Alert GCSA-09037 - Security Update 2009-002 / Mac OS X v10.5.7
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
**********************************************************************
Alert ID : GCSA-09037
Data : 14 maggio 2009
Titolo : Security Update 2009-002 / Mac OS X v10.5.7
**********************************************************************
:: Descrizione del problema:
Apple ha rilasciato il Security Update 2009-002 per correggere
varie vulnerabilta' che affliggono il sistema operativo Mac OS X
ed alcune applicazioni distribuite insieme al sistema stesso.
:: Piattaforme e Software interessati:
Apple Mac OS X Server 10.5.6
Apple Mac OS X Server 10.5.5
Apple Mac OS X Server 10.5.4
Apple Mac OS X Server 10.5.3
Apple Mac OS X Server 10.5.2
Apple Mac OS X Server 10.5.1
Apple Mac OS X Server 10.5
Apple Mac OS X 10.5.6
Apple Mac OS X 10.5.5
Apple Mac OS X 10.5.4
Apple Mac OS X 10.5.3
Apple Mac OS X 10.5.2
Apple Mac OS X 10.5.1
Apple Mac OS X 10.5
:: Impatto:
Security Bypass
Cross Site Scripting
Spoofing
Esposizione di informazioni sensibili
Acquisizione di privilegi piu' elevati
Denial of Service
Accesso al sistema
:: Soluzione:
Applicare il Security Update 2009-002:
http://www.apple.com/support/downloads/
:: Riferimenti:
Security Update 2009-002 / Mac OS X v10.5.7
http://support.apple.com/kb/HT3549
US-CERT Technical Cyber Security Alert TA09-133A archive
http://www.us-cert.gov/cas/techalerts/TA09-133A.html
Security Focus
http://www.securityfocus.com/bid/34926
http://www.securityfocus.com/bid/34947
http://www.securityfocus.com/bid/34951
http://www.securityfocus.com/bid/34942
http://www.securityfocus.com/bid/34950
http://www.securityfocus.com/bid/34952
http://www.securityfocus.com/bid/34932
http://www.securityfocus.com/bid/34937
http://www.securityfocus.com/bid/34938
http://www.securityfocus.com/bid/34939
http://www.securityfocus.com/bid/34948
Secunia: Apple Mac OS X Security Update Fixes Multiple Vulnerabilities
http://secunia.com/advisories/35074/
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0154
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0144
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0157
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0145
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0155
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0150
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0149
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0942
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0943
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0152
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0153
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1517
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0156
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0160
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0010
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0944
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0158
-----BEGIN PGP SIGNATURE-----
iQCVAwUBSgwyOPOB+SpikaiRAQIHigQAmuchM5UtQfXBtOWKKGfiykqmzR2Sbnbw
WauNljxQehDBkA5NTy5bKdh41Y/fKMH5VlDOQvXI5Plp3GLu19Rnot2am9HR9gN4
GpvPtYo0jTSmeeHYQXUJ0W5ozSYWDMLG7QllDZQI26ZD/BBgWlEcjqmsn5ybzCl7
dLTh90kaEZA=
=qY4+
-----END PGP SIGNATURE-----
Hash: SHA1
**********************************************************************
Alert ID : GCSA-09037
Data : 14 maggio 2009
Titolo : Security Update 2009-002 / Mac OS X v10.5.7
**********************************************************************
:: Descrizione del problema:
Apple ha rilasciato il Security Update 2009-002 per correggere
varie vulnerabilta' che affliggono il sistema operativo Mac OS X
ed alcune applicazioni distribuite insieme al sistema stesso.
:: Piattaforme e Software interessati:
Apple Mac OS X Server 10.5.6
Apple Mac OS X Server 10.5.5
Apple Mac OS X Server 10.5.4
Apple Mac OS X Server 10.5.3
Apple Mac OS X Server 10.5.2
Apple Mac OS X Server 10.5.1
Apple Mac OS X Server 10.5
Apple Mac OS X 10.5.6
Apple Mac OS X 10.5.5
Apple Mac OS X 10.5.4
Apple Mac OS X 10.5.3
Apple Mac OS X 10.5.2
Apple Mac OS X 10.5.1
Apple Mac OS X 10.5
:: Impatto:
Security Bypass
Cross Site Scripting
Spoofing
Esposizione di informazioni sensibili
Acquisizione di privilegi piu' elevati
Denial of Service
Accesso al sistema
:: Soluzione:
Applicare il Security Update 2009-002:
http://www.apple.com/support/downloads/
:: Riferimenti:
Security Update 2009-002 / Mac OS X v10.5.7
http://support.apple.com/kb/HT3549
US-CERT Technical Cyber Security Alert TA09-133A archive
http://www.us-cert.gov/cas/techalerts/TA09-133A.html
Security Focus
http://www.securityfocus.com/bid/34926
http://www.securityfocus.com/bid/34947
http://www.securityfocus.com/bid/34951
http://www.securityfocus.com/bid/34942
http://www.securityfocus.com/bid/34950
http://www.securityfocus.com/bid/34952
http://www.securityfocus.com/bid/34932
http://www.securityfocus.com/bid/34937
http://www.securityfocus.com/bid/34938
http://www.securityfocus.com/bid/34939
http://www.securityfocus.com/bid/34948
Secunia: Apple Mac OS X Security Update Fixes Multiple Vulnerabilities
http://secunia.com/advisories/35074/
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0154
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0144
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0157
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0145
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0155
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0150
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0149
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0942
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0943
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0152
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0153
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1517
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0156
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0160
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0010
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0944
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0158
-----BEGIN PGP SIGNATURE-----
iQCVAwUBSgwyOPOB+SpikaiRAQIHigQAmuchM5UtQfXBtOWKKGfiykqmzR2Sbnbw
WauNljxQehDBkA5NTy5bKdh41Y/fKMH5VlDOQvXI5Plp3GLu19Rnot2am9HR9gN4
GpvPtYo0jTSmeeHYQXUJ0W5ozSYWDMLG7QllDZQI26ZD/BBgWlEcjqmsn5ybzCl7
dLTh90kaEZA=
=qY4+
-----END PGP SIGNATURE-----