Information Technology

Critical Apple Security Vulnerabilities

February 25, 2014

Apple has announced that all web browsers on iOS devices (including Safari and app versions of other browsers) and the Safari web browser only for Mac OS X 10.9 Mavericks have a security vulnerability. They have a flawed implelentation of the Secure Socket Layer (SSL) protocol. As a result, another device on your local wireless network may be able to intercept and read your SSL encrypted traffic. SSL is the most widely used security protocol on the Internet, used by virtually all shopping and banking sites, among many others.

iOS devices affected: iPhone 3GS and later; iPad 2 and later; iPod Touch fourth-generation and later.

Mac OS version affected: only OS X 10.9 Mavericks
Older versions of Mac OS X are not affected this includes - 10.8 Mountain Lion, 10.7 Lion and 10.6 Snow Leopard.

How to update iOS

On any iOS device, Go to Settings > General > Software Update and download and install iOS 7.0.6 (6.1.6 if you are running iOS 6).

Note that the update will not run if you have less that 50% battery power. The process takes about 10 minutes.

How to update Mac OS X 10.9.x Mavericks to the latest version

Click the Apple menu, then select Software Update. Install the OS X Update 10.9.2. A restart will be required.

Please contact the Help Desk with questions. Do not try to upgrade a College-owned Mac from OS X 10.8, 10.7 or 10.6 to 10.9 Mavericks without checking with the Help Desk first. We have a process to upgrade to Mavericks.