The Register® — Biting the hand that feeds IT

Apple releases bumper patch batch

DNS cache poisoning flaw finally fixed

See what The Register's experts have to say on application security

Apple has published a major security patch. Mac OS X 10.5.5 is the sixth substantial security update from the company this year. The patch cycle also includes fixes for version 10.4 of Apple's software.

Both updates mend DNS security holes in older versions of BIND previously bundled with Apple's software. There are also updates for Directory Services, kernel, OpenSSH remote access software, QuickDraw Manager and more.

The flaws in ImageIO, QuickDraw Manager, VideoConference and ATS could lend themselves to hostile code injection. Meanwhile security bugs in libresolv could allow DNS cache poisoning, Apple's security notice explains.

Security watchers - such as the Internet Storm Centre - recommend the prompt patching of Apple systems. The updates follow fixes for iTunes and QuickTime application software released last week. ®

Understand how application security is evolving

Don’t Miss

GoogleGoogle code cloud punts on-demand embarrassment

Fail and You Mountain View's Sarah Palin moment

open source 75Microsoft weighs next-phase in open-source support

Spring, PHP, and Apache sized up

iTunes logoiTunes minus the player: hack your Apple beats

Mac Secrets Dodge the shareware sledgehammer

OracleOracle plans cloud strategy

Exclusive Larry smells money in madness