[Macpartners] Apple Issues OS X Update to Address SSL Flaw
Steven M Burke
sburke at MIT.EDU
Tue Feb 25 14:45:53 EST 2014
Hi Andrew,
I just noticed that Apple dropped the 10.9.2 update. Does this include critical security update you are speaking of below?
Thanks,
-Steve
On Feb 25, 2014, at 1:44 PM, Andrew Munchbach <amunch at mit.edu> wrote:
> Good Afternoon,
>
> Apple has released a critical security updated for OS X Mavericks (10.9) and Mountain Lion (10.8) to address a flaw discovered in SSL/TLS. SSL (Secure Sockets Layer) is part of the TLS (Transport Layer Security) protocol and is used to encrypt sensitive information, often in a browser, as it traverses the Internet.
>
> The flaw, as described by Apple, can provide "an attacker with a privileged network position [with the ability to] capture or modify data in sessions protected by SSL/TLS."
>
> It is recommended that all OS X users update their machines as soon as possible.
>
> Information on how to update OS X can be found on Apple's website [http://support.apple.com/kb/HT1338].
>
> Those that need assistance updating OS X should contact their local IT support liaison or the IS&T Help Desk [http://ist.mit.edu/help].
>
> A copy of this notice can be found in The Knowledge Base: http://kb.mit.edu/confluence/x/CEYYCQ
>
>
> Regards,
> Andrew
> --
> Andrew Munchbach
> Network Security Analyst
> Massachusetts Institute of Technology
> IS&T | Operations & Infrastructure | Security Operations
> security at mit.edu
>
> http://ist.mit.edu/secure
>
More information about the Macpartners
mailing list