Alert GCSA-13028 - Apple Mac OS X Aggiornamento per Java
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-13028
Data: 18 Aprile 2013
Titolo: Apple Mac OS X Aggiornamento per Java
******************************************************************
:: Descrizione del problema
Apple ha pubblicato un aggiornamento per Java per Mac OS X che risolve varie vulnerabilita',
che potrebbero essere sfruttate per rivelare informazioni sensibili, manipolare dati,
provocare un Denial of Service e compromettere un sistema vulnerabile.
:: Piattaforme e Software interessati
Apple Macintosh OS X
:: Impatto
Exposure of sensitive information
Manipolazione di dati
Denial of Service
Accesso al sistema
:: Soluzioni
Aggiornare a Java 1.6.0_45.
L'upgrade puo' essere installato tramite il Software Update panel in System Preferences,
o attraverso il sito web Apple:
http://www.apple.com/support/downloads/
Mac OS X: Updating your software
http://support.apple.com/kb/HT5734
:: Riferimenti
APPLE-SA-2013-04-16-2:
http://support.apple.com/kb/HT5734
http://prod.lists.apple.com/archives/security-announce/2013/Apr/msg00001.html
Oracle:
http://www.oracle.com/technetwork/java/javase/releasenotes-136954.html
Secunia:
http://secunia.com/advisories/53100/
Mitre's CVE ID:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1491
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1537
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1540
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1557
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1558
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1563
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1569
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2383
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2384
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2394
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2417
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2419
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2420
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2422
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2424
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2429
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2430
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2432
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2434
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2435
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2440
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFRcAFdwZxMk2USYEIRAgMXAJ9stom5fF/sHFGbpQ5tR4TaJx7y5ACcD+Q8
SuohgKZvIJp29uLKgAR/Kdo=
=iQnI
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-13028
Data: 18 Aprile 2013
Titolo: Apple Mac OS X Aggiornamento per Java
******************************************************************
:: Descrizione del problema
Apple ha pubblicato un aggiornamento per Java per Mac OS X che risolve varie vulnerabilita',
che potrebbero essere sfruttate per rivelare informazioni sensibili, manipolare dati,
provocare un Denial of Service e compromettere un sistema vulnerabile.
:: Piattaforme e Software interessati
Apple Macintosh OS X
:: Impatto
Exposure of sensitive information
Manipolazione di dati
Denial of Service
Accesso al sistema
:: Soluzioni
Aggiornare a Java 1.6.0_45.
L'upgrade puo' essere installato tramite il Software Update panel in System Preferences,
o attraverso il sito web Apple:
http://www.apple.com/support/downloads/
Mac OS X: Updating your software
http://support.apple.com/kb/HT5734
:: Riferimenti
APPLE-SA-2013-04-16-2:
http://support.apple.com/kb/HT5734
http://prod.lists.apple.com/archives/security-announce/2013/Apr/msg00001.html
Oracle:
http://www.oracle.com/technetwork/java/javase/releasenotes-136954.html
Secunia:
http://secunia.com/advisories/53100/
Mitre's CVE ID:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1491
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1537
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1540
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1557
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1558
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1563
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1569
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2383
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2384
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2394
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2417
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2419
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2420
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2422
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2424
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2429
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2430
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2432
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2434
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2435
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2440
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFRcAFdwZxMk2USYEIRAgMXAJ9stom5fF/sHFGbpQ5tR4TaJx7y5ACcD+Q8
SuohgKZvIJp29uLKgAR/Kdo=
=iQnI
-----END PGP SIGNATURE-----