You might recall that Google disclosed a very serious vulnerability in OS X last week. It turned out that I only found one of them. There is another two issues that are mentioned by Google’s “Project Zero” which aims to find security vulnerabilities in various operating systems and software. Then it gives the OS vendor 90 days notice to patch the issues before publishing their findings to the public.
Now the good news. It appears one has already been patched and iMore reports the remaining two are fixed in OS X 10.10.2, which is currently in developer testing. Here’s some more good news. None of these exploits can be used remotely. That means they’d need to be combined with remote exploits or with physical access to the hardware to be a real threat. Still, it’s a safe bet that someone is trying to do just that as we speak.
I should note that OS X 10.10.2 has gone through six betas at last count which suggests that Apple is putting a lot of time and effort into making sure this release is solid. No doubt this effort is happening because OS X Yosemite had such a rocky launch including having serious issues with WiFi. One can hope that this update to OS X makes an appearance soon and not only fixes that, but make the users of the OS more secure.
UPDATE: A report from iMore indicates that whenever OS X 10.10.2 appears, it will also include fixes for the Thunderstrike exploit as well as the Spotlight bug that exposes you to spammers according to 9to5Mac. One hopes that it appears soon.
Like this:
Like Loading...
Related
This entry was posted on January 26, 2015 at 8:39 am and is filed under Commentary with tags Apple, Google. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Apple To Fix Security Issue Raised By Google In OS X 10.10.2 [UPDATED]
You might recall that Google disclosed a very serious vulnerability in OS X last week. It turned out that I only found one of them. There is another two issues that are mentioned by Google’s “Project Zero” which aims to find security vulnerabilities in various operating systems and software. Then it gives the OS vendor 90 days notice to patch the issues before publishing their findings to the public.
Now the good news. It appears one has already been patched and iMore reports the remaining two are fixed in OS X 10.10.2, which is currently in developer testing. Here’s some more good news. None of these exploits can be used remotely. That means they’d need to be combined with remote exploits or with physical access to the hardware to be a real threat. Still, it’s a safe bet that someone is trying to do just that as we speak.
I should note that OS X 10.10.2 has gone through six betas at last count which suggests that Apple is putting a lot of time and effort into making sure this release is solid. No doubt this effort is happening because OS X Yosemite had such a rocky launch including having serious issues with WiFi. One can hope that this update to OS X makes an appearance soon and not only fixes that, but make the users of the OS more secure.
UPDATE: A report from iMore indicates that whenever OS X 10.10.2 appears, it will also include fixes for the Thunderstrike exploit as well as the Spotlight bug that exposes you to spammers according to 9to5Mac. One hopes that it appears soon.
Share this:
Like this:
Related
This entry was posted on January 26, 2015 at 8:39 am and is filed under Commentary with tags Apple, Google. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.