Apple Mega-patch Fixes 22 Flaws

Apple Computer has shipped a monster security update to correct a total of 22 vulnerabilities in its Mac OS X operating system. The Cupertino, Calif, company's patch batch includes a fix for a critical Wi-Fi flaw affecting eMac, iBook, iMac, PowerBook G3, PowerBook G4 and Power Mac G4 systems.

The Wi-Fi flaw, first exposed at the beginning of the Month of Kernel Bugs project, was discovered and reported by Metasploit's HD Moore. Apple confirmed that the issue is a heap buffer overflow that exists in the AirPort wireless driver's handling of probe response frames.

"An attacker in local proximity may be able to trigger the overflow by sending maliciously crafted information elements in probe responses," the company said in its advisory. The flaw does not affect systems with the AirPort Extreme card.

View: The full story
News source: eWeek

Report a problem with article
Previous Story

CPU wars to enter new level with 45nm Penryn in 2007

Next Story

No more replies from Google Answers

24 Comments

View more comments

So called 'Researchers' like Mr. Moore make money by selling their services to companies by saying "hey I found this issue in product xyz; I can help protect your systems from this issue".
Its bad that they release the details of the issues before companies get to fix it.

Hacking is big money money this days so sad.

how can apple release a patch for vulnerabilities in it's system, when mac os has never EVER had vulnerabilities?

it is a perfect system, with absolutely no flaws, unlike that other OS...

Quote - treemonster said @ #3
how can apple release a patch for vulnerabilities in it's system, when mac os has never EVER had vulnerabilities?

it is a perfect system, with absolutely no flaws, unlike that other OS...


I didn't realise Linux had flaws ? =-P

Quote - treemonster said @ #3
how can apple release a patch for vulnerabilities in it's system, when mac os has never EVER had vulnerabilities?

it is a perfect system, with absolutely no flaws, unlike that other OS...

Apple has identified potential risks in it's code and proceeded to patch these holes so that hackers, coders, or any other busy body cannot create a programme or script to take advantage of it! I think you should try OSX for a while and you will soon see it does have it's issues.

OSX doesn't have flaws, everything people see as flaws, are only perceptions of flaws, which are flawed perceptions. Once you believe in Mac you will understand this.

"Mega-patch" certainly is a relative term based on which fankid camp you are in: Apple fankids would consider this "mega" but Windows fankids would consider this about a medium sized patch hehe.

Quote - Mr_Mo said @ #5.1
What if the guy who made it passes away, and only he has the source code? Who will make the patches?

HAHA. Maybe Mr. Nibbles? I don't know. Let's just pray that does not happen. :-P

Nope, maybe only 2-4 flaws were... I don't know where has Apple found so many flaws in their product. This still means that their are making a great job.

It will be safer than Windows OS always. This is just true and you can't change that.

"Nope, maybe only 2-4 flaws were... I don't know where has Microsoft found so many flaws in their product. This still means that their are making a great job.

It will be safer than Mac OS always. This is just true and you can't change that. "


I can recall many a Mac fanboy pointing out the sheer number of patches to Windows as an obvious sign that Windows is full of bugs, and as such cannot possibly hold a candle to the Holy Glory that is Apple and their MacOS. Now that Apple is actually being more proactive with patching their OS, the tables are turned. Whereas Windows users say that the number of patches prooves MacOS is flawed, Mac users state that the number of patches prooves that Apple is ensuring the security of their product. How ironic!

Also, try not to confuse beliefs with truths. You can't state that MacOS is more secure than Windows unless you either swap MacOS and Windows marketshares at this moment and watch what happens over the next few years, or somehow run a complete code review on both operating systems. And then, assuming the review is perfect (it can't possibly be) you can make a valid comparison. Until then, these arguments will be nothing more than meaningless debate between religious fanbois on either side.

Come on guys, Apple doesn't want to let the public know about their flaws. What’s wrong with you blind fools. Apple will not release a patch until there are too much vulnerabilities to bare (hence 22). No they don't want the public to know that they are just as BAD! On the other hand, Hackers don't find interest when it doesn't have the better share of the market. Imagine that Apple had the better share of the market over MS. Hackers would have a field day....lol

Commenting is disabled on this article.