lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-id: <6FD2DD52-9422-4738-8ADA-83C15AD69AC8@lists.apple.com> Date: Wed, 18 Jan 2017 11:57:24 -0800 From: Apple Product Security <product-security-noreply@...ts.apple.com> To: security-announce@...ts.apple.com Subject: [FD] APPLE-SA-2017-01-18-2 Logic Pro X 10.3 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 APPLE-SA-2017-01-18-2 Logic Pro X 10.3 Logic Pro X 10.3 is now available and addresses the following: Projects Available for: OS X Yosemite v10.10 and later (64 bit) Impact: Opening a maliciously crafted GarageBand project file may lead to arbitrary code execution Description: A memory corruption issue was addressed through improved memory handling. CVE-2017-2372: Tyler Bohan of Cisco Talos Installation note: Logic Pro X 10.3 may be obtained from the Mac App Store. Information will also be posted to the Apple Security Updates web site: https://support.apple.com/kb/HT201222 This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE----- Comment: GPGTools - https://gpgtools.org iQIcBAEBCgAGBQJYf8YhAAoJEIOj74w0bLRGB/MP/01GBzVMfpd+u3OUaYhTrNK5 1ckzBAYBSxyuW03pJRGfYcmdPHvjE8srgc/KoUi5l2QEIrTMN+muIIpC7+vaMcy2 T965MYy/NvVkSvhAyCElvEkY1IisddcO8NiKHfsWQMXHwzw6bEF3WRI+CHeTAuMQ jvgq3SeWO2gFAWYrsnfsqmVxaj+gEErd+OYxv/GxV0AMT83wUVgG/3M268WYqgk+ DtRMPQDjFpAIJin+k4ngX8tDSxoakMjIBNMcpjqOBrDkJjVqW5cQWpYIBspqnCOX LzNCuNK42FIRK4XELRld4tCyUPA4+ZGiu9rqNIQCm391cYjbClW+lrLTyjcXs0Xi SeUTUdwvwAChvhAjp4/B4PblcCZR1dDyc7ZLQmXLUVmkT3R+JfuyTWsLXltovO9B Zgoyl7xDbLegqX1UGqzMsXQpLSorhXTNOaUJ3HpISlroEYEOn+v8yYaDyEmmy921 joW2CCSOS6YKgOS0WpgZ+tXKrd6B9Z2pzCizYj2/jxeDI0+pUSMjz8DlfeQpNz+f sYkleqpUkmUYAbicjlB7nn6+ABUMoBtC+pzIjf9+wH2ChmrzxKlj6opwk71saz2s temrpvoVEnABk3SkGm9JLpuS5rY5FiA4m1MQiOiccUoOwSntTJhbTOXeaWVY4iVS mFxex6BIMQ4rN4IKOrY/ =ZAqE -----END PGP SIGNATURE----- _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/
Powered by blists - more mailing lists