Apple Quicktime and OS X updates to patch multiple security vulnerabilities



Apple has released Quicktime v. 7.1 for both Windows and OS X to address about 12 vulnerabilities. It looks as though all of the vulnerabilities were related to either a specially crafted images or movies (a variety of formats…) Upgrade or use another viewer…


Affected file formats are…. Jpegs, Flashpix, Pict, BMP, Quicktime, Flash, H.264, Mpeg-4 and avi… so that would cover most of the most common formats. Incidents.org has a bit more information than the above (links to specific cve entries for the above vulnerabilities.)

Brian Krebs over at the Security Fix has an article on the updates, as well as updates for OS X….

Another patch bundle mends at least 31 security holes in OS X. Among the applications that need patching are Apple’s Safari Web browser; Mac OS X’s default e-mail program; the password-storing “Keychain” application, Apple’s version of the Macromedia Flash player, and QuickDraw.

Updates are available for Mac OS X v10.3.9, Mac OS X Server v10.3.9, Mac OS X v10.4.6 and Mac OS X Server v10.4.6. As always, Mac users should be able to upgrade manually through Apple Downloads or by using OS X’s built-in Software Update feature.

According to him that’s a total of 43 flaws fixed with todays batch of updates. Mac users, get patching and Windows quicktime users as well.

Related Posts

Blog Traffic Exchange Related Posts
  • Remote tech support with anything - would I do it? I've tried to ask myself if I'd trust someone enough to let them run a remote session on my own desktop to solve a problem. I think the answer is "it depends". If you think about it, I do tech support for home users quite a bit and they let......
  • Exploit in the wild for Apple vulnerability A couple days ago there was a release of Mac OS X 10.4.7 which addressed several security flaws. There is now an exploit published for one of these vulnerabilities. The attacker using this exploit could gain remote root (administrator) access to the machine. So, don't delay any further on patching.......
  • Remote Tech Support with x11vnc and wrapper script So, the idea is that I wanted something "like" the Ultranvnc Single Click download, only for linux. The main idea being is that if someone is looking for a bit of desktop tech support on linux, we don't need to be giving instructions for 5 different package managers, or source......
Blog Traffic Exchange Related Websites
  • Microsoft Office 2008 12.2.5 Update for Mac OS X Microsoft has released security bulletin MS10-038. This security bulletin contains all the relevant information about the security updates for Microsoft Office 2008 for Mac OS X.  To view the complete security bulletin, visit the following Microsoft website: http://www.microsoft.com/technet/security/bulletin/ms10-038.mspx This update improves security. It includes fixes for vulnerabilities that an attacker......
  • iLife 11' Not Bundled, Family Packs No Longer Available Apple's distribution of it's iLife and iWork 11' apps through the Mac App Store is going to bring some interesting changes to how Mac users purchase their software. Instead of buying an entire software package each individual component can be purchased and downloaded individually. Those who want only Pages and......
  • Redsn0w updated to untether iOS 4.3.2 Jailbreak, Sn0wbreeze 2.6 coming Very Soon! Redsn0w 0.9.6rc14 has been released for Mac & Windows to give untethered jailbreak for iDevices on iOS 4.3.2. Apple released iOS 4.3.2 a few days back to fix Wi-fi issues on iPad. Hopefully, it did not patch i0n1c's kernel exploit. i0n1c just had to generate new kernel payload to apply......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site