image
image

Go Back   macosx.com > Content & Information > Apple News, Rumors & Discussion
Reload this Page Vulnerabilities within QuickTime?
Register FAQ Threads w/ No Responses Search Today's Posts Mark Forums Read

Reply
Page 2 of 2 < 1 2
 
Thread Tools
  #9  
Old January 4th, 2007, 11:44 PM
Sunnz's Avatar
Who wants a stylus?
  
Join Date: Nov 2005
Location: Canberra, Australia
Posts: 359
Thanks: 0
Thanked 0 Times in 0 Posts
Sunnz is on a distinguished road
fryke, I see what you mean, now the fixes are already here a 10.4.9 shouldn't too hard.

On the other hand, the paranoid can patch their system (apps?) from Fuller as the bugs gets released.

Lurk, exactly, with word, they can probably go on and fill up the rest of 2007!!
__________________
[SIGPIC][/SIGPIC]

Catel - Core 2 Duo 2.0Ghz, 1GB Ram, OSX Tiger.8

AMDemon - Dual Opteron 2.6Ghz, 2GB Ram, FreeBSD 6.1
Reply With Quote
  #10  
Old January 5th, 2007, 04:56 AM
fryke's Avatar
Super Moderator
  
Join Date: Sep 2000
Location: macosx.com
Posts: 13,337
Thanks: 2
Thanked 23 Times in 21 Posts
fryke has a spectacular aura aboutfryke has a spectacular aura about
10.4.9 is already in development, and I think new fixes won't make it into that build. A separate security update release would fit better.
__________________
macnews.net.tc is active again.
MacBook Air 13" 1.6 GHz, 2 GB RAM, 80 GB HD. Mac OS X 10.5.5
Hackintosh Core2Duo 2.4 GHz, 2 GB RAM, 160 GB HD. Mac OS X 10.5.5
iPhone 3G 16 GB white, AppleTV 1G 40 GB
Mac user since 1987, Apple Product Professional 2007, 2008. Apple Certified Support Professional 10.5
Reply With Quote
  #11  
Old January 5th, 2007, 01:07 PM
Captain Code's Avatar
Moderator
  
Join Date: Aug 2001
Location: Ontario, Canada
Posts: 3,108
Thanks: 0
Thanked 1 Time in 1 Post
Captain Code will become famous soon enough
Landon's fixes don't really fix anything, they just bypass the problem. It requires you use a program called Application Enhancer which allows his code to be injected into a running application like Quicktime. This code replaces the calls to the vulnerable functions with his own, does some validation to fix the flaw, and then calls the original function.

Not that this isn't a work around for the flaws, but it's not exactly a fix for Apple's code.
__________________
MacBook Pro 2.16GHz Core2Duo 3GB RAM, G4 1.4GHz OSX Tiger 1.25GB RAM, Dual 2GHz G5 OSX Tiger 2GB RAM (freakin shweet)
Athlon 64 Windoze XP for school work (programming) 1GB RAM
dferns@macosx.com
Reply With Quote
  #12  
Old January 7th, 2007, 03:44 AM
Viro's Avatar
Registered User
  
Join Date: Nov 2003
Location: Oxford, UK
Posts: 2,492
Thanks: 0
Thanked 1 Time in 1 Post
Viro will become famous soon enoughViro will become famous soon enough
While it isn't a fix per se, it's much better than leaving your machine unpatched after the entire world has been alerted to the vulnerabilities affecting Apple machines. I suggest using Landon's fixes until Apple releases an official fix. Waiting till the end of the month before doing something about it doesn't sound safe to me
Reply With Quote
Reply
Page 2 of 2 < 1 2

« Previous Thread | Next Thread »
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off
Forum Jump


All times are GMT -5. The time now is 10:31 AM.

Contact Us - Home - Archive - Top

Mac Support® Version 3.7.2
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Search Engine Friendly URLs by vBSEO 3.1.0
Copyright 2000-2008 DigitalCrowd, Inc.