Sparkle updated vulnerability: What you need to know!

Third-party update service Sparkle, combined with insecure network protocols and parsing, leaves some OS X apps open to person-in-the-middle exploits.

A vulnerability has been discovered in an open-source framework that many developers have been using to provide app update services for the Mac. That it exists at all is not good, but that it hasn't been used to perform any real world attacks "in the wild", and that developers can update to prevent it, means it's something you should know...

What feeling does this article give you?

#hashtags to follow:

Sparkle [+]    Mac [+]   

More #news: