Apple will not provide a security update for the DigiNotar breach to people with systems running Mac OS X 10.5 or older.
Apple issued a fix for newer versions of the Mac platform on Friday to mitigate the potential threat of the DigiNotar break-in, which resulted in fraudulent certificates being issued for a number of domains, including Google.com.
Older versions of the operating system, such as Tiger and Leopard, have been left unpatched from the vulnerabilities that could potentially lead to a man-in-the-middle attack, whereby an intruder can intercept credentials or other sensitive data.
It is the first time that the company has not issued core security updates to the Leopard and Tiger versions of the OS, leaving a question mark over whether it will deliver other security updates for the platforms in the future.
...
People using PowerPC machines with older versions of the operating system can reduce the risk of an attack by manually deleting the DigiNotar Root CA certificate from within Apple's Keychain Access app.
