OS X 10.5.4 Bring Security Updates
The next update to OS X Leopard hit Software Update today as well as a security update for OS X Tiger. As well as a few bug fixes and some under the hood stuff 10.5.4 also contains all the same security fixes which were released separately for Tiger. You can get the full list from Apple here. The executive summary boils down to the usual array of potential crashes and arbitrary code execution. However, two bugs stand out as being particularly nasty, one in SAMBA (Windows File Sharing) which leaves you computer open to exploitation over the network if you’re sharing out folder over SAMBA, and one in Safari which leaves you vulnerable to being exploited by simply visiting a web page. Notably absent from this list of fixes is the issue with ARDAgent which is currently being exploited by an OS X Trojan (more in my previous post).
Bottom line, even if you don’t use Safari or Windows file sharing you should update soon, but if you do you should probably update ASAP.
