SecurityHome.eu APPLE-SA-2017-02-21-1 GarageBand 10.1.6

Home / mailings PDF

APPLE-SA-2017-02-21-1 GarageBand 10.1.6
Posted on 21 February 2017
Apple Security-announce
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

APPLE-SA-2017-02-21-1 GarageBand 10.1.6

GarageBand 10.1.6 is now available and addresses the following:

Projects
Available for: OS X Yosemite v10.10 or later
Impact: Opening a maliciously crafted GarageBand Project file may
lead to arbitrary code execution
Description: A memory corruption issue was addressed through improved
memory handling.
CVE-2017-2374: Tyler Bohan of Cisco Talos

Installation note:

GarageBand may be obtained from the Mac App Store.

Information will also be posted to the Apple Security Updates
web site: https://support.apple.com/kb/HT201222

This message is signed with Apple's Product Security PGP key,
and details are available at:
https://www.apple.com/support/security/pgp/

TOP

Mailings :

[slackware-security] ruby (SSA:2024-114-01)
[SECURITY] [DSA 5673-1] glibc security update
[slackware-security] freerdp (SSA:2024-113-01)
[SECURITY] [DSA 5672-1] openjdk-17 security update
[SECURITY] [DSA 5671-1] openjdk-11 security update

Last 20

Exploits :

Apache Solr Backup/Restore API Remote Code Execution
Nginx 1.25.5 Host Header Validation
Relate Learning And Teaching System SSTI / Remote Code Execution
Flowise 1.6.5 Authentication Bypass
WordPress Background Image Cropper 1.2 Shell Upload

Last 20