Apple patches 13 Mac OS X vulnerabilities

Apple has shipped a new Mac OS X security update to fix 13 documented vulnerabilities, some serious enough to expose users to remote code execution attacks.

The patch includes fixes for security holes in several open-source components, including ClamAV and PHP.

Here’s a quick look at the vulnerabilities and affected components.

* CVE-2010-1808: A stack buffer overlow exists in Apple Type Services’ handling of embedded fonts. Viewing or downloading a document containing a maliciously crafted embedded font may lead to arbitrary code execution.
* CVE-2010-1800: CFNetwork permits anonymous TLS/SSL connections. This may allow a man-in-the-middle attacker to redirect connections and intercept user credentials or other sensitive information. This issue does not affect the Mail application. This issue is addressed by disabling anonymous TLS/SSL connections. This issue does not affect systems prior to Mac OS X v10.6.3.

Continue reading

Comments

Post a Comment

Popular posts from this blog

KEPONG Gangster甲洞

Image
“ KEPONG ”, a famous local Chinese gang/gangster neighbourhood, is a story about five young men whom are best friends that join a gangster and then faces the reality of gangster life with financial problem, drugs, power and so on, ending up breaking their friendship and bad consequences. From the left: Rayz, Melvin, Hero, Henley & Billy. Although the theme of the film mainly focus on the story of the gangster, however, it still indirectly convey a positive message to the teenage, to highlight to them not to involve in any such activities which might ruin their bright future. The Kepong movie introduce: Director: Teng Bee Casts: Melvin Sia, Henley Hii, Hero Tai and Aunty Lai Meng Genre: Gangsterism, Teenager Release date: 13 September 2012
Read more

SNSD’s album was postponed to June 29.

Image
Need to wait for 4 more days Because of the album cover SM Entertainment have postponed its release to the 29th of June. SNSN's album release date will postponed from 25th to 29th. Also MP3 release date was changed. Only Tell Me Your Wish (Genie) will be released on 25th and the other song are going to be released on 29th at various online stores. SM Entertainment said “We used military icons on album cover, however it was interpreted and understood in a way we didn’t expected. So we are planning to delete the part and put an icon of Korean supersonic jet T-50. (sound weird to me).
Read more

Singaporean arrested for FB attack on govt

Image
A Singaporean man who attacked the ruling party on Facebook and urge people to “burn” a cabinet minister has been arrested on charges of inciting violence, police said Wednesday. In a statement, police said they had arrested a “man in his late 20s” on Tuesday “in connection with investigations into offences related to incitement of violence”. The statement did not name the man or give details of the offence, but said that he was released on bail pending further investigation. Local media identified him as Abdul Malik Ghazali, 27, who posted a series of comments on the social networking site critical of how Singapore is hosting the inaugural Youth Olympic Games (YOG). The August 14-26 event, held for competitors aged from 14 to 18, has generated limited public interest, with many events blighted by empty seats and the host country’s athletes faring badly. Continue reading
Read more