Alert GCSA-20083 - Apple Security Updates (APPLE-SA-2020-09-16)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-20083
Data: 17 Settembre 2020
Titolo: Apple Security Updates (APPLE-SA-2020-09-16)
******************************************************************
:: Descrizione
Apple ha rilasciato degli aggiornamenti di sicurezza che risolvono delle
vulnerabilita' presenti nei sistemi operativi e nelle applicazioni.
Per una descrizione degli aggiornamenti consultare le segnalazioni
ufficiali alla sezione 'Riferimenti'.
:: Software interessato
iOS
iPadOS
watchOS
Safari
tvOS
Xcode
Esiste inoltre di un aggiornamento per iTunes for Windows, ma senza ulteriori dettagli
:: Impatto
Esecuzione remota di codice arbitrario
Cross-site scripting
Denial of Service
Bypass di restrizioni di sicurezza
Rivelazione di informazioni sensibili
:: Soluzione
Aggiornare i software alle seguenti versioni:
iOS 14.0
iPadOS 14.0
tvOS 14
watchOS 7.0
Safari 14.0
Xcode 12.0
:: Riferimenti
Apple security updates
https://support.apple.com/en-us/HT201222
https://support.apple.com/it-it/HT211843
https://support.apple.com/it-it/HT211844
https://support.apple.com/it-it/HT211845
https://support.apple.com/it-it/HT211848
https://support.apple.com/it-it/HT211850
Mitre CVE
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9948
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9951
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9952
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9983
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9979
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9976
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9968
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9952
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9976
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9946
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9968
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9952
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9958
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9979
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9773
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9992
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9964
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9976
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9973
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9946
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9968
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9959
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9952
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9992
GARR CERT Newsletter subscribe/unsubscribe:
https://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iF0EARECAB0WIQTGpdiR5MqstacBGHbBnEyTZRJgQgUCX2M9RgAKCRDBnEyTZRJg
Qt87AKCYtTG1HyU3iRmV907QCemTAkyiqgCgm+D+gK1nsEbhZZf+4r577fJPd3Q=
=E+Y2
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-20083
Data: 17 Settembre 2020
Titolo: Apple Security Updates (APPLE-SA-2020-09-16)
******************************************************************
:: Descrizione
Apple ha rilasciato degli aggiornamenti di sicurezza che risolvono delle
vulnerabilita' presenti nei sistemi operativi e nelle applicazioni.
Per una descrizione degli aggiornamenti consultare le segnalazioni
ufficiali alla sezione 'Riferimenti'.
:: Software interessato
iOS
iPadOS
watchOS
Safari
tvOS
Xcode
Esiste inoltre di un aggiornamento per iTunes for Windows, ma senza ulteriori dettagli
:: Impatto
Esecuzione remota di codice arbitrario
Cross-site scripting
Denial of Service
Bypass di restrizioni di sicurezza
Rivelazione di informazioni sensibili
:: Soluzione
Aggiornare i software alle seguenti versioni:
iOS 14.0
iPadOS 14.0
tvOS 14
watchOS 7.0
Safari 14.0
Xcode 12.0
:: Riferimenti
Apple security updates
https://support.apple.com/en-us/HT201222
https://support.apple.com/it-it/HT211843
https://support.apple.com/it-it/HT211844
https://support.apple.com/it-it/HT211845
https://support.apple.com/it-it/HT211848
https://support.apple.com/it-it/HT211850
Mitre CVE
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9948
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9951
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9952
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9983
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9979
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9976
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9968
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9952
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9976
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9946
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9968
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9952
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9958
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9979
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9773
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9992
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9964
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9976
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9973
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9946
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9968
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9959
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9952
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9992
GARR CERT Newsletter subscribe/unsubscribe:
https://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iF0EARECAB0WIQTGpdiR5MqstacBGHbBnEyTZRJgQgUCX2M9RgAKCRDBnEyTZRJg
Qt87AKCYtTG1HyU3iRmV907QCemTAkyiqgCgm+D+gK1nsEbhZZf+4r577fJPd3Q=
=E+Y2
-----END PGP SIGNATURE-----