Update: March 14th – I always like to wait a while before I install an OS update and Mac OS X is no exception. Having downloaded and installed the 1.34 GB update (not the Combo as Apple have fixed the original file install issue) today, all appears to be working fine, including no reported issues with VM software Parallels. Just make sure you back up using Time Machine before you commence with the upgrade.
Mac OS X 10.7.3 was released yesterday with fixes to 51 vulnerabilities. Of the 51 total flaws, 40 were tagged by Apple with its usual ‘arbitrary code execution’ phrase, the company’s way of saying that the bugs were critical and could be used by attackers to hijack a Mac with a working exploit. There are also DNS/AD fixes (this apparently fixes the SBS issues associated specifically with Lion).
Other highlights included patching a vulnerability in SSL (secure socket layer) 3.0 and TLS (transport layer security) 1.0 and revocation of the Digicert certificates (this patch is very late considering this was patched in Windows as far back as September). There are also other OS fixes, including open-source elements that Apple integrates with its own code. Fixes affected the Apache, ColorSync, OpenGL, PHP and X11 components, among others.
UPDATE: In the past couple of days many people have been updating to 10.7.3, but it does appear that Lion users have been suffering fatal system/application crashes. Some users claim that they have found the issue is linked to the installer, but this cannot be confirmed at this current time. We suggest if you do want to upgrade to 10.7.3 you use the Client Combo download. Originally posted on http://hakin9.org on the 3rd February.
UPDATE 14th February – I did notice that when I clicked on Software Update, the size of the installer had increased to 1.34 GB (also the SHA1 checksum has changed for the Combo Updater). Closer inspection of the download file/location suggested Apple were redirecting their Mac Software Updater to the Client Combo installer. There are no reported issues with this installer.
Safe surfing folks!