Apple updates OS X Mavericks, Safari and other products

Summary: In addition to Mavericks 10.9.5, the company released updates for earlier OS X versions, multiple new versions of Safari, and patches for Xcode, OS X Server and Apple TV.

In addition to the large list of vulnerabilities fixed in iOS 8, Apple has released new versions of many other products to fix many other vulnerabilities.

iOS 8 fixed 53 vulnerabilities in earlier versions. The other new versions — OS X Mavericks 10.9.5; Security Update 2014-004; Safari 6.1.6, 7.0.6, 6.2 and 7.2; Xcode 6.0.1; OS X Server 2.2.3 and 3.2.1; and Apple TV 7 — fix another 53.

Many of the fixes in OS X Mavericks 10.9.5 and Security Update 2014-004 are problems with common open source programs which the average user might not use. Among these are Apache mod_php, Ruby and QT Media Foundation. But several are serious, especially the bugs in the Intel Graphics Driver, IOAcceleratorFamily and Libnotify, one of which allows a malicious application to execute arbitrary code with root privileges. This is a very critical update for Mac users. All of the bugs fixed in Apple TV were among those fixed in OS X.

Apple adds that the new version of Mavericks "[f]ixes an issue with group membership in large network groups, that also might prevent administrators from performing some administrative tasks successfully" and "[a]llows for faster authentication when roaming on 802.1x networks which use EAP-TLS." Mavericks 10.9.5 also includes Safari 7.0.6, about which more below.

Nearly all the flaws fixed in Safari 6.1.6, 6.2, 7.0.6 and 7.2 are memory corruption bugs in the WebKit browser engine which could allow remote code execution. The others are information disclosure bugs. XCode 6.0.1 stops a potential crash bug in Apache Subversion, a revision control system.

OS X Server 2.2.3 and 3.2.1 both fix a SQL injection bug which could allow an attacker to run arbitrary SQL queries. Version 3.2.1 also fixes a JavaScript injection bug and multiple critical bugs in PostgreSQL.

As with the iOS 8 fixes, Ian Beer of Google Project Zero was the greatest contributor to these security disclosures.

Reference :- https://bitly.com/1qigtsS

Comments

Tesla Model S & BMW i3 Get New Skins

Tesla may be the most American car company nowadays, and especially once the gigafactory gets rolling. In honor of Veterans Day , Tesla rolled out a a Tesla Model S with camouflage vinyl wrap and louvered back windows. The special Model S was also stamped with a nice Twitter hashtag, #TeslaVets. It’s a nice tribute to the guys and gals who put their lives on the line in the name of the USA, and it also brings attention to the fact that one of the best ways to protect the country from some of its biggest threats, global warming and oil wars, is to go electric. But this isn’t Tesla’s first sign of support for vets. The California-based car company has also committed to hiring a lot of them . “The actual work was done by SS Customs, and also features unique camo wheels, a roof rack, and yellow military-esque headlights,” GAS2 writes . “Tesla revealed the Veterans day tribute via its Facebook page , with this simple message; ‘A heartfelt Veterans Day thank you to all wh

Taylor Swift Unhappy After Princeton Review Misquotes Her Lyrics in SAT Test Paper

Image courtesy: TaylorSwiftVEVO/YouTube The popstar of several multi-million dollar hits and multi-million dollar legs , Taylor Swift is not one to be messed with. The Princeton Review found that out the hard way after they published Tay Tay's lyrics as an example of bad grammar on a SAT practice test. To be fair, they were trying to make the point that pop songs are where grammar goes to die and also cited other pop singers such as Katy Perry, Justin Timberlake, Lady Gaga and Kesha. The fiercely loyal Tay Tay fans were not likely to let this go by and Tumblr user Nava who was apparently having ' an amazing time studying for SAT' when she spotted this, posted a snapshot with the caption, " .... it isn't a pop song it's a country pop song so take that Princeton review Taylor is grammar queen so shhhhhh.." Source Unluckily for the Princeton Review however they misquoted the lyrics of the song Fifteen. The question paper wanted students to g

Ariana Grande Shows Off Her Killer Vocals in "Adore"—Listen to the Cashmere Cat Song Here!

Get ready to have another Ariana Grande hit on your mind all day! The 21-year-old's second album, My Everything, was full of music production from Norwegian producer Cashmere Cat, who even nabbed a "featured" credit on "Be My Baby," and now the singer has returned the favor. Cashmere Cat just released a new single titled "Adore," which features Ariana, but don't let that little F-word fool ya. The entire song is Grande and her hypnotizing voice serenading the listener over the Norwegian producer's ecclectic beat. It's really one great electro and R&B pairing that you never saw coming. As for whether or not she's singing about Big Sean (oh, c'mon, we all know you're thinking it)—we're gonna go with a "probably." The lyrics go a little something like this: "Boy so what's been on your mind?/ For me it's just you all the time/ We don't need to go nowhere tonight/ It'

Think Create & Do

Search This Blog