Leopard, Snow Leopard Security Update Address Font Issues, More

Mac OS X 10.6.5 and Security Update 2010-007 address a well publicized security threat where documents such as PDFs containing maliciously crafted embedded fonts could let an attacker remotely gain control over a user’s computer. Examples of how the flaw works were published by Core Security shortly before Apple’s updates were released.

The update also fixes a CoreGraphics-related issue where maliciously-crafted PDFs could be used to remotely gain control over a user’s computer, and addresses security flaws in the CUPS printing system, Directory Services, gzip archives, Image Capture, OpenLDAP and OpenSSL, PHP, QuickTime, Safari’s built-in RSS service, and more.

The security updates are included with the Mac OS X 10.6.5 update, and are available via Security Update 2010-007 for Leopard users. Both are available the Software Update application, or as downloadable installers at the Apple Support Web site.

[Thanks to khaled for helping sort through the security update.]

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

WIN an iPhone 16 Pro!