Apple has released Security Update 2007-002 [1], the second security update of the year that addresses bugs identified by the Month of Apple Bugs (MoAB) project. None of the bugs offered any chance for user action other than standard Internet precautions, so it's good to see Apple solving these problems in the Finder, iChat, and the UserNotificationCenter process. It's a bit more important than it normally is to install this security update because of the MoAB's publication of the exploits before informing Apple. As always, the update is available via Software Update most easily, though stand-alone downloads are available for PowerPC- (3.8 MB download [2]) and Intel-based Macs (6.6 MB download [3]) running Mac OS X 10.4.8 (Client or Server) and for anyone running Mac OS X 10.3.9 (1.4 MB download [4]). (For more thoughts on this situation, see Glenn Fleishman's "MoAB Is My Washpot [5]" later in this issue.)

[1]: http://docs.info.apple.com/article.html?artnum=305102
[2]: http://www.apple.com/support/downloads/securityupdate2007002ppc.html
[3]: http://www.apple.com/support/downloads/securityupdate2007002universal.html
[4]: http://www.apple.com/support/downloads/securityupdate2007002panther.html
[5]: http://db.tidbits.com/article/8869