Apple Releases Security Update 2010-005

Apple has released an important security update for Mac OS 10.5 and 10.6 users. This security update, dubbed 2010-005, carries a host of important patches as well as a series of preemptive bug fixes. Among the many items addressed in the update is a revision to Apple Type Services or ATS. Similar to the recent PDF exploit uncovered in Apple’s mobile iOS platform, a malicious font within a document could lead to arbitrary code execution on a user’s machine. Apple has also remedied an issue in CoreGraphics which appears to be the Mac OS X equivalent of the iOS4 PDF bug.

This important update also carries fixes to PHP and Samba, and improves user security from middleman based network attacks. Apple urges users of Leopard and Snow Leopard client and server editions to install the update. Users of 10.6 Client can download the update manually here, or find it by running software update from the “Apple Menu.” All versions of the security update can be seen here, though the page will update over time. As always, we recommend that you run a quick Time Machine backup prior to any updates.

Image Credit: Master Lock