Apple has released Security Update 2010-003 (Snow Leopard) to address a critical vulnerability in the way Apple Type Services in Mac OS X 10.6 Snow Leopard parses embedded fonts. Users who view or download any documents containing maliciously crafted embedded fonts run a risk of arbitrary code execution. The update addresses this issue by improving index checking. This vulnerability was first demonstrated by Charlie Miller at the Pwn2Own conference 20 days ago, which shows a reasonably quick response on Apple's part. The update requires Mac OS X 10.6.3 and is available via Software Update and the Apple Support Downloads page. (Free, 6.5 MB)
Go Back and Forth Fast in Preview
If you're reading a PDF in Apple's Preview software, and you follow a bookmark or an internal link to move around within the PDF, you can quickly return to where you were by pressing the keyboard shortcut Command-[ (that's Command-Left Bracket). Or, you can choose Go > Back.
The command works iteratively, so you can go back to just the previously viewed page or if you issue the command again, to the page before that, and so on. There's also an equivalent Go > Forward (Command-]).
Security Update 2010-003 (Snow Leopard)
Automatic’s connected car adapter with iPhone apps on
Automatic’s platform, drivers are able to drive safer and smarter.
TidBITS readers get 20% off all orders at <http://automatic.com/tb>