Sunday, October 19, 2014

OS X Yosemite with numerous security fixes, update for older OS X versions

Apple has expressed in a support document to the 10.10 stuffed in OS X vulnerabilities. Also for OS X 10.8 and 10.9 is available a minor security update. OS X 10.7 is however no longer maintained.

So put error or possible attacks of varying severity among others in the 802.1X authentication for Wi-Fi hotspots, the AFP file server, the app sandbox, Bluetooth, in the certificates management, in Apple's Disk Management Core Storage, in print subsystem CUPS, in drivers from the IOHIDFamily, in IOKit, the login window, the Launch Services, in QuickTime, in mail and NETFS client. 

Apple also solved vulnerabilities in Safari browser and in SSL support Secure transport a problem will be fixed in relation to the very old version of SSL 3.0. Included also is a fix for a bug related to the "Find My Mac", by which you can lock the computer in case of theft. There was the possibility of carrying out a brute-force attack on the security PIN, according to Apple. Apple also provides with even a security update for the Bash shell, which had already been delivered under earlier OS X versions.


For users of OS X 10.8 (Lion Mountain) and OS X 10.9 (Mavericks), there is also a security update. She goes by the name of Security Update 2014-005 or Security Update 2014-005 Mavericks Mountain Lion and fixes, according to Apple, only the above-mentioned SSL error in Secure Transport. Why and if the other bugs were not hereby resolved, initially remained unclear. In addition, the OS X bash Update 1.0 is included, which had hitherto been only as a single download. The Mountain-Lion-update is significantly larger than the Mavericks version. 

Who still wants to OS X 10.7 (Lion) to use on his Mac, this decision should reconsider meanwhile: With the appearance of OS X 10.10 and the update support for the operating system published in 2011 expired. So there is now no new security updates for Lion more, also the Security Update 2014-005 is running no longer here. Observers had been expecting Apple's decision to finally group acted similarly in previous OS X versions.

More Related Articles:

No comments:

Post a Comment