March 13, 2007 5:16 PM PDT
Apple megapatch plugs 45 security holes
- Related Stories
-
Microsoft takes a 'Patch Tuesday' break
March 8, 2007 -
Apple plugs eight QuickTime holes
March 5, 2007 -
Apple plugs four security holes
February 15, 2007 -
Microsoft to deliver patches by the dozen
February 8, 2007 -
The good and the bad of bug campaigns
January 4, 2007 -
Attack code out for new Apple Wi-Fi flaw
November 1, 2006
The megapatch is the seventh Apple security patch release in three months. It deals with vulnerabilities in Apple's own software, as well as third-party components such as Adobe Systems' Flash Player, OpenSSH and MySQL. Sixteen of the vulnerabilities addressed by the update were previously released as part of two high-profile bug-hunting campaigns.
The vulnerabilities pose varying risks to Macs. Several of the flaws could be exploited to gain full control over a Mac running the vulnerable component, according to Apple's advisory. Other holes are limited and could only be exploited to crash a Mac or used by somebody who already has access to a machine to elevate privileges, for example.
One focus of the patch is to fix eight vulnerabilities in the way Mac OS X handles disk images, files that when opened appear as a drive within the Macintosh Finder. Mounting a malicious image may lead to an error and could provide a means for an attacker to breach a Mac, Apple said.
Tuesday's update deals with nine vulnerabilities released as part of the Month of Apple Bugs in January and seven bugs disclosed in the Month of Kernel Bugs in November. In earlier fix releases, Apple fixed several flaws identified during the projects.
While several of the vulnerabilities repaired by Apple's updates were previously known, it doesn't appear that any attacks that exploited the flaws actually occurred.
In addition to the Mac OS X patch, Apple issued a second update on Tuesday to fix a security bug in iPhoto that could expose Mac users to a serious attack. An attacker could craft a malicious "photocast" which, when opened, could compromise a Mac, Apple said in its alert. The Photocasts feature allows people to share pictures in iPhoto.
Tuesday's two releases bring Apple's total patch count for the year to seven. Microsoft, meanwhile, on Tuesday skipped its monthly patch day. However, it released a dozen security bulletins with fixes for 20 vulnerabilities in February and four bulletins with fixes for 10 bugs in January.
The Apple patch can be downloaded and installed via the Software Update feature in Mac OS X, or from Apple Downloads.
See more CNET content tagged:
vulnerability,
Apple Computer,
security hole,
Apple iPhoto,
Apple Macintosh
They built their company with a self righteous attitude and propaganda style marketing. This style of engineering lead to the refusal to license Apple Computer out to other manufactures, and a refusal to allow compatibility with other operating systems. This eventually caught up with them when it brought Apple to the point of near bankruptcy. Apple owner?s today fight like hell to deny the fact that if Bill Gates had not bailed them out, there would be no Apple Computer. SEE ?MS to invest $150 million in Apple? here on CNET NEWS.Com
A real slap in the face is how Apple owners discovered that their cherish software from previous versions of Apple Operating systems will not run on OSX. I can run any program from any version of Windows including Windows 3.0 on Windows XP. The biggest laugh my friends and I had was when they used Apple Computers in the movies ?Hackers? and ?The Net?. It was hilarious. The truth is HACKERS DON?T USE APPLE!
If Apple Computer had continued developing their operating system on the original platform, Apple Computer would have become extinct. What saved Apple? Using the same platform of those that Apple despised????UNIX. Apple Computer owners used to brag ?No one can get into an Apple system?. The fact is no one wanted to. All the major sources of information were stored on UNIX or Windows NT based systems. And now that Apple has finally wised up and started to develop their operating system on UNIX, Apple Computer owners are still complaining, and refuse to accept the truth.
Yes Windows has had a variety of problems including security issues, but the advantages have always been enormous in choosing Windows. I have a Windows base system that runs 3 versions of Windows, OS2/Warp, and 2 versions of Linux. If you doubt this look up System Commander. Another advantage is if I don?t like the way IBM builds my Windows based system I can go to Dell, Compaq, Gateway, or build one from scratch. Could Apple Computer owners say that?
You?re into the real world now Apple Computer owners get used to it and move on. And by the way before you scream how Bill gates copied the Apple operating system, you better do a little study in history. Here is the facts> But although Apple was the first to successfully mass-produce a GUI, they were not its inventors, nor were they the first to market it.
The honor for producing the first working GUI goes to Doug Englebart ? at the time an employee of Stanford Research Institute. Englebart and colleagues created a program called the oNLine System in 1965-?68. This program used the first mouse, a windowing system, and hypertext, and was based on a description of a system called ?memex? proposed by Vannevar Bush in 1945.
http://imrl.usu.edu/OSLO/technology_writing/004_003.htm
They built their company with a self righteous attitude and propaganda style marketing. This style of engineering lead to the refusal to license Apple Computer out to other manufactures, and a refusal to allow compatibility with other operating systems. This eventually caught up with them when it brought Apple to the point of near bankruptcy. Apple owner?s today fight like hell to deny the fact that if Bill Gates had not bailed them out, there would be no Apple Computer. SEE ?MS to invest $150 million in Apple? here on CNET NEWS.Com
A real slap in the face is how Apple owners discovered that their cherish software from previous versions of Apple Operating systems will not run on OSX. I can run any program from any version of Windows including Windows 3.0 on Windows XP. The biggest laugh my friends and I had was when they used Apple Computers in the movies ?Hackers? and ?The Net?. It was hilarious. The truth is HACKERS DON?T USE APPLE!
