Another day, another security update from Apple

It seems like only yesterday that I was blogging about an important security update from Apple. And wasn’t it just last week when we were discussing how boobytrapped images could infect your Mac, and how GarageBand could change your Safari browser’s cookie settings without asking permission?

Well, hot on the heels of these alerts Apple has issued another security update – Security Update 2009-04 – which is designed to stop hackers exploiting a flaw which could allow them to interrupt the BIND DNS server by sending a malicious update message.

Apple is recommending the security update for all users as it improves the security of Mac OS X. As they describe in the advisory which was published alongside the fix, if the vulnerability is not patched a “remote attacker may be able to cause the DNS server to unexpectedly terminate.”

My advice is that if Apple believes that this is serious enough to warn you about, it’s serious enough for you to take action and roll out the patch.

You can retrieve the update via Apple’s standard Software Update feature.

Found this article interesting? Follow Graham Cluley on Twitter, Mastodon, or Threads to read more of the exclusive content we post.

Graham Cluley •   @gcluley

Graham Cluley is an award-winning keynote speaker who has given presentations around the world about cybersecurity, hackers, and online privacy. A veteran of the computer security industry since the early 1990s, he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows, makes regular media appearances, and is the co-host of the popular "Smashing Security" podcast. Follow him on Twitter, Mastodon, Threads, Bluesky, or drop him an email.