Apple Releases 'Highly Critical' Patch

Toothpick writes "Apple Insider reports that a new security update is available for download from Apple. This addresses issues identified in sudo, Safari, and OpenSSL among others. The gory details are, predictably, available on the Apple Info site." Commentary from ZDNet is also available.

Not really

[sam_paris]

"Highly critical"??

If you think about it, it's not really highly critical at all, mainly because the odds are that there will be no programs written that exploit these security flaws. If these were Windows flaws then yes, it would be critical as you could bet a virus would be written within the week that exploited them.

I bet you could leave your OSX system unpatched for years without ever really being at risk.

Re:How is this news?

[frankie]

No, that doesn't cut it. Any time any major OS has a remote "arbitrary code execution" vulnerability (and privilege escalation too), that is by definition a critical problem. In this case, the haters are absolutely right: Mac users will probably get away unscathed because we aren't a big enough target for crackers to write a 0-day exploit. If more bad guys knew how to code for OSX, a lot of iMacs would be toast right now.

I'm definitely disappointed with Apple's dev team. They should have caught these things long ago.