Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: New Vulnerability Announcement and patches from Apple - SANS Internet Storm Center SANS ISC InfoSec Forums


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
New Vulnerability Announcement and patches from Apple
Apple has just released a new security update with a large number of vulnerabilities fixed. Full details are available at:
http://docs.info.apple.com/article.html?artnum=304829
Here are the packages updated:
  • AirPort - CVE-ID: CVE-2006-5710 *
  • ATS - CVE-ID: CVE-2006-4396
  • ATS - CVE-ID: CVE-2006-4398
  • ATS - CVE-ID: CVE-2006-4400 *
  • CFNetwork - CVE-ID: CVE-2006-4401
  • ClamAV - CVE-ID: CVE-2006-4182 *
  • Finder - CVE-ID: CVE-2006-4402 *
  • ftpd - CVE-ID: CVE-2006-4403
  • gnuzip - CVE-ID: CVE-2006-4334, CVE-2006-4335, CVE-2006-4336, CVE-2006-4337, CVE-2006-4338
  • Installer - CVE-ID: CVE-2006-4404
  • OpenSSL - CVE-ID: CVE-2006-2937, CVE-2006-2940, CVE-2006-3738, CVE-2006-4339, CVE-2006-4343
  • perl - CVE-ID: CVE-2005-3962 *
  • PHP - CVE-ID: CVE-2006-1490, CVE-2006-1990 *
  • PHP - CVE-ID: CVE-2006-5465 *
  • PPP - CVE-ID: CVE-2006-4406 *
  • Samba - CVE-ID: CVE-2006-3403
  • Security Framework - CVE-ID: CVE-2006-4407
  • Security Framework - CVE-ID: CVE-2006-4408
  • Security Framework - CVE-ID: CVE-2006-4409
  • Security Framework - CVE-ID: CVE-2006-4410
  • VPN - CVE-ID: CVE-2006-4411
  • WebKit - CVE-ID: CVE-2006-4412 *
* Potential code execution as defined & stated by Apple
Toby

68 Posts

Sign Up for Free or Log In to start participating in the conversation!