Apple Updates AirPort Base Station With 2 Bug Fixes, 1 Security Fix

Apple released AirPort Base Station Update 2010-001 Wednesday, an update that brings Airport Utility to version 5.5.1. The update squashes two bugs and includes a security fix.

Apple’s patch notes on the two bug fixes:

  • Not importing all settings when importing a configuration.
  • Not propagating MAC address control lists when using an extended network.

The security patch addresses an issue that would have allowed an unauthorized user to connect to an otherwise restricted network.

  • CVE-ID: CVE-2009-2822
    Available for: Mac OS X v10.5.7 or later, Windows 7, Vista, XP
    Impact: An unauthorized user may be able to connect to a restricted network that uses a network extender
    Description: An AirPort administrator may restrict access to a network by specifying a MAC address ACL. There is an issue where MAC address ACLs are not properly propagated to network extenders. This can allow an unauthorized user to access a network that should be restricted via the MAC address ACL. This update addresses the issue through improved distribution of settings to network extenders. Credit to Guido Lamberty for reporting this issue.

The update is a 12.1MB download through Software Update for Intel Macs in Snow Leopard.