Für Leopard:
Security Update 2009-004 is now available and addresses the
following:
BIND
CVE-ID: CVE-2009-0696
Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11,
Mac OS X v10.5.8, Mac OS X Server v10.5.8
Impact: A remote attacker may be able to cause the DNS server to
unexpectedly terminate
Description: A logic issue in the handling of dynamic DNS update
messages may cause an assertion to be triggered. By sending a
maliciously crafted update message to the BIND DNS server, a remote
attacker may be able to interrupt the BIND service. The issue affects
servers which are masters for one or more zones, regardless of
whether they accept updates. BIND is included with Mac OS X and Mac
OS X Server but it is not enabled by default. This update addresses
the issue by properly rejecting messages with a record of type 'ANY'
where an assertion would previously have been raised.
Update durchgeführt auf iMac Intel, 10.5.8
Tinker Tool System hat keine zusätzlichen Sprachdateien entfernt, also auch keine geänderten Dateien aufgelistet.
Bisher läuft alles...
Für den Tiger ist das Ding 77 MB groß ?
Was Apple da wohl wieder alles ändert ?
Bisher keine sichtbaren Änderungen, Test läuft...
Gruß, Gerhard