Apple releases OS X security update to address critical Network Time Protocol issue
Apple has just released a critical security update for OS X users.
“Install this update as soon as possible,” Apple suggests in the update’s release notes. “This update addresses a critical security issue with the software that provides the Network Time Protocol service on OS X, and is recommended for all users.”
As noted by MacRumors, the update addresses a vulnerability that was discovered recently by the Google Security Team and highlighted by the U.S. government.
In a newly posted support document, Apple says that the update, through improved error checking, fixes several issues that existed in OS X’s Network Time Protocol daemon (ntpd) software that would have allowed a remote attacker to trigger buffer overflows and execute arbitrary code.
The security update can be downloaded now from the Updates tab in the Mac App Store. According to its support document, the update is available for Mac users running OS X Mountain Lion 10.8.5, OS X Mavericks 10.9.5, and OS X Yosemite 10.10.1.
See also: Op-Ed: Those bold Apple predictions for 2014 were largely off the mark, Walt Disney World to accept Apple Pay beginning this week, and Apple retail chief Angela Ahrendts posts holiday message of ‘hope and peace.’
