Apple QuickTime 7.6.4 - Apple aktualisiert seinen kostenlosen Mediaplayer

Apple QuickTime 7.6.4 - Apple aktualisiert seinen kostenlosen Mediaplayer

Apple hat mit QuickTime 7.6.4 ein neues Update für seinen kostenlosen Mediaplayer veröffentlicht. Das Update enthält Verbesserungen der Stabilität, Kompatibilität und Sicherheit. Benutzer von QuickTime 7 sollten das Update deshalb installieren.

Apple QuickTime 7.6.4 Update für Mac OS X v10.4.11, Mac OS X v10.5.8, Windows 7, Vista and XP SP3 steht ab sofort auf der Apple-Website zum Download zur Verfügung:

Apple QuickTime 7.6.4 - Verbesserungen

QuickTime - CVE-ID: CVE-2009-2202

  • Available for: Mac OS X v10.4.11, Mac OS X v10.5.8, Windows 7, Vista and XP SP3
  • Impact: Viewing a maliciously crafted H.264 movie may lead to an unexpected application termination or arbitrary code execution
  • Description: A memory corruption issue exists in QuickTime's handling of H.264 movie files. Viewing a maliciously crafted H.264 movie file may lead to an unexpected application termination or arbitrary code execution. This update addresses the issue through improved bounds checking. Credit to Tom Ferris of the Adobe Secure Software Engineering Team for reporting this issue.

QuickTime - CVE-ID: CVE-2009-2203

  • Available for: Mac OS X v10.4.11, Mac OS X v10.5.8, Windows 7, Vista and XP SP3
  • Impact: Opening a maliciously crafted MPEG-4 video file may lead to an unexpected application termination or arbitrary code execution
  • Description: A buffer overflow exists in QuickTime's handling of MPEG-4 video files. Opening a maliciously crafted MPEG-4 video file may lead to an unexpected application termination or arbitrary code execution. This update addresses the issue through improved bounds checking. Credit to Alex Selivanov for reporting this issue.

QuickTime - CVE-ID: CVE-2009-2798

  • Available for: Mac OS X v10.4.11, Mac OS X v10.5.8, Windows 7, Vista and XP SP3
  • Impact: Viewing a maliciously crafted FlashPix file may lead to an unexpected application termination or arbitrary code execution
  • Description: A heap buffer overflow exists in QuickTime's handling of FlashPix files. Viewing a maliciously crafted FlashPix file may lead to an unexpected application termination or arbitrary code execution. This update addresses the issue through improved bounds checking. Credit to Damian Put working with TippingPoint and the Zero Day Initiative for reporting this issue.

QuickTime - CVE-ID: CVE-2009-2799

  • Available for: Mac OS X v10.4.11, Mac OS X v10.5.8, Windows 7, Vista and XP SP3
  • Impact: Viewing a maliciously crafted H.264 movie may lead to an unexpected application termination or arbitrary code execution
  • Description: A heap buffer overflow exists in QuickTime's handling of H.264 movie files. Viewing a maliciously crafted H.264 movie file may lead to an unexpected application termination or arbitrary code execution. This update addresses the issue through improved bounds checking. Credit to an anonymous researcher working with TippingPoint and the Zero Day Initiative for reporting this issue.

Diesen Artikel auf Twitter, Google+ oder Facebook weiterempfehlen

Artikel auf Twitter empfehlen Artikel auf Google+ empfehlen Artikel auf Facebook empfehlen
Kommentare sind geschlossen
Copyright © 2014 Valdet Beqiraj it-blogger.net