Apple issues Mac OS X security update
Update addresses potential denial-of-service vulnerabilities as well as a flaw in QuickTime.
Apple has released a security update that fixes several flaws in its Mac OS X operating system. The update, named Security Update 2004-09-30 but released Monday, addresses potential denial-of-service vulnerabilities in the AFP server and CUPS printing module as well as a flaw in QuickTime that could allow malicious code to be executed via a buffer overrun. The patch also fixes a CUPS flaw that could allow user passwords to be displayed in a printer log. The company credits an employee in the IT department of Glasgow Caledonian University for reporting the flaw.
The computer maker issued fixes for both Mac OS X 10.2 Jaguar and Mac OS X 10.3 Panther. Some of the flaws affect both versions of Mac OS X, while others occur only in Panther.