Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: Apple Software Updates - SANS Internet Storm Center SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Apple Software Updates

Apple has released iOS 4.3.4 Software Update.  It looks like it adds some new features to your iPhone, iPod, and iPad,  Besides the new features it contains Security Patches.  One of the Security Patches fixes a potential security hole when viewing PDF files caused by a buffer overflow and application termination.  CVE-2010-3855, CVE-2011-0226.

Another patch is included for an invalid type conversion in IOMobileFrameBuffer. CVE-2011-0227.

Products affected are iPad, iPod Touch (3rd and 4th generation), iPhone4 (GSM Model) and iPhone 3GS.

Thank you to our readers Dave and Jim who brought this to our attention.


Deb Hale


279 Posts
ISC Handler
Jul 15th 2011
iOS 4.2.9 for CDMA iPhones (such as Verizon) fixes the same bugs and is described in HT4803

Sign Up for Free or Log In to start participating in the conversation!