Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: InfoSec Handlers Diary Blog - New Vulnerability Announcement and patches from Apple InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

New Vulnerability Announcement and patches from Apple

Published: 2006-11-29
Last Updated: 2006-11-29 08:28:50 UTC
by Toby Kohlenberg (Version: 1)
0 comment(s)
Apple has just released a new security update with a large number of vulnerabilities fixed. Full details are available at:
http://docs.info.apple.com/article.html?artnum=304829
Here are the packages updated:
  • AirPort - CVE-ID: CVE-2006-5710 *
  • ATS - CVE-ID: CVE-2006-4396
  • ATS - CVE-ID: CVE-2006-4398
  • ATS - CVE-ID: CVE-2006-4400 *
  • CFNetwork - CVE-ID: CVE-2006-4401
  • ClamAV - CVE-ID: CVE-2006-4182 *
  • Finder - CVE-ID: CVE-2006-4402 *
  • ftpd - CVE-ID: CVE-2006-4403
  • gnuzip - CVE-ID: CVE-2006-4334, CVE-2006-4335, CVE-2006-4336, CVE-2006-4337, CVE-2006-4338
  • Installer - CVE-ID: CVE-2006-4404
  • OpenSSL - CVE-ID: CVE-2006-2937, CVE-2006-2940, CVE-2006-3738, CVE-2006-4339, CVE-2006-4343
  • perl - CVE-ID: CVE-2005-3962 *
  • PHP - CVE-ID: CVE-2006-1490, CVE-2006-1990 *
  • PHP - CVE-ID: CVE-2006-5465 *
  • PPP - CVE-ID: CVE-2006-4406 *
  • Samba - CVE-ID: CVE-2006-3403
  • Security Framework - CVE-ID: CVE-2006-4407
  • Security Framework - CVE-ID: CVE-2006-4408
  • Security Framework - CVE-ID: CVE-2006-4409
  • Security Framework - CVE-ID: CVE-2006-4410
  • VPN - CVE-ID: CVE-2006-4411
  • WebKit - CVE-ID: CVE-2006-4412 *
* Potential code execution as defined & stated by Apple
0 comment(s)
Diary Archives