14 DAY TRIAL // Apple has released Security Update 2011-005 for Mac OS X 10.7 Lion and Mac OS X 10.6 Snow Leopard, addressing an issue with fraudulent certificates issued by multiple certificate authorities operated by DigiNotar.
“Security Update 2011-005 is recommended for all users and improves the security of Mac OS X,” according to a technical document posted by Apple this weekend.
Weighing in at 15.59 MB for Lion users and at just 869 KB for Snow Leopard users, Security Update 2011-005 targets systems running Mac OS X v10.6.8, Mac OS X Server v10.6.8, OS X Lion v10.7.1, and Lion Server v10.7.1.
Without the patch, the aforementioned configurations may see “An attacker with a privileged network position … intercept user credentials or other sensitive information,” according to the Mac maker.
A detailed description is also offered:
“Description: Fraudulent certificates were issued by multiple certificate authorities operated by DigiNotar. This issue is addressed by removing DigiNotar from the list of trusted root certificates, from the list of Extended Validation (EV) certificate authorities, and by configuring default system trust settings so that DigiNotar's certificates, including those issued by other authorities, are not trusted.”
Languages supported by Security Update 2011-005 (Snow Leopard) and Security Update 2011-005 (Lion) include Deutsch, English, Français, Español, Italiano, Nederlands, Dansk, Norsk Bokmål, Polski, Português, Português Brasileiro, Pусский, Suomi, Svensk, Chinese, Japanese, and Korean.
Security Update 2011-005 can be downloaded and installed via Software Update preferences, or from Apple Downloads. Alternately, Softpedia readers can grab the update immediately via the link below.
Download Apple Security Update 2011-005 for OS X Lion (Free)
Download Apple Security Update 2011-005 for OS X Snow Leopard (Free)