it.ucsf.edu

Security Update: Apple Releases Updates to Address Several Vulnerabilities in Various Mac Operating Systems

Status Type

Security Update

Date and Time

Thursday, September 20, 2012 - 10:30

Reason

Security update due to several vulnerabilities.

Impact

OS X Snow Leopard, Lion and Mountain Lion users.

 

 

WHAT HAPPENED?
 
Apple released an update for OS X operating systems to address several vulnerabilities. The most severe vulnerability could lead to the disclosure of sensitive information.
 
Advanced Users: For a complete description of the security enhancements and affected software refer to APPLE-SA-2012-09-19-2 OS X Mountain Lion v10.8.2, OS X Lion v10.7.5.
 
 
AFFECTED SYSTEMS:
 

  • OS X Snow Leopard v10.6.8
  • OS X Snow Leopard Server v10.6.8
  • OS X Lion v10.7 to v10.7.4
  • OS X Lion Server v10.7 to v10.7.4
  • OS X Mountain Lion v10.8 and v10.8.1*

 
*Note:      Encryption and VPN compatible software for Mountain Lion has yet not been released.


However, if needed, you can use Mountain Lion now (as long as your computer is not currently encrypted) with the following understandings: (1) VPN is not officially supported yet for Mountain Lion, so you may experience some intermittent problems; (2) do not store any restricted data (e.g., patient info, social security, financial accounts) on the Mac until the encryption software become available; and (3) if you have a laptop, you will encrypt it once the compatible software is available.
 


WHAT'S THE PROBLEM?
 
Out of date operating system could be used to obtaining user credentials or other sensitive information, in addition to a denial of service.
 
 
HOW DO I PROTECT MY COMPUTER?
 
Update your software
 

  1. If you have a computer support coordinator (CSC), no action on your part is required.
  2. If you do not have a CSC or they do not support your computer, updates may be obtained from the Software Update pane in System Preferences, or Apple's Software Downloads web site.

 
 
RELATED LINKS