It seems like only yesterday that I was blogging about an important security update from Apple. And wasn’t it just last week when we were discussing how boobytrapped images could infect your Mac, and how GarageBand could change your Safari browser’s cookie settings without asking permission?
Well, hot on the heels of these alerts Apple has issued another security update – Security Update 2009-04 – which is designed to stop hackers exploiting a flaw which could allow them to interrupt the BIND DNS server by sending a malicious update message.
Apple is recommending the security update for all users as it improves the security of Mac OS X. As they describe in the advisory which was published alongside the fix, if the vulnerability is not patched a “remote attacker may be able to cause the DNS server to unexpectedly terminate.”
My advice is that if Apple believes that this is serious enough to warn you about, it’s serious enough for you to take action and roll out the patch.
You can retrieve the update via Apple’s standard Software Update feature.