Exclusive Deal While supplies last, save 40% off over 40 iPhone 5 and iPhone 4/4S cases and chargers as well as Samsung S III cases at Kensington.com. Use coupon code 'SAVE40%' at checkout to receive this exclusive discount.      
toggle

AAPL Stock: 445.15 ( + 3.01 )

http://www.macnn.com/articles/06/03/29/new.flaw.crashes.safari/

New flaw crashes Safari, Finder

updated 06:30 pm EST, Wed March 29, 2006

 

New flaw crashes Safari


A blogger has identified an apparent flaw in the Apple's Mac OS X graphics display engine, ImageIO, that will crash the company's Safari Web browser and other system applications, including the Finder. The flaw [link: warning, will crash Safari], posted by DrunkenBlog, crashes anything using the Mac OS X ImageIO API including Finder, Preview, and applications based on Webkit and WebCore -- Apple JavaScript/HTML display engine for Safari and other applications. ImageIO reportedly hangs during an EXIF routine, and images of the specified type are already floating around on the Web according to the blogger, who comments on Apple's general security standing. "I haven't met anyone within Apple that's been around awhile who wouldn't admit over beers that they'd be mighty nervous dropping OS X as it currently stands into the orgy Windows swims in, so I'm always amused at what shows up around the Web, and less amused by the pundits feeding it to them." The report notes that the bug -- which only affects Tiger and won't crash Camino or Firefox -- has been reported in Apple's system; however, as with most security issues, Apple has not publicly responded.


by MacNN Staff

Post tools:

TAGS :

 troubleshooting

Related Articles

Recent Articles

toggle

Comments

  1. The Wolf

    Dedicated MacNNer

    Joined: Jul 2001

    0
    03/29, 08:02pm | report spam | Reply |

    Muahhhahahaaaa...

    Check out the Dave Matthews video here... http://www.videocodezone.com/videos/d/dave_matthews_band/crash.html ...yes, it will also "Crash" Safari ;)

  1. godrifle

    Fresh-Faced Recruit

    Joined: Jan 2006

    0
    03/29, 10:43pm | report spam | Reply |

    Damn

    Damn...

    Damn.

    Damn!

  1. dimmer

    Mac Enthusiast

    Joined: Feb 2006

    0
    03/30, 02:09am | report spam | Reply |

    Yes...

    As long as I can remember, there have always been web sites that could cause browsers to crash. Hardly sounds like a big woop security problem to me (although clearly, I don't have the same exposure to Apple employees who've been around a good while, over beers, discussing the scenario of what-if Mac OS X was Windows... someone needs to grab a life with at least one hand and try to hang on tight).

  1. JulesLt

    Fresh-Faced Recruit

    Joined: Jul 2005

    0
    03/30, 03:15am | report spam | Reply |

    JulesLt

    The problem is that a LOT of Mac users try to persuade Windows users there are NO problems with OS X, rather than that the consequences of those problems are smaller.

    S'funny that the thing everyone remembers about the Titanic is that it sank, but the compartmentalised hull design it pioneered was still better than what was before and has become the standard for ship design.

    People like it when 'unbreakable' or 'unsinkable' systems break - presumably because most people have a bad grasp of risk, and thus translate it into 'thank god I'm on a good old single compartment vessel rather than one of these new unsinkable ships'.

    (Although the flipside of the lesson is 'if you think you are secure, you may engage in risky behaviour and go full-speed through an ice-flow').

  1. Geobunny

    Mac Elite

    Joined: Oct 2000

    0
    03/30, 07:06am | report spam | Reply |

    Re: Titanic

    Ironically, if the Titanic *had* steamed full-speed through the iceberg instead of attempting to go around at the last minute (thereby striking the side of the hull), it's believed that it would not have sunk.

    As you say, Jules, poor grasp of risk and avoidance techniques seems to be the key issue.

  1. sadmachine

    Fresh-Faced Recruit

    Joined: Jun 2004

    0
    03/30, 07:48am | report spam | Reply |

    DIDN'T CRASH!

    I clicked the link and saw the image (a Jag town car) just fine.

    Safari 1.3.2 (v312.6) Osx 10.3.9

  1. Timetheus

    Forum Regular

    Joined: Jan 2006

    0
    03/30, 09:10am | report spam | Reply |

    Only in Tiger

    sadmachine, It shouldn't have, since you were using 10.3 (Panther), the story specifically mentions that the flaw only effects 10.4 (Tiger).

  1. conalho

    Joined:

    0
    03/30, 01:20pm | report spam | Reply | delete

    WARNING: Finder Download

    Well, being the curious me, I wanted to see what crashing the Finder means so I downloaded the car picture to my desktop using Firefox. Well, I forgot that I had turned on preview icons or something like that so as soon as the download was complete, my Finder went into infinite crash and re-launch. I panicked a bit and then realised I could use Terminal to remove the file. I pity the Mac user who doesn't know how to use unix commands though!

  1. ADeweyan

    Fresh-Faced Recruit

    Joined: Mar 2004

    0
    03/30, 02:56pm | report spam | Reply |

    I'm not sure...

    ...what the significance of this is:

    "they'd be mighty nervous dropping OS X as it currently stands into the orgy Windows swims in."

    Seems to me anyone would be nervous about launching their creation into something like that. Lord knows the Windows developers feel that way!

  1. kw99

    Fresh-Faced Recruit

    Joined: Nov 2001

    0
    03/31, 03:28am | report spam | Reply |

    why is it a...

    "security issue" that Safari crashes due to a bug?

    Why does Apple need to "respond" to it? They will no doubt respond to it by releasing a fix to this bug with the next incremental 10.4 update.

    Once again, as with the "Apple does not have a security czar" angle, the entities who profit from security fears are pointing to things which are not actually security "flaws" in Mac OS X as "proof" that Mac OS X has security concerns. Stupid stuff like this makes me feel safer than ever with Mac OS X, because it is obvious they cannot point to an actual "real world" security threat.

Show More Comments

Login Here

Not a member of the MacNN forums? Register now for free.

 
close
Photo
toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

MaxUpgrades MaxConnect for 2006-2008 Mac Pro

Nobody outside of Cupertino's privileged bunch knows the future of the Mac Pro line for sure. Despite Apple's reluctance to tell us wh ...

Brother HL-3170CDW LED Printer

We've mentioned before that we are far from a paperless society. For now, at least, there are tasks that require a piece of paper for ...

HTC One

It is hard to overstate just how critically important the HTC One is to the Taiwanese company’s fortunes. Despite its alarming decline ...

toggle

Most Commented

 

Popular News