A look back to the previous week.
2008.05.16
Firefox 3 Release Candidate 1
Mozilla Firefox 3 RC1 is available for multiple Operating Systems including Linux, Mac and Windows.
——-
Flock 1.1.4
——-
brain freeze!!!
Microsoft Office 2008 for Mac Service Pack 1
Microsoft today releases Office 2008 for Mac Service Pack 1.
Microsoft Office 2008 for Mac 12.0.1 Update
This update fixes critical issues in Office 2008, including issues that might cause Office 2008 applications to stop responding or quit unexpectedly. For more information about this update, see the Microsoft Knowledge Base article (KB948057).Applies to: Office 2008, Office 2008 Home and Student Edition, Office 2008 Special Media Edition, Word 2008, Excel 2008, PowerPoint 2008, Entourage 2008.
Released: Friday, March 14, 2008
According to some chatters, the SP1 update improves performance and security of Microsoft Office 2008. Some users reported that Office 2008 was sluggish even on Intel-Macs. Some also said that Microsoft Office 2008 was performing slower than its 2004 counterpart.
AVG Free 8.0, New iMac, and then some
While I was busy doing many things away from this blog:
April 24th, 2008
AVG Free 8.0
Available for Windows Vista and Windows XP.
Get it here.
April 26th, 2008
Flock 1.1.2
I launched Flock, and was notified about the update.
Read the release notes here.
April 28th, 2008
New iMac from Apple
1066MHz Front Side Bus, and up to 3.06 GHz Intel Core 2 Duo.
NVIDIA GeForce 8800 GS graphics processor with 512MB of GDDR3 memory is available for 24-inch model.
No Intel Core 2 Extreme anymore.
Updating to WordPress 2.5.1
WordPress 2.5.1 is released.
http://wordpress.org/development/2008/04/wordpress-251/
This release includes a number of bug fixes, performance enhancements, and one very important security fix. Some of them are:
- Performance improvements for the Dashboard, Write Post, and Edit Comments pages.
- Better performance for those who have many categories
- Media Uploader fixes
- An upgrade to TinyMCE 3.0.7
- Widget Administration fixes
- Various usability improvements
- Layout fixes for IE
I am upgrading my blog to WordPress 2.5.1 as I am writing this post. The first thing I did was backing up the WordPress database before attempting the upgrade.
Camino 1.6 is Released
April 17th, 2008
Camino 1.6 is released.
Camino 1.6 contains the following improvements over version 1.5.x.
- Safari now appears in the list of available feed readers on Mac OS X 10.4 and above.
- Opening a history item from the recent pages at the top of the History menu in a new tab or window by holding down the Command key works again.
- Camino now supports multi-touch gestures for back, forward, page up, and page down.
- The Camino disk image no longer has scrollbars on Mac OS X 10.5 when the Finder’s path bar is enabled.
Download Camino here:
http://caminobrowser.org/download/releases/1.6/
Firefox 2.0.0.14 is Available.
Firefox 2.0.0.14 is available for download. (read more)
Firefox 2.0.0.14 release notes.
Fixed in Firefox 2.0.0.14
MFSA 2008-20 Crash in JavaScript garbage collector
Mozilla Firefox is available for multiple Operating Systems including Linux, Mac and Windows.
Safari 3.1.1 is Available
Apple releases Safari 3.1.1 to address stability, compatibility and Security.
Safari 3.1.1 is available for Mac OS X Tiger, Leopard, and Windows XP/Vista.
About the security content of Safari 3.1.1
Safari 3.1.1
- Safari
CVE-ID: CVE-2007-2398
Available for: Windows XP or Vista
Impact: A maliciously crafted website may control the contents of the address bar
Description: A timing issue in Safari 3.1 allows a web page to change the contents of the address bar without loading the contents of the corresponding page. This could be used to spoof the contents of a legitimate site, allowing user credentials or other information to be gathered. This issue was addressed in Safari Beta 3.0.2, but reintroduced in Safari 3.1. This update addresses the issue by restoring the address bar contents if a request for a new web page is terminated. This issue does not affect Mac OS X systems.
- Safari
CVE-ID: CVE-2008-1024
Available for: Windows XP or Vista
Impact: Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution
Description: A memory corruption issue exists in Safari’s file downloading. By enticing a user to download a file with a maliciously crafted name, an attacker may cause an unexpected application termination or arbitrary code execution. This update addresses the issue through improved handling of file downloads. This issue does not affect Mac OS X systems.
- WebKit
CVE-ID: CVE-2008-1025
Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.2, Mac OS X Server v10.5.2, Windows XP or Vista
Impact: Visiting a malicious website may result in cross-site scripting
Description: An issue exists in WebKi’s handling of URLs containing a colon character in the host name. Opening a maliciously crafted URL may lead to a cross-site scripting attack. This update addresses the issue through improved handling of URLs. Credit to Robert Swiecki of Google Information Security Team and David Bloom for reporting this issue.
- WebKit
CVE-ID: CVE-2008-1026
Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.2, Mac OS X Server v10.5.2, Windows XP or Vista
Impact: Viewing a maliciously crafted web page may lead to an unexpected application termination or arbitrary code execution
Description: A heap buffer overflow exists in WebKit’s handling of JavaScript regular expressions. The issue may be triggered via JavaScript when processing regular expressions with large, nested repetition counts. This may lead to an unexpected application termination or arbitrary code execution. This update addresses the issue by performing additional validation of JavaScript regular expressions. Credit to Charlie Miller for reporting these issues.
Safari 3.1.1 can be obtained through Safari Download Page or Apple Software Updates.