Updates für iCloud und iTunes für Windows veröffentlicht, beheben diverse Sicherheitslücken
von caschy | Ein Kommentar
Apple hat wieder einmal seine Windows-Versionen von iCloud und iTunes aktualisiert, um sich diverser aktueller Sicherheitslücken zu entledigen. Somit lauten die neuen Versionsnummern nun iCloud für Windows 10.6 sowie 7.13 und iTunes für Windows 12.9.6. Zwei iCloud-Versionen gibt es aufgrund der Tatsache, dass iCloud einmal alleinstehend, aber auch im Microsoft Store zu finden ist. Die Changelogs der neuen Versionen habe ich euch hier direkt mal angehängt:
Cloud for Windows 10.6 is now available and addresses the following:
libxslt
Available for: Windows 10 and later via the Microsoft Store
Impact: A remote attacker may be able to view sensitive information
Description: A stack overflow was addressed with improved input
validation.
CVE-2019-13118: found by OSS-Fuzz
WebKit
Available for: Windows 10 and later via the Microsoft Store
Impact: Processing maliciously crafted web content may lead to
universal cross site scripting
Description: A logic issue was addressed with improved state
management.
CVE-2019-8658: akayn working with Trend Micro’s Zero Day Initiative
WebKit
Available for: Windows 10 and later via the Microsoft Store
Impact: Processing maliciously crafted web content may lead to
universal cross site scripting
Description: A logic issue existed in the handling of document loads.
This issue was addressed with improved state management.
CVE-2019-8690: Sergei Glazunov of Google Project Zero
iCloud for Windows 7.13 is now available and addresses the following:
libxslt
Available for: Windows 7 and later
Impact: A remote attacker may be able to view sensitive information
Description: A stack overflow was addressed with improved input
validation.
CVE-2019-13118: found by OSS-Fuzz
WebKit
Available for: Windows 7 and later
Impact: Processing maliciously crafted web content may lead to
universal cross site scripting
Description: A logic issue was addressed with improved state
management.
CVE-2019-8658: akayn working with Trend Micro’s Zero Day Initiative
WebKit
Available for: Windows 7 and later
Impact: Processing maliciously crafted web content may lead to
universal cross site scripting
Description: A logic issue existed in the handling of document loads.
This issue was addressed with improved state management.
CVE-2019-8690: Sergei Glazunov of Google Project Zero
iTunes for Windows 12.9.6 is now available and addresses the
following:
libxslt
Available for: Windows 7 and later
Impact: A remote attacker may be able to view sensitive information
Description: A stack overflow was addressed with improved input
validation.
CVE-2019-13118: found by OSS-Fuzz
WebKit
Available for: Windows 7 and later
Impact: Processing maliciously crafted web content may lead to
universal cross site scripting
Description: A logic issue was addressed with improved state
management.
CVE-2019-8658: akayn working with Trend Micro’s Zero Day Initiative
WebKit
Available for: Windows 7 and later
Impact: Processing maliciously crafted web content may lead to
universal cross site scripting
Description: A logic issue existed in the handling of document loads.
This issue was addressed with improved state management.
CVE-2019-8690: Sergei Glazunov of Google Project Zero
Wird geladen ...
iTunes Version 12.9.6.3 ist meines Wissen nach die Neueste, oder ?