Apple Patches 25 Security Holes in Mac OS X

Apple patched some 25 security holes in various flavors of Mac OS X Thursday by releasing Security Update 2006-003. Issues addressed include a Safari problem that could allow owners of a malicious Web site to run an application on a useris system, several issues involving maliciously created image files, security holes in Mail.app, one basic buffer overflow problem, issues involving keychain, and more.

Appleis release notes:

Security Update 2006-003 is recommended for all users and improves the security of the following components.

  • AppKit
  • Bom
  • CFNetwork
  • CoreFoundation
  • CoreGraphics
  • curl
  • Finder
  • Flash Player Plug-in
  • ImageIO
  • LaunchServices
  • Mail
  • Preview
  • QuickDraw
  • Ruby
  • Safari
  • securityd

You can find details on each of the issues patched at Appleis support Web site. The update can be downloaded through Mac OS Xis Software Update control panel, and for Mac OS X 10.4.x, the file is a 12.5MB download.

Thanks to TMO reader Alan for the heads up on the update.