Apple issues OS X security update with fix for 'FREAK attack'<div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even" property="content:encoded"><p class="intro">Apple has issued a number of new security updates for
OS X. The issues addressed in the update include
iCloud Keychain and the recent "FREAK attack" SSL/TLS vulnerability.</p> <!--break--> <p>Security Update 2015-002 fixes issues on
OS X Yosemite 10.10.2, as well as OS X 10.8.5 and 10.9.5. Issues addressed include a bug that would allow a malicious or compromised application to find the address of the kernel, as well as an issue that could allow programs to run arbitrary code with systems privileges.</p> <p>Apple detailed their fix for these problems, along with the "FREAK attack" on their
support page:</p>
<p>Secure Transport accepted short ephemeral RSA keys, usually used only in export-strength RSA cipher suites, on connections using full-strength RSA cipher suites. This issue, also known as FREAK, only affected connections to servers which support export-strength RSA cipher suites, and was addressed by removing support for ephemeral RSA keys.</p>
<p>For more on this security update, you can see Apple's support documentation at the link below.</p> <p>Source:
Apple Support</p> </div></div></div><div id="comment-wrapper-nid-30442"></div><img width='1' height='1' src='
http://tipb.com.feedsportal.com/c/33998/f/616881/s/443c4b78/sc/4/mf.gif' border='0'/><br clear='all'/>
<a href="
http://da.feedsportal.com/r/223514802215/u/49/f/616881/c/33998/s/443c4b78/sc/4/rc/1/rc.htm" rel="nofollow"><img src="
http://da.feedsportal.com/r/223514802215/u/49/f/616881/c/33998/s/443c4b78/sc/4/rc/1/rc.img" border="0"/>[/url]
<a href="
http://da.feedsportal.com/r/223514802215/u/49/f/616881/c/33998/s/443c4b78/sc/4/rc/2/rc.htm" rel="nofollow"><img src="
http://da.feedsportal.com/r/223514802215/u/49/f/616881/c/33998/s/443c4b78/sc/4/rc/2/rc.img" border="0"/>[/url]
<a href="
http://da.feedsportal.com/r/223514802215/u/49/f/616881/c/33998/s/443c4b78/sc/4/rc/3/rc.htm" rel="nofollow"><img src="
http://da.feedsportal.com/r/223514802215/u/49/f/616881/c/33998/s/443c4b78/sc/4/rc/3/rc.img" border="0"/>[/url]
<img src="[url]http://da.feedsportal.com/r/223514802215/u/49/f/616881/c/33998/s/443c4b78/sc/4/a2.img" border="0"/>[/url]<img width="1" height="1" src="
http://pi.feedsportal.com/r/223514802215/u/49/f/616881/c/33998/s/443c4b78/sc/4/a2t.img" border="0"/><img src="//feeds.feedburner.com/~r/TheIphoneBlog/~4/eTFdK4fOlwY" height="1" width="1" alt=""/>
Source:
Apple issues OS X security update with fix for 'FREAK attack'
