Got a tip for us? Share it...

New in OS X: Get MacRumors Push Notifications on your Mac

Resubscribe Now Close

Apple Releases Security Update 2011-005 for OS X to Address Compromised Certificates


Apple today released Security Update 2011-005 for OS X, a small update addressing a specific security issue related to fraudulent certificates from DigiNotar.
Impact: An attacker with a privileged network position may intercept user credentials or other sensitive information

Description: Fraudulent certificates were issued by multiple certificate authorities operated by DigiNotar. This issue is addressed by removing DigiNotar from the list of trusted root certificates, from the list of Extended Validation (EV) certificate authorities, and by configuring default system trust settings so that DigiNotar's certificates, including those issued by other authorities, are not trusted.
DigiNotar's servers were compromised several weeks ago, with hackers obtaining access to hundreds of certificates. Apple has been criticized for being slow to respond to the issue, but is now doing so today by revoking DigiNotar's status as a trusted source.
DigiNotar, one of hundreds of firms authorized to issue digital certificates that authenticate a website's identity, admitted on Aug. 30 that its servers were compromised weeks earlier. A report made public Monday said that hackers had acquired 531 certificates, including many used by the Dutch government, and that DigiNotar was unaware of the intrusion for weeks.
Available updates include:

- Security Update 2011-005 (Lion) (15.59 MB)
- Security Update 2011-005 (Snow Leopard) (869 KB)

Top Rated Comments

(View all)

34 months ago

They didn't start working on this yesterday, maybe they caught something in Q&A that delayed things a bit.

Removing compromised root certificates isn't rocket science.

There is simply no excuse for Apple taking almost two weeks longer than Microsoft to release this update - with Microsoft having to cover way more OS releases and update/service pack configurations than Apple.
Rating: 8 Positives
34 months ago
Apple is not ready to have its OSX as popular as Microsoft Windows.
Rating: 6 Positives
34 months ago
Why the big file size difference?
Rating: 5 Positives
34 months ago
Little note: If you're using Chrome or Firefox on OS X, you where already protected. But it's nice that Apple has finally released a security update for OS X.
Rating: 4 Positives
34 months ago
Something this serious should see updates to Leopard and Tiger as well since some in-service computers require older OS's.
Rating: 4 Positives
34 months ago
Why Apple taking so much time addressing those issue.... You guys a lagging big time! Still love you soooo much :). But switch gear regarding security update!!!!
Rating: 4 Positives
34 months ago
No way I'm switching to FireFox or Chrome… I don't like tabbed browsing, and Safari seems to have a better UI than the other ones… I do have FireFox installed for some of the plugind…

I even use Safari in parallels…
Rating: 4 Positives
34 months ago

Yay for not using safari:D


Chrome: best browsing experience
Firefox: best debugging experience (firebug)
Opera: best multiplatform mobile browser
Safari: ?
Internet Explorer: ?
Rating: 4 Positives
34 months ago
Do the compromised certificates only exist on Snow Leopard and Lion? :confused:

What about Leopard?
Rating: 3 Positives
34 months ago
Now we just need the update for Safari on iOS devices :D
Rating: 3 Positives

[ Read All Comments ]