Apple releases OS X security patches 1 reply

Please wait...


I didn't make it!

0 XP

#1 15 years ago

Well this is good news. :)

"Highly critical" security updates address more than a dozen vulnerabilities in the Mac OS X operating system. Apple released on Tuesday security patches for Mac OS X 10.4.3, otherwise known as Tiger, as well as Mac OS X 10.3.9, dubbed Panther, according to the company's advisory. Thirteen security flaws were found in areas related to the Apache 2 Web server, curl technology and the Safari browser. The vulnerabilities ranged from potentially letting an attacker launch a denial-of-service attack to taking control of a person's system remotely. "The most severe of these are the vulnerabilities found in curl and the PCRE library used by Safari," said Thomas Kristensen, chief technology officer for security site Secunia, which rated Apple's updates as "highly critical"--the second-highest danger ranking. A large number of applications could be affected by the vulnerability in the PCRE library used by Safari's JavaScript engine, Kristensen said. People who inadvertently click on a malicious Web site with their Safari browser could find the flaw exploited, leading to a remote execution of code on their system. A flaw in Apple's curl technology, which is a library frequently used to download large files and pass them along, could be exploited if visiting a malicious Web site. The site, once detecting curl technology is present on a user's system, can take advantage of the security flaw, Kristensen said. That could result to a remote execution of code on a computer. One security flaw addressed in the update involves a boundary error found in WebKit. This marks the second time in four months that Apple has addressed a flaw in WebKit, Kristensen said. This latest flaw could let an attacker launch a buffer overflow, or denial of service attack, that could also lead to a remote execution of code and control of a person's system. The earlier flaw in WebKit dealt with the handling of PDF documents. The new Mac OS X patches follow one issued earlier this month by Apple to address vulnerabilities in four areas of its operating system. Apple was not available for immediate comment. Top of Page

Revenge Advanced Member

Shizzle my nizzle

117,165 XP

28th July 2004

0 Uploads

10,354 Posts

0 Threads

#2 15 years ago

Put some effort into your future posts. Don't just quote whole articles and provide two lines of text. Talk about the significance of this article to the community, and what you think about it. This has happened in other forums too. Stop before further action is taken.

I'll close this. If you have something significant to say on the matter, it can be reopened.