Apple's Beats brand in April unveiled the Powerbeats Pro, a redesigned wire-free version of its popular fitness-oriented Powerbeats earbuds.
Apple Releases OS X 10.9.2 With Fix for Major SSL Vulnerability, FaceTime Audio
Apple today released OS X 10.9.2, which includes a fix for a major SSL security flaw that first came to light on Friday, after the release of iOS 7.0.6.
The bug, which was introduced in the form of a single line of errant code that allowed an attacker to bypass SSL/TLS verification routines, left OS X users vulnerable to a man-in-the-middle attack. Shared wired or wireless networks could allow an attacker to intercept communications on affected machines, acquiring sensitive information like login credentials and passwords, or injecting harmful malware.
Test on gotofail.com after updating to OS X 10.9.2
While the SSL vulnerability was first introduced to iOS in 2012, it only affects Macs running OS X 10.9. Lion and Mountain Lion users are not affected.
OS X 10.9.2 was first seeded to developers in December and has seen seven beta iterations since that time. Along with an emergency fix for the SSL bug, OS X 10.9.2 also includes FaceTime Audio, new blocking controls for iMessage and FaceTime, call waiting support for FaceTime, Mail fixes for bugs with fetching messages, AutoFill improvements, and several other bug fixes and general improvements.
It is recommended that all users running OS X 10.9 Mavericks upgrade to OS X 10.9.2 as soon as possible to disable the vulnerability.
- OS X Mavericks Update v10.9.2 (859.70 MB)
- OS X Mavericks Update v10.9.2 (Combo) (859.70 MB)
Alongside OS X 10.9.2, Apple has also released security updates for OS X Mountain Lion and Lion:
- Security Update 2014–001 (Mountain Lion) (115.8 MB)
- Security Update 2014–001 (Lion) (123.40 MB)
- Security Update 2014–001 Server (Lion) (173.60 MB)
The bug, which was introduced in the form of a single line of errant code that allowed an attacker to bypass SSL/TLS verification routines, left OS X users vulnerable to a man-in-the-middle attack. Shared wired or wireless networks could allow an attacker to intercept communications on affected machines, acquiring sensitive information like login credentials and passwords, or injecting harmful malware.
While the SSL vulnerability was first introduced to iOS in 2012, it only affects Macs running OS X 10.9. Lion and Mountain Lion users are not affected.
OS X 10.9.2 was first seeded to developers in December and has seen seven beta iterations since that time. Along with an emergency fix for the SSL bug, OS X 10.9.2 also includes FaceTime Audio, new blocking controls for iMessage and FaceTime, call waiting support for FaceTime, Mail fixes for bugs with fetching messages, AutoFill improvements, and several other bug fixes and general improvements.
It is recommended that all users running OS X 10.9 Mavericks upgrade to OS X 10.9.2 as soon as possible to disable the vulnerability.
- OS X Mavericks Update v10.9.2 (859.70 MB)
- OS X Mavericks Update v10.9.2 (Combo) (859.70 MB)
Alongside OS X 10.9.2, Apple has also released security updates for OS X Mountain Lion and Lion:
- Security Update 2014–001 (Mountain Lion) (115.8 MB)
- Security Update 2014–001 (Lion) (123.40 MB)
- Security Update 2014–001 Server (Lion) (173.60 MB)
[ 471 comments ]
Top Rated Comments
(View all)
72 months ago
Good. Should have been out four days ago.
Hatters gotta hate. Heaven forfend Apple spend four whole days to make sure they get it right.
72 months ago
Finally! Now we can wait for 10.9.3!
Woooo!!
If you're this enthusiastic about operating system updates, you should move to Windows. You'll be whooping with joy almost every 6 hours ;)
(I appreciate your comment may have been sarcastic)
72 months ago
God, I hope it fixes the most annoying Safari bug where it loads a random page without finishing typing the URL.
72 months ago
For me it is welcome feature because sometimes I have pressed by accident power button while trying to delete something or increase volume :)
As I understand it, the behaviour of the power button depends on how long you hold it down for:
(1) < 0.5 seconds - does nothing (so prevents accidental use)
(2) Between 0.5 and 1.5 seconds - sleep mode
(3) Between 1.5 and 4 seconds - dialogue box (sleep, restart, shutdown, cancel)
(4) > 4 seconds - forced shutdown
That is what I am getting on 10.9.2
72 months ago
Heaven forbid Apple to fix vulnerabilities as soon as they can instead of waiting to bundle several updates at once several weeks down the line.
Come on, they waited 2 working days. I'm betting they already had 10.9.2 GM going through QA, and it was actually more efficient to do it this way.
Look, security is not a joke, we all accept that; but this isn't the massive exploit the media are making it out to be. To be practically exploitable, you'd need to become an intermediary node on the target's network (even at a public WiFi spot, this isn't easy - inter-node communication is typically disabled by the router).
It doesn't let some randomer half-the-world away remotely hijack your notebook.
[ Read All Comments ]
While it has yet to be announced, we're likely just three weeks away from Apple's annual September event at Steve Jobs Theater, where the company is expected to unveil new iPhone and Apple...
Apple recently purchased additional real estate in its hometown of Cupertino, reports The Mercury News, expanding its presence in the Bay Area of California.
Apple purchased two office buildings...
Microsoft today announced the launch of a beta version of its upcoming Microsoft Edge browser, which is available today for Windows and macOS users.
Previously, the Microsoft Edge browser was...
In an email to developers today, received by MacRumors, Apple has announced that apps marked as having "Frequent/Intense Simulated Gambling" will be rated 17+ in all countries and regions...
Apple Music today launched an all-new playlist of emerging songs that are receiving the most shazams around the world, called the "Shazam Discovery Top 50." The playlist will be updated every...
Best Buy has returned this week with a new set of discounts on the Apple Watch Series 3, offering up to $175 off of select models. In the sale you'll find GPS + cellular versions of the 2017...
Yubico, a company that makes physical security keys for two-factor authentication, today announced the launch of its Lightning-based YubiKey device that's designed to work with Apple's...
Bill Stasior, Apple's former head of Siri development, has joined Microsoft as corporate VP of technology, reports The Information.
Starting this month, Stasior will lead an artificial...
