Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: InfoSec Handlers Diary Blog InfoSec Handlers Diary Blog

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Apple Security Update 2010-001

Published: 2010-01-19
Last Updated: 2010-01-19 21:57:15 UTC
by Jim Clausing (Version: 1)
0 comment(s)

In an effort not to be left out, Apple has released Security Update 2010-001 which patches a dozen vulnerabilities in CoreAudio (code execution via crafted MP4), CUPS (remote DoS), Flash Player Plug-in (multiple including arbitrary code execution), ImageIO (code execution via crafted TIFF file), Image Raw (code execution via crafted DNG image), and OpenSSL (the renegotiation exploit).  Details can be found here:

Jim Clausing, jclausing --at-- isc [dot] sans (dot) org

Keywords: Apple OpenSSL
0 comment(s)
Diary Archives