Apple Patches SSL Bug in OS X

Wednesday, February 26, 2014 @ 01:02 PM gHale


After patching its mobile operating system, Apple released an update that clears up the same vulnerability with OS X.

The bug made the SSL implementation vulnerable and would allow an attacker with a privileged network position to intercept and/or modify data in sessions protected by SSL/TLS.

RELATED STORIES
iOS 7 Patched, Other Devices at Risk
Apps Lack of Security
Apple iOS Hijacking Bug
Attackers Take Control: iOS 7 Bug

Researchers created test pages that OS X users could visit with Safari to see whether they were at risk. They recommended Firefox and Chrome use in the meantime as the bug did not affect those browsers.

Release notes for the OS X Mavericks v10.9.2 update did not mention foxing the bug, but after checking Apple’s security page it was clear the fix was in.

Users should update their systems as soon as possible.



Leave a Reply

You must be logged in to post a comment.