N ot mentioned on The Mac Observer last week -- or in Appleis accompanying iTunes 4.7.1 Read Me -- was that the minor update to Appleis jukebox software, designed primarily to add support for the iPod shuffle, corrected a security issue that allowed malicious playlists to crash iTunes and execute arbitrary code.
Details on the bug are contained in a post on the Apple Product Security mailing list. Not one to pass up instilling paranoia in computer users everywhere about a popular product, the mainstream media is doing its part to inform users of the glitch.