If Apple Computer had continued developing their operating system on the original platform, Apple Computer would have become extinct. What saved Apple? Using the same platform of those that Apple despised????UNIX. Apple Computer owners used to brag ?No one can get into an Apple system?. The fact is no one wanted to. All the major sources of information were stored on UNIX or Windows NT based systems. And now that Apple has finally wised up and started to develop their operating system on UNIX, Apple Computer owners are still complaining, and refuse to accept the truth.
Yes Windows has had a variety of problems including security issues, but the advantages have always been enormous in choosing Windows. I have a Windows base system that runs 3 versions of Windows, OS2/Warp, and 2 versions of Linux. If you doubt this look up System Commander. Another advantage is if I don?t like the way IBM builds my Windows based system I can go to Dell, Compaq, Gateway, or build one from scratch. Could Apple Computer owners say that?
You?re into the real world now Apple Computer owners get used to it and move on. And by the way before you scream how Bill gates copied the Apple operating system, you better do a little study in history. Here is the facts> But although Apple was the first to successfully mass-produce a GUI, they were not its inventors, nor were they the first to market it.
The honor for producing the first working GUI goes to Doug Englebart ? at the time an employee of Stanford Research Institute. Englebart and colleagues created a program called the oNLine System in 1965-?68. This program used the first mouse, a windowing system, and hypertext, and was based on a description of a system called ?memex? proposed by Vannevar Bush in 1945.
http://imrl.usu.edu/OSLO/technology_writing/004_003.htm
SO MACBOYS YOUR OS ISN'T SECURE EITHER HAHAHAHAH!!!1!!
11!!!!11" Please. If your intention is to bag out fanboys by
resorting to this, you're no better than they are. Grow up.
I could also induge myself and ask you to point out the
frequency of Windows problems compared to Mac, Linux, BSD,
Kitchen Sink (hint: it's not all about market share), but then I
guess I'd be a fanboy wouldn't I? It says something about people
who lurk in the shadows desperately waiting for something
other than Windows to slip so they can feel better about their
own.
And at least Apple are actively fixing their security problems
compared to their Redmond counterparts (http://
news.com.com/Microsoft+takes+a+Patch+Tuesday+break/
2100-1002_3-6165647.html)
SO MACBOYS YOUR OS ISN'T SECURE EITHER HAHAHAHAH!!!1!!
11!!!!11" Please. If your intention is to bag out fanboys by
resorting to this, you're no better than they are. Grow up.
I could also induge myself and ask you to point out the
frequency of Windows problems compared to Mac, Linux, BSD,
Kitchen Sink (hint: it's not all about market share), but then I
guess I'd be a fanboy wouldn't I? It says something about people
who lurk in the shadows desperately waiting for something
other than Windows to slip so they can feel better about their
own.
And at least Apple are actively fixing their security problems
compared to their Redmond counterparts (http://
news.com.com/Microsoft+takes+a+Patch+Tuesday+break/
2100-1002_3-6165647.html)
(through XP Pro), All flavors of MacOS, OS2, Linux, SGI, to name
a few.
They all fall in two categories: UNIX and not-UNIX. Apple has
very polished interface over UNIX. Windows has a very polished
interface over DOS (I know I'm asking for it here).
Both express an OPINION about software programming.
Sometimes I agree, sometimes I don't. I don't understand why
Apple users are stereotyped as weird zealots: It's just a 5%
market-share OS alternative.
(through XP Pro), All flavors of MacOS, OS2, Linux, SGI, to name
a few.
They all fall in two categories: UNIX and not-UNIX. Apple has
very polished interface over UNIX. Windows has a very polished
interface over DOS (I know I'm asking for it here).
Both express an OPINION about software programming.
Sometimes I agree, sometimes I don't. I don't understand why
Apple users are stereotyped as weird zealots: It's just a 5%
market-share OS alternative.
Besides that, MS didn't have anything for patch Tuesday, but guess what, they still have at least 5 outstanding zero day vulnerabilities:
http://it.slashdot.org/article.pl?sid=07/03/09/1317240
Are you just trying to stir the pot or did you have some real security news about Apple or MS?
Besides that, MS didn't have anything for patch Tuesday, but guess what, they still have at least 5 outstanding zero day vulnerabilities:
http://it.slashdot.org/article.pl?sid=07/03/09/1317240
Are you just trying to stir the pot or did you have some real security news about Apple or MS?
update.
If they DON'T patch any security holes, then they're called lazy
about security.
If they DO patch security holes, then they're called insecure.
Even though none of the patched holes have yet been exploited.
Kobiashi Maru
update.
If they DON'T patch any security holes, then they're called lazy
about security.
If they DO patch security holes, then they're called insecure.
Even though none of the patched holes have yet been exploited.
Kobiashi Maru
compared to 114,000+ MS flaws many of which can be exploited
remotely..?? No wonder the MS crowd gets excited every time
there's a Mac patch..
compared to 114,000+ MS flaws many of which can be exploited
remotely..?? No wonder the MS crowd gets excited every time
there's a Mac patch..
as well as I do), but I'm laughing at this statement 'The truth is
HACKERS DON?T USE APPLE!'...
as well as I do), but I'm laughing at this statement 'The truth is
HACKERS DON?T USE APPLE!'...
here?
- 45 patched is better than what MS does - none patched, 45 zerodays...
-
by gm2net
March 14, 2007 4:07 AM PDT
- Why is Apple fixing the security holes being spun to be a bad thing
-
Reply to this comment
View
all 2 replies
-
-
See all 686 Comments >>here?