Apple has released Security Update 2012-004 for both Mac OS X 10.6.8 Snow Leopard and 10.6.8 Snow Leopard Server, both of which address the same issues. Among the list of fixes, the releases update Apache 2.2.22 to prevent a vulnerability that could lead to denial of service, add a revoked TrustWave root certificate to a list of untrusted certificates, and update the DirectoryService Proxy to prevent an arbitrary execution of code due to an overflow buffer vulnerability. There’s no reason to update instantly; we recommend waiting a week or so and seeing if online reports note any distressing side effects. Note that Apple incorrectly lists the file size of the 10.6.8 Snow Leopard Security Update as 2.36 MB — it is actually 257 MB. (Free, 257/276 MB)
Mac OS X Services in Snow Leopard
Mac OS X Services let one application supply its powers to another; for example, a Grab service helps TextEdit paste a screenshot into a document. Most users either don't know that Services exist, because they're in an obscure hierarchical menu (ApplicationName > Services), or they mostly don't use them because there are so many of them.
Snow Leopard makes it easier for the uninitiated to utilize this feature; only services appropriate to the current context appear. And in addition to the hierarchical menu, services are discoverable as custom contextual menu items - Control-click in a TextEdit document to access the Grab service, for instance.
In addition, the revamped Keyboard preference pane lets you manage services for the first time ever. You can enable and disable them, and even change their keyboard shortcuts.
- SpamSieve 2.9.5 (21 Sep 12)
Security Update 2012-004 (Snow Leopard)
Check out the perks at <http://tidbits.com/member_benefits.html>
Special thanks to John Knight, Bill Kirwin, Jack Branning, and Dorothy
Daybell for their generous support!
Spam Sieve (love 'em to death) whipped out a beta fix.
No fix for Letterbox, which was only updated for 10.6.7 anyway.
BUT see Apple discussion for other fixes:
UPDATE: Spam Sieve also posted it's own comments about restoring the mail plugin:
Does Apple even care?