Apple fixes dozens of holes with OS X security update
Apple released a Mac OS X security update on Thursday that contains fixes for more than two dozen vulnerabilities, including one in Safari RSS that could lead to arbitrary code execution and one in Remote Apple Events that could disclose sensitive information.
Also fixed are a vulnerability in AFP Server that could trigger a denial of service and vulnerabilities in Apple Pixlet Video, ClamAV, CoreText, Python, SMB, and X11 that could lead to arbitrary code execution. Another fix closes a hole in Printing that could allow a local user to get system privileges and one in DS Tools that could expose passwords to other local users.
Security Update 2009-001 can be obtained from the Software Update pane in System Preferences or Apple’s Software Downloads Web site.
So, you hear that all you Macheads out there? Go download the patches because if you don’t you will be r00t3d! And lose that smug sense of security superiority will ya? She ain’t as secure as you think…