Apple is recommending that users of its AirPort wireless products patch their kit with a new firmware update designed to fix security issues related to Secure Sockets Layer (SSL), almost certainly to address the recent Heartbleed security flaw.
The firm posted a notice to its support website overnight detailing the AirPort Base Station Firmware Update 7.7.3. Apple said the update should be applied to all AirPort Extreme and AirPort Time Capsule base stations supporting 802.11ac, but said that other AirPort base stations do not require it.
Apple said the update "provides security improvements related to SSL/TLS". It does not explicitly mention the Heartbleed bug, but Heartbleed was found in the OpenSSL implementation of the SSL protocol.
The company also advised owners of the AirPort Extreme and AirPort Time Capsule products with 802.11ac that they may need to re-enable the Back to My Mac remote access service on their equipment after applying the update, if they use this service.
Back to My Mac enables users to remotely access files on their Mac or to remotely control it using screen sharing, akin to services such as GoToMyPC or LogMeIn.
The Heartbleed bug, discussed in the video below, potentially allows an attacker to steal data from the memory of a device or system running the flawed OpenSSL software and compromise the encryption protecting communications between it and other devices.
The OpenSSL implementation of the protocol is widely used in many routers and operating systems, including the Android smartphone platform.
Topological photonic chips promise a more robust option for scalable quantum computers
Cause-and-effect is not always straightforward in quantum physics
WSJ claims that staff have rubbed out bad reviews for $300 per review