Apple patches 31 OSX holes

Some to go, though

By INQUIRER newsdesk

Wed Nov 29 2006, 11:36

MAKER OF COLOURED plastic toys, Apple has today patched up 31 security flaws in various versions of its Mac OS X operating system.

Twelve of the 22 patched software components suffer from flaws that could allow for remote code execution. Other fixes deal with vulnerabilities ranging from denial of service attacks to system privilege escalation.

Updates for third-party open source components accounted for seven of the fixed components. Perl, openSSL, and gnuzip all received fixes in the update.

Apple's Security Framework software received four patches in the update, though none of the vulnerabilities could allow for remote code execution and only two affected the most recent version of the operating system.

Some known holes remain, however. Researcher H. Moore alerted the world to an Airport vulnerability on the first day of his Month of Kernal Bugs (MoKB) project, and this has been fixed. But other vulnerabilities unearthed by the sniffer Moore remain wide open, it seems. µ

Apple releases Mac OS X 10.7.3 A gigabyte of patches Thursday, 2 February 2012, 15:22 PM Read more	Windows Phone 7.5 suffers a SMS denial of service flaw Perhaps a sign of growing popularity Wednesday, 14 December 2011, 10:24 AM Read more
Newly patched Safari flaws pose serious risks A proof-of-concept remote code execution exploit is available Thursday, 13 October 2011, 11:26 AM Read more	Microsoft patches 23 flaws in multiple products Internet Explorer updates are the most urgent ones Wednesday, 12 October 2011, 15:42 PM Read more
Microsoft will patch critical IE and .NET bugs next week Eight bulletins cover two dozen flaws Friday, 7 October 2011, 16:27 PM Read more	Adobe patches critical vulnerabilities in Flash Player Attacks are already seen in the wild Thursday, 22 September 2011, 10:06 AM Read more

< Previous article| Next article >

Comments

There are no comments submitted yet. Do you have an interesting opinion? Then be the first to post a comment.

INQ White papers

Databases

Network management

Security

Service oriented architecture

Storage

INQ Jobs

VB.NET Web Developer

VB.NET Web Developer V...

INQ Poll

Authorities in several countries raided Megaupload recently, shut down all of its services, seized hundreds of servers and arrested several of its executives on criminal charges.

Do you think the move was justified?

Yes, companies should suffer an immediate death penalty upon being accused of copyright infringement.

Yes, the coppers said the company was breaking the law so it must be guilty.

No, the company and the people accused are innocent until proven guilty.

No, the company had millions of customers who have been harmed by having access to their data files cut off.

I don't care, I never used Megaupload anyway.

View other polls

© Incisive Media Investments Limited 2012, Published by Incisive Financial Publishing Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, are companies registered in England and Wales with company registration numbers 04252091 & 04252093

SEARCH :

Site Credentials:

Business & Technology websites:

Business research resources:

Products:

Investment Market IT websites:

Find out what you are worth:

Salary Calculator

Search for a job:

Recruitment Agency A-Z Directory

Accreditations:

Digital Publisher of the Year 2010

Apple patches 31 OSX holes

Share this:

RIM Playbook OS 2.0 and Blackberry 7.1 video demo

Nokia Lumia 710 video review