Apple Issues Security Updates for Tiger
At the same time that Apple released Mac OS X 10.5.8, the company also dropped four security updates for users of OS X 10.4.
The updates for the PowerPC version of Tiger, the Intel version of Tiger, the PowerPC version of Tiger Server, and the Universal version of Tiger Server are available from Apple's Web site or through OS X's Software Update feature. All require OS X 10.4.11 to be installed.
The updates address security issues that could have cause applications to quit unexpectedly or arbitrarily execute code. Those issues include decompressing maliciously crafted data, viewing a maliciously crafted image with an embedded ColorSync profile, viewing a maliciously crafted OpenEXR, or processing a maliciously crafted PNG image. The update also addressed a format string issue in Login Window that could lead to an unexpected application termination or arbitrary code execution.
Additional details of the security updates are available on Apple's Web site.