Alert GCSA-10007 - Apple Security Update 2010-001
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
**********************************************************************
Alert ID : GCSA-10007
Data : 20 gennaio 2010
Titolo : Apple Security Update 2010-001
**********************************************************************
:: Descrizione del problema:
Apple ha rilasciato il Security Update 2010-001 per correggere
varie vulnerabilta' che affliggono il sistema operativo Mac OS X
ed alcune applicazioni distribuite insieme al sistema stesso.
:: Piattaforme e Software interessati:
Apple Mac OS X Server 10.6.2
Apple Mac OS X Server 10.6.1
Apple Mac OS X Server 10.5.8
Apple Mac OS X Server 10.5.7
Apple Mac OS X Server 10.5.6
Apple Mac OS X Server 10.5.5
Apple Mac OS X Server 10.5.4
Apple Mac OS X Server 10.5.3
Apple Mac OS X Server 10.5.2
Apple Mac OS X Server 10.5.1
Apple Mac OS X Server 10.6
Apple Mac OS X Server 10.5
Apple Mac OS X 10.6.2
Apple Mac OS X 10.6.1
Apple Mac OS X 10.5.8
Apple Mac OS X 10.5.7
Apple Mac OS X 10.5.6
Apple Mac OS X 10.5.5
Apple Mac OS X 10.5.4
Apple Mac OS X 10.5.3
Apple Mac OS X 10.5.2
Apple Mac OS X 10.5.1
Apple Mac OS X 10.6
Apple Mac OS X 10.5
:: Impatto:
Esecuzione di codice arbitrario
Esposizione dei dati del sistema
Denial of service
Accesso al sistema
:: Soluzione:
Applicare il Security Update 2010-001:
http://www.apple.com/support/downloads/
:: Riferimenti:
Security Update 2010-001
http://support.apple.com/kb/HT4004
Security Focus
http://www.securityfocus.com/bid/37869
http://www.securityfocus.com/bid/37868
http://www.securityfocus.com/bid/35451
http://www.securityfocus.com/bid/37048
http://www.securityfocus.com/bid/36935
Secunia: Apple Mac OS X Security Update Fixes Multiple Vulnerabilities
http://secunia.com/advisories/38241
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2285
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3553
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3555
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3794
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3796
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3797
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3798
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3799
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3800
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3951
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0036
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0037
-----BEGIN PGP SIGNATURE-----
iQCVAwUBS1bkFPOB+SpikaiRAQLK7wP/cAZg4px0mUcb3laNVIibMTGq0Hg0Cfgs
AYKzGyE4H5u7clrQYpLwN8CM8cWpK7SlAlmt/rnUjwZ/tkAl7u03P4a9cFjE4eAn
SuxWz2mvMma2OSMS7mDZeP2+nP7PWx/+hOYmigQvjyThN4XSoInKMwNsm06fK8Xm
n4UDY/FuEZc=
=BCve
-----END PGP SIGNATURE-----
Hash: SHA1
**********************************************************************
Alert ID : GCSA-10007
Data : 20 gennaio 2010
Titolo : Apple Security Update 2010-001
**********************************************************************
:: Descrizione del problema:
Apple ha rilasciato il Security Update 2010-001 per correggere
varie vulnerabilta' che affliggono il sistema operativo Mac OS X
ed alcune applicazioni distribuite insieme al sistema stesso.
:: Piattaforme e Software interessati:
Apple Mac OS X Server 10.6.2
Apple Mac OS X Server 10.6.1
Apple Mac OS X Server 10.5.8
Apple Mac OS X Server 10.5.7
Apple Mac OS X Server 10.5.6
Apple Mac OS X Server 10.5.5
Apple Mac OS X Server 10.5.4
Apple Mac OS X Server 10.5.3
Apple Mac OS X Server 10.5.2
Apple Mac OS X Server 10.5.1
Apple Mac OS X Server 10.6
Apple Mac OS X Server 10.5
Apple Mac OS X 10.6.2
Apple Mac OS X 10.6.1
Apple Mac OS X 10.5.8
Apple Mac OS X 10.5.7
Apple Mac OS X 10.5.6
Apple Mac OS X 10.5.5
Apple Mac OS X 10.5.4
Apple Mac OS X 10.5.3
Apple Mac OS X 10.5.2
Apple Mac OS X 10.5.1
Apple Mac OS X 10.6
Apple Mac OS X 10.5
:: Impatto:
Esecuzione di codice arbitrario
Esposizione dei dati del sistema
Denial of service
Accesso al sistema
:: Soluzione:
Applicare il Security Update 2010-001:
http://www.apple.com/support/downloads/
:: Riferimenti:
Security Update 2010-001
http://support.apple.com/kb/HT4004
Security Focus
http://www.securityfocus.com/bid/37869
http://www.securityfocus.com/bid/37868
http://www.securityfocus.com/bid/35451
http://www.securityfocus.com/bid/37048
http://www.securityfocus.com/bid/36935
Secunia: Apple Mac OS X Security Update Fixes Multiple Vulnerabilities
http://secunia.com/advisories/38241
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2285
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3553
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3555
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3794
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3796
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3797
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3798
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3799
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3800
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3951
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0036
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0037
-----BEGIN PGP SIGNATURE-----
iQCVAwUBS1bkFPOB+SpikaiRAQLK7wP/cAZg4px0mUcb3laNVIibMTGq0Hg0Cfgs
AYKzGyE4H5u7clrQYpLwN8CM8cWpK7SlAlmt/rnUjwZ/tkAl7u03P4a9cFjE4eAn
SuxWz2mvMma2OSMS7mDZeP2+nP7PWx/+hOYmigQvjyThN4XSoInKMwNsm06fK8Xm
n4UDY/FuEZc=
=BCve
-----END PGP SIGNATURE-----