[ISN] Apple unloads 47 fixes for iPhones, Macs and QuickTime

From: InfoSec News <alerts_at_private>
Date: Fri, 11 Sep 2009 03:28:26 -0500 (CDT)
http://www.theregister.co.uk/2009/09/11/apple_security_updates/

By Dan Goodin
The Register
11th September 2009

Apple has issued fixes for more than 47 security bugs in the Mac, iPhone 
and QuickTime media player, some that allowed attackers to take complete 
control of the underlying device.

The patches, which were released over a 24-hour period starting 
Wednesday, fix critical vulnerabilities in a variety software made both 
by Apple and third parties. OS X components included Alias Manager, 
CarbonCore, ClamAV, ColorSync, and CoreGraphics and Adobe Flash. The 
updates were available for both the Tiger and Leopard versions of the 
OS.

An update for the iPhone patched holes in CoreAudio, WebKit and 
MobileMail, among other things. A third update fixed four 
vulnerabilities in QuickTime, some of which allowed attackers to hijack 
a machine by tricking users into opening specially manipulated H.264 and 
MPEG-4 files.

For the most part, Snow Leopard, Apple's latest and greatest version of 
Mac OS X, was left out of the security patch love. It received a single 
fix that updated Flash to the latest, most secure, version. As 
previously reported, the new OS shipped with a version of the media 
player that left users susceptible to attack.

[...]


________________________________________
Please Donate to the Ron Santo Walk to 
Cure Diabetes with Ethan's Crew!
http://www.c4i.org/ethan.html
Received on Fri Sep 11 2009 - 01:28:26 PDT

This archive was generated by hypermail 2.2.0 : Fri Sep 11 2009 - 01:46:51 PDT