MacUpdate Weekend Sale :This weekend MacUpdate has slashed prices on Painter 12 and Painter Lite. Painter 12 retails for $429, but has been reduced by 54% to $199. Painter Lite has seen a 58% price cut from $69 to $29. Hurry, because these deals are only available until May 19th 2013.      
toggle

AAPL Stock: 433.26 ( -1.32 )

http://www.macnn.com/articles/02/06/29/security.hole/

Security hole in DNS library may affect OS X

updated 11:00 pm EDT, Sat June 29, 2002

 
", 0, 0);


CERT has issued a new CA-2002-19 Advisory: A buffer overflow vulnerability exists in multiple implementations of DNS resolver libraries....A remote attacker who is able to send malicious DNS responses could potentially exploit this vulnerability to execute arbitrary code or cause a denial of service on a vulnerable system." The advisory notes that it affects most BSD-based systems that use ISC BIND DNS resolver library (libbind) or BSD DNS resolver library (libc), which are part of many BSD-based systems (Mac OS X is not listed, but Apple has not formally responded to the security bulletin.)


by MacNN Staff

Post tools:

TAGS :

 industry

Related Articles

Recent Articles

toggle

Comments

  1. MacNN.com Reader

    Fresh-Faced Recruit

    Joined: Jul 2001

    0
    06/30, 07:22am | report spam | Reply |

    Security Update2 Anyone

    Apple seem, recently, to be quite good at releasing updates for security. I'm sure if this affects Mac OS X Apple will get something out to us soon.

  1. MacNN.com Reader

    Fresh-Faced Recruit

    Joined: Jul 2001

    0
    06/30, 01:41pm | report spam | Reply |

    secure

    So much for OSX being so secure. I'm sure that this is will be one of many to come. . .

  1. MacNN.com Reader

    Fresh-Faced Recruit

    Joined: Jul 2001

    0
    06/30, 02:25pm | report spam | Reply |

    Not a security hole

    Since BIND isn't turned on in OS X and can only be turned on by manually doing it, this isn't really that big an issue (also considering that most of us doing this upgraded to BIND 8 on our systems which handles this limitation better). Also, with the recommended methods of running BIND, there is pretty much no way of using it against the host system. This is primarily due to clever use of chroot and running as an under-priveledged user.

    It is proof that nothing can ever be 100% secure without being impossible to use. The difference we have vs M$ is that M$ is a bigger target and is infinitely more predictable than Unix (for example, how do you send arbitrary code to a remote system if you don't know what hardware it runs on?).

    Just to shoot down the "secure" troll above,
    Jeff.

  1. liwoog

    Joined:

    0
    06/30, 02:35pm | report spam | Reply | delete

    Restart

    Also try to do a security update on Windows without restarting...
    (no restart was necessary for Apple's last security update)

    Also, at least when Apple releases a patch to the BSD subsystem, it fixes the root of the problems it is supposed to patch, unlike so many of Microsoft patches that only patch symptoms of a security hole.

    I can't even count how many times I have had to install patches on my W2K box lately, and many I know don't even do the job. I never use the internet from the W2K box (expect for MS security updates) anymore, not worth the risk when I can do that part from MacOS X.

  1. liwoog

    Joined:

    0
    06/30, 02:56pm | report spam | Reply | delete

    Also

    For anyone who even begins to think that they can equate Apple's security patches to M$.

    http://www.theregister.co.uk/content/4/25956.html

  1. MacNN.com Reader

    Fresh-Faced Recruit

    Joined: Jul 2001

    0
    06/30, 10:28pm | report spam | Reply |

    re: secure

    stfu

  1. MacNN.com Reader

    Fresh-Faced Recruit

    Joined: Jul 2001

    0
    07/01, 12:14am | report spam | Reply |

    only the beginning

    more patches to come...

  1. MacNN.com Reader

    Fresh-Faced Recruit

    Joined: Jul 2001

    0
    07/01, 12:15am | report spam | Reply |

     

    you know its true.

  1. MacNN.com Reader

    Fresh-Faced Recruit

    Joined: Jul 2001

    0
    07/01, 12:23am | report spam | Reply |

    be happy

    At least Apple released an update soon after the problem was reported. How long do you think it'd take the big MS to do the same?

Login Here

Not a member of the MacNN forums? Register now for free.

 
close
Photo
toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

Brother HL-3170CDW LED Printer

We've mentioned before that we are far from a paperless society. For now, at least, there are tasks that require a piece of paper for ...

HTC One

It is hard to overstate just how critically important the HTC One is to the Taiwanese company’s fortunes. Despite its alarming decline ...

Samsung Galaxy S 4

Samsung's new flagship Android smartphone, the Galaxy S 4, faces even stiffer competition than its popular predecessor. With a five-in ...

toggle

Most Commented

 

Popular News