Credit to Roee Hay of IBM Rational Application Security Research Group for reporting this issue.ĭescription: An out-of-bounds read issue exists in QuickTime's handling of PICT images.
#Quicktime download ipod update
This update addresses the issue through improved bounds checking of panorama atoms. Viewing a maliciously crafted QTVR file may lead to an unexpected application termination or arbitrary code execution.
#Quicktime download ipod movie
Their official descriptions (from Apple's Support page) are available below.ĭescription: A heap buffer overflow exists in QuickTime's handling of panorama atoms in QTVR (QuickTime Virtual Reality) movie files. Two of the vulnerabilities discovered on the Mac side say that viewing a maliciously crafted QTVR movie file may lead to an unexpected application termination or arbitrary code execution, and that opening a maliciously crafted PICT image may lead to an unexpected application termination.
QuickTime 7.5.5 lists some 9 security issues for both Mac and Windows users. Windows users of Apple's media player app received a fix addressing issues with system privileges. It has been revealed that iTunes 8.0 not only brings hefty new features, but also resolves some security issues, particularly a vulnerability that results in an erroneous Firewall warning dialogue. Read on to learn about some of the vulnerabilities each update addresses. Included in the slew of software updates released by Apple (just as soon as Steve Jobs ended his keynote address in San Francisco) are also some patches addressing security issues in the company's iTunes and QuickTime Mac apps, but also in the iPod touch OS.
0 kommentar(er)
