Tuesday, April 14, 2015

Security update for Apple OS X and iOS

Apple addresses numerous fixes for OS X and iOS along with some additional features. OS X 10.10.3 security update covers 79 vulnerabilities where 21 of those flaws are related to OS X PHP port. Six other flaws are related to OpenSSL and nine security flaws for Apache. There was a flaw in the Nvidia OS X kernel driver which has been patched in the latest update. Similarly, there are updates for 58 vulnerabilities in iOS 8.3 - 24 security issues target Safari's WebKit engine, one update for phishing issue while two are related to XSS issue. iOS 8.3 update addresses 21 remote code vulnerabilities. There are patches available for iOS kernel to rectify eight security flaws that could allow attackers to cause a denial of service, remote code execution with escalated privileges. Apple urged users to migrate to 10.10.3 on earliest basis as there is locally exploited root escalation bug found in the OS X 10.8.5 and 10.9.5 which are not covered in this security update that means un-patched. <more>

No comments: