Apple - eWeek


Battery 500 Project Charged Up over All-Electric Cars
Charting the Final Frontier--Google Maps for Indoors
Get Smarter Technology on Your Mobile!
  Apple


Apple Issues Updated Security Fix



 By: Matt Hines
2006-03-17
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Apple story.


Rate This Article:
Poor Best
The computer maker releases an updated version of its recent security patch after some users report problems with the first version.

Apple released another version of the security patch it distributed on March 13 to users of its OS X operating system software, in order to address a problem reported with the update.

The company said it distributed the new patch, dubbed Update 2006-002 v1.1, in order to fix an issue with Apples Safari Web browser that some users observed after installing its 2006-002 security update.

According to a post on the companys Web site, the previous update had caused some Safari users to have problems launching the browser. Based on the post, the flaw specifically affected users who removed Safari from their computers applications folders before installing the 2006-002 patch.

Resource Library:
Apple originally released the 2006-002 patch in order to address a problem found in part of a broader security update released at the beginning of March.

The companys flagship Mac OS X operating is facing growing scrutiny over security issues and Apple introduced the first March update in order to address over a dozen specific vulnerabilities.

Click here to read more about security holes in Apples Safari Web browser.

The first security update from Apple in 2006 also came less than a week after the release of exploit code for a Safari browser flaw and the discovery of two worms affecting Mac OS X users.

In all, five Safari issues were addressed, including an "extremely critical" flaw that could allow remote code execution attacks if a user simply viewed a maliciously rigged Web page.

Ziff Davis Media eSeminars invite: Learn how to proactively shield your organizations against threats at all tiers of the network, Symantec will show you how, live on March 21 at 4 p.m. ET. Sponsored by Symantec.

A separate buffer overflow was also addressed in the way the WebKit application framework handles certain HTML, which could allow a maliciously crafted Web page to cause a crash or to execute arbitrary code as the user viewing the site.

Is Apple prepared to handle a real outbreak of malware? Read more here.

Apple also patched a third code execution hole in Safari that could let an attacker use JavaScript to trigger a stack buffer overflow.

Apple said Safaris security model prevents remote resources from causing redirection to local resources. "An issue involving HTTP redirection can cause the browser to access a local file, bypassing certain restrictions," the company said in the alert.

Check out eWEEK.coms for the latest news, reviews and analysis on Apple in the enterprise.



  Reader Comments: Apple Issues Updated Security Fix
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Apple Articles          >>> More By Matt Hines
 


x}ks㶲*Q3Co{)ٖ:c[>f*-EBc!)?=~bvKJc'cK@7Fw?I9surF5g6%E]"I~x(`\ϩIzNڶ? }~mksu;#|6%?w *s=NN5KxgMFlMe#k`p,FcwMd{9B ~5[6(CJez ZwO~Vh{⻶eMaoN w"Ntod9 Q>)*X^P~D;ǎ5~q 5~yf ;U'iS['5nCUVekV6^;s9ȹ׳z$nRvGn(Gd`jI:4G*"046S!p5\`p)jPX6tG,#H>!P;uIV@daS/*! lpa#j)y'CLjXEsؗ}Yͼ`F3l˸;4 @SKVUBX)ځ^rwwӽm˙[8ӼNǯ3jλ ? ?uh;XARy] Z }tvNzuvN4yvy/W@o&37`JLTRB`d" Pc@GGYuڇ5](E~W-b)ځVP]F[<," J2~̢J :OEuuyHutzxn |g)̠V*PFfЊ%+%2\u\_?]s\/;]rҹ"ǭVY; i OfɷV\vO^MnXCyC0-ߕRMRs~:\8.?HN‘,ɯ3`HBm۲ܺȑ\R yɽ+a(7f`X@7? eR2x&p* ߱n^S'G5ǯ/iVj5Vi?z[SĿ G/<@'LYp3Z&9T23=MHk 3!RBʼĿIK _VPJB-)\D7h+ԌTwIQQ#=^f/\R@2Al8{ØWҽTWws^ iغ\48?]7+De., s5ͷwjzaZTpx3jOWcҽ\t;6?`Ub}PhvZM]qsuTSt*Zl:׾RA^Tjr[hc2ud8԰:AGAticšwh4N@7h`C=҉:L~;ݣn]>&tfiXŞ+LPZi50C5m| &>r\l 8d$n)ssLn- σ5]ҽk:? a#0.Zm{$8ʼ E]ub3Bݷ|{ ޚꖭ,L<ģ̠O(~9-R;C1z" EEKy3@ $h5az.> ŊI^KHX-Vpp(6ݞH:sGn_-KEs㙰TL٣XB YX/_23CCɴaX9{DMfT`B[ụDKak`F\rA+ŲMCAIQTZUj5YQř9gCיg f߅#fL{dh{ ٚM> BB11 =w :'_ ۝.ç[N=\҃1 4fgܗ n'd50K%gYA3'|(@]4>+WePÃ"`"+42[̞v(֌f;,NrByOS*,, H@,gmdz[Oq)f$ ,4tOݡ~~UkCT]ٽh@r6ҞvaXZ @-ĿEi la-W0k^. )-P|U$"6XRvӱυ%2=CM"&7k7}SkhQ6qwbR5JȔmY;UKU4V>ڹa3 %P$wSJ$l%K wN:`3әǟGRlC2ӱD80V2PaIUU[23R%x#e\46L XbOF8]%0Z3-,*'5eGhJ35f"@0oʵ{Luzh< VвO[* R DwV~=KJAUc?$i?怚H|A2exL,`_C׶ݻlʠ::7HҜN!ȹg@**X- c"Dk_(+ `k~̧^۬f"w.BāGh<.X6[Po5=>Ȧ\Q݀+E)'.5 cd]XzmA4`D pHE&A|Z+hp L@U.(L19r2b*XPTB$&6t݀ĒbtXQ ]jsn.y >{VN0fA>yL J<|˰"U` |JZYPIb+ģYV WMUpn`{y~t=GhxZ `i@% p LM{jLwg ` Z7~,p,3iZH]bRYEGÙҚRzԃ!3~b_@URTҞ"9 AG^320";wF\!v̬q~q?Mqߎ3XAmŠk+sD ü z30Jјk5VΚ>9lv'G< hrõm7f>Dv? sc{~O ܬ:R.R r=ctSe}{c26w/UUNS<:h3$P@hOXM\ ?+78$<ML aƭbR/\f ?+:Tf#DU}5Oӑ?>nVɕGZV/fIC{EY(..%uP*jIIz$ :s\bke`WPF4`W&{ \x&\_{3Ƌ(bo(Q^rSW"6wD<7Ϩ;b}Nb4PG }f qg͋iv<n%ve#X׵I78CְS=#nƍj`.ӪV$$: <7{d]nUH&2%SS]5  qΟݚw}`>xIn:H墦Ak R;qG;a#rn&Q@Z#GYdQ.|eR)*`7$ɠK= j ;!O}+tSZ1wOX]dK!OWƒ"'!Z+53,qvë eVqe^?3Z cS7痟vvZU}{"}QL ޟpف#;?J䏝ǽ}R>I'4g_ ?t۽vb00Vi/JЏWK/4.i_q}R: *Xj7?p-6z_5ށ6 `i0~{@(}7{9Ee}A0lgg^hy- @$+^s.7>/ėt:g+~J/ZR1^R`.'Mype4)$Yy~|hq\1)6MF0Sk cj<72l&zAq\8`L\X5c-ɅH'B faD?fR,yy~¯nU2k~  I+U:9<  c@JA=o8nw/Ϛ_i%$C( `I/Щ c~?OFrA&zRG>egǭU3f~3Rt8|Qrw_[a(Kѷo9Aߐ>1KwxEp[(+h,6dsJ;t0?x>kwޗj? i^3_{"Ts 8z-ӤN)fTDXSaoy0;{8쀒N1LElOܢMF]nց9)ŔN yr< AGJ脊bye5))e3O5NRMLC]OC/$;+B:Tzs gaM6mn3gj?l6D20@u\d0 `qk5‰@P V-lj9l0`&0>9ͫ|1{~U*۞L #H1Ń O~ؑq eީӊNf|vu+KׅNo͗>W}1kyT̵jПdeNx?HАZ#=p>~挜003|{mv6|Of0>ovV8}'i?vݷ;޽sܾdO#@/lvm鼳~2> AY؞qnbLpX#Pzp~vƔI 3q#ĠHZsMs _56DN XW+iƿ_Bc#ZT^?1;lTƊ f™) W2 |cM-9&p$~M{fr+ (? ܻ'Vxe[bw[0| ttb9J[~>ːu9aٰN3O# fX,S"ʳl|YW E+m/rcqxX :"v009 ywV)ȶ pad΁KN[ {0BlI1y6bg@4f3R$L?