Yesterday, Apple released Security Update 2014-002\u00a0for OS X with patches for 13 vulnerabilities.<\/p>\n
This update is available for: OS X Lion v10.7.5, OS X Lion Server v10.7.5,\u00a0OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.2.<\/p>\n
Unfortunately, Apple has stopped releasing security updates for Snow Leopard, the 2009 edition operating system.<\/p>\n
MORE: What to Do if Your Mac Can’t Run OS X Mavericks<\/a>\u00a0<\/strong><\/p>\n The security-only update addresses multiple security flaws, including a vulnerability in its Secure Transport\u2014Apple’s\u00a0API mechanism for making SSL or TLS connections\u2014that made it possible for “an attacker to establish two connections which had the same encryption keys and handshake, insert the attacker’s data in one connection, and renegotiate so that the connections may be forwarded to each other,”\u00a0Apple noted<\/a>.<\/p>\n Apple’s security advisory further described its impact, saying, “An attacker with a privileged network position may capture data or change the operations performed in sessions protected by SSL.” Apple credited members of the Prosecco research team at Inria Paris for reporting the flaw<\/a>\u2014Antoine Delignat-Lavaud, Karthikeyan Bhargavan and\u00a0Alfredo Pironti.<\/p>\n In correlation with the release of Security Update 2014-002, Apple also patched its iOS and Apple TV implementations of Secure Transport with iOS 7.1.1<\/a> and Apple TV 6.1.1<\/a>.<\/p>\n Security Update 2014-002 addresses the following vulnerabilities:<\/p>\n We strongly encourage all Mac users to download and install all security updates as soon as possible \u2013 it is an essential layer of security that keeps your digital life secure.<\/p>\n You can update through Apple\u2019s Software Update tool by choosing\u00a0Apple menu<\/strong>\u00a0>Software Update<\/strong>\u00a0when you\u2019re ready to install, or you can\u00a0go directly to Apple\u2019s support page to download the updates from there.<\/p>\n For OS X Lion Server users, you can\u00a0go here to download<\/a>\u00a0the 177.2 MB update.<\/p>\n OS X Lion users can\u00a0go here to download<\/a>\u00a0the 126.9 MB update.<\/p>\n OS X Mountain Lion users can go here to download<\/a> the 135.9 MB update.<\/p>\n OS X Mavericks users can go here to download<\/a> the 80.5 MB update; this update also includes Safari 7.0.3<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":" Yesterday, Apple released Security Update 2014-002\u00a0for OS X with patches for 13 vulnerabilities. This update is available for: OS X Lion v10.7.5, OS X Lion Server v10.7.5,\u00a0OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.2. Unfortunately, Apple has stopped releasing security updates for Snow Leopard, the 2009 edition operating system. MORE: What to Do if […]<\/p>\n","protected":false},"author":4,"featured_media":8813,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"spay_email":"","jetpack_publicize_message":"","jetpack_is_tweetstorm":false},"categories":[5],"tags":[3151,261,976,973],"yoast_head":"\n\n\n\n\n\n\n\n\n\n\n\n\n\t\n\t\n\n\n\t\n\t\n\t\n\n