Access Keys:
Skip to content (Access Key - 0)

2014-02-25 - Apple Issues OS X Update to Address SSL Flaw

To: IT Partners; Mac Partners
Cc: IT-Leads
From: Andrew Munchbach
Date: 2014-02-25

Subject: Apple Issues OS X Update to Address SSL Flaw

Good Afternoon,

Apple has released a critical security updated for OS X Mavericks (10.9) and Mountain Lion (10.8) to address a flaw discovered in SSL/TLS. SSL (Secure Sockets Layer) is part of the TLS (Transport Layer Security) protocol and is used to encrypt sensitive information, often in a browser, as it traverses the Internet.

The flaw, as described by Apple, can provide "an attacker with a privileged network position [with the ability to] capture or modify data in sessions protected by SSL/TLS."

It is recommended that all OS X users update their machines as soon as possible.

Information on how to update your OS X machine can be found on Apple's website http://support.apple.com/kb/HT1338.

Those that need assistance updating OS X machine should contact their local IT support liaison or the IS&T Help Desk http://ist.mit.edu/help.

Regards,
Andrew

Andrew Munchbach
Network Security Analyst
Massachusetts Institute of Technology
IS&T | Operations & Infrastructure | Security Operations
security@mit.edu

http://ist.mit.edu/secure

IS&T Contributions

Documentation and information provided by IS&T staff members


Last Modified:

February 25, 2014

Get Help

Request help
from the Help Desk
Report a security incident
to the Security Team
Labels:
c-announce c-announce Delete
osx osx Delete
ssl ssl Delete
apple apple Delete
security security Delete
tls tls Delete
update update Delete
Enter labels to add to this page:
Please wait 
Looking for a label? Just start typing.
Feedback
This product/service is:
Easy to use
Average
Difficult to use

This article is:
Helpful
Inaccurate
Obsolete
Adaptavist Theme Builder (4.2.3) Powered by Atlassian Confluence 3.5.13, the Enterprise Wiki