Computing Facilities    links to the SCS and CMU home pages Carnegie Mellon School of Computer Science Carnegie Mellon University
 
Advanced search tips 
 Documentation
 » Introduction to Facilities 
 » Accounts & passwords 
 » AFS 
 » Application software 
 » AV help 
 » Backups & restores 
 » Calendaring 
 » E-mail 
 » Networking 
 » Printing 
 » Purchasing 
 » Resource management 
 » Security 
 » Software licensing 
 » Support charges 
 » Web publishing 
 » Your health 
 » Mac support 
 » Linux support 
 » Windows PC support 

MacOS X Vulnerabilities Patches Released

MacOS X Vulnerabilities Patches Released

In response to the recent Mac OS X security vulnerabilities, Apple has released update patches which address the security issues found in Apple MAIL and Safari web browser.

In Apple MAIL this update addresses the issue by presenting Download Validation with the entire file, providing more information for Download Validation to detect unknown or unsafe file types in attachments.

In Safari web browser this update addresses these security issues by preventing the condition causing the overflow and by performing additional bounds checking. The update also addresses the issues by preventing cross-domain HTTP redirects and performs additional download validation so that the user is warned, in Mac OS X v10.4.5, or the download is not automatically opened, in Mac OS X v10.3.9.

Simple instructions for installing the update patches can be found at: http://docs.info.apple.com/article.html?artnum=106704

For a detailed description of the bug fixes visit: http://docs.info.apple.com/article.html?artnum=303382

If you have any questions or concerns regarding these patches, please contact the SCS Help Desk, x8-4231 or send mail to help+@cs.cmu.edu.

Thank you for your attention,

SCS Help Desk