Apple Patches Kaminsky DNS Vulnerability

Posted by kdawson on Friday August 1, 2008 @12:48AM from the cache-me-if-you-can dept.

Alexander Burke writes "Apple has just released Security Update 2008-005, which patches BIND against the Kaminsky DNS poisoning issue. 'This update addresses the issue by implementing source port randomization to improve resilience against cache poisoning attacks. For Mac OS X v10.4.11 systems, BIND is updated to version 9.3.5-P1. For Mac OS X v10.5.4 systems, BIND is updated to version 9.4.2-P1.' It also closes the script-based local privilege escalation vulnerabilities, the most common examples of which were ARDAgent and SecurityAgent, and addresses other less-publicized security issues as well." A few days back we noted Apple's tardiness in fixing their corner of this Net-wide issue.

3 of 89 comments (clear)

Min score:

Reason:

Sort:

Re:Good job apple by catwh0re · 2008-08-01 03:05 · Score: 3, Insightful

other than that silly largest music retailer in the usa thing they've been toying with for a while.
Re:No patch for OS X 10.3 ? by Macthorpe · 2008-08-01 03:50 · Score: 2, Insightful

Well, Microsoft, a company famed around here for 'planned obsolescence', managed to patch both XP and 2000. You'll note that both of those are more than 7 years old.

--
"It does not do to leave a live dragon out of your calculations, if you live near him." - Tolkien
Re:No patch for OS X 10.3 ? by MobyDisk · 2008-08-01 04:45 · Score: 2, Insightful

I really am surprised that they patched Windows 2000. But Microsoft has never released an OS to replace XP yet. :)