On Friday, July 11, 2008, Apple released Xcode tools 3.1 which addresses
the following security issues:
CoreImage Examples
Type: Unexpected application termination; Arbitrary code execution;
Buffer overflow
Platform: Mac OS X v10.5.x
Resolution: Improved bounds checking
Credit: Kevin Finisterre of Netragard
WebObjects
Type: Information disclosure; WOHyperlink
Platform: Mac OS X v10.5.x
Resolution: Change default behavior to prevent appending session Ids to
absolute URLs
Credit: NA
Details can be found in the following Apple Knowledge Base document:
http://support.apple.com/kb/HT2352
###
Todd D. Woodward
Technical Support Engineer
NetBackup Support
Symantec Corporation
www.symantec.com
Springfield, Oregon
--------------------
Office: 541-335-7441
--------------------
the following security issues:
CoreImage Examples
Type: Unexpected application termination; Arbitrary code execution;
Buffer overflow
Platform: Mac OS X v10.5.x
Resolution: Improved bounds checking
Credit: Kevin Finisterre of Netragard
WebObjects
Type: Information disclosure; WOHyperlink
Platform: Mac OS X v10.5.x
Resolution: Change default behavior to prevent appending session Ids to
absolute URLs
Credit: NA
Details can be found in the following Apple Knowledge Base document:
http://support.apple.com/kb/HT2352
###
Todd D. Woodward
Technical Support Engineer
NetBackup Support
Symantec Corporation
www.symantec.com
Springfield, Oregon
--------------------
Office: 541-335-7441
--------------------
[ reply ]