So, apparently, that OS X password-revealing bug we wrote about on Tuesday has been squashed. Apple released a new update to OS X Lion today, bringing it up to version 10.7.4, and AppleInsider says user passwords are now safe. (Several other sites, too, report that the bug is gone.)
As we noted earlier this week, the bug spits out log files containing user passwords in plain-text format on some configurations. Word is that only folks who'd used FileVault before upgrading to OS X Lion, and then upgraded and continued to use the old version of FileVault, are affected. The issue cropped up when OS X 10.7.3 came out in early February, and someone complained on Apple's support forums less than a week later.
Interestingly, the 10.7.4 release notes make no mention of the FileVault fix. Apple lists a handful of other resolved problems and additions—among other things, the "Reopen windows when logging back in" won't stick anymore, it says, and a more stable version of Safari (v5.1.6) in included. Apple points users to this page for an overview of the OS X update's "security content," but there's nothing there about 10.7.4, FileVault, or passwords. It doesn't look like the page has been updated since iOS 5.1.1 came out a couple of days ago.
|Star Wars Battlefront trailer will leave your jaw on the desk||111|
|This week produced a bumper crop of security holes, patches||16|
|Two men have real-life flame war over iOS, Android||49|
|Report: DOJ may oppose Comcast's Time Warner acquisition||33|
|Deal of the week: A terabyte-class SSD for $300, plus more||33|
|This is my favorite fanless NUC chassis so far||29|
|AMD posts $180 million loss, shutters SeaMicro business||236|
|Razer's BlackWidow Chroma spawns a tenkeyless variant||18|