Apple has posted Security Update 2005-008, available for download either by using the Software Update system preferences pane or by visiting Apple’s Web site. Separate versions have been posted for Mac OS X v10.3.9 and Mac OS X v10.4.2.
For Tiger users, the security update incorporates changes to the ImageIO, LibSystem, Mail, QuickDraw, Ruby, SecurityAgent and securityd applications. Panther users see updates to the LibSystem, LoginWindow, Mail, QuickDraw, QuickTimeJava, Safari, SecurityAgent and SecurityServer applications.
Changes to Mail include a fix that prevents unencrypted responses from being generated by auto-reply rules applied to encrypted messages. QuickDraw Manager has been updated to prevent a problem that could cause arbitrary code to be executed by a maliciously-crafted PICT image.
Detailed information about what else has changed in this update has been posted online.