A user-space buffer overflow existed in the shader compiler.
OS X MAVERICKS SECURITY PDF
An integer overflow existed in the handling of PDF files.
CVE-2014-4378 : Opening a maliciously crafted PDF file may lead to an unexpected application termination or an information disclosure.A validation issue existed in the handling of a Bluetooth API call. CVE-2014-4390 : A malicious application may be able to execute arbitrary code with system privileges.
OS X MAVERICKS SECURITY UPDATE
This update addresses the issues by updating PHP to version 5.4.30. Multiple vulnerabilities existed in PHP 5.4.24, the most serious of which may have led to arbitrary code execution. Security Update 2014-004 addresses the following vulnerabilities: A good number of these vulnerabilities can be exploited to execute malicious code with system privileges according to Apple’s security advisory, such vulnerabilities are commonly used in zero-day exploits. This update is available for: OS X Lion 10.7.5, OS X Mountain Lion 10.8.5, and OS X Mavericks 10.9 to 10.9.4.Īltogether, Security Update 2014-004 patches 44 vulnerabilities (CVEs) for everything from PHP scripting language to Bluetooth, the operating system graphics drivers, and security flaws in several OS X components. Apple delivered these updates in conjunction with iOS 8, Safari 6.2 and Safari 7.1, Apple TV 7, Xcode 6.0.1, OS X Server 3.2.1 and OS X Server 2.2.3. OS X Mavericks 10.9.5 and Security Update 2014-004 are now available and include a long list of security fixes. Apple + Security News Apple Delivers OS X Mavericks 10.9.5, Security Update 2014-004
0 kommentar(er)
