Apple Inc. patched 40 vulnerabilities in Mac OS X yesterday — more than half of them labeled with the company’s equivalent of "critical" — and in the process broke the 250-bug bar for the year.
Collectively dubbed Security Update 2008-007, the fixes patched flaws in Finder, QuickLook, ColorSync and a host of open-source components that Apple integrates with its own code, including the libxslt library and vim. "While this seems to have an abnormally high number of patches for third-party software," said Andrew Storms, director of security operations at nCircle Network Security Inc., "it’s become par for the course from Apple." Apple releases another mega-patch for Mac OS X
From around the Web
- Users not patching third party apps
- Mozilla patches 12 Firefox bugs, a third of them critical
- IE 7 and 8 Default Security Leaves Intranets At Risk
- Microsoft ships fixes for Excel, WordPad malware attacks
- 15 Firefox addons for Web developers
- Windows 7 will nag users 29% less often, Microsoft claims
- Vista7 more secure than Linux and Mac OS X
- Conficker self updates, launches false infection alert
- SSH server attacks resurface
- Hacking Tools & Techniques and How to Protect Your Network from Them
- Microsoft Black Tuesday: Microsoft finally fixes Excel zero day, plus more
- Conficker self updates, launches false infection alert
- Conficker reprogrammed for new attack run
- Rogue security software a rising threat
- Further Windows 7 features revealed