Security researchers plan to release details of previously undisclosed Mac OS X or Apple application security bugs every day in January. The Month of Apple Bugs project is the brainchild of Kevin Finisterre and the folks behind November's Month of Kernel Bugs (MoKB (http://projects.info-pull.com/mokb)) project.

The security researchers told (http://blog.washingtonpost.com/securityfix/2006/12/january_2007_month_of_apple_bu.html) the Washington Post that, as with Apple bugs featured during the MoKB project, Apple would receive no advanced notice of the forthcoming security problems. The security researchers hope to use the project to dispel the perception that Apple systems are free of the security bugs that have long plagued Windows users.

"OS X users still think their system is bulletproof, and some people are interested on making it look that way," LMH of the MoKB project told (http://blog.washingtonpost.com/securityfix/2006/12/january_2007_month_of_apple_bu.html) the Washington Post.

Quite what Apple's response to the project might be, or how much will come of it, remains unclear. A planned month of Oracle Database bugs protect due to take place this month was cancelled almost as soon as it was announced. Cesar Cerrudo, founder and chief exec of the Argeniss Security Research Team, is yet to publically explain why he dropped the protect, which was designed to push Oracle into releasing software fixes more quickly.

Back in the present time, Apple posted a Mac OS X security update on Tuesday (2006-008 (http://docs.info.apple.com/article.html?artnum=304916)) which fixes a security bug that meant that whatever appeared on a users' web cam could be uploaded onto a remote server. Ooh er, Missus. ®

Related stories

Apple patches security hole in QuickTime (2 May 2007)
http://www.channelregister.co.uk/2007/05/02/apple_quicktime_patch/
Safari zero-day exploit nets $10,000 prize (20 April 2007)
http://www.channelregister.co.uk/2007/04/20/pwn-2-own_winner/
MS culls Patch Tuesday litter (8 January 2007)
http://www.channelregister.co.uk/2007/01/08/ms_trims_patch_tuesday/
Month of Apple Bugs scheme yields first fixes (5 January 2007)
http://www.reghardware.co.uk/2007/01/05/apple_fixes_project/
Amazon.com reveals iLife '07 update due (4 January 2007)
http://www.reghardware.co.uk/2007/01/04/amazon_ilife_update/
Unpatched bug bites QuickTime (3 January 2007)
http://www.channelregister.co.uk/2007/01/03/quicktime_vuln/
DBAs brace for week of Oracle bugs (24 November 2006)
http://www.channelregister.co.uk/2006/11/24/week_of_oracle_bugs/
Unpatched bug bites Apple Mac OS X (22 November 2006)
http://www.channelregister.co.uk/2006/11/22/mac_zero_day_bug/
Unofficial patches defend against further IE flaw (3 October 2006)
http://www.channelregister.co.uk/2006/10/03/zero-day_ie_fix_encore/
Unpatched enterprise security bugs proliferate (24 August 2006)
http://www.channelregister.co.uk/2006/08/24/0-day_manace/
Five important fixes in MS December patch batch (15 December 2004)
http://www.theregister.co.uk/2004/12/15/ms_december_patch_batch/