Alert GCSA-18015 - Apple Security Updates APPLE-SA-2018-02-19
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
**********************************************************************
Alert ID: GCSA-18015
Data: 20 febbraio 2018
Titolo: Apple Security Updates APPLE-SA-2018-02-19
**********************************************************************
:: Descrizione del problema
Apple ha rilasciato degli aggiornamenti di sicurezza che
risolvono una vulnerabilita' presente in vari software.
Un aggressore remoto potrebbe sfruttare questo bug per
mandare in crash l'applicazione.
Per una descrizione degli aggiornamenti consultare
le segnalazioni ufficiali alla sezione 'Riferimenti'.
:: Piattaforme e Software interessati
iOS versioni precedenti la 11.2.6
macOS High Sierra 10.13.3
tvOS versioni precedenti la 11.2.6
watchOS versioni precedenti la 4.2.3
:: Impatto
Memory corruption
Denial of Service
:: Soluzione
Aggiornare a
iOS 11.2.6 (iPhone, iPad e iPod)
https://support.apple.com/it-it/HT201352
https://support.apple.com/it-it/HT204204
macOS High Sierra 10.13.3 Supplemental Update
https://support.apple.com/downloads
https://support.apple.com/it-it/HT201541
tvOS 11.2.6
https://support.apple.com/it-it/HT202716
watchOS 4.2.3
https://support.apple.com/kb/HT204641
:: Riferimenti
Apple security updates
https://support.apple.com/en-eg/HT201222
APPLE-SA-2018-02-19-1 iOS 11.2.6
https://support.apple.com/en-us/HT208534
https://www.securityfocus.com/archive/1/541795
APPLE-SA-2018-02-19-2 macOS High Sierra 10.13.3 Supplemental Update
https://support.apple.com/en-us/HT208535
https://www.securityfocus.com/archive/1/541797
APPLE-SA-2018-02-19-3 tvOS 11.2.6
https://support.apple.com/en-us/HT208536
https://www.securityfocus.com/archive/1/541796
APPLE-SA-2018-02-19-4 watchOS 4.2.3
https://support.apple.com/en-us/HT208537
https://www.securityfocus.com/archive/1/541794
CVE ID
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4124
Threatpost
https://threatpost.com/apple-rushes-fix-for-latest-text-bomb-bug-as-abuse-spreads/129987/
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFai/lGwZxMk2USYEIRAh+7AJ9evZbKupi6+8gHA06BMqxOx5mg0wCglpT/
BpT8i+gMVo036yQq2lb8rvg=
=P+KD
-----END PGP SIGNATURE-----
Hash: SHA1
**********************************************************************
Alert ID: GCSA-18015
Data: 20 febbraio 2018
Titolo: Apple Security Updates APPLE-SA-2018-02-19
**********************************************************************
:: Descrizione del problema
Apple ha rilasciato degli aggiornamenti di sicurezza che
risolvono una vulnerabilita' presente in vari software.
Un aggressore remoto potrebbe sfruttare questo bug per
mandare in crash l'applicazione.
Per una descrizione degli aggiornamenti consultare
le segnalazioni ufficiali alla sezione 'Riferimenti'.
:: Piattaforme e Software interessati
iOS versioni precedenti la 11.2.6
macOS High Sierra 10.13.3
tvOS versioni precedenti la 11.2.6
watchOS versioni precedenti la 4.2.3
:: Impatto
Memory corruption
Denial of Service
:: Soluzione
Aggiornare a
iOS 11.2.6 (iPhone, iPad e iPod)
https://support.apple.com/it-it/HT201352
https://support.apple.com/it-it/HT204204
macOS High Sierra 10.13.3 Supplemental Update
https://support.apple.com/downloads
https://support.apple.com/it-it/HT201541
tvOS 11.2.6
https://support.apple.com/it-it/HT202716
watchOS 4.2.3
https://support.apple.com/kb/HT204641
:: Riferimenti
Apple security updates
https://support.apple.com/en-eg/HT201222
APPLE-SA-2018-02-19-1 iOS 11.2.6
https://support.apple.com/en-us/HT208534
https://www.securityfocus.com/archive/1/541795
APPLE-SA-2018-02-19-2 macOS High Sierra 10.13.3 Supplemental Update
https://support.apple.com/en-us/HT208535
https://www.securityfocus.com/archive/1/541797
APPLE-SA-2018-02-19-3 tvOS 11.2.6
https://support.apple.com/en-us/HT208536
https://www.securityfocus.com/archive/1/541796
APPLE-SA-2018-02-19-4 watchOS 4.2.3
https://support.apple.com/en-us/HT208537
https://www.securityfocus.com/archive/1/541794
CVE ID
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4124
Threatpost
https://threatpost.com/apple-rushes-fix-for-latest-text-bomb-bug-as-abuse-spreads/129987/
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFai/lGwZxMk2USYEIRAh+7AJ9evZbKupi6+8gHA06BMqxOx5mg0wCglpT/
BpT8i+gMVo036yQq2lb8rvg=
=P+KD
-----END PGP SIGNATURE-----