CHINA TOPIX

12/22/2024 12:49:23 pm

Make CT Your Homepage

Google's Project Zero Spots Three Mac OS X Vulnerabilities

google-logo

(Photo : Carlos Luna)

Google's Project Zero team has revealed three new vulnerabilities on Mac OS X, following its procedure of outing the bugs if the software developer does not fix them by 90 days.

This brings the total number of live vulnerabilities on the most recent version of Mac OS X to six, although one of these bugs might have been fixed in the recent 10.10 Yosemite patch.

Like Us on Facebook

Google updated Apple 90 days ago on 35 bugs, but most of them appear to be fixed. It is not clear why Apple has not updated its operating system to fix all the vulnerabilities, and has not responded to comments on when or if it will fix them.

Project Zero is part of Google's push to make the internet safe and software secure, by operating its own team of ex-hackers and security experts dedicated to finding exploits on all services and platforms.

The software giant reports its findings to the software company under examination and allows 90 days before publishing its findings. The publication should allow academic research into security and hacking, alongside pushing the software company in question to fix any vulnerabilities quicker.

Some software companies are irked by Google's gung-ho attitude when it comes to announcing unpatched vulnerabilities, including most recently Microsoft. The Windows provider claimed it had informed Google on a Patch Tuesday fix, but Google went ahead and announced the vulnerabilities two days early.

There are two sides to this however; Google set out to make sure Project Zero took no excuses, and it was sticking to the timeframe. Microsoft has been criticised for scheduling updates, rather than simply fixing bugs on its services.

Apple has not commented on Project Zero's findings.

Real Time Analytics