Apple Computer has issued a security patch to correct
problems in its previous security update and to plug new security
holes.
Earlier this month, Apple released a security update for its Mac
OS X operating system that addressed 20 security
vulnerabilities.
The download included a file validation system to protect
Apple’s Safari web browser, Apple Mail client and iChat instant
messaging platform.
However, Apple has found that users are wrongly being warned
when downloading safe files, such as Word documents and files
containing custom icons.
Apple said the latest security update fixed this “false
positives” problem. In addition, Apple admitted that the new
validation system allowed users to open some potentially malicious
files without any warning. This problem has also now been
fixed.
The new security update also fixes a newly discovered buffer
overflow threat in Apple Mail, which could allow remote attackers
to run arbitrary code on a user’s machine.
A second new flaw in the update closes a JavaScript flaw in Mac
OS X, which could allow Mac users to be open to rogue files hosted
on a malicious website.