TidBITS Watchlist: Notable Software Updates for 30 August 2010
MacBook Pro EFI Firmware Update 1.9 — Apple has released EFI Firmware Update 1.9 for mid-2010 15-inch and 17-inch MacBook Pros. The update addresses a rare issue where the Mac could freeze during startup or stall during use. The update also improves compatibility with external displays. Your computer must be connected to a power source to install the firmware update, and Apple warns users not to turn off the MacBook Pro while the update installs. (Free update, 2.16 MB)
Read/post comments about MacBook Pro EFI Firmware Update 1.9.
Camino 2.0.4 — The Mozilla-backed Camino Project has released Camino 2.0.4, an update to the open-source Web browser that’s more Mac-like than Firefox. The incremental update upgrades to the latest 1.9.0 version of the Gecko rendering engine, which includes several critical security and stability fixes. In addition, the Camino 2.0.4 update prevents a Flash 10.1 crash when you trigger Exposé while watching Flash video full-screen. Other fixes include tweaks to better remember print settings, improve behavior in the location bar, and improve the browser’s capability to block Flash animation and Web
advertisements. (Free, 15.8 MB)
Read/post comments about Camino 2.0.4.
Security Update 2010-005 — Apple has released Security Update 2010-005, addressing an assortment of vulnerabilities in Mac OS X 10.5 Leopard and 10.6 Snow Leopard. Several of the fixes included in the update address various ways maliciously crafted files could lead to the dreaded “arbitrary code execution” that is the hallmark of many computer attacks. Mac OS X’s handling of fonts, PDF files, and PNG files (the last only when accessed via PHP under Snow Leopard and Snow Leopard Server) was patched to block such vulnerabilities.
The update also updates ClamAV (in Leopard Server and Snow Leopard Server only) to block other potential arbitrary code execution risks. In both the server and regular editions, Mac OS X’s CFNetwork framework was fixed; it could previously fall victim to “man-in-the-middle” attacks through anonymous SSL/TLS connections.
In addition, Apple updated libsecurity to prevent domain name trickery, patched Samba to prevent a buffer overflow that could allow a denial-of-service attack or arbitrary code execution, and upgraded PHP to version 5.3.2 to address multiple vulnerabilities in the popular scripting language.
Security Update 2010-005 is available via Software Update, which is generally the easiest method of acquiring it. You can also download the update directly for Leopard (211.88 MB), Leopard Server (418.92 MB), Snow Leopard (80.63 MB), and Snow Leopard Server (136.86 MB).
Read/post comments about Security Update 2010-005.
GraphicConverter 6.7.4 — Lemkesoft has updated its flagship image-manipulation tool GraphicConverter to version 6.7.4. The significant 6.7 update earlier this year added the capability to import a variety of new image formats, including scrap files, HMR, dm2 and dm3, and direct SVG via PDF. Also new in 6.7 was added support for the AppleScript command “search with spotlight.” Since that release, GraphicConverter has seen a few minor updates, adding more support for exporting QuickTime movies, importing larger TIFFs, exporting GIF animations as filmstrips, importing FUJI files, integrating with the Google Earth Safari
plug-in, and the capability to undo actions even after changing your selection.
The recent update to 6.7.4 adds an option to scale after crop, PDN preview display, and a sepia batch action. Issues with color profiles, Unicode support, and 1080p and animation scaling were also addressed. See Lemkesoft’s Web site for full release notes on all that has changed since 6.7.
Multiple versions of GraphicConverter are available for download; you can choose English-only editions, PowerPC-only editions, or the standard universal and localized edition. ($34.95 new, free upgrade, 100 MB)
Read/post comments about GraphicConverter 6.7.4.
Freeway 5.5 — Softpress Systems has updated its Web design tool Freeway to version 5.5. Significant new features include Showcase (which lets you create image galleries or slideshows with minimal effort), support for SFTP and FTP-SSL, integration with the Amazon Associates affiliate program, and simplified HTML email creation. In addition to those new features in both the Pro and Express editions, the Pro edition of Freeway also gains a pair of new actions: the Relative Page Layout action converts absolute layouts into relative, resizable layouts instead, and the new Simple Site Search action
lets you set up a search form on your site without needing a scripting language. Freeway 5.5 requires Mac OS X 10.5 Leopard or later. ($69/$229 new for Express/Pro, $25/$49 upgrades from 5.x to 5.5, free upgrade for purchases since 1 June 2010)
Read/post comments about Freeway 5.5.