...
scj312 Posted August 2, 2008 Share Posted August 2, 2008 Success, on an iMac Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-841908 Share on other sites More sharing options...
frefrefrer Posted August 2, 2008 Share Posted August 2, 2008 works perfect for me using non vennilla kernel Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-841912 Share on other sites More sharing options...
bhst2 Posted August 2, 2008 Share Posted August 2, 2008 Amd users you can get the amd fixed package here http://leo4all.uni.cc/viewtopic.php?f=17&a...mp;p=2039#p2039 Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-841946 Share on other sites More sharing options...
MacNutty Posted August 2, 2008 Share Posted August 2, 2008 Success 100%. Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-841962 Share on other sites More sharing options...
sotos Posted August 2, 2008 Share Posted August 2, 2008 I have an intel OSx86 machine and the update work fine! Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-842112 Share on other sites More sharing options...
revanmj Posted August 2, 2008 Share Posted August 2, 2008 Intel, vanilla kernel, installed successfully Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-842146 Share on other sites More sharing options...
ppc7600 Posted August 2, 2008 Share Posted August 2, 2008 Vanilla (retail-dvd + kext package for my board) works Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-842513 Share on other sites More sharing options...
FanClerks Posted August 2, 2008 Share Posted August 2, 2008 Worked fine with me. It's nice to have updates you don't have to worry about. Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-842821 Share on other sites More sharing options...
breakingbad Posted August 3, 2008 Share Posted August 3, 2008 HI there. Reporting success on Security Update installation. Working fine. Kalyway DVD 10.5.2 to 10.5.4 with Mysticus Update. []´s Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-842938 Share on other sites More sharing options...
john825 Posted August 3, 2008 Share Posted August 3, 2008 Works perfet on my iatkos 10.5.2 + update to 10.5.4 + mobin kernel 9.4 Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-843037 Share on other sites More sharing options...
borisbadenov Posted August 3, 2008 Share Posted August 3, 2008 Working fine on my vanilla rig. Specs below Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-843042 Share on other sites More sharing options...
stellarola Posted August 3, 2008 Share Posted August 3, 2008 Alright... so obviously it works fine. -Stell Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-843056 Share on other sites More sharing options...
curiosgeorge Posted August 3, 2008 Share Posted August 3, 2008 To date and FWIW, works on Compaq Presario C762NR running iAtkios v4(10.5.4) and 10.4.11 Intel Tiger Variant works on IBM T30 running xXx 10.4.11. Rev2. Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-843096 Share on other sites More sharing options...
hello&goodbye Posted August 3, 2008 Share Posted August 3, 2008 No problem, Works fine on my kalyway 10.5.4 + mobin kernel 9.4. that's nice! CPU:Intel Core 2 Duo 2.33 Mobo:BIOSTAR TF7150U-M7 fsb:1333MHz Chipset:Geforce7150/nForce630i Ram:2GB×2(800MHz) Graphics:ELSA 8600GTS(Core Image,Quartz Extreame OK) HD:SATA2 500GB,250GB IDE 80GB ESATA 160GB(Windows Vista Home ED)*SiliconImage3132 with SONNET SataE2P Pci-x card very well! Networks: No drivers OK Soud : USB card Only (Arvel HAMU2BK)*C-media USB HeadphoneSet DVD :HL-DT-ST DVDRAM GSA-H62N Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-843117 Share on other sites More sharing options...
Menacie Posted August 3, 2008 Share Posted August 3, 2008 No problem here. P5B Q6600 Modbin 9.4 Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-843521 Share on other sites More sharing options...
braveskunk Posted August 3, 2008 Share Posted August 3, 2008 yeah, worked for me. modbin 9.4 kernel. rest of my rig below. thanks for the info:) Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-843719 Share on other sites More sharing options...
kdb424 Posted August 3, 2008 Share Posted August 3, 2008 I'm on an honest to god macbook pro, and it keeps telling me to install right after an install. lmao. Link to comment https://www.insanelymac.com/forum/topic/118814-mac-os-x-security-update-2008-005-released/#findComment-843727 Share on other sites More sharing options...
Recommended Posts