Apple patches the Mac’s ‘goto fail’ security hole

February 26, 2014, 1:54 AM UTC
Source: Apple Inc.

FORTUNE — For all the fuss stirred up by the press and the cybersecurity community, we’ll probably never know what kinds of secrets — if any — flowed through the security hole in the operating systems of millions of Macs between Friday, when the fact of its existence was inadvertently revealed, and Tuesday afternoon, when it was nailed shut with the release of the latest version of OS X Mavericks.

Apple (AAPL) was as tightlipped as usual. The fix was slipped into OS X 10.9.2, a previously scheduled software update that offered users a long list of improvements (see below) but made no mention of the famous “goto fail” bug.

Reporters were alerted only that the “recent SSL issue” had been addressed.

Below: Apple’s OS X 10.9.2 Release Notes.

The 10.9.2 update is recommended for all OS X Mavericks users and contains improvements to the stability, compatibility and security of your Mac.

This update:

• Adds the ability to make and receive FaceTime audio calls
• Adds call waiting support for FaceTime audio and video calls
• Adds the ability to block incoming iMessages from individual senders
• Improves the accuracy of unread counts in Mail
• Resolves an issue that prevented Mail from receiving new messages from certain providers
• Improves AutoFill compatibility in Safari
• Fixes an issue that may cause audio distortion on certain Macs
• Improves reliability when connecting to a file server using SMB2
• Fixes an issue that may cause VPN connections to disconnect
• Improves VoiceOver navigation in Mail and Finder

For detailed information about this update, please visit:
For detailed information about the security content of this update, please visit:

See also: