lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-id: <DCB98F6D-7BAB-4265-9D6A-74F5273F8DD5@lists.apple.com>
Date: Wed, 22 Mar 2017 13:14:03 -0700
From: Apple Product Security <product-security-noreply@...ts.apple.com>
To: security-announce@...ts.apple.com
Subject: [FD] APPLE-SA-2017-03-22-2 iTunes for Mac 12.6

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

APPLE-SA-2017-03-22-2 iTunes for Mac 12.6

iTunes for Mac 12.6 is now available and addresses the following:

iTunes
Available for:  OS X version 10.9.5 or later
Impact: Multiple issues in SQLite
Description: Multiple issues existed in SQLite. These issues were
addressed by updating SQLite to version 3.15.2.
CVE-2013-7443
CVE-2015-3414
CVE-2015-3415
CVE-2015-3416
CVE-2015-3717
CVE-2015-6607
CVE-2016-6153

iTunes
Available for:  OS X version 10.9.5 or later
Impact: Multiple issues in expat
Description: Multiple issues existed in expat. These issues were
addressed by updating expat to version 2.2.0.
CVE-2009-3270
CVE-2009-3560
CVE-2009-3720
CVE-2012-1147
CVE-2012-1148
CVE-2012-6702
CVE-2015-1283
CVE-2016-0718
CVE-2016-4472
CVE-2016-5300

iTunes for Mac 12.6 may be obtained from:
https://www.apple.com/itunes/download/

Information will also be posted to the Apple Security Updates
web site: https://support.apple.com/kb/HT201222

This message is signed with Apple's Product Security PGP key,
and details are available at:
https://www.apple.com/support/security/pgp/
-----BEGIN PGP SIGNATURE-----
Comment: GPGTools - https://gpgtools.org
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=HQKU
-----END PGP SIGNATURE-----


_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