Apple automates bug update for Macs

Mike O'Dell mo at ccr.org
Wed Dec 24 14:17:26 CST 2014


I believe the Apple update was a bona fide emergency.

It fixed a remotely exploitable bug in NTP and given
that essentially every Mac either runs that code or at
least has it on-board even if it's not running, had it been
my decision, I'm pretty sure I would have agreed to use 
the mechanism which has apparently been there for some 
time now but never used before now.

I suspect there are a lot of Linux boxes out there which
are vulnerable and will be for quite some time.

    -mo


More information about the Tacos mailing list