• Your favorite

    Apple

    ,

    iPhone

    ,

    iPad

    ,

    iOS

    ,
    Jailbreak
    , and
    Cydia
    site.
  • OS X Security Update Fixes RSS Vulnerability.


    Apple has seeded Security Update 2009-001 via the Software Update utility. Among the many various things that are updated this security update patches the Safari RSS vulnerability that we covered back in January.
    Safari RSS

    CVE-ID: CVE-2009-0137

    Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.6, Mac OS X Server v10.5.6

    Impact: Accessing a maliciously crafted feed: URL may lead to arbitrary code execution

    Description: Multiple input validation issues exist in Safari's handling of feed: URLs. The issues allow execution of arbitrary JavaScript in the local security zone. This update addresses the issues through improved handling of embedded JavaScript within feed: URLs. Credit to Clint Ruoho of Laconic Security, Billy Rios of Microsoft, and Brian Mastenbrook for reporting these issues.
    To read full details of this security update please visit the Apple info page.

    Other things that were updated at the same time include Safari 3.2.2 which patches the same RSS vulnerability as Safari OS X and also a Java Update which improves security and compatibility of Java on Mac OS X.
    This article was originally published in forum thread: OS X Security Update Fixes RSS Vulnerability. started by Cody Overcash View original post
    Comments 6 Comments
    1. rockjohn's Avatar
      rockjohn -
      I just did the update and now my keyboard or track pad dont work on my mac book air
    1. sziklassy's Avatar
      sziklassy -
      Quote Originally Posted by rockjohn View Post
      I just did the update and now my keyboard or track pad dont work on my mac book air
      That's unfortunate... any luck getting it to work again? I am kinda scared to update on my MacBook now... What's with all of these terrible updates breaking things that are working fine nowadays?
    1. Poseidon79's Avatar
      Poseidon79 -
      My Air is still on 10.5.5 so this update doesn't affect me but please report about the keyboard and track pad issue in case I wanna update.
    1. tha5150's Avatar
      tha5150 -
      kinda interesting, my macbook has been acting weird and slow since last week when i tried installing a copy of photoshop and iWork 09. maybe one of the issues we were all warned about snuck into my macbook. either way i am installing a fresh copy of Leopard as we speak.
    1. danno2022's Avatar
      danno2022 -
      i just tried installing this update but an error popped up stating the file or some crap had been compromised or tampered with since Apple put it out. So it did not install, thankfully since you guys are having problems with it. Hopefully this gets addressed soon.
    1. rockjohn's Avatar
      rockjohn -
      it works now i had to reinstall the leopard back up discs im glad my itunes and stuff is still on my hd