Apple Releases Security Update 2011-005 for OS X to Address Compromised Certificates - MacRumors
Skip to Content

Apple Releases Security Update 2011-005 for OS X to Address Compromised Certificates

by

sec update 2011 005
Apple today released Security Update 2011-005 for OS X, a small update addressing a specific security issue related to fraudulent certificates from DigiNotar.

Impact: An attacker with a privileged network position may intercept user credentials or other sensitive information

Description: Fraudulent certificates were issued by multiple certificate authorities operated by DigiNotar. This issue is addressed by removing DigiNotar from the list of trusted root certificates, from the list of Extended Validation (EV) certificate authorities, and by configuring default system trust settings so that DigiNotar's certificates, including those issued by other authorities, are not trusted.

DigiNotar's servers were compromised several weeks ago, with hackers obtaining access to hundreds of certificates. Apple has been criticized for being slow to respond to the issue, but is now doing so today by revoking DigiNotar's status as a trusted source.

DigiNotar, one of hundreds of firms authorized to issue digital certificates that authenticate a website's identity, admitted on Aug. 30 that its servers were compromised weeks earlier. A report made public Monday said that hackers had acquired 531 certificates, including many used by the Dutch government, and that DigiNotar was unaware of the intrusion for weeks.

Available updates include:

- Security Update 2011-005 (Lion) (15.59 MB)
- Security Update 2011-005 (Snow Leopard) (869 KB)

Popular Stories

iOS 27 on iPhone 17 1

iOS 27 Will Add These New Features to Your iPhone

Saturday May 2, 2026 8:43 am PDT by
Apple is expected to unveil iOS 27 during its WWDC 2026 keynote on June 8, and there are already many rumored features and changes for iPhones. The first developer beta of iOS 27 will likely be available immediately following the keynote, and a public beta typically follows in July. Following beta testing, the software update should be released to all users with a compatible iPhone in...
Read Full Article93 comments
Apple Event Logo

Apple Just Released a New Accessory

Monday May 4, 2026 8:13 am PDT by
Apple today released a new Pride Edition Sport Loop for the Apple Watch. The band features a rainbow design with 11 colors of woven nylon yarns. The new Pride Edition Sport Loop is available to order now on Apple.com and in the Apple Store app in 40mm, 42mm, and 46mm sizes, and it will be available at Apple Store locations starting later this week. In the U.S., the band costs $49. There...
Read Full Article
Apple Announces 2026 Pride Band Watch Face and iPhone Wallpaper Article 2

iOS 26.5 Coming Soon With These New Features

Monday May 4, 2026 8:40 am PDT by
iOS 26.5 is expected to be released next week, following more than a month of beta testing. The update is relatively minor, but there are a couple of new features and changes across the operating system that we have recapped below. iOS 26.5 lays the groundwork for end-to-end encryption for RCS in the Messages app and ads in the Apple Maps app, and it will include a new Pride wallpaper and a...
Read Full Article45 comments

Top Rated Comments

AppliedMicro Avatar
AppliedMicro
191 months ago
They didn't start working on this yesterday, maybe they caught something in Q&A that delayed things a bit.
Removing compromised root certificates isn't rocket science.

There is simply no excuse for Apple taking almost two weeks longer than Microsoft to release this update - with Microsoft having to cover way more OS releases and update/service pack configurations than Apple.
Score: 6 Votes (Like | Disagree)
tigres Avatar
tigres
191 months ago
Why the big file size difference?
Score: 5 Votes (Like | Disagree)
brdeveloper Avatar
brdeveloper
191 months ago
Apple is not ready to have its OSX as popular as Microsoft Windows.
Score: 4 Votes (Like | Disagree)
Rocketman Avatar
Rocketman
191 months ago
Something this serious should see updates to Leopard and Tiger as well since some in-service computers require older OS's.
Score: 4 Votes (Like | Disagree)
milbournosphere Avatar
milbournosphere
191 months ago
[SIZE=1]I even use Safari in parallels…

Really? I mean, I can buy it for OS X, but Safari for Windows genuinely sucks as a browser. I prefer even IE to the Windows version of Safari. In fact, IE9 is a pretty good browser. When none of us were looking, IE went and grew up.
Score: 3 Votes (Like | Disagree)
D
doboy
191 months ago
Now we just need the update for Safari on iOS devices :D
Score: 3 Votes (Like | Disagree)
Read All Comments