Apple unleashes monster patch batch on Mac faithful
Print story105MB of justice
Posted in Enterprise Security, 19th March 2008 00:19 GMT
Free whitepaper – The shortcut guide to managing certificate lifecycles
Apple released a massive security update on Tuesday that patched at least 80 vulnerabilities in its Tiger and Leopard operating systems, many of which were critical.
The massive patch batch amounts to a download of more than 105MB, and that doesn't include a separate 25MB file that installs version 3.1 of Apple's Safari browser. Mac users who haven't already been prompted to install the updates should apply them manually by opening the OS X system preferences and choosing Software Update.
The updates address bugs in both desktop and server components, several of which allow attackers to remotely execute malicious code on a victim's machine. Vulnerable components include the Mac implementation of OpenSSH, Apache, CUPS, Kerberos and ClamAV. The Help Viewer and core networking features were also patched.
This is the biggest Apple patch fest in recent memory, eclipsing even last November's release of an update that fixed 54 security bugs. They come as Apple software and hardware continue to gain more market share. Apple's patch practice is in sharp contrast to Microsoft's more measured approach, in which a smaller number of updates are released each month. ®
Free whitepaper – Securing your Apache web server with a Thawte digital certificate
The best practices guide for application security
Avoiding 7 common mistakes of IT security compliance
The starter PKI program
Airport insecurity: the case of lost laptops
The mandate for application security
Google cloud told to encrypt itself
Buggy 'smart meters' open door to power-grid botnet
Chinese firm hits back at cyberspy claims
BlockMaster SafeStick hardware-encrypted USB drive