Tag Archives: quicktime

Apple Releases QuickTime 7.4.1

Apple has released QuickTime 7.4.1 which…

…addresses security issues and improves compatibility with third-party applications.

The update is available through Apple software update or as direct download. There are separate updates for Leopard, Tiger, Panther, and Windows.

I installed the update for Leopard on my iMac, MacBook and Mac Mini (all Intel based) without a problem. Like QuickTime updates that came before, a restart is required.

There were reports of problems with the 7.4 update and video playback although I didn’t have any problems. This update does not appear to resolve the issues for those who had the problem and some reported the problem with the install of 7.4.1 even though 7.4 didn’t have cause a problem. MacFixit has information and possible resolutions.

Security Update: Apple Quicktime 7.4 Released

Apple sent out a bunch of updates today, not all of them related to their product announcements at Macworld. They released a security update for Quicktime. Quicktime 7.4 patches 4 security vulnerabilities.

Quicktime required a reboot on my Macs, as do all Quicktime updates. On Windows I have the iTunes+Quicktime combo installed and that also required a reboot.

The update is available through Apple software update or as individual downloads from Apple’s download page. There are versions for Leopard, Tiger, Panther and Windows.

Apple Updates QuickTime and GarageBand

SoftwareUpdate1 Apple sent a couple of updates to my Macs. Once for QuickTime and one for GarageBand.

QuickTime 7.3.1 is available through Apple automatic update and a standalone download in four different versions. One for Windows, one for Panther, one for Tiger and one for Leopard. The QuickTime update contains three security fixes. All three vulnerabilities could allow arbitrary code execution.

While not a security update, GarageBand 4.1.1 was also released. It has the terse description: "This update improves overall stability and addresses issues with file export to iPhone."

I watched a couple of QuickTime movies and streamed a couple more videos without any problems.

Security Quest #12:Privacy

Facebook Logo in Black & White Facebook caused an uproar over the past week with their new Beacon advertising service. Being the last human not to have a Facebook account I didn’t follow the story too much at first, but then it became hard to ignore. At the very least it was a public relations disaster for Facebook, although I suspect it won’t really affect their membership numbers. Ars Technica has a pretty good summary and includes the changes Facebook made in response to the outcry. But it appears Facebook may still have a ways to go. PC World reports that Beacon tracks non-Facebook users and logged off Facebook users. It appears nobody at Facebook talked to their users and they implemented Beacon without really explaining what it meant before it kicked in for users.

I find it interesting that Google most definitely has as much info about users but tries to keep a low profile. When there’s a uproar about Google it’s what they might do with the data. With Facebook it’s what they were actually doing with the data. Google pulls us in slowly, Facebook wanted it to overwhelm us.

Also in the privacy arena, the November 22nd Security Now Podcast talked about third -party cookies, specifically PayPal’s routing of links through Doubleclick to avoid the issue of browsers rejecting third-party cookies. As the podcast mentions, this could give the Doubleclick advertising access to information about you. I don’t use PayPal a lot, and while I don’t like what they do I won’t use it any less. I use PayPal when a credit card isn’t accepted or I don’t want to give a website my credit card number so it would remain my preferred, if reluctant, choice. It may get me go through the hassle of using a one-time credit card number my bank offers.

Software Vulnerabilities

Symantec is reporting than an active exploit is in the wild for a QuickTime vulnerability that was first reported last week. From the article:

Hamada said the exploit code was found on a compromised porn site that redirects users to a site hosting malicious software called “Downloader.” Downloader is a Trojan that causes compromised machines to download other malicious software from the Internet. Symantec rates Downloader as “very low” risk.

A second QuickTime flaw has also just been reported.

News & Links

Blogger in Draft: New feature: OpenID commenting – Google has begun testing OpenID with their “Blogger in Draft” program.

CNet.com: McAfee Internet Security Suite 2008 – complete package Internet security and firewall reviews – CNet review McAfee Internet Security Suite 2008 and rated it 7.3 out of 10 and said “McAfee Internet Security 2008 trounces Norton Internet Security 2008, offering a better designed product with more security tools.”

Google Online Security Blog: Help us fill in the gaps! – Google is asking users to report malicious websites they come across by filling out a online form.

MSNBC.com: Virus experts warn of ‘Google poisoning’ – The Red Tape Chronicles – Info about malware distribution via websites is making it’s way in to the general news.

News.com: Inviting the hackers inside – News.com article about how Microsoft has taken a more inclusive approach to security.

News.com: Yahoo, Adobe team on PDF ads – Advertising can now infect PDF files.

WinSuperSite.com: Windows Live OneCare 2.0 Reviewc- Good review of the latest Windows OneCare version

Wired.com: Spammers Giving Up? Google Thinks So – Google says that spam is down (as a percentage of all mail) through their GMail system.

theage.com.au: Flaw leaves Microsoft looking like a turkey – Vulnerability in Windows that was thought patched 5 years ago still exists under some conditions. Vista is affected too. via tech.blorge.com

Apple Updates iTunes & Quicktime

Software Update graphic in B&WApple released updates to iTunes and QuickTime for both OS X and Windows. The updates are available through Apple Software Update or as standalone downloads.

The iTunes 7.5 update contains:

…the ability to activate iPhone wherever service is offered and support for Phase, a new interactive music game designed exclusively for iPod nano (third generation), iPod classic, and iPod (fifth generation). This release also includes bug fixes to improve stability and performance.

No details on those bug fixes, you didn’t expect any did you?

If you don’t want it through software update there’s a 41.1 MB download for OS X and a 51.8MB download for Windows. These are full app downloads, the “update” link brings you to the main iTunes download page.

The QuickTime 7.3 update contains:

- critical security updates
- Updated support for creating iPhone-compatible web content
- Updated JavaScript support in the QuickTime Web Plug-in
- Numerous bug fixes
- Support for iTunes

If you don’t want to use software update visit the download page and take your pick of four downloads, one for Windows and three for OS X (Panther, Tiger, Leopard).

Both updates installed just fine on my Macs, a reboot was required due to the QuickTime update. The Windows update is about 20MB while the OS X updates range from 49 to 53MB. So fire up software update.