TidBITS Watchlist: Notable Software Updates for 26 October 2015
Tinderbox 6.3.2 — Eastgate Systems has released Tinderbox 6.3.2 with a newly added built-in $Tags attribute (categorized under References), which can be used for free-form tagging of notes. The personal content assistant improves OPML importing from outliners and RSS readers, as well as importing spreadsheets (particularly those with long text fields). The update also makes several improvements to maps, including the capability to use left and right arrows to select the next and previous sibling of a selected note, correctly renders arrowheads on linear links, and ensures image adornments with transparent or translucent
regions are no longer rendered opaque. The Roadmap is now available from the treemap contextual menu, and a torn-off Roadmap window automatically adjusts the width of its columns. ($249 new, free update, 48.8 MB, release notes, 10.8+)
Read/post comments about Tinderbox 6.3.2.
Postbox 4.0.7 — Postbox issued version 4.0.6 of its eponymous email client with added support for OAuth 2 for Gmail/Google accounts and improved folder creation (with newly separate New Folder and New Sub-Folder actions). The update also fixed an issue when marking multiple messages as pending, fixed styling of the attachment Save All button on Retina displays, and improved the update experience with release notes displayed in the updater.
Shortly after that update was released, Postbox was updated to version 4.0.7, which reorganized the Compose window’s contextual menu and added an option for searching a selection in Google. Postbox 4.0.7 also now enables you to select text in the Compose window and create a Response using the contextual menu, adds Run Junk Mail Controls on Folder and Delete Mail Marked as Junk in Folder commands to the Junk toolbar button, and adds show/hide controls for headers in the Folder and Focus panes. ($15 new, free update, 25.6 MB, release notes, 10.9+)
Read/post comments about Postbox 4.0.7.
SpamSieve 2.9.22 — Michael Tsai of C-Command Software has released SpamSieve 2.9.20, adding support for Apple Mail in OS X 10.11.1 El Capitan. The spam filtering utility is given more time to launch when filtering incoming messages in Apple Mail in case the system delays respawning of the launch agent, and the update now ensures the launch agent no longer quits itself when either Mail or SpamSieve quits if it’s set to run continuously. Should an AppleScript bug in El Capitan prevent a message from being trained, SpamSieve will direct you to the new Duplicate Apple Mail Accounts section of the manual for a workaround. ($30
new with a 20 percent discount for TidBITS members, free update, 14.5 MB, release notes, 10.6+)
Read/post comments about SpamSieve 2.9.22.
Safari 9.0.1 — Apple has released Safari 9.0.1 for OS X Mavericks 10.9.5 and Yosemite 10.10.5, as well as El Capitan 10.11. The update includes patches for vulnerabilities associated with multiple memory corruption issues in WebKit, which could lead to arbitrary code execution by a malicious Web site. Safari 9.0 is available only via Software Update. (Free, 85.4 MB, 10.9+)
Read/post comments about Safari 9.0.1.
Mac EFI Security Update 2015-002 — Apple has released Mac EFI Security Update 2015-002 for OS X 10.9.5 Mavericks, which addresses an issue where the EFI (Extensible Firmware Interface) could potentially be overwritten without authorization. This update is available as a direct download as well as via Software Update. (Free, 82 MB, 10.9.5)
Read/post comments about Mac EFI Security Update 2015-002.
Security Update 2015-007 (Mavericks) and 2015-004 (Yosemite) — Apple has issued Security Update 2015-007 for OS X 10.9.5 Mavericks and Security Update 2015-004 for 10.10.5 Yosemite, bringing along many of the security fixes that appeared in the concurrently released OS X 10.11.1 El Capitan (see “Apple Releases OS X 10.11.1 to Fix Microsoft Office 2016 Crashes,” 21 October 2015). Regardless of the somewhat confusing naming (Apple doesn’t normally re-use security update numbers within the same year, but 004 was used back in April), these security updates patch a wide
swath of memory corruption issues, including vulnerabilities with the Accelerate Framework in multi-threading mode, handling of audio files, CoreGraphics, handling of font files, and parsing of disk images — all of which could lead to arbitrary code execution. The security updates are available via Software Update or via direct download from Apple’s Support Downloads Web site. (Free. For 10.9.5 Mavericks, 266.2 MB; for 10.10.5 Yosemite, 334.7 MB)
Read/post comments about Security Update 2015-007 (Mavericks) and 2015-004 (Yosemite).