Apple Releases Mac OS X Security Update 2010-005 - Fixes OS X PDF Exploit
Apple has released a Security Update today for Mac OS X Server 10.5, Mac OS X 10.5.8, Mac OS X Server 10.6, Mac OS X 10.6.4 which addresses issues in the following software:
Most notably, the patch addresses a Core Graphics PDF exploit which apparently is the same security hole that was used in the JailbreakMe website for iOS.
CFNetwork, ClamAV, CoreGraphics, libsecurity, PHP, Samba
Full changes are detailed on Apple's support site.Most notably, the patch addresses a Core Graphics PDF exploit which apparently is the same security hole that was used in the JailbreakMe website for iOS.
Impact: Opening a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code executionThe update is recommended for all Mac OS X customers.
Description: A heap buffer overflow exists in CoreGraphics' handling of PDF files. Opening a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution. This issue is addressed through improved bounds checking. Credit to Rodrigo Rubira Branco from the Check Point Vulnerability Discovery Team (VDT) for reporting this issue.
Top Rated Comments
(View all)
19 months ago
Downloaded fine, but took a long time to restart while updating. Everything normal once it did restart.
19 months ago
Does it also update the Flash-Plugin to v.10.1? Can't evaluate it right now..
19 months ago
Does it also update the Flash-Plugin to v.10.1? Can't evaluate it right now..
Probably not. Flash updates are usually done is maintenance releases.
19 months ago
When are we getting Java Version 6.21 update? firefox tells me there is an update for it over 2 weeks now. But yeah I love updates especially security hopefully they can one day make flash better ****ing hate that crap even after blocking most flash stuff, sucks that you need flash for almost everything.:apple:
19 months ago
More updates? Is there really that much wrong with 10.6?
Standard security updates, it happens for all OS's, not just Windows.
19 months ago
If this was an iPhone OS update it would be Page 1 material. It wasn't that long that a Mac OS X security update (of any kind) would have generated a mile long thread. I miss those days:(
19 months ago
More updates? Is there really that much wrong with 10.6?
Yeah, I really wish they'd just leave it alone and stop improving it. :rolleyes:
[ Read All Comments ]
Analytics firm Chitika today released a report showing that by its metrics iOS has now surpassed OS X in overall web traffic share in the United States. Chitika's methodology involves an analysis...
One of the most frequent reasons for an iPhone to go on a trip to the Apple Store's Genius Bar is because of water damage. Typically, a water damaged iPhone can be replaced for a flat $199...
TheVerge's Joshua Topolsky summarizes the iPad 3 casing findings reported earlier today, but also adds his own sources regarding some details of the iPad 3.
Image from RepairLabs
As...
Last July, Apple discontinued the white MacBook from its consumer lineup, pushing consumers toward the company's popular MacBook Air line or the 13-inch MacBook Pro. The company didn't kill...
Popular iPhone Twitter client Tweetbot has finally arrived on the iPad, with a user interface instantly familiar to any current Tweetbot user. Designed for the Twitter power-user, Tweetbot packs a...
