Apple has released a new version of Mac OS X Snow Leopard which fixes a flurry of critical vulnerabilities that could lead to arbitrary code execution.
The new Mac OS X 10.6.8 contains 28 patches for vulnerabilities in both native and third-party components. For example, the included MySQL package has been updated to version 5.0.92, which addresses eight security issues, some of which critical.
OpenSSL has been updated to version 0.9.8r, fixing five arbitrary code execution flaws. Five remotely exploitable vulnerabilities have also been patched in QuickTime.
The new release contains only one kernel patch, for a denial of service issue that can only be exploited locally by an authenticated user.
In addition to vulnerability patches, the release also updates the XProtect definitions to detect the latest Mac Defender variants.
