Apple released today an update to OS X of possibly unprecedented proportions, addressing 131 separate vulnerabilities, one over 2 years old.
55 of the vulnerabilities, including the one first revealed in October 2008, were for the Flash Player plug-in, proving once more that it’s a mistake to wait for Apple for such updates.
The age of some of the vulnerabilities is staggering. In addition to the one from 2008, 7 were first revealed in 2009. A much more recent one (though far from the most recent), CVE-2010-1797, was fixed 3 months ago in iOS, leaving OS X users badly exposed in the meantime.
The update mixes fixes to Apple code with fixes to common UNIX software such as X11, PHP and OpenSSL. For instance CVE-2009-0796, found in February of 2009, is a cross-site scripting bug in the mod_perl Apache module.
The update is designated Security Update 2010-007 for OS X 10.5 and brings 10.6 up to 10.6.5.
View full post on Security Watch
Related Posts
- Apple Releases Vast OS X Security Update
Apple released today an update to OS X of possibly unprecedented proportions, addressing 131 separate vulnerabilities, one over 2 years old.
View full post on PCMag.com Security Coverage... - Apple releases Security Update 2010-006 for Snow Leopard
Users of Mac OS X 10.6 Snow Leopard have a minor security fix waiting for them in Software Update.
View full post on Network World on Security... - Apple Discloses 85 Security Fixes in Latest iOS Update
Just when you think they can't pull another one off, Apple does it again. No, we're not talking about killer consumer electronics products, we're talking about security updates of record-set... - Apple Releases Two Security Updates (One for OSX, One for iTunes) : http://support.apple.com/kb/HT4312 and http://support.apple.com/kb/HT4328, (Fri, Sep 3rd)
-- John Bambenek bambenek at gmail /dot/ com
(c) SANS Internet Storm Center. http://isc.sans.org Creative Commons Attribution-Noncommercial 3.0 United States License.
View full post on SAN... - Apple OS X Security Update Fixes 13 Bugs
Apple on Tuesday released a security update that addresses 13 vulnerabilities in OS X.
View full post on PCMag.com Security Coverage... - Adobe Fixes Flash Zero-Day with Massive Security Update
Adobe has been in the headlines for all the wrong reasons recently with new attacks exploiting flaws in Adobe Flash and Adobe Reader. Adobe has addressed the security vulnerabilities now with an immen... - Adobe Releases Security Update For Photoshop CS4
Adobe Photoshop CS4 11.0.1 and earlier versions have critical vulnerabilities which could allow a malicious .ASL, .ABR, or .GRD file to take control of the system. Both Windows and Mac versio... - Apple security update available
Please run software update to get it right away!
View full post on iAntiVirus Blog... - Adobe updates Reader and Acrobat
A little earlier as announced, Adobe released updated versions of Adobe Acrobat and Reader. These programs were vulnerable to the Flash Player zero-day-vulnerability as well, which was fixed last week... - Silverlight Update Available, (Thu, Apr 21st)
Microsoft has issued a security patch for Silverlight KB2526954. It fixes several security issues. However, the Microsoft link to KB2526954 is still not live. If you have Microsoft update running, it ...
Posted on 12 November 2010. Tags: Apple, Massive, Releases, Security, Update
Apple released today an update to OS X of possibly unprecedented proportions, addressing 131 separate vulnerabilities, one over 2 years old.
