Threat Level: green Handler on Duty: John Bambenek

SANS ISC InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Apple Security Updates 2011-004

Published: 2011-06-23
Last Updated: 2011-06-24 15:37:15 UTC
by Jim Clausing (Version: 2)
4 comment(s)

Apple has released Mac OS X 10.6.8 and security update 2011-004.  These updates address 39 CVE entries.  The updates cover many components of the core operating system and many popular applications so you should probably plan to update ASAP.  The bulletin went out on Apple's security-announce mailing list, but the security update web page doesn't have the details yet, they should be there shortly.

Update 2011-06-24 16:30 UTC: As mentioned in the comments, some folks seem to have issues after applying the update and are subsequently unable to boot their machines.  Until we get some guidance from Apple and/or figure out exactly what is causing the issue, I guess we need to exercise a bit of caution updating critical machines (based on your own definition of critical).  There is a thread here discussing the issue, and another here suggesting the problem may be with PGP WDE, but I've heard from others who use PGP WDE who didn't have any issues, so I'm still not sure what the problem is.  Any of our users using PGP WDE who have successfully applied the update, please comment below or via the contact page.

References:

http://support.apple.com/kb/HT1222

http://support.apple.com/kb/HT4723 (info about the actual update)

---------------
Jim Clausing, GIAC GSE #26
jclausing --at-- isc [dot] sans (dot) edu
SANS FOR558 Network Forensics coming to central OH in Sep see http://www.sans.org/mentor/details.php?nid=25749

4 comment(s)
New "Dashboard" http://isc.sans.edu/dashboard.html . Feedback welcome.
Diary Archives