ƑCXwF0n "9;r=ԲRN s}턜wk6lmax؁]xnHNܝ`~?r-]+]6; |y1qUqѝ`M3'Cq$e1X2Jx:,O'}3$mLp'D~0n!24,&Ra@Blod5i2Pq <:v ) \;M]1(6 epoGAZ{ζQy~nNؙ,N2GX!\jbX4%Z4b)Yz%.k=xqY{?Arsz*q4snT-87Yr3ƈل^$' !YvyT. Cg~yQԗuzA&OQPZpn(VhRbpb/?:\'EG"q&ŻI@ZfdI 'PBbRA<ݩZ9Iqy#H?\b[PQ1T'LzV5pާՇgIE O20`Y#VIJa._VkVM01\" b) `%XD9)ҔLs)屄h<vE.6ޠJJYRSz="*%O_Vk2ʳ\_g)7&`{:]WPT`EU!P@ JS:]`× RHФ񈗶FUXx.n< KN,dr|;fROt?%A@ko*U ZU@D"Ы`cVo6yI6)>>REN(K _( @ce-ZeHa$Y>1 Xr}1p 4Moҥ=Uyf;wY@FE[! O8`'*٨xۚU`MyBkE_A-ɴjgϡ6 % >QiH:-FY/H^O/ :â= LamL?^֙-Y?`P}d1^sb2VbnJq'dMNpNxaK)LE|/A$㷈&DCঀ_9~x U-;@+ٝ)]fw##bawǶ2V1cpX[YLH e _M Bag0‡bc" 1ʵm <~܉nW",p+Z4R䀲4>(C^PB^]’M=1I9꒚|Mm @¸~OZ} O]c)I%ˋ}AE!Lj𾠍e3)Mt{0Ub<ΩTh,ZNxVȥ+c.mZE%>%sZk^YR+Ȉz3fN֘1^h*B UٜA5ݏRU BI?UkZj>k`ms̴ܧ5̈ ZOkaf׵ZOkݵu3uci<1E7ZzLA% gnVu&r[wn9#On@1Oƌp'@c,kHܬH&2n-&~iX z>H'2t=jhܻDJդJd i]P)ρVPJj\=w(9 ίzȕժTjQܣF +(wп{{i/1~H++ɱK=̜9F;6CWѵ6ATJ{5YJ-h>#Թ_El_t[6Kg `EC:& )<]С reOJoIg4~X Pmļϴ@BSx#&Gd.$!qr5D;5 boEіIz# ,@' yꊍ\DQWB p5Z,#C}F.ZݳV׺ꢇU y &(u.4>F]==9$.+J" A΂5yn\vc3:ـ OScP.y-r9G}8޺xuUjJ 8 h0.pgj1U%R>&P9 dU {_]&:N% a k(E$Y cC̄ۈ) 0װÞ1*{:,نRǠ{QDi_21Fiŷn(l;b21C|>Oc(xʗIc*N,.J'EEt0w j9Cx΢nbJ ͍$u~fvK .X`SYej xpƧx}2=wcܕeZ5T=0 0Y:ovN+' @=:ςu s!aZ;<'Q׏IB uXRFB(s +3$c 3Vú~: _F`3W VjE)OBӾRs]j)q^]y}MРYV^*_8ӄ^I+\A / PIZ  W{}K1uu0 }a3bruyg_I4UEGW^sA[gk<m-[8j?V99\~9i_.=sfbvO5mKLJrdeAN.-f(D3\h^Epɂwᝥ%;顱8?^;|;[C)Qe3ʋ, Q~4ab_1o_]-Zq ƋxY53;mfx9j0}=W܄bQ:kH碕k&5+<v<(3ʿB׌+(Z]~NmfwQ[]~ 48neAI}>@?d'(kWsqF9?ϴ/2ʡ_3fy,@ }3sgy2zg(Q~ dCyF9E^\dEuw@t2OK'C\\f%Utn]_埀>eg(U}3s::3/9IR< 9k^픊0kfK " SV9,.N2kP g  ~-22B @n~_ }y9N+ťW*7YKxM}%kk[J1nvd}G{1>2y&se^>&c˼$=)>w槤Ix崝#&JRW喛O'ikr(%s<2g.g}=* t=}}“w"X̽p'eybAV-c#m~L((.v뻸)n7pKSG09nsOkr>u<[~|^YپGh %OsWYf-Jaġ${xx9|#xC/+/gu޿tك Һh/Z3 쓭?u}NoM:I< ^a`/xIO1EL=C}54]NWi8tď;#p} t6EM++J9wwrDa3="BQ]FTMVYI2ZYrF(RB4|;ӌW)57tSsMqkqB4[Po6@cmc߻E{ -#x u1. c@]A q; 7tgG=ם,PĚq˺wh/'O!N6NH^̈́&S! x^BD6B?ˌ;a!4.&_2A>=KkK]v`& 1<>˹ILƎ$z Ysb{PN<>x8" ,D*9"Qo P @EikN?jwH3ۉz N&%˷}YQ v|.yzhFʪv\|=N^T~7)B4w^|7(6؆|!Og ϻHjO(tI`R1|0j;;1TeΝ[QYɶz S~n^(Co݂k\+<>ciX)fzc< znG}4צJu A]=_vs[܋;ξ!V Yf#Ss, ɤ{)̅Fda'Z.2?‚g' Q\F$/(ylHbK9m5'0X1'(RLf7=M`N*)Asa#Dl [ApV7.]28LgѸbbV+55%ӫrtl#^"|fna*aH3Ay$O>A@`U\3zf7ZS5gZB܍]S 9!j1Bi6aY1bRrYW`0-Z.<̳(`,$v"VKjMΡmdpR!EfƲ 7cP.Xd]-'oB@w:S .xBG,?ɋ|P S99.@OI"cXM1}aE|R