Affiliate Disclosure
If you buy through our links, we may get a commission. Read our ethics policy.

Apple releases AirPort Base Station update with security fixes

Last updated

Apple on Thursday issued an AirPort Base Station firmware update to close a handful of security holes related to remote hacks, memory leaks and user data deletion.

Apple's AirPort Base Station Firmware Update 7.9.1 includes fixes for eight identified bugs impacting AirPort Extreme and AirPort Time Capsule base station hardware with 802.11ac connectivity.

Among the resolved security issues is a bug that allowed a remote attacker to leak memory through an errant out-of-bounds read capability.

Three denial of service issues were addressed in the patch, two of which could be triggered remotely through faulty code. The third involved a similar denial of service attack carried out by a bad actor in a privileged position. The problems were resolved through improved input validation and memory handling.

A null pointer dereference and a "use after free" issue were cited in a remote attack that could enabled a hacker to run code on a targeted device, while a separate issue allowed source-routed IPv4 packets to be unexpectedly accepted.

Finally, the update addresses an issue that left some some user information on a base station after performing a factory reset.

AirPort updates have been few and far between since Apple officially discontinued the line of branded wireless routers in 2018. The company last pushed out new software in 2017 to deal with the "KRACK Attack" vulnerability.

Apple's AirPort update can be performed through the AirPort Utility on Mac or iOS.



23 Comments

bobolicious 10 Years · 1178 comments

...hope springs eternal Apple will reintroduce this harware option in an upgraded version, at a base level adding USB3, and for pro use a 10GB enet option - what am I missing... ?

chasm 10 Years · 3626 comments

Apple does need to re-introduce AirPorts with full encryption, carrier privacy, and other security features, as well as updating to the current standards.

Soli 9 Years · 9981 comments

I'm with others that I'd pay well for an Apple mesh router system that had my privacy and security in mind. I'd even like to see Apple offer up their own DNS and VPN services from the router that keeps everything on your LAN away from those that wish to exploit your data, even if technically legal.

PS: Why does my Mac have to show me every WiFi SSID it can find? It should know that I'm likely looking for a particular one(s). Have those show up first and then increase the drop down to the other 50 around me that are printers, personal hotspots, and WiFi that are far away.

apple tree 10 Years · 29 comments

Kudos to Apple for supporting discontinued hardware. I'll keep using them for as long as they are functional.

plovell 15 Years · 826 comments

Kudos to Apple for supporting discontinued hardware. I'll keep using them for as long as they are functional.

Amen to that. I bought an extra to have as a spare (still in the shrinkwrap). And an extra Express too since that's what I use for music throughout the house.