Alert GCSA-10073 - Apple Security Update 2010-004
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
**********************************************************************
Alert ID : GCSA-10073
Data : 18 giugno 2010
Titolo : Apple Security Update 2010-004
**********************************************************************
:: Descrizione del problema:
Apple ha rilasciato il Security Update 2010-004 per correggere
varie vulnerabilta' che affliggono il sistema operativo Mac OS X
ed alcune applicazioni distribuite insieme al sistema stesso.
:: Software interessati:
Apple Mac OS X
:: Impatto:
Hijacking
Spoofing
Cross Site Scripting
Manipolazione di dati
Esposizione dei dati del sistema
Security Bypass
Privilege escalation
Denial of service
Accesso al sistema
:: Soluzione:
Applicare il Security Update 2010-004:
http://www.apple.com/support/downloads/
:: Riferimenti:
Security Update 2010-004:
http://support.apple.com/kb/HT4188
Secunia:
http://secunia.com/advisories/40220/
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1578
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1579
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1580
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1581
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2964
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4212
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0186
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0187
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0283
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0302
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0540
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0541
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0543
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0545
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0546
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0734
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1320
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1373
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1374
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1375
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1376
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1377
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1379
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1380
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1381
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1382
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1411
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1748
-----BEGIN PGP SIGNATURE-----
iQCVAwUBTBs9uvOB+SpikaiRAQJlsQQAoKfW2mlNN8d3RukgNm5L2TBvuk2ZRXIK
HLAZf7RAyQKNaPQujAdHBeG+3mgjFlLY7rjD+nPRg8UWc8chqCsSbs4hguSwGc8L
N4HUKPH1tC6/PeUMl+fKb6Fa3BwQg82T7NHFq+U/c581eigdDsF6z8/OM9KMHyqU
Nd7qAdznZSY=
=0GM5
-----END PGP SIGNATURE-----
Hash: SHA1
**********************************************************************
Alert ID : GCSA-10073
Data : 18 giugno 2010
Titolo : Apple Security Update 2010-004
**********************************************************************
:: Descrizione del problema:
Apple ha rilasciato il Security Update 2010-004 per correggere
varie vulnerabilta' che affliggono il sistema operativo Mac OS X
ed alcune applicazioni distribuite insieme al sistema stesso.
:: Software interessati:
Apple Mac OS X
:: Impatto:
Hijacking
Spoofing
Cross Site Scripting
Manipolazione di dati
Esposizione dei dati del sistema
Security Bypass
Privilege escalation
Denial of service
Accesso al sistema
:: Soluzione:
Applicare il Security Update 2010-004:
http://www.apple.com/support/downloads/
:: Riferimenti:
Security Update 2010-004:
http://support.apple.com/kb/HT4188
Secunia:
http://secunia.com/advisories/40220/
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1578
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1579
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1580
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1581
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2964
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4212
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0186
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0187
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0283
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0302
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0540
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0541
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0543
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0545
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0546
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0734
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1320
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1373
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1374
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1375
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1376
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1377
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1379
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1380
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1381
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1382
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1411
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1748
-----BEGIN PGP SIGNATURE-----
iQCVAwUBTBs9uvOB+SpikaiRAQJlsQQAoKfW2mlNN8d3RukgNm5L2TBvuk2ZRXIK
HLAZf7RAyQKNaPQujAdHBeG+3mgjFlLY7rjD+nPRg8UWc8chqCsSbs4hguSwGc8L
N4HUKPH1tC6/PeUMl+fKb6Fa3BwQg82T7NHFq+U/c581eigdDsF6z8/OM9KMHyqU
Nd7qAdznZSY=
=0GM5
-----END PGP SIGNATURE-----