Apple Updates for Multiple Vulnerabilities

Original release date: October 13, 2011
Last revised: –
Source: US-CERT

National Cyber Alert System
Cyber Security Alert SA11-286A

Apple has released security updates for Apple iOS, Safari 5.1.1, OS X Lion v10.7.2, iWork 09, and Apple TV 4.4 to address multiple vulnerabilities. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, obtain sensitive information, and bypass security restrictions.

Systems Affected

• Mac OS X 10.6.8
• Mac OS X Server 10.6.8
• Mac OS X 10.7, 10.7.1
• Mac OS X Server 10.7, 10.7.1

Overview

There are multiple vulnerabilities in Mac OS X 10.6.8, 10.7, and 10.7.1 and Mac OS X Server 10.6.8, 10.7, and 10.7.1. Apple has released updates to address these vulnerabilities.

Solution

Install updates

The updates to address these vulnerabilities are available through the Mac OS X Software Update feature. Apple support article Mac OS X: Updating your software describes how to install these updates.

Description

The Apple Security Advisory for OS X Lion v10.7.2 and Security Update 2011-006 describes multiple vulnerabilities in Mac OS X and Mac OS X Server. Apple has released updates to address these vulnerabilities.

References

• OS X Lion v10.7.2 and Security Update 2011-006 – <http://support.apple.com/kb/HT5002>
• Mac OS X: Updating your software – <http://support.apple.com/kb/HT1338>