Date: Friday, September 9th, 2011, 14:20
Category: News, security, Software
On Friday, Apple also released Security Update 2011-005 for the Mac OS X 10.6 and 10.7 operating systems. The update, a 15.6 megabyte download, offers the following fixes and changes:
- Certificate Trust Policy:
Available for: Mac OS X v10.6.8, Mac OS X Server v10.6.8, OS X Lion v10.7.1, Lion Server v10.7.1
Impact: An attacker with a privileged network position may intercept user credentials or other sensitive information
Description: Fraudulent certificates were issued by multiple certificate authorities operated by DigiNotar. This issue is addressed by removing DigiNotar from the list of trusted root certificates, from the list of Extended Validation (EV) certificate authorities, and by configuring default system trust settings so that DigiNotar’s certificates, including those issued by other authorities, are not trusted.
Security Update 2011-005 requires Mac OS X 10.6.8 or later on the Mac OS X 10.6 end or Mac OS X 10.7.1 or later on the Mac OS X 10.7 end to install and run.