Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Apple’s patch flood - Internet Security | DShield SANS ISC InfoSec Forums


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Apple’s patch flood

On Tuesday Apple released 3 major security update batches:

  • APPLE-SA-2007-07-31 Security Update 2007-07 fixes 45 security vulnerabilities in Mac OS X (various applications and services are affected). If you run Mac OS X you definitely want to install this since a lot of common packages are affected. You can find more information at http://docs.info.apple.com/article.html?artnum=306172.
  • APPLE-SA-2007-07-31 Safari 3 Beta Update 3.0.3 fixes 4 security vulnerabilities in Safari 3 Beta. All 4 vulnerabilities affect Safari on Windows XP or Vista and 3 of them also affect Mac OS X. More information at http://docs.info.apple.com/article.html?artnum=306174.
  • And finally, APPLE-SA-2007-07-31 iPhone v1.0.1 Update fixes 5 security vulnerabilities in iPhone. As some of them are pretty bad (arbitrary code execution after viewing a maliciously crafted web page) you also definitely want to install them, if you’re using your iPhone for web browsing. More information at http://docs.info.apple.com/article.html?artnum=306173.
I will be teaching next: Web App Penetration Testing and Ethical Hacking - SANS Munich July 2019

Bojan

376 Posts
ISC Handler

Sign Up for Free or Log In to start participating in the conversation!