Apple has issued an updated version of Mac OS X, which fixes many unspecified vulnerabilities. An unspecified error reportedly exists within the NFS logging functionality when tracing system calls. Another unspecified error reportedly exists within LoginWindow when handling directory services lookups and console log files. Yet still another unspecified error exists within Packaging during package installation. Not to mention another unspecified error exists within the TCP/IP stack implementation when handling out-of-sequence TCP packets. Two more unspecified errors exist within AppleFileServer when using SSH and reporting errors and within Terminal when handling URLs.
b46294fcf891e166c1351e0f4c3af5105060325db5d31033b1620b4ca1e2bde8
TITLE:
Mac OS X Multiple Unspecified Vulnerabilities
SECUNIA ADVISORY ID:
SA11724
VERIFY ADVISORY:
http://secunia.com/advisories/11724/
CRITICAL:
Moderately critical
IMPACT:
Unknown
WHERE:
>From remote
OPERATING SYSTEM:
Apple Macintosh OS X
DESCRIPTION:
Apple has issued an updated version of Mac OS X, which fixes some
unspecified vulnerabilities.
1) An unspecified error reportedly exists within the NFS logging
functionality when tracing system calls.
2) An unspecified error reportedly exists within LoginWindow when
handling directory services lookups and console log files.
3) An unspecified error exists within Packaging during package
installation.
4) An unspecified error exists within the TCP/IP stack implementation
when handling out-of-sequence TCP packets.
5) An unspecified error exists within AppleFileServer when using SSH
and reporting errors.
6) An unspecified error exists within Terminal when handling URLs.
SOLUTION:
Update to version 10.3.4.
Updating from Mac OS X 10.3.3:
http://www.apple.com/support/downloads/macosxupdate_10_3_4.html
Updating from Mac OS X 10.3 - 10.3.2:
http://www.apple.com/support/downloads/macosxcombined1034update.html
Updating from Mac OS X Server 10.3.3:
http://www.apple.com/support/downloads/macosxupdate_10_3_4.html
Updating from Mac OS X Server 10.3 - 10.3.2:
http://www.apple.com/support/downloads/macosxcombinedserver1034update.html
PROVIDED AND/OR DISCOVERED BY:
1) David Brown
2+3) Aaron
6) René Puls
ORIGINAL ADVISORY:
http://docs.info.apple.com/article.html?artnum=61798
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------