April 6, 2004 12:30 PM PDT

Apple releases patches for Jaguar, Panther

By Robert Lemos
Staff Writer, CNET News

Related Stories

Apple beefs up security for OS X

 January 26, 2004

Apple issues Panther update; security fixes to follow

 December 18, 2003

Apple fixes security in Panther, Jaguar

 November 20, 2003

Apple plans to remedy OS X security issues

 October 31, 2003
Apple released updates for the Panther and Jaguar versions of Mac OS X that fix security issues in the operating systems' printing, mail and encryption capabilities, as well as a critical vulnerability in the handling of Web addresses.

Apple gave little information about the patches, which were published Monday on the company's site. However, information on two of the vulnerabilities could be found at the Web site of the Common Vulnerability Encyclopedia, which is an attempt by Mitre, a systems engineering and information technology research organization, to create a complete database of software flaws.


Get Up to Speed on...
Enterprise security
Get the latest headlines and
company-specific news in our
expanded GUTS section.
The most critical vulnerabilities, in a common Unix library for the extensible markup language (XML), could allow an attacker to execute code on a victim's computer by sending a long address, also known as a Uniform Resource Locator, or URL.

Apple also fixed two flaws in OpenSSL that made PCs vulnerable to a denial-of-service attack. OpenSSL is the open-source software implementation of the secure sockets layer (SSL) protocol for encrypting communications on the Internet. The software is widely used in networking equipment and on Linux servers.

Apple released little information on the flaws in the Mac OS X's printing capabilities and the system's mail services. The Mac OS X uses its own version of the Common Unix Printing System.

While all four vulnerabilities had listings in the Common Vulnerability Encyclopedia, references to the printing and mail flaws were reserved by Apple and contained no other information.

2 comments

Join the conversation! Add your comment (Log in or register)
The differences is, Apple does not wait 6 months...
The differences is, Apple does not wait 6 months before they
realize there is a problem. Microsoft is a joke when it comes to
security.
Posted by 198775425444042216790779840523 (102 comments )
Reply Link Flag
dude...i know
...and they don't need them every week

and i love the tag line: microsoft isn't the only one with securtiy
updates...like a little 4 year old telling on his brother

cnet has always hated apple, no matter what they say
Posted by dolfox (29 comments )
Reply Link Flag
 

Join the conversation

Add your comment

The posting of advertisements, profanity, or personal attacks is prohibited. Click here to review our Terms of Use.

ie8 fix

What's Hot

Discussions

Shared

RSS Feeds

Add headlines from CNET News to your homepage or feedreader.

ie8 fix
  • Recently Viewed Products
  • My Lists
  • My Software Updates
  • Promo
  • Log In | Join CNET