toggle

AAPL Stock: 99.18 ( -1.57 )

Printed from http://www.macnn.com

Apple posts fresh Leopard, Snow Leopard security updates

updated 05:00 pm EDT, Tue August 24, 2010

Fixes gaps in fonts, domains and PDFs

Apple has released a new security update, 2010-005. Four versions of the file are available, directed at the regular and Server editions of Leopard and Snow Leopard. Several vulnerabilities are fixed across all patches; these include ones with maliciously crafted fonts and PDF files, as well as remote attacks linked to the Samba cross-platform networking protocol. Another closed hole involves impersonating hosts with a slightly modified domain name.

Changes unique to Snow Leopard address a man-in-the-middle attack -- used to steal credentials or direct connections -- and flaws in PHP, which can for instance permit malicious PNG images. PHP itself has been updated to v5.3.2. Limited to the Server software are corrections in ClamAV, made possible by an upgrade of the latter to v0.96.1.

The client and server Snow Leopard downloads are 80.63MB and 136.86MB. For Leopard the files measure 211.88MB and 418.92MB, respectively. These can be downloaded directly or through Mac OS X's Software Update feature.






by MacNN Staff

toggle

Comments

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

Tylt Energi 2K Travel Charger

Backup batteries and device chargers are objects that many users take for granted. They often only one-dimensional in functionality, r ...

ActvContent Sync Smartband

Smartbands of all sorts are hitting the market. Some build on the buzz around fitness trackers, while others offer simpler features fo ...

RocketStor 6324L Thunderbolt 2 eSATA bridge

Like it or not, the shift to Thunderbolt is underway. The connection is extremely flexible, allowing for video and data to co-habitate ...

toggle

Most Commented