| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 19 Feb 2018 13:54:32 -0800 From: Apple Product Security <product-security-noreply@...ts.apple.com> To: security-announce@...ts.apple.com Subject: [FD] APPLE-SA-2018-02-19-4 watchOS 4.2.3 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 APPLE-SA-2018-02-19-4 watchOS 4.2.3 watchOS 4.2.3 is now available and addresses the following: CoreText Available for: All Apple Watch models Impact: Processing a maliciously crafted string may lead to heap corruption Description: A memory corruption issue was addressed through improved input validation. CVE-2018-4124: an anonymous researcher Installation note: Instructions on how to update your Apple Watch software are available at https://support.apple.com/kb/HT204641 To check the version on your Apple Watch, open the Apple Watch app on your iPhone and select "My Watch > General > About". Alternatively, on your watch, select "My Watch > General > About". Information will also be posted to the Apple Security Updates web site: https://support.apple.com/kb/HT201222 This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE----- Comment: GPGTools - http://gpgtools.org iQIcBAEBCgAGBQJaizCFAAoJEIOj74w0bLRGHOQQAI/8+maAAaJ4FVj4c4jpHx2l 8h6Jp1u4fa/buEeOaNKbTegSm1HEbBbvaD8J9s238dXyoiiyut4R0x3iwiimsZ8R QUJn9CoysNzCKlblsudmxSsODLLodx+k+KN/CkrT9ujTgf4UgQUFRsQzzZ8i3CiO bgfc63k94vPpRrYVQXz5nvZR5bBFqw/DOhJRFQy3d6+pg1h9yKZwM8hn+Ywd9imN e0Pd+a8LwUZiUotQiB799UErsSt2KoU23Wjq24ETIGgg2e4L76bpq6Tguzc37ea6 xMUVlZvh0ZIC8h+QnUPShnr4F2wHNcdLujQRnl5r/ufQRh6e+XRuaDqg5qNDmUwd juEMJcJLUfcGKBmQCVyBnJFLi885ZAWaWzvthuOkuJY4eNqfwwodxB3YZnH55Qhy bN+GVjpJCyzM9v8IhXumpVe7x4cI0I14mhJKCQJOK0jKsm3QgYpvsp4Yu/JTHjrV WQMFngCfy5Vx+20RTH9tT6wLqtMoyA8cwxViR5xU82uq+jY7qY1yWuCZRVRfRs69 o11PmA3kXm2JqXF6xLTZER9lCis3E8se149myw1Qe2XimrkIHRYkkyZwMxBckLty epbtXiM6zs+i9wTcdM4rGTHcw3fAPYcas4OpnLC9f1yve1SfCyMFhSvEZ7LzjG5q eAB9cTArNP6m8zaLmNV+ =4LGh -----END PGP SIGNATURE----- _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/
Powered by blists - more mailing lists