Apple shipped a mega-update of fixes for 33 serious security holes affecting Mac OS X users. The update patches 3rd-party components like Adobe’s Flash Player plug-in, Clam AV, MySQL and PHP. A separate update was released for Snow Leopard to fix Flash Player vulnerability. Among the components with serious security defects are Alias Manager, CarbonCore, ColorSync, CoreGraphics and ImageIO. It also includes a new version of Clam AV, available for Mac OS X Server v10.5.8, to fix multiple code execution flaws in the open-source anti-virus package. The new Flash Player plug-in fixes nine different vulnerabilities, the most serious of which could lead to computer takeover attacks via rigged Web pages, reports.
Download: Security Update 2009-005