Apple Software Update IconApple released this year’s fourth security update for Mac OS X on April 19th. Although the update size isn’t large (9.3MB for Power PC, 16.1MB for Universal), it does address some significant security risks in key software packages. Further down, I’ll include a complete list of software affected, as well as what exploit was addressed.

If you choose to update the system via the Software Update tool, the images below should serve as a guide to the process.

Software Update - Security Update 2007-004 (Power PC) Software Update - Authentication Dialog Software Update - Restart Required

On the other hand, if you must update a system remotely, the following command sequence will accomplish the task. As always, the ‘$‘ represents the shell prompt and should not be typed.

$ sudo softwareupdate --install --all
$ sudo shutdown -r now

The following table describes the affected software. Hover your mouse over the CVE ID to get a short description of the vulnerability.

Security Update 2007-004
Software Package CVE ID
AFP Client CVE-2007-0729
AirPort CVE-2007-0725
CarbonCore CVE-2007-0732
diskdev_cmds CVE-2007-0734
fetchmail CVE-2006-5867
ftpd CVE-2006-6652
GNU Tar CVE-2006-0300
Help Viewer CVE-2007-0646
HID Family CVE-2007-0724
Installer CVE-2007-0465
Kerberos CVE-2006-6143
CVE-2007-0957
CVE-2007-1216
Libinfo CVE-2007-0735
CVE-2007-0736
Login Window CVE-2007-0737
CVE-2007-0738
CVE-2007-0739
network_cmds CVE-2007-0741
SMB CVE-2007-0744
System Configuration CVE-2007-0022
URLMount CVE-2007-0743
VideoConference CVE-2007-0746
WebDAV CVE-2007-0747
WebFoundation CVE-2007-0742

Now what?

Related Posts