Slashdot Mirror


Security Updates, Notices for Mac OS X

Myrrh writes "eEye reports they discovered a heap overflow in QuickTime 6.5, which 'allows a remote attacker to reliably overwrite heap memory with user-controlled data and execute arbitrary code.' Now's a swell time to visit Apple and download the updates for both programs." Also, Apple today released Security Update 2004-05-03, which includes updates for AFP Server, CoreFoundation, and IPSec, and is, like the QuickTime 6.5.1 update, available via Software Update.

5 of 74 comments (clear)

  1. In fairness, though by mkavanagh2 · · Score: 5, Funny

    Mac OS X does get less security problems than any other OS..perhaps apart from BeOS, but I think we can guess why BeOS doesn't get holes found ;)

    1. Re:In fairness, though by prockcore · · Score: 5, Funny

      I think we can guess why BeOS doesn't get holes found

      Is it because no one is able to get their ethernet cards to work under BeOS?

  2. Hmm... by hookedup · · Score: 5, Funny

    'allows a remote attacker to reliably overwrite heap memory with user-controlled data and execute arbitrary code.' damn that apple, even their exploits are reliable!? i'm really thinking about making the switch..

    1. Re:Hmm... by ariel5000 · · Score: 5, Funny

      I don't know about you, but i think that the only reliable things about Windows are the exploits.

  3. bad updates by Anonymous Coward · · Score: 4, Funny

    so what are these updates going to break? let's start a pool.