« Time Capsule - AirPort Extreme mit integrierter HD | Start | iPod touch billiger, iPhone-Apps-Nachkauf für 18 Euro [Update_3] »

15.01.2008

Updates: iTunes 7.6, Front Row 2.1.2, iMovie 7.1.1, QuickTime 7.4 [Update]

In der Softwareaktualisierung: iTunes 7.6 (44,7MB) für den Mietfilm-Kram und Voraussetzung des Software-Updates 1.1.3 für iPhone und iPod touch.
QuickTime 7.4 (57,9MB) «behebt kritische Sicherheitsprobleme und bietet außerdem: eine Vielzahl an Fehlerbehebungen, Unterstützung für iTunes». Neustart erforderlich.
Front Row 2.1.2 (17,4MB) «enthält Fehlerbehebungen und verbessert die Kompatibilität mit iTunes».
iMovie 7.1.1 (16,9MB): «Dieses Update behebt Probleme beim Veröffentlichen von Filmen in der .Mac Web Galerie. Es verbessert die Stabilität des gesamten Programms und behebt weitere kleinere Probleme.»
Update: QT 7.4 beseitigt vier Sicherheitslücken. Details nach dem Klick.

QuickTime
CVE-ID: CVE-2008-0031
Available for: Mac OS X v10.3.9, Mac OS X v10.4.9 or later,
Mac OS X v10.5 or later, Windows Vista, XP SP2
Impact: Viewing a maliciously crafted movie file may lead to an
unexpected application termination or arbitrary code execution
Description: A memory corruption issue exists in QuickTime's
handling of Sorenson 3 video files. This may lead to an unexpected
application termination or arbitrary code execution. This update
addresses the issue by performing additional validation of Sorenson 3
video files. Credit to Joe Schottman of Virginia Tech for reporting
this issue.

QuickTime
CVE-ID: CVE-2008-0032
Available for: Mac OS X v10.3.9, Mac OS X v10.4.9 or later,
Mac OS X v10.5 or later, Windows Vista, XP SP2
Impact: Viewing a maliciously crafted movie file may lead to an
unexpected application termination or arbitrary code execution
Description: A memory corruption issue exists in QuickTime's
handling of Macintosh Resource records in movie files. Opening a
maliciously crafted movie file may lead to an unexpected application
termination or arbitrary code execution. This update addresses the
issue by performing additional validation of movie files. Credit to
Jun Mao of VeriSign iDefense Labs for reporting this issue.

QuickTime
CVE-ID: CVE-2008-0033
Available for: Mac OS X v10.3.9, Mac OS X v10.4.9 or later,
Mac OS X v10.5 or later, Windows Vista, XP SP2
Impact: Viewing a maliciously crafted movie file may lead to an
unexpected application termination or arbitrary code execution
Description: A memory corruption issue exists in QuickTime's parsing
of Image Descriptor (IDSC) atoms. Opening a maliciously crafted movie
file may lead to an unexpected application termination or arbitrary
code execution. This update addresses the issue by performing
additional validation of Image Descriptor atoms in movie files.
Credit to Cody Pierce of TippingPoint DVLabs for reporting this
issue.

QuickTime
CVE-ID: CVE-2008-0036
Available for: Mac OS X v10.3.9, Mac OS X v10.4.9 or later,
Mac OS X v10.5 or later, Windows Vista, XP SP2
Impact: Opening a maliciously crafted PICT image may lead to an
unexpected application termination or arbitrary code execution
Description: A buffer overflow may occur while processing a
compressed PICT image. Opening a maliciously crafted compressed PICT
file may lead to an unexpected application termination or arbitrary
code execution. This update addresses the issue by terminating
decoding when the result would extend beyond the end of the
destination buffer. Credit to Chris Ries of Carnegie Mellon
University Computing Services for reporting this issue.

Posted by Leo at 20:22 | Permalink

TrackBack

TrackBack-Adresse für diesen Eintrag:
https://www.typepad.com/services/trackback/6a00d83451c7b569e200e54ff40b408834

Listed below are links to weblogs that reference Updates: iTunes 7.6, Front Row 2.1.2, iMovie 7.1.1, QuickTime 7.4 [Update]:

» Apple Software Updates verfügbar! [UPDATE] from Flo's Weblog
Nicht einmal eine halbe Stunde nach Ende der MacWorld Keynote sind die angekündigten Software-Updates verfügbar. Neben den bereits angekündigten Updates für iTunes und das iPhone findet die Softwareaktualisierung des Macs auch Updates für iMovie, Quick... [Mehr erfahren]

verlinkt am 16.01.2008 10:33:53