Security Update 2011-005 fixes DigiNotar vulnerability
updated 02:30 pm EDT, Fri September 9, 2011
Leopard left out of updates
Apple has posted Security Update 2011-005, a new patch for OS X Lion and Snow Leopard. In each case the code is aimed at fixing just a single problem: fraudulent certificates issued by DigiNotar, a threat Microsoft dealt with on Wednesday. Apple notes that it has removed DigiNotar from the listed of trusted root and extended validation certificates. By default, OS X should now distrust any certificate connected to DigiNotar.
Both the Lion and Snow Leopard releases are under 1MB; users must be running a client or server edition of either v10.7.1 or v10.6.8. Notably missing from the list of patched operating systems is Leopard. The absence reflects Apple's usual support cycle though, since it only tends to support the most recent two generations of OS X.



Senior User
Joined: Jul 2004
Keychain.app
Is the solution for avoiding this update or those on pre-snow leopard systems. I did this myself when the issue first came about